PB avec winlogon.exe. erreur d'application

Désolée mais c'est quoi mon OS ?

Enfin je voulais dire c'est quoi un OS ? merci

ha en fait j'ai window XP EDITION FAM ! Merci d'avance pour votre aide !

Bonjour,

Voici le lien : http://www.cijoint.fr/cjlink.php?file=cj201004/cijXph6djW.txt

A bientôt ! et merçi !

Merci ! voici les deux rapports :
Fix Navipromo version 4.0.8 commencé le 06/04/2010 19:35:29,82

!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!

Outil exécuté depuis C:\navilog1

Mise à jour le 09.03.2010 à 18h00 par IL-MAFIOSO

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : AMD Athlon(tm) 64 X2 Dual Core Processor 4200+ )
BIOS : )Phoenix - Award WorkstationBIOS v6.00PG
USER : CORINNE BAUDIN ( Administrator )
BOOT : Fail-safe with network boot

Antivirus : Avira AntiVir PersonalEdition 8.0.1.30 (Activated)


C:\ (Local Disk) - NTFS - Total:113 Go (Free:21 Go)
D:\ (Local Disk) - FAT32 - Total:113 Go (Free:113 Go)
E:\ (CD or DVD)
G:\ (USB)
H:\ (USB)
I:\ (USB)
J:\ (USB)


Recherche executée en mode sans échec

Nettoyage executé en mode sans échec


c:\docume~1\alluse~1\menudm~1\progra~1\MessengerSkinner supprimé !
c:\docume~1\alluse~1\menudm~1\progra~1\WebMediaPlayer supprimé !
C:\WINDOWS\system32\aiyao.dat supprimé !
C:\WINDOWS\system32\gtjdmegij.dat supprimé !
C:\WINDOWS\system32\tmbzjp.dat supprimé !


Nettoyage contenu C:\WINDOWS\Temp effectué !
Nettoyage contenu C:\Documents and Settings\CORINNE BAUDIN\locals~1\Temp effectué !


*** Sauvegarde du Registre vers dossier Safebackup ***

sauvegarde du Registre réalisée avec succès !

*** Nettoyage Registre ***

Nettoyage Registre Ok


C:\WINDOWS\Tasks\B2F110F491CEBD7C.job trouvé ! Infection Lop possible non traitée par cet outil !


*** Scan terminé 06/04/2010 19:36:22,87 ***

et voici le deuxième
--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : AMD Athlon(tm) 64 X2 Dual Core Processor 4200+ )
BIOS : )Phoenix - Award WorkstationBIOS v6.00PG
USER : CORINNE BAUDIN ( Administrator )
BOOT : Fail-safe with network boot
Antivirus : Avira AntiVir PersonalEdition 8.0.1.30 (Activated)
C:\ (Local Disk) - NTFS - Total:113 Go (Free:21 Go)
D:\ (Local Disk) - FAT32 - Total:113 Go (Free:113 Go)
E:\ (CD or DVD)
G:\ (USB)
H:\ (USB)
I:\ (USB)
J:\ (USB)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 06/04/2010|19:39 )

--------------------\\ Listing des dossiers dans APPLIC~1

[12/01/2008|03:19] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[12/01/2008|03:19] C:\DOCUME~1\ADMINI~1\APPLIC~1\Macromedia
[13/04/2008|12:20] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft

[24/02/2010|12:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{0145F9DA-C702-4614-9CCB-04D1279C9CB2}
[04/02/2010|11:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{924B45CC-9477-41E9-808B-6F623B920F1E}
[22/02/2010|15:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{DF3D7EF6-7048-48B8-BA35-8E517A744670}

--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : AMD Athlon(tm) 64 X2 Dual Core Processor 4200+ )
BIOS : )Phoenix - Award WorkstationBIOS v6.00PG
USER : CORINNE BAUDIN ( Administrator )
BOOT : Fail-safe with network boot
Antivirus : Avira AntiVir PersonalEdition 8.0.1.30 (Activated)
C:\ (Local Disk) - NTFS - Total:113 Go (Free:21 Go)
D:\ (Local Disk) - FAT32 - Total:113 Go (Free:113 Go)
E:\ (CD or DVD)
G:\ (USB)
H:\ (USB)
I:\ (USB)
J:\ (USB)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 06/04/2010|19:39 )

--------------------\\ Listing des dossiers dans APPLIC~1

[12/01/2008|03:19] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[12/01/2008|03:19] C:\DOCUME~1\ADMINI~1\APPLIC~1\Macromedia
[13/04/2008|12:20] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft

[24/02/2010|12:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{0145F9DA-C702-4614-9CCB-04D1279C9CB2}
[04/02/2010|11:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{924B45CC-9477-41E9-808B-6F623B920F1E}
[22/02/2010|15:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{DF3D7EF6-7048-48B8-BA35-8E517A744670}
[30/03/2008|12:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\~0
[24/02/2010|19:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[08/03/2010|20:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\agi
[13/04/2008|12:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\avg7
[14/05/2008|22:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avira
[14/01/2008|22:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[06/10/2009|11:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[02/04/2008|19:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
[04/02/2009|12:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hps
[08/04/2008|21:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\IM
[04/02/2010|11:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Iminent
[08/04/2008|21:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\IncrediMail
[02/02/2008|20:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[22/11/2009|18:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MAGIX
[02/02/2009|19:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[24/02/2010|19:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee
[13/01/2008|15:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[21/02/2009|00:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[12/04/2008|12:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NCH Swift Sound
[22/11/2009|18:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Nero
[07/03/2010|13:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NOS
[09/12/2009|11:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PhotoMail
[02/02/2008|20:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ScanSoft
[20/01/2010|16:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[06/04/2010|19:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[30/03/2009|11:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SweetIM
[12/01/2008|23:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[09/11/2008|18:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[03/04/2008|20:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\third lies itch ford
[04/07/2009|11:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TomTom
[06/02/2008|17:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[13/01/2008|15:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[26/08/2008|21:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\wmp
[15/10/2009|21:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom

[14/10/2008|17:37] C:\DOCUME~1\ANTOINE\APPLIC~1\Acoustica
[16/03/2010|20:13] C:\DOCUME~1\ANTOINE\APPLIC~1\Adobe
[23/09/2008|21:35] C:\DOCUME~1\ANTOINE\APPLIC~1\AdobeUM
[09/03/2010|11:18] C:\DOCUME~1\ANTOINE\APPLIC~1\agi
[16/03/2010|20:13] C:\DOCUME~1\ANTOINE\APPLIC~1\app
[24/09/2008|21:06] C:\DOCUME~1\ANTOINE\APPLIC~1\ArcSoft
[06/04/2008|13:55] C:\DOCUME~1\ANTOINE\APPLIC~1\AVG7
[02/03/2010|19:16] C:\DOCUME~1\ANTOINE\APPLIC~1\Bandoo
[23/02/2008|12:58] C:\DOCUME~1\ANTOINE\APPLIC~1\CyberLink
[20/01/2008|17:06] C:\DOCUME~1\ANTOINE\APPLIC~1\DivX
[27/03/2010|14:40] C:\DOCUME~1\ANTOINE\APPLIC~1\dofus 2
[16/03/2010|20:13] C:\DOCUME~1\ANTOINE\APPLIC~1\Dofus.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
[21/02/2010|15:37] C:\DOCUME~1\ANTOINE\APPLIC~1\EoRezo
[05/11/2008|22:30] C:\DOCUME~1\ANTOINE\APPLIC~1\gtk-2.0
[15/01/2008|21:30] C:\DOCUME~1\ANTOINE\APPLIC~1\Help
[07/06/2008|14:32] C:\DOCUME~1\ANTOINE\APPLIC~1\Hotbar_Icons
[12/01/2008|03:19] C:\DOCUME~1\ANTOINE\APPLIC~1\Identities
[14/09/2008|19:03] C:\DOCUME~1\ANTOINE\APPLIC~1\InfraRecorder
[17/03/2008|22:04] C:\DOCUME~1\ANTOINE\APPLIC~1\ItsLabel
[23/12/2009|00:15] C:\DOCUME~1\ANTOINE\APPLIC~1\LimeWire
[16/02/2008|16:48] C:\DOCUME~1\ANTOINE\APPLIC~1\Macromedia
[30/03/2010|17:27] C:\DOCUME~1\ANTOINE\APPLIC~1\Microsoft
[03/04/2008|20:50] C:\DOCUME~1\ANTOINE\APPLIC~1\More download bias
[17/07/2009|21:33] C:\DOCUME~1\ANTOINE\APPLIC~1\Nero
[16/03/2010|20:13] C:\DOCUME~1\ANTOINE\APPLIC~1\RegTesting.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
[10/10/2009|22:55] C:\DOCUME~1\ANTOINE\APPLIC~1\Screaming Bee
[19/01/2010|23:25] C:\DOCUME~1\ANTOINE\APPLIC~1\Skype
[19/01/2010|19:38] C:\DOCUME~1\ANTOINE\APPLIC~1\skypePM
[29/03/2008|14:48] C:\DOCUME~1\ANTOINE\APPLIC~1\Sun
[22/02/2010|16:15] C:\DOCUME~1\ANTOINE\APPLIC~1\TeamViewer
[02/09/2009|14:22] C:\DOCUME~1\ANTOINE\APPLIC~1\U3
[27/03/2009|21:44] C:\DOCUME~1\ANTOINE\APPLIC~1\YouUp

