SOS Fenêtres CID

Salut Destrio5 et merci pour ta réactivité.
J'ai suivi tes instructions et voici le rapport :


--------------------\\ Lop S&D 4.2.4-0 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) 64 Processor 3400+ )
BIOS : )Phoenix - Award WorkstationBIOS v6.00PG
USER : Karine ( Administrator )
BOOT : Normal boot
Antivirus : Bitdefender Antivirus 8.0 (Activated)
Firewall : Bitdefender Firewall 8.0 (Activated)

"C:\Lop SD" ( MAJ : 04-09-2008|09:55 )
Option : [1] ( 06/09/2008|21:04 )

--------------------\\ Listing des dossiers dans APPLIC~1

[23/01/2005|12:07] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[23/01/2005|11:51] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[23/01/2005|12:13] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec

[28/01/2008|19:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[12/03/2008|18:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
[09/06/2007|11:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AVS4YOU
[09/03/2008|11:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BitDefender
[25/06/2006|15:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Bluetooth
[03/06/2006|10:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[03/09/2008|19:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\does dog two city
[29/03/2006|13:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\eConsole
[01/08/2007|16:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FaxCtr
[19/01/2008|23:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
[19/03/2006|21:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[21/03/2008|20:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[23/01/2005|11:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[19/03/2006|20:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Motive
[02/02/2008|20:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Nero
[13/06/2006|19:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
[30/10/2007|11:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[13/05/2006|13:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[23/01/2005|12:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[19/01/2008|22:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[06/04/2008|19:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TuneUp Software
[06/08/2006|10:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[14/04/2007|18:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[17/01/2008|18:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller

[23/01/2005|11:51] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[25/03/2006|16:10] C:\DOCUME~1\NETWOR~1\APPLIC~1\Symantec

[23/01/2005|11:51] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[08/02/2008|19:43] C:\DOCUME~1\KARINE\APPLIC~1\AccurateRip
[19/03/2006|21:08] C:\DOCUME~1\KARINE\APPLIC~1\Adobe
[19/03/2006|21:09] C:\DOCUME~1\KARINE\APPLIC~1\AdobeUM
[12/03/2008|18:06] C:\DOCUME~1\KARINE\APPLIC~1\Ahead
[24/11/2007|17:54] C:\DOCUME~1\KARINE\APPLIC~1\AVS4YOU
[09/03/2008|11:58] C:\DOCUME~1\KARINE\APPLIC~1\BitDefender
[04/09/2008|18:00] C:\DOCUME~1\KARINE\APPLIC~1\Else plus
[01/08/2007|16:39] C:\DOCUME~1\KARINE\APPLIC~1\FaxCtr
[17/04/2006|15:53] C:\DOCUME~1\KARINE\APPLIC~1\Google
[07/05/2006|16:09] C:\DOCUME~1\KARINE\APPLIC~1\Help
[19/03/2006|21:15] C:\DOCUME~1\KARINE\APPLIC~1\HP
[23/01/2005|12:07] C:\DOCUME~1\KARINE\APPLIC~1\Identities
[08/09/2006|17:45] C:\DOCUME~1\KARINE\APPLIC~1\Image Zone Express
[24/03/2006|19:43] C:\DOCUME~1\KARINE\APPLIC~1\Macromedia
[04/06/2006|15:21] C:\DOCUME~1\KARINE\APPLIC~1\Media Player Classic
[23/01/2005|11:51] C:\DOCUME~1\KARINE\APPLIC~1\Microsoft
[20/01/2008|19:41] C:\DOCUME~1\KARINE\APPLIC~1\MSNInstaller
[02/02/2008|20:05] C:\DOCUME~1\KARINE\APPLIC~1\Nero
[30/04/2006|17:56] C:\DOCUME~1\KARINE\APPLIC~1\Opera
[13/05/2006|13:49] C:\DOCUME~1\KARINE\APPLIC~1\Skype
[19/04/2006|15:51] C:\DOCUME~1\KARINE\APPLIC~1\Sun
[23/01/2005|12:13] C:\DOCUME~1\KARINE\APPLIC~1\Symantec
[05/05/2006|10:52] C:\DOCUME~1\KARINE\APPLIC~1\Template
[05/04/2008|17:26] C:\DOCUME~1\KARINE\APPLIC~1\TuneUp Software
[02/01/2008|12:14] C:\DOCUME~1\KARINE\APPLIC~1\vlc



