Win32/Adware.Virtumonde & PrivacyRemover.M64
krendllow
-
Destrio5 Messages postés 99820 Statut Modérateur -
Destrio5 Messages postés 99820 Statut Modérateur -
Bonjour, je nage dans le broullar svp aider moi...
Mon fond d'écran est tout blanc et me met un message qui dit que je dois scanner mon ordi car j'ai deux spyware detecter : Win32/Adware.Virtumonde et Win32/PrivacyRemover.M64.j'ai scanner mais ça ne donne rien. il me dit qu'il a réglé soit disant les problèmes, mais mon fond est toujours blanc avec le meme message
es ce que quelqu'un saurait comment je pourrais me débarrasser de ces spyware? merci d'avance
voici mon rapport hijackthis:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 02:31:38, on 26/08/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\PROGRA~1\MESSAG~1\StartMessager.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\WINDOWS\system32\DSP24Set.exe
C:\Program Files\Fichiers communs\DriveCleaner 2006 Free\SDRmon.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\WINDOWS\system32\lphcc6nj0e9ce.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Antipub\antipub.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
C:\WINDOWS\System32\CbEvtSvc.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Memeo\AutoBackup\MemeoBackup.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\taskmgr.exe
C:\Program Files\Mozilla Firefox\firefox.exe
D:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Protection Bar - {5d4831e0-5a7c-4a46-afd5-a79ab8ce36c2} - C:\Program Files\Video ActiveX Object\iesplugin.dll (file missing)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [MessagerStarter Wanadoo] C:\PROGRA~1\MESSAG~1\StartMessager.exe Messager Wanadoo
O4 - HKLM\..\Run: [AudioDSP24 External Links] EL.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [uerscw] C:\Program Files\ErrorSafe Free\uerscw.exe -c
O4 - HKLM\..\Run: [SDR6V_Check] "C:\Program Files\Fichiers communs\DriveCleaner 2006 Free\SDRmon.exe"
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "G:\Program Files\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [lphcc6nj0e9ce] C:\WINDOWS\system32\lphcc6nj0e9ce.exe
O4 - HKLM\..\Run: [SMrhc96nj0e9ce] C:\Program Files\rhc96nj0e9ce\rhc96nj0e9ce.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BlazeServoTool] "G:\Program Files\BlazeDVD 4 Standard\MediaDetector.exe"
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [WINSOS VERIFY] "C:\Program Files\Winsos\WINSOS.EXE" MINI
O4 - HKCU\..\Run: [Error Safe Free] C:\Program Files\ErrorSafe Free\uers.exe /scan
O4 - HKCU\..\Run: [Bias camp] C:\DOCUME~1\Ben\APPLIC~1\SLOWOW~1\Eq test build.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Fichiers communs\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKLM\..\Policies\Explorer\Run: [isamonitor.exe] C:\Program Files\Video ActiveX Object\isamonitor.exe
O4 - HKLM\..\Policies\Explorer\Run: [pmsngr.exe] C:\Program Files\Video ActiveX Object\pmsngr.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVGFRE~1\avgw.exe /RUNONCE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: Anti-Pub.lnk = C:\Program Files\Antipub\antipub.exe
O4 - Startup: Memeo AutoBackup Launcher.lnk = ?
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://G:\PROGRA~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - G:\PROGRA~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O22 - SharedTaskScheduler: discriminable - {4fbbdfd6-2ca9-4bba-93e4-aadf75321bca} - C:\WINDOWS\system32\kuhmk.dll (file missing)
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: CbEvtSvc - Unknown owner - C:\WINDOWS\System32\CbEvtSvc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Macromedia Licensing Service - Macromedia - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: NBService - Nero AG - G:\Program Files\Néro\Nero 7\Nero BackItUp\NBService.exe
Mon fond d'écran est tout blanc et me met un message qui dit que je dois scanner mon ordi car j'ai deux spyware detecter : Win32/Adware.Virtumonde et Win32/PrivacyRemover.M64.j'ai scanner mais ça ne donne rien. il me dit qu'il a réglé soit disant les problèmes, mais mon fond est toujours blanc avec le meme message
es ce que quelqu'un saurait comment je pourrais me débarrasser de ces spyware? merci d'avance
voici mon rapport hijackthis:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 02:31:38, on 26/08/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\PROGRA~1\MESSAG~1\StartMessager.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\WINDOWS\system32\DSP24Set.exe
C:\Program Files\Fichiers communs\DriveCleaner 2006 Free\SDRmon.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\WINDOWS\system32\lphcc6nj0e9ce.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Antipub\antipub.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
C:\WINDOWS\System32\CbEvtSvc.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Memeo\AutoBackup\MemeoBackup.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\taskmgr.exe
C:\Program Files\Mozilla Firefox\firefox.exe
D:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Protection Bar - {5d4831e0-5a7c-4a46-afd5-a79ab8ce36c2} - C:\Program Files\Video ActiveX Object\iesplugin.dll (file missing)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [MessagerStarter Wanadoo] C:\PROGRA~1\MESSAG~1\StartMessager.exe Messager Wanadoo
O4 - HKLM\..\Run: [AudioDSP24 External Links] EL.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [uerscw] C:\Program Files\ErrorSafe Free\uerscw.exe -c
O4 - HKLM\..\Run: [SDR6V_Check] "C:\Program Files\Fichiers communs\DriveCleaner 2006 Free\SDRmon.exe"
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "G:\Program Files\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [lphcc6nj0e9ce] C:\WINDOWS\system32\lphcc6nj0e9ce.exe
O4 - HKLM\..\Run: [SMrhc96nj0e9ce] C:\Program Files\rhc96nj0e9ce\rhc96nj0e9ce.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BlazeServoTool] "G:\Program Files\BlazeDVD 4 Standard\MediaDetector.exe"
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [WINSOS VERIFY] "C:\Program Files\Winsos\WINSOS.EXE" MINI
O4 - HKCU\..\Run: [Error Safe Free] C:\Program Files\ErrorSafe Free\uers.exe /scan
O4 - HKCU\..\Run: [Bias camp] C:\DOCUME~1\Ben\APPLIC~1\SLOWOW~1\Eq test build.exe
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Fichiers communs\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKLM\..\Policies\Explorer\Run: [isamonitor.exe] C:\Program Files\Video ActiveX Object\isamonitor.exe
O4 - HKLM\..\Policies\Explorer\Run: [pmsngr.exe] C:\Program Files\Video ActiveX Object\pmsngr.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVGFRE~1\avgw.exe /RUNONCE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: Anti-Pub.lnk = C:\Program Files\Antipub\antipub.exe
O4 - Startup: Memeo AutoBackup Launcher.lnk = ?
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://G:\PROGRA~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - G:\PROGRA~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O22 - SharedTaskScheduler: discriminable - {4fbbdfd6-2ca9-4bba-93e4-aadf75321bca} - C:\WINDOWS\system32\kuhmk.dll (file missing)
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: CbEvtSvc - Unknown owner - C:\WINDOWS\System32\CbEvtSvc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Macromedia Licensing Service - Macromedia - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: NBService - Nero AG - G:\Program Files\Néro\Nero 7\Nero BackItUp\NBService.exe
A voir également:
- Win32/Adware.Virtumonde & PrivacyRemover.M64
- Télécharger win32 valide pour windows 7 gratuit - Forum Windows
- Trojan win32 - Forum Virus
- Puadimanager win32/offercore ✓ - Forum Virus
- PUADlManager:Win32/OfferCore ✓ - Forum Virus
- . Exe n'est pas une application WIN32 valide ✓ - Forum Réseaux sociaux
33 réponses
je vais dormir
je te remercie beaucoup e ton aide,
tu peux dire pour combien de temps il y en a encore?
je te remercie beaucoup e ton aide,
tu peux dire pour combien de temps il y en a encore?
---> Désinstalle AVG et installe Antivir :
http://dl1.avgate.net/down/windows/antivir_workstation_winu_fr_h.exe
---> Poste un nouveau rapport HijackThis
http://dl1.avgate.net/down/windows/antivir_workstation_winu_fr_h.exe
---> Poste un nouveau rapport HijackThis
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 05:52:41, on 26/08/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\PROGRA~1\MESSAG~1\StartMessager.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\WINDOWS\system32\DSP24Set.exe
C:\Program Files\Antipub\antipub.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Memeo\AutoBackup\MemeoBackup.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
D:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [MessagerStarter Wanadoo] C:\PROGRA~1\MESSAG~1\StartMessager.exe Messager Wanadoo
O4 - HKLM\..\Run: [AudioDSP24 External Links] EL.EXE
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: Anti-Pub.lnk = C:\Program Files\Antipub\antipub.exe
O4 - Startup: Memeo AutoBackup Launcher.lnk = ?
