Se connecter / S'enregistrer
Votre question

Problème avec les pubs CID

Tags :
  • Sécurité
Dernière réponse : dans Sécurité et virus
7 Mars 2008 20:11:50

Bonsoir,

Quand j'ouvre une fenêtre internet avec mozilla ou internet il m'ouvre 1 à 3 pop up CID.


Que dois-je faire?

Voici le rapport avec lop s&d


-----------------------------[ Lop S&D 4.0.4 ]---------------------------

[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : Nous ] [ "C:\Lop SD" ]
[ ven. 07/03/2008 | 20:06:49,04 ] [ PC : DCFRXR2J ]
[ MAJ : 05-03-2008 | 13:30 ]

-------------[ Listing des dossiers dans Application Data ]------------

[05/03/2008|21:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\.
[05/03/2008|21:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\..
[10/09/2007|17:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\.zreglib
[24/02/2007|19:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[03/12/2007|23:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Alawar Stargaze
[04/11/2007|20:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Aliasworlds
[06/02/2008|10:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Anvsoft
[01/09/2007|10:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[08/02/2008|22:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[29/01/2008|12:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BigFish
[27/02/2008|21:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BigFishGamesCache
[28/12/2007|17:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[04/12/2007|01:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BufferZone
[18/12/2007|01:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Christmasville
[17/02/2007|14:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Corel
[04/02/2008|10:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Dell
[20/08/2004|11:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[23/11/2007|23:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\EA
[29/10/2007|23:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Escape From Paradise
[22/08/2007|23:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FloodLightGames
[20/11/2007|23:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Fugazo
[28/02/2008|21:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar
[04/02/2008|00:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Go Go Gourmet
[30/01/2008|22:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Gogii
[21/06/2007|22:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[17/02/2007|14:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\GTek
[19/01/2008|10:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HipSoft
[24/02/2007|01:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[24/02/2007|01:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hpzinstall.log
[17/09/2007|16:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Installations
[17/02/2007|14:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[20/02/2008|18:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\JollyBear
[14/08/2007|23:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Legacy Interactive
[17/02/2007|14:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee
[21/06/2007|10:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee.com
[22/02/2007|11:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee.com Personal Firewall
[29/08/2007|16:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[23/02/2008|18:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[14/02/2008|03:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Help
[04/11/2007|21:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MinigolfAdventures
[06/01/2008|23:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MumboJumbo
[03/03/2008|21:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\My Games
[24/02/2008|20:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MythPeople
[21/10/2007|21:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\n7-89-o9-3r-4t-r9
[17/02/2008|23:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NannyMania
[23/11/2007|23:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NeptunesAdve
[24/06/2007|21:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
[17/01/2008|10:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Oberon Games
[20/08/2007|21:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\OBJ META UP BURN
[07/02/2008|04:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\part dead amok eggs
[17/09/2007|17:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PC Suite
[03/11/2007|22:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst
[07/11/2007|23:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PrettyGoodGames
[16/12/2007|17:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QTSBandwidthCache
[13/02/2008|15:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\River Past G5
[18/12/2007|00:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sandlot Games
[20/08/2004|11:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[02/01/2008|22:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SecretsOfOlympus
[17/02/2007|14:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
[18/09/2007|11:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SpinTop Games
[07/11/2007|23:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SugarGames
[21/02/2007|18:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Support.com
[24/04/2007|18:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SupportSoft
[07/03/2008|19:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[05/03/2008|00:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[13/09/2007|22:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TERMINAL Studio
[11/10/2007|14:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Trymedia
[28/02/2008|20:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TuneUp Software
[29/01/2008|22:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Valusoft
[21/02/2007|20:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[29/07/2007|22:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WindowsLiveInstaller
[23/02/2008|18:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[26/02/2007|00:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom


[10/02/2008|11:29] C:\DOCUME~1\DEFAUL~1\APPLIC~1\.
[10/02/2008|11:29] C:\DOCUME~1\DEFAUL~1\APPLIC~1\..
[10/02/2008|11:29] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Apple Computer
[20/08/2004|11:30] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[17/02/2007|14:48] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Gtek
[20/08/2004|11:41] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[20/08/2004|11:30] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[17/02/2007|14:47] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec

[20/06/2007|22:38] C:\DOCUME~1\LOCALS~1\APPLIC~1\.
[20/06/2007|22:38] C:\DOCUME~1\LOCALS~1\APPLIC~1\..
[20/06/2007|22:38] C:\DOCUME~1\LOCALS~1\APPLIC~1\Adobe
[22/02/2007|02:56] C:\DOCUME~1\LOCALS~1\APPLIC~1\Macromedia
[21/02/2007|18:43] C:\DOCUME~1\LOCALS~1\APPLIC~1\McAfee.com Personal Firewall
[30/09/2007|20:01] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[02/04/2007|01:31] C:\DOCUME~1\LOCALS~1\APPLIC~1\Mozilla

[30/09/2007|19:28] C:\DOCUME~1\NETWOR~1\APPLIC~1\.
[30/09/2007|19:28] C:\DOCUME~1\NETWOR~1\APPLIC~1\..
[30/09/2007|19:28] C:\DOCUME~1\NETWOR~1\APPLIC~1\Identities
[09/10/2007|00:03] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

[07/03/2008|18:30] C:\DOCUME~1\Nous\APPLIC~1\.
[07/03/2008|18:30] C:\DOCUME~1\Nous\APPLIC~1\..
[06/02/2008|10:40] C:\DOCUME~1\Nous\APPLIC~1\3D Photo Album Screensaver
[17/10/2007|22:30] C:\DOCUME~1\Nous\APPLIC~1\Abra Academy2
[19/01/2008|11:17] C:\DOCUME~1\Nous\APPLIC~1\Adobe
[10/01/2008|17:09] C:\DOCUME~1\Nous\APPLIC~1\AdobeUM
[03/12/2007|23:10] C:\DOCUME~1\Nous\APPLIC~1\Alawar
[05/03/2008|21:33] C:\DOCUME~1\Nous\APPLIC~1\AlwaysNeat
[24/02/2007|20:11] C:\DOCUME~1\Nous\APPLIC~1\anagramarama
[01/09/2007|10:09] C:\DOCUME~1\Nous\APPLIC~1\Apple Computer
[18/12/2007|00:11] C:\DOCUME~1\Nous\APPLIC~1\Aveyond II
[24/06/2007|00:05] C:\DOCUME~1\Nous\APPLIC~1\Beep Industries
[13/09/2007|22:49] C:\DOCUME~1\Nous\APPLIC~1\Big Fish Games
[29/01/2008|12:50] C:\DOCUME~1\Nous\APPLIC~1\BigFish
[24/02/2007|20:15] C:\DOCUME~1\Nous\APPLIC~1\BitTorrent
[14/03/2007|01:57] C:\DOCUME~1\Nous\APPLIC~1\BitZipper
[07/02/2008|04:03] C:\DOCUME~1\Nous\APPLIC~1\Cdrom Five
[22/12/2007|15:34] C:\DOCUME~1\Nous\APPLIC~1\CopyToDvd
[24/03/2007|18:51] C:\DOCUME~1\Nous\APPLIC~1\Corel
[21/10/2007|23:47] C:\DOCUME~1\Nous\APPLIC~1\ctpo
[19/12/2007|18:23] C:\DOCUME~1\Nous\APPLIC~1\DAEMON Tools
[20/08/2004|11:30] C:\DOCUME~1\Nous\APPLIC~1\desktop.ini
[15/08/2007|22:28] C:\DOCUME~1\Nous\APPLIC~1\DiVision Studios - Escaping Atlantis
[06/03/2007|21:42] C:\DOCUME~1\Nous\APPLIC~1\DivX
[22/12/2007|15:36] C:\DOCUME~1\Nous\APPLIC~1\dvd.bmk
[23/11/2007|23:30] C:\DOCUME~1\Nous\APPLIC~1\EA
[29/11/2007|18:08] C:\DOCUME~1\Nous\APPLIC~1\Eyeblaster
[22/08/2007|23:05] C:\DOCUME~1\Nous\APPLIC~1\FloodLightGames
[01/11/2007|00:36] C:\DOCUME~1\Nous\APPLIC~1\Gaijin Ent
[29/11/2007|18:06] C:\DOCUME~1\Nous\APPLIC~1\GameHouse
[13/10/2007|14:07] C:\DOCUME~1\Nous\APPLIC~1\Gamelab
[17/03/2007|05:39] C:\DOCUME~1\Nous\APPLIC~1\GDIPFONTCACHEV1.DAT
[03/03/2008|21:56] C:\DOCUME~1\Nous\APPLIC~1\gemsweeperextractedgfx
[19/12/2007|21:51] C:\DOCUME~1\Nous\APPLIC~1\GibbHill Properties Ltd
[22/02/2008|00:06] C:\DOCUME~1\Nous\APPLIC~1\Google
[17/02/2007|14:48] C:\DOCUME~1\Nous\APPLIC~1\Gtek
[27/02/2007|23:45] C:\DOCUME~1\Nous\APPLIC~1\Help
[02/01/2008|23:14] C:\DOCUME~1\Nous\APPLIC~1\Home Sweet Home
[24/07/2007|18:06] C:\DOCUME~1\Nous\APPLIC~1\HouseCall 6.6
[11/03/2007|02:32] C:\DOCUME~1\Nous\APPLIC~1\HP
[05/03/2008|21:33] C:\DOCUME~1\Nous\APPLIC~1\Identities
[14/11/2007|01:20] C:\DOCUME~1\Nous\APPLIC~1\Image Zone Express
[22/12/2007|10:21] C:\DOCUME~1\Nous\APPLIC~1\inst.exe
[18/02/2008|22:46] C:\DOCUME~1\Nous\APPLIC~1\iWin
[10/10/2007|00:44] C:\DOCUME~1\Nous\APPLIC~1\Jane s Hotel
[26/03/2007|04:18] C:\DOCUME~1\Nous\APPLIC~1\Jasc
[28/01/2008|22:49] C:\DOCUME~1\Nous\APPLIC~1\Land Of Runes
[21/02/2007|17:46] C:\DOCUME~1\Nous\APPLIC~1\Leadertech
[28/02/2008|21:37] C:\DOCUME~1\Nous\APPLIC~1\LimeWire
[11/10/2007|19:48] C:\DOCUME~1\Nous\APPLIC~1\Macromedia
[01/09/2007|00:08] C:\DOCUME~1\Nous\APPLIC~1\Magic Academy
[20/02/2008|20:42] C:\DOCUME~1\Nous\APPLIC~1\Magic Seeds
[22/02/2007|11:10] C:\DOCUME~1\Nous\APPLIC~1\McAfee.com Personal Firewall
[25/03/2007|22:37] C:\DOCUME~1\Nous\APPLIC~1\MessengerSkinner
[03/03/2008|21:39] C:\DOCUME~1\Nous\APPLIC~1\Microsoft
[24/07/2007|20:23] C:\DOCUME~1\Nous\APPLIC~1\Mozilla
[27/07/2007|23:18] C:\DOCUME~1\Nous\APPLIC~1\My Games
[17/09/2007|22:32] C:\DOCUME~1\Nous\APPLIC~1\Mysteryville2
[05/10/2007|21:56] C:\DOCUME~1\Nous\APPLIC~1\NMM-MetaData.db
[18/09/2007|15:32] C:\DOCUME~1\Nous\APPLIC~1\Nokia
[17/09/2007|17:41] C:\DOCUME~1\Nous\APPLIC~1\Nokia Multimedia Player
[17/01/2008|10:14] C:\DOCUME~1\Nous\APPLIC~1\Oberon Games
[21/10/2007|23:46] C:\DOCUME~1\Nous\APPLIC~1\Oliver Pearl
[18/09/2007|15:28] C:\DOCUME~1\Nous\APPLIC~1\PC Suite
[22/12/2007|10:21] C:\DOCUME~1\Nous\APPLIC~1\pcouffin.cat
[22/12/2007|10:21] C:\DOCUME~1\Nous\APPLIC~1\pcouffin.inf
[22/12/2007|10:21] C:\DOCUME~1\Nous\APPLIC~1\pcouffin.log
[22/12/2007|10:21] C:\DOCUME~1\Nous\APPLIC~1\pcouffin.sys
[03/11/2007|22:44] C:\DOCUME~1\Nous\APPLIC~1\PlayFirst
[16/12/2007|17:49] C:\DOCUME~1\Nous\APPLIC~1\Real
[28/02/2008|21:37] C:\DOCUME~1\Nous\APPLIC~1\RegistrySmart
[13/02/2008|15:01] C:\DOCUME~1\Nous\APPLIC~1\River Past G5
[16/10/2007|22:24] C:\DOCUME~1\Nous\APPLIC~1\Sandlot Games
[23/03/2007|21:48] C:\DOCUME~1\Nous\APPLIC~1\Screenshot Sender
[14/12/2007|22:23] C:\DOCUME~1\Nous\APPLIC~1\SecuROM
[21/02/2007|22:07] C:\DOCUME~1\Nous\APPLIC~1\Sonic
[21/02/2007|17:53] C:\DOCUME~1\Nous\APPLIC~1\Sun
[06/02/2008|23:39] C:\DOCUME~1\Nous\APPLIC~1\Super-Cow
[17/02/2007|14:47] C:\DOCUME~1\Nous\APPLIC~1\Symantec
[29/01/2008|12:20] C:\DOCUME~1\Nous\APPLIC~1\Todae
[28/02/2008|20:33] C:\DOCUME~1\Nous\APPLIC~1\TuneUp Software
[26/11/2007|21:54] C:\DOCUME~1\Nous\APPLIC~1\TypingMaster7
[29/01/2008|22:21] C:\DOCUME~1\Nous\APPLIC~1\Valusoft
[30/09/2007|21:47] C:\DOCUME~1\Nous\APPLIC~1\VeniceMysteryData
[26/11/2007|22:10] C:\DOCUME~1\Nous\APPLIC~1\Viacleaner
[28/02/2008|21:37] C:\DOCUME~1\Nous\APPLIC~1\Vso
[05/10/2007|23:48] C:\DOCUME~1\Nous\APPLIC~1\Wildfire
[02/02/2008|22:30] C:\DOCUME~1\Nous\APPLIC~1\WinButler
[02/10/2007|10:20] C:\DOCUME~1\Nous\APPLIC~1\Windows Desktop Search
[01/09/2007|20:24] C:\DOCUME~1\Nous\APPLIC~1\WinRAR
[05/03/2008|21:33] C:\DOCUME~1\Nous\APPLIC~1\Zylom


