Virus trojan : win 32

bonjour, j'espère que tu es connecté aujourd'hui.
le nettoyage a durer au moins 20 min, voici le rapport :


------- LOGFILE OF AD-REMOVER 1.1.1.9 | ONLY XP/VISTA -------

Updated by C_XX on 18/03/2009 at 21:20 - AdRemover.contact@gmail.com

**** LIMITED TO ****

Boonty/BoontyGames
Eorezo
Infected Poker Softwares
FunWebProduct/MyWay/MyWebSearch
It's TV
Sweetim
Other Adwares

********************

Start at: 15:50:34, Ven 20/03/2009 | Boot mode: Normal Boot
Option: CLEAN | Executed from: C:\Program Files\Ad-remover\Ad-remover.bat
Operating System: Microsoft® Windows XP™ Service Pack 2 (version 5.1.2600)
Computer Name: ANGELO-182A37F5
Current User: Administrateur - Administrator
Drive(s):
- C:\ (File System: NTFS)
System Drive: C:\
Windows Directory: C:\WINDOWS\
System Directory: C:\WINDOWS\System32\

--- Running Processes: 49

(!) ---- IE start pages/Tabs reset

+-----------------| Boonty/Boonty Games Elements Deleted :

Service: "Boonty Games"
.
HKLM\Software\Boonty
HKLM\System\ControlSet003\Services\Boonty Games
.
C:\Program Files\Boonty
C:\Program Files\BoontyGames
C:\Program Files\Fichiers communs\BOONTY Shared
C:\Documents and Settings\All Users\Application Data\BOONTY

+-----------------| Eorezo Elements Deleted :

.

+-----------------| Infected Poker Softwares Elements Deleted :

.

+-----------------| FunWebProducts/MyWay/MyWebSearch Elements Deleted :

.
.

+-----------------| It's TV Elements Deleted :

.

+-----------------| Sweetim Elements Deleted :

.

============ Other Adwares Deleted ============

.
.

(!) ---- Temp files deleted.
(!) ---- Recycle bin emptied in all drives.


+-----------------| Added Scan :

---- Internet Explorer Version 7.0.5730.11 ----

+-[HKEY_CURRENT_USER\..\Internet Explorer\Main]

Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Search bar: hxxp://go.microsoft.com/fwlink/?linkid=54896
Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Start page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome

+-[HKEY_USERS\S-1-5-21-602162358-1614895754-682003330-500\..\Internet Explorer\Main]

Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Search bar: hxxp://go.microsoft.com/fwlink/?linkid=54896
Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Start page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome

+-[HKEY_LOCAL_MACHINE\..\Internet Explorer\Main]

Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Search bar: hxxp://search.msn.com/spbasic.htm
Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Start page: hxxp://fr.msn.com/

+-[HKEY_LOCAL_MACHINE\..\Internet Explorer\ABOUTURLS]

Tabs: hxxp://ieframe.dll/tabswelcome.htm

+---------------------------------------------------------------------------+

3127 Byte(s) - C:\Ad-Report-Clean-20.03.2009.log
2930 Byte(s) - C:\Ad-Report-Scan-20.03.2009.log

0 File(s) - C:\Program Files\Ad-remover\TOOLS\BACKUP
0 File(s) - C:\Program Files\Ad-remover\TOOLS\QUARANTINE

End at: 16:28:15 | 20/03/2009
.
+-----------------| E.O.F - 72 Lines
.


que dois-je faire ensuite ? merci

en mode normal, pas pu faire en mode sans echec

mais je crois que j'ai plus le rapport
tu veux que je relance ?

voici le rapport

SmitFraudFix v2.405

Rapport fait à 9:25:56,48, 21/03/2009
Executé à partir de C:\Documents and Settings\Administrateur\Bureau\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Le type du système de fichiers est
Fix executé en mode normal

»»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Avant SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
"{EC43E3FD-5C60-46a6-97D7-E0B85DBDD6C4}"="STS"

[HKEY_CLASSES_ROOT\CLSID\{EC43E3FD-5C60-46a6-97D7-E0B85DBDD6C4}\InProcServer32]
@="c:\windows\system32\takihiru.dll"

[HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{EC43E3FD-5C60-46a6-97D7-E0B85DBDD6C4}\InProcServer32]
@="c:\windows\system32\takihiru.dll"


»»»»»»»»»»»»»»»»»»»»»»»» Arret des processus


»»»»»»»»»»»»»»»»»»»»»»»» hosts


127.0.0.1 localhost

»»»»»»»»»»»»»»»»»»»»»»»» VACFix

VACFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri


»»»»»»»»»»»»»»»»»»»»»»»» Winsock2 Fix

S!Ri's WS2Fix: LSP not Found.