[23/01/2005|11:51] C:\DOCUME~1\BETTINA\APPLIC~1\Microsoft

[17/05/2008|15:13] C:\DOCUME~1\MALOUN~1\APPLIC~1\BitDefender
[03/08/2007|16:18] C:\DOCUME~1\MALOUN~1\APPLIC~1\FaxCtr
[23/01/2005|12:07] C:\DOCUME~1\MALOUN~1\APPLIC~1\Identities
[22/04/2007|19:57] C:\DOCUME~1\MALOUN~1\APPLIC~1\Macromedia
[23/01/2005|11:51] C:\DOCUME~1\MALOUN~1\APPLIC~1\Microsoft
[23/01/2005|12:13] C:\DOCUME~1\MALOUN~1\APPLIC~1\Symantec
[28/04/2007|18:28] C:\DOCUME~1\MALOUN~1\APPLIC~1\Template

[07/06/2008|10:25] C:\DOCUME~1\NAAAN0U\APPLIC~1\Adobe
[07/06/2008|10:23] C:\DOCUME~1\NAAAN0U\APPLIC~1\BitDefender
[03/09/2008|19:43] C:\DOCUME~1\NAAAN0U\APPLIC~1\Else plus
[10/10/2007|16:06] C:\DOCUME~1\NAAAN0U\APPLIC~1\FaxCtr
[23/01/2005|12:07] C:\DOCUME~1\NAAAN0U\APPLIC~1\Identities
[10/10/2007|16:07] C:\DOCUME~1\NAAAN0U\APPLIC~1\Macromedia
[23/01/2005|11:51] C:\DOCUME~1\NAAAN0U\APPLIC~1\Microsoft
[23/01/2005|12:13] C:\DOCUME~1\NAAAN0U\APPLIC~1\Symantec
[16/08/2008|17:26] C:\DOCUME~1\NAAAN0U\APPLIC~1\Template
[18/01/2008|20:25] C:\DOCUME~1\NAAAN0U\APPLIC~1\WinTouch

[23/01/2005|12:07] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[23/01/2005|11:51] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[23/01/2005|12:13] C:\DOCUME~1\ADMINI~1\APPLIC~1\Symantec

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[06/09/2008 21:00][--ah-----] C:\WINDOWS\tasks\B5E336769DD4A816.job
[06/09/2008 21:00][--a------] C:\WINDOWS\tasks\Maintenance en 1 clic.job
[06/09/2008 14:35][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 05:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

( B5E336769DD4A816.job )=( c:\docume~1\naaan0u\applic~1\elsepl~1\Thunkdeafgreat.exe )