[06/07/2009|15:16] C:\DOCUME~1\CORINN~1\APPLIC~1\.#
[14/02/2010|16:12] C:\DOCUME~1\CORINN~1\APPLIC~1\Adobe
[24/08/2008|18:42] C:\DOCUME~1\CORINN~1\APPLIC~1\AdobeUM
[08/06/2009|18:37] C:\DOCUME~1\CORINN~1\APPLIC~1\AdSigner
[09/03/2010|11:18] C:\DOCUME~1\CORINN~1\APPLIC~1\agi
[02/10/2009|18:35] C:\DOCUME~1\CORINN~1\APPLIC~1\AlauxSoft
[05/03/2010|21:37] C:\DOCUME~1\CORINN~1\APPLIC~1\app
[11/07/2008|17:09] C:\DOCUME~1\CORINN~1\APPLIC~1\ArcSoft
[13/04/2008|12:13] C:\DOCUME~1\CORINN~1\APPLIC~1\AVG7
[26/02/2010|11:00] C:\DOCUME~1\CORINN~1\APPLIC~1\Bandoo
[22/09/2009|10:41] C:\DOCUME~1\CORINN~1\APPLIC~1\Canon
[24/11/2008|20:31] C:\DOCUME~1\CORINN~1\APPLIC~1\CyberLink
[30/03/2008|19:36] C:\DOCUME~1\CORINN~1\APPLIC~1\DivX
[14/03/2010|20:24] C:\DOCUME~1\CORINN~1\APPLIC~1\dofus 2
[14/03/2010|20:01] C:\DOCUME~1\CORINN~1\APPLIC~1\Dofus.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
[14/03/2010|16:47] C:\DOCUME~1\CORINN~1\APPLIC~1\Dofus-2.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
[14/03/2010|17:32] C:\DOCUME~1\CORINN~1\APPLIC~1\Dofus-3.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
[22/02/2010|15:42] C:\DOCUME~1\CORINN~1\APPLIC~1\EoRezo
[22/02/2010|16:25] C:\DOCUME~1\CORINN~1\APPLIC~1\fontaudio3D
[06/10/2009|10:11] C:\DOCUME~1\CORINN~1\APPLIC~1\Google
[10/04/2009|18:25] C:\DOCUME~1\CORINN~1\APPLIC~1\gtk-2.0
[02/04/2008|19:04] C:\DOCUME~1\CORINN~1\APPLIC~1\Help
[12/01/2008|03:19] C:\DOCUME~1\CORINN~1\APPLIC~1\Identities
[30/03/2008|15:24] C:\DOCUME~1\CORINN~1\APPLIC~1\InfraRecorder
[16/03/2008|11:56] C:\DOCUME~1\CORINN~1\APPLIC~1\ItsLabel
[22/01/2010|12:11] C:\DOCUME~1\CORINN~1\APPLIC~1\LimeWire
[30/03/2008|21:06] C:\DOCUME~1\CORINN~1\APPLIC~1\Macromedia
[02/02/2009|19:58] C:\DOCUME~1\CORINN~1\APPLIC~1\Malwarebytes
[22/11/2009|18:20] C:\DOCUME~1\CORINN~1\APPLIC~1\Microsoft
[15/01/2008|19:48] C:\DOCUME~1\CORINN~1\APPLIC~1\Microsoft Web Folders
[30/01/2008|14:20] C:\DOCUME~1\CORINN~1\APPLIC~1\More download bias
[04/07/2009|11:11] C:\DOCUME~1\CORINN~1\APPLIC~1\Mozilla
[15/01/2008|20:07] C:\DOCUME~1\CORINN~1\APPLIC~1\MSNInstaller
[12/09/2009|19:25] C:\DOCUME~1\CORINN~1\APPLIC~1\Nero
[05/03/2010|21:37] C:\DOCUME~1\CORINN~1\APPLIC~1\Reg.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
[21/03/2010|16:42] C:\DOCUME~1\CORINN~1\APPLIC~1\RegTesting.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
[02/02/2008|20:20] C:\DOCUME~1\CORINN~1\APPLIC~1\ScanSoft
[20/01/2008|14:41] C:\DOCUME~1\CORINN~1\APPLIC~1\Sun
[10/09/2009|19:04] C:\DOCUME~1\CORINN~1\APPLIC~1\TeamViewer
[04/07/2009|11:10] C:\DOCUME~1\CORINN~1\APPLIC~1\TomTom
[21/02/2010|15:22] C:\DOCUME~1\CORINN~1\APPLIC~1\Uniblue
[24/05/2008|23:44] C:\DOCUME~1\CORINN~1\APPLIC~1\vlc
[28/03/2009|14:18] C:\DOCUME~1\CORINN~1\APPLIC~1\YouUp

[12/01/2008|03:19] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[12/01/2008|03:19] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
[12/01/2008|03:19] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft


[12/02/2010|17:44] C:\DOCUME~1\LOCALS~1\APPLIC~1\Adobe
[09/03/2010|11:18] C:\DOCUME~1\LOCALS~1\APPLIC~1\agi
[02/04/2008|19:22] C:\DOCUME~1\LOCALS~1\APPLIC~1\AVG7
[13/02/2010|12:31] C:\DOCUME~1\LOCALS~1\APPLIC~1\Macromedia
[27/02/2010|19:32] C:\DOCUME~1\LOCALS~1\APPLIC~1\McAfee
[13/04/2008|12:20] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[13/04/2008|12:20] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

[12/01/2008|03:19] C:\DOCUME~1\PANNE\APPLIC~1\Identities
[12/01/2008|03:19] C:\DOCUME~1\PANNE\APPLIC~1\Macromedia
[12/01/2008|03:19] C:\DOCUME~1\PANNE\APPLIC~1\Microsoft

[31/01/2008|22:14] C:\DOCUME~1\PASCAL~1\APPLIC~1\Adobe
[01/10/2008|20:40] C:\DOCUME~1\PASCAL~1\APPLIC~1\AdobeUM
[09/03/2010|11:18] C:\DOCUME~1\PASCAL~1\APPLIC~1\agi
[13/04/2008|12:00] C:\DOCUME~1\PASCAL~1\APPLIC~1\AVG7
[28/08/2008|23:10] C:\DOCUME~1\PASCAL~1\APPLIC~1\DivX
[20/02/2010|20:52] C:\DOCUME~1\PASCAL~1\APPLIC~1\EoRezo
[07/06/2008|17:09] C:\DOCUME~1\PASCAL~1\APPLIC~1\Hotbar_Icons
[12/01/2008|03:19] C:\DOCUME~1\PASCAL~1\APPLIC~1\Identities
[20/03/2008|21:51] C:\DOCUME~1\PASCAL~1\APPLIC~1\ItsLabel
[12/01/2008|03:19] C:\DOCUME~1\PASCAL~1\APPLIC~1\Macromedia
[08/03/2010|13:48] C:\DOCUME~1\PASCAL~1\APPLIC~1\Malwarebytes
[09/03/2010|15:43] C:\DOCUME~1\PASCAL~1\APPLIC~1\Microsoft
[31/01/2008|22:07] C:\DOCUME~1\PASCAL~1\APPLIC~1\More download bias
[08/04/2008|23:14] C:\DOCUME~1\PASCAL~1\APPLIC~1\Sun
[09/03/2010|12:08] C:\DOCUME~1\PASCAL~1\APPLIC~1\Uniblue

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[02/04/2010 11:37][--ah-----] C:\WINDOWS\tasks\User_Feed_Synchronization-{D107DC25-DC34-48EF-B171-D6C263012617}.job
[02/04/2010 12:00][--ah-----] C:\WINDOWS\tasks\B2F110F491CEBD7C.job
[06/04/2010 14:16][--ah-----] C:\WINDOWS\tasks\SA.DAT
[10/08/2004 22:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

( B2F110F491CEBD7C.job )=( c:\docume~1\kevinb~1\applic~1\moredo~1\savesectnoun.exe )

