Problème avec les pubs CID

Bonsoir,

Quand j'ouvre une fenêtre internet avec mozilla ou internet il m'ouvre 1 à 3 pop up CID.


Que dois-je faire?

Voici le rapport avec lop s&d


-----------------------------[ Lop S&D 4.0.4 ]---------------------------

[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : Nous ] [ "C:\Lop SD" ]
[ ven. 07/03/2008 | 20:06:49,04 ] [ PC : DCFRXR2J ]
[ MAJ : 05-03-2008 | 13:30 ]

-------------[ Listing des dossiers dans Application Data ]------------

[05/03/2008|21:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\.
[05/03/2008|21:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\..
[10/09/2007|17:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\.zreglib
[24/02/2007|19:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[03/12/2007|23:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Alawar Stargaze
[04/11/2007|20:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Aliasworlds
[06/02/2008|10:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Anvsoft
[01/09/2007|10:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[08/02/2008|22:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[29/01/2008|12:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BigFish
[27/02/2008|21:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BigFishGamesCache
[28/12/2007|17:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[04/12/2007|01:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BufferZone
[18/12/2007|01:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Christmasville
[17/02/2007|14:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Corel
[04/02/2008|10:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Dell
[20/08/2004|11:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[23/11/2007|23:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\EA
[29/10/2007|23:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Escape From Paradise
[22/08/2007|23:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FloodLightGames
[20/11/2007|23:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Fugazo
[28/02/2008|21:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar
[04/02/2008|00:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Go Go Gourmet
[30/01/2008|22:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Gogii
[21/06/2007|22:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[17/02/2007|14:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\GTek
[19/01/2008|10:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HipSoft
[24/02/2007|01:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[24/02/2007|01:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hpzinstall.log
[17/09/2007|16:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Installations
[17/02/2007|14:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[20/02/2008|18:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\JollyBear
[14/08/2007|23:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Legacy Interactive
[17/02/2007|14:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee
[21/06/2007|10:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee.com
[22/02/2007|11:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee.com Personal Firewall
[29/08/2007|16:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[23/02/2008|18:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[14/02/2008|03:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Help
[04/11/2007|21:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MinigolfAdventures
[06/01/2008|23:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MumboJumbo
[03/03/2008|21:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\My Games
[24/02/2008|20:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MythPeople
[21/10/2007|21:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\n7-89-o9-3r-4t-r9
[17/02/2008|23:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NannyMania
[23/11/2007|23:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NeptunesAdve
[24/06/2007|21:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
[17/01/2008|10:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Oberon Games
[20/08/2007|21:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\OBJ META UP BURN
[07/02/2008|04:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\part dead amok eggs
[17/09/2007|17:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PC Suite
[03/11/2007|22:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst
[07/11/2007|23:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PrettyGoodGames
[16/12/2007|17:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QTSBandwidthCache
[13/02/2008|15:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\River Past G5
[18/12/2007|00:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sandlot Games
[20/08/2004|11:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[02/01/2008|22:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SecretsOfOlympus
[17/02/2007|14:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
[18/09/2007|11:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SpinTop Games
[07/11/2007|23:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SugarGames
[21/02/2007|18:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Support.com
[24/04/2007|18:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SupportSoft
[07/03/2008|19:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[05/03/2008|00:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[13/09/2007|22:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TERMINAL Studio
[11/10/2007|14:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Trymedia
[28/02/2008|20:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TuneUp Software
[29/01/2008|22:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Valusoft
[21/02/2007|20:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[29/07/2007|22:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WindowsLiveInstaller
[23/02/2008|18:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[26/02/2007|00:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom


[10/02/2008|11:29] C:\DOCUME~1\DEFAUL~1\APPLIC~1\.
[10/02/2008|11:29] C:\DOCUME~1\DEFAUL~1\APPLIC~1\..
[10/02/2008|11:29] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Apple Computer
[20/08/2004|11:30] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[17/02/2007|14:48] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Gtek
[20/08/2004|11:41] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[20/08/2004|11:30] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[17/02/2007|14:47] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec

[20/06/2007|22:38] C:\DOCUME~1\LOCALS~1\APPLIC~1\.
[20/06/2007|22:38] C:\DOCUME~1\LOCALS~1\APPLIC~1\..
[20/06/2007|22:38] C:\DOCUME~1\LOCALS~1\APPLIC~1\Adobe
[22/02/2007|02:56] C:\DOCUME~1\LOCALS~1\APPLIC~1\Macromedia
[21/02/2007|18:43] C:\DOCUME~1\LOCALS~1\APPLIC~1\McAfee.com Personal Firewall
[30/09/2007|20:01] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[02/04/2007|01:31] C:\DOCUME~1\LOCALS~1\APPLIC~1\Mozilla

[30/09/2007|19:28] C:\DOCUME~1\NETWOR~1\APPLIC~1\.
[30/09/2007|19:28] C:\DOCUME~1\NETWOR~1\APPLIC~1\..
[30/09/2007|19:28] C:\DOCUME~1\NETWOR~1\APPLIC~1\Identities
[09/10/2007|00:03] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