»»»»»»»»»»»»»»»»»»»»»»»» Generic Renos Fix

GenericRenosFix by S!Ri


»»»»»»»»»»»»»»»»»»»»»»»» Suppression des fichiers infectés


»»»»»»»»»»»»»»»»»»»»»»»» IEDFix

IEDFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri



»»»»»»»»»»»»»»»»»»»»»»»» Agent.OMZ.Fix

Agent.OMZ.Fix
Credits: Malware Analysis & Diagnostic
Code: S!Ri


»»»»»»»»»»»»»»»»»»»»»»»» 404Fix

404Fix
Credits: Malware Analysis & Diagnostic
Code: S!Ri


»»»»»»»»»»»»»»»»»»»»»»»» RK


»»»»»»»»»»»»»»»»»»»»»»»» DNS

Description: Realtek RTL8139/810x Family Fast Ethernet NIC #2 - Miniport d'ordonnancement de paquets
DNS Server Search Order: 192.168.0.2

Description: Realtek RTL8139/810x Family Fast Ethernet NIC #2 - Miniport d'ordonnancement de paquets
DNS Server Search Order: 192.168.2.1

HKLM\SYSTEM\CCS\Services\Tcpip\..\{2E428D78-3CE1-4217-9F5C-36AD985A1753}: DhcpNameServer=192.168.2.1
HKLM\SYSTEM\CCS\Services\Tcpip\..\{9A94BD81-679A-4A66-A306-F127113279BA}: DhcpNameServer=192.168.0.2
HKLM\SYSTEM\CS1\Services\Tcpip\..\{2E428D78-3CE1-4217-9F5C-36AD985A1753}: DhcpNameServer=192.168.2.1
HKLM\SYSTEM\CS1\Services\Tcpip\..\{9A94BD81-679A-4A66-A306-F127113279BA}: DhcpNameServer=192.168.0.2
HKLM\SYSTEM\CS3\Services\Tcpip\..\{2E428D78-3CE1-4217-9F5C-36AD985A1753}: DhcpNameServer=192.168.2.1
HKLM\SYSTEM\CS3\Services\Tcpip\..\{9A94BD81-679A-4A66-A306-F127113279BA}: DhcpNameServer=192.168.0.2
HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=192.168.2.1
HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=192.168.2.1
HKLM\SYSTEM\CS3\Services\Tcpip\Parameters: DhcpNameServer=192.168.2.1


»»»»»»»»»»»»»»»»»»»»»»»» Suppression Fichiers Temporaires


»»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"System"=""


»»»»»»»»»»»»»»»»»»»»»»»» Nettoyage du registre

Nettoyage terminé.

»»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Après SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
"{EC43E3FD-5C60-46a6-97D7-E0B85DBDD6C4}"="STS"

[HKEY_CLASSES_ROOT\CLSID\{EC43E3FD-5C60-46a6-97D7-E0B85DBDD6C4}\InProcServer32]
@="c:\windows\system32\takihiru.dll"

[HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{EC43E3FD-5C60-46a6-97D7-E0B85DBDD6C4}\InProcServer32]
@="c:\windows\system32\takihiru.dll"



»»»»»»»»»»»»»»»»»»»»»»»» Fin

ux pas faire une analyse en ligne car l'ordi infecté n'est plus connecté sur internet !
là je jongle avec 2 ordi pour régler mon pb, un qui est connecté et sur lequel je communique avec toi et l'autre !!

quelle autre solution ?

