Trojan.FatObfus.Gen

Salut,

Infection Lop.

Télécharge Lop S&D.exe ( d’ Eric 71 & Angeldark ) sur ton bureau

Double-clique dessus pour lancer l'installation

Puis double-clique sur le raccourci Lop S&D présent sur ton bureau

Séléctionne la langue souhaitée , puis choisis l'Option 1 ( Recherche )

Patiente jusqu'à la fin du scan

Poste le rapport généré ( C:\lopR.txt )

( Si le Bureau ne réapparait pas presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide )

Voici le rapport :


-----------------------------[ Lop S&D 2.0.1 ]---------------------------

Microsoft Windows XP [version 5.1.2600] [ OS : Windows_NT ]

"C:\Program Files\Lop SD"

[ 21/12/2007 | 20:44:33,54 ] [ ACER ]


-------------[ Listing des dossiers dans Application Data ]------------

C:\Documents and Settings\All Users\APPLIC~1\TEMP
C:\Documents and Settings\All Users\APPLIC~1\Kaspersky Lab
C:\Documents and Settings\All Users\APPLIC~1\Microsoft
C:\Documents and Settings\All Users\APPLIC~1\Jump Poll Poke Mp3
C:\Documents and Settings\All Users\APPLIC~1\soap scr enc wma
C:\Documents and Settings\All Users\APPLIC~1\QTSBandwidthCache
C:\Documents and Settings\All Users\APPLIC~1\Zylom
C:\Documents and Settings\All Users\APPLIC~1\Adobe
C:\Documents and Settings\All Users\APPLIC~1\Google
C:\Documents and Settings\All Users\APPLIC~1\Windows Genuine Advantage
C:\Documents and Settings\All Users\APPLIC~1\Windows Live Toolbar
C:\Documents and Settings\All Users\APPLIC~1\Avg7
C:\Documents and Settings\All Users\APPLIC~1\Apple Computer
C:\Documents and Settings\All Users\APPLIC~1\Sony Ericsson
C:\Documents and Settings\All Users\APPLIC~1\Messenger Plus!
C:\Documents and Settings\All Users\APPLIC~1\Ahead
C:\Documents and Settings\All Users\APPLIC~1\CyberLink
C:\Documents and Settings\All Users\APPLIC~1\desktop.ini

C:\Documents and Settings\Default User\APPLIC~1\desktop.ini
C:\Documents and Settings\Default User\APPLIC~1\Microsoft

C:\Documents and Settings\LocalService\APPLIC~1\Microsoft

C:\Documents and Settings\lucie\APPLIC~1\BarbNurbLoud
C:\Documents and Settings\lucie\APPLIC~1\Macromedia
C:\Documents and Settings\lucie\APPLIC~1\WengoPhone
C:\Documents and Settings\lucie\APPLIC~1\BitTorrent
C:\Documents and Settings\lucie\APPLIC~1\Ahead
C:\Documents and Settings\lucie\APPLIC~1\Screenshot Sender
C:\Documents and Settings\lucie\APPLIC~1\Microsoft
C:\Documents and Settings\lucie\APPLIC~1\Adobe
C:\Documents and Settings\lucie\APPLIC~1\GDIPFONTCACHEV1.DAT
C:\Documents and Settings\lucie\APPLIC~1\AdobeUM
C:\Documents and Settings\lucie\APPLIC~1\Template
C:\Documents and Settings\lucie\APPLIC~1\Google
C:\Documents and Settings\lucie\APPLIC~1\Azureus
C:\Documents and Settings\lucie\APPLIC~1\Samsung
C:\Documents and Settings\lucie\APPLIC~1\ppStream
C:\Documents and Settings\lucie\APPLIC~1\ViewerApp.dat
C:\Documents and Settings\lucie\APPLIC~1\Jasc
C:\Documents and Settings\lucie\APPLIC~1\AdobeAUM
C:\Documents and Settings\lucie\APPLIC~1\Sereniti
C:\Documents and Settings\lucie\APPLIC~1\CyberLink
C:\Documents and Settings\lucie\APPLIC~1\vlc
C:\Documents and Settings\lucie\APPLIC~1\.BitTornado
C:\Documents and Settings\lucie\APPLIC~1\Leadertech
C:\Documents and Settings\lucie\APPLIC~1\Sun
C:\Documents and Settings\lucie\APPLIC~1\Apple Computer
C:\Documents and Settings\lucie\APPLIC~1\Real
C:\Documents and Settings\lucie\APPLIC~1\FotoWire
C:\Documents and Settings\lucie\APPLIC~1\desktop.ini
C:\Documents and Settings\lucie\APPLIC~1\Talkback
C:\Documents and Settings\lucie\APPLIC~1\Mozilla
C:\Documents and Settings\lucie\APPLIC~1\Help
C:\Documents and Settings\lucie\APPLIC~1\Identities

C:\Documents and Settings\NetworkService\APPLIC~1\Microsoft

----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

C:\WINDOWS\tasks\A9042BDB908FA4D3.job
C:\WINDOWS\tasks\Norton Security Scan.job
C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
C:\WINDOWS\tasks\SA.DAT
C:\WINDOWS\tasks\desktop.ini