----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

[07/03/2008 17:17][--a------] C:\WINDOWS\tasks\Maintenance en 1 clic.job
[07/03/2008 19:57][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[07/03/2008 20:00][--ah-----] C:\WINDOWS\tasks\8570E0C081739A78.job
[03/03/2008 20:08][--a------] C:\WINDOWS\tasks\Norton Internet Security Online - Analyse systŠme complŠte - Nous.job
[05/03/2008 03:30][--a------] C:\WINDOWS\tasks\RegistrySmart Scheduled Scan.job
[04/03/2008 08:07][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[06/03/2008 06:13][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 13:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[05/03/2008|22:12] C:\Program Files\.
[05/03/2008|22:12] C:\Program Files\..
[19/12/2007|21:44] C:\Program Files\.autoreg
[07/02/2008|21:39] C:\Program Files\ABAEnglishCourse
[10/01/2008|17:08] C:\Program Files\Adobe
[28/01/2008|16:53] C:\Program Files\Adverts
[16/01/2008|15:32] C:\Program Files\AnglaisFacile.com
[13/09/2007|10:55] C:\Program Files\Apple Software Update
[17/02/2007|14:48] C:\Program Files\BAE
[24/04/2007|18:23] C:\Program Files\Belgacom
[27/02/2008|21:05] C:\Program Files\bfgclient
[08/02/2008|22:10] C:\Program Files\Bonjour
[21/12/2007|20:39] C:\Program Files\Boonty
[05/01/2008|18:26] C:\Program Files\BoontyGames
[17/02/2007|14:40] C:\Program Files\Broadcom
[21/02/2007|19:53] C:\Program Files\CCleaner
[03/12/2007|00:20] C:\Program Files\CDBurnerXP
[07/02/2008|04:02] C:\Program Files\Cdrom Five
[21/01/2008|20:27] C:\Program Files\Circle Developement
[14/12/2007|21:56] C:\Program Files\Common Files
[20/08/2004|11:35] C:\Program Files\ComPlus Applications
[16/01/2008|15:32] C:\Program Files\Conference
[21/06/2007|10:25] C:\Program Files\Dell
[17/02/2007|14:48] C:\Program Files\Dell Support
[17/09/2007|16:59] C:\Program Files\DIFX
[18/09/2007|15:49] C:\Program Files\DivX
[19/12/2007|22:09] C:\Program Files\EA GAMES
[05/03/2008|22:41] C:\Program Files\eMule
[23/02/2008|18:51] C:\Program Files\Fichiers communs
[29/11/2007|18:45] C:\Program Files\filesubmit
[20/02/2008|21:56] C:\Program Files\Gamenext
[06/01/2008|23:40] C:\Program Files\GamesBar
[04/02/2008|12:38] C:\Program Files\Gamevance
[22/02/2008|00:04] C:\Program Files\Google
[13/03/2007|03:15] C:\Program Files\Hewlett-Packard
[13/03/2007|02:50] C:\Program Files\HP
[24/09/2007|10:58] C:\Program Files\ING
[15/12/2007|19:01] C:\Program Files\InstallShield Installation Information
[17/02/2007|14:41] C:\Program Files\InterActual
[14/02/2008|03:10] C:\Program Files\Internet Explorer
[05/03/2008|22:12] C:\Program Files\InternetGameBox
[08/02/2008|22:12] C:\Program Files\iPod
[08/02/2008|22:12] C:\Program Files\iTunes
[26/03/2007|04:19] C:\Program Files\Jasc Software Inc
[15/11/2007|14:22] C:\Program Files\Java
[21/12/2007|17:47] C:\Program Files\Labtec
[06/02/2008|10:28] C:\Program Files\Livre Album Fuji Photo
[07/02/2008|19:50] C:\Program Files\Logitech
[24/06/2007|18:39] C:\Program Files\McAfee.com
[17/02/2007|14:37] C:\Program Files\Messenger
[16/12/2007|20:53] C:\Program Files\Messenger Plus! Live
[28/01/2008|16:53] C:\Program Files\MessengerPlus! 3
[24/07/2007|19:16] C:\Program Files\Microsoft Baseline Security Analyzer 2
[25/07/2007|12:22] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[03/03/2008|21:38] C:\Program Files\Microsoft Carioca
[20/08/2004|11:37] C:\Program Files\microsoft frontpage
[19/12/2007|20:38] C:\Program Files\Microsoft Office
[23/02/2008|15:39] C:\Program Files\Microsoft Silverlight
[30/09/2007|19:28] C:\Program Files\Microsoft SQL Server Compact Edition
[17/12/2007|16:43] C:\Program Files\Microsoft Visual Studio
[19/12/2007|20:20] C:\Program Files\Microsoft Visual Studio 8
[17/12/2007|16:43] C:\Program Files\Microsoft Works
[17/12/2007|16:42] C:\Program Files\Microsoft.NET
[28/02/2008|21:37] C:\Program Files\Mortimer Beckett And The Secrets Of Spooky Manor
[20/08/2004|11:35] C:\Program Files\Movie Maker
[07/03/2008|19:55] C:\Program Files\Mozilla Firefox
[19/12/2007|20:26] C:\Program Files\MSBuild
[20/08/2004|11:34] C:\Program Files\MSN
[01/09/2007|20:25] C:\Program Files\MSN Adder
[20/08/2004|11:34] C:\Program Files\MSN Gaming Zone
[28/02/2008|21:37] C:\Program Files\MSN Messenger
[07/02/2008|21:42] C:\Program Files\MSN Pictures Displayer
[21/02/2007|21:53] C:\Program Files\MSXML 4.0
[06/12/2007|22:02] C:\Program Files\Multi_Media
[20/08/2004|11:35] C:\Program Files\NetMeeting
[24/07/2007|20:19] C:\Program Files\Netscape
[17/09/2007|16:59] C:\Program Files\Nokia
[20/09/2007|18:42] C:\Program Files\Norton Internet Security
[29/11/2007|14:58] C:\Program Files\OneStepSearch
[20/08/2004|11:34] C:\Program Files\Online Services
[13/06/2007|12:05] C:\Program Files\Outlook Express
[04/02/2008|12:38] C:\Program Files\Overland
[17/09/2007|16:59] C:\Program Files\PC Connectivity Solution
[28/11/2007|23:19] C:\Program Files\PCMaid
[02/10/2007|23:12] C:\Program Files\Plus!
[17/09/2007|22:08] C:\Program Files\PMsn Paraiso
[08/02/2008|22:09] C:\Program Files\QuickTime
[22/02/2008|20:39] C:\Program Files\Radio Fr Solo
[05/01/2008|18:26] C:\Program Files\RayV
[16/12/2007|17:45] C:\Program Files\Real
[17/09/2007|22:20] C:\Program Files\ReflexiveArcade
[13/02/2008|15:01] C:\Program Files\River Past
[18/09/2007|12:25] C:\Program Files\RngInterstitial.dll
[23/02/2007|04:20] C:\Program Files\Roxio
[20/08/2004|11:35] C:\Program Files\Services en ligne
[17/02/2007|14:39] C:\Program Files\Sigmatel
[24/07/2007|19:17] C:\Program Files\SiSoftware
[29/11/2007|17:26] C:\Program Files\SlySoft
[17/02/2007|14:44] C:\Program Files\Sonic
[15/11/2007|14:18] C:\Program Files\Steam
[24/04/2007|18:23] C:\Program Files\SupportSoft
[12/02/2008|11:00] C:\Program Files\Symantec
[06/03/2007|16:37] C:\Program Files\TechSmith
[28/12/2007|18:20] C:\Program Files\T‚l‚chargeur de The Secrets of Da Vinci
[27/02/2008|21:05] C:\Program Files\temp01
[05/03/2008|18:30] C:\Program Files\tgtsoft
[04/02/2008|12:38] C:\Program Files\Thumbs.db
[28/02/2008|20:33] C:\Program Files\TuneUp Utilities 2004
[14/10/2007|23:12] C:\Program Files\UltimateZip 2007
[17/07/2007|14:40] C:\Program Files\Uninstall Information
[27/06/2007|02:22] C:\Program Files\Usability Sciences
[26/11/2007|00:27] C:\Program Files\Veoh Networks
[25/07/2007|19:31] C:\Program Files\VideoLAN
[24/07/2007|20:23] C:\Program Files\Viewpoint
[05/03/2008|18:25] C:\Program Files\ViVi Cursor 2.0
[08/03/2007|20:53] C:\Program Files\VSAdd-in
[22/12/2007|10:21] C:\Program Files\VSO
[06/02/2008|10:54] C:\Program Files\Wedding Album Maker Gold
[29/08/2007|23:02] C:\Program Files\Winamp
[30/09/2007|19:27] C:\Program Files\Windows Desktop Search
[28/02/2008|03:01] C:\Program Files\Windows Live
[23/02/2008|18:58] C:\Program Files\Windows Live Favorites
[30/08/2007|23:03] C:\Program Files\Windows Live Safety Center
[23/02/2008|18:59] C:\Program Files\Windows Live Toolbar
[22/02/2007|02:32] C:\Program Files\Windows Media Connect 2
[29/01/2008|12:20] C:\Program Files\Windows Media Player
[20/08/2004|11:34] C:\Program Files\Windows NT
[20/08/2004|11:35] C:\Program Files\WindowsUpdate
[06/03/2008|06:13] C:\Program Files\WinRAR
[20/08/2004|11:37] C:\Program Files\xerox
[16/12/2007|21:44] C:\Program Files\Yahoo!
[05/03/2008|21:51] C:\Program Files\Zylom Games

------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------

[23/02/2008|18:51] C:\Program Files\Fichiers communs\.
[23/02/2008|18:51] C:\Program Files\Fichiers communs\..
[24/02/2007|19:37] C:\Program Files\Fichiers communs\Adobe
[01/09/2007|10:09] C:\Program Files\Fichiers communs\Apple
[26/10/2007|15:21] C:\Program Files\Fichiers communs\BOONTY Shared
[22/02/2007|10:38] C:\Program Files\Fichiers communs\Designer
[10/06/2007|12:30] C:\Program Files\Fichiers communs\HP
[07/02/2008|19:50] C:\Program Files\Fichiers communs\InstallShield
[15/11/2007|14:21] C:\Program Files\Fichiers communs\Java
[07/02/2008|19:50] C:\Program Files\Fichiers communs\Logitech
[23/02/2008|18:51] C:\Program Files\Fichiers communs\Microsoft Shared
[20/08/2004|11:35] C:\Program Files\Fichiers communs\MSSoap
[17/09/2007|16:59] C:\Program Files\Fichiers communs\Nokia
[20/08/2004|11:30] C:\Program Files\Fichiers communs\ODBC
[17/09/2007|16:59] C:\Program Files\Fichiers communs\PCSuite
[16/12/2007|17:46] C:\Program Files\Fichiers communs\Real
[13/02/2008|15:01] C:\Program Files\Fichiers communs\River Past
[17/02/2007|14:43] C:\Program Files\Fichiers communs\Roxio Shared
[20/08/2004|11:35] C:\Program Files\Fichiers communs\Services
[23/02/2007|04:20] C:\Program Files\Fichiers communs\Sonic Shared
[20/08/2004|11:30] C:\Program Files\Fichiers communs\SpeechEngines
[24/04/2007|18:23] C:\Program Files\Fichiers communs\Supportsoft
[07/03/2008|20:05] C:\Program Files\Fichiers communs\Symantec Shared
[19/12/2007|20:31] C:\Program Files\Fichiers communs\System
[23/02/2008|18:56] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[28/02/2008|20:32] C:\Program Files\Fichiers communs\Wise Installation Wizard
[16/12/2007|17:46] C:\Program Files\Fichiers communs\xing shared

----------------------[ Recherche avec S_Lop ]---------------------

Aucun fichier / dossier Lop trouvé !

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

C:\DOCUME~1\ALLUSE~1\APPLIC~1\part dead amok eggs
C:\DOCUME~1\ALLUSE~1\APPLIC~1\part dead amok eggs\Funk Tool.exe
C:\Program Files\Adverts
C:\Program Files\Circle Developement
C:\Program Files\Multi_Media
C:\Program Files\Multi_Media\INSTALL.LOG
C:\Program Files\Multi_Media\tbMul0.dll
C:\Program Files\Multi_Media\tbMul1.dll
C:\Program Files\Multi_Media\tbMult.dll
C:\Program Files\Multi_Media\toolbar.cfg
C:\Program Files\Multi_Media\UNWISE.EXE
C:\WINDOWS\Tasks\8570E0C081739A78.job

----------------------[ Verification du Registre ]----------------------

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

..... OK !

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts MODIFIE

127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD
127.0.0.1 download.errorsafe.com ## added by CiD
127.0.0.1 download.systemdoctor.com ## added by CiD
127.0.0.1 download.winantispyware.com ## added by CiD
127.0.0.1 download.windrivecleaner.com ## added by CiD
127.0.0.1 download.winfixer.com ## added by CiD
127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 es.winantivirus.com ## added by CiD
127.0.0.1 fr.winantivirus.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 go.winantivirus.com ## added by CiD
127.0.0.1 hk.winantivirus.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 instlog.winantivirus.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 kb.winantivirus.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 secure.winantivirus.com ## added by CiD
127.0.0.1 support.winantivirus.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 ulog.winantivirus.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 utils.winantivirus.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winantivirus.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 www.drivecleaner.com ## added by CiD
127.0.0.1 www.errorprotector.com ## added by CiD
127.0.0.1 www.errorsafe.com ## added by CiD
127.0.0.1 www.systemdoctor.com ## added by CiD
127.0.0.1 www.utils.winfixer.com ## added by CiD
127.0.0.1 www.win-anti-virus-pro.com ## added by CiD
127.0.0.1 www.win-virus-pro.com ## added by CiD
127.0.0.1 www.winantispam.com ## added by CiD
127.0.0.1 www.winantispy.com ## added by CiD
127.0.0.1 www.winantispyware.com ## added by CiD
127.0.0.1 www.winantivirus.com ## added by CiD
127.0.0.1 www.winantiviruspro.com ## added by CiD
127.0.0.1 www.windrivecleaner.com ## added by CiD
127.0.0.1 www.windrivesafe.com ## added by CiD
127.0.0.1 www.winfixer.com ## added by CiD
127.0.0.1 www.winfixer2006.com ## added by CiD
127.0.0.1 www.winsoftware.com ## added by CiD

-> 72 ( 70 ## added by CiD )

/!\ 1 Not 127.0.0.1 !!

----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-03-07 20:07:27
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden files ...
scan completed successfully
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------

C:\WINDOWS\pack.epk
C:\WINDOWS\system32\nvs2.inf
! EGDACCESS !

C:\WINDOWS\system32\ijjlm.bak1
C:\WINDOWS\system32\pqtss.bak1
C:\WINDOWS\system32\ijjlm.bak2
C:\WINDOWS\system32\pqtss.bak2
C:\WINDOWS\system32\ijjlm.ini2
C:\WINDOWS\system32\pqtss.ini2
! VUNDO Possible !


/!\ [Fich:143][Doss:29] C:\DOCUME~1\Nous\LOCALS~1\Temp
/!\ [Fich:84][Doss:0] C:\DOCUME~1\Nous\Cookies
/!\ [Fich:1349][Doss:8] C:\DOCUME~1\Nous\LOCALS~1\TEMPOR~1\content.IE5

--------------------[ Fin du rapport a 20:07:47,59 ]----------------------

Autres pages sur : probleme pubs cid

7 Mars 2008 20:15:33

Bonsoir :hello: 

Télécharge LopxpMH
- Dézippe-le (clic droit >> Extraire ici).
- Double clique sur le fichier lopxpMH.bat.
- Poste le contenu du rapport qui va s'ouvrir.