second rapport Lop


--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) 4 CPU 3.06GHz )
BIOS : Default System BIOS
USER : Administrateur ( Administrator )
BOOT : Normal boot
Antivirus : McAfee VirusScan (Not Activated)
Firewall : McAfee Personal Firewall (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:152 Go (Free:136 Go)
D:\ (CD or DVD)
E:\ (USB)
F:\ (USB)
G:\ (USB)
H:\ (USB)
I:\ (USB) - FAT - Total:1967 Mo (Free:0 Go)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [2] ( 21/03/2009|13:00 )


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


--------------------\\ Listing des dossiers dans Application Data

[20/03/2009|08:53] C:\DOCUME~1\Administrateur\Application Data\Adobe
[19/03/2009|21:35] C:\DOCUME~1\Administrateur\Application Data\Identities
[20/03/2009|08:53] C:\DOCUME~1\Administrateur\Application Data\Macromedia
[20/03/2009|13:50] C:\DOCUME~1\Administrateur\Application Data\Microsoft
[19/03/2009|21:36] C:\DOCUME~1\Administrateur\Application Data\Roxio
[19/03/2009|21:35] C:\DOCUME~1\Administrateur\Application Data\Styler
[20/03/2009|11:06] C:\DOCUME~1\Administrateur\Application Data\SUPERAntiSpyware.com
[20/03/2009|01:28] C:\DOCUME~1\Administrateur\Application Data\Xentient

[09/05/2008|14:09] C:\DOCUME~1\ALLUSE~1\Application Data\Adobe
[23/11/2007|14:13] C:\DOCUME~1\ALLUSE~1\Application Data\Autodesk
[14/12/2006|16:09] C:\DOCUME~1\ALLUSE~1\Application Data\CA
[26/07/2008|13:20] C:\DOCUME~1\ALLUSE~1\Application Data\CanonBJ
[23/02/2009|08:04] C:\DOCUME~1\ALLUSE~1\Application Data\CanonIJPLM
[27/11/2007|11:26] C:\DOCUME~1\ALLUSE~1\Application Data\CenerTCPMessenger
[25/09/2007|08:23] C:\DOCUME~1\ALLUSE~1\Application Data\Ciel
[12/07/2006|19:01] C:\DOCUME~1\ALLUSE~1\Application Data\CyberLink
[01/10/2008|15:40] C:\DOCUME~1\ALLUSE~1\Application Data\Flood Light Games
[20/06/2008|10:12] C:\DOCUME~1\ALLUSE~1\Application Data\GameHouse
[16/02/2007|14:54] C:\DOCUME~1\ALLUSE~1\Application Data\Google
[15/09/2006|15:55] C:\DOCUME~1\ALLUSE~1\Application Data\iWin
[05/03/2007|15:26] C:\DOCUME~1\ALLUSE~1\Application Data\JollyBear
[15/12/2008|09:34] C:\DOCUME~1\ALLUSE~1\Application Data\Lavasoft
[23/02/2009|08:01] C:\DOCUME~1\ALLUSE~1\Application Data\McAfee
[13/03/2009|14:50] C:\DOCUME~1\ALLUSE~1\Application Data\Microsoft
[15/12/2008|08:40] C:\DOCUME~1\ALLUSE~1\Application Data\MSN6
[03/03/2009|10:40] C:\DOCUME~1\ALLUSE~1\Application Data\MumboJumbo
[06/03/2008|11:14] C:\DOCUME~1\ALLUSE~1\Application Data\My Games
[10/10/2007|10:30] C:\DOCUME~1\ALLUSE~1\Application Data\NannyMania
[02/11/2007|10:54] C:\DOCUME~1\ALLUSE~1\Application Data\PlayFirst
[23/06/2008|16:07] C:\DOCUME~1\ALLUSE~1\Application Data\PlayPond
[12/07/2006|23:52] C:\DOCUME~1\ALLUSE~1\Application Data\Roxio
[01/06/2007|10:30] C:\DOCUME~1\ALLUSE~1\Application Data\Sandlot Games
[12/06/2008|09:49] C:\DOCUME~1\ALLUSE~1\Application Data\ScanSoft
[25/02/2009|08:54] C:\DOCUME~1\ALLUSE~1\Application Data\SpinTop Games
[09/11/2007|10:43] C:\DOCUME~1\ALLUSE~1\Application Data\Spybot - Search & Destroy
[26/07/2006|08:58] C:\DOCUME~1\ALLUSE~1\Application Data\SSScanAppDataDir
[26/07/2006|08:58] C:\DOCUME~1\ALLUSE~1\Application Data\SSScanWizard
[20/03/2009|11:06] C:\DOCUME~1\ALLUSE~1\Application Data\SUPERAntiSpyware.com
[15/11/2006|16:33] C:\DOCUME~1\ALLUSE~1\Application Data\Tarma Installer
[01/12/2008|11:37] C:\DOCUME~1\ALLUSE~1\Application Data\TEMP
[17/08/2007|23:22] C:\DOCUME~1\ALLUSE~1\Application Data\Windows Genuine Advantage
[28/08/2006|11:08] C:\DOCUME~1\ALLUSE~1\Application Data\Windows Live Toolbar
[03/03/2008|16:06] C:\DOCUME~1\ALLUSE~1\Application Data\WLInstaller
[07/08/2008|10:20] C:\DOCUME~1\ALLUSE~1\Application Data\wmp
[02/03/2007|11:43] C:\DOCUME~1\ALLUSE~1\Application Data\Zylom