--------------------\\ Listing des dossiers dans C:\Program Files

[19/03/2006|19:59] C:\Program Files\Acer
[28/01/2008|19:22] C:\Program Files\Adobe
[23/01/2005|12:16] C:\Program Files\AMD
[12/06/2006|21:18] C:\Program Files\AvRack
[09/06/2007|11:24] C:\Program Files\AVS4YOU
[09/03/2008|11:57] C:\Program Files\BitDefender
[20/01/2008|11:40] C:\Program Files\CCleaner
[03/09/2008|19:43] C:\Program Files\Circle Developement
[19/03/2006|20:09] C:\Program Files\Club-Internet
[19/03/2006|20:09] C:\Program Files\Common Files
[23/01/2005|11:56] C:\Program Files\ComPlus Applications
[23/01/2005|12:13] C:\Program Files\CyberLink
[08/05/2006|12:31] C:\Program Files\DivX
[26/03/2006|13:50] C:\Program Files\EA GAMES
[03/09/2008|19:44] C:\Program Files\Else plus
[02/04/2006|17:31] C:\Program Files\eMule
[23/01/2005|11:52] C:\Program Files\Fichiers communs
[17/04/2006|15:53] C:\Program Files\Google
[19/01/2008|23:18] C:\Program Files\Grisoft
[13/05/2006|17:22] C:\Program Files\HbTools_Icons
[19/03/2006|21:15] C:\Program Files\HP
[17/08/2008|12:22] C:\Program Files\IKEA HomePlanner
[08/02/2008|19:43] C:\Program Files\Illustrate
[23/01/2005|12:07] C:\Program Files\InstallShield Installation Information
[23/01/2005|11:56] C:\Program Files\Internet Explorer
[17/06/2006|12:10] C:\Program Files\IVT Corporation
[19/03/2006|19:57] C:\Program Files\Java
[01/08/2007|16:32] C:\Program Files\Lexmark 2400 Series
[01/08/2007|16:32] C:\Program Files\Lexmark Fax Solutions
[01/08/2007|16:32] C:\Program Files\Lexmark Toolbar
[13/05/2006|13:35] C:\Program Files\Logitech
[01/08/2007|16:34] C:\Program Files\lx_cats
[12/06/2006|19:08] C:\Program Files\Macrogaming
[13/08/2008|13:52] C:\Program Files\McDonaldsFairies
[23/01/2005|11:55] C:\Program Files\Messenger
[21/03/2008|20:23] C:\Program Files\Messenger Plus! Live
[20/01/2008|17:50] C:\Program Files\MessengerPlus! 3
[23/03/2008|14:05] C:\Program Files\Microsoft Bootvis
[14/03/2008|20:51] C:\Program Files\Microsoft Encarta
[23/01/2005|11:58] C:\Program Files\microsoft frontpage
[20/04/2006|19:54] C:\Program Files\Microsoft Office
[20/04/2006|19:50] C:\Program Files\Microsoft Works
[19/03/2006|20:09] C:\Program Files\Motive
[23/01/2005|11:56] C:\Program Files\Movie Maker
[23/01/2005|11:55] C:\Program Files\MSN
[24/03/2006|20:07] C:\Program Files\MSN Apps
[23/01/2005|11:55] C:\Program Files\MSN Gaming Zone
[16/04/2006|20:01] C:\Program Files\MSN Messenger
[20/01/2008|18:04] C:\Program Files\MSNTweaker
[05/09/2008|19:38] C:\Program Files\Navilog1
[10/02/2008|12:00] C:\Program Files\Nero
[23/01/2005|11:56] C:\Program Files\NetMeeting
[02/01/2008|12:14] C:\Program Files\Neuf
[23/01/2005|12:11] C:\Program Files\NewTech Infosystems
[23/01/2005|12:14] C:\Program Files\Norton AntiVirus
[17/06/2006|14:13] C:\Program Files\OfficeUpdate11
[23/01/2005|11:55] C:\Program Files\Online Services
[23/01/2005|11:56] C:\Program Files\Outlook Express
[23/01/2008|06:54] C:\Program Files\PhotoFiltre
[06/05/2006|19:02] C:\Program Files\QuickTime
[12/06/2006|21:18] C:\Program Files\Realtek AC97
[12/06/2006|21:18] C:\Program Files\Realtek Sound Manager
[20/01/2008|11:27] C:\Program Files\RegCleaner
[17/06/2006|13:58] C:\Program Files\Samsung
[23/01/2005|11:57] C:\Program Files\Services en ligne
[24/07/2007|12:34] C:\Program Files\SupraASCIIArt
[23/01/2005|12:13] C:\Program Files\Symantec
[05/12/2006|18:48] C:\Program Files\ToniArts
[19/01/2008|22:40] C:\Program Files\Trojan Remover
[06/04/2008|19:03] C:\Program Files\TuneUp Utilities 2008
[23/01/2005|12:07] C:\Program Files\Uninstall Information
[21/03/2008|20:23] C:\Program Files\Windows Live
[14/04/2007|18:07] C:\Program Files\Windows Live Toolbar
[07/02/2008|19:49] C:\Program Files\Windows Media Connect 2
[23/01/2005|11:55] C:\Program Files\Windows Media Player
[23/01/2005|11:55] C:\Program Files\Windows NT
[23/01/2005|11:57] C:\Program Files\WindowsUpdate
[10/03/2007|15:59] C:\Program Files\WinRAR
[23/01/2005|11:58] C:\Program Files\xerox
[30/10/2006|11:06] C:\Program Files\Yahoo!
[17/01/2008|18:29] C:\Program Files\?dobe