;) 
7 Mars 2008 20:55:27

Rapport lopxpMH2 version 2.0 fait à 20:55:01,98 le ven. 07/03/2008
C:\Documents and Settings\Nous\Mes documents\Logiciel\Internet\lopxpMH2\lopxpMH2

******************************************
## Répertoires Application Data

Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 20A5-AEA1

Répertoire de C:\DOCUME~1\All Users\Application Data

20/08/2004 11:30 <REP> .
20/08/2004 11:30 <REP> ..
24/02/2007 19:37 <REP> Adobe
03/12/2007 23:04 <REP> Alawar Stargaze
18/10/2007 22:24 <REP> Aliasworlds
06/02/2008 10:58 <REP> Anvsoft
01/09/2007 10:09 <REP> Apple
26/06/2007 20:32 <REP> Apple Computer
29/01/2008 12:51 <REP> BigFish
18/09/2007 11:08 <REP> BigFishGamesCache
26/10/2007 15:21 <REP> BOONTY
04/12/2007 01:01 <REP> BufferZone
18/12/2007 01:34 <REP> Christmasville
17/02/2007 14:42 <REP> Corel
04/02/2008 10:35 <REP> Dell
23/11/2007 23:30 <REP> EA
29/10/2007 23:05 <REP> Escape From Paradise
22/08/2007 23:05 <REP> FloodLightGames
20/11/2007 23:09 <REP> Fugazo
30/09/2007 21:47 <REP> GamesBar
04/02/2008 00:02 <REP> Go Go Gourmet
30/01/2008 22:20 <REP> Gogii
21/06/2007 22:41 <REP> Google
17/02/2007 14:48 <REP> GTek
19/01/2008 10:58 <REP> HipSoft
24/02/2007 01:43 <REP> HP
17/09/2007 16:58 <REP> Installations
17/02/2007 14:44 <REP> InstallShield
18/08/2007 19:31 <REP> JollyBear
14/08/2007 23:30 <REP> Legacy Interactive
17/02/2007 14:46 <REP> McAfee
17/02/2007 14:45 <REP> McAfee.com
17/02/2007 14:46 <REP> McAfee.com Personal Firewall
10/03/2007 20:41 <REP> Messenger Plus!
20/08/2004 11:30 <REP> Microsoft
15/12/2007 16:41 <REP> Microsoft Help
04/11/2007 21:29 <REP> MinigolfAdventures
06/01/2008 23:44 <REP> MumboJumbo
03/03/2008 21:42 <REP> My Games
24/02/2008 20:45 <REP> MythPeople
21/10/2007 21:47 <REP> n7-89-o9-3r-4t-r9
11/08/2007 19:36 <REP> NannyMania
23/11/2007 23:01 <REP> NeptunesAdve
24/06/2007 21:13 <REP> nView_Profiles
08/08/2007 21:21 <REP> Oberon Games
03/06/2007 22:02 <REP> OBJ META UP BURN
16/12/2007 20:54 <REP> part dead amok eggs
17/09/2007 17:00 <REP> PC Suite
11/08/2007 22:30 <REP> PlayFirst
07/11/2007 23:09 <REP> PrettyGoodGames
13/02/2008 15:01 <REP> River Past G5
24/06/2007 16:27 <REP> Sandlot Games
20/08/2004 11:46 <REP> SBSI
02/01/2008 22:07 <REP> SecretsOfOlympus
17/02/2007 14:44 <REP> Sonic
17/03/2007 21:56 <REP> SpinTop Games
07/03/2008 20:15 <REP> Spybot - Search & Destroy
07/11/2007 23:26 <REP> SugarGames
21/02/2007 18:05 <REP> Support.com
24/04/2007 18:53 <REP> SupportSoft
17/02/2007 14:47 <REP> Symantec
05/04/2007 22:07 <REP> TEMP
13/09/2007 22:41 <REP> TERMINAL Studio
11/10/2007 14:43 <REP> Trymedia
28/02/2008 20:32 <REP> TuneUp Software
29/01/2008 22:21 <REP> Valusoft
21/02/2007 20:20 <REP> Windows Genuine Advantage
29/07/2007 22:31 <REP> WindowsLiveInstaller
29/07/2007 22:30 <REP> WLInstaller
25/02/2007 23:13 <REP> Zylom
15/07/2007 15:46 41 .zreglib
20/08/2004 11:30 62 desktop.ini
24/02/2007 01:35 228 hpzinstall.log
16/12/2007 17:28 1.387 QTSBandwidthCache
4 fichier(s) 1.718 octets
70 Rép(s) 81.524.912.128 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 20A5-AEA1

Répertoire de C:\DOCUME~1\Application Data

Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 20A5-AEA1

Répertoire de C:\DOCUME~1\Default User\Application Data

20/08/2004 11:30 <REP> .
20/08/2004 11:30 <REP> ..
10/02/2008 11:29 <REP> Apple Computer
17/02/2007 14:48 <REP> Gtek
21/02/2007 17:42 <REP> Identities
20/08/2004 11:30 <REP> Microsoft
21/02/2007 17:42 <REP> Symantec
20/08/2004 11:30 62 desktop.ini
1 fichier(s) 62 octets
7 Rép(s) 81.524.908.032 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 20A5-AEA1

Répertoire de C:\DOCUME~1\Default User\Local Settings\Application Data

20/08/2004 11:30 <REP> .
20/08/2004 11:30 <REP> ..
21/02/2007 17:42 <REP> {3248F0A6-6813-11D6-A77B-00B0D0150060}
10/02/2008 11:28 <REP> Apple Computer
21/02/2007 17:42 <REP> ApplicationHistory
21/02/2007 17:42 <REP> Google
20/08/2004 11:37 <REP> Microsoft
21/02/2007 17:42 135 fusioncache.dat
21/02/2007 17:42 35.728 GDIPFONTCACHEV1.DAT
2 fichier(s) 35.863 octets
7 Rép(s) 81.524.908.032 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 20A5-AEA1

Répertoire de C:\DOCUME~1\LocalService\Application Data

20/08/2004 11:41 <REP> .
20/08/2004 11:41 <REP> ..
20/06/2007 22:38 <REP> Adobe
22/02/2007 02:56 <REP> Macromedia
21/02/2007 18:43 <REP> McAfee.com Personal Firewall
20/08/2004 11:41 <REP> Microsoft
02/04/2007 01:31 <REP> Mozilla
0 fichier(s) 0 octets
7 Rép(s) 81.524.908.032 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 20A5-AEA1

Répertoire de C:\DOCUME~1\LocalService\Local Settings\Application Data

20/08/2004 11:41 <REP> .
20/08/2004 11:41 <REP> ..
08/01/2008 08:07 <REP> Apple
20/08/2004 11:41 <REP> Microsoft
02/04/2007 01:31 <REP> Mozilla
0 fichier(s) 0 octets
5 Rép(s) 81.524.908.032 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 20A5-AEA1

Répertoire de C:\DOCUME~1\NetworkService\Application Data

20/08/2004 11:41 <REP> .
20/08/2004 11:41 <REP> ..
30/09/2007 19:28 <REP> Identities
20/08/2004 11:41 <REP> Microsoft
0 fichier(s) 0 octets
4 Rép(s) 81.524.908.032 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 20A5-AEA1

Répertoire de C:\DOCUME~1\NetworkService\Local Settings\Application Data

20/08/2004 11:41 <REP> .
20/08/2004 11:41 <REP> ..
18/09/2007 07:07 <REP> Apple
30/10/2007 08:43 <REP> Help
30/09/2007 19:28 <REP> Identities
20/08/2004 11:41 <REP> Microsoft
0 fichier(s) 0 octets
6 Rép(s) 81.524.908.032 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 20A5-AEA1

Répertoire de C:\DOCUME~1\Nous\Application Data

21/02/2007 17:42 <REP> .
21/02/2007 17:42 <REP> ..
06/02/2008 10:36 <REP> 3D Photo Album Screensaver
17/10/2007 22:30 <REP> Abra Academy2
21/02/2007 17:48 <REP> Adobe
24/02/2007 19:22 <REP> AdobeUM
03/12/2007 23:10 <REP> Alawar
05/03/2008 21:33 <REP> AlwaysNeat
24/02/2007 20:11 <REP> anagramarama
01/09/2007 10:09 <REP> Apple Computer
18/12/2007 00:11 <REP> Aveyond II
24/06/2007 00:05 <REP> Beep Industries
13/09/2007 22:49 <REP> Big Fish Games
29/01/2008 12:50 <REP> BigFish
24/02/2007 20:15 <REP> BitTorrent
14/03/2007 01:57 <REP> BitZipper
03/06/2007 22:02 <REP> Cdrom Five
22/12/2007 15:29 <REP> CopyToDvd
22/02/2007 10:16 <REP> Corel
21/10/2007 23:47 <REP> ctpo
19/12/2007 18:23 <REP> DAEMON Tools
15/08/2007 22:26 <REP> DiVision Studios - Escaping Atlantis
25/02/2007 03:41 <REP> DivX
23/11/2007 23:30 <REP> EA
29/11/2007 18:08 <REP> Eyeblaster
22/08/2007 23:05 <REP> FloodLightGames
14/07/2007 10:47 <REP> Gaijin Ent
21/10/2007 21:47 <REP> GameHouse
13/10/2007 14:07 <REP> Gamelab
03/03/2008 21:42 <REP> gemsweeperextractedgfx
19/12/2007 21:51 <REP> GibbHill Properties Ltd
14/10/2007 22:57 <REP> Google
21/02/2007 17:42 <REP> Gtek
27/02/2007 23:45 <REP> Help
02/01/2008 23:14 <REP> Home Sweet Home
24/07/2007 17:59 <REP> HouseCall 6.6
11/03/2007 02:32 <REP> HP
21/02/2007 17:42 <REP> Identities
24/02/2007 02:01 <REP> Image Zone Express
01/07/2007 23:12 <REP> iWin
10/10/2007 00:44 <REP> Jane s Hotel
26/03/2007 04:18 <REP> Jasc
28/01/2008 22:22 <REP> Land Of Runes
21/02/2007 17:46 <REP> Leadertech
06/10/2007 10:46 <REP> LimeWire
21/02/2007 20:02 <REP> Macromedia
01/09/2007 00:08 <REP> Magic Academy
20/02/2008 20:42 <REP> Magic Seeds
21/02/2007 17:43 <REP> McAfee.com Personal Firewall
21/02/2007 17:42 <REP> Microsoft
22/02/2007 13:56 <REP> Mozilla
27/07/2007 23:18 <REP> My Games
17/09/2007 22:31 <REP> Mysteryville2
17/09/2007 16:59 <REP> Nokia
17/09/2007 17:36 <REP> Nokia Multimedia Player
17/01/2008 10:14 <REP> Oberon Games
21/10/2007 23:46 <REP> Oliver Pearl
17/09/2007 16:59 <REP> PC Suite
11/08/2007 22:30 <REP> PlayFirst
16/12/2007 17:45 <REP> Real
24/07/2007 16:50 <REP> RegistrySmart
13/02/2008 15:01 <REP> River Past G5
16/10/2007 22:24 <REP> Sandlot Games
10/03/2007 19:01 <REP> Screenshot Sender
14/12/2007 22:23 <REP> SecuROM
21/02/2007 22:07 <REP> Sonic
21/02/2007 17:53 <REP> Sun
06/02/2008 23:38 <REP> Super-Cow
21/02/2007 17:42 <REP> Symantec
29/01/2008 12:20 <REP> Todae
28/02/2008 20:33 <REP> TuneUp Software
26/11/2007 21:54 <REP> TypingMaster7
29/01/2008 22:21 <REP> Valusoft
30/09/2007 21:47 <REP> VeniceMysteryData
26/11/2007 21:41 <REP> Viacleaner
17/12/2007 05:29 <REP> Vso
05/10/2007 23:48 <REP> Wildfire
19/12/2007 21:44 <REP> WinButler
02/10/2007 10:20 <REP> Windows Desktop Search
01/09/2007 20:24 <REP> WinRAR
25/02/2007 23:28 <REP> Zylom
21/02/2007 17:42 62 desktop.ini
27/02/2007 05:54 5.632 dvd.bmk
22/02/2007 12:27 427.448 GDIPFONTCACHEV1.DAT
17/12/2007 05:29 87.608 inst.exe
17/09/2007 17:07 135.164 NMM-MetaData.db
17/12/2007 05:29 7.887 pcouffin.cat
17/12/2007 05:29 1.144 pcouffin.inf
17/12/2007 05:30 34 pcouffin.log
17/12/2007 05:29 47.360 pcouffin.sys
9 fichier(s) 712.339 octets
81 Rép(s) 81.524.903.936 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 20A5-AEA1

Répertoire de C:\DOCUME~1\Nous\Local Settings\Application Data

21/02/2007 17:42 <REP> .
21/02/2007 17:42 <REP> ..
21/02/2007 17:42 <REP> {3248F0A6-6813-11D6-A77B-00B0D0150060}
21/02/2007 17:48 <REP> Adobe
13/09/2007 10:55 <REP> Apple
28/05/2007 09:37 <REP> Apple Computer
21/02/2007 17:42 <REP> ApplicationHistory
12/03/2007 14:45 <REP> Ares
03/12/2007 00:43 <REP> CDBurnerXP_Soft
17/01/2008 16:17 <REP> Deployment
25/01/2008 23:06 <REP> FamilyRestaurant
21/02/2007 17:42 <REP> Google
16/08/2007 21:53 <REP> Grubby Games
27/02/2007 23:45 <REP> Help
22/07/2007 22:34 <REP> Identities
18/08/2007 19:31 <REP> JollyBear
21/02/2007 23:08 <REP> Logitech-LS
21/02/2007 17:42 <REP> Microsoft
15/12/2007 16:41 <REP> Microsoft Help
22/02/2007 13:56 <REP> Mozilla
29/11/2007 18:42 <REP> Multi_Media
10/08/2007 22:09 <REP> Oberon Games
15/08/2007 22:21 <REP> Oberon Media
24/01/2008 16:08 <REP> PcCamera
05/08/2007 09:49 <REP> PCHealth
07/11/2007 23:09 <REP> PrettyGoodGames
03/01/2008 01:21 <REP> RayV
22/02/2007 05:39 <REP> Shareaza
17/09/2007 22:21 <REP> SpookyManor
22/02/2007 03:52 <REP> Stardock
08/09/2007 14:46 <REP> Steam
24/04/2007 18:23 <REP> SupportSoft
06/03/2007 16:43 <REP> TechSmith
25/04/2007 20:39 <REP> WMTools Downloaded Files
21/02/2007 18:33 53.248 DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
21/02/2007 17:42 127 fusioncache.dat
21/02/2007 17:42 458.352 GDIPFONTCACHEV1.DAT
08/01/2008 00:20 3.709.240 IconCache.db
4 fichier(s) 4.220.967 octets
34 Rép(s) 81.524.899.840 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 20A5-AEA1

Répertoire de C:\DOCUME~1\Propriétaire

Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 20A5-AEA1

Répertoire de C:\DOCUME~1\Propriétaire\Local Settings\Application Data

21/02/2007 17:43 <REP> .
21/02/2007 17:43 <REP> ..
21/02/2007 17:43 <REP> Google
0 fichier(s) 0 octets
3 Rép(s) 81.524.899.840 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 20A5-AEA1

Répertoire de C:\WINDOWS\system32\config\systemprofile\Application Data

20/08/2004 11:40 <REP> .
20/08/2004 11:40 <REP> ..
21/02/2007 17:42 <REP> Gtek
21/02/2007 17:42 <REP> Identities
21/02/2007 17:43 <REP> McAfee.com Personal Firewall
20/08/2004 11:40 <REP> Microsoft
21/02/2007 17:42 <REP> Symantec
20/08/2004 11:40 62 desktop.ini
1 fichier(s) 62 octets
7 Rép(s) 81.524.899.840 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 20A5-AEA1

Répertoire de C:\WINDOWS\system32\config\systemprofile\Local Settings\Application Data

20/08/2004 11:40 <REP> .
20/08/2004 11:40 <REP> ..
21/02/2007 17:42 <REP> {3248F0A6-6813-11D6-A77B-00B0D0150060}
21/02/2007 17:42 <REP> ApplicationHistory
21/02/2007 17:42 <REP> Google
20/08/2004 11:40 <REP> Microsoft
30/09/2007 19:14 <REP> WindowsLiveInstaller
21/02/2007 17:42 135 fusioncache.dat
21/02/2007 17:42 35.728 GDIPFONTCACHEV1.DAT
21/02/2007 17:42 2.697.724 IconCache.db
3 fichier(s) 2.733.587 octets
7 Rép(s) 81.524.895.744 octets libres

******************************************
Recherche des taches planifiées dans C:\WINDOWS\tasks


C:\WINDOWS\Tasks\8570E0C081739A78.job
s "€!Ø 7 c : \ d o c u m e ~ 1 \ n o u s \ a p p l i c ~ 1 \ c d r o m f ~ 1 \ o k a y e r r o r d a r t . e x e N o u s 0 Ï


C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
`vVKò¾H½aPšzò"F ê <
s €!Ø : C : \ P r o g r a m F i l e s \ A p p l e S o f t w a r e U p d a t e \ S o f t w a r e U p d a t e . e x e - t a s k S Y S T E M 0 ×