[07/03/2008|18:30] C:\DOCUME~1\Nous\APPLIC~1\.
[07/03/2008|18:30] C:\DOCUME~1\Nous\APPLIC~1\..
[06/02/2008|10:40] C:\DOCUME~1\Nous\APPLIC~1\3D Photo Album Screensaver
[17/10/2007|22:30] C:\DOCUME~1\Nous\APPLIC~1\Abra Academy2
[19/01/2008|11:17] C:\DOCUME~1\Nous\APPLIC~1\Adobe
[10/01/2008|17:09] C:\DOCUME~1\Nous\APPLIC~1\AdobeUM
[03/12/2007|23:10] C:\DOCUME~1\Nous\APPLIC~1\Alawar
[05/03/2008|21:33] C:\DOCUME~1\Nous\APPLIC~1\AlwaysNeat
[24/02/2007|20:11] C:\DOCUME~1\Nous\APPLIC~1\anagramarama
[01/09/2007|10:09] C:\DOCUME~1\Nous\APPLIC~1\Apple Computer
[18/12/2007|00:11] C:\DOCUME~1\Nous\APPLIC~1\Aveyond II
[24/06/2007|00:05] C:\DOCUME~1\Nous\APPLIC~1\Beep Industries
[13/09/2007|22:49] C:\DOCUME~1\Nous\APPLIC~1\Big Fish Games
[29/01/2008|12:50] C:\DOCUME~1\Nous\APPLIC~1\BigFish
[24/02/2007|20:15] C:\DOCUME~1\Nous\APPLIC~1\BitTorrent
[14/03/2007|01:57] C:\DOCUME~1\Nous\APPLIC~1\BitZipper
[07/02/2008|04:03] C:\DOCUME~1\Nous\APPLIC~1\Cdrom Five
[22/12/2007|15:34] C:\DOCUME~1\Nous\APPLIC~1\CopyToDvd
[24/03/2007|18:51] C:\DOCUME~1\Nous\APPLIC~1\Corel
[21/10/2007|23:47] C:\DOCUME~1\Nous\APPLIC~1\ctpo
[19/12/2007|18:23] C:\DOCUME~1\Nous\APPLIC~1\DAEMON Tools
[20/08/2004|11:30] C:\DOCUME~1\Nous\APPLIC~1\desktop.ini
[15/08/2007|22:28] C:\DOCUME~1\Nous\APPLIC~1\DiVision Studios - Escaping Atlantis
[06/03/2007|21:42] C:\DOCUME~1\Nous\APPLIC~1\DivX
[22/12/2007|15:36] C:\DOCUME~1\Nous\APPLIC~1\dvd.bmk
[23/11/2007|23:30] C:\DOCUME~1\Nous\APPLIC~1\EA
[29/11/2007|18:08] C:\DOCUME~1\Nous\APPLIC~1\Eyeblaster
[22/08/2007|23:05] C:\DOCUME~1\Nous\APPLIC~1\FloodLightGames
[01/11/2007|00:36] C:\DOCUME~1\Nous\APPLIC~1\Gaijin Ent
[29/11/2007|18:06] C:\DOCUME~1\Nous\APPLIC~1\GameHouse
[13/10/2007|14:07] C:\DOCUME~1\Nous\APPLIC~1\Gamelab
[17/03/2007|05:39] C:\DOCUME~1\Nous\APPLIC~1\GDIPFONTCACHEV1.DAT
[03/03/2008|21:56] C:\DOCUME~1\Nous\APPLIC~1\gemsweeperextractedgfx
[19/12/2007|21:51] C:\DOCUME~1\Nous\APPLIC~1\GibbHill Properties Ltd
[22/02/2008|00:06] C:\DOCUME~1\Nous\APPLIC~1\Google
[17/02/2007|14:48] C:\DOCUME~1\Nous\APPLIC~1\Gtek
[27/02/2007|23:45] C:\DOCUME~1\Nous\APPLIC~1\Help
[02/01/2008|23:14] C:\DOCUME~1\Nous\APPLIC~1\Home Sweet Home
[24/07/2007|18:06] C:\DOCUME~1\Nous\APPLIC~1\HouseCall 6.6
[11/03/2007|02:32] C:\DOCUME~1\Nous\APPLIC~1\HP
[05/03/2008|21:33] C:\DOCUME~1\Nous\APPLIC~1\Identities
[14/11/2007|01:20] C:\DOCUME~1\Nous\APPLIC~1\Image Zone Express
[22/12/2007|10:21] C:\DOCUME~1\Nous\APPLIC~1\inst.exe
[18/02/2008|22:46] C:\DOCUME~1\Nous\APPLIC~1\iWin
[10/10/2007|00:44] C:\DOCUME~1\Nous\APPLIC~1\Jane s Hotel
[26/03/2007|04:18] C:\DOCUME~1\Nous\APPLIC~1\Jasc