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[28/01/2008|19:22] C:\Program Files\Fichiers communs\Adobe
[12/03/2008|17:50] C:\Program Files\Fichiers communs\Ahead
[09/06/2007|11:24] C:\Program Files\Fichiers communs\AVSMedia
[08/03/2008|20:40] C:\Program Files\Fichiers communs\BitDefender
[19/03/2006|21:54] C:\Program Files\Fichiers communs\Hewlett-Packard
[23/01/2005|12:05] C:\Program Files\Fichiers communs\InstallShield
[19/03/2006|19:57] C:\Program Files\Fichiers communs\Java
[13/05/2006|13:36] C:\Program Files\Fichiers communs\Logitech
[23/01/2005|11:52] C:\Program Files\Fichiers communs\Microsoft Shared
[19/03/2006|20:10] C:\Program Files\Fichiers communs\Motive
[23/01/2005|11:56] C:\Program Files\Fichiers communs\MSSoap
[23/01/2005|12:12] C:\Program Files\Fichiers communs\muvee Technologies
[23/01/2005|11:52] C:\Program Files\Fichiers communs\ODBC
[23/01/2005|11:56] C:\Program Files\Fichiers communs\Services
[23/01/2005|11:52] C:\Program Files\Fichiers communs\SpeechEngines
[23/01/2005|12:13] C:\Program Files\Fichiers communs\Symantec Shared
[23/01/2005|11:56] C:\Program Files\Fichiers communs\System
[17/01/2008|18:53] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[06/04/2008|19:01] C:\Program Files\Fichiers communs\Wise Installation Wizard

--------------------\\ Process

( 38 Processes )

IEXPLORE.EXE ~ [PID:1088]
IEXPLORE.EXE ~ [PID:264]
IEXPLORE.EXE ~ [PID:2700]

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\DOCUME~1\ALLUSE~1\APPLIC~1\does dog two city
C:\DOCUME~1\ALLUSE~1\APPLIC~1\does dog two city\01 license.exe
C:\DOCUME~1\KARINE\APPLIC~1\ELSE PLUS
C:\DOCUME~1\KARINE\APPLIC~1\ELSE PLUS\AXISNEW.exe
C:\DOCUME~1\NAAAN0U\APPLIC~1\ELSE PLUS
C:\DOCUME~1\NAAAN0U\APPLIC~1\ELSE PLUS\AXISNEW.exe
C:\DOCUME~1\NAAAN0U\APPLIC~1\ELSE PLUS\yblaobbk.exe
C:\DOCUME~1\NAAAN0U\APPLIC~1\ELSE PLUS\JoyPokeForkBlue.exe
C:\DOCUME~1\NAAAN0U\APPLIC~1\ELSE PLUS\Thunkdeafgreat.exe
C:\Program Files\ELSE PLUS
C:\DOCUME~1\KARINE\APPLIC~1\elsepl~1
C:\DOCUME~1\KARINE\APPLIC~1\elsepl~1\AXISNEW.exe
C:\DOCUME~1\NAAAN0U\APPLIC~1\elsepl~1
C:\DOCUME~1\NAAAN0U\APPLIC~1\elsepl~1\AXISNEW.exe
C:\DOCUME~1\NAAAN0U\APPLIC~1\elsepl~1\yblaobbk.exe
C:\DOCUME~1\NAAAN0U\APPLIC~1\elsepl~1\JoyPokeForkBlue.exe
C:\DOCUME~1\NAAAN0U\APPLIC~1\elsepl~1\Thunkdeafgreat.exe
C:\Program Files\elsepl~1
C:\Program Files\Circle Developement
C:\Program Files\Circle Developement\Uninstall.exe
C:\DOCUME~1\Karine\Cookies\karine@adopt.euroclick[1].txt
C:\DOCUME~1\Karine\Cookies\karine@pacificpoker[1].txt
C:\DOCUME~1\Karine\Cookies\karine@32vegas[1].txt
C:\DOCUME~1\Karine\Cookies\karine@banner.32vegas[2].txt
C:\WINDOWS\Tasks\B5E336769DD4A816.job

--------------------\\ Verification du Registre

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"two city internet heck"="C:\\Documents and Settings\\All Users\\Application Data\\does dog two city\\01 license.exe"