--------------------\\ Listing des dossiers dans C:\Program Files

[12/01/2008|03:20] C:\Program Files\Acer WLAN 11g USB Dongle
[14/10/2008|20:30] C:\Program Files\Acoustica Mixcraft 3
[14/10/2008|17:37] C:\Program Files\Acoustica Shared Effects
[14/10/2008|18:50] C:\Program Files\AdmixDJ 2
[24/02/2010|19:01] C:\Program Files\Adobe
[13/02/2010|14:18] C:\Program Files\AGI
[12/01/2008|23:15] C:\Program Files\Alwil Software
[31/01/2009|13:07] C:\Program Files\Angle Interactive
[02/04/2008|19:07] C:\Program Files\AntiVir PersonalEdition Classic
[02/02/2008|20:19] C:\Program Files\ArcSoft
[26/06/2009|23:22] C:\Program Files\Atlas Bordas collSge
[14/05/2008|22:34] C:\Program Files\Avira
[24/04/2008|21:11] C:\Program Files\AviSynth 2.5
[05/11/2009|11:49] C:\Program Files\Canon
[10/08/2008|22:17] C:\Program Files\CFWebAdvancedU_BOBTV.FR
[20/11/2008|21:56] C:\Program Files\Circle Developement
[04/03/2008|20:49] C:\Program Files\City Interactive
[27/05/2008|22:00] C:\Program Files\Club-Internet
[12/01/2008|03:20] C:\Program Files\commercial
[11/08/2006|19:27] C:\Program Files\ComPlus Applications
[02/10/2009|22:49] C:\Program Files\Conduit
[12/01/2008|03:20] C:\Program Files\CyberLink
[12/01/2008|03:20] C:\Program Files\DIFX
[15/11/2008|17:31] C:\Program Files\directx
[11/06/2008|20:01] C:\Program Files\Disc2Phone
[11/01/2010|10:34] C:\Program Files\DivX
[15/03/2010|20:06] C:\Program Files\Dofus 2
[05/03/2010|21:36] C:\Program Files\Fichiers communs
[12/01/2008|03:20] C:\Program Files\FrenchOtto
[22/02/2010|15:44] C:\Program Files\GemMasterFrench
[20/01/2010|16:50] C:\Program Files\Google
[02/04/2008|19:22] C:\Program Files\Grisoft
[13/02/2010|12:33] C:\Program Files\IMBooster4web-en
[24/02/2010|12:30] C:\Program Files\Iminent
[26/08/2009|12:51] C:\Program Files\IncrediMail
[24/01/2008|20:19] C:\Program Files\InfraRecorder
[29/10/2009|12:53] C:\Program Files\InstallShield Installation Information
[02/04/2010|15:15] C:\Program Files\Internet Explorer
[30/03/2008|13:28] C:\Program Files\Java
[02/04/2008|21:41] C:\Program Files\LimeWire
[02/10/2009|16:20] C:\Program Files\LoCoSoft
[02/02/2008|20:31] C:\Program Files\Logitech
[18/01/2010|20:29] C:\Program Files\MAGIX
[09/03/2010|11:18] C:\Program Files\Malwarebytes' Anti-Malware
[22/11/2009|18:17] C:\Program Files\McDonaldsDragons
[07/09/2008|11:42] C:\Program Files\Messenger
[22/05/2009|21:17] C:\Program Files\Messenger Plus! Live
[16/12/2008|21:41] C:\Program Files\Microsoft
[13/01/2008|18:46] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[15/01/2008|19:53] C:\Program Files\microsoft frontpage
[15/01/2008|19:48] C:\Program Files\Microsoft Office
[21/01/2010|10:41] C:\Program Files\Microsoft Silverlight
[13/01/2008|12:37] C:\Program Files\Microsoft SQL Server Compact Edition
[16/12/2008|21:45] C:\Program Files\Microsoft Sync Framework
[15/01/2008|19:51] C:\Program Files\Microsoft Visual Studio
[01/02/2008|19:39] C:\Program Files\Mindscape
[18/02/2008|14:56] C:\Program Files\More download bias
[15/01/2009|22:11] C:\Program Files\Movavi Video Converter 6
[10/03/2010|10:39] C:\Program Files\Movie Maker
[22/08/2009|01:50] C:\Program Files\MSBuild
[13/01/2008|15:12] C:\Program Files\MSN
[12/01/2008|03:20] C:\Program Files\MSN Gaming Zone
[04/02/2008|01:27] C:\Program Files\MSXML 4.0
[06/04/2010|19:33] C:\Program Files\navilog1
[22/11/2009|18:24] C:\Program Files\Nero
[07/09/2008|11:36] C:\Program Files\NetMeeting
[20/01/2010|16:48] C:\Program Files\Neuf
[12/01/2008|03:20] C:\Program Files\NewTech Infosystems
[12/01/2008|03:21] C:\Program Files\Oca History Tool
[12/01/2008|03:21] C:\Program Files\Online Services
[02/04/2008|20:10] C:\Program Files\outlook
[16/08/2009|23:15] C:\Program Files\Outlook Express
[04/02/2009|12:49] C:\Program Files\PHOTO U
[09/12/2009|11:13] C:\Program Files\PhotoMail Maker
[13/02/2008|22:02] C:\Program Files\Powerbullet
[12/01/2008|03:21] C:\Program Files\Realtek
[22/08/2009|01:50] C:\Program Files\Reference Assemblies
[02/02/2008|20:20] C:\Program Files\ScanSoft
[10/10/2009|22:37] C:\Program Files\Screaming Bee
[12/01/2008|03:21] C:\Program Files\Services en ligne
[06/04/2010|19:27] C:\Program Files\Spybot - Search & Destroy
[24/05/2008|10:34] C:\Program Files\Spyware Doctor
[11/01/2010|10:35] C:\Program Files\Sweet Games
[30/03/2009|11:11] C:\Program Files\SweetIM
[10/09/2009|09:59] C:\Program Files\TeamViewer
[04/07/2009|11:09] C:\Program Files\TomTom DesktopSuite
[04/07/2009|11:10] C:\Program Files\TomTom HOME 2
[04/07/2009|11:10] C:\Program Files\TomTom International B.V
[09/07/2008|20:24] C:\Program Files\Total Video Converter
[31/08/2009|12:06] C:\Program Files\Ubisoft
[13/02/2010|12:31] C:\Program Files\UnifiedToolbar
[11/08/2006|19:40] C:\Program Files\Uninstall Information
[10/10/2009|14:51] C:\Program Files\Windows Live
[16/12/2008|21:41] C:\Program Files\Windows Live SkyDrive
[11/03/2008|22:05] C:\Program Files\Windows Media Connect 2
[05/06/2009|21:49] C:\Program Files\Windows Media Player
[07/09/2008|11:36] C:\Program Files\Windows NT
[12/01/2008|03:21] C:\Program Files\Windows Plus
[11/08/2006|19:28] C:\Program Files\WindowsUpdate
[17/11/2009|22:30] C:\Program Files\WinRAR
[16/03/2008|00:54] C:\Program Files\Wondershare
[12/01/2008|03:21] C:\Program Files\xerox
[12/01/2008|21:12] C:\Program Files\Yahoo!
[06/04/2010|11:07] C:\Program Files\ZHPDiag
[15/10/2009|21:12] C:\Program Files\Zylom Games

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[24/02/2010|19:02] C:\Program Files\Fichiers communs\Adobe
[05/03/2010|21:36] C:\Program Files\Fichiers communs\Adobe AIR
[15/01/2008|19:51] C:\Program Files\Fichiers communs\Designer
[02/02/2008|20:20] C:\Program Files\Fichiers communs\InstallShield
[11/01/2008|20:28] C:\Program Files\Fichiers communs\Java
[02/02/2008|20:30] C:\Program Files\Fichiers communs\Labtec
[12/01/2008|03:20] C:\Program Files\Fichiers communs\LightScribe
[17/07/2009|14:43] C:\Program Files\Fichiers communs\MAGIX Shared
[01/10/2009|15:28] C:\Program Files\Fichiers communs\Memsoft
[22/08/2009|13:32] C:\Program Files\Fichiers communs\Micro Application Shared
[21/02/2009|00:44] C:\Program Files\Fichiers communs\Microsoft Shared
[30/01/2008|16:53] C:\Program Files\Fichiers communs\MOVAVI
[12/01/2008|03:20] C:\Program Files\Fichiers communs\MSSoap
[12/01/2008|03:20] C:\Program Files\Fichiers communs\muvee Technologies
[22/11/2009|18:35] C:\Program Files\Fichiers communs\Nero
[12/01/2008|03:20] C:\Program Files\Fichiers communs\NewTech Infosystems
[12/01/2008|03:20] C:\Program Files\Fichiers communs\ODBC
[02/02/2008|20:20] C:\Program Files\Fichiers communs\ScanSoft Shared
[12/01/2008|03:20] C:\Program Files\Fichiers communs\Services
[12/01/2008|03:20] C:\Program Files\Fichiers communs\SpeechEngines
[04/07/2009|17:07] C:\Program Files\Fichiers communs\SWF Studio
[27/05/2008|18:19] C:\Program Files\Fichiers communs\Symantec Shared
[07/09/2008|11:36] C:\Program Files\Fichiers communs\System
[16/12/2008|21:33] C:\Program Files\Fichiers communs\Windows Live
[13/01/2008|12:32] C:\Program Files\Fichiers communs\WindowsLiveInstaller