[28/01/2008|22:49] C:\DOCUME~1\Nous\APPLIC~1\Land Of Runes
[21/02/2007|17:46] C:\DOCUME~1\Nous\APPLIC~1\Leadertech
[28/02/2008|21:37] C:\DOCUME~1\Nous\APPLIC~1\LimeWire
[11/10/2007|19:48] C:\DOCUME~1\Nous\APPLIC~1\Macromedia
[01/09/2007|00:08] C:\DOCUME~1\Nous\APPLIC~1\Magic Academy
[20/02/2008|20:42] C:\DOCUME~1\Nous\APPLIC~1\Magic Seeds
[22/02/2007|11:10] C:\DOCUME~1\Nous\APPLIC~1\McAfee.com Personal Firewall
[25/03/2007|22:37] C:\DOCUME~1\Nous\APPLIC~1\MessengerSkinner
[03/03/2008|21:39] C:\DOCUME~1\Nous\APPLIC~1\Microsoft
[24/07/2007|20:23] C:\DOCUME~1\Nous\APPLIC~1\Mozilla
[27/07/2007|23:18] C:\DOCUME~1\Nous\APPLIC~1\My Games
[17/09/2007|22:32] C:\DOCUME~1\Nous\APPLIC~1\Mysteryville2
[05/10/2007|21:56] C:\DOCUME~1\Nous\APPLIC~1\NMM-MetaData.db
[18/09/2007|15:32] C:\DOCUME~1\Nous\APPLIC~1\Nokia
[17/09/2007|17:41] C:\DOCUME~1\Nous\APPLIC~1\Nokia Multimedia Player
[17/01/2008|10:14] C:\DOCUME~1\Nous\APPLIC~1\Oberon Games
[21/10/2007|23:46] C:\DOCUME~1\Nous\APPLIC~1\Oliver Pearl
[18/09/2007|15:28] C:\DOCUME~1\Nous\APPLIC~1\PC Suite
[22/12/2007|10:21] C:\DOCUME~1\Nous\APPLIC~1\pcouffin.cat
[22/12/2007|10:21] C:\DOCUME~1\Nous\APPLIC~1\pcouffin.inf
[22/12/2007|10:21] C:\DOCUME~1\Nous\APPLIC~1\pcouffin.log
[22/12/2007|10:21] C:\DOCUME~1\Nous\APPLIC~1\pcouffin.sys
[03/11/2007|22:44] C:\DOCUME~1\Nous\APPLIC~1\PlayFirst
[16/12/2007|17:49] C:\DOCUME~1\Nous\APPLIC~1\Real
[28/02/2008|21:37] C:\DOCUME~1\Nous\APPLIC~1\RegistrySmart
[13/02/2008|15:01] C:\DOCUME~1\Nous\APPLIC~1\River Past G5
[16/10/2007|22:24] C:\DOCUME~1\Nous\APPLIC~1\Sandlot Games
[23/03/2007|21:48] C:\DOCUME~1\Nous\APPLIC~1\Screenshot Sender
[14/12/2007|22:23] C:\DOCUME~1\Nous\APPLIC~1\SecuROM
[21/02/2007|22:07] C:\DOCUME~1\Nous\APPLIC~1\Sonic
[21/02/2007|17:53] C:\DOCUME~1\Nous\APPLIC~1\Sun
[06/02/2008|23:39] C:\DOCUME~1\Nous\APPLIC~1\Super-Cow
[17/02/2007|14:47] C:\DOCUME~1\Nous\APPLIC~1\Symantec
[29/01/2008|12:20] C:\DOCUME~1\Nous\APPLIC~1\Todae
[28/02/2008|20:33] C:\DOCUME~1\Nous\APPLIC~1\TuneUp Software
[26/11/2007|21:54] C:\DOCUME~1\Nous\APPLIC~1\TypingMaster7
[29/01/2008|22:21] C:\DOCUME~1\Nous\APPLIC~1\Valusoft
[30/09/2007|21:47] C:\DOCUME~1\Nous\APPLIC~1\VeniceMysteryData
[26/11/2007|22:10] C:\DOCUME~1\Nous\APPLIC~1\Viacleaner
[28/02/2008|21:37] C:\DOCUME~1\Nous\APPLIC~1\Vso
[05/10/2007|23:48] C:\DOCUME~1\Nous\APPLIC~1\Wildfire
[02/02/2008|22:30] C:\DOCUME~1\Nous\APPLIC~1\WinButler
[02/10/2007|10:20] C:\DOCUME~1\Nous\APPLIC~1\Windows Desktop Search
[01/09/2007|20:24] C:\DOCUME~1\Nous\APPLIC~1\WinRAR
[05/03/2008|21:33] C:\DOCUME~1\Nous\APPLIC~1\Zylom