C:\WINDOWS\Tasks\Maintenance
Maintenance inexploitable


C:\WINDOWS\Tasks\Norton
Norton inexploitable


C:\WINDOWS\Tasks\Vérifier
Vérifier inexploitable

******************************************
## Répertoires de C:\Program Files

Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 20A5-AEA1

Répertoire de C:\Program Files

07/03/2008 20:15 <REP> .
07/03/2008 20:15 <REP> ..
19/12/2007 21:44 10 .autoreg
07/02/2008 21:39 <REP> ABAEnglishCourse
10/01/2008 17:08 <REP> Adobe
28/01/2008 16:53 <REP> Adverts
16/01/2008 15:32 <REP> AnglaisFacile.com
13/09/2007 10:55 <REP> Apple Software Update
17/02/2007 14:48 <REP> BAE
24/04/2007 18:23 <REP> Belgacom
27/02/2008 21:05 <REP> bfgclient
08/02/2008 22:10 <REP> Bonjour
21/12/2007 20:39 <REP> Boonty
05/01/2008 18:26 <REP> BoontyGames
17/02/2007 14:40 <REP> Broadcom
21/02/2007 19:53 <REP> CCleaner
03/12/2007 00:20 <REP> CDBurnerXP
07/02/2008 04:02 <REP> Cdrom Five
21/01/2008 20:27 <REP> Circle Developement
14/12/2007 21:56 <REP> Common Files
20/08/2004 11:35 <REP> ComPlus Applications
16/01/2008 15:32 <REP> Conference
21/06/2007 10:25 <REP> Dell
17/02/2007 14:48 <REP> Dell Support
17/09/2007 16:59 <REP> DIFX
18/09/2007 15:49 <REP> DivX
19/12/2007 22:09 <REP> EA GAMES
05/03/2008 22:41 <REP> eMule
23/02/2008 18:51 <REP> Fichiers communs
29/11/2007 18:45 <REP> filesubmit
20/02/2008 21:56 <REP> Gamenext
06/01/2008 23:40 <REP> GamesBar
04/02/2008 12:38 <REP> Gamevance
22/02/2008 00:04 <REP> Google
13/03/2007 03:15 <REP> Hewlett-Packard
13/03/2007 02:50 <REP> HP
24/09/2007 10:58 <REP> ING
17/02/2007 14:41 <REP> InterActual
14/02/2008 03:10 <REP> Internet Explorer
05/03/2008 22:12 <REP> InternetGameBox
08/02/2008 22:12 <REP> iPod
08/02/2008 22:12 <REP> iTunes
26/03/2007 04:19 <REP> Jasc Software Inc
15/11/2007 14:22 <REP> Java
21/12/2007 17:47 <REP> Labtec
06/02/2008 10:28 <REP> Livre Album Fuji Photo
07/02/2008 19:50 <REP> Logitech
24/06/2007 18:39 <REP> McAfee.com
17/02/2007 14:37 <REP> Messenger
16/12/2007 20:53 <REP> Messenger Plus! Live
28/01/2008 16:53 <REP> MessengerPlus! 3
24/07/2007 19:16 <REP> Microsoft Baseline Security Analyzer 2
25/07/2007 12:22 <REP> Microsoft CAPICOM 2.1.0.2
03/03/2008 21:38 <REP> Microsoft Carioca
20/08/2004 11:37 <REP> microsoft frontpage
19/12/2007 20:38 <REP> Microsoft Office
23/02/2008 15:39 <REP> Microsoft Silverlight
30/09/2007 19:28 <REP> Microsoft SQL Server Compact Edition
17/12/2007 16:43 <REP> Microsoft Visual Studio
19/12/2007 20:20 <REP> Microsoft Visual Studio 8
17/12/2007 16:43 <REP> Microsoft Works
17/12/2007 16:42 <REP> Microsoft.NET
28/02/2008 21:37 <REP> Mortimer Beckett And The Secrets Of Spooky Manor
20/08/2004 11:35 <REP> Movie Maker
07/03/2008 20:53 <REP> Mozilla Firefox
19/12/2007 20:26 <REP> MSBuild
20/08/2004 11:34 <REP> MSN
01/09/2007 20:25 <REP> MSN Adder
20/08/2004 11:34 <REP> MSN Gaming Zone
28/02/2008 21:37 <REP> MSN Messenger
07/02/2008 21:42 <REP> MSN Pictures Displayer
21/02/2007 21:53 <REP> MSXML 4.0
06/12/2007 22:02 <REP> Multi_Media
20/08/2004 11:35 <REP> NetMeeting
24/07/2007 20:19 <REP> Netscape
17/09/2007 16:59 <REP> Nokia
20/09/2007 18:42 <REP> Norton Internet Security
29/11/2007 14:58 <REP> OneStepSearch
20/08/2004 11:34 <REP> Online Services
13/06/2007 12:05 <REP> Outlook Express
04/02/2008 12:38 <REP> Overland
17/09/2007 16:59 <REP> PC Connectivity Solution
28/11/2007 23:19 <REP> PCMaid
02/10/2007 23:12 <REP> Plus!
17/09/2007 22:08 <REP> PMsn Paraiso
08/02/2008 22:09 <REP> QuickTime
22/02/2008 20:39 <REP> Radio Fr Solo
05/01/2008 18:26 <REP> RayV
16/12/2007 17:45 <REP> Real
17/09/2007 22:20 <REP> ReflexiveArcade
13/02/2008 15:01 <REP> River Past
18/09/2007 12:25 774.144 RngInterstitial.dll
23/02/2007 04:20 <REP> Roxio
20/08/2004 11:35 <REP> Services en ligne
17/02/2007 14:39 <REP> Sigmatel
24/07/2007 19:17 <REP> SiSoftware
29/11/2007 17:26 <REP> SlySoft
17/02/2007 14:44 <REP> Sonic
07/03/2008 20:15 <REP> Spybot - Search & Destroy
15/11/2007 14:18 <REP> Steam
24/04/2007 18:23 <REP> SupportSoft
12/02/2008 11:00 <REP> Symantec
06/03/2007 16:37 <REP> TechSmith
28/12/2007 18:20 <REP> Téléchargeur de The Secrets of Da Vinci
27/02/2008 21:05 0 temp01
05/03/2008 18:30 <REP> tgtsoft
28/02/2008 20:33 <REP> TuneUp Utilities 2004
14/10/2007 23:12 <REP> UltimateZip 2007
27/06/2007 02:22 <REP> Usability Sciences
26/11/2007 00:27 <REP> Veoh Networks
25/07/2007 19:31 <REP> VideoLAN
24/07/2007 20:23 <REP> Viewpoint
05/03/2008 18:25 <REP> ViVi Cursor 2.0
08/03/2007 20:53 <REP> VSAdd-in
22/12/2007 10:21 <REP> VSO
06/02/2008 10:54 <REP> Wedding Album Maker Gold
29/08/2007 23:02 <REP> Winamp
30/09/2007 19:27 <REP> Windows Desktop Search
28/02/2008 03:01 <REP> Windows Live
23/02/2008 18:58 <REP> Windows Live Favorites
30/08/2007 23:03 <REP> Windows Live Safety Center
23/02/2008 18:59 <REP> Windows Live Toolbar
22/02/2007 02:32 <REP> Windows Media Connect 2
29/01/2008 12:20 <REP> Windows Media Player
20/08/2004 11:34 <REP> Windows NT
06/03/2008 06:13 <REP> WinRAR
20/08/2004 11:37 <REP> xerox
16/12/2007 21:44 <REP> Yahoo!
05/03/2008 21:51 <REP> Zylom Games
3 fichier(s) 774.154 octets
126 Rép(s) 81.524.891.648 octets libres

******************************************
## Popups autorisées

* Internet Explorer

! REG.EXE VERSION 3.0

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\New Windows\Allow
*.zylom.com REG_BINARY 00000000
fr.radiocontact.be REG_BINARY
host-domain-lookup.com REG_SZ
www.host-domain-lookup.com REG_SZ
searchweb2.com REG_SZ
www.searchweb2.com REG_SZ
www.skyrock.fm REG_BINARY
www.mmmora.be REG_BINARY
www.tfou.fr REG_BINARY
*.mail.live.com REG_BINARY
shokora.references.be REG_BINARY
www.pedigree.fr REG_BINARY
www.parano.be REG_BINARY

* Mozilla Firefox (1 autorisé 2 interdit)

---------- C:\DOCUMENTS AND SETTINGS\NOUS\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\ZS70X2DO.DEFAULT\HOSTPERM.1
host popup 1 www.sansfamille.be
host popup 1 www.pagesdor.be
host popup 1 www.tfou.fr
host popup 1 www.happybodytoyou.com
host popup 1 www.mangeusesdhomme.com
host popup 1 www.prizee.com
host popup 1 freeflashplayer.net

******************************************
## Registre

* [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
ford rule REG_SZ C:\DOCUME~1\Nous\APPLIC~1\CDROMF~1\DEBUG BASH LOCKS.exe

******************************************
## Zones de sécurité

* HKCU Domains (4)

* P3P History (5)

******************************************
## Recherche C:\WINDOWS\*.htm, "C:\WINDOWS\*.gif"


*************** Fin du rapport ****************
Contenus similaires
7 Mars 2008 21:03:40

Re-bonsoir :hello: 

Crée un fichier Bloc Notes avec le texte qui se trouve dans l'encadré ci-dessous (copie/colle):

Citation :
REGEDIT4

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\New Windows\Allow]
"host-domain-lookup.com"=-
"www.host-domain-lookup.com"=-
"www.searchweb2.com"=-
"searchweb2.com"=-
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ford rule"=-


- Enregistre ce fichier dans : Bureau
- Nom du fichier : fix.reg
- Type : tous les fichiers !!
- Clique sur Enregistrer
- Quitte le Bloc Notes

Utilisation du fichier: fix.reg :
Double clique sur le fichier (Bureau) / Accepte l'avertissement concernant la fusion / ne pas s'étonner de ne rien voir / valide le message disant que la fusion est terminée.


Télécharge OTMoveIt (Old_Timer)
* Double-clique sur OTMoveIt.exe
* Vérifie que la case « Unregister Dll's and Ocx's » soit bien cochée.
* Copie le texte dans l'encadré ci-dessous, et colle le dans le cadre de OTMoveIt appelé « Paste List of Files/Folders to be moved » .

Citation :
C:\DOCUME~1\Nous\APPLIC~1\CDROMF~1\
C:\WINDOWS\Tasks\8570E0C081739A78.job


* Clique sur MoveIt!.
* Quand le résultat apparaît dans le cadre « Results » , clique sur « Exit ».
* Puis redémarre le PC.
* Enfin, envoie le rapport de OTMoveIt situé dans C:\_OTMoveIt\MovedFiles.


Puis,

Télécharge HijackThis (Merjin)
- Installe-le.
- Renomme-le en Scanner.
- Ferme toutes les fenêtres.
- Cliques sur « Do a system Scan Only and Save a Logfile »
- Un rapport apparaît à l’écran.
- Copie/Colle l’ensemble du rapport ici.

;) 
7 Mars 2008 21:13:02

'soir ,

Post pour suivre la discussion ..
7 Mars 2008 21:18:16

Salut !

Pas de problème, la confiance ça se gagne c'est ça ? :p 
7 Mars 2008 23:07:35

Re


[Custom Input]
< C:\DOCUME~1\Nous\APPLIC~1\CDROMF~1\ >
Folder C:\DOCUME~1\Nous\APPLIC~1\CDROMF~1\ not found.
< C:\WINDOWS\Tasks\8570E0C081739A78.job >
C:\WINDOWS\Tasks\8570E0C081739A78.job moved successfully.

OTMoveIt2 v1.0.20 log created on 03072008_230050
7 Mars 2008 23:10:34

Voila le deuxième rapport:


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 23:09:54, on 7/03/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16608)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
C:\Program Files\CDBurnerXP\NMSAccessU.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Dell\Media Experience\DMXLauncher.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
C:\Program Files\Labtec\Desktop\V5.1\moffice.exe
C:\Program Files\Labtec\Keyboard\V5.1\kbdap32a.exe
C:\Program Files\Labtec\Keyboard\V5.1\MOUSE32A.EXE
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\WINDOWS\stsystra.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Veoh Networks\Veoh\VeohClient.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\ViVi Cursor 2.0\ViVi_Cursor.exe
C:\Program Files\tgtsoft\StyleXP\StyleXP.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Radio Fr Solo\Radio_Fr_Solo.exe
C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.skynet.be/search/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.be/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Page_URL = www.google.be/ig/dell?hl=fr&client=dell-row&channel=be&...
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
R3 - URLSearchHook: Multi Media Toolbar - {b5146c40-189a-4311-bda9-fbae3e023187} - C:\Program Files\Multi_Media\tbMul0.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - C:\Program Files\Fichiers communs\Symantec Shared\coShared\Browser\1.5\NppBho.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {41D68ED8-4CFF-4115-88A6-6EBB8AF19000} - (no file)
O2 - BHO: (no name) - {471AFE4E-A88B-47B6-8373-48798DE10208} - (no file)
O2 - BHO: (no name) - {5A6192F5-8387-4AD9-9DE7-7FB6C2875FD4} - (no file)
O2 - BHO: (no name) - {6F282B65-56BF-4BD1-A8B2-A4449A05863D} - (no file)
O2 - BHO: Gamevance Text - {7370F91F-6994-4595-9949-601FA2261C8D} - C:\Program Files\Gamevance\gvtl.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: Multi Media Toolbar - {b5146c40-189a-4311-bda9-fbae3e023187} - C:\Program Files\Multi_Media\tbMul0.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: TGTSoft Explorer Toolbar Changer - {C333CF63-767F-4831-94AC-E683D962C63C} - C:\Program Files\TGTSoft\StyleXP\TGT_BHO.dll
O2 - BHO: CBrowserHelperObject Object - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\BAE\BAE.dll
O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
O3 - Toolbar: Show Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - C:\Program Files\Fichiers communs\Symantec Shared\coShared\Browser\1.5\UIBHO.dll
O3 - Toolbar: (no name) - {6F282B65-56BF-4BD1-A8B2-A4449A05863D} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Multi Media Toolbar - {b5146c40-189a-4311-bda9-fbae3e023187} - C:\Program Files\Multi_Media\tbMul0.dll
O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [DMXLauncher] C:\Program Files\Dell\Media Experience\DMXLauncher.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton Internet Security\osCheck.exe"
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [FLMOFFICE4DMOUSE] C:\Program Files\Labtec\Desktop\V5.1\moffice.exe
O4 - HKLM\..\Run: [OFFICEKB] C:\Program Files\Labtec\Keyboard\V5.1\kbdap32a.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Veoh] "C:\Program Files\Veoh Networks\Veoh\VeohClient.exe" /VeohHide
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [ViVi Cursor] "C:\Program Files\ViVi Cursor 2.0\ViVi_Cursor.exe" -start
O4 - HKCU\..\Run: [STYLEXP] C:\Program Files\tgtsoft\StyleXP\StyleXP.exe -Hide
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: (no name) - {1A93C934-025B-4c3a-B38E-9654A7003239} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: GamesBar - {1A93C934-025B-4c3a-B38E-9654A7003239} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {39FD89BF-D3F1-45b6-BB56-3582CCF489E1} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: McAfee Anti-Phishing Filter - {39FD89BF-D3F1-45b6-BB56-3582CCF489E1} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986....
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin...
O16 - DPF: {315B0BFB-2BD4-481B-80A3-A9B80727C61B} (WebIQ Engine Application Object) - http://webiq005.webiqonline.com/WebIQ/DataServer/Pub/Da...{896A23A1-5821-4609-A6C6-6D5536C585C9}
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.mail.live.com/mail/w1/resources/MSNPUpld.ca...
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-BE/a-UNO1/GAME_UNO1.ca...
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8....
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common...
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
O16 - DPF: {CAFEEFAC-0014-0001-0002-ABCDEFFEDCBA} (Environnement d'exécution Java 1.4.1_02) -
O20 - Winlogon Notify: mljiigh - mljiigh.dll (file missing)
O20 - Winlogon Notify: mljji - C:\WINDOWS\system32\mljji.dll (file missing)
O20 - Winlogon Notify: sstqp - C:\WINDOWS\system32\sstqp.dll (file missing)
O20 - Winlogon Notify: yayvusp - yayvusp.dll (file missing)
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\VAScanner\comHost.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Symantec IS Password Validation (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\isPwdSvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: McAfee WSC Integration (McDetect.exe) - Logitech Inc. - (no file)
O23 - Service: McAfee.com McShield (McShield) - Logitech Inc. - (no file)
O23 - Service: McAfee Task Scheduler (McTskshd.exe) - Logitech Inc. - (no file)
O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - Logitech Inc. - (no file)
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee - (no file)
O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: SiSoftware Database Agent Service (SandraDataSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a\Win32\RpcDataSrv.exe
O23 - Service: SiSoftware Sandra Agent Service (SandraTheSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a\RpcSandraSrv.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: StyleXPService - Unknown owner - C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2004\WinStylerThemeSvc.exe