--------------------\\ Process

( 24 Processes )

IEXPLORE.EXE ~ [PID:364]
IEXPLORE.EXE ~ [PID:204]
IEXPLORE.EXE ~ [PID:332]

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\DOCUME~1\ALLUSE~1\APPLIC~1\third lies itch ford
C:\DOCUME~1\ANTOINE\APPLIC~1\moredo~1
C:\DOCUME~1\CORINN~1\APPLIC~1\moredo~1
C:\DOCUME~1\PASCAL~1\APPLIC~1\moredo~1
C:\Program Files\moredo~1
C:\Program Files\Circle Developement
C:\DOCUME~1\CORINN~1\Cookies\corinne_baudin@advertstream[1].txt
C:\DOCUME~1\CORINN~1\Cookies\corinne_baudin@d2.advertserve[1].txt
C:\DOCUME~1\CORINN~1\Cookies\corinne_baudin@adultfriendfinder[2].txt
C:\DOCUME~1\CORINN~1\Cookies\corinne_baudin@advertising[2].txt
C:\DOCUME~1\CORINN~1\Cookies\corinne_baudin@spartoo.db.advertising[1].txt
C:\DOCUME~1\CORINN~1\Cookies\corinne_baudin@bigpoint[1].txt
C:\DOCUME~1\CORINN~1\Cookies\corinne_baudin@fr.darkorbit.bigpoint[2].txt
C:\DOCUME~1\CORINN~1\Cookies\corinne_baudin@fr.deepolis.bigpoint[1].txt
C:\DOCUME~1\CORINN~1\Cookies\corinne_baudin@2xmoinscher[1].txt
C:\DOCUME~1\CORINN~1\Cookies\corinne_baudin@www.2xmoinscher[2].txt
C:\WINDOWS\Tasks\B2F110F491CEBD7C.job

--------------------\\ Verification du Registre

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts MODIFIE

127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD
127.0.0.1 download.errorsafe.com ## added by CiD
127.0.0.1 download.systemdoctor.com ## added by CiD
127.0.0.1 download.winantispyware.com ## added by CiD
127.0.0.1 download.windrivecleaner.com ## added by CiD
127.0.0.1 download.winfixer.com ## added by CiD
127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 es.winantivirus.com ## added by CiD
127.0.0.1 fr.winantivirus.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 go.winantivirus.com ## added by CiD
127.0.0.1 hk.winantivirus.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 instlog.winantivirus.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 kb.winantivirus.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 secure.winantivirus.com ## added by CiD
127.0.0.1 support.winantivirus.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 ulog.winantivirus.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 utils.winantivirus.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winantivirus.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 [i]ww/iw.drivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.errorprotector.com ## added by CiD
127.0.0.1 [i]ww/iw.errorsafe.com ## added by CiD
127.0.0.1 [i]ww/iw.systemdoctor.com ## added by CiD
127.0.0.1 [i]ww/iw.utils.winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.win-anti-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.win-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispam.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispy.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispyware.com ## added by CiD
127.0.0.1 [i]ww/iw.winantivirus.com ## added by CiD
127.0.0.1 [i]ww/iw.winantiviruspro.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivesafe.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer2006.com ## added by CiD
127.0.0.1 [i]ww/iw.winsoftware.com ## added by CiD

-> 13336 [ 70 ## added by CiD ]

--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-04-06 19:40:11
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 147

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:22][D:0]-> C:\DOCUME~1\CORINN~1\LOCALS~1\Temp
[F:1813][D:0]-> C:\DOCUME~1\CORINN~1\Cookies
[F:16113][D:35]-> C:\DOCUME~1\CORINN~1\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 06/04/2010|19:42 - Option : [1]

--------------------\\ Fin du rapport a 19:42:24

relance LopS&D et choisis l'option 2 .
ensuite colle le rapport généré .

======

1) Imprime ces instructions car il faudra fermer toutes les fenêtres et applications lors de l'installation et de l'analyse.

2) Télécharge Malwarebytes' Anti-Malware (MBAM) et enregistre le sur ton Bureau à partir de ce lien :

https://www.malwarebytes.com/

3) A la fin du téléchargement, ferme toutes les fenêtres et programmes, y compris celui-ci.

4) Double-clique sur l'icône Download_mbam-setup.exe sur ton bureau pour démarrer le programme d'installation.

5) Pendant l'installation, suis les indications (en particulier le choix de la langue et l'autorisation d'accession à Internet). N'apporte aucune modification aux réglages par défaut et, en fin d'installation, vérifie que les options Update Malwarebytes' Anti-Malware et Launch Malwarebytes' Anti-Malware sont cochées.

6) MBAM démarrera automatiquement et enverra un message demandant à mettre à jour le programme avant de lancer une analyse. Comme MBAM se met automatiquement à jour en fin d'installation, clique sur OK pour fermer la boîte de dialogue. La fenêtre principale de MBAM s'affiche :

7) Dans l'onglet analyse, vérifie que "Exécuter un examen complet" est coché et clique sur le bouton Rechercher pour démarrer l'analyse.

8) MBAM analyse ton ordinateur. L'analyse peut prendre un certain temps. Il suffit de vérifier de temps en temps son avancement.

9) A la fin de l'analyse, un message s'affiche indiquant la fin de l'analyse. Clique sur OK pour poursuivre.

10) Si des malwares ont été détectés, leur liste s'affiche.
En cliquant sur Suppression (?) , MBAM va détruire les fichiers et clés de registre et en mettre une copie dans la quarantaine.

11) MBAM va ouvrir le Bloc-notes et y copier le rapport d'analyse. Ferme le Bloc-notes. (Le rapport peut être retrouvé sous l'onglet Rapports/logs)

12) Ferme MBAM en cliquant sur Quitter.

13) Poste le rapport dans ta réponse **si je ne réponds pas de suite, c'est que moi aussi j'ai un métier et une famille **

Ajouter un commentaire - Permalink (10)
Malwarebytes' Anti-Malware 1.45
www.malwarebytes.org

Version de la base de données: 3961

Windows 5.1.2600 Service Pack 3 (Safe Mode)
Internet Explorer 8.0.6001.18702

06/04/2010 21:43:05
mbam-log-2010-04-06 (21-43-05).txt

Type d'examen: Examen rapide
Elément(s) analysé(s): 187441
Temps écoulé: 18 minute(s), 49 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 8
Valeur(s) du Registre infectée(s): 2
Elément(s) de données du Registre infecté(s): 1
Dossier(s) infecté(s): 1
Fichier(s) infecté(s): 2

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{f22c37fd-2bcb-40b6-a12e-77dda1fbdd88} (Trojan.Banker) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{e24df70b-b210-9a18-22e5-72bb2752bdfc} (Adware.PlayMP3z) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{4e8d6551-f9a4-6d01-4d4b-bfd7673c0e3e} (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{e24df70b-b210-9a18-22e5-72bb2752bdfc} (Adware.PlayMP3z) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{4e8d6551-f9a4-6d01-4d4b-bfd7673c0e3e} (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{f22c37fd-2bcb-40b6-a12e-77dda1fbdd88} (Trojan.Banker) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\cs41275 (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\MoreRelevantAdvertisingProgram (Adware.MoreRelevantAdvertising) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\.exe\shell\open\command\(default) (Hijack.ExeFile) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\secfile\shell\open\command\(default) (Rogue.MultipleAV) -> Quarantined and deleted successfully.

Elément(s) de données du Registre infecté(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command\(default) (Hijack.StartMenuInternet) -> Bad: ("C:\Documents and Settings\CORINNE BAUDIN\Local Settings\Application Data\av.exe" /START "C:\Program Files\Internet Explorer\iexplore.exe") Good: (iexplore.exe) -> Quarantined and deleted successfully.

Dossier(s) infecté(s):
C:\WINDOWS\system32\xmldm (Stolen.Data) -> Quarantined and deleted successfully.

Fichier(s) infecté(s):
C:\WINDOWS\system32\xmldm\netbanke_2010.04.02.120052_corinne_baudin@atdmt[4].txt (Stolen.Data) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\AcroIEHelpe.dll (Spyware.Banker) -> Quarantined and deleted successfully.

Malwarebytes' Anti-Malware 1.45
www.malwarebytes.org

Version de la base de données: 3961

Windows 5.1.2600 Service Pack 3 (Safe Mode)
Internet Explorer 8.0.6001.18702

06/04/2010 23:08:47
mbam-log-2010-04-06 (23-08-47).txt

Type d'examen: Examen complet (C:\|D:\|E:\|G:\|H:\|I:\|J:\|)
Elément(s) analysé(s): 353777
Temps écoulé: 46 minute(s), 23 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 8
Valeur(s) du Registre infectée(s): 3
Elément(s) de données du Registre infecté(s): 1
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{f22c37fd-2bcb-40b6-a12e-77dda1fbdd88} (Trojan.Banker) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{e24df70b-b210-9a18-22e5-72bb2752bdfc} (Adware.PlayMP3z) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{4e8d6551-f9a4-6d01-4d4b-bfd7673c0e3e} (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{e24df70b-b210-9a18-22e5-72bb2752bdfc} (Adware.PlayMP3z) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{4e8d6551-f9a4-6d01-4d4b-bfd7673c0e3e} (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\fcn (Rogue.Residue) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\cs41275 (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\MoreRelevantAdvertisingProgram (Adware.MoreRelevantAdvertising) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\kqmck (Trojan.Agent.H) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\.exe\shell\open\command\(default) (Hijack.ExeFile) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\secfile\shell\open\command\(default) (Rogue.MultipleAV) -> Quarantined and deleted successfully.