[18/01/2008|08:14] C:\DOCUME~1\ANGELO~1\Application Data\Adobe
[14/05/2008|08:09] C:\DOCUME~1\ANGELO~1\Application Data\AdobeUM
[23/11/2007|14:28] C:\DOCUME~1\ANGELO~1\Application Data\Autodesk
[18/01/2007|15:13] C:\DOCUME~1\ANGELO~1\Application Data\Beep Industries
[13/11/2008|14:49] C:\DOCUME~1\ANGELO~1\Application Data\Canon
[06/02/2007|09:21] C:\DOCUME~1\ANGELO~1\Application Data\CD-LabelPrint
[12/07/2006|19:26] C:\DOCUME~1\ANGELO~1\Application Data\Corel
[06/11/2008|16:18] C:\DOCUME~1\ANGELO~1\Application Data\Delivery
[01/10/2008|15:40] C:\DOCUME~1\ANGELO~1\Application Data\Flood Light Games
[16/07/2007|14:36] C:\DOCUME~1\ANGELO~1\Application Data\Gaijin Ent
[16/02/2007|14:48] C:\DOCUME~1\ANGELO~1\Application Data\Google
[15/08/2006|09:54] C:\DOCUME~1\ANGELO~1\Application Data\Help
[20/06/2008|10:12] C:\DOCUME~1\ANGELO~1\Application Data\Identities
[18/01/2008|16:57] C:\DOCUME~1\ANGELO~1\Application Data\InterTrust
[23/07/2007|10:22] C:\DOCUME~1\ANGELO~1\Application Data\iWin
[18/08/2008|16:51] C:\DOCUME~1\ANGELO~1\Application Data\Lavasoft
[12/07/2006|18:08] C:\DOCUME~1\ANGELO~1\Application Data\Macromedia
[31/08/2007|14:30] C:\DOCUME~1\ANGELO~1\Application Data\Magic Academy
[20/12/2006|10:56] C:\DOCUME~1\ANGELO~1\Application Data\Magic Match
[13/03/2009|15:20] C:\DOCUME~1\ANGELO~1\Application Data\Microsoft
[16/03/2009|08:22] C:\DOCUME~1\ANGELO~1\Application Data\MSN6
[16/03/2009|08:21] C:\DOCUME~1\ANGELO~1\Application Data\MSNInstaller
[27/07/2007|10:36] C:\DOCUME~1\ANGELO~1\Application Data\My Games
[06/08/2008|15:10] C:\DOCUME~1\ANGELO~1\Application Data\NewSoft
[02/11/2007|10:54] C:\DOCUME~1\ANGELO~1\Application Data\PlayFirst
[01/10/2008|14:57] C:\DOCUME~1\ANGELO~1\Application Data\Playrix Entertainment
[30/08/2006|14:05] C:\DOCUME~1\ANGELO~1\Application Data\Roxio
[26/07/2006|08:58] C:\DOCUME~1\ANGELO~1\Application Data\ScanSoft
[27/10/2007|06:28] C:\DOCUME~1\ANGELO~1\Application Data\Styler
[28/07/2006|04:26] C:\DOCUME~1\ANGELO~1\Application Data\Sun
[30/10/2007|16:24] C:\DOCUME~1\ANGELO~1\Application Data\WinRAR
[27/10/2007|06:46] C:\DOCUME~1\ANGELO~1\Application Data\Xentient
[12/07/2006|18:18] C:\DOCUME~1\ANGELO~1\Application Data\Yahoo!
[16/02/2007|15:27] C:\DOCUME~1\ANGELO~1\Application Data\yoclient
[20/06/2008|09:46] C:\DOCUME~1\ANGELO~1\Application Data\YTHE
[20/06/2008|10:12] C:\DOCUME~1\ANGELO~1\Application Data\Zylom