--
End of file - 16908 bytes
7 Mars 2008 23:14:05

Re-Bonsoir :hello: 

Au début, tu as utilisé Lop S&D option 1. Maintenant passe à l'option 2 puis poste le rapport. Avec un nouveau rapport HijackThis. ;) 
7 Mars 2008 23:18:00

Voici le 1er avec Lop S&D
-----------------------------[ Lop S&D 4.0.4 ]---------------------------

[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : Nous ] [ "C:\Lop SD" ]
[ ven. 07/03/2008 | 23:15:58,23 ] [ PC : DCFRXR2J ]
[ MAJ : 05-03-2008 | 13:30 ]

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////

Supprimé! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\part dead amok eggs\Funk Tool.exe
Supprimé! - C:\Program Files\Multi_Media\INSTALL.LOG
Supprimé! - C:\Program Files\Multi_Media\tbMul0.dll
Supprimé! - C:\Program Files\Multi_Media\tbMul1.dll
Supprimé! - C:\Program Files\Multi_Media\tbMult.dll
Supprimé! - C:\Program Files\Multi_Media\toolbar.cfg
Supprimé! - C:\Program Files\Multi_Media\UNWISE.EXE
Supprimé! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\part dead amok eggs
Supprimé! - C:\Program Files\Adverts
Supprimé! - C:\Program Files\Circle Developement
Supprimé! - C:\Program Files\Multi_Media
Restauré! - Fichier Hosts

//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

Supprimé! - C:\Program Files\Boonty
Supprimé! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Boonty
Supprimé! - C:\Program Files\BoontyGames
Supprimé! - C:\Program Files\Viewpoint
Supprimé! - C:\DOCUME~1\Nous\APPLIC~1\WinButler

//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


-------------[ Listing des dossiers dans Application Data ]------------

[07/03/2008|23:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\.
[07/03/2008|23:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\..
[10/09/2007|17:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\.zreglib
[24/02/2007|19:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[03/12/2007|23:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Alawar Stargaze
[04/11/2007|20:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Aliasworlds
[06/02/2008|10:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Anvsoft
[01/09/2007|10:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[08/02/2008|22:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[29/01/2008|12:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BigFish
[27/02/2008|21:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BigFishGamesCache
[04/12/2007|01:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BufferZone
[18/12/2007|01:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Christmasville
[17/02/2007|14:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Corel
[04/02/2008|10:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Dell
[20/08/2004|11:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[23/11/2007|23:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\EA
[29/10/2007|23:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Escape From Paradise
[22/08/2007|23:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FloodLightGames
[20/11/2007|23:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Fugazo
[28/02/2008|21:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar
[04/02/2008|00:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Go Go Gourmet
[30/01/2008|22:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Gogii
[21/06/2007|22:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[17/02/2007|14:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\GTek
[19/01/2008|10:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HipSoft
[24/02/2007|01:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[24/02/2007|01:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hpzinstall.log
[17/09/2007|16:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Installations
[17/02/2007|14:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[20/02/2008|18:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\JollyBear
[14/08/2007|23:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Legacy Interactive
[17/02/2007|14:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee
[21/06/2007|10:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee.com
[22/02/2007|11:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee.com Personal Firewall
[29/08/2007|16:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[23/02/2008|18:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[14/02/2008|03:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Help
[04/11/2007|21:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MinigolfAdventures
[06/01/2008|23:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MumboJumbo
[03/03/2008|21:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\My Games
[24/02/2008|20:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MythPeople
[21/10/2007|21:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\n7-89-o9-3r-4t-r9
[17/02/2008|23:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NannyMania
[23/11/2007|23:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NeptunesAdve
[24/06/2007|21:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
[17/01/2008|10:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Oberon Games
[20/08/2007|21:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\OBJ META UP BURN
[17/09/2007|17:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PC Suite
[03/11/2007|22:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst
[07/11/2007|23:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PrettyGoodGames
[16/12/2007|17:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QTSBandwidthCache
[13/02/2008|15:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\River Past G5
[18/12/2007|00:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sandlot Games
[20/08/2004|11:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[02/01/2008|22:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SecretsOfOlympus
[17/02/2007|14:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
[18/09/2007|11:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SpinTop Games
[07/03/2008|20:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[07/11/2007|23:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SugarGames
[21/02/2007|18:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Support.com
[24/04/2007|18:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SupportSoft
[07/03/2008|22:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[05/03/2008|00:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[13/09/2007|22:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TERMINAL Studio
[11/10/2007|14:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Trymedia
[28/02/2008|20:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TuneUp Software
[29/01/2008|22:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Valusoft
[21/02/2007|20:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[29/07/2007|22:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WindowsLiveInstaller
[23/02/2008|18:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[26/02/2007|00:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom


[10/02/2008|11:29] C:\DOCUME~1\DEFAUL~1\APPLIC~1\.
[10/02/2008|11:29] C:\DOCUME~1\DEFAUL~1\APPLIC~1\..
[10/02/2008|11:29] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Apple Computer
[20/08/2004|11:30] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[17/02/2007|14:48] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Gtek
[20/08/2004|11:41] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[20/08/2004|11:30] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[17/02/2007|14:47] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec

[20/06/2007|22:38] C:\DOCUME~1\LOCALS~1\APPLIC~1\.
[20/06/2007|22:38] C:\DOCUME~1\LOCALS~1\APPLIC~1\..
[20/06/2007|22:38] C:\DOCUME~1\LOCALS~1\APPLIC~1\Adobe
[22/02/2007|02:56] C:\DOCUME~1\LOCALS~1\APPLIC~1\Macromedia
[21/02/2007|18:43] C:\DOCUME~1\LOCALS~1\APPLIC~1\McAfee.com Personal Firewall
[30/09/2007|20:01] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[02/04/2007|01:31] C:\DOCUME~1\LOCALS~1\APPLIC~1\Mozilla

[30/09/2007|19:28] C:\DOCUME~1\NETWOR~1\APPLIC~1\.
[30/09/2007|19:28] C:\DOCUME~1\NETWOR~1\APPLIC~1\..
[30/09/2007|19:28] C:\DOCUME~1\NETWOR~1\APPLIC~1\Identities
[09/10/2007|00:03] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

[07/03/2008|23:16] C:\DOCUME~1\Nous\APPLIC~1\.
[07/03/2008|23:16] C:\DOCUME~1\Nous\APPLIC~1\..
[06/02/2008|10:40] C:\DOCUME~1\Nous\APPLIC~1\3D Photo Album Screensaver
[17/10/2007|22:30] C:\DOCUME~1\Nous\APPLIC~1\Abra Academy2
[19/01/2008|11:17] C:\DOCUME~1\Nous\APPLIC~1\Adobe
[10/01/2008|17:09] C:\DOCUME~1\Nous\APPLIC~1\AdobeUM
[03/12/2007|23:10] C:\DOCUME~1\Nous\APPLIC~1\Alawar
[05/03/2008|21:33] C:\DOCUME~1\Nous\APPLIC~1\AlwaysNeat
[24/02/2007|20:11] C:\DOCUME~1\Nous\APPLIC~1\anagramarama
[01/09/2007|10:09] C:\DOCUME~1\Nous\APPLIC~1\Apple Computer
[18/12/2007|00:11] C:\DOCUME~1\Nous\APPLIC~1\Aveyond II
[24/06/2007|00:05] C:\DOCUME~1\Nous\APPLIC~1\Beep Industries
[13/09/2007|22:49] C:\DOCUME~1\Nous\APPLIC~1\Big Fish Games
[29/01/2008|12:50] C:\DOCUME~1\Nous\APPLIC~1\BigFish
[24/02/2007|20:15] C:\DOCUME~1\Nous\APPLIC~1\BitTorrent
[14/03/2007|01:57] C:\DOCUME~1\Nous\APPLIC~1\BitZipper
[07/02/2008|04:03] C:\DOCUME~1\Nous\APPLIC~1\Cdrom Five
[22/12/2007|15:34] C:\DOCUME~1\Nous\APPLIC~1\CopyToDvd
[24/03/2007|18:51] C:\DOCUME~1\Nous\APPLIC~1\Corel
[21/10/2007|23:47] C:\DOCUME~1\Nous\APPLIC~1\ctpo
[19/12/2007|18:23] C:\DOCUME~1\Nous\APPLIC~1\DAEMON Tools
[20/08/2004|11:30] C:\DOCUME~1\Nous\APPLIC~1\desktop.ini
[15/08/2007|22:28] C:\DOCUME~1\Nous\APPLIC~1\DiVision Studios - Escaping Atlantis
[06/03/2007|21:42] C:\DOCUME~1\Nous\APPLIC~1\DivX
[22/12/2007|15:36] C:\DOCUME~1\Nous\APPLIC~1\dvd.bmk
[23/11/2007|23:30] C:\DOCUME~1\Nous\APPLIC~1\EA
[29/11/2007|18:08] C:\DOCUME~1\Nous\APPLIC~1\Eyeblaster
[22/08/2007|23:05] C:\DOCUME~1\Nous\APPLIC~1\FloodLightGames
[01/11/2007|00:36] C:\DOCUME~1\Nous\APPLIC~1\Gaijin Ent
[29/11/2007|18:06] C:\DOCUME~1\Nous\APPLIC~1\GameHouse
[13/10/2007|14:07] C:\DOCUME~1\Nous\APPLIC~1\Gamelab
[17/03/2007|05:39] C:\DOCUME~1\Nous\APPLIC~1\GDIPFONTCACHEV1.DAT
[03/03/2008|21:56] C:\DOCUME~1\Nous\APPLIC~1\gemsweeperextractedgfx
[19/12/2007|21:51] C:\DOCUME~1\Nous\APPLIC~1\GibbHill Properties Ltd
[22/02/2008|00:06] C:\DOCUME~1\Nous\APPLIC~1\Google
[17/02/2007|14:48] C:\DOCUME~1\Nous\APPLIC~1\Gtek
[27/02/2007|23:45] C:\DOCUME~1\Nous\APPLIC~1\Help
[02/01/2008|23:14] C:\DOCUME~1\Nous\APPLIC~1\Home Sweet Home
[24/07/2007|18:06] C:\DOCUME~1\Nous\APPLIC~1\HouseCall 6.6
[11/03/2007|02:32] C:\DOCUME~1\Nous\APPLIC~1\HP
[05/03/2008|21:33] C:\DOCUME~1\Nous\APPLIC~1\Identities
[14/11/2007|01:20] C:\DOCUME~1\Nous\APPLIC~1\Image Zone Express
[22/12/2007|10:21] C:\DOCUME~1\Nous\APPLIC~1\inst.exe
[18/02/2008|22:46] C:\DOCUME~1\Nous\APPLIC~1\iWin
[10/10/2007|00:44] C:\DOCUME~1\Nous\APPLIC~1\Jane s Hotel
[26/03/2007|04:18] C:\DOCUME~1\Nous\APPLIC~1\Jasc
[28/01/2008|22:49] C:\DOCUME~1\Nous\APPLIC~1\Land Of Runes
[21/02/2007|17:46] C:\DOCUME~1\Nous\APPLIC~1\Leadertech
[28/02/2008|21:37] C:\DOCUME~1\Nous\APPLIC~1\LimeWire
[11/10/2007|19:48] C:\DOCUME~1\Nous\APPLIC~1\Macromedia
[01/09/2007|00:08] C:\DOCUME~1\Nous\APPLIC~1\Magic Academy
[20/02/2008|20:42] C:\DOCUME~1\Nous\APPLIC~1\Magic Seeds
[22/02/2007|11:10] C:\DOCUME~1\Nous\APPLIC~1\McAfee.com Personal Firewall
[03/03/2008|21:39] C:\DOCUME~1\Nous\APPLIC~1\Microsoft
[24/07/2007|20:23] C:\DOCUME~1\Nous\APPLIC~1\Mozilla
[27/07/2007|23:18] C:\DOCUME~1\Nous\APPLIC~1\My Games
[17/09/2007|22:32] C:\DOCUME~1\Nous\APPLIC~1\Mysteryville2
[05/10/2007|21:56] C:\DOCUME~1\Nous\APPLIC~1\NMM-MetaData.db
[18/09/2007|15:32] C:\DOCUME~1\Nous\APPLIC~1\Nokia
[17/09/2007|17:41] C:\DOCUME~1\Nous\APPLIC~1\Nokia Multimedia Player
[17/01/2008|10:14] C:\DOCUME~1\Nous\APPLIC~1\Oberon Games
[21/10/2007|23:46] C:\DOCUME~1\Nous\APPLIC~1\Oliver Pearl
[18/09/2007|15:28] C:\DOCUME~1\Nous\APPLIC~1\PC Suite
[22/12/2007|10:21] C:\DOCUME~1\Nous\APPLIC~1\pcouffin.cat
[22/12/2007|10:21] C:\DOCUME~1\Nous\APPLIC~1\pcouffin.inf
[22/12/2007|10:21] C:\DOCUME~1\Nous\APPLIC~1\pcouffin.log
[22/12/2007|10:21] C:\DOCUME~1\Nous\APPLIC~1\pcouffin.sys
[03/11/2007|22:44] C:\DOCUME~1\Nous\APPLIC~1\PlayFirst
[16/12/2007|17:49] C:\DOCUME~1\Nous\APPLIC~1\Real
[28/02/2008|21:37] C:\DOCUME~1\Nous\APPLIC~1\RegistrySmart
[13/02/2008|15:01] C:\DOCUME~1\Nous\APPLIC~1\River Past G5
[16/10/2007|22:24] C:\DOCUME~1\Nous\APPLIC~1\Sandlot Games
[23/03/2007|21:48] C:\DOCUME~1\Nous\APPLIC~1\Screenshot Sender
[14/12/2007|22:23] C:\DOCUME~1\Nous\APPLIC~1\SecuROM
[21/02/2007|22:07] C:\DOCUME~1\Nous\APPLIC~1\Sonic
[21/02/2007|17:53] C:\DOCUME~1\Nous\APPLIC~1\Sun
[06/02/2008|23:39] C:\DOCUME~1\Nous\APPLIC~1\Super-Cow
[17/02/2007|14:47] C:\DOCUME~1\Nous\APPLIC~1\Symantec
[29/01/2008|12:20] C:\DOCUME~1\Nous\APPLIC~1\Todae
[28/02/2008|20:33] C:\DOCUME~1\Nous\APPLIC~1\TuneUp Software
[26/11/2007|21:54] C:\DOCUME~1\Nous\APPLIC~1\TypingMaster7
[29/01/2008|22:21] C:\DOCUME~1\Nous\APPLIC~1\Valusoft
[30/09/2007|21:47] C:\DOCUME~1\Nous\APPLIC~1\VeniceMysteryData
[26/11/2007|22:10] C:\DOCUME~1\Nous\APPLIC~1\Viacleaner
[28/02/2008|21:37] C:\DOCUME~1\Nous\APPLIC~1\Vso
[05/10/2007|23:48] C:\DOCUME~1\Nous\APPLIC~1\Wildfire
[02/10/2007|10:20] C:\DOCUME~1\Nous\APPLIC~1\Windows Desktop Search
[01/09/2007|20:24] C:\DOCUME~1\Nous\APPLIC~1\WinRAR
[05/03/2008|21:33] C:\DOCUME~1\Nous\APPLIC~1\Zylom