---------------[ Listing des dossiers dans C:\Program Files ]--------------

C:\Program Files\1 Click PC Fix 2006
C:\Program Files\Aardvark Digital
C:\Program Files\Adobe
C:\Program Files\Adverts
C:\Program Files\Ahead
C:\Program Files\Alcohol Soft
C:\Program Files\Alwil Software
C:\Program Files\ATI Technologies
C:\Program Files\AusLogics Disk Defrag
C:\Program Files\AVIConverter
C:\Program Files\Azureus
C:\Program Files\BarbNurbLoud
C:\Program Files\Belarc
C:\Program Files\BitTorrent
C:\Program Files\CCleaner
C:\Program Files\Circle Developement
C:\Program Files\ComPlus Applications
C:\Program Files\CyberLink
C:\Program Files\DAP
C:\Program Files\DivX
C:\Program Files\ewido anti-malware
C:\Program Files\Fichiers communs
C:\Program Files\FunWebProducts
C:\Program Files\GeoGebra
C:\Program Files\Google
C:\Program Files\Hewlett-Packard
C:\Program Files\Illustrate
C:\Program Files\Internet Explorer
C:\Program Files\iPod
C:\Program Files\ISOpen
C:\Program Files\iTunes
C:\Program Files\Jasc Software Inc
C:\Program Files\Java
C:\Program Files\Kaspersky Lab
C:\Program Files\Kerio
C:\Program Files\LAventure
C:\Program Files\Logitech
C:\Program Files\Lop SD
C:\Program Files\Messenger Plus! Live
C:\Program Files\MessengerPlus! 3
C:\Program Files\Microsoft CAPICOM 2.1.0.2
C:\Program Files\Microsoft Office
C:\Program Files\Microsoft Works
C:\Program Files\Mozilla Firefox
C:\Program Files\MP3 Player Utilities 4.02
C:\Program Files\MSECache
C:\Program Files\MSN ExtenSion DebloKer
C:\Program Files\MSN Messenger
C:\Program Files\MSXML 4.0
C:\Program Files\MyWebSearch
C:\Program Files\NetMeeting
C:\Program Files\NJStar Chinese WP
C:\Program Files\Norton Security Scan
C:\Program Files\Outlook Express
C:\Program Files\Panda Security
C:\Program Files\PhotoFiltre
C:\Program Files\PpStream Fr
C:\Program Files\QuickTime
C:\Program Files\Real
C:\Program Files\Samsung
C:\Program Files\Services en ligne
C:\Program Files\SlySoft
C:\Program Files\Sony Corporation
C:\Program Files\Sony Ericsson
C:\Program Files\Trend Micro
C:\Program Files\ULi5287
C:\Program Files\VideoLAN
C:\Program Files\Winamp
C:\Program Files\Windows Live
C:\Program Files\Windows Live Safety Center
C:\Program Files\Windows Live Toolbar
C:\Program Files\Windows Media Player
C:\Program Files\Windows NT
C:\Program Files\WinRAR
C:\Program Files\Zylom Games

------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------

C:\Program Files\Fichiers communs\Adobe
C:\Program Files\Fichiers communs\Ahead
C:\Program Files\Fichiers communs\Designer
C:\Program Files\Fichiers communs\FotoWire
C:\Program Files\Fichiers communs\InstallShield
C:\Program Files\Fichiers communs\Java
C:\Program Files\Fichiers communs\Logitech
C:\Program Files\Fichiers communs\Microsoft Shared
C:\Program Files\Fichiers communs\MSSoap
C:\Program Files\Fichiers communs\muvee Technologies
C:\Program Files\Fichiers communs\Nero
C:\Program Files\Fichiers communs\NSV
C:\Program Files\Fichiers communs\ODBC
C:\Program Files\Fichiers communs\Real
C:\Program Files\Fichiers communs\Services
C:\Program Files\Fichiers communs\SpeechEngines
C:\Program Files\Fichiers communs\System
C:\Program Files\Fichiers communs\Teleca Shared
C:\Program Files\Fichiers communs\xing shared

----------------------[ Recherche avec S_Lop ]---------------------

Aucun fichier / dossier Lop trouvé !

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

C:\Program Files\Adverts
C:\WINDOWS\Tasks\A9042BDB908FA4D3.job

----------------------[ Verification du Registre ]----------------------

..... OK !

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts MODIFIE

127.0.0.1 localhost
127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD
127.0.0.1 download.errorsafe.com ## added by CiD
127.0.0.1 download.systemdoctor.com ## added by CiD
127.0.0.1 download.winantispyware.com ## added by CiD
127.0.0.1 download.windrivecleaner.com ## added by CiD
127.0.0.1 download.winfixer.com ## added by CiD
127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 es.winantivirus.com ## added by CiD
127.0.0.1 fr.winantivirus.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 go.winantivirus.com ## added by CiD
127.0.0.1 hk.winantivirus.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 instlog.winantivirus.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 kb.winantivirus.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 secure.winantivirus.com ## added by CiD
127.0.0.1 support.winantivirus.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 ulog.winantivirus.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 utils.winantivirus.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winantivirus.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 www.drivecleaner.com ## added by CiD
127.0.0.1 www.errorprotector.com ## added by CiD
127.0.0.1 www.errorsafe.com ## added by CiD
127.0.0.1 www.systemdoctor.com ## added by CiD
127.0.0.1 www.utils.winfixer.com ## added by CiD
127.0.0.1 www.win-anti-virus-pro.com ## added by CiD
127.0.0.1 www.win-virus-pro.com ## added by CiD
127.0.0.1 www.winantispam.com ## added by CiD
127.0.0.1 www.winantispy.com ## added by CiD
127.0.0.1 www.winantispyware.com ## added by CiD
127.0.0.1 www.winantivirus.com ## added by CiD
127.0.0.1 www.winantiviruspro.com ## added by CiD
127.0.0.1 www.windrivecleaner.com ## added by CiD
127.0.0.1 www.windrivesafe.com ## added by CiD
127.0.0.1 www.winfixer.com ## added by CiD
127.0.0.1 www.winfixer2006.com ## added by CiD
127.0.0.1 www.winsoftware.com ## added by CiD

----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2007-12-21 20:46:30
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden files ...
scan completed successfully
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------

Aucune autre infection trouvée !