[23/08/2005|23:36] C:\DOCUME~1\DEFAUL~1\Application Data\Microsoft

[21/01/2008|14:45] C:\DOCUME~1\LOCALS~1\Application Data\Help
[12/07/2006|18:11] C:\DOCUME~1\LOCALS~1\Application Data\Microsoft

[12/07/2006|18:11] C:\DOCUME~1\NETWOR~1\Application Data\Microsoft


--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[15/12/2008 09:14][--a------] C:\WINDOWS\tasks\McDefragTask.job
[15/12/2008 09:14][--a------] C:\WINDOWS\tasks\McQcTask.job
[21/03/2009 07:47][--ah-----] C:\WINDOWS\tasks\MP Scheduled Scan.job
[21/03/2009 07:44][--ah-----] C:\WINDOWS\tasks\SA.DAT
[28/08/2004 09:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[14/08/2007|02:33] C:\Program Files\Ad-Aware
[18/01/2008|16:57] C:\Program Files\Adobe
[20/03/2009|14:29] C:\Program Files\Ad-remover
[12/07/2006|18:58] C:\Program Files\Ahead
[20/11/2008|14:27] C:\Program Files\Alwil Software
[29/12/2006|15:51] C:\Program Files\Art Explosion
[03/05/2007|23:38] C:\Program Files\AusLogics Disk Defrag
[12/11/2008|10:14] C:\Program Files\AutoCAD LT 2000i Ita
[27/12/2006|08:47] C:\Program Files\Autodesk
[19/04/2007|09:35] C:\Program Files\BarreConfCMCIC
[16/09/2008|14:14] C:\Program Files\BitDefender
[26/07/2008|13:54] C:\Program Files\Canon
[26/07/2008|13:20] C:\Program Files\CanonBJ
[27/10/2007|06:25] C:\Program Files\Cener Development
[25/09/2007|08:22] C:\Program Files\Ciel
[18/05/2007|09:11] C:\Program Files\Common Files
[14/06/2006|18:46] C:\Program Files\Compare It!
[12/07/2006|17:57] C:\Program Files\ComPlus Applications
[12/07/2006|19:21] C:\Program Files\Corel
[13/03/2007|11:50] C:\Program Files\Cutting Technologies
[12/07/2006|19:01] C:\Program Files\CyberLink
[12/07/2006|19:04] C:\Program Files\DVD Region-Free
[16/07/2007|01:24] C:\Program Files\Everest
[07/05/2008|16:22] C:\Program Files\EZFace
[20/03/2009|15:51] C:\Program Files\Fichiers communs
[14/08/2007|02:53] C:\Program Files\FoxitReader
[20/03/2009|10:48] C:\Program Files\Google
[18/01/2008|16:44] C:\Program Files\GRAPHTEC
[26/02/2008|09:12] C:\Program Files\greenstreet
[18/01/2008|16:44] C:\Program Files\GTCTPL Controller
[12/07/2006|18:13] C:\Program Files\HighMAT CD Writing Wizard
[14/06/2006|18:46] C:\Program Files\IE Privacy Keeper
[26/07/2008|14:02] C:\Program Files\InstallShield Installation Information
[27/10/2007|06:51] C:\Program Files\Intel
[11/02/2009|13:58] C:\Program Files\Internet Explorer
[06/08/2008|10:04] C:\Program Files\Java
[10/11/2008|11:21] C:\Program Files\Kodak
[23/02/2009|13:58] C:\Program Files\McAfee
[15/12/2008|09:14] C:\Program Files\McAfee.com
[21/08/2008|14:28] C:\Program Files\messenger
[13/03/2009|15:17] C:\Program Files\Microsoft