----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

[07/03/2008 17:17][--a------] C:\WINDOWS\tasks\Maintenance en 1 clic.job
[07/03/2008 19:57][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[07/03/2008 20:00][--ah-----] C:\WINDOWS\tasks\8570E0C081739A78.job
[03/03/2008 20:08][--a------] C:\WINDOWS\tasks\Norton Internet Security Online - Analyse systŠme complŠte - Nous.job
[05/03/2008 03:30][--a------] C:\WINDOWS\tasks\RegistrySmart Scheduled Scan.job
[04/03/2008 08:07][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[06/03/2008 06:13][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 13:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[05/03/2008|22:12] C:\Program Files\.
[05/03/2008|22:12] C:\Program Files\..
[19/12/2007|21:44] C:\Program Files\.autoreg
[07/02/2008|21:39] C:\Program Files\ABAEnglishCourse
[10/01/2008|17:08] C:\Program Files\Adobe
[28/01/2008|16:53] C:\Program Files\Adverts
[16/01/2008|15:32] C:\Program Files\AnglaisFacile.com
[13/09/2007|10:55] C:\Program Files\Apple Software Update
[17/02/2007|14:48] C:\Program Files\BAE
[24/04/2007|18:23] C:\Program Files\Belgacom
[27/02/2008|21:05] C:\Program Files\bfgclient
[08/02/2008|22:10] C:\Program Files\Bonjour
[21/12/2007|20:39] C:\Program Files\Boonty
[05/01/2008|18:26] C:\Program Files\BoontyGames
[17/02/2007|14:40] C:\Program Files\Broadcom
[21/02/2007|19:53] C:\Program Files\CCleaner
[03/12/2007|00:20] C:\Program Files\CDBurnerXP
[07/02/2008|04:02] C:\Program Files\Cdrom Five
[21/01/2008|20:27] C:\Program Files\Circle Developement
[14/12/2007|21:56] C:\Program Files\Common Files
[20/08/2004|11:35] C:\Program Files\ComPlus Applications
[16/01/2008|15:32] C:\Program Files\Conference
[21/06/2007|10:25] C:\Program Files\Dell
[17/02/2007|14:48] C:\Program Files\Dell Support
[17/09/2007|16:59] C:\Program Files\DIFX
[18/09/2007|15:49] C:\Program Files\DivX
[19/12/2007|22:09] C:\Program Files\EA GAMES
[05/03/2008|22:41] C:\Program Files\eMule
[23/02/2008|18:51] C:\Program Files\Fichiers communs
[29/11/2007|18:45] C:\Program Files\filesubmit
[20/02/2008|21:56] C:\Program Files\Gamenext
[06/01/2008|23:40] C:\Program Files\GamesBar
[04/02/2008|12:38] C:\Program Files\Gamevance
[22/02/2008|00:04] C:\Program Files\Google
[13/03/2007|03:15] C:\Program Files\Hewlett-Packard
[13/03/2007|02:50] C:\Program Files\HP
[24/09/2007|10:58] C:\Program Files\ING
[15/12/2007|19:01] C:\Program Files\InstallShield Installation Information
[17/02/2007|14:41] C:\Program Files\InterActual
[14/02/2008|03:10] C:\Program Files\Internet Explorer
[05/03/2008|22:12] C:\Program Files\InternetGameBox
[08/02/2008|22:12] C:\Program Files\iPod
[08/02/2008|22:12] C:\Program Files\iTunes
[26/03/2007|04:19] C:\Program Files\Jasc Software Inc
[15/11/2007|14:22] C:\Program Files\Java
[21/12/2007|17:47] C:\Program Files\Labtec
[06/02/2008|10:28] C:\Program Files\Livre Album Fuji Photo
[07/02/2008|19:50] C:\Program Files\Logitech
[24/06/2007|18:39] C:\Program Files\McAfee.com
[17/02/2007|14:37] C:\Program Files\Messenger
[16/12/2007|20:53] C:\Program Files\Messenger Plus! Live
[28/01/2008|16:53] C:\Program Files\MessengerPlus! 3
[24/07/2007|19:16] C:\Program Files\Microsoft Baseline Security Analyzer 2
[25/07/2007|12:22] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[03/03/2008|21:38] C:\Program Files\Microsoft Carioca
[20/08/2004|11:37] C:\Program Files\microsoft frontpage
[19/12/2007|20:38] C:\Program Files\Microsoft Office
[23/02/2008|15:39] C:\Program Files\Microsoft Silverlight
[30/09/2007|19:28] C:\Program Files\Microsoft SQL Server Compact Edition
[17/12/2007|16:43] C:\Program Files\Microsoft Visual Studio