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://G:\PROGRA~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - G:\PROGRA~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Planificateur Avira AntiVir Personal - Free Antivirus (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Macromedia Licensing Service - Macromedia - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: NBService - Nero AG - G:\Program Files\Néro\Nero 7\Nero BackItUp\NBService.exe
Scan saved at 05:52:41, on 26/08/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\PROGRA~1\MESSAG~1\StartMessager.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\WINDOWS\system32\DSP24Set.exe
C:\Program Files\Antipub\antipub.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Memeo\AutoBackup\MemeoBackup.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
D:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [MessagerStarter Wanadoo] C:\PROGRA~1\MESSAG~1\StartMessager.exe Messager Wanadoo
O4 - HKLM\..\Run: [AudioDSP24 External Links] EL.EXE
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: Anti-Pub.lnk = C:\Program Files\Antipub\antipub.exe
O4 - Startup: Memeo AutoBackup Launcher.lnk = ?
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://G:\PROGRA~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - G:\PROGRA~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Planificateur Avira AntiVir Personal - Free Antivirus (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Macromedia Licensing Service - Macromedia - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: NBService - Nero AG - G:\Program Files\Néro\Nero 7\Nero BackItUp\NBService.exe
---> Mets à jour Internet Explorer :
http://www.microsoft.com/downloads/details.aspx?FamilyId=9AE91EBE-3385-447C-8A30-081805B2F90B&displaylang=fr
---> Mets à jour Java :
https://www.java.com/fr/download/manual.jsp
---> Supprime SmitFraudFix
---> Télécharge CCleaner (N'installe pas la Yahoo Toolbar) :
https://www.ccleaner.com/ccleaner/download
---> Lance-le. Va dans "Options" puis "Avancé", tu décoches la case "Effacer uniquement les fichiers etc...". Tu vas dans "Nettoyeur", tu fais "Analyse". Une fois terminé, tu lances le nettoyage. Puis tu vas dans "Registre", tu fais "Chercher des erreurs". Une fois terminé, tu répares toutes les erreurs sans sauvegarder la base de registre.
http://www.microsoft.com/downloads/details.aspx?FamilyId=9AE91EBE-3385-447C-8A30-081805B2F90B&displaylang=fr
---> Mets à jour Java :
https://www.java.com/fr/download/manual.jsp
---> Supprime SmitFraudFix
---> Télécharge CCleaner (N'installe pas la Yahoo Toolbar) :
https://www.ccleaner.com/ccleaner/download
---> Lance-le. Va dans "Options" puis "Avancé", tu décoches la case "Effacer uniquement les fichiers etc...". Tu vas dans "Nettoyeur", tu fais "Analyse". Une fois terminé, tu lances le nettoyage. Puis tu vas dans "Registre", tu fais "Chercher des erreurs". Une fois terminé, tu répares toutes les erreurs sans sauvegarder la base de registre.
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 03:28:29, on 29/08/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\PROGRA~1\MESSAG~1\StartMessager.exe
C:\WINDOWS\system32\DSP24Set.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Antipub\antipub.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Memeo\AutoBackup\MemeoBackup.exe
C:\Program Files\Mozilla Firefox\firefox.exe
D:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [MessagerStarter Wanadoo] C:\PROGRA~1\MESSAG~1\StartMessager.exe Messager Wanadoo
O4 - HKLM\..\Run: [AudioDSP24 External Links] EL.EXE
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: Anti-Pub.lnk = C:\Program Files\Antipub\antipub.exe
O4 - Startup: Memeo AutoBackup Launcher.lnk = ?
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://G:\PROGRA~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Planificateur Avira AntiVir Personal - Free Antivirus (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Macromedia Licensing Service - Macromedia - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: NBService - Nero AG - G:\Program Files\Néro\Nero 7\Nero BackItUp\NBService.exe
Scan saved at 03:28:29, on 29/08/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\PROGRA~1\MESSAG~1\StartMessager.exe
C:\WINDOWS\system32\DSP24Set.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Antipub\antipub.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Memeo\AutoBackup\MemeoBackup.exe
C:\Program Files\Mozilla Firefox\firefox.exe
D:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [MessagerStarter Wanadoo] C:\PROGRA~1\MESSAG~1\StartMessager.exe Messager Wanadoo
O4 - HKLM\..\Run: [AudioDSP24 External Links] EL.EXE
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: Anti-Pub.lnk = C:\Program Files\Antipub\antipub.exe
O4 - Startup: Memeo AutoBackup Launcher.lnk = ?
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://G:\PROGRA~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Planificateur Avira AntiVir Personal - Free Antivirus (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Macromedia Licensing Service - Macromedia - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: NBService - Nero AG - G:\Program Files\Néro\Nero 7\Nero BackItUp\NBService.exe
Plus de trace d'infection.
---> Télécharge Tools Cleaner sur ton bureau.
http://www.commentcamarche.net/telecharger/telecharger 34055291 toolscleaner
Clique sur Recherche et laisse le scan agir.
Clique sur Suppression pour finaliser.
Tu peux, si tu le souhaites, te servir des Options facultatives.
Clique sur Quitter pour obtenir le rapport.
Poste le rapport (TCleaner.txt) qui se trouve à la racine de ton disque dur (C:\).
---> Il est nécessaire de désactiver puis réactiver la restauration système pour la purger :
http://www.infos-du-net.com/forum/272480-11-desactiver-activer-restauration-systeme
---> Je te conseille de créer un point de restauration que tu pourras utiliser plus tard si tu as un problème :
https://www.vulgarisation-informatique.com/creer-point-restauration.php
---> Mets à jour Windows avec Internet Explorer à partir du site suivant :
http://v4.windowsupdate.microsoft.com/fr/default.asp
---> Télécharge Tools Cleaner sur ton bureau.
http://www.commentcamarche.net/telecharger/telecharger 34055291 toolscleaner
Clique sur Recherche et laisse le scan agir.
Clique sur Suppression pour finaliser.
Tu peux, si tu le souhaites, te servir des Options facultatives.
Clique sur Quitter pour obtenir le rapport.
Poste le rapport (TCleaner.txt) qui se trouve à la racine de ton disque dur (C:\).
---> Il est nécessaire de désactiver puis réactiver la restauration système pour la purger :
http://www.infos-du-net.com/forum/272480-11-desactiver-activer-restauration-systeme
---> Je te conseille de créer un point de restauration que tu pourras utiliser plus tard si tu as un problème :
https://www.vulgarisation-informatique.com/creer-point-restauration.php
---> Mets à jour Windows avec Internet Explorer à partir du site suivant :
http://v4.windowsupdate.microsoft.com/fr/default.asp
-->- Recherche:
C:\Qoobox: trouvé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis: trouvé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis\HijackThis.lnk: trouvé !
C:\Documents and Settings\Ben\Bureau\HijackThis.lnk: trouvé !
C:\Documents and Settings\Ben\Bureau\ComboFix.exe: trouvé !
C:\Documents and Settings\Ben\Bureau\SmitFraudFix.exe: trouvé !
C:\Program Files\Trend Micro\HijackThis: trouvé !
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe: trouvé !
C:\QooBox\Quarantine\C\Lop SD: trouvé !
---------------------------------
-->- Suppression:
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis\HijackThis.lnk: supprimé !
C:\Documents and Settings\Ben\Bureau\HijackThis.lnk: supprimé !
C:\Documents and Settings\Ben\Bureau\ComboFix.exe: Erreur de suppression !
C:\Documents and Settings\Ben\Bureau\SmitFraudFix.exe: supprimé !
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe: supprimé !
C:\Qoobox: supprimé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis: supprimé !
C:\Program Files\Trend Micro\HijackThis: supprimé !
C:\Qoobox: trouvé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis: trouvé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis\HijackThis.lnk: trouvé !
C:\Documents and Settings\Ben\Bureau\HijackThis.lnk: trouvé !
C:\Documents and Settings\Ben\Bureau\ComboFix.exe: trouvé !
C:\Documents and Settings\Ben\Bureau\SmitFraudFix.exe: trouvé !
C:\Program Files\Trend Micro\HijackThis: trouvé !
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe: trouvé !
C:\QooBox\Quarantine\C\Lop SD: trouvé !