----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

[07/03/2008 17:17][--a------] C:\WINDOWS\tasks\Maintenance en 1 clic.job
[07/03/2008 22:57][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[03/03/2008 20:08][--a------] C:\WINDOWS\tasks\Norton Internet Security Online - Analyse systŠme complŠte - Nous.job
[04/03/2008 08:07][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[07/03/2008 23:02][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 13:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[07/03/2008|23:16] C:\Program Files\.
[07/03/2008|23:16] C:\Program Files\..
[19/12/2007|21:44] C:\Program Files\.autoreg
[07/02/2008|21:39] C:\Program Files\ABAEnglishCourse
[10/01/2008|17:08] C:\Program Files\Adobe
[16/01/2008|15:32] C:\Program Files\AnglaisFacile.com
[13/09/2007|10:55] C:\Program Files\Apple Software Update
[17/02/2007|14:48] C:\Program Files\BAE
[24/04/2007|18:23] C:\Program Files\Belgacom
[27/02/2008|21:05] C:\Program Files\bfgclient
[08/02/2008|22:10] C:\Program Files\Bonjour
[17/02/2007|14:40] C:\Program Files\Broadcom
[21/02/2007|19:53] C:\Program Files\CCleaner
[03/12/2007|00:20] C:\Program Files\CDBurnerXP
[07/02/2008|04:02] C:\Program Files\Cdrom Five
[14/12/2007|21:56] C:\Program Files\Common Files
[20/08/2004|11:35] C:\Program Files\ComPlus Applications
[16/01/2008|15:32] C:\Program Files\Conference
[21/06/2007|10:25] C:\Program Files\Dell
[17/02/2007|14:48] C:\Program Files\Dell Support
[17/09/2007|16:59] C:\Program Files\DIFX
[18/09/2007|15:49] C:\Program Files\DivX
[19/12/2007|22:09] C:\Program Files\EA GAMES
[05/03/2008|22:41] C:\Program Files\eMule
[23/02/2008|18:51] C:\Program Files\Fichiers communs
[29/11/2007|18:45] C:\Program Files\filesubmit
[20/02/2008|21:56] C:\Program Files\Gamenext
[06/01/2008|23:40] C:\Program Files\GamesBar
[04/02/2008|12:38] C:\Program Files\Gamevance
[22/02/2008|00:04] C:\Program Files\Google
[13/03/2007|03:15] C:\Program Files\Hewlett-Packard
[13/03/2007|02:50] C:\Program Files\HP
[24/09/2007|10:58] C:\Program Files\ING
[15/12/2007|19:01] C:\Program Files\InstallShield Installation Information
[17/02/2007|14:41] C:\Program Files\InterActual
[14/02/2008|03:10] C:\Program Files\Internet Explorer
[05/03/2008|22:12] C:\Program Files\InternetGameBox
[08/02/2008|22:12] C:\Program Files\iPod
[08/02/2008|22:12] C:\Program Files\iTunes
[26/03/2007|04:19] C:\Program Files\Jasc Software Inc
[15/11/2007|14:22] C:\Program Files\Java
[21/12/2007|17:47] C:\Program Files\Labtec
[06/02/2008|10:28] C:\Program Files\Livre Album Fuji Photo
[07/02/2008|19:50] C:\Program Files\Logitech
[24/06/2007|18:39] C:\Program Files\McAfee.com
[17/02/2007|14:37] C:\Program Files\Messenger
[16/12/2007|20:53] C:\Program Files\Messenger Plus! Live
[28/01/2008|16:53] C:\Program Files\MessengerPlus! 3
[24/07/2007|19:16] C:\Program Files\Microsoft Baseline Security Analyzer 2
[25/07/2007|12:22] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[03/03/2008|21:38] C:\Program Files\Microsoft Carioca
[20/08/2004|11:37] C:\Program Files\microsoft frontpage
[19/12/2007|20:38] C:\Program Files\Microsoft Office
[23/02/2008|15:39] C:\Program Files\Microsoft Silverlight
[30/09/2007|19:28] C:\Program Files\Microsoft SQL Server Compact Edition
[17/12/2007|16:43] C:\Program Files\Microsoft Visual Studio
[19/12/2007|20:20] C:\Program Files\Microsoft Visual Studio 8
[17/12/2007|16:43] C:\Program Files\Microsoft Works
[17/12/2007|16:42] C:\Program Files\Microsoft.NET
[28/02/2008|21:37] C:\Program Files\Mortimer Beckett And The Secrets Of Spooky Manor
[20/08/2004|11:35] C:\Program Files\Movie Maker
[07/03/2008|23:10] C:\Program Files\Mozilla Firefox
[19/12/2007|20:26] C:\Program Files\MSBuild
[20/08/2004|11:34] C:\Program Files\MSN
[01/09/2007|20:25] C:\Program Files\MSN Adder
[20/08/2004|11:34] C:\Program Files\MSN Gaming Zone
[28/02/2008|21:37] C:\Program Files\MSN Messenger
[07/02/2008|21:42] C:\Program Files\MSN Pictures Displayer
[21/02/2007|21:53] C:\Program Files\MSXML 4.0
[20/08/2004|11:35] C:\Program Files\NetMeeting
[24/07/2007|20:19] C:\Program Files\Netscape
[17/09/2007|16:59] C:\Program Files\Nokia
[20/09/2007|18:42] C:\Program Files\Norton Internet Security
[29/11/2007|14:58] C:\Program Files\OneStepSearch
[20/08/2004|11:34] C:\Program Files\Online Services
[13/06/2007|12:05] C:\Program Files\Outlook Express
[04/02/2008|12:38] C:\Program Files\Overland
[17/09/2007|16:59] C:\Program Files\PC Connectivity Solution
[28/11/2007|23:19] C:\Program Files\PCMaid
[02/10/2007|23:12] C:\Program Files\Plus!
[17/09/2007|22:08] C:\Program Files\PMsn Paraiso
[08/02/2008|22:09] C:\Program Files\QuickTime
[22/02/2008|20:39] C:\Program Files\Radio Fr Solo
[05/01/2008|18:26] C:\Program Files\RayV
[16/12/2007|17:45] C:\Program Files\Real
[17/09/2007|22:20] C:\Program Files\ReflexiveArcade
[13/02/2008|15:01] C:\Program Files\River Past
[18/09/2007|12:25] C:\Program Files\RngInterstitial.dll
[23/02/2007|04:20] C:\Program Files\Roxio
[20/08/2004|11:35] C:\Program Files\Services en ligne
[17/02/2007|14:39] C:\Program Files\Sigmatel
[24/07/2007|19:17] C:\Program Files\SiSoftware
[29/11/2007|17:26] C:\Program Files\SlySoft
[17/02/2007|14:44] C:\Program Files\Sonic
[07/03/2008|20:15] C:\Program Files\Spybot - Search & Destroy
[15/11/2007|14:18] C:\Program Files\Steam
[24/04/2007|18:23] C:\Program Files\SupportSoft
[12/02/2008|11:00] C:\Program Files\Symantec
[06/03/2007|16:37] C:\Program Files\TechSmith
[28/12/2007|18:20] C:\Program Files\T‚l‚chargeur de The Secrets of Da Vinci
[27/02/2008|21:05] C:\Program Files\temp01
[05/03/2008|18:30] C:\Program Files\tgtsoft
[04/02/2008|12:38] C:\Program Files\Thumbs.db
[07/03/2008|23:08] C:\Program Files\Trend Micro
[28/02/2008|20:33] C:\Program Files\TuneUp Utilities 2004
[14/10/2007|23:12] C:\Program Files\UltimateZip 2007
[17/07/2007|14:40] C:\Program Files\Uninstall Information
[27/06/2007|02:22] C:\Program Files\Usability Sciences
[26/11/2007|00:27] C:\Program Files\Veoh Networks
[25/07/2007|19:31] C:\Program Files\VideoLAN
[05/03/2008|18:25] C:\Program Files\ViVi Cursor 2.0
[08/03/2007|20:53] C:\Program Files\VSAdd-in
[22/12/2007|10:21] C:\Program Files\VSO
[06/02/2008|10:54] C:\Program Files\Wedding Album Maker Gold
[29/08/2007|23:02] C:\Program Files\Winamp
[30/09/2007|19:27] C:\Program Files\Windows Desktop Search
[28/02/2008|03:01] C:\Program Files\Windows Live
[23/02/2008|18:58] C:\Program Files\Windows Live Favorites
[30/08/2007|23:03] C:\Program Files\Windows Live Safety Center
[23/02/2008|18:59] C:\Program Files\Windows Live Toolbar
[22/02/2007|02:32] C:\Program Files\Windows Media Connect 2
[29/01/2008|12:20] C:\Program Files\Windows Media Player
[20/08/2004|11:34] C:\Program Files\Windows NT
[20/08/2004|11:35] C:\Program Files\WindowsUpdate
[06/03/2008|06:13] C:\Program Files\WinRAR
[20/08/2004|11:37] C:\Program Files\xerox
[16/12/2007|21:44] C:\Program Files\Yahoo!
[05/03/2008|21:51] C:\Program Files\Zylom Games

------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------

[23/02/2008|18:51] C:\Program Files\Fichiers communs\.
[23/02/2008|18:51] C:\Program Files\Fichiers communs\..
[24/02/2007|19:37] C:\Program Files\Fichiers communs\Adobe
[01/09/2007|10:09] C:\Program Files\Fichiers communs\Apple
[26/10/2007|15:21] C:\Program Files\Fichiers communs\BOONTY Shared
[22/02/2007|10:38] C:\Program Files\Fichiers communs\Designer
[10/06/2007|12:30] C:\Program Files\Fichiers communs\HP
[07/02/2008|19:50] C:\Program Files\Fichiers communs\InstallShield
[15/11/2007|14:21] C:\Program Files\Fichiers communs\Java
[07/02/2008|19:50] C:\Program Files\Fichiers communs\Logitech
[23/02/2008|18:51] C:\Program Files\Fichiers communs\Microsoft Shared
[20/08/2004|11:35] C:\Program Files\Fichiers communs\MSSoap
[17/09/2007|16:59] C:\Program Files\Fichiers communs\Nokia
[20/08/2004|11:30] C:\Program Files\Fichiers communs\ODBC
[17/09/2007|16:59] C:\Program Files\Fichiers communs\PCSuite
[16/12/2007|17:46] C:\Program Files\Fichiers communs\Real
[13/02/2008|15:01] C:\Program Files\Fichiers communs\River Past
[17/02/2007|14:43] C:\Program Files\Fichiers communs\Roxio Shared
[20/08/2004|11:35] C:\Program Files\Fichiers communs\Services
[23/02/2007|04:20] C:\Program Files\Fichiers communs\Sonic Shared
[20/08/2004|11:30] C:\Program Files\Fichiers communs\SpeechEngines
[24/04/2007|18:23] C:\Program Files\Fichiers communs\Supportsoft
[07/03/2008|21:20] C:\Program Files\Fichiers communs\Symantec Shared
[19/12/2007|20:31] C:\Program Files\Fichiers communs\System
[23/02/2008|18:56] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[28/02/2008|20:32] C:\Program Files\Fichiers communs\Wise Installation Wizard
[16/12/2007|17:46] C:\Program Files\Fichiers communs\xing shared

----------------------[ Recherche avec S_Lop ]---------------------

Aucun fichier / dossier Lop trouvé !

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

Aucun fichier / dossier Lop trouvé !

----------------------[ Verification du Registre ]----------------------

..... OK !

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts PROPRE


----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-03-07 23:16:53
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden files ...
scan completed successfully
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------

C:\WINDOWS\pack.epk
! EGDACCESS !

C:\WINDOWS\system32\ijjlm.bak1
C:\WINDOWS\system32\pqtss.bak1
C:\WINDOWS\system32\ijjlm.bak2
C:\WINDOWS\system32\pqtss.bak2
C:\WINDOWS\system32\ijjlm.ini2
C:\WINDOWS\system32\pqtss.ini2
! VUNDO Possible !


/!\ [Fich:169][Doss:32] C:\DOCUME~1\Nous\LOCALS~1\Temp
/!\ [Fich:83][Doss:0] C:\DOCUME~1\Nous\Cookies
/!\ [Fich:1691][Doss:8] C:\DOCUME~1\Nous\LOCALS~1\TEMPOR~1\content.IE5

--------------------[ Fin du rapport a 23:17:20,65 ]----------------------
7 Mars 2008 23:18:39

Le 2ème avec hijackthis

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 23:18:13, on 7/03/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16608)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
C:\Program Files\CDBurnerXP\NMSAccessU.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Dell\Media Experience\DMXLauncher.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
C:\Program Files\Labtec\Desktop\V5.1\moffice.exe
C:\Program Files\Labtec\Keyboard\V5.1\kbdap32a.exe
C:\Program Files\Labtec\Keyboard\V5.1\MOUSE32A.EXE
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\WINDOWS\stsystra.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Veoh Networks\Veoh\VeohClient.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\tgtsoft\StyleXP\StyleXP.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Radio Fr Solo\Radio_Fr_Solo.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.skynet.be/search/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.be/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Page_URL = www.google.be/ig/dell?hl=fr&client=dell-row&channel=be&...
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
R3 - URLSearchHook: Multi Media Toolbar - {b5146c40-189a-4311-bda9-fbae3e023187} - C:\Program Files\Multi_Media\tbMul0.dll (file missing)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - C:\Program Files\Fichiers communs\Symantec Shared\coShared\Browser\1.5\NppBho.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {41D68ED8-4CFF-4115-88A6-6EBB8AF19000} - (no file)
O2 - BHO: (no name) - {471AFE4E-A88B-47B6-8373-48798DE10208} - (no file)
O2 - BHO: (no name) - {5A6192F5-8387-4AD9-9DE7-7FB6C2875FD4} - (no file)
O2 - BHO: (no name) - {6F282B65-56BF-4BD1-A8B2-A4449A05863D} - (no file)
O2 - BHO: Gamevance Text - {7370F91F-6994-4595-9949-601FA2261C8D} - C:\Program Files\Gamevance\gvtl.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: Multi Media Toolbar - {b5146c40-189a-4311-bda9-fbae3e023187} - C:\Program Files\Multi_Media\tbMul0.dll (file missing)
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: TGTSoft Explorer Toolbar Changer - {C333CF63-767F-4831-94AC-E683D962C63C} - C:\Program Files\TGTSoft\StyleXP\TGT_BHO.dll
O2 - BHO: CBrowserHelperObject Object - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\BAE\BAE.dll
O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
O3 - Toolbar: Show Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - C:\Program Files\Fichiers communs\Symantec Shared\coShared\Browser\1.5\UIBHO.dll
O3 - Toolbar: (no name) - {6F282B65-56BF-4BD1-A8B2-A4449A05863D} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Multi Media Toolbar - {b5146c40-189a-4311-bda9-fbae3e023187} - C:\Program Files\Multi_Media\tbMul0.dll (file missing)
O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [DMXLauncher] C:\Program Files\Dell\Media Experience\DMXLauncher.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton Internet Security\osCheck.exe"
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [FLMOFFICE4DMOUSE] C:\Program Files\Labtec\Desktop\V5.1\moffice.exe
O4 - HKLM\..\Run: [OFFICEKB] C:\Program Files\Labtec\Keyboard\V5.1\kbdap32a.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Veoh] "C:\Program Files\Veoh Networks\Veoh\VeohClient.exe" /VeohHide
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [ViVi Cursor] "C:\Program Files\ViVi Cursor 2.0\ViVi_Cursor.exe" -start
O4 - HKCU\..\Run: [STYLEXP] C:\Program Files\tgtsoft\StyleXP\StyleXP.exe -Hide
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: (no name) - {1A93C934-025B-4c3a-B38E-9654A7003239} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: GamesBar - {1A93C934-025B-4c3a-B38E-9654A7003239} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {39FD89BF-D3F1-45b6-BB56-3582CCF489E1} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: McAfee Anti-Phishing Filter - {39FD89BF-D3F1-45b6-BB56-3582CCF489E1} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986....
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin...
O16 - DPF: {315B0BFB-2BD4-481B-80A3-A9B80727C61B} (WebIQ Engine Application Object) - http://webiq005.webiqonline.com/WebIQ/DataServer/Pub/Da...{896A23A1-5821-4609-A6C6-6D5536C585C9}
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.mail.live.com/mail/w1/resources/MSNPUpld.ca...
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-BE/a-UNO1/GAME_UNO1.ca...
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8....
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common...
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
O16 - DPF: {CAFEEFAC-0014-0001-0002-ABCDEFFEDCBA} (Environnement d'exécution Java 1.4.1_02) -
O20 - Winlogon Notify: mljiigh - mljiigh.dll (file missing)
O20 - Winlogon Notify: mljji - C:\WINDOWS\system32\mljji.dll (file missing)
O20 - Winlogon Notify: sstqp - C:\WINDOWS\system32\sstqp.dll (file missing)
O20 - Winlogon Notify: yayvusp - yayvusp.dll (file missing)
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\VAScanner\comHost.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Symantec IS Password Validation (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\isPwdSvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: McAfee WSC Integration (McDetect.exe) - Logitech Inc. - (no file)
O23 - Service: McAfee.com McShield (McShield) - Logitech Inc. - (no file)
O23 - Service: McAfee Task Scheduler (McTskshd.exe) - Logitech Inc. - (no file)
O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - Logitech Inc. - (no file)
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee - (no file)
O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: SiSoftware Database Agent Service (SandraDataSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a\Win32\RpcDataSrv.exe
O23 - Service: SiSoftware Sandra Agent Service (SandraTheSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a\RpcSandraSrv.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: StyleXPService - Unknown owner - C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2004\WinStylerThemeSvc.exe

--
End of file - 16977 bytes
7 Mars 2008 23:21:47

Re :hello: 

On a encore du boulot. J'aimerai que tu fasses ceci, faut que je vérifie quelque chose :

Télécharge Vundofix (Atribune)
- Clique sur Vundofix.exe puis sur Scan for Vundo.
- Lorsque le scan est terminé clique sur Remove Vundo.
- On te demandera si tu veux supprimer les fichiers, clique sur Yes (si le bureau disparaît c’est normal).
- Puis on te demandera si tu veux redémarrer le PC, clique alors sur OK.
- Copie/Colle le rapport sur le forum situé ici : C:\vundofix.txt.
7 Mars 2008 23:42:20

Il me met que je n'est pas de fichiers infecté ???
8 Mars 2008 00:16:39

Okay alors on va continuer.