[26/07/2006|08:46] C:\Program Files\Microsoft ActiveSync
[12/07/2006|18:08] C:\Program Files\microsoft frontpage
[03/03/2008|08:29] C:\Program Files\Microsoft Office
[15/12/2008|08:40] C:\Program Files\Microsoft Office Outlook Connector pour MSN
[15/12/2008|08:40] C:\Program Files\Microsoft Picture It! 9
[13/03/2009|15:15] C:\Program Files\Microsoft SQL Server Compact Edition
[13/03/2009|15:16] C:\Program Files\Microsoft Sync Framework
[12/07/2006|17:58] C:\Program Files\Movie Maker
[03/03/2008|08:29] C:\Program Files\MSECache
[15/12/2008|09:23] C:\Program Files\MSN
[12/07/2006|17:56] C:\Program Files\MSN Gaming Zone
[17/10/2006|08:00] C:\Program Files\MSXML 4.0
[27/10/2007|06:28] C:\Program Files\MSXML 6.0
[21/03/2009|08:13] C:\Program Files\Navilog1
[12/07/2006|17:58] C:\Program Files\NetMeeting
[26/07/2008|14:02] C:\Program Files\NewSoft
[01/12/2008|11:23] C:\Program Files\Oberon Media
[18/03/2007|22:42] C:\Program Files\Occtpt
[29/07/2006|05:45] C:\Program Files\orange
[27/10/2007|06:04] C:\Program Files\Outlook Express
[16/06/2007|22:48] C:\Program Files\Paint.NET
[12/07/2006|18:19] C:\Program Files\Photo Story 3 for Windows
[27/10/2007|06:53] C:\Program Files\Realtek
[06/03/2009|16:18] C:\Program Files\ROBO Master-Pro
[12/07/2006|23:52] C:\Program Files\Roxio
[26/07/2006|08:58] C:\Program Files\ScanSoft
[28/01/2009|16:57] C:\Program Files\SendBlaster
[25/07/2007|02:40] C:\Program Files\Spybot
[27/10/2007|06:28] C:\Program Files\Styler
[06/08/2008|10:05] C:\Program Files\Sun
[20/03/2009|11:06] C:\Program Files\SUPERAntiSpyware
[15/12/2008|09:31] C:\Program Files\Three Rings Design
[04/12/2008|16:01] C:\Program Files\Trend Micro
[05/07/2006|03:20] C:\Program Files\TweakRAM
[13/07/2007|23:36] C:\Program Files\UberIcon
[12/07/2006|18:20] C:\Program Files\Uninstall Information
[12/07/2006|18:13] C:\Program Files\UTILS
[11/08/2006|04:00] C:\Program Files\Virtools Web Player 3.0
[23/11/2007|14:03] C:\Program Files\WexTech
[12/08/2007|15:28] C:\Program Files\Windows Defender
[12/07/2006|18:18] C:\Program Files\Windows Journal Viewer
[13/03/2009|15:17] C:\Program Files\Windows Live
[06/01/2009|15:53] C:\Program Files\Windows Live SkyDrive
[13/03/2009|15:16] C:\Program Files\Windows Live Toolbar
[27/10/2007|06:01] C:\Program Files\Windows Media Connect 2
[27/10/2007|06:16] C:\Program Files\Windows Media Player
[12/07/2006|18:08] C:\Program Files\Windows NT
[27/10/2007|06:16] C:\Program Files\Windows Sidebar
[12/07/2006|17:58] C:\Program Files\WindowsUpdate
[20/07/2007|21:16] C:\Program Files\WinRAR
[12/07/2006|18:08] C:\Program Files\xerox
[26/07/2006|08:36] C:\Program Files\Yahoo!
[01/10/2008|14:58] C:\Program Files\Zylom Games