[19/12/2007|20:20] C:\Program Files\Microsoft Visual Studio 8
[17/12/2007|16:43] C:\Program Files\Microsoft Works
[17/12/2007|16:42] C:\Program Files\Microsoft.NET
[28/02/2008|21:37] C:\Program Files\Mortimer Beckett And The Secrets Of Spooky Manor
[20/08/2004|11:35] C:\Program Files\Movie Maker
[07/03/2008|19:55] C:\Program Files\Mozilla Firefox
[19/12/2007|20:26] C:\Program Files\MSBuild
[20/08/2004|11:34] C:\Program Files\MSN
[01/09/2007|20:25] C:\Program Files\MSN Adder
[20/08/2004|11:34] C:\Program Files\MSN Gaming Zone
[28/02/2008|21:37] C:\Program Files\MSN Messenger
[07/02/2008|21:42] C:\Program Files\MSN Pictures Displayer
[21/02/2007|21:53] C:\Program Files\MSXML 4.0
[06/12/2007|22:02] C:\Program Files\Multi_Media
[20/08/2004|11:35] C:\Program Files\NetMeeting
[24/07/2007|20:19] C:\Program Files\Netscape
[17/09/2007|16:59] C:\Program Files\Nokia
[20/09/2007|18:42] C:\Program Files\Norton Internet Security
[29/11/2007|14:58] C:\Program Files\OneStepSearch
[20/08/2004|11:34] C:\Program Files\Online Services
[13/06/2007|12:05] C:\Program Files\Outlook Express
[04/02/2008|12:38] C:\Program Files\Overland
[17/09/2007|16:59] C:\Program Files\PC Connectivity Solution
[28/11/2007|23:19] C:\Program Files\PCMaid
[02/10/2007|23:12] C:\Program Files\Plus!
[17/09/2007|22:08] C:\Program Files\PMsn Paraiso
[08/02/2008|22:09] C:\Program Files\QuickTime
[22/02/2008|20:39] C:\Program Files\Radio Fr Solo
[05/01/2008|18:26] C:\Program Files\RayV
[16/12/2007|17:45] C:\Program Files\Real
[17/09/2007|22:20] C:\Program Files\ReflexiveArcade
[13/02/2008|15:01] C:\Program Files\River Past
[18/09/2007|12:25] C:\Program Files\RngInterstitial.dll
[23/02/2007|04:20] C:\Program Files\Roxio
[20/08/2004|11:35] C:\Program Files\Services en ligne
[17/02/2007|14:39] C:\Program Files\Sigmatel
[24/07/2007|19:17] C:\Program Files\SiSoftware
[29/11/2007|17:26] C:\Program Files\SlySoft
[17/02/2007|14:44] C:\Program Files\Sonic
[15/11/2007|14:18] C:\Program Files\Steam
[24/04/2007|18:23] C:\Program Files\SupportSoft
[12/02/2008|11:00] C:\Program Files\Symantec
[06/03/2007|16:37] C:\Program Files\TechSmith
[28/12/2007|18:20] C:\Program Files\T‚l‚chargeur de The Secrets of Da Vinci
[27/02/2008|21:05] C:\Program Files\temp01
[05/03/2008|18:30] C:\Program Files\tgtsoft
[04/02/2008|12:38] C:\Program Files\Thumbs.db
[28/02/2008|20:33] C:\Program Files\TuneUp Utilities 2004
[14/10/2007|23:12] C:\Program Files\UltimateZip 2007
[17/07/2007|14:40] C:\Program Files\Uninstall Information
[27/06/2007|02:22] C:\Program Files\Usability Sciences
[26/11/2007|00:27] C:\Program Files\Veoh Networks
[25/07/2007|19:31] C:\Program Files\VideoLAN
[24/07/2007|20:23] C:\Program Files\Viewpoint
[05/03/2008|18:25] C:\Program Files\ViVi Cursor 2.0
[08/03/2007|20:53] C:\Program Files\VSAdd-in
[22/12/2007|10:21] C:\Program Files\VSO
[06/02/2008|10:54] C:\Program Files\Wedding Album Maker Gold
[29/08/2007|23:02] C:\Program Files\Winamp
[30/09/2007|19:27] C:\Program Files\Windows Desktop Search
[28/02/2008|03:01] C:\Program Files\Windows Live
[23/02/2008|18:58] C:\Program Files\Windows Live Favorites
[30/08/2007|23:03] C:\Program Files\Windows Live Safety Center
[23/02/2008|18:59] C:\Program Files\Windows Live Toolbar
[22/02/2007|02:32] C:\Program Files\Windows Media Connect 2
[29/01/2008|12:20] C:\Program Files\Windows Media Player
[20/08/2004|11:34] C:\Program Files\Windows NT
[20/08/2004|11:35] C:\Program Files\WindowsUpdate
[06/03/2008|06:13] C:\Program Files\WinRAR
[20/08/2004|11:37] C:\Program Files\xerox
[16/12/2007|21:44] C:\Program Files\Yahoo!
[05/03/2008|21:51] C:\Program Files\Zylom Games