--------------------[ Fin du rapport a 20:46:39,95 ]----------------------


Merci !  

Que dois-je faire par la suite?
Merci!

Re,


Relance Lop S&D

Choisis cette fois ci l'Option 2 ( Suppression )

Ne ferme pas la fenêtre lors de la suppression !

Poste le rapport généré ( C:\lopR.txt )

( Si le Bureau ne réapparaît pas presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide )


PUIS

Télécharge OTMoveIt > Tuto <

Sauvegarde-le sur le Bureau

Séléctionne l'encadré ci-dessous

C:\Documents and Settings\All Users\APPLIC~1\Jump Poll Poke Mp3
C:\Documents and Settings\All Users\APPLIC~1\soap scr enc wma

Lance maintenant OTMoveIt .
Assure toi que la case unregister dll%u2019s and ocx%u2019s soit cochée.
Deux cadres apparaissent , clique droit sur le cadre de gauche , puis colle l'encadré ci desssus.
Et clique sur Movelt !

Si le programme te demande de redemarrer, accepte.

Poste le rapport qui se trouve dans : C:\_OTMoveIt\MovedFiles\date de création!

NOTE : Si tu obtiens un message comme quoi le rapport ne peut pas être créé, copie/colle ce qui apparaît dans la colonne droite de l%u2019outil.

Voici le rapport Lop S&D


-----------------------------[ Lop S&D 2.0.1 ]---------------------------

Microsoft Windows XP [version 5.1.2600] [ OS : Windows_NT ]

"C:\Program Files\Lop SD"

[ 21/12/2007 | 22:09:57,53 ] [ ACER ]

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////

Supprimé! - C:\Program Files\Adverts
Supprimé! - C:\WINDOWS\Tasks\A9042BDB908FA4D3.job
Restauré! - Fichier Hosts

//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


-------------[ Listing des dossiers dans Application Data ]------------

C:\Documents and Settings\All Users\APPLIC~1\TEMP
C:\Documents and Settings\All Users\APPLIC~1\Kaspersky Lab
C:\Documents and Settings\All Users\APPLIC~1\Microsoft
C:\Documents and Settings\All Users\APPLIC~1\Jump Poll Poke Mp3
C:\Documents and Settings\All Users\APPLIC~1\soap scr enc wma
C:\Documents and Settings\All Users\APPLIC~1\QTSBandwidthCache
C:\Documents and Settings\All Users\APPLIC~1\Zylom
C:\Documents and Settings\All Users\APPLIC~1\Adobe
C:\Documents and Settings\All Users\APPLIC~1\Google
C:\Documents and Settings\All Users\APPLIC~1\Windows Genuine Advantage
C:\Documents and Settings\All Users\APPLIC~1\Windows Live Toolbar
C:\Documents and Settings\All Users\APPLIC~1\Avg7
C:\Documents and Settings\All Users\APPLIC~1\Apple Computer
C:\Documents and Settings\All Users\APPLIC~1\Sony Ericsson
C:\Documents and Settings\All Users\APPLIC~1\Messenger Plus!
C:\Documents and Settings\All Users\APPLIC~1\Ahead
C:\Documents and Settings\All Users\APPLIC~1\CyberLink
C:\Documents and Settings\All Users\APPLIC~1\desktop.ini

C:\Documents and Settings\Default User\APPLIC~1\desktop.ini
C:\Documents and Settings\Default User\APPLIC~1\Microsoft

C:\Documents and Settings\LocalService\APPLIC~1\Microsoft

C:\Documents and Settings\lucie\APPLIC~1\BarbNurbLoud
C:\Documents and Settings\lucie\APPLIC~1\Macromedia
C:\Documents and Settings\lucie\APPLIC~1\WengoPhone
C:\Documents and Settings\lucie\APPLIC~1\BitTorrent
C:\Documents and Settings\lucie\APPLIC~1\Ahead
C:\Documents and Settings\lucie\APPLIC~1\Screenshot Sender
C:\Documents and Settings\lucie\APPLIC~1\Microsoft
C:\Documents and Settings\lucie\APPLIC~1\Adobe
C:\Documents and Settings\lucie\APPLIC~1\GDIPFONTCACHEV1.DAT
C:\Documents and Settings\lucie\APPLIC~1\AdobeUM
C:\Documents and Settings\lucie\APPLIC~1\Template
C:\Documents and Settings\lucie\APPLIC~1\Google
C:\Documents and Settings\lucie\APPLIC~1\Azureus
C:\Documents and Settings\lucie\APPLIC~1\Samsung
C:\Documents and Settings\lucie\APPLIC~1\ppStream
C:\Documents and Settings\lucie\APPLIC~1\ViewerApp.dat
C:\Documents and Settings\lucie\APPLIC~1\Jasc
C:\Documents and Settings\lucie\APPLIC~1\AdobeAUM
C:\Documents and Settings\lucie\APPLIC~1\Sereniti
C:\Documents and Settings\lucie\APPLIC~1\CyberLink
C:\Documents and Settings\lucie\APPLIC~1\vlc
C:\Documents and Settings\lucie\APPLIC~1\.BitTornado
C:\Documents and Settings\lucie\APPLIC~1\Leadertech
C:\Documents and Settings\lucie\APPLIC~1\Sun
C:\Documents and Settings\lucie\APPLIC~1\Apple Computer
C:\Documents and Settings\lucie\APPLIC~1\Real
C:\Documents and Settings\lucie\APPLIC~1\FotoWire
C:\Documents and Settings\lucie\APPLIC~1\desktop.ini
C:\Documents and Settings\lucie\APPLIC~1\Talkback
C:\Documents and Settings\lucie\APPLIC~1\Mozilla
C:\Documents and Settings\lucie\APPLIC~1\Help
C:\Documents and Settings\lucie\APPLIC~1\Identities