Elément(s) de données du Registre infecté(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command\(default) (Hijack.StartMenuInternet) -> Bad: ("C:\Documents and Settings\CORINNE BAUDIN\Local Settings\Application Data\av.exe" /START "C:\Program Files\Internet Explorer\iexplore.exe") Good: (iexplore.exe) -> Quarantined and deleted successfully.

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)

Je te fais parvenir LOPS&D OPTION 2 que j'avais oublié hier.
Merci

--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : AMD Athlon(tm) 64 X2 Dual Core Processor 4200+ )
BIOS : )Phoenix - Award WorkstationBIOS v6.00PG
USER : CORINNE BAUDIN ( Administrator )
BOOT : Fail-safe with network boot
Antivirus : Avira AntiVir PersonalEdition 8.0.1.30 (Activated)
C:\ (Local Disk) - NTFS - Total:113 Go (Free:21 Go)
D:\ (Local Disk) - FAT32 - Total:113 Go (Free:113 Go)
E:\ (CD or DVD)
G:\ (USB)
H:\ (USB)
I:\ (USB)
J:\ (USB)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [2] ( 06/04/2010|20:55 )


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

Supprime! - C:\DOCUME~1\CORINN~1\Cookies\corinne_baudin@advertstream[1].txt
Supprime! - C:\DOCUME~1\CORINN~1\Cookies\corinne_baudin@d2.advertserve[1].txt
Supprime! - C:\DOCUME~1\CORINN~1\Cookies\corinne_baudin@adultfriendfinder[2].txt
Supprime! - C:\DOCUME~1\CORINN~1\Cookies\corinne_baudin@advertising[2].txt
Supprime! - C:\DOCUME~1\CORINN~1\Cookies\corinne_baudin@spartoo.db.advertising[1].txt
Supprime! - C:\DOCUME~1\CORINN~1\Cookies\corinne_baudin@bigpoint[1].txt
Supprime! - C:\DOCUME~1\CORINN~1\Cookies\corinne_baudin@fr.darkorbit.bigpoint[2].txt
Supprime! - C:\DOCUME~1\CORINN~1\Cookies\corinne_baudin@fr.deepolis.bigpoint[1].txt
Supprime! - C:\DOCUME~1\CORINN~1\Cookies\corinne_baudin@2xmoinscher[1].txt
Supprime! - C:\DOCUME~1\CORINN~1\Cookies\corinne_baudin@www.2xmoinscher[2].txt
Supprime! - C:\WINDOWS\Tasks\B2F110F491CEBD7C.job
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\third lies itch ford
Supprime! - C:\DOCUME~1\ANTOINE\APPLIC~1\moredo~1
Supprime! - C:\DOCUME~1\CORINN~1\APPLIC~1\moredo~1
Supprime! - C:\DOCUME~1\PASCAL~1\APPLIC~1\moredo~1
Supprime! - C:\Program Files\moredo~1
Supprime! - C:\Program Files\Circle Developement
-
[ Fichier Hosts ] .. Restaure!

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


--------------------\\ Listing des dossiers dans APPLIC~1

[12/01/2008|03:19] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[12/01/2008|03:19] C:\DOCUME~1\ADMINI~1\APPLIC~1\Macromedia
[13/04/2008|12:20] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft

[24/02/2010|12:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{0145F9DA-C702-4614-9CCB-04D1279C9CB2}
[04/02/2010|11:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{924B45CC-9477-41E9-808B-6F623B920F1E}
[22/02/2010|15:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{DF3D7EF6-7048-48B8-BA35-8E517A744670}
[30/03/2008|12:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\~0
[24/02/2010|19:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[08/03/2010|20:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\agi
[13/04/2008|12:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\avg7
[14/05/2008|22:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avira
[14/01/2008|22:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[06/10/2009|11:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[02/04/2008|19:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
[04/02/2009|12:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hps
[08/04/2008|21:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\IM
[04/02/2010|11:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Iminent
[08/04/2008|21:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\IncrediMail
[02/02/2008|20:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[22/11/2009|18:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MAGIX
[02/02/2009|19:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[24/02/2010|19:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee
[13/01/2008|15:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[21/02/2009|00:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[12/04/2008|12:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NCH Swift Sound
[22/11/2009|18:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Nero
[07/03/2010|13:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NOS
[09/12/2009|11:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PhotoMail
[02/02/2008|20:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ScanSoft
[20/01/2010|16:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[06/04/2010|19:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[30/03/2009|11:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SweetIM
[12/01/2008|23:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[09/11/2008|18:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[04/07/2009|11:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TomTom
[06/02/2008|17:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[13/01/2008|15:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[26/08/2008|21:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\wmp
[15/10/2009|21:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom

[14/10/2008|17:37] C:\DOCUME~1\ANTOINE\APPLIC~1\Acoustica
[16/03/2010|20:13] C:\DOCUME~1\ANTOINE\APPLIC~1\Adobe
[23/09/2008|21:35] C:\DOCUME~1\ANTOINE\APPLIC~1\AdobeUM
[09/03/2010|11:18] C:\DOCUME~1\ANTOINE\APPLIC~1\agi
[16/03/2010|20:13] C:\DOCUME~1\ANTOINE\APPLIC~1\app
[24/09/2008|21:06] C:\DOCUME~1\ANTOINE\APPLIC~1\ArcSoft
[06/04/2008|13:55] C:\DOCUME~1\ANTOINE\APPLIC~1\AVG7
[02/03/2010|19:16] C:\DOCUME~1\ANTOINE\APPLIC~1\Bandoo
[23/02/2008|12:58] C:\DOCUME~1\ANTOINE\APPLIC~1\CyberLink
[20/01/2008|17:06] C:\DOCUME~1\ANTOINE\APPLIC~1\DivX
[27/03/2010|14:40] C:\DOCUME~1\ANTOINE\APPLIC~1\dofus 2
[16/03/2010|20:13] C:\DOCUME~1\ANTOINE\APPLIC~1\Dofus.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
[21/02/2010|15:37] C:\DOCUME~1\ANTOINE\APPLIC~1\EoRezo
[05/11/2008|22:30] C:\DOCUME~1\ANTOINE\APPLIC~1\gtk-2.0
[15/01/2008|21:30] C:\DOCUME~1\ANTOINE\APPLIC~1\Help
[07/06/2008|14:32] C:\DOCUME~1\ANTOINE\APPLIC~1\Hotbar_Icons
[12/01/2008|03:19] C:\DOCUME~1\ANTOINE\APPLIC~1\Identities
[14/09/2008|19:03] C:\DOCUME~1\ANTOINE\APPLIC~1\InfraRecorder
[17/03/2008|22:04] C:\DOCUME~1\ANTOINE\APPLIC~1\ItsLabel
[23/12/2009|00:15] C:\DOCUME~1\ANTOINE\APPLIC~1\LimeWire
[16/02/2008|16:48] C:\DOCUME~1\ANTOINE\APPLIC~1\Macromedia
[30/03/2010|17:27] C:\DOCUME~1\ANTOINE\APPLIC~1\Microsoft
[17/07/2009|21:33] C:\DOCUME~1\ANTOINE\APPLIC~1\Nero
[16/03/2010|20:13] C:\DOCUME~1\ANTOINE\APPLIC~1\RegTesting.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
[10/10/2009|22:55] C:\DOCUME~1\ANTOINE\APPLIC~1\Screaming Bee
[19/01/2010|23:25] C:\DOCUME~1\ANTOINE\APPLIC~1\Skype
[19/01/2010|19:38] C:\DOCUME~1\ANTOINE\APPLIC~1\skypePM
[29/03/2008|14:48] C:\DOCUME~1\ANTOINE\APPLIC~1\Sun
[22/02/2010|16:15] C:\DOCUME~1\ANTOINE\APPLIC~1\TeamViewer
[02/09/2009|14:22] C:\DOCUME~1\ANTOINE\APPLIC~1\U3
[27/03/2009|21:44] C:\DOCUME~1\ANTOINE\APPLIC~1\YouUp