---------------------------------
-->- Suppression:
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis\HijackThis.lnk: supprimé !
C:\Documents and Settings\Ben\Bureau\HijackThis.lnk: supprimé !
C:\Documents and Settings\Ben\Bureau\ComboFix.exe: Erreur de suppression !
C:\Documents and Settings\Ben\Bureau\SmitFraudFix.exe: supprimé !
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe: supprimé !
C:\Qoobox: supprimé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis: supprimé !
C:\Program Files\Trend Micro\HijackThis: supprimé !
Bonjour,
Voilà j'écris sur ce poste car j'ai en fait le même problème. S'il-vous-plaît, voulez-vous bien m'aider?
J'ai déjà fait analyser mon ordi par Lop S&D. Voici ce que ça donne :
--------------------\\ Lop S&D 4.2.3-6 XP/Vista
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : mobile AMD Athlon(tm) XP 2400+ )
BIOS : Version 1.00
USER : Marie ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 080829-0] 4.8.1229 (Activated)
Firewall : Norton Internet Security 2005 (Activated)
"C:\Lop SD" ( MAJ : 27-08-2008|22:40 )
Option : [1] ( sam. 30/08/2008|12:12 )
--------------------\\ Listing des dossiers dans APPLIC~1
[08/01/2005|11:57] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[30/07/2007|22:06] C:\DOCUME~1\ADMINI~1.MAR\APPLIC~1\Microsoft
[08/12/2007|19:03] C:\DOCUME~1\ADMINI~1.000\APPLIC~1\Microsoft
[21/08/2008|20:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\.zreglib
[21/08/2008|19:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[08/05/2005|19:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe Systems
[30/04/2004|19:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ArcSoft
[15/08/2007|13:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[01/09/2006|12:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CanonBJ
[17/03/2003|07:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[17/03/2003|00:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[08/08/2007|21:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ford tons third regs
[30/12/2006|22:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[04/11/2006|23:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[15/07/2007|00:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macromedia
[15/07/2007|00:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
[09/08/2007|23:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Mapi 1 Noun Loud
[18/05/2007|23:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[06/01/2008|13:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[26/05/2003|21:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN6
[18/02/2007|02:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\muvee Technologies
[12/07/2004|10:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NFS Underground
[28/10/2007|03:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Nuance
[25/08/2008|17:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\pixelStorm
[04/12/2006|20:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[17/03/2003|06:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[30/11/2007|18:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ScanSoft
[21/08/2008|20:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Secure Solutions
[21/08/2008|20:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\services
[08/08/2007|22:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skip Window Ooze Mapi
[04/04/2006|15:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[12/12/2006|13:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony Corporation
[22/08/2008|16:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[23/08/2008|08:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[22/04/2007|18:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems
[31/10/2007|18:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\YAMAHA
[17/03/2003|00:48] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[11/08/2005|21:14] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Help
[11/08/2005|21:14] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[11/08/2005|21:14] C:\DOCUME~1\DEFAUL~1\APPLIC~1\InterTrust
[17/03/2003|06:13] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[17/03/2003|07:08] C:\DOCUME~1\DEFAUL~1\APPLIC~1\sversion.ini
[17/03/2003|01:03] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[17/03/2003|00:48] C:\DOCUME~1\LOGMEI~1\APPLIC~1\desktop.ini
[11/08/2005|21:14] C:\DOCUME~1\LOGMEI~1\APPLIC~1\Help
[11/08/2005|21:14] C:\DOCUME~1\LOGMEI~1\APPLIC~1\Identities
[11/08/2005|21:14] C:\DOCUME~1\LOGMEI~1\APPLIC~1\InterTrust
[17/03/2003|06:13] C:\DOCUME~1\LOGMEI~1\APPLIC~1\Microsoft
[17/03/2003|07:08] C:\DOCUME~1\LOGMEI~1\APPLIC~1\sversion.ini
[07/12/2007|15:01] C:\DOCUME~1\Marie\APPLIC~1\$_hpcst$.hpc
[23/08/2008|10:44] C:\DOCUME~1\Marie\APPLIC~1\Adobe
[24/07/2003|20:55] C:\DOCUME~1\Marie\APPLIC~1\ArcSoft
[10/04/2007|00:29] C:\DOCUME~1\Marie\APPLIC~1\AVSMedia
[30/08/2008|12:11] C:\DOCUME~1\Marie\APPLIC~1\Azureus
[16/08/2008|18:34] C:\DOCUME~1\Marie\APPLIC~1\Blender Foundation
[25/02/2008|20:44] C:\DOCUME~1\Marie\APPLIC~1\dBase.EML
[17/03/2003|00:48] C:\DOCUME~1\Marie\APPLIC~1\desktop.ini
[07/02/2008|16:44] C:\DOCUME~1\Marie\APPLIC~1\dvdcss
[14/08/2008|16:25] C:\DOCUME~1\Marie\APPLIC~1\GDIPFONTCACHEV1.DAT
[29/10/2006|23:44] C:\DOCUME~1\Marie\APPLIC~1\Google
[06/01/2008|13:18] C:\DOCUME~1\Marie\APPLIC~1\Help
[17/03/2003|00:58] C:\DOCUME~1\Marie\APPLIC~1\Identities
[25/04/2008|20:49] C:\DOCUME~1\Marie\APPLIC~1\InstallShield
[27/10/2007|20:44] C:\DOCUME~1\Marie\APPLIC~1\LimeWire
[26/05/2008|21:35] C:\DOCUME~1\Marie\APPLIC~1\Macromedia
[08/02/2008|13:45] C:\DOCUME~1\Marie\APPLIC~1\Microsoft
[08/02/2008|13:29] C:\DOCUME~1\Marie\APPLIC~1\Microsoft Access.EML
[08/02/2008|13:26] C:\DOCUME~1\Marie\APPLIC~1\Microsoft Excel.EML
[26/08/2008|14:49] C:\DOCUME~1\Marie\APPLIC~1\Mozilla
[25/05/2004|17:09] C:\DOCUME~1\Marie\APPLIC~1\MSN6
[26/04/2008|11:00] C:\DOCUME~1\Marie\APPLIC~1\muvee Technologies
[28/10/2007|03:38] C:\DOCUME~1\Marie\APPLIC~1\Nuance
[08/08/2008|09:58] C:\DOCUME~1\Marie\APPLIC~1\Real
[13/07/2008|17:25] C:\DOCUME~1\Marie\APPLIC~1\SAS7_000.DAT
[04/11/2006|23:07] C:\DOCUME~1\Marie\APPLIC~1\ScanSoft
[08/08/2007|22:40] C:\DOCUME~1\Marie\APPLIC~1\SetupDentAcid
[26/08/2007|00:52] C:\DOCUME~1\Marie\APPLIC~1\Skype
[12/12/2006|13:43] C:\DOCUME~1\Marie\APPLIC~1\Sony Corporation
[11/11/2004|13:52] C:\DOCUME~1\Marie\APPLIC~1\Sun
[17/03/2003|07:08] C:\DOCUME~1\Marie\APPLIC~1\sversion.ini
[08/02/2006|17:04] C:\DOCUME~1\Marie\APPLIC~1\Symantec
[14/08/2007|22:43] C:\DOCUME~1\Marie\APPLIC~1\teamspeak2
[26/01/2007|19:45] C:\DOCUME~1\Marie\APPLIC~1\Template
[30/04/2008|20:36] C:\DOCUME~1\Marie\APPLIC~1\U3
[26/05/2003|22:38] C:\DOCUME~1\Marie\APPLIC~1\user60.rdb
[08/02/2008|13:23] C:\DOCUME~1\Marie\APPLIC~1\Valeurs s‚par‚es par des tabulations (Windows).EML
[25/02/2008|20:45] C:\DOCUME~1\Marie\APPLIC~1\Valeurs s‚par‚es par des virgules (Windows).EML
[09/12/2005|14:56] C:\DOCUME~1\Marie\APPLIC~1\vlc