C:\Documents and Settings\NetworkService\APPLIC~1\Microsoft

----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

C:\WINDOWS\tasks\Norton Security Scan.job
C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
C:\WINDOWS\tasks\SA.DAT
C:\WINDOWS\tasks\desktop.ini

---------------[ Listing des dossiers dans C:\Program Files ]--------------

C:\Program Files\1 Click PC Fix 2006
C:\Program Files\Aardvark Digital
C:\Program Files\Adobe
C:\Program Files\Ahead
C:\Program Files\Alcohol Soft
C:\Program Files\Alwil Software
C:\Program Files\ATI Technologies
C:\Program Files\AusLogics Disk Defrag
C:\Program Files\AVIConverter
C:\Program Files\Azureus
C:\Program Files\BarbNurbLoud
C:\Program Files\Belarc
C:\Program Files\BitTorrent
C:\Program Files\CCleaner
C:\Program Files\Circle Developement
C:\Program Files\ComPlus Applications
C:\Program Files\CyberLink
C:\Program Files\DAP
C:\Program Files\DivX
C:\Program Files\ewido anti-malware
C:\Program Files\Fichiers communs
C:\Program Files\FunWebProducts
C:\Program Files\GeoGebra
C:\Program Files\Google
C:\Program Files\Hewlett-Packard
C:\Program Files\Illustrate
C:\Program Files\Internet Explorer
C:\Program Files\iPod
C:\Program Files\ISOpen
C:\Program Files\iTunes
C:\Program Files\Jasc Software Inc
C:\Program Files\Java
C:\Program Files\Kaspersky Lab
C:\Program Files\Kerio
C:\Program Files\LAventure
C:\Program Files\Logitech
C:\Program Files\Lop SD
C:\Program Files\Messenger Plus! Live
C:\Program Files\MessengerPlus! 3
C:\Program Files\Microsoft CAPICOM 2.1.0.2
C:\Program Files\Microsoft Office
C:\Program Files\Microsoft Works
C:\Program Files\Mozilla Firefox
C:\Program Files\MP3 Player Utilities 4.02
C:\Program Files\MSECache
C:\Program Files\MSN ExtenSion DebloKer
C:\Program Files\MSN Messenger
C:\Program Files\MSXML 4.0
C:\Program Files\MyWebSearch
C:\Program Files\NetMeeting
C:\Program Files\NJStar Chinese WP
C:\Program Files\Norton Security Scan
C:\Program Files\Outlook Express
C:\Program Files\Panda Security
C:\Program Files\PhotoFiltre
C:\Program Files\PpStream Fr
C:\Program Files\QuickTime
C:\Program Files\Real
C:\Program Files\Samsung
C:\Program Files\Services en ligne
C:\Program Files\SlySoft
C:\Program Files\Sony Corporation
C:\Program Files\Sony Ericsson
C:\Program Files\Trend Micro
C:\Program Files\ULi5287
C:\Program Files\VideoLAN
C:\Program Files\Winamp
C:\Program Files\Windows Live
C:\Program Files\Windows Live Safety Center
C:\Program Files\Windows Live Toolbar
C:\Program Files\Windows Media Player
C:\Program Files\Windows NT
C:\Program Files\WinRAR
C:\Program Files\Zylom Games

------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------

C:\Program Files\Fichiers communs\Adobe
C:\Program Files\Fichiers communs\Ahead
C:\Program Files\Fichiers communs\Designer
C:\Program Files\Fichiers communs\FotoWire
C:\Program Files\Fichiers communs\InstallShield
C:\Program Files\Fichiers communs\Java
C:\Program Files\Fichiers communs\Logitech
C:\Program Files\Fichiers communs\Microsoft Shared
C:\Program Files\Fichiers communs\MSSoap
C:\Program Files\Fichiers communs\muvee Technologies
C:\Program Files\Fichiers communs\Nero
C:\Program Files\Fichiers communs\NSV
C:\Program Files\Fichiers communs\ODBC
C:\Program Files\Fichiers communs\Real
C:\Program Files\Fichiers communs\Services
C:\Program Files\Fichiers communs\SpeechEngines
C:\Program Files\Fichiers communs\System
C:\Program Files\Fichiers communs\Teleca Shared
C:\Program Files\Fichiers communs\xing shared

----------------------[ Recherche avec S_Lop ]---------------------

Aucun fichier / dossier Lop trouvé !