[06/07/2009|15:16] C:\DOCUME~1\CORINN~1\APPLIC~1\.#
[14/02/2010|16:12] C:\DOCUME~1\CORINN~1\APPLIC~1\Adobe
[24/08/2008|18:42] C:\DOCUME~1\CORINN~1\APPLIC~1\AdobeUM
[08/06/2009|18:37] C:\DOCUME~1\CORINN~1\APPLIC~1\AdSigner
[09/03/2010|11:18] C:\DOCUME~1\CORINN~1\APPLIC~1\agi
[02/10/2009|18:35] C:\DOCUME~1\CORINN~1\APPLIC~1\AlauxSoft
[05/03/2010|21:37] C:\DOCUME~1\CORINN~1\APPLIC~1\app
[11/07/2008|17:09] C:\DOCUME~1\CORINN~1\APPLIC~1\ArcSoft
[13/04/2008|12:13] C:\DOCUME~1\CORINN~1\APPLIC~1\AVG7
[26/02/2010|11:00] C:\DOCUME~1\CORINN~1\APPLIC~1\Bandoo
[22/09/2009|10:41] C:\DOCUME~1\CORINN~1\APPLIC~1\Canon
[24/11/2008|20:31] C:\DOCUME~1\CORINN~1\APPLIC~1\CyberLink
[30/03/2008|19:36] C:\DOCUME~1\CORINN~1\APPLIC~1\DivX
[14/03/2010|20:24] C:\DOCUME~1\CORINN~1\APPLIC~1\dofus 2
[14/03/2010|20:01] C:\DOCUME~1\CORINN~1\APPLIC~1\Dofus.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
[14/03/2010|16:47] C:\DOCUME~1\CORINN~1\APPLIC~1\Dofus-2.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
[14/03/2010|17:32] C:\DOCUME~1\CORINN~1\APPLIC~1\Dofus-3.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
[22/02/2010|15:42] C:\DOCUME~1\CORINN~1\APPLIC~1\EoRezo
[22/02/2010|16:25] C:\DOCUME~1\CORINN~1\APPLIC~1\fontaudio3D
[06/10/2009|10:11] C:\DOCUME~1\CORINN~1\APPLIC~1\Google
[10/04/2009|18:25] C:\DOCUME~1\CORINN~1\APPLIC~1\gtk-2.0
[02/04/2008|19:04] C:\DOCUME~1\CORINN~1\APPLIC~1\Help
[12/01/2008|03:19] C:\DOCUME~1\CORINN~1\APPLIC~1\Identities
[30/03/2008|15:24] C:\DOCUME~1\CORINN~1\APPLIC~1\InfraRecorder
[16/03/2008|11:56] C:\DOCUME~1\CORINN~1\APPLIC~1\ItsLabel
[22/01/2010|12:11] C:\DOCUME~1\CORINN~1\APPLIC~1\LimeWire
[30/03/2008|21:06] C:\DOCUME~1\CORINN~1\APPLIC~1\Macromedia
[02/02/2009|19:58] C:\DOCUME~1\CORINN~1\APPLIC~1\Malwarebytes
[22/11/2009|18:20] C:\DOCUME~1\CORINN~1\APPLIC~1\Microsoft
[15/01/2008|19:48] C:\DOCUME~1\CORINN~1\APPLIC~1\Microsoft Web Folders
[04/07/2009|11:11] C:\DOCUME~1\CORINN~1\APPLIC~1\Mozilla
[15/01/2008|20:07] C:\DOCUME~1\CORINN~1\APPLIC~1\MSNInstaller
[12/09/2009|19:25] C:\DOCUME~1\CORINN~1\APPLIC~1\Nero
[05/03/2010|21:37] C:\DOCUME~1\CORINN~1\APPLIC~1\Reg.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
[21/03/2010|16:42] C:\DOCUME~1\CORINN~1\APPLIC~1\RegTesting.C9ECCBDBA4E09304DEEFB106465BC17F6D6749B9.1
[02/02/2008|20:20] C:\DOCUME~1\CORINN~1\APPLIC~1\ScanSoft
[20/01/2008|14:41] C:\DOCUME~1\CORINN~1\APPLIC~1\Sun
[10/09/2009|19:04] C:\DOCUME~1\CORINN~1\APPLIC~1\TeamViewer
[04/07/2009|11:10] C:\DOCUME~1\CORINN~1\APPLIC~1\TomTom
[21/02/2010|15:22] C:\DOCUME~1\CORINN~1\APPLIC~1\Uniblue
[24/05/2008|23:44] C:\DOCUME~1\CORINN~1\APPLIC~1\vlc
[28/03/2009|14:18] C:\DOCUME~1\CORINN~1\APPLIC~1\YouUp

[12/01/2008|03:19] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[12/01/2008|03:19] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
[12/01/2008|03:19] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft


[12/02/2010|17:44] C:\DOCUME~1\LOCALS~1\APPLIC~1\Adobe
[09/03/2010|11:18] C:\DOCUME~1\LOCALS~1\APPLIC~1\agi
[02/04/2008|19:22] C:\DOCUME~1\LOCALS~1\APPLIC~1\AVG7
[13/02/2010|12:31] C:\DOCUME~1\LOCALS~1\APPLIC~1\Macromedia
[27/02/2010|19:32] C:\DOCUME~1\LOCALS~1\APPLIC~1\McAfee
[13/04/2008|12:20] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[13/04/2008|12:20] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

[12/01/2008|03:19] C:\DOCUME~1\PANNE\APPLIC~1\Identities
[12/01/2008|03:19] C:\DOCUME~1\PANNE\APPLIC~1\Macromedia
[12/01/2008|03:19] C:\DOCUME~1\PANNE\APPLIC~1\Microsoft

[31/01/2008|22:14] C:\DOCUME~1\PASCAL~1\APPLIC~1\Adobe
[01/10/2008|20:40] C:\DOCUME~1\PASCAL~1\APPLIC~1\AdobeUM
[09/03/2010|11:18] C:\DOCUME~1\PASCAL~1\APPLIC~1\agi
[13/04/2008|12:00] C:\DOCUME~1\PASCAL~1\APPLIC~1\AVG7
[28/08/2008|23:10] C:\DOCUME~1\PASCAL~1\APPLIC~1\DivX
[20/02/2010|20:52] C:\DOCUME~1\PASCAL~1\APPLIC~1\EoRezo
[07/06/2008|17:09] C:\DOCUME~1\PASCAL~1\APPLIC~1\Hotbar_Icons
[12/01/2008|03:19] C:\DOCUME~1\PASCAL~1\APPLIC~1\Identities
[20/03/2008|21:51] C:\DOCUME~1\PASCAL~1\APPLIC~1\ItsLabel
[12/01/2008|03:19] C:\DOCUME~1\PASCAL~1\APPLIC~1\Macromedia
[08/03/2010|13:48] C:\DOCUME~1\PASCAL~1\APPLIC~1\Malwarebytes
[09/03/2010|15:43] C:\DOCUME~1\PASCAL~1\APPLIC~1\Microsoft
[08/04/2008|23:14] C:\DOCUME~1\PASCAL~1\APPLIC~1\Sun
[09/03/2010|12:08] C:\DOCUME~1\PASCAL~1\APPLIC~1\Uniblue