[31/10/2007|18:05] C:\DOCUME~1\Marie\APPLIC~1\YAMAHA
[12/08/2008|22:45] C:\DOCUME~1\Marie\APPLIC~1\zweitgeist
[17/03/2003|01:03] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[16/02/2005|00:53] C:\DOCUME~1\NETWOR~1\APPLIC~1\Symantec
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[30/08/2008 12:00][--ah-----] C:\WINDOWS\tasks\AE4FF764918467E0.job
[30/08/2008 11:41][--ah-----] C:\WINDOWS\tasks\{F897AA24-BDC3-11D1-B85B-00C04FB93981}_MARIEJ_Marie.job
[30/08/2008 10:46][--ah-----] C:\WINDOWS\tasks\SA.DAT
[30/08/2002 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
( AE4FF764918467E0.job )=( c:\docume~1\marie\applic~1\setupd~1\ThatMetaCurb.exe )
--------------------\\ Listing des dossiers dans C:\Program Files
[21/04/2008|21:00] C:\Program Files\2BrightSparks
[27/12/2006|16:18] C:\Program Files\acerd.exe
[21/08/2008|19:29] C:\Program Files\Adobe
[08/08/2007|21:41] C:\Program Files\Adverts
[17/03/2003|06:55] C:\Program Files\Ahead
[28/02/2004|16:52] C:\Program Files\Alcatel
[20/06/2005|18:14] C:\Program Files\Alcohol Soft
[08/08/2007|21:29] C:\Program Files\Alwil Software
[08/04/2006|14:17] C:\Program Files\Anatomie
[03/05/2006|21:34] C:\Program Files\aP5.0_Trial_16Langs_XP2K_5.0.9.5_856.exe
[27/12/2006|16:37] C:\Program Files\aP6.0_English_XP_6.0.15.1_1200.exe
[01/07/2003|11:19] C:\Program Files\ArcSoft
[29/08/2008|10:31] C:\Program Files\aswclnr.exe
[29/08/2008|11:18] C:\Program Files\aswclnr.log
[17/03/2003|03:46] C:\Program Files\ATI Technologies
[30/10/2006|22:38] C:\Program Files\atk-1.12.2
[30/10/2006|22:37] C:\Program Files\atk-1.12.2.tar.bz2
[01/12/2005|23:37] C:\Program Files\Audacity
[16/11/2003|18:07] C:\Program Files\AutoCAD 2002 Fra
[26/05/2007|19:13] C:\Program Files\Autofr
[17/03/2003|03:48] C:\Program Files\AvRack
[10/04/2007|00:23] C:\Program Files\AVSMedia
[18/12/2006|01:00] C:\Program Files\Beiks
[21/08/2008|19:35] C:\Program Files\Bonjour
[28/07/2007|22:52] C:\Program Files\Boonty
[15/08/2007|13:54] C:\Program Files\BoontyGames
[22/12/2006|00:05] C:\Program Files\Bresser
[16/08/2003|14:10] C:\Program Files\Browser Mouse
[28/12/2006|18:12] C:\Program Files\CCleaner
[28/12/2006|18:11] C:\Program Files\ccsetup136.exe
[22/12/2006|00:05] C:\Program Files\Common Files
[17/03/2003|00:55] C:\Program Files\ComPlus Applications
[07/01/2007|16:03] C:\Program Files\Corel
[04/01/2004|13:53] C:\Program Files\CyberLink
[09/09/2007|14:45] C:\Program Files\DAEMON Tools
[06/02/2004|21:34] C:\Program Files\data
[12/12/2006|13:31] C:\Program Files\directx
[03/05/2006|21:44] C:\Program Files\DivX
[13/04/2006|16:40] C:\Program Files\DropBox
[13/04/2006|16:32] C:\Program Files\DropBoxSetup.exe
[19/07/2007|15:07] C:\Program Files\EA GAMES
[27/10/2007|19:59] C:\Program Files\eMule
[31/12/2005|17:24] C:\Program Files\Encyclop‚die M‚dicale Fran‡aise
[13/04/2006|15:24] C:\Program Files\europe
[17/03/2003|06:17] C:\Program Files\EuroTool
[06/01/2006|13:41] C:\Program Files\Every Toolbar 1.1
[21/08/2008|19:04] C:\Program Files\Fichiers communs
[11/08/2005|21:13] C:\Program Files\FileZilla
[30/01/2007|22:55] C:\Program Files\Firefox Setup 1.5.0.9.exe
[04/10/2006|17:39] C:\Program Files\Foudurail
[10/08/2007|16:28] C:\Program Files\GAMECONUPDATE.EXE
[20/04/2007|22:18] C:\Program Files\GIMP-2.0
[31/12/2006|16:19] C:\Program Files\Google
[28/07/2007|22:52] C:\Program Files\Google Video
[31/03/2006|16:37] C:\Program Files\GoogleEarth.exe
[11/11/2006|03:04] C:\Program Files\googletalk-setup-fr.exe
[15/11/2006|19:55] C:\Program Files\GoogleVideoUploaderInstaller.exe
[11/03/2008|00:31] C:\Program Files\Graphmatica
[30/01/2007|21:58] C:\Program Files\greek.ttf
[13/01/2007|00:37] C:\Program Files\guitar_8
[13/01/2007|00:36] C:\Program Files\guitar_8.zip
[20/04/2007|22:10] C:\Program Files\ICQLite
[31/03/2006|16:37] C:\Program Files\ICQToolbar
[30/04/2004|21:42] C:\Program Files\IEEE 802.11g Wireless LAN Utility
[27/12/2006|23:47] C:\Program Files\Install_Messenger.exe
[25/04/2008|20:51] C:\Program Files\InstallShield Installation Information
[29/08/2003|12:12] C:\Program Files\Intel
[26/05/2003|22:07] C:\Program Files\InterActual
[14/08/2008|00:24] C:\Program Files\Internet Explorer
[10/02/2007|00:47] C:\Program Files\IrfanView
[07/09/2005|19:45] C:\Program Files\Irregular Verbs
[22/12/2006|16:41] C:\Program Files\ISCLIE
[10/02/2007|00:46] C:\Program Files\iview399.exe
[28/08/2008|13:42] C:\Program Files\Java
[17/03/2003|07:04] C:\Program Files\JavaSoft
[29/07/2007|14:20] C:\Program Files\Lavalys
[28/04/2008|20:10] C:\Program Files\LimeWire
[28/07/2007|22:25] C:\Program Files\LogMeIn
[21/02/2007|21:36] C:\Program Files\Macromedia
[20/04/2007|22:11] C:\Program Files\Magic Karaoke Maker
[26/05/2003|20:09] C:\Program Files\Managed DirectX (0900)
[14/08/2008|00:25] C:\Program Files\Messenger
[30/07/2007|22:42] C:\Program Files\Messenger Plus! Live
[08/12/2007|22:34] C:\Program Files\Microsoft ActiveSync
[08/08/2007|16:22] C:\Program Files\Microsoft Bootvis
[29/05/2003|22:27] C:\Program Files\microsoft frontpage
[06/01/2008|13:22] C:\Program Files\Microsoft Office
[11/11/2003|17:28] C:\Program Files\Microsoft Picture It! 2002
[06/01/2008|13:23] C:\Program Files\Microsoft Visual Studio
[31/03/2006|16:37] C:\Program Files\Microsoft Works
[11/11/2003|17:17] C:\Program Files\Microsoft Works Suite 2002
[26/08/2007|21:46] C:\Program Files\Microsoft.NET
[13/01/2007|00:47] C:\Program Files\MKMSetup-v19000.exe
[25/08/2007|00:44] C:\Program Files\Movie Maker
[30/08/2008|12:04] C:\Program Files\Mozilla Firefox
[26/01/2007|19:36] C:\Program Files\MsgPlusLive-411.exe
[30/12/2006|22:45] C:\Program Files\MSN Apps
[17/03/2003|00:53] C:\Program Files\MSN Gaming Zone
[11/07/2008|18:41] C:\Program Files\MSN Messenger
[27/06/2007|00:51] C:\Program Files\MSXML 4.0
[21/04/2005|15:03] C:\Program Files\MultiRes
[25/04/2008|20:54] C:\Program Files\muvee Technologies
[13/02/2007|22:14] C:\Program Files\muvee Technologies2
[08/01/2005|12:11] C:\Program Files\NetMeeting
[30/11/2007|17:43] C:\Program Files\Nuance
[25/04/2004|18:57] C:\Program Files\OEM
[27/06/2007|00:54] C:\Program Files\Outlook Express
[07/01/2007|15:57] C:\Program Files\PaintShopPro1100_EN_DE_FR_ES_IT_NL_CORELTBYB_ESD.exe
[18/01/2007|19:27] C:\Program Files\PDFCreator
[18/01/2007|19:23] C:\Program Files\PDFCreator-0_9_3_GPLGhostscript.exe
[25/04/2005|18:56] C:\Program Files\pf-setup.exe
[02/07/2006|17:11] C:\Program Files\picasa2-current.exe
[17/03/2003|20:16] C:\Program Files\Pinnacle
[25/08/2004|21:05] C:\Program Files\Pinnacle Studio
[27/11/2007|22:40] C:\Program Files\Pizzicato 3
[13/06/2006|15:51] C:\Program Files\pizzicato31.exe
[13/01/2007|00:41] C:\Program Files\Play Guitar 2 - The Shareware
[04/12/2006|20:48] C:\Program Files\QA International
[21/08/2008|19:41] C:\Program Files\QuickTime
[21/04/2005|15:01] C:\Program Files\Radeon Omega Drivers
[17/03/2003|03:48] C:\Program Files\Realtek Sound Manager
[04/11/2006|22:54] C:\Program Files\ScanSoft
[24/04/2007|19:21] C:\Program Files\Screen Capture Master
[17/03/2003|00:56] C:\Program Files\Services en ligne