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

Aucun fichier / dossier Lop trouvé !

----------------------[ Verification du Registre ]----------------------

..... OK !

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts PROPRE


----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2007-12-21 22:12:09
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden files ...
scan completed successfully
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------

Aucune autre infection trouvée !

--------------------[ Fin du rapport a 22:12:18,57 ]----------------------


je te joins la suite

merci

Je n'ai pas trouvé le fichier, je te joins la colonne de droite:

C:\Documents and Settings\All Users\APPLIC~1\Jump Poll Poke Mp3 moved successfully.
C:\Documents and Settings\All Users\APPLIC~1\soap scr enc wma moved successfully.

Merci !
Created on 12/21/2007 22:16:25

Re,

Séléctionne l'encadré ci-dessous

Lance maintenant OTMoveIt .
Assure toi que la case unregister dll%u2019s and ocx%u2019s soit cochée.
Deux cadres apparaissent , clique droit sur le cadre de gauche , puis colle l'encadré ci desssus.
Et clique sur Movelt !

Si le programme te demande de redemarrer, accepte.

Poste le rapport qui se trouve dans : C:\_OTMoveIt\MovedFiles\date de création!

NOTE : Si tu obtiens un message comme quoi le rapport ne peut pas être créé, copie/colle ce qui apparaît dans la colonne droite de l%u2019outil.

Télécharge sur ton bureau : Clean (de Malekal) >Tuto<
Dézippe le sur ton bureau. Double-clic sur ce dossier clean.
Double-clic sur clean.cmd. (L%u2019extension cmd peut ne pas apparaître) Cela va ouvrir une fenêtre noire.
Un menu va apparaître, choisis l'option 1 puis entrée. Ensuite appuies sur une touche comme il te sera demandé et poste le rapport ici.
Le rapport se trouve ici : C:\rapport_clean.txt

Si tu obtiens un fichier C:\upload_moi.zip, merci de faire ceci.

21/12/2007 a 22:48:35,53

*** Recherche des fichiers dans C:

*** Recherche des fichiers dans C:\WINDOWS\

*** Recherche des fichiers dans C:\WINDOWS\system32
C:\WINDOWS\system32\SpoonUninstall.exe FOUND
"C:\WINDOWS\Downloaded Program Files\CONFLICT.1" FOUND

*** Recherche des fichiers dans C:\Program Files
"C:\Program Files\funwebproducts\" FOUND
"C:\Program Files\MyWebSearch\" FOUND

Poste moi le rapport OtMovelt.

Télécharge AVG Anti-Spyware Installes-le.
Lance AVG et fais une mise à jour.
Clique sur le bouton Analyse (de la barre d'outils)
Puis sur l'onglet comment réagir, clique sur Actions recommandées. Choisis Quarantaine.
Ne fais pas d’analyse pour le moment.
Redémarre en mode sans échec
/!\ Ne jamais démarrer en mode sans échec via MSCONFIG /!\
Relance Avg.
Reviens à l'onglet Analyse. Clique sur Analyse complète du système.
A la fin du scan, choisis l'option " Appliquer toutes les actions " en bas.
Clique sur "Enregistrer le rapport". Ceci génère un rapport qui se trouve dans le dossier Reports du dossier d'AVG Anti-Spyware.
Poste le ici.
&
Toujours en mode sans échec, relance clean et fais l'option 2, poste le rapport.

AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 16:29:48 22/12/2007

+ Résultat de l'analyse:



:mozilla.312:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.
:mozilla.313:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.
:mozilla.314:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.
:mozilla.315:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.
:mozilla.566:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.567:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.568:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.569:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.570:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.571:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.572:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.573:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.574:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.763:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\lucie\Cookies\lucie@2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\lucie\Cookies\lucie@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.280:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.281:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.282:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.513:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.
:mozilla.514:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.
:mozilla.515:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.
:mozilla.516:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.
:mozilla.517:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.
:mozilla.518:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.
:mozilla.519:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.
:mozilla.520:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Adrevolver : Nettoyé.
:mozilla.208:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Adtech : Nettoyé.
:mozilla.209:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Adtech : Nettoyé.
C:\Documents and Settings\lucie\Cookies\lucie@adtech[1].txt -> TrackingCookie.Adtech : Nettoyé.
:mozilla.25:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.26:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.27:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.28:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.29:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
C:\Documents and Settings\lucie\Cookies\lucie@advertising[1].txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.53:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyé.
C:\Documents and Settings\lucie\Cookies\lucie@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé.
:mozilla.54:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\lucie\Cookies\lucie@bluestreak[2].txt -> TrackingCookie.Bluestreak : Nettoyé.
:mozilla.398:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.399:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.400:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.401:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.402:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.403:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.404:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyé.
C:\Documents and Settings\lucie\Cookies\lucie@casalemedia[1].txt -> TrackingCookie.Casalemedia : Nettoyé.
:mozilla.201:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.203:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.205:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
C:\Documents and Settings\lucie\Cookies\lucie@fl01.ct2.comclick[1].txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.20:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé.
C:\Documents and Settings\lucie\Cookies\lucie@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyé.
:mozilla.163:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Estat : Nettoyé.
C:\Documents and Settings\lucie\Cookies\lucie@estat[1].txt -> TrackingCookie.Estat : Nettoyé.
:mozilla.791:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
C:\Documents and Settings\lucie\Cookies\lucie@adopt.euroclick[2].txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.385:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.386:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
C:\Documents and Settings\lucie\Cookies\lucie@fastclick[2].txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.277:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.278:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.279:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.588:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.589:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.756:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.757:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.758:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
C:\Documents and Settings\lucie\Cookies\lucie@ehg-telecomitalia.hitbox[1].txt -> TrackingCookie.Hitbox : Nettoyé.
C:\Documents and Settings\lucie\Cookies\lucie@hitbox[1].txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.236:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Imrworldwide : Nettoyé.
:mozilla.237:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Imrworldwide : Nettoyé.
:mozilla.397:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Information : Nettoyé.
C:\Documents and Settings\lucie\Cookies\lucie@www.lop[2].txt -> TrackingCookie.Lop : Nettoyé.
:mozilla.263:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Mediaplex : Nettoyé.
C:\Documents and Settings\lucie\Cookies\lucie@mediaplex[1].txt -> TrackingCookie.Mediaplex : Nettoyé.
:mozilla.308:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Netflame : Nettoyé.
C:\Documents and Settings\lucie\Cookies\lucie@ssl-hints.netflame[2].txt -> TrackingCookie.Netflame : Nettoyé.
:mozilla.169:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.
:mozilla.170:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.
:mozilla.171:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.
C:\Documents and Settings\lucie\Cookies\lucie@overture[1].txt -> TrackingCookie.Overture : Nettoyé.
:mozilla.862:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Questionmarket : Nettoyé.
:mozilla.863:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Questionmarket : Nettoyé.
:mozilla.530:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Realmedia : Nettoyé.
:mozilla.532:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Realmedia : Nettoyé.
:mozilla.405:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Revenue : Nettoyé.
:mozilla.454:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.455:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.442:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.443:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.444:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.445:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.446:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.447:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.448:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
C:\Documents and Settings\lucie\Cookies\lucie@bs.serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyé.
C:\Documents and Settings\lucie\Cookies\lucie@serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.612:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé.
:mozilla.613:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Sitestat : Nettoyé.
:mozilla.19:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.21:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.22:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.23:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.24:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\lucie\Cookies\lucie@smartadserver[1].txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.238:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.239:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.240:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.241:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.242:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.243:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.244:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.245:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.246:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.247:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.248:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.249:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.250:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.251:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.252:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.253:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.254:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.255:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.196:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.197:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.198:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.199:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.200:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
C:\Documents and Settings\lucie\Cookies\lucie@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.538:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Trafficmp : Nettoyé.
:mozilla.539:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Trafficmp : Nettoyé.
:mozilla.541:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Trafficmp : Nettoyé.
:mozilla.542:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Trafficmp : Nettoyé.
:mozilla.543:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Trafficmp : Nettoyé.
:mozilla.284:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Tribalfusion : Nettoyé.
:mozilla.85:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.86:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.87:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
C:\Documents and Settings\lucie\Cookies\lucie@weborama[1].txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.623:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Webtrends : Nettoyé.
C:\Documents and Settings\lucie\Cookies\lucie@m.webtrends[1].txt -> TrackingCookie.Webtrends : Nettoyé.
:mozilla.375:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Webtrendslive : Nettoyé.
:mozilla.775:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Webtrendslive : Nettoyé.
C:\Documents and Settings\lucie\Cookies\lucie@statse.webtrendslive[1].txt -> TrackingCookie.Webtrendslive : Nettoyé.
:mozilla.64:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.65:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.66:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.67:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.68:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.69:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.70:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.71:C:\Documents and Settings\lucie\Application Data\Mozilla\Firefox\Profiles\83ka62n3.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
C:\Documents and Settings\lucie\Cookies\lucie@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Nettoyé.
C:\Documents and Settings\lucie\Cookies\lucie@zedo[2].txt -> TrackingCookie.Zedo : Nettoyé.


Fin du rapport

Rapport clean  

Script execute en mode sans echec
Rapport clean par Malekal_morte - http://www.malekal.com
Script execute en mode sans echec 22/12/2007 a 16:30:53,54

Microsoft Windows XP [version 5.1.2600]

*** Suppression des fichiers dans C:

*** Suppression des fichiers dans C:\WINDOWS\

*** Suppression des fichiers dans C:\WINDOWS\system32
tentative de suppression de C:\WINDOWS\system32\SpoonUninstall.exe
tentative de suppression de "C:\WINDOWS\Downloaded Program Files\CONFLICT.1"

*** Suppression des fichiers dans C:\Program Files
tentative de suppression de "C:\Program Files\funwebproducts\"
tentative de suppression de "C:\Program Files\MyWebSearch\"

*** Suppression des clefs du registre effectuee..
*** Fin du rapport !


Et voila  
C'est fini?