------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------

[23/02/2008|18:51] C:\Program Files\Fichiers communs\.
[23/02/2008|18:51] C:\Program Files\Fichiers communs\..
[24/02/2007|19:37] C:\Program Files\Fichiers communs\Adobe
[01/09/2007|10:09] C:\Program Files\Fichiers communs\Apple
[26/10/2007|15:21] C:\Program Files\Fichiers communs\BOONTY Shared
[22/02/2007|10:38] C:\Program Files\Fichiers communs\Designer
[10/06/2007|12:30] C:\Program Files\Fichiers communs\HP
[07/02/2008|19:50] C:\Program Files\Fichiers communs\InstallShield
[15/11/2007|14:21] C:\Program Files\Fichiers communs\Java
[07/02/2008|19:50] C:\Program Files\Fichiers communs\Logitech
[23/02/2008|18:51] C:\Program Files\Fichiers communs\Microsoft Shared
[20/08/2004|11:35] C:\Program Files\Fichiers communs\MSSoap
[17/09/2007|16:59] C:\Program Files\Fichiers communs\Nokia
[20/08/2004|11:30] C:\Program Files\Fichiers communs\ODBC
[17/09/2007|16:59] C:\Program Files\Fichiers communs\PCSuite
[16/12/2007|17:46] C:\Program Files\Fichiers communs\Real
[13/02/2008|15:01] C:\Program Files\Fichiers communs\River Past
[17/02/2007|14:43] C:\Program Files\Fichiers communs\Roxio Shared
[20/08/2004|11:35] C:\Program Files\Fichiers communs\Services
[23/02/2007|04:20] C:\Program Files\Fichiers communs\Sonic Shared
[20/08/2004|11:30] C:\Program Files\Fichiers communs\SpeechEngines
[24/04/2007|18:23] C:\Program Files\Fichiers communs\Supportsoft
[07/03/2008|20:05] C:\Program Files\Fichiers communs\Symantec Shared
[19/12/2007|20:31] C:\Program Files\Fichiers communs\System
[23/02/2008|18:56] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[28/02/2008|20:32] C:\Program Files\Fichiers communs\Wise Installation Wizard
[16/12/2007|17:46] C:\Program Files\Fichiers communs\xing shared

----------------------[ Recherche avec S_Lop ]---------------------

Aucun fichier / dossier Lop trouvé !

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

C:\DOCUME~1\ALLUSE~1\APPLIC~1\part dead amok eggs
C:\DOCUME~1\ALLUSE~1\APPLIC~1\part dead amok eggs\Funk Tool.exe
C:\Program Files\Adverts
C:\Program Files\Circle Developement
C:\Program Files\Multi_Media
C:\Program Files\Multi_Media\INSTALL.LOG
C:\Program Files\Multi_Media\tbMul0.dll
C:\Program Files\Multi_Media\tbMul1.dll
C:\Program Files\Multi_Media\tbMult.dll
C:\Program Files\Multi_Media\toolbar.cfg
C:\Program Files\Multi_Media\UNWISE.EXE
C:\WINDOWS\Tasks\8570E0C081739A78.job

----------------------[ Verification du Registre ]----------------------

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

..... OK !

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts MODIFIE

127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD
127.0.0.1 download.errorsafe.com ## added by CiD
127.0.0.1 download.systemdoctor.com ## added by CiD
127.0.0.1 download.winantispyware.com ## added by CiD
127.0.0.1 download.windrivecleaner.com ## added by CiD
127.0.0.1 download.winfixer.com ## added by CiD
127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 es.winantivirus.com ## added by CiD
127.0.0.1 fr.winantivirus.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 go.winantivirus.com ## added by CiD
127.0.0.1 hk.winantivirus.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 instlog.winantivirus.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 kb.winantivirus.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 secure.winantivirus.com ## added by CiD
127.0.0.1 support.winantivirus.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 ulog.winantivirus.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 utils.winantivirus.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winantivirus.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 www.drivecleaner.com ## added by CiD
127.0.0.1 www.errorprotector.com ## added by CiD
127.0.0.1 www.errorsafe.com ## added by CiD
127.0.0.1 www.systemdoctor.com ## added by CiD
127.0.0.1 www.utils.winfixer.com ## added by CiD
127.0.0.1 www.win-anti-virus-pro.com ## added by CiD
127.0.0.1 www.win-virus-pro.com ## added by CiD
127.0.0.1 www.winantispam.com ## added by CiD
127.0.0.1 www.winantispy.com ## added by CiD
127.0.0.1 www.winantispyware.com ## added by CiD
127.0.0.1 www.winantivirus.com ## added by CiD
127.0.0.1 www.winantiviruspro.com ## added by CiD
127.0.0.1 www.windrivecleaner.com ## added by CiD
127.0.0.1 www.windrivesafe.com ## added by CiD
127.0.0.1 www.winfixer.com ## added by CiD
127.0.0.1 www.winfixer2006.com ## added by CiD
127.0.0.1 www.winsoftware.com ## added by CiD

-> 72 ( 70 ## added by CiD )

/!\ 1 Not 127.0.0.1 !!

----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-03-07 20:07:27
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden files ...
scan completed successfully
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------

C:\WINDOWS\pack.epk
C:\WINDOWS\system32\nvs2.inf
! EGDACCESS !