[22/08/2008|13:20] C:\Program Files\Setup_MagicISO.exe
[06/08/2007|13:58] C:\Program Files\SetupDentAcid
[29/08/2008|10:07] C:\Program Files\setupfre.exe
[31/03/2006|16:37] C:\Program Files\Sierra On-Line
[04/04/2006|15:35] C:\Program Files\Skype
[04/04/2006|15:31] C:\Program Files\SkypeSetup.exe
[20/06/2005|15:30] C:\Program Files\SlySoft
[04/01/2007|13:05] C:\Program Files\Sony
[04/02/2007|13:09] C:\Program Files\Sony Handheld
[22/08/2008|07:47] C:\Program Files\Spybot - Search & Destroy
[22/08/2008|07:40] C:\Program Files\spybotsd160.exe
[22/08/2008|13:22] C:\Program Files\SpywareBlaster
[20/04/2007|22:15] C:\Program Files\StAid3
[17/03/2003|20:04] C:\Program Files\StarOffice6.0
[22/02/2004|22:13] C:\Program Files\Strategy First
[27/03/2008|16:56] C:\Program Files\StuffPlug3
[21/04/2008|20:59] C:\Program Files\SyncBack_Setup_FR
[21/04/2008|20:59] C:\Program Files\SyncBack_Setup_FR.zip
[23/03/2004|18:14] C:\Program Files\SyncIT
[11/04/2006|22:10] C:\Program Files\Tap'Touche Junior
[09/02/2007|21:51] C:\Program Files\Thumbs.db
[21/12/2006|23:54] C:\Program Files\Ulead Systems
[08/01/2005|11:58] C:\Program Files\Uninstall Information
[02/01/2008|23:03] C:\Program Files\USB video device
[17/03/2003|03:52] C:\Program Files\VIA Technologies, Inc
[09/12/2005|14:53] C:\Program Files\VideoLAN
[13/04/2006|15:24] C:\Program Files\VirtualDub-1.6.14
[19/01/2007|18:46] C:\Program Files\vlc-0.8.6a-win32.exe
[18/12/2006|00:48] C:\Program Files\Voices database (OS 4.x)
[16/11/2003|17:48] C:\Program Files\WexTech
[17/03/2003|06:17] C:\Program Files\Windows Journal Viewer
[11/07/2008|18:38] C:\Program Files\Windows Live
[19/12/2007|22:36] C:\Program Files\Windows Live Safety Center
[14/08/2007|23:39] C:\Program Files\Windows Media Player
[08/01/2005|12:11] C:\Program Files\Windows NT
[28/08/2004|13:08] C:\Program Files\WindowsUpdate
[15/04/2006|17:41] C:\Program Files\WinRAR
[15/04/2006|17:31] C:\Program Files\wrar351fr.exe
[17/03/2003|00:58] C:\Program Files\xerox
[30/12/2006|22:53] C:\Program Files\Yahoo!
[31/10/2007|18:03] C:\Program Files\YAMAHA
[20/04/2007|22:13] C:\Program Files\Zero G Registry
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[21/08/2008|19:35] C:\Program Files\Fichiers communs\Adobe
[08/05/2005|15:15] C:\Program Files\Fichiers communs\Adobe Systems Shared
[02/01/2008|23:00] C:\Program Files\Fichiers communs\ArcSoft
[16/11/2003|18:10] C:\Program Files\Fichiers communs\Autodesk Shared
[20/04/2007|22:08] C:\Program Files\Fichiers communs\AVSMedia
[15/08/2007|13:56] C:\Program Files\Fichiers communs\BOONTY Shared
[15/07/2007|18:33] C:\Program Files\Fichiers communs\debugmode
[16/11/2003|18:07] C:\Program Files\Fichiers communs\Designer
[07/07/2004|13:32] C:\Program Files\Fichiers communs\DirectX
[30/10/2006|22:43] C:\Program Files\Fichiers communs\GTK
[14/01/2005|22:53] C:\Program Files\Fichiers communs\InstallShield
[11/11/2004|13:51] C:\Program Files\Fichiers communs\Java
[16/11/2003|17:48] C:\Program Files\Fichiers communs\LHSPF
[14/07/2007|19:12] C:\Program Files\Fichiers communs\Macromedia
[14/07/2007|19:13] C:\Program Files\Fichiers communs\Macromedia Shared
[21/08/2008|19:04] C:\Program Files\Fichiers communs\Macrovision Shared
[25/04/2008|20:52] C:\Program Files\Fichiers communs\Microsoft Shared
[17/03/2003|00:55] C:\Program Files\Fichiers communs\MSSoap
[25/04/2008|20:54] C:\Program Files\Fichiers communs\muvee Technologies
[28/10/2007|03:29] C:\Program Files\Fichiers communs\Nuance
[17/03/2003|00:48] C:\Program Files\Fichiers communs\ODBC
[14/07/2007|15:40] C:\Program Files\Fichiers communs\Real
[30/11/2007|18:01] C:\Program Files\Fichiers communs\ScanSoft Shared
[17/03/2003|00:55] C:\Program Files\Fichiers communs\Services
[12/12/2006|13:31] C:\Program Files\Fichiers communs\Sony Shared
[17/03/2003|00:48] C:\Program Files\Fichiers communs\SpeechEngines
[30/12/2003|15:34] C:\Program Files\Fichiers communs\SWF Studio
[08/08/2007|21:20] C:\Program Files\Fichiers communs\Symantec Shared
[06/01/2008|13:21] C:\Program Files\Fichiers communs\System
[22/04/2007|18:38] C:\Program Files\Fichiers communs\Ulead Systems
[16/11/2003|17:48] C:\Program Files\Fichiers communs\Wextech Shared
[14/07/2007|15:40] C:\Program Files\Fichiers communs\xing shared
--------------------\\ Process
( 26 Processus )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\DOCUME~1\Marie\APPLIC~1\setupd~1
C:\Program Files\setupd~1
C:\Program Files\Adverts
C:\WINDOWS\Tasks\AE4FF764918467E0.job
--------------------\\ Verification du Registre
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts MODIFIE
127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD
127.0.0.1 download.errorsafe.com ## added by CiD
127.0.0.1 download.systemdoctor.com ## added by CiD
127.0.0.1 download.winantispyware.com ## added by CiD
127.0.0.1 download.windrivecleaner.com ## added by CiD
127.0.0.1 download.winfixer.com ## added by CiD
127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 es.winantivirus.com ## added by CiD
127.0.0.1 fr.winantivirus.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 go.winantivirus.com ## added by CiD
127.0.0.1 hk.winantivirus.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 instlog.winantivirus.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 kb.winantivirus.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 secure.winantivirus.com ## added by CiD
127.0.0.1 support.winantivirus.com ## added by CiD
127.0.0.1 ulog.winantivirus.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 utils.winantivirus.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winantivirus.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.drivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.errorprotector.com ## added by CiD
127.0.0.1 [i]ww/iw.errorsafe.com ## added by CiD
127.0.0.1 [i]ww/iw.systemdoctor.com ## added by CiD
127.0.0.1 [i]ww/iw.win-anti-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.win-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispam.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispy.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispyware.com ## added by CiD
127.0.0.1 [i]ww/iw.winantivirus.com ## added by CiD
127.0.0.1 [i]ww/iw.winantiviruspro.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivesafe.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 [i]ww/iw.utils.winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer2006.com ## added by CiD
127.0.0.1 [i]ww/iw.winsoftware.com ## added by CiD
-> 72 [ 70 ## added by CiD ]
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-08-30 12:13:38
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 212
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:21][D:7]-> C:\DOCUME~1\Marie\LOCALS~1\Temp
[F:12][D:0]-> C:\DOCUME~1\Marie\Cookies
[F:87][D:4]-> C:\DOCUME~1\Marie\LOCALS~1\TEMPOR~1\content.IE5
--------------------\\ Fin du rapport a 12:17:20
Voilà j'écris sur ce poste car j'ai en fait le même problème. S'il-vous-plaît, voulez-vous bien m'aider?