Tu as plusieurs toolbars, c'est pas vraiment utile ... désinstalle via Ajout/Suppression de programme :

  • TGTSoft Explorer Toolbar
  • Google Toolbar Helper
  • Google Toolbar Notifier
  • Multi Media Toolbar
  • Windows Live Toolbar
  • Show Norton Toolbar
  • Yahoo! Toolbar

    Relance HijackThis et coche les lignes :

    Citation :
    O2 - BHO: (no name) - {41D68ED8-4CFF-4115-88A6-6EBB8AF19000} - (no file)
    O2 - BHO: (no name) - {471AFE4E-A88B-47B6-8373-48798DE10208} - (no file)
    O2 - BHO: (no name) - {5A6192F5-8387-4AD9-9DE7-7FB6C2875FD4} - (no file)
    O2 - BHO: (no name) - {6F282B65-56BF-4BD1-A8B2-A4449A05863D} - (no file)
    O3 - Toolbar: (no name) - {6F282B65-56BF-4BD1-A8B2-A4449A05863D} - (no file)
    O3 - Toolbar: Multi Media Toolbar - {b5146c40-189a-4311-bda9-fbae3e023187} - C:\Program Files\Multi_Media\tbMul0.dll (file missing)
    O9 - Extra button: (no name) - {1A93C934-025B-4c3a-B38E-9654A7003239} - C:\WINDOWS\system32\shdocvw.dll
    O9 - Extra 'Tools' menuitem: GamesBar - {1A93C934-025B-4c3a-B38E-9654A7003239} - C:\WINDOWS\system32\shdocvw.dll
    O16 - DPF: {315B0BFB-2BD4-481B-80A3-A9B80727C61B} (WebIQ Engine Application Object) - http://webiq005.webiqonline.com/We [...] 536C585C9}
    O16 - DPF: {CAFEEFAC-0014-0001-0002-ABCDEFFEDCBA} (Environnement d'exécution Java 1.4.1_02) -
    O20 - Winlogon Notify: mljiigh - mljiigh.dll (file missing)
    O20 - Winlogon Notify: mljji - C:\WINDOWS\system32\mljji.dll (file missing)
    O20 - Winlogon Notify: sstqp - C:\WINDOWS\system32\sstqp.dll (file missing)
    O20 - Winlogon Notify: yayvusp - yayvusp.dll (file missing)
    O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe


    puis clique sur Fix Checked.


    Démarrer > Exécuter > Tapes services.msc > Valide par OK.

    Dans la liste des services, cherche et sélectionne :
  • "Boonty Games".
  • double clique sur la ligne
  • dans Type de démarrage sélectionne Désactiver
  • puis valide la modification.
  • fais de même pour les services suivants :
    McAfee WSC Integration ;
    McAfee.com McShield ; McAfee Task Scheduler ;
    McAfee SecurityCenter Update Manager ;
    McAfee Personal Firewall Service.


    Télécharge Combofix (sUBs)
    - Redémarre en mode sans échec
    - Double clique sur combofix.exe.
    - Appuie sur Y (Yes) pour lancer le scan.
    - Quand le scan sera terminé, enregistre le rapport et redémarre en mode normal.
    - Copie/Colle le rapport sur le forum situé ici C:\Combofix.txt.


    Bonne fin de soirée :hello: 
    8 Mars 2008 00:38:44

    Re,

    Okay merci Eric_71. Pour le coup j'étais persuadé que c'était néfaste. En faisant le rapprochement avec GamesBar.
    8 Mars 2008 13:21:56

    oui mais c'est trop tard maintenant plus d'explorer.exe qui disparait très vite :( 

    car manque le shdocvw.dll
    8 Mars 2008 13:36:17

    Merci de me répondre le plus vite possible
    8 Mars 2008 18:48:29

    Bonjour ,

    Tu peux poster le rapport Combofix ?
    8 Mars 2008 19:24:14

    ComboFix 08-03-07.4 - Nous 2008-03-08 19:14:49.2 - NTFSx86 MINIMAL
    Microsoft Windows XP Édition familiale 5.1.2600.2.1252.33.1036.18.766 [GMT 1:00]
    Endroit: C:\Documents and Settings\Nous\Mes documents\Logiciel\ComboFix.exe

    AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !!
    .

    (((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
    .

    C:\windows\system32\explorer.exe
    .
    ---- Previous Run -------
    .
    C:\Documents and Settings\All Users\Menu Démarrer\Programmes\InternetGameBox
    C:\Documents and Settings\All Users\Menu Démarrer\Programmes\InternetGameBox\Conditions générales.url
    C:\Documents and Settings\All Users\Menu Démarrer\Programmes\InternetGameBox\Confidentialité.url
    C:\Documents and Settings\All Users\Menu Démarrer\Programmes\InternetGameBox\Désinstaller.lnk
    C:\Documents and Settings\All Users\Menu Démarrer\Programmes\InternetGameBox\InternetGameBox.lnk
    C:\Documents and Settings\All Users\Menu Démarrer\Programmes\InternetGameBox\Website.url
    C:\Documents and Settings\Nous\Application Data\inst.exe
    C:\Program Files\internetgamebox
    C:\Program Files\internetgamebox\InternetGameBox.exe
    C:\Program Files\internetgamebox\language
    C:\Program Files\internetgamebox\ressources\AttenteOff.html
    C:\Program Files\internetgamebox\ressources\AttenteOn.html
    C:\Program Files\internetgamebox\ressources\configv2_en.xml
    C:\Program Files\internetgamebox\ressources\configv2_es.xml
    C:\Program Files\internetgamebox\ressources\configv2_fr.xml
    C:\Program Files\internetgamebox\ressources\favoris\defaultv2.swf
    C:\Program Files\internetgamebox\ressources\NoS2F.bin
    C:\Program Files\internetgamebox\skins\skinv2.skn
    C:\Program Files\internetgamebox\uninst.exe
    C:\Program Files\vsadd-in
    C:\WINDOWS\pack.epk
    c:\WINDOWS\system32\ervazrog.dat
    C:\WINDOWS\system32\ervazrog.exe
    C:\WINDOWS\system32\ervazrog_nav.dat
    C:\WINDOWS\system32\ervazrog_navps.dat
    c:\windows\system32\shdocvw.dll

    .
    ((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
    .

    -------\LEGACY_DOMAINSERVICE


    ((((((((((((((((((((((((((((( Fichiers créés 2008-02-08 to 2008-03-08 ))))))))))))))))))))))))))))))))))))
    .

    2008-03-08 02:14 . 2008-03-08 02:14 <REP> d-------- C:\WINDOWS\system32\shdocvw
    2008-03-08 02:06 . 2008-03-08 02:06 <REP> d-------- C:\Program Files\Nouveau dossier
    2008-03-08 01:16 . 2004-08-20 11:30 <REP> d--h----- C:\Documents and Settings\Administrateur\Voisinage réseau
    2008-03-08 01:16 . 2004-08-20 11:30 <REP> d--h----- C:\Documents and Settings\Administrateur\Voisinage d'impression
    2008-03-08 01:16 . 2004-08-20 11:30 <REP> d--h----- C:\Documents and Settings\Administrateur\Modèles
    2008-03-08 01:16 . 2004-08-20 11:42 <REP> dr------- C:\Documents and Settings\Administrateur\Mes documents
    2008-03-08 01:16 . 2004-08-20 11:30 <REP> dr------- C:\Documents and Settings\Administrateur\Menu Démarrer
    2008-03-08 01:16 . 2004-08-20 11:42 <REP> dr------- C:\Documents and Settings\Administrateur\Favoris
    2008-03-08 01:16 . 2004-08-20 11:30 <REP> d-------- C:\Documents and Settings\Administrateur\Bureau
    2008-03-08 01:16 . 2007-02-17 14:47 <REP> d-------- C:\Documents and Settings\Administrateur\Application Data\Symantec
    2008-03-08 01:16 . 2007-02-17 14:48 <REP> d--h----- C:\Documents and Settings\Administrateur\Application Data\Gtek
    2008-03-08 01:16 . 2008-02-10 11:29 <REP> d-------- C:\Documents and Settings\Administrateur\Application Data\Apple Computer
    2008-03-08 00:49 . 2008-03-08 00:49 <REP> d-------- C:\Program Files\Uniblue
    2008-03-08 00:49 . 2008-03-08 00:49 <REP> d-------- C:\Documents and Settings\Nous\Application Data\Uniblue
    2008-03-07 23:23 . 2008-03-07 23:23 <REP> d-------- C:\VundoFix Backups
    2008-03-07 23:08 . 2008-03-07 23:08 <REP> d-------- C:\Program Files\Trend Micro
    2008-03-07 23:00 . 2008-03-07 23:00 <REP> d-------- C:\_OTMoveIt
    2008-03-07 20:15 . 2008-03-07 20:15 <REP> d-------- C:\Program Files\Spybot - Search & Destroy
    2008-03-07 20:15 . 2008-03-07 20:50 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
    2008-03-07 20:06 . 2008-03-07 23:17 <REP> d-------- C:\Lop SD
    2008-03-05 21:33 . 2008-03-05 21:33 <REP> d-------- C:\Documents and Settings\Nous\Application Data\AlwaysNeat
    2008-03-05 18:33 . 2007-02-21 17:42 216 -rahs---- C:\BOOT.BKK
    2008-03-05 18:25 . 2008-03-05 18:25 <REP> d-------- C:\Program Files\ViVi Cursor 2.0
    2008-03-04 02:36 . 2008-03-07 17:41 54,156 --ah----- C:\WINDOWS\QTFont.qfn
    2008-03-04 02:36 . 2008-03-04 02:36 1,409 --a------ C:\WINDOWS\QTFont.for
    2008-03-03 21:42 . 2008-03-03 21:56 <REP> d-------- C:\Documents and Settings\Nous\Application Data\gemsweeperextractedgfx
    2008-03-03 21:42 . 2008-03-03 21:42 <REP> d-------- C:\Documents and Settings\All Users\Application Data\My Games
    2008-03-03 21:38 . 2008-03-03 21:38 <REP> d-------- C:\Program Files\Microsoft Carioca
    2008-02-28 20:33 . 2008-02-28 20:33 <REP> d-------- C:\Program Files\TuneUp Utilities 2004
    2008-02-28 20:33 . 2008-02-28 20:33 <REP> d-------- C:\Documents and Settings\Nous\Application Data\TuneUp Software
    2008-02-28 20:32 . 2008-02-28 20:32 <REP> d-------- C:\Documents and Settings\All Users\Application Data\TuneUp Software
    2008-02-26 18:42 . 2008-02-26 18:42 311,808 --a------ C:\WINDOWS\system32\qromvuzyq.exe
    2008-02-24 20:45 . 2008-02-24 20:45 <REP> d-------- C:\Documents and Settings\All Users\Application Data\MythPeople
    2008-02-23 18:58 . 2008-02-23 18:58 <REP> d-------- C:\Program Files\Windows Live Favorites
    2008-02-23 18:51 . 2008-02-23 18:56 <REP> d--hsc--- C:\Program Files\Fichiers communs\WindowsLiveInstaller
    2008-02-23 15:39 . 2008-02-23 15:39 <REP> d-------- C:\Program Files\Microsoft Silverlight
    2008-02-23 15:34 . 2001-03-17 21:34 22,528 --a------ C:\WINDOWS\system32\WNASPI32.DLL
    2008-02-23 15:34 . 2002-07-17 08:05 16,512 --a------ C:\WINDOWS\system32\drivers\ASPI32.SYS
    2008-02-20 20:42 . 2008-02-20 20:42 <REP> d-------- C:\Documents and Settings\Nous\Application Data\Magic Seeds
    2008-02-13 15:01 . 2008-02-13 15:01 <REP> d-------- C:\Program Files\River Past
    2008-02-13 15:01 . 2008-02-13 15:01 <REP> d-------- C:\Program Files\Fichiers communs\River Past
    2008-02-13 15:01 . 2008-02-13 15:01 <REP> d-------- C:\Documents and Settings\Nous\Application Data\River Past G5
    2008-02-13 15:01 . 2008-02-13 15:03 <REP> d-------- C:\Documents and Settings\All Users\Application Data\River Past G5
    2008-02-13 15:01 . 2008-02-13 15:01 164,972 --a------ C:\WINDOWS\Audio Converter Pro Uninstaller.exe
    2008-02-08 22:12 . 2008-02-08 22:12 <REP> d-------- C:\Program Files\iPod
    2008-02-08 22:11 . 2008-02-08 22:12 <REP> d-------- C:\Program Files\iTunes
    2008-02-08 22:10 . 2008-02-08 22:10 <REP> d-------- C:\Program Files\Bonjour