--------------------\\ Verification du fichier Hosts

Fichier Hosts MODIFIE

127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD
127.0.0.1 download.errorsafe.com ## added by CiD
127.0.0.1 download.systemdoctor.com ## added by CiD
127.0.0.1 download.winantispyware.com ## added by CiD
127.0.0.1 download.windrivecleaner.com ## added by CiD
127.0.0.1 download.winfixer.com ## added by CiD
127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 es.winantivirus.com ## added by CiD
127.0.0.1 fr.winantivirus.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 go.winantivirus.com ## added by CiD
127.0.0.1 hk.winantivirus.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 instlog.winantivirus.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 kb.winantivirus.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 secure.winantivirus.com ## added by CiD
127.0.0.1 support.winantivirus.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 ulog.winantivirus.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 utils.winantivirus.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winantivirus.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 [i]ww/iw.drivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.errorprotector.com ## added by CiD
127.0.0.1 [i]ww/iw.errorsafe.com ## added by CiD
127.0.0.1 [i]ww/iw.systemdoctor.com ## added by CiD
127.0.0.1 [i]ww/iw.utils.winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.win-anti-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.win-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispam.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispy.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispyware.com ## added by CiD
127.0.0.1 [i]ww/iw.winantivirus.com ## added by CiD
127.0.0.1 [i]ww/iw.winantiviruspro.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivesafe.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer2006.com ## added by CiD
127.0.0.1 [i]ww/iw.winsoftware.com ## added by CiD

-> 72 [ 70 ## added by CiD ]

--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-06 21:05:39
Windows 5.1.2600 Service Pack 2 FAT NTAPI
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:6][D:0]-> C:\DOCUME~1\Karine\LOCALS~1\Temp
[F:58][D:0]-> C:\DOCUME~1\Karine\Cookies
[F:1343][D:4]-> C:\DOCUME~1\Karine\LOCALS~1\TEMPOR~1\content.IE5
[F:4][D:1]-> C:\Recycled

1 - "C:\Lop SD\LopR_1.txt" - 06/09/2008|21:06 - Option : [1]

--------------------\\ Fin du rapport a 21:06:33

J'attends tes instructions...
à +

Destrio5, voilà le rapport MBAM:

Malwarebytes' Anti-Malware 1.26
Version de la base de données: 1103
Windows 5.1.2600 Service Pack 2

06/09/2008 21:56:32
mbam-log-2008-09-06 (21-56-32).txt

Type de recherche: Examen rapide
Eléments examinés: 71593
Temps écoulé: 10 minute(s), 2 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 1
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 1
Fichier(s) infecté(s): 1

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{7e66936c-fea0-4984-ad26-7b6661ac5b2e} (Adware.Hotbar) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
C:\Documents and Settings\Naaan0u\Application Data\WinTouch (Adware.WinPop) -> Quarantined and deleted successfully.

Fichier(s) infecté(s):
C:\Documents and Settings\Naaan0u\Application Data\WinTouch\wintouch.cfg (Adware.WinPop) -> Quarantined and deleted successfully.

dans l'attent de te lire...

Mon PC à l'air d'aller mieux...que dit le rapport?

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:10:29, on 06/09/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Lexmark 2400 Series\lxcrmon.exe
C:\Program Files\Lexmark 2400 Series\ezprint.exe
C:\Program Files\BitDefender\BitDefender 2008\bdagent.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\WINDOWS\system32\lxcrcoms.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\BitDefender\BitDefender Communicator\xcommsvr.exe
C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\BitDefender\BitDefender 2008\vsserv.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?cc=fr&toHttps=1&redig=55729C844D6A45819CAD368B3E178C9F
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://actus.sfr.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer avec Club-Internet
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - (no file)
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr\msntb.dll
O3 - Toolbar: (no name) - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - (no file)
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr\msntb.dll
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2008\IEToolbar.dll
O4 - HKLM\..\Run: [lxcrmon.exe] "C:\Program Files\Lexmark 2400 Series\lxcrmon.exe"
O4 - HKLM\..\Run: [EzPrint] "C:\Program Files\Lexmark 2400 Series\ezprint.exe"
O4 - HKLM\..\Run: [FaxCenterServer] "C:\Program Files\Lexmark Fax Solutions\fm3032.exe" /s
O4 - HKLM\..\Run: [LXCRCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXCRtime.dll,_RunDLLEntry@16
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2008\IEShow.exe"
O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\BitDefender\BitDefender 2008\bdagent.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{E53A9AC9-0437-49F0-BCA0-671164BB80B8}: NameServer = 194.117.200.10,194.117.200.15
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender SRL - C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
O23 - Service: lxcr_device - - C:\WINDOWS\system32\lxcrcoms.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINDOWS\System32\TuneUpDefragService.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S.R.L. - C:\Program Files\BitDefender\BitDefender 2008\vsserv.exe
O23 - Service: BitDefender Communicator (XCOMM) - BitDefender - C:\Program Files\Fichiers communs\BitDefender\BitDefender Communicator\xcommsvr.exe