J'ai déjà fait analyser mon ordi par Lop S&D. Voici ce que ça donne :
--------------------\\ Lop S&D 4.2.3-6 XP/Vista
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : mobile AMD Athlon(tm) XP 2400+ )
BIOS : Version 1.00
USER : Marie ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 080829-0] 4.8.1229 (Activated)
Firewall : Norton Internet Security 2005 (Activated)
"C:\Lop SD" ( MAJ : 27-08-2008|22:40 )
Option : [1] ( sam. 30/08/2008|12:12 )
--------------------\\ Listing des dossiers dans APPLIC~1
[08/01/2005|11:57] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[30/07/2007|22:06] C:\DOCUME~1\ADMINI~1.MAR\APPLIC~1\Microsoft
[08/12/2007|19:03] C:\DOCUME~1\ADMINI~1.000\APPLIC~1\Microsoft
[21/08/2008|20:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\.zreglib
[21/08/2008|19:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[08/05/2005|19:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe Systems
[30/04/2004|19:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ArcSoft
[15/08/2007|13:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[01/09/2006|12:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CanonBJ
[17/03/2003|07:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[17/03/2003|00:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[08/08/2007|21:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ford tons third regs
[30/12/2006|22:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[04/11/2006|23:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[15/07/2007|00:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macromedia
[15/07/2007|00:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
[09/08/2007|23:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Mapi 1 Noun Loud
[18/05/2007|23:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[06/01/2008|13:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[26/05/2003|21:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN6
[18/02/2007|02:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\muvee Technologies
[12/07/2004|10:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NFS Underground
[28/10/2007|03:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Nuance
[25/08/2008|17:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\pixelStorm
[04/12/2006|20:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[17/03/2003|06:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[30/11/2007|18:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ScanSoft
[21/08/2008|20:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Secure Solutions
[21/08/2008|20:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\services
[08/08/2007|22:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skip Window Ooze Mapi
[04/04/2006|15:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[12/12/2006|13:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony Corporation
[22/08/2008|16:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[23/08/2008|08:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[22/04/2007|18:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems
[31/10/2007|18:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\YAMAHA
[17/03/2003|00:48] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[11/08/2005|21:14] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Help
[11/08/2005|21:14] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[11/08/2005|21:14] C:\DOCUME~1\DEFAUL~1\APPLIC~1\InterTrust
[17/03/2003|06:13] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[17/03/2003|07:08] C:\DOCUME~1\DEFAUL~1\APPLIC~1\sversion.ini
[17/03/2003|01:03] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[17/03/2003|00:48] C:\DOCUME~1\LOGMEI~1\APPLIC~1\desktop.ini
[11/08/2005|21:14] C:\DOCUME~1\LOGMEI~1\APPLIC~1\Help
[11/08/2005|21:14] C:\DOCUME~1\LOGMEI~1\APPLIC~1\Identities
[11/08/2005|21:14] C:\DOCUME~1\LOGMEI~1\APPLIC~1\InterTrust
[17/03/2003|06:13] C:\DOCUME~1\LOGMEI~1\APPLIC~1\Microsoft
[17/03/2003|07:08] C:\DOCUME~1\LOGMEI~1\APPLIC~1\sversion.ini
[07/12/2007|15:01] C:\DOCUME~1\Marie\APPLIC~1\$_hpcst$.hpc
[23/08/2008|10:44] C:\DOCUME~1\Marie\APPLIC~1\Adobe
[24/07/2003|20:55] C:\DOCUME~1\Marie\APPLIC~1\ArcSoft
[10/04/2007|00:29] C:\DOCUME~1\Marie\APPLIC~1\AVSMedia
[30/08/2008|12:11] C:\DOCUME~1\Marie\APPLIC~1\Azureus
[16/08/2008|18:34] C:\DOCUME~1\Marie\APPLIC~1\Blender Foundation
[25/02/2008|20:44] C:\DOCUME~1\Marie\APPLIC~1\dBase.EML
[17/03/2003|00:48] C:\DOCUME~1\Marie\APPLIC~1\desktop.ini
[07/02/2008|16:44] C:\DOCUME~1\Marie\APPLIC~1\dvdcss
[14/08/2008|16:25] C:\DOCUME~1\Marie\APPLIC~1\GDIPFONTCACHEV1.DAT
[29/10/2006|23:44] C:\DOCUME~1\Marie\APPLIC~1\Google
[06/01/2008|13:18] C:\DOCUME~1\Marie\APPLIC~1\Help
[17/03/2003|00:58] C:\DOCUME~1\Marie\APPLIC~1\Identities
[25/04/2008|20:49] C:\DOCUME~1\Marie\APPLIC~1\InstallShield
[27/10/2007|20:44] C:\DOCUME~1\Marie\APPLIC~1\LimeWire
[26/05/2008|21:35] C:\DOCUME~1\Marie\APPLIC~1\Macromedia
[08/02/2008|13:45] C:\DOCUME~1\Marie\APPLIC~1\Microsoft
[08/02/2008|13:29] C:\DOCUME~1\Marie\APPLIC~1\Microsoft Access.EML
[08/02/2008|13:26] C:\DOCUME~1\Marie\APPLIC~1\Microsoft Excel.EML
[26/08/2008|14:49] C:\DOCUME~1\Marie\APPLIC~1\Mozilla
[25/05/2004|17:09] C:\DOCUME~1\Marie\APPLIC~1\MSN6
[26/04/2008|11:00] C:\DOCUME~1\Marie\APPLIC~1\muvee Technologies
[28/10/2007|03:38] C:\DOCUME~1\Marie\APPLIC~1\Nuance
[08/08/2008|09:58] C:\DOCUME~1\Marie\APPLIC~1\Real
[13/07/2008|17:25] C:\DOCUME~1\Marie\APPLIC~1\SAS7_000.DAT
[04/11/2006|23:07] C:\DOCUME~1\Marie\APPLIC~1\ScanSoft
[08/08/2007|22:40] C:\DOCUME~1\Marie\APPLIC~1\SetupDentAcid
[26/08/2007|00:52] C:\DOCUME~1\Marie\APPLIC~1\Skype
[12/12/2006|13:43] C:\DOCUME~1\Marie\APPLIC~1\Sony Corporation
[11/11/2004|13:52] C:\DOCUME~1\Marie\APPLIC~1\Sun
[17/03/2003|07:08] C:\DOCUME~1\Marie\APPLIC~1\sversion.ini
[08/02/2006|17:04] C:\DOCUME~1\Marie\APPLIC~1\Symantec
[14/08/2007|22:43] C:\DOCUME~1\Marie\APPLIC~1\teamspeak2
[26/01/2007|19:45] C:\DOCUME~1\Marie\APPLIC~1\Template
[30/04/2008|20:36] C:\DOCUME~1\Marie\APPLIC~1\U3
[26/05/2003|22:38] C:\DOCUME~1\Marie\APPLIC~1\user60.rdb
[08/02/2008|13:23] C:\DOCUME~1\Marie\APPLIC~1\Valeurs s‚par‚es par des tabulations (Windows).EML
[25/02/2008|20:45] C:\DOCUME~1\Marie\APPLIC~1\Valeurs s‚par‚es par des virgules (Windows).EML
[09/12/2005|14:56] C:\DOCUME~1\Marie\APPLIC~1\vlc
[31/10/2007|18:05] C:\DOCUME~1\Marie\APPLIC~1\YAMAHA
[12/08/2008|22:45] C:\DOCUME~1\Marie\APPLIC~1\zweitgeist
[17/03/2003|01:03] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[16/02/2005|00:53] C:\DOCUME~1\NETWOR~1\APPLIC~1\Symantec
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[30/08/2008 12:00][--ah-----] C:\WINDOWS\tasks\AE4FF764918467E0.job
[30/08/2008 11:41][--ah-----] C:\WINDOWS\tasks\{F897AA24-BDC3-11D1-B85B-00C04FB93981}_MARIEJ_Marie.job