C:\WINDOWS\system32\ijjlm.bak1
C:\WINDOWS\system32\pqtss.bak1
C:\WINDOWS\system32\ijjlm.bak2
C:\WINDOWS\system32\pqtss.bak2
C:\WINDOWS\system32\ijjlm.ini2
C:\WINDOWS\system32\pqtss.ini2
! VUNDO Possible !


/!\ [Fich:143][Doss:29] C:\DOCUME~1\Nous\LOCALS~1\Temp
/!\ [Fich:84][Doss:0] C:\DOCUME~1\Nous\Cookies
/!\ [Fich:1349][Doss:8] C:\DOCUME~1\Nous\LOCALS~1\TEMPOR~1\content.IE5

--------------------[ Fin du rapport a 20:07:47,59 ]----------------------

Rapport lopxpMH2 version 2.0 fait à 20:55:01,98 le ven. 07/03/2008
C:\Documents and Settings\Nous\Mes documents\Logiciel\Internet\lopxpMH2\lopxpMH2

******************************************
## Répertoires Application Data

Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 20A5-AEA1

Répertoire de C:\DOCUME~1\All Users\Application Data

20/08/2004 11:30 <REP> .
20/08/2004 11:30 <REP> ..
24/02/2007 19:37 <REP> Adobe
03/12/2007 23:04 <REP> Alawar Stargaze
18/10/2007 22:24 <REP> Aliasworlds
06/02/2008 10:58 <REP> Anvsoft
01/09/2007 10:09 <REP> Apple
26/06/2007 20:32 <REP> Apple Computer
29/01/2008 12:51 <REP> BigFish
18/09/2007 11:08 <REP> BigFishGamesCache
26/10/2007 15:21 <REP> BOONTY
04/12/2007 01:01 <REP> BufferZone
18/12/2007 01:34 <REP> Christmasville
17/02/2007 14:42 <REP> Corel
04/02/2008 10:35 <REP> Dell
23/11/2007 23:30 <REP> EA
29/10/2007 23:05 <REP> Escape From Paradise
22/08/2007 23:05 <REP> FloodLightGames
20/11/2007 23:09 <REP> Fugazo
30/09/2007 21:47 <REP> GamesBar
04/02/2008 00:02 <REP> Go Go Gourmet
30/01/2008 22:20 <REP> Gogii
21/06/2007 22:41 <REP> Google
17/02/2007 14:48 <REP> GTek
19/01/2008 10:58 <REP> HipSoft
24/02/2007 01:43 <REP> HP
17/09/2007 16:58 <REP> Installations
17/02/2007 14:44 <REP> InstallShield
18/08/2007 19:31 <REP> JollyBear
14/08/2007 23:30 <REP> Legacy Interactive
17/02/2007 14:46 <REP> McAfee
17/02/2007 14:45 <REP> McAfee.com
17/02/2007 14:46 <REP> McAfee.com Personal Firewall
10/03/2007 20:41 <REP> Messenger Plus!
20/08/2004 11:30 <REP> Microsoft
15/12/2007 16:41 <REP> Microsoft Help
04/11/2007 21:29 <REP> MinigolfAdventures
06/01/2008 23:44 <REP> MumboJumbo
03/03/2008 21:42 <REP> My Games
24/02/2008 20:45 <REP> MythPeople
21/10/2007 21:47 <REP> n7-89-o9-3r-4t-r9
11/08/2007 19:36 <REP> NannyMania
23/11/2007 23:01 <REP> NeptunesAdve
24/06/2007 21:13 <REP> nView_Profiles
08/08/2007 21:21 <REP> Oberon Games
03/06/2007 22:02 <REP> OBJ META UP BURN
16/12/2007 20:54 <REP> part dead amok eggs
17/09/2007 17:00 <REP> PC Suite
11/08/2007 22:30 <REP> PlayFirst
07/11/2007 23:09 <REP> PrettyGoodGames
13/02/2008 15:01 <REP> River Past G5
24/06/2007 16:27 <REP> Sandlot Games
20/08/2004 11:46 <REP> SBSI
02/01/2008 22:07 <REP> SecretsOfOlympus
17/02/2007 14:44 <REP> Sonic
17/03/2007 21:56 <REP> SpinTop Games
07/03/2008 20:15 <REP> Spybot - Search & Destroy
07/11/2007 23:26 <REP> SugarGames
21/02/2007 18:05 <REP> Support.com
24/04/2007 18:53 <REP> SupportSoft
17/02/2007 14:47 <REP> Symantec
05/04/2007 22:07 <REP> TEMP
13/09/2007 22:41 <REP> TERMINAL Studio
11/10/2007 14:43 <REP> Trymedia
28/02/2008 20:32 <REP> TuneUp Software
29/01/2008 22:21 <REP> Valusoft
21/02/2007 20:20 <REP> Windows Genuine Advantage
29/07/2007 22:31 <REP> WindowsLiveInstaller
29/07/2007 22:30 <REP> WLInstaller
25/02/2007 23:13 <REP> Zylom
15/07/2007 15:46 41 .zreglib
20/08/2004 11:30 62 desktop.ini
24/02/2007 01:35 228 hpzinstall.log
16/12/2007 17:28 1.387 QTSBandwidthCache
4 fichier(s) 1.718 octets
70 Rép(s) 81.524.912.128 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 20A5-AEA1