Bientot  
Reposte un Hijackthis.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:44:42, on 22/12/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\WgaTray.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\ULi5287\ULi5287.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\Microsoft Works\WksSb.exe
C:\WINDOWS\Samsung\PanelMgr\ssmmgr.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\lclock.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\wkcalrem.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\MSN Messenger\livecall.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://runonce.msn.com/?v=msgrv75
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.winlsd.org/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat\AcroIEFavClient.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: MEDIADICO Familial - {CEDDA62B-5FBE-4AB2-AE2E-5E069F444444} - C:\Program Files\LAventure\MDToolbar\MdToolbar.dll
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [ULiRaid] C:\Program Files\ULi5287\ULi5287.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [Microsoft Works Portfolio] C:\Program Files\Microsoft Works\WksSb.exe /AllUsers
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Microsoft Works\WkDetect.exe
O4 - HKLM\..\Run: [Samsung PanelMgr] C:\WINDOWS\Samsung\PanelMgr\ssmmgr.exe /autorun
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [LClock] lclock.exe
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [BitTorrent] "C:\Program Files\BitTorrent\bittorrent.exe" --force_start_minimized
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [WengoPhoneNG] G:\Apps\PortableWengoPhone\qtwengophone.exe -b
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [HeartEq] C:\DOCUME~1\lucie\APPLIC~1\BARBNU~1\Adminone.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [LSD_III] %systemroot%\LSD\end.cmd (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-20\..\RunOnce: [LSD_III] %systemroot%\LSD\end.cmd (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [LSD_III] %systemroot%\LSD\end.cmd (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [LSD_III] %systemroot%\LSD\end.cmd (User 'Default user')
O4 - Global Startup: Adobe Acrobat Speed Launcher.lnk = ?
O4 - Global Startup: Rappels du Calendrier Microsoft Works.lnk = ?
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to AMV Converter... - C:\Program Files\MP3 Player Utilities 4.02\AMVConverter\grab.html
O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files\Adobe\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files\Adobe\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files\Adobe\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files\Adobe\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files\Adobe\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files\Adobe\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Adobe\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert to existing PDF - res://C:\Program Files\Adobe\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: MediaManager tool grab multimedia file - C:\Program Files\MP3 Player Utilities 4.02\MediaManager\grab.html
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?2967b5aac63947bb973df67ed1d686a1
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?2967b5aac63947bb973df67ed1d686a1
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe

--
End of file - 9224 bytes


et voilou!

Re,

Séléctionne l'encadré ci-dessous

Lance maintenant OTMoveIt .
Assure toi que la case unregister dll’s and ocx’s soit cochée.
Deux cadres apparaissent , clique droit sur le cadre de gauche , puis colle l'encadré ci desssus.
Et clique sur Movelt !

Si le programme te demande de redemarrer, accepte.

Poste le rapport qui se trouve dans : C:\_OTMoveIt\MovedFiles\date de création!

NOTE : Si tu obtiens un message comme quoi le rapport ne peut pas être créé, copie/colle ce qui apparaît dans la colonne droite de l’outil.

+++++++

Relance HiJackThis, do a system scan only, coche ces lignes :

Puis Fix Checked !

+++++++++

Désinstalle avast, redémarre et supprime ~~>C:\Program Files\Alwil Software

Télécharge ccleaner (>>tuto à lire !<<), tu download «the latest version » puis installe le en décochant - Ajouter la Barre d'Outils Yahoo! CCleaner
Puis lance le nettoyage, puis fais chercher des erreurs et sauvegardes si tu le souhaites.

Télécharge et installe Antivir. (tuto)
Pourquoi changer ? Avast vs Antivir
Vérifie qu’il soit bien à jour ! Fais une analyse complète, poste le rapport.

C:\DOCUME~1\lucie\APPLIC~1\BARBNU~1 moved successfully.
File/Folder not found.

Created on 12/22/2007 17:58:21

AntiVir PersonalEdition Classic
Report file date: samedi 22 décembre 2007 18:22

Scanning for 985864 virus strains and unwanted programs.

Licensed to: Avira AntiVir PersonalEdition Classic
Serial number: 0000149996-ADJIE-0001
Platform: Windows XP
Windows version: (Service Pack 2) [5.1.2600]
Username: SYSTEM
Computer name: ACER

Version information:
BUILD.DAT : 270 15603 Bytes 19/09/2007 13:32:00
AVSCAN.EXE : 7.0.6.1 290856 Bytes 23/08/2007 13:16:29
AVSCAN.DLL : 7.0.6.0 49192 Bytes 16/08/2007 12:23:51
LUKE.DLL : 7.0.5.3 147496 Bytes 14/08/2007 15:32:47
LUKERES.DLL : 7.0.6.1 10280 Bytes 21/08/2007 12:35:20
ANTIVIR0.VDF : 6.40.0.0 11030528 Bytes 18/07/2007 14:27:15
ANTIVIR1.VDF : 7.0.1.95 3367424 Bytes 14/12/2007 17:20:01
ANTIVIR2.VDF : 7.0.1.96 2048 Bytes 14/12/2007 17:20:01
ANTIVIR3.VDF : 7.0.1.142 194048 Bytes 22/12/2007 17:20:01
AVEWIN32.DLL : 7.6.0.46 3084800 Bytes 22/12/2007 17:20:02
AVWINLL.DLL : 1.0.0.7 14376 Bytes 26/02/2007 10:36:26
AVPREF.DLL : 7.0.2.2 25640 Bytes 18/07/2007 07:39:17
AVREP.DLL : 7.0.0.1 155688 Bytes 16/04/2007 13:16:24
AVPACK32.DLL : 7.6.0.2 360488 Bytes 22/12/2007 17:20:02
AVREG.DLL : 7.0.1.6 30760 Bytes 18/07/2007 07:17:06
AVARKT.DLL : 1.0.0.20 278568 Bytes 28/08/2007 12:26:33
AVEVTLOG.DLL : 7.0.0.20 86056 Bytes 18/07/2007 07:10:18
NETNT.DLL : 7.0.0.0 7720 Bytes 08/03/2007 11:09:42
RCIMAGE.DLL : 7.0.1.30 2342952 Bytes 07/08/2007 12:38:13
RCTEXT.DLL : 7.0.62.0 86056 Bytes 21/08/2007 12:50:37
SQLITE3.DLL : 3.3.17.1 339968 Bytes 23/07/2007 09:37:21