[30/08/2008 10:46][--ah-----] C:\WINDOWS\tasks\SA.DAT
[30/08/2002 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
( AE4FF764918467E0.job )=( c:\docume~1\marie\applic~1\setupd~1\ThatMetaCurb.exe )
--------------------\\ Listing des dossiers dans C:\Program Files
[21/04/2008|21:00] C:\Program Files\2BrightSparks
[27/12/2006|16:18] C:\Program Files\acerd.exe
[21/08/2008|19:29] C:\Program Files\Adobe
[08/08/2007|21:41] C:\Program Files\Adverts
[17/03/2003|06:55] C:\Program Files\Ahead
[28/02/2004|16:52] C:\Program Files\Alcatel
[20/06/2005|18:14] C:\Program Files\Alcohol Soft
[08/08/2007|21:29] C:\Program Files\Alwil Software
[08/04/2006|14:17] C:\Program Files\Anatomie
[03/05/2006|21:34] C:\Program Files\aP5.0_Trial_16Langs_XP2K_5.0.9.5_856.exe
[27/12/2006|16:37] C:\Program Files\aP6.0_English_XP_6.0.15.1_1200.exe
[01/07/2003|11:19] C:\Program Files\ArcSoft
[29/08/2008|10:31] C:\Program Files\aswclnr.exe
[29/08/2008|11:18] C:\Program Files\aswclnr.log
[17/03/2003|03:46] C:\Program Files\ATI Technologies
[30/10/2006|22:38] C:\Program Files\atk-1.12.2
[30/10/2006|22:37] C:\Program Files\atk-1.12.2.tar.bz2
[01/12/2005|23:37] C:\Program Files\Audacity
[16/11/2003|18:07] C:\Program Files\AutoCAD 2002 Fra
[26/05/2007|19:13] C:\Program Files\Autofr
[17/03/2003|03:48] C:\Program Files\AvRack
[10/04/2007|00:23] C:\Program Files\AVSMedia
[18/12/2006|01:00] C:\Program Files\Beiks
[21/08/2008|19:35] C:\Program Files\Bonjour
[28/07/2007|22:52] C:\Program Files\Boonty
[15/08/2007|13:54] C:\Program Files\BoontyGames
[22/12/2006|00:05] C:\Program Files\Bresser
[16/08/2003|14:10] C:\Program Files\Browser Mouse
[28/12/2006|18:12] C:\Program Files\CCleaner
[28/12/2006|18:11] C:\Program Files\ccsetup136.exe
[22/12/2006|00:05] C:\Program Files\Common Files
[17/03/2003|00:55] C:\Program Files\ComPlus Applications
[07/01/2007|16:03] C:\Program Files\Corel
[04/01/2004|13:53] C:\Program Files\CyberLink
[09/09/2007|14:45] C:\Program Files\DAEMON Tools
[06/02/2004|21:34] C:\Program Files\data
[12/12/2006|13:31] C:\Program Files\directx
[03/05/2006|21:44] C:\Program Files\DivX
[13/04/2006|16:40] C:\Program Files\DropBox
[13/04/2006|16:32] C:\Program Files\DropBoxSetup.exe
[19/07/2007|15:07] C:\Program Files\EA GAMES
[27/10/2007|19:59] C:\Program Files\eMule
[31/12/2005|17:24] C:\Program Files\Encyclop‚die M‚dicale Fran‡aise
[13/04/2006|15:24] C:\Program Files\europe
[17/03/2003|06:17] C:\Program Files\EuroTool
[06/01/2006|13:41] C:\Program Files\Every Toolbar 1.1
[21/08/2008|19:04] C:\Program Files\Fichiers communs
[11/08/2005|21:13] C:\Program Files\FileZilla
[30/01/2007|22:55] C:\Program Files\Firefox Setup 1.5.0.9.exe
[04/10/2006|17:39] C:\Program Files\Foudurail
[10/08/2007|16:28] C:\Program Files\GAMECONUPDATE.EXE
[20/04/2007|22:18] C:\Program Files\GIMP-2.0
[31/12/2006|16:19] C:\Program Files\Google
[28/07/2007|22:52] C:\Program Files\Google Video
[31/03/2006|16:37] C:\Program Files\GoogleEarth.exe
[11/11/2006|03:04] C:\Program Files\googletalk-setup-fr.exe
[15/11/2006|19:55] C:\Program Files\GoogleVideoUploaderInstaller.exe
[11/03/2008|00:31] C:\Program Files\Graphmatica
[30/01/2007|21:58] C:\Program Files\greek.ttf
[13/01/2007|00:37] C:\Program Files\guitar_8
[13/01/2007|00:36] C:\Program Files\guitar_8.zip
[20/04/2007|22:10] C:\Program Files\ICQLite
[31/03/2006|16:37] C:\Program Files\ICQToolbar
[30/04/2004|21:42] C:\Program Files\IEEE 802.11g Wireless LAN Utility
[27/12/2006|23:47] C:\Program Files\Install_Messenger.exe
[25/04/2008|20:51] C:\Program Files\InstallShield Installation Information
[29/08/2003|12:12] C:\Program Files\Intel
[26/05/2003|22:07] C:\Program Files\InterActual
[14/08/2008|00:24] C:\Program Files\Internet Explorer
[10/02/2007|00:47] C:\Program Files\IrfanView
[07/09/2005|19:45] C:\Program Files\Irregular Verbs
[22/12/2006|16:41] C:\Program Files\ISCLIE
[10/02/2007|00:46] C:\Program Files\iview399.exe
[28/08/2008|13:42] C:\Program Files\Java
[17/03/2003|07:04] C:\Program Files\JavaSoft
[29/07/2007|14:20] C:\Program Files\Lavalys
[28/04/2008|20:10] C:\Program Files\LimeWire
[28/07/2007|22:25] C:\Program Files\LogMeIn
[21/02/2007|21:36] C:\Program Files\Macromedia
[20/04/2007|22:11] C:\Program Files\Magic Karaoke Maker
[26/05/2003|20:09] C:\Program Files\Managed DirectX (0900)
[14/08/2008|00:25] C:\Program Files\Messenger
[30/07/2007|22:42] C:\Program Files\Messenger Plus! Live
[08/12/2007|22:34] C:\Program Files\Microsoft ActiveSync
[08/08/2007|16:22] C:\Program Files\Microsoft Bootvis
[29/05/2003|22:27] C:\Program Files\microsoft frontpage
[06/01/2008|13:22] C:\Program Files\Microsoft Office
[11/11/2003|17:28] C:\Program Files\Microsoft Picture It! 2002
[06/01/2008|13:23] C:\Program Files\Microsoft Visual Studio
[31/03/2006|16:37] C:\Program Files\Microsoft Works
[11/11/2003|17:17] C:\Program Files\Microsoft Works Suite 2002
[26/08/2007|21:46] C:\Program Files\Microsoft.NET
[13/01/2007|00:47] C:\Program Files\MKMSetup-v19000.exe
[25/08/2007|00:44] C:\Program Files\Movie Maker
[30/08/2008|12:04] C:\Program Files\Mozilla Firefox
[26/01/2007|19:36] C:\Program Files\MsgPlusLive-411.exe
[30/12/2006|22:45] C:\Program Files\MSN Apps
[17/03/2003|00:53] C:\Program Files\MSN Gaming Zone
[11/07/2008|18:41] C:\Program Files\MSN Messenger
[27/06/2007|00:51] C:\Program Files\MSXML 4.0
[21/04/2005|15:03] C:\Program Files\MultiRes
[25/04/2008|20:54] C:\Program Files\muvee Technologies
[13/02/2007|22:14] C:\Program Files\muvee Technologies2
[08/01/2005|12:11] C:\Program Files\NetMeeting
[30/11/2007|17:43] C:\Program Files\Nuance
[25/04/2004|18:57] C:\Program Files\OEM
[27/06/2007|00:54] C:\Program Files\Outlook Express
[07/01/2007|15:57] C:\Program Files\PaintShopPro1100_EN_DE_FR_ES_IT_NL_CORELTBYB_ESD.exe
[18/01/2007|19:27] C:\Program Files\PDFCreator
[18/01/2007|19:23] C:\Program Files\PDFCreator-0_9_3_GPLGhostscript.exe
[25/04/2005|18:56] C:\Program Files\pf-setup.exe
[02/07/2006|17:11] C:\Program Files\picasa2-current.exe
[17/03/2003|20:16] C:\Program Files\Pinnacle
[25/08/2004|21:05] C:\Program Files\Pinnacle Studio
[27/11/2007|22:40] C:\Program Files\Pizzicato 3
[13/06/2006|15:51] C:\Program Files\pizzicato31.exe
[13/01/2007|00:41] C:\Program Files\Play Guitar 2 - The Shareware
[04/12/2006|20:48] C:\Program Files\QA International
[21/08/2008|19:41] C:\Program Files\QuickTime
[21/04/2005|15:01] C:\Program Files\Radeon Omega Drivers
[17/03/2003|03:48] C:\Program Files\Realtek Sound Manager
[04/11/2006|22:54] C:\Program Files\ScanSoft
[24/04/2007|19:21] C:\Program Files\Screen Capture Master
[17/03/2003|00:56] C:\Program Files\Services en ligne
[22/08/2008|13:20] C:\Program Files\Setup_MagicISO.exe
[06/08/2007|13:58] C:\Program Files\SetupDentAcid
[29/08/2008|10:07] C:\Program Files\setupfre.exe