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[02/04/2010 11:37][--ah-----] C:\WINDOWS\tasks\User_Feed_Synchronization-{D107DC25-DC34-48EF-B171-D6C263012617}.job
[06/04/2010 14:16][--ah-----] C:\WINDOWS\tasks\SA.DAT
[10/08/2004 22:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[12/01/2008|03:20] C:\Program Files\Acer WLAN 11g USB Dongle
[14/10/2008|20:30] C:\Program Files\Acoustica Mixcraft 3
[14/10/2008|17:37] C:\Program Files\Acoustica Shared Effects
[14/10/2008|18:50] C:\Program Files\AdmixDJ 2
[24/02/2010|19:01] C:\Program Files\Adobe
[13/02/2010|14:18] C:\Program Files\AGI
[12/01/2008|23:15] C:\Program Files\Alwil Software
[31/01/2009|13:07] C:\Program Files\Angle Interactive
[02/04/2008|19:07] C:\Program Files\AntiVir PersonalEdition Classic
[02/02/2008|20:19] C:\Program Files\ArcSoft
[26/06/2009|23:22] C:\Program Files\Atlas Bordas collSge
[14/05/2008|22:34] C:\Program Files\Avira
[24/04/2008|21:11] C:\Program Files\AviSynth 2.5
[05/11/2009|11:49] C:\Program Files\Canon
[10/08/2008|22:17] C:\Program Files\CFWebAdvancedU_BOBTV.FR
[04/03/2008|20:49] C:\Program Files\City Interactive
[27/05/2008|22:00] C:\Program Files\Club-Internet
[12/01/2008|03:20] C:\Program Files\commercial
[11/08/2006|19:27] C:\Program Files\ComPlus Applications
[02/10/2009|22:49] C:\Program Files\Conduit
[12/01/2008|03:20] C:\Program Files\CyberLink
[12/01/2008|03:20] C:\Program Files\DIFX
[15/11/2008|17:31] C:\Program Files\directx
[11/06/2008|20:01] C:\Program Files\Disc2Phone
[11/01/2010|10:34] C:\Program Files\DivX
[15/03/2010|20:06] C:\Program Files\Dofus 2
[05/03/2010|21:36] C:\Program Files\Fichiers communs
[12/01/2008|03:20] C:\Program Files\FrenchOtto
[22/02/2010|15:44] C:\Program Files\GemMasterFrench
[20/01/2010|16:50] C:\Program Files\Google
[02/04/2008|19:22] C:\Program Files\Grisoft
[13/02/2010|12:33] C:\Program Files\IMBooster4web-en
[24/02/2010|12:30] C:\Program Files\Iminent
[26/08/2009|12:51] C:\Program Files\IncrediMail
[24/01/2008|20:19] C:\Program Files\InfraRecorder
[29/10/2009|12:53] C:\Program Files\InstallShield Installation Information
[02/04/2010|15:15] C:\Program Files\Internet Explorer
[30/03/2008|13:28] C:\Program Files\Java
[02/04/2008|21:41] C:\Program Files\LimeWire
[02/10/2009|16:20] C:\Program Files\LoCoSoft
[02/02/2008|20:31] C:\Program Files\Logitech
[18/01/2010|20:29] C:\Program Files\MAGIX
[09/03/2010|11:18] C:\Program Files\Malwarebytes' Anti-Malware
[22/11/2009|18:17] C:\Program Files\McDonaldsDragons
[07/09/2008|11:42] C:\Program Files\Messenger
[22/05/2009|21:17] C:\Program Files\Messenger Plus! Live
[16/12/2008|21:41] C:\Program Files\Microsoft
[13/01/2008|18:46] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[15/01/2008|19:53] C:\Program Files\microsoft frontpage
[15/01/2008|19:48] C:\Program Files\Microsoft Office
[21/01/2010|10:41] C:\Program Files\Microsoft Silverlight
[13/01/2008|12:37] C:\Program Files\Microsoft SQL Server Compact Edition
[16/12/2008|21:45] C:\Program Files\Microsoft Sync Framework
[15/01/2008|19:51] C:\Program Files\Microsoft Visual Studio
[01/02/2008|19:39] C:\Program Files\Mindscape
[15/01/2009|22:11] C:\Program Files\Movavi Video Converter 6
[10/03/2010|10:39] C:\Program Files\Movie Maker
[22/08/2009|01:50] C:\Program Files\MSBuild
[13/01/2008|15:12] C:\Program Files\MSN
[12/01/2008|03:20] C:\Program Files\MSN Gaming Zone
[04/02/2008|01:27] C:\Program Files\MSXML 4.0
[06/04/2010|19:33] C:\Program Files\navilog1
[22/11/2009|18:24] C:\Program Files\Nero
[07/09/2008|11:36] C:\Program Files\NetMeeting
[20/01/2010|16:48] C:\Program Files\Neuf
[12/01/2008|03:20] C:\Program Files\NewTech Infosystems
[12/01/2008|03:21] C:\Program Files\Oca History Tool
[12/01/2008|03:21] C:\Program Files\Online Services
[02/04/2008|20:10] C:\Program Files\outlook
[16/08/2009|23:15] C:\Program Files\Outlook Express
[04/02/2009|12:49] C:\Program Files\PHOTO U
[09/12/2009|11:13] C:\Program Files\PhotoMail Maker
[13/02/2008|22:02] C:\Program Files\Powerbullet
[12/01/2008|03:21] C:\Program Files\Realtek
[22/08/2009|01:50] C:\Program Files\Reference Assemblies
[02/02/2008|20:20] C:\Program Files\ScanSoft
[10/10/2009|22:37] C:\Program Files\Screaming Bee
[12/01/2008|03:21] C:\Program Files\Services en ligne
[06/04/2010|19:27] C:\Program Files\Spybot - Search & Destroy
[24/05/2008|10:34] C:\Program Files\Spyware Doctor
[11/01/2010|10:35] C:\Program Files\Sweet Games
[30/03/2009|11:11] C:\Program Files\SweetIM
[10/09/2009|09:59] C:\Program Files\TeamViewer
[04/07/2009|11:09] C:\Program Files\TomTom DesktopSuite
[04/07/2009|11:10] C:\Program Files\TomTom HOME 2
[04/07/2009|11:10] C:\Program Files\TomTom International B.V
[09/07/2008|20:24] C:\Program Files\Total Video Converter
[31/08/2009|12:06] C:\Program Files\Ubisoft
[13/02/2010|12:31] C:\Program Files\UnifiedToolbar
[11/08/2006|19:40] C:\Program Files\Uninstall Information
[10/10/2009|14:51] C:\Program Files\Windows Live
[16/12/2008|21:41] C:\Program Files\Windows Live SkyDrive
[11/03/2008|22:05] C:\Program Files\Windows Media Connect 2
[05/06/2009|21:49] C:\Program Files\Windows Media Player
[07/09/2008|11:36] C:\Program Files\Windows NT
[12/01/2008|03:21] C:\Program Files\Windows Plus
[11/08/2006|19:28] C:\Program Files\WindowsUpdate
[17/11/2009|22:30] C:\Program Files\WinRAR
[16/03/2008|00:54] C:\Program Files\Wondershare
[12/01/2008|03:21] C:\Program Files\xerox
[12/01/2008|21:12] C:\Program Files\Yahoo!
[06/04/2010|11:07] C:\Program Files\ZHPDiag
[15/10/2009|21:12] C:\Program Files\Zylom Games

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[24/02/2010|19:02] C:\Program Files\Fichiers communs\Adobe
[05/03/2010|21:36] C:\Program Files\Fichiers communs\Adobe AIR
[15/01/2008|19:51] C:\Program Files\Fichiers communs\Designer
[02/02/2008|20:20] C:\Program Files\Fichiers communs\InstallShield
[11/01/2008|20:28] C:\Program Files\Fichiers communs\Java
[02/02/2008|20:30] C:\Program Files\Fichiers communs\Labtec
[12/01/2008|03:20] C:\Program Files\Fichiers communs\LightScribe
[17/07/2009|14:43] C:\Program Files\Fichiers communs\MAGIX Shared
[01/10/2009|15:28] C:\Program Files\Fichiers communs\Memsoft
[22/08/2009|13:32] C:\Program Files\Fichiers communs\Micro Application Shared
[21/02/2009|00:44] C:\Program Files\Fichiers communs\Microsoft Shared
[30/01/2008|16:53] C:\Program Files\Fichiers communs\MOVAVI
[12/01/2008|03:20] C:\Program Files\Fichiers communs\MSSoap
[12/01/2008|03:20] C:\Program Files\Fichiers communs\muvee Technologies
[22/11/2009|18:35] C:\Program Files\Fichiers communs\Nero
[12/01/2008|03:20] C:\Program Files\Fichiers communs\NewTech Infosystems
[12/01/2008|03:20] C:\Program Files\Fichiers communs\ODBC
[02/02/2008|20:20] C:\Program Files\Fichiers communs\ScanSoft Shared
[12/01/2008|03:20] C:\Program Files\Fichiers communs\Services
[12/01/2008|03:20] C:\Program Files\Fichiers communs\SpeechEngines
[04/07/2009|17:07] C:\Program Files\Fichiers communs\SWF Studio
[27/05/2008|18:19] C:\Program Files\Fichiers communs\Symantec Shared
[07/09/2008|11:36] C:\Program Files\Fichiers communs\System
[16/12/2008|21:33] C:\Program Files\Fichiers communs\Windows Live
[13/01/2008|12:32] C:\Program Files\Fichiers communs\WindowsLiveInstaller

--------------------\\ Process

( 20 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-04-06 20:56:00
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 147

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:1][D:0]-> C:\DOCUME~1\CORINN~1\LOCALS~1\Temp
[F:1803][D:0]-> C:\DOCUME~1\CORINN~1\Cookies
[F:16163][D:35]-> C:\DOCUME~1\CORINN~1\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 06/04/2010|19:42 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 06/04/2010|20:57 - Option : [2]

--------------------\\ Fin du rapport a 20:57:06

http://www.cijoint.fr/cjlink.php?file=cj201004/cijI2STUoF.txt

Merci !

Voiçi le rapport USBFIX. txt
Mille Merci !