    .
    (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2008-03-08 12:26 --------- d-----w C:\Documents and Settings\All Users\Application Data\Symantec
    2008-03-08 01:31 --------- d-----w C:\Program Files\eMule
    2008-03-08 00:31 --------- d-----w C:\Program Files\UltimateZip 2007
    2008-03-07 23:30 --------- d-----w C:\Program Files\Fichiers communs\Symantec Shared
    2008-03-05 20:51 --------- d-----w C:\Program Files\Zylom Games
    2008-03-05 20:33 --------- d-----w C:\Documents and Settings\Nous\Application Data\Zylom
    2008-03-05 17:30 --------- d-----w C:\Program Files\tgtsoft
    2008-03-04 23:03 --------- d---a-w C:\Documents and Settings\All Users\Application Data\TEMP
    2008-02-28 20:37 --------- d-----w C:\Program Files\MSN Messenger
    2008-02-28 20:37 --------- d-----w C:\Program Files\Mortimer Beckett And The Secrets Of Spooky Manor
    2008-02-28 20:37 --------- d-----w C:\Documents and Settings\Nous\Application Data\Vso
    2008-02-28 20:37 --------- d-----w C:\Documents and Settings\Nous\Application Data\RegistrySmart
    2008-02-28 20:37 --------- d-----w C:\Documents and Settings\Nous\Application Data\LimeWire
    2008-02-28 20:37 --------- d-----w C:\Documents and Settings\All Users\Application Data\GamesBar
    2008-02-28 19:32 --------- d-----w C:\Program Files\Fichiers communs\Wise Installation Wizard
    2008-02-28 02:01 --------- d-----w C:\Program Files\Windows Live
    2008-02-27 20:05 0 ----a-w C:\Program Files\temp01
    2008-02-27 20:05 --------- d-----w C:\Program Files\bfgclient
    2008-02-27 20:05 --------- d-----w C:\Documents and Settings\All Users\Application Data\BigFishGamesCache
    2008-02-23 17:59 --------- d-----w C:\Program Files\Windows Live Toolbar
    2008-02-23 17:50 --------- d-----w C:\Documents and Settings\All Users\Application Data\WLInstaller
    2008-02-22 19:39 --------- d-----w C:\Program Files\Radio Fr Solo
    2008-02-21 23:04 --------- d-----w C:\Program Files\Google
    2008-02-20 20:56 --------- d-----w C:\Program Files\Gamenext
    2008-02-20 17:20 --------- d-----w C:\Documents and Settings\All Users\Application Data\JollyBear
    2008-02-18 21:46 --------- d-----w C:\Documents and Settings\Nous\Application Data\iWin
    2008-02-17 22:31 --------- d-----w C:\Documents and Settings\All Users\Application Data\NannyMania
    2008-02-14 02:01 --------- d-----w C:\Documents and Settings\All Users\Application Data\Microsoft Help
    2008-02-12 10:00 805 ----a-w C:\WINDOWS\system32\drivers\SYMEVENT.INF
    2008-02-12 10:00 60,800 ----a-w C:\WINDOWS\system32\S32EVNT1.DLL
    2008-02-12 10:00 123,952 ----a-w C:\WINDOWS\system32\drivers\SYMEVENT.SYS
    2008-02-12 10:00 10,740 ----a-w C:\WINDOWS\system32\drivers\SYMEVENT.CAT
    2008-02-12 10:00 --------- d-----w C:\Program Files\Symantec
    2008-02-08 21:11 --------- d-----w C:\Documents and Settings\All Users\Application Data\Apple Computer
    2008-02-08 21:09 --------- d-----w C:\Program Files\QuickTime
    2008-02-07 20:42 --------- d-----w C:\Program Files\MSN Pictures Displayer
    2008-02-07 20:39 --------- d-----w C:\Program Files\ABAEnglishCourse
    2008-02-07 18:50 --------- d-----w C:\Program Files\Logitech
    2008-02-07 18:50 --------- d-----w C:\Program Files\Fichiers communs\Logitech
    2008-02-07 18:50 --------- d-----w C:\Program Files\Fichiers communs\InstallShield
    2008-02-07 03:03 --------- d-----w C:\Documents and Settings\Nous\Application Data\Cdrom Five
    2008-02-07 03:02 --------- d-----w C:\Program Files\Cdrom Five
    2008-02-06 22:39 --------- d-----w C:\Documents and Settings\Nous\Application Data\Super-Cow
    2008-02-06 09:58 --------- d-----w C:\Documents and Settings\All Users\Application Data\Anvsoft
    2008-02-06 09:54 --------- d-----w C:\Program Files\Wedding Album Maker Gold
    2008-02-06 09:40 --------- d-----w C:\Documents and Settings\Nous\Application Data\3D Photo Album Screensaver
    2008-02-06 09:28 --------- d-----w C:\Program Files\Livre Album Fuji Photo
    2008-02-04 11:38 7,168 -csha-w C:\Program Files\Thumbs.db
    2008-02-04 11:38 --------- d-----w C:\Program Files\Overland
    2008-02-04 11:38 --------- d-----w C:\Program Files\Gamevance
    2008-02-04 09:35 --------- d-----w C:\Documents and Settings\All Users\Application Data\Dell
    2008-02-03 23:03 --------- d-----w C:\Documents and Settings\All Users\Application Data\Go Go Gourmet
    2008-02-01 10:17 587,264 ----a-w C:\WINDOWS\WLXPGSS.SCR
    2008-01-30 21:20 --------- d-----w C:\Documents and Settings\All Users\Application Data\Gogii
    2008-01-29 21:21 --------- d-----w C:\Documents and Settings\Nous\Application Data\Valusoft
    2008-01-29 21:21 --------- d-----w C:\Documents and Settings\All Users\Application Data\Valusoft
    2008-01-29 11:51 --------- d-----w C:\Documents and Settings\All Users\Application Data\BigFish
    2008-01-29 11:50 --------- d-----w C:\Documents and Settings\Nous\Application Data\BigFish
    2008-01-29 11:20 --------- d-----w C:\Documents and Settings\Nous\Application Data\Todae
    2008-01-28 21:49 --------- d-----w C:\Documents and Settings\Nous\Application Data\Land Of Runes
    2008-01-28 15:53 --------- d-----w C:\Program Files\MessengerPlus! 3
    2008-01-19 09:58 --------- d-----w C:\Documents and Settings\All Users\Application Data\HipSoft
    2008-01-17 09:14 --------- d-----w C:\Documents and Settings\Nous\Application Data\Oberon Games
    2008-01-17 09:14 --------- d-----w C:\Documents and Settings\All Users\Application Data\Oberon Games
    2008-01-16 14:32 --------- d-----w C:\Program Files\Conference
    2008-01-16 14:32 --------- d-----w C:\Program Files\AnglaisFacile.com
    2008-01-15 08:54 10,537 -c--a-w C:\WINDOWS\system32\drivers\COH_Mon.cat
    2008-01-15 04:28 706 -c--a-w C:\WINDOWS\system32\drivers\COH_Mon.inf
    2008-01-12 17:32 23,904 ----a-w C:\WINDOWS\system32\drivers\COH_Mon.sys
    2008-01-11 05:36 44,544 ----a-w C:\WINDOWS\system32\dllcache\pngfilt.dll
    2008-01-10 16:09 --------- d-----w C:\Documents and Settings\Nous\Application Data\AdobeUM
    2007-12-22 09:21 47,360 ----a-w C:\Documents and Settings\Nous\Application Data\pcouffin.sys
    2007-12-19 22:53 347,136 ----a-w C:\WINDOWS\system32\dllcache\dxtmsft.dll
    2007-12-19 20:44 10 -c--a-w C:\Program Files\.autoreg
    2007-12-18 09:51 179,584 ------w C:\WINDOWS\system32\dllcache\mrxdav.sys
    2007-12-14 21:22 108,144 ----a-w C:\WINDOWS\system32\CmdLineExt.dll
    2007-12-08 05:08 3,592,192 ------w C:\WINDOWS\system32\dllcache\mshtml.dll
    2007-09-18 11:25 774,144 -c--a-w C:\Program Files\RngInterstitial.dll
    2007-03-17 04:39 427,448 -c--a-w C:\Documents and Settings\Nous\Application Data\GDIPFONTCACHEV1.DAT
    2007-02-23 00:44 168 --sh--r C:\WINDOWS\system32\77125CF0E7.sys
    2007-03-13 10:49 450,813 -csh--w C:\WINDOWS\system32\ijjlm.bak1
    2007-03-14 04:33 451,827 -csh--w C:\WINDOWS\system32\ijjlm.bak2
    2007-03-14 20:43 508,936 -csh--w C:\WINDOWS\system32\ijjlm.ini2
    2007-02-23 00:45 5,018 -csha-w C:\WINDOWS\system32\KGyGaAvL.sys
    2007-07-22 22:19 894,141 -csh--w C:\WINDOWS\system32\pqtss.bak1
    2007-07-30 08:29 726,432 -csh--w C:\WINDOWS\system32\pqtss.bak2
    2007-07-31 00:06 759,510 -csh--w C:\WINDOWS\system32\pqtss.ini2
    .

    ((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    REGEDIT4
    *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés

    [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7370F91F-6994-4595-9949-601FA2261C8D}]
    2008-01-07 00:53 225280 --a------ C:\Program Files\Gamevance\gvtl.dll

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-05 13:00 15360]
    "MessengerPlus3"="C:\Program Files\MessengerPlus! 3\MsgPlus.exe" [2008-01-28 16:53 190024]
    "swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-10-17 15:06 68856]
    "Veoh"="C:\Program Files\Veoh Networks\Veoh\VeohClient.exe" [2008-01-30 13:11 3497984]
    "msnmsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [2007-10-18 11:34 5724184]
    "LogitechSoftwareUpdate"="C:\Program Files\Logitech\Video\ManifestEngine.exe" [2005-06-08 14:44 196608]
    "ViVi Cursor"="C:\Program Files\ViVi Cursor 2.0\ViVi_Cursor.exe" [2007-11-21 22:32 1000960]
    "STYLEXP"="C:\Program Files\tgtsoft\StyleXP\StyleXP.exe" [2006-05-24 19:31 1372160]
    "Uniblue RegistryBooster 2"="C:\Program Files\Uniblue\RegistryBooster 2\RegistryBooster.exe" [2008-02-01 10:51 1885464]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "nwiz"="nwiz.exe" [2006-08-23 20:12 1617920 C:\WINDOWS\system32\nwiz.exe]
    "NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [2006-08-23 20:12 86016]
    "DMXLauncher"="C:\Program Files\Dell\Media Experience\DMXLauncher.exe" [2005-10-05 04:12 94208]
    "ISUSPM Startup"="C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe" [2004-07-27 17:50 221184]
    "ISUSScheduler"="C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" [2004-07-27 17:50 81920]
    "HP Component Manager"="C:\Program Files\HP\hpcoretech\hpcmpmgr.exe" [2004-05-12 15:18 241664]
    "HPDJ Taskbar Utility"="C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe" [2003-11-07 21:59 176128]
    "osCheck"="C:\Program Files\Norton Internet Security\osCheck.exe" [2007-02-19 18:24 771704]
    "Symantec PIF AlertEng"="C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" [2007-03-12 09:22 517768]
    "FLMOFFICE4DMOUSE"="C:\Program Files\Labtec\Desktop\V5.1\moffice.exe" [2007-10-09 16:37 958464]
    "OFFICEKB"="C:\Program Files\Labtec\Keyboard\V5.1\kbdap32a.exe" [2008-01-27 13:39 387584]
    "SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" [2007-09-25 01:11 132496]
    "TkBellExe"="C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" [2007-12-16 17:45 185896]
    "MessengerPlus3"="C:\Program Files\MessengerPlus! 3\MsgPlus.exe" [2008-01-28 16:53 190024]
    "SigmatelSysTrayApp"="stsystra.exe" [2006-08-15 10:38 282624 C:\WINDOWS\stsystra.exe]
    "LVCOMSX"="C:\WINDOWS\system32\LVCOMSX.EXE" [2005-07-19 17:32 221184]
    "LogitechVideoRepair"="C:\Program Files\Logitech\Video\ISStart.exe" [2005-06-08 15:24 458752]
    "LogitechVideoTray"="C:\Program Files\Logitech\Video\LogiTray.exe" [2005-06-08 15:14 217088]
    "QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2008-01-31 23:13 385024]
    "ccApp"="C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe" [2007-02-19 18:25 115816]

    [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
    "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-05 13:00 15360]
    "Nokia.PCSync"="C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe" [2007-06-19 09:17 1241088]

    [hkey_local_machine\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
    "{56F9679E-7826-4C84-81F3-532071A8BCC5}"= C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2007-02-05 14:39 294400]

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
    "ccleaner"="C:\Program Files\CCleaner\ccleaner.exe" /AUTO
    "DellSupport"="C:\Program Files\Dell Support\DSAgnt.exe" /startup
    "ford rule"=C:\DOCUME~1\Nous\APPLIC~1\CDROMF~1\DEBUG BASH LOCKS.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
    "Adobe Photo Downloader"="C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
    "Amok Eggs Four Web"=C:\Documents and Settings\All Users\Application Data\part dead amok eggs\Funk Tool.exe
    "Gamevance"=C:\Program Files\Gamevance\gamevance32.exe
    "iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe"
    "NvCplDaemon"=RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    "OneStep Search Service"="C:\Program Files\OneStepSearch\onestep.exe" "C:\Program Files\OneStepSearch\onestep.dll" Service
    "PCSuiteTrayApplication"=C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
    "qromvuzyq"=c:\windows\system32\qromvuzyq.exe qromvuzyq

    [HKEY_LOCAL_MACHINE\software\microsoft\security center]
    "AntiVirusDisableNotify"=dword:00000001

    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
    "DisableMonitoring"=dword:00000001

    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiVirus]
    "DisableMonitoring"=dword:00000001

    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeFirewall]
    "DisableMonitoring"=dword:00000001

    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
    "DisableMonitoring"=dword:00000001

    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
    "DisableMonitoring"=dword:00000001

    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
    "EnableFirewall"= 0 (0x0)

    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
    "%windir%\\system32\\sessmgr.exe"=
    "C:\\Program Files\\Messenger\\msmsgs.exe"=
    "%windir%\\Network Diagnostic\\xpnetdiag.exe"=
    "C:\\Program Files\\SiSoftware\\SiSoftware Sandra Lite XI.SP4a\\Win32\\RpcDataSrv.exe"=
    "C:\\Program Files\\SiSoftware\\SiSoftware Sandra Lite XI.SP4a\\RpcSandraSrv.exe"=
    "C:\\Program Files\\Mozilla Firefox\\firefox.exe"=
    "C:\\Program Files\\Bonjour\\mDNSResponder.exe"=
    "C:\\Program Files\\iTunes\\iTunes.exe"=
    "C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
    "C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=
    "C:\\WINDOWS\\pchealth\\helpctr\\binaries\\HelpCtr.exe"=

    S2 NMSAccessU;NMSAccessU;C:\Program Files\CDBurnerXP\NMSAccessU.exe [2007-10-12 08:34]
    S3 ASPI;Advanced SCSI Programming Interface Driver;C:\WINDOWS\System32\DRIVERS\ASPI32.sys [2002-07-17 08:05]
    S3 usbscan;Pilote de scanneur USB;C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 22:58]
    S3 USBSTOR;Pilote de stockage de masse USB;C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 22:08]
    S4 Boonty Games;Boonty Games;"C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe" [2007-10-26 15:21]

    *Newly Created Service* - COMHOST
    .
    Contenu du dossier 'Scheduled Tasks/Tâches planifiées'
    "2008-03-04 07:07:01 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job"
    - C:\Program Files\Apple Software Update\SoftwareUpdate.exe
    "2008-03-07 16:17:44 C:\WINDOWS\Tasks\Maintenance en 1 clic.job"
    - C:\Program Files\TuneUp Utilities 2004\SystemOptimizer.exe
    "2008-03-03 19:08:30 C:\WINDOWS\Tasks\Norton Internet Security Online - Analyse système complète - Nous.job"
    - C:\Program Files\Norton Internet Security\Norton AntiVirus\Navw32.exeh/TASK:
    "2008-03-08 17:57:00 C:\WINDOWS\Tasks\Vérifier les mises à jour de Windows Live Toolbar.job"
    - C:\Program Files\Windows Live Toolbar\MSNTBUP.EXE
    .
    **************************************************************************

    catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2008-03-08 19:18:12
    Windows 5.1.2600 Service Pack 2 NTFS

    Balayage processus cachés ...

    Balayage caché autostart entries ...

    Balayage des fichiers cachés ...

    Scan terminé avec succès
    Les fichiers cachés: 0

    **************************************************************************
    .
    Temps d'accomplissement: 2008-03-08 19:19:05
    ComboFix-quarantined-files.txt 2008-03-08 18:18:57
    .
    2008-02-28 02:01:50 --- E O F ---
    8 Mars 2008 20:55:24

    Re ,

    mets Combofix sur ton Bureau et refais un scan

    Tom's guide dans le monde
    • Allemagne
    • Italie
    • Irlande
    • Royaume Uni
    • Etats Unis
    Suivre Tom's Guide
    Inscrivez-vous à la Newsletter
    • ajouter à twitter
    • ajouter à facebook
    • ajouter un flux RSS