[31/03/2006|16:37] C:\Program Files\Sierra On-Line
[04/04/2006|15:35] C:\Program Files\Skype
[04/04/2006|15:31] C:\Program Files\SkypeSetup.exe
[20/06/2005|15:30] C:\Program Files\SlySoft
[04/01/2007|13:05] C:\Program Files\Sony
[04/02/2007|13:09] C:\Program Files\Sony Handheld
[22/08/2008|07:47] C:\Program Files\Spybot - Search & Destroy
[22/08/2008|07:40] C:\Program Files\spybotsd160.exe
[22/08/2008|13:22] C:\Program Files\SpywareBlaster
[20/04/2007|22:15] C:\Program Files\StAid3
[17/03/2003|20:04] C:\Program Files\StarOffice6.0
[22/02/2004|22:13] C:\Program Files\Strategy First
[27/03/2008|16:56] C:\Program Files\StuffPlug3
[21/04/2008|20:59] C:\Program Files\SyncBack_Setup_FR
[21/04/2008|20:59] C:\Program Files\SyncBack_Setup_FR.zip
[23/03/2004|18:14] C:\Program Files\SyncIT
[11/04/2006|22:10] C:\Program Files\Tap'Touche Junior
[09/02/2007|21:51] C:\Program Files\Thumbs.db
[21/12/2006|23:54] C:\Program Files\Ulead Systems
[08/01/2005|11:58] C:\Program Files\Uninstall Information
[02/01/2008|23:03] C:\Program Files\USB video device
[17/03/2003|03:52] C:\Program Files\VIA Technologies, Inc
[09/12/2005|14:53] C:\Program Files\VideoLAN
[13/04/2006|15:24] C:\Program Files\VirtualDub-1.6.14
[19/01/2007|18:46] C:\Program Files\vlc-0.8.6a-win32.exe
[18/12/2006|00:48] C:\Program Files\Voices database (OS 4.x)
[16/11/2003|17:48] C:\Program Files\WexTech
[17/03/2003|06:17] C:\Program Files\Windows Journal Viewer
[11/07/2008|18:38] C:\Program Files\Windows Live
[19/12/2007|22:36] C:\Program Files\Windows Live Safety Center
[14/08/2007|23:39] C:\Program Files\Windows Media Player
[08/01/2005|12:11] C:\Program Files\Windows NT
[28/08/2004|13:08] C:\Program Files\WindowsUpdate
[15/04/2006|17:41] C:\Program Files\WinRAR
[15/04/2006|17:31] C:\Program Files\wrar351fr.exe
[17/03/2003|00:58] C:\Program Files\xerox
[30/12/2006|22:53] C:\Program Files\Yahoo!
[31/10/2007|18:03] C:\Program Files\YAMAHA
[20/04/2007|22:13] C:\Program Files\Zero G Registry
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[21/08/2008|19:35] C:\Program Files\Fichiers communs\Adobe
[08/05/2005|15:15] C:\Program Files\Fichiers communs\Adobe Systems Shared
[02/01/2008|23:00] C:\Program Files\Fichiers communs\ArcSoft
[16/11/2003|18:10] C:\Program Files\Fichiers communs\Autodesk Shared
[20/04/2007|22:08] C:\Program Files\Fichiers communs\AVSMedia
[15/08/2007|13:56] C:\Program Files\Fichiers communs\BOONTY Shared
[15/07/2007|18:33] C:\Program Files\Fichiers communs\debugmode
[16/11/2003|18:07] C:\Program Files\Fichiers communs\Designer
[07/07/2004|13:32] C:\Program Files\Fichiers communs\DirectX
[30/10/2006|22:43] C:\Program Files\Fichiers communs\GTK
[14/01/2005|22:53] C:\Program Files\Fichiers communs\InstallShield
[11/11/2004|13:51] C:\Program Files\Fichiers communs\Java
[16/11/2003|17:48] C:\Program Files\Fichiers communs\LHSPF
[14/07/2007|19:12] C:\Program Files\Fichiers communs\Macromedia
[14/07/2007|19:13] C:\Program Files\Fichiers communs\Macromedia Shared
[21/08/2008|19:04] C:\Program Files\Fichiers communs\Macrovision Shared
[25/04/2008|20:52] C:\Program Files\Fichiers communs\Microsoft Shared
[17/03/2003|00:55] C:\Program Files\Fichiers communs\MSSoap
[25/04/2008|20:54] C:\Program Files\Fichiers communs\muvee Technologies
[28/10/2007|03:29] C:\Program Files\Fichiers communs\Nuance
[17/03/2003|00:48] C:\Program Files\Fichiers communs\ODBC
[14/07/2007|15:40] C:\Program Files\Fichiers communs\Real
[30/11/2007|18:01] C:\Program Files\Fichiers communs\ScanSoft Shared
[17/03/2003|00:55] C:\Program Files\Fichiers communs\Services
[12/12/2006|13:31] C:\Program Files\Fichiers communs\Sony Shared
[17/03/2003|00:48] C:\Program Files\Fichiers communs\SpeechEngines
[30/12/2003|15:34] C:\Program Files\Fichiers communs\SWF Studio
[08/08/2007|21:20] C:\Program Files\Fichiers communs\Symantec Shared
[06/01/2008|13:21] C:\Program Files\Fichiers communs\System
[22/04/2007|18:38] C:\Program Files\Fichiers communs\Ulead Systems
[16/11/2003|17:48] C:\Program Files\Fichiers communs\Wextech Shared
[14/07/2007|15:40] C:\Program Files\Fichiers communs\xing shared
--------------------\\ Process
( 26 Processus )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\DOCUME~1\Marie\APPLIC~1\setupd~1
C:\Program Files\setupd~1
C:\Program Files\Adverts
C:\WINDOWS\Tasks\AE4FF764918467E0.job
--------------------\\ Verification du Registre
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts MODIFIE
127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD
127.0.0.1 download.errorsafe.com ## added by CiD
127.0.0.1 download.systemdoctor.com ## added by CiD
127.0.0.1 download.winantispyware.com ## added by CiD
127.0.0.1 download.windrivecleaner.com ## added by CiD
127.0.0.1 download.winfixer.com ## added by CiD
127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 es.winantivirus.com ## added by CiD
127.0.0.1 fr.winantivirus.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 go.winantivirus.com ## added by CiD
127.0.0.1 hk.winantivirus.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 instlog.winantivirus.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 kb.winantivirus.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 secure.winantivirus.com ## added by CiD
127.0.0.1 support.winantivirus.com ## added by CiD
127.0.0.1 ulog.winantivirus.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 utils.winantivirus.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winantivirus.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.drivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.errorprotector.com ## added by CiD
127.0.0.1 [i]ww/iw.errorsafe.com ## added by CiD
127.0.0.1 [i]ww/iw.systemdoctor.com ## added by CiD
127.0.0.1 [i]ww/iw.win-anti-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.win-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispam.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispy.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispyware.com ## added by CiD
127.0.0.1 [i]ww/iw.winantivirus.com ## added by CiD
127.0.0.1 [i]ww/iw.winantiviruspro.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivesafe.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 [i]ww/iw.utils.winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer2006.com ## added by CiD
127.0.0.1 [i]ww/iw.winsoftware.com ## added by CiD
-> 72 [ 70 ## added by CiD ]
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-08-30 12:13:38
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 212
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:21][D:7]-> C:\DOCUME~1\Marie\LOCALS~1\Temp
[F:12][D:0]-> C:\DOCUME~1\Marie\Cookies
[F:87][D:4]-> C:\DOCUME~1\Marie\LOCALS~1\TEMPOR~1\content.IE5
--------------------\\ Fin du rapport a 12:17:20