############################## | UsbFix V6.100 |

User : CORINNE BAUDIN (Administrateurs) # CORINNE
Update on 18/03/2010 by El Desaparecido , C_XX & Chimay8
Start at: 21:26:24 | 07/04/2010
Website : http://pagesperso-orange.fr/NosTools/index.html
Contact : FindyKill.Contact@gmail.com

AMD Athlon(tm) 64 X2 Dual Core Processor 4200+
Microsoft Windows XP Professionnel (5.1.2600 32-bit) # Service Pack 3
Internet Explorer 8.0.6001.18702
Windows Firewall Status : Enabled
AV : Avira AntiVir PersonalEdition 8.0.1.30 [ Enabled | Updated ]

C:\ -> Disque fixe local # 113,27 Go (21,11 Go free) [ACER] # NTFS
D:\ -> Disque fixe local # 113,73 Go (113,68 Go free) [ACERDATA] # FAT32
E:\ -> Disque CD-ROM
G:\ -> Disque amovible
H:\ -> Disque amovible
I:\ -> Disque amovible
J:\ -> Disque amovible

################## | Elements infectieux |


################## | Registre |


################## | Mountpoints2 |

HKCU\..\..\Explorer\MountPoints2\{43cc9d11-c850-11dc-9186-001921a7e19f}
Shell\Auto\command =J:\AdobeR.exe e
Shell\AutoRun\command =C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL AdobeR.exe e

################## | Vaccin |

(!) Cet ordinateur n'est pas vacciné !

################## | ! Fin du rapport # UsbFix V6.100 ! |

############################## | UsbFix V6.100 |

Je voulais juste rajouter que je démarre toujour en mode dans échec depuis mon problème sinon mon ordi s'éteind et se rallume.
Merci !

ok Merci alors je ferais ca demain matin.

Pas de soucis ,j'attend le rapport .

Bonjour,

En fait je n'arrive pas à télécharger Combofix un message apparait que me dit : window ne trouve pas 32788R22FWJFW\IEXPLORE.EXE vérifié que vous avez entré le nom correctement "
Je suis désolée !

C'est fait le voiçi !
Merci !
http://www.cijoint.fr/cjlink.php?file=cj201004/cij0yjNo3y.txt

En cliquant sur Avenger il n'a pas pu Re-démarrer le système. J'ai bien un fichier Avenger qui est celui ci :
//////////////////////////////////////////
Avenger Pre-Processor log
//////////////////////////////////////////

Platform: Windows XP (build 2600, Service Pack 3)
Tue Apr 13 13:21:09 2010

13:21:09: Error: Could not initiate reboot. (error 53: le chemin réseau n'a pas été trouvé.)


//////////////////////////////////////////


//////////////////////////////////////////
Avenger Pre-Processor log
//////////////////////////////////////////

Platform: Windows XP (build 2600, Service Pack 3)
Tue Apr 13 13:25:59 2010

13:25:59: Error: Could not initiate reboot. (error 53: le chemin réseau n'a pas été trouvé.)


//////////////////////////////////////////

Et puis j'ai une application Zip de 132 ko qui s'est crée.

Voilà Merci !

Après avoir copie et collé rien ne se passe . J'ai essayé plusieur fois et le système a fini par me sortir cette phrase d'erreur : error: could not initiate reboot. (error53: le chemin réseau n'a pas été trouvé) .
Merci

Il faut juste que tu colle mes intructions dans le presse papier (Ctrl+C) ensuite tu clique sur l'icone de droite (en rose et bleu) et le texte va se copier automatiquement .

c'est ce que j'ai fait ! .......

Je viens de le rerefaire et dans mon gestionnaire de taches je vois pas de réponse.
.....

Merci pour ta patience donc je viens de copier et ouvrir Killbox
et faire ce que tu me dis et comme d'habitude mon PC ne veut pas redémarrer donc je lui force la main et l'éteind à l'arrache et le redémarre en mode normal mais il ne veut pas donc je le redémarre en mode sans échec et rien de mieu mon message winlogon.exe est toujours là . Je crois que je suis dans la M... ce VIRUS est bien accroché....
Voici le résumé de la situation .
Un grand merci à toi .

Bonjour,

Voiçi le rapport

Srpski | ?????????? | ??????? | Suomi | ihMdI | | ????? | | Slovens?ina | Dansk | ??????? | Român? | Türkçe | Nederlands | ???????? | Svenska | Português | Italiano | | | Magyar | Deutsch | ?esky | Polski | Español | English
Virustotal est un service qui analyse les fichiers suspects et facilite la détection rapide des virus, vers, chevaux de Troie et toutes sortes de malwares détectés par les moteurs antivirus. Plus d'informations...

Fichier winlogon.exe reçu le 2010.04.12 00:07:55 (UTC)
Situation actuelle: terminé

Résultat: 0/38 (0.00%)
Formaté Impression des résultats Antivirus Version Dernière mise à jour Résultat
a-squared 4.5.0.50 2010.04.11 -
AhnLab-V3 5.0.0.2 2010.04.10 -
AntiVir 7.10.6.56 2010.04.12 -
Antiy-AVL 2.0.3.7 2010.04.09 -
Authentium 5.2.0.5 2010.04.12 -
Avast 4.8.1351.0 2010.04.11 -
Avast5 5.0.332.0 2010.04.11 -
AVG 9.0.0.787 2010.04.11 -
BitDefender 7.2 2010.04.12 -
CAT-QuickHeal 10.00 2010.04.10 -
ClamAV 0.96.0.3-git 2010.04.12 -
Comodo 4573 2010.04.12 -
DrWeb 5.0.2.03300 2010.04.12 -
eTrust-Vet 35.2.7418 2010.04.09 -
F-Prot 4.5.1.85 2010.04.12 -
F-Secure 9.0.15370.0 2010.04.11 -
Fortinet 4.0.14.0 2010.04.10 -
GData 19 2010.04.12 -
Ikarus T3.1.1.80.0 2010.04.11 -
Jiangmin 13.0.900 2010.04.11 -
Kaspersky 7.0.0.125 2010.04.11 -
McAfee-GW-Edition 6.8.5 2010.04.12 -
Microsoft 1.5605 2010.04.11 -
NOD32 5018 2010.04.11 -
Norman 6.04.11 2010.04.11 -
nProtect 2009.1.8.0 2010.04.06 -
Panda 10.0.2.2 2010.04.11 -
PCTools 7.0.3.5 2010.04.12 -
Prevx 3.0 2010.04.12 -
Rising 22.42.06.04 2010.04.11 -
Sophos 4.52.0 2010.04.11 -
Sunbelt 6165 2010.04.12 -
Symantec 20091.2.0.41 2010.04.12 -
TheHacker 6.5.2.0.259 2010.04.11 -
TrendMicro 9.120.0.1004 2010.04.11 -
VBA32 3.12.12.4 2010.04.09 -
ViRobot 2010.4.10.2270 2010.04.11 -
VirusBuster 5.0.27.0 2010.04.11 -
Information additionnelle
File size: 512000 bytes
MD5 : dd73d6b9f6b4cb630cf35b438b540174
SHA1 : 2904328b7e27f004042d4f83440c50659d64018b
SHA256: ecef5a07dbc72e99adcb82af4dab143f5a2bad3812ccbfa87ea5e82e29e133fa
PEInfo: PE Structure information

( base data )
entrypointaddress.: 0x3E5E1
timedatestamp.....: 0x48027549 (Sun Apr 13 23:04:09 2008)
machinetype.......: 0x14C (Intel I386)

( 3 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x70991 0x70A00 6.82 82b1e7e83279c56e34dc6c6e8c33f81d
.data 0x72000 0x4E70 0x2000 6.28 44bd27282514b5e3a27b570106930d8d
.rsrc 0x77000 0xA18C 0xA200 3.69 2de1a63c2a7883cf163c3699bb614883

( 0 imports )


( 0 exports )

TrID : File type identification
Win64 Executable Generic (80.9%)
Win32 Executable Generic (8.0%)
Win32 Dynamic Link Library (generic) (7.1%)
Generic Win/DOS Executable (1.8%)
DOS Executable Generic (1.8%)
ssdeep: 6144:SNZlxEdL5RvGlcHF37newMLao6nMnKHOD13XRnCfOVSePfLtisgZYlg:tdz+lcDKao6nSKHsRqOMgxZgp
sigcheck: publisher....: Microsoft Corporation
copyright....: (c) Microsoft Corporation. Tous droits r_serv_s.
product......: Syst_me d_exploitation Microsoft_ Windows_
description..: Application d_ouverture de session Windows NT
original name: WINLOGON.EXE
internal name: winlogon
file version.: 5.1.2600.5512 (xpsp.080413-2113)
comments.....: n/a
signers......: -
signing date.: -
verified.....: Unsigned

PEiD : -
CWSandbox: http://research.sunbelt-software.com/...
RDS : NSRL Reference Data Set
-


ATTENTION: VirusTotal est un service gratuit offert par Hispasec Sistemas. Il n'y a aucune garantie quant à la disponibilité et la continuité de ce service. Bien que le taux de détection permis par l'utilisation de multiples moteurs antivirus soit bien supérieur à celui offert par seulement un produit, ces résultats NE garantissent PAS qu'un fichier est sans danger. Il n'y a actuellement aucune solution qui offre un taux d'efficacité de 100% pour la détection des virus et malwares.

VirusTotal © Hispasec Sistemas - Blog - Contact: info@virustotal.com - Terms of Service & Privacy Policy

Dois je remettre les croix correctement dans option dossier ?