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[14/05/2008|08:09] C:\Program Files\Fichiers communs\Adobe
[12/07/2006|18:58] C:\Program Files\Fichiers communs\Ahead
[23/11/2007|14:13] C:\Program Files\Fichiers communs\Autodesk Shared
[16/09/2008|14:14] C:\Program Files\Fichiers communs\BitDefender
[26/07/2008|13:23] C:\Program Files\Fichiers communs\CANON
[25/09/2007|08:23] C:\Program Files\Fichiers communs\Ciel
[12/07/2006|19:22] C:\Program Files\Fichiers communs\Corel
[26/07/2006|08:46] C:\Program Files\Fichiers communs\Designer
[18/08/2006|02:50] C:\Program Files\Fichiers communs\GST
[12/07/2006|23:50] C:\Program Files\Fichiers communs\InstallShield
[16/02/2007|14:44] C:\Program Files\Fichiers communs\Java
[10/11/2008|11:26] C:\Program Files\Fichiers communs\KODAK
[23/11/2007|14:03] C:\Program Files\Fichiers communs\LHSPF
[12/07/2006|23:54] C:\Program Files\Fichiers communs\LightScribe
[15/12/2008|09:15] C:\Program Files\Fichiers communs\McAfee
[11/03/2009|09:02] C:\Program Files\Fichiers communs\Microsoft Shared
[12/07/2006|17:58] C:\Program Files\Fichiers communs\MSSoap
[26/07/2008|14:03] C:\Program Files\Fichiers communs\NewSoft
[01/10/2008|15:34] C:\Program Files\Fichiers communs\Oberon Media
[12/07/2006|19:47] C:\Program Files\Fichiers communs\ODBC
[26/07/2008|14:03] C:\Program Files\Fichiers communs\PDFView
[12/07/2006|23:52] C:\Program Files\Fichiers communs\Roxio Shared
[25/09/2007|08:22] C:\Program Files\Fichiers communs\Sage
[26/07/2006|08:58] C:\Program Files\Fichiers communs\ScanSoft Shared
[27/10/2007|06:04] C:\Program Files\Fichiers communs\Services
[12/07/2006|19:47] C:\Program Files\Fichiers communs\SpeechEngines
[15/12/2008|08:40] C:\Program Files\Fichiers communs\System
[23/11/2007|14:03] C:\Program Files\Fichiers communs\WexTech Shared
[13/03/2009|14:50] C:\Program Files\Fichiers communs\Windows Live
[03/03/2008|16:06] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[20/03/2009|10:57] C:\Program Files\Fichiers communs\Wise Installation Wizard

--------------------\\ Process

( 47 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-03-21 13:03:30
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
disk error: C:\WINDOWS\System32\
please note that you need administrator rights to perform deep scan

--------------------\\ Recherche d'autres infections

--------------------\\ Cracks & Keygens ..

C:\DOCUME~1\Administrateur\Recent\Crack.txt.lnk


[F:2][D:0]-> C:\DOCUME~1\Administrateur\Cookies

1 - "C:\Lop SD\LopR_1.txt" - 21/03/2009|10:10 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 21/03/2009|10:19 - Option : [2]
3 - "C:\Lop SD\LopR_3.txt" - 21/03/2009|12:58 - Option : [2]
4 - "C:\Lop SD\LopR_4.txt" - 21/03/2009|13:04 - Option : [2]

--------------------\\ Fin du rapport a 13:04:03

impossible de scanner avec dr web
g pas les options que tu m'indiques, juste "commencer le scan" ou "mettre à jour"
et la 1ère fois que g cliquer sur commencer le scan, ça m'a mis un écran tout bleu avec plein d'indiquation en blanc genre pas cool
g du eteindre et redémarrer l'ordi
et la y a pas moyen de scanner avec dr web

la bonne nouvelle, c que g plus le message clignotant "warning" sur mon bureau !!

que dois-je faire ?
merci