Configuration settings for the scan:
Jobname..........................: Complete system scan
Configuration file...............: c:\program files\avira\antivir personaledition classic\sysscan.avp
Logging..........................: low
Primary action...................: interactive
Secondary action.................: ignore
Scan master boot sector..........: off
Scan boot sector.................: on
Boot sectors.....................: D:,
Scan memory......................: on
Process scan.....................: on
Scan registry....................: on
Search for rootkits..............: off
Scan all files...................: Intelligent file selection
Scan archives....................: on
Recursion depth..................: 20
Smart extensions.................: on
Macro heuristic..................: on
File heuristic...................: medium

Start of the scan: samedi 22 décembre 2007 18:22

The scan of running processes will be started
Scan process 'avscan.exe' - '1' Module(s) have been scanned
Scan process 'avcenter.exe' - '1' Module(s) have been scanned
Scan process 'sched.exe' - '1' Module(s) have been scanned
Scan process 'avgnt.exe' - '1' Module(s) have been scanned
Scan process 'avguard.exe' - '1' Module(s) have been scanned
Scan process 'jucheck.exe' - '1' Module(s) have been scanned
Scan process 'qttask.exe' - '1' Module(s) have been scanned
Scan process 'IEXPLORE.EXE' - '1' Module(s) have been scanned
Scan process 'usnsvc.exe' - '1' Module(s) have been scanned
Scan process 'msnmsgr.exe' - '1' Module(s) have been scanned
Scan process 'livecall.exe' - '1' Module(s) have been scanned
Scan process 'WkCalRem.exe' - '1' Module(s) have been scanned
Scan process 'ctfmon.exe' - '1' Module(s) have been scanned
Scan process 'GoogleToolbarNotifier.exe' - '1' Module(s) have been scanned
Scan process 'msnmsgr.exe' - '1' Module(s) have been scanned
Scan process 'LClock.exe' - '1' Module(s) have been scanned
Scan process 'avgas.exe' - '1' Module(s) have been scanned
Scan process 'SSMMgr.exe' - '1' Module(s) have been scanned
Scan process 'wkssb.exe' - '1' Module(s) have been scanned
Scan process 'jusched.exe' - '1' Module(s) have been scanned
Scan process 'LVCOMSX.EXE' - '1' Module(s) have been scanned
Scan process 'ULi5287.exe' - '1' Module(s) have been scanned
Scan process 'atiptaxx.exe' - '1' Module(s) have been scanned
Scan process 'WgaTray.exe' - '1' Module(s) have been scanned
Scan process 'alg.exe' - '1' Module(s) have been scanned
Scan process 'explorer.exe' - '1' Module(s) have been scanned
Scan process 'ati2evxx.exe' - '1' Module(s) have been scanned
Scan process 'wdfmgr.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'ewidoctrl.exe' - '1' Module(s) have been scanned
Scan process 'guard.exe' - '0' Module(s) have been scanned
Scan process 'spoolsv.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'ati2evxx.exe' - '1' Module(s) have been scanned
Scan process 'lsass.exe' - '1' Module(s) have been scanned
Scan process 'services.exe' - '1' Module(s) have been scanned
Scan process 'winlogon.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'smss.exe' - '1' Module(s) have been scanned
41 processes with 41 modules were scanned

Start scanning boot sectors:
Boot sector 'C:\'
[NOTE] No virus was found!
Boot sector 'D:\'
[NOTE] No virus was found!

Starting to scan the registry.
The registry was scanned ( '33' files ).


Starting the file scan:

Begin scan in 'C:\'
C:\pagefile.sys
[WARNING] The file could not be opened!
C:\Documents and Settings\lucie\Incomplete\Preview-T-1852427-01 Track 1.wma
[DETECTION] Is the Trojan horse TR/Wimad.A.Gen
[INFO] The file was deleted!
C:\Program Files\Panda Security\NanoScan\Engine\psnflg.dll
[DETECTION] Is the Trojan horse TR/Agent.bux.1
[INFO] The file was deleted!
C:\Program Files\Panda Security\TotalScan\pskavs.dll
[DETECTION] Contains detection pattern of the Windows virus W95/Blumblebee.1738
[INFO] The file was moved to '47d84d7e.qua'!
C:\WINDOWS\system32\drivers\sptd.sys
[WARNING] The file could not be opened!
C:\WINDOWS\system32\drivers\sptd3341.sys
[WARNING] The file could not be opened!
Begin scan in 'D:\'


End of the scan: samedi 22 décembre 2007 18:53
Used time: 30:58 min

The scan has been done completely.

6235 Scanning directories
169322 Files were scanned
3 viruses and/or unwanted programs were found
0 Files were classified as suspicious:
2 files were deleted
0 files were repaired
1 files were moved to quarantine
0 files were renamed
3 Files cannot be scanned
169319 Files not concerned
1858 Archives were scanned
3 Warnings
0 Notes

Encore des virus?  

Tu as (eu) panda (dans une vie antérieure) ?