Répertoire de C:\DOCUME~1\Application Data

Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 20A5-AEA1

Répertoire de C:\DOCUME~1\Default User\Application Data

20/08/2004 11:30 <REP> .
20/08/2004 11:30 <REP> ..
10/02/2008 11:29 <REP> Apple Computer
17/02/2007 14:48 <REP> Gtek
21/02/2007 17:42 <REP> Identities
20/08/2004 11:30 <REP> Microsoft
21/02/2007 17:42 <REP> Symantec
20/08/2004 11:30 62 desktop.ini
1 fichier(s) 62 octets
7 Rép(s) 81.524.908.032 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 20A5-AEA1

Répertoire de C:\DOCUME~1\Default User\Local Settings\Application Data

20/08/2004 11:30 <REP> .
20/08/2004 11:30 <REP> ..
21/02/2007 17:42 <REP> {3248F0A6-6813-11D6-A77B-00B0D0150060}
10/02/2008 11:28 <REP> Apple Computer
21/02/2007 17:42 <REP> ApplicationHistory
21/02/2007 17:42 <REP> Google
20/08/2004 11:37 <REP> Microsoft
21/02/2007 17:42 135 fusioncache.dat
21/02/2007 17:42 35.728 GDIPFONTCACHEV1.DAT
2 fichier(s) 35.863 octets
7 Rép(s) 81.524.908.032 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 20A5-AEA1

Répertoire de C:\DOCUME~1\LocalService\Application Data

20/08/2004 11:41 <REP> .
20/08/2004 11:41 <REP> ..
20/06/2007 22:38 <REP> Adobe
22/02/2007 02:56 <REP> Macromedia
21/02/2007 18:43 <REP> McAfee.com Personal Firewall
20/08/2004 11:41 <REP> Microsoft
02/04/2007 01:31 <REP> Mozilla
0 fichier(s) 0 octets
7 Rép(s) 81.524.908.032 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 20A5-AEA1

Répertoire de C:\DOCUME~1\LocalService\Local Settings\Application Data

20/08/2004 11:41 <REP> .
20/08/2004 11:41 <REP> ..
08/01/2008 08:07 <REP> Apple
20/08/2004 11:41 <REP> Microsoft
02/04/2007 01:31 <REP> Mozilla
0 fichier(s) 0 octets
5 Rép(s) 81.524.908.032 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 20A5-AEA1

Répertoire de C:\DOCUME~1\NetworkService\Application Data

20/08/2004 11:41 <REP> .
20/08/2004 11:41 <REP> ..
30/09/2007 19:28 <REP> Identities
20/08/2004 11:41 <REP> Microsoft
0 fichier(s) 0 octets
4 Rép(s) 81.524.908.032 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 20A5-AEA1

Répertoire de C:\DOCUME~1\NetworkService\Local Settings\Application Data

20/08/2004 11:41 <REP> .
20/08/2004 11:41 <REP> ..
18/09/2007 07:07 <REP> Apple
30/10/2007 08:43 <REP> Help
30/09/2007 19:28 <REP> Identities
20/08/2004 11:41 <REP> Microsoft
0 fichier(s) 0 octets
6 Rép(s) 81.524.908.032 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 20A5-AEA1

Répertoire de C:\DOCUME~1\Nous\Application Data

21/02/2007 17:42 <REP> .
21/02/2007 17:42 <REP> ..
06/02/2008 10:36 <REP> 3D Photo Album Screensaver
17/10/2007 22:30 <REP> Abra Academy2
21/02/2007 17:48 <REP> Adobe
24/02/2007 19:22 <REP> AdobeUM
03/12/2007 23:10 <REP> Alawar
05/03/2008 21:33 <REP> AlwaysNeat
24/02/2007 20:11 <REP> anagramarama
01/09/2007 10:09 <REP> Apple Computer
18/12/2007 00:11 <REP> Aveyond II
24/06/2007 00:05 <REP> Beep Industries
13/09/2007 22:49 <REP> Big Fish Games
29/01/2008 12:50 <REP> BigFish
24/02/2007 20:15 <REP> BitTorrent
14/03/2007 01:57 <REP> BitZipper
03/06/2007 22:02 <REP> Cdrom Five
22/12/2007 15:29 <REP> CopyToDvd
22/02/2007 10:16 <REP> Corel
21/10/2007 23:47 <REP> ctpo
19/12/2007 18:23 <REP> DAEMON Tools
15/08/2007 22:26 <REP> DiVision Studios - Escaping Atlantis
25/02/2007 03:41 <REP> DivX
23/11/2007 23:30 <REP> EA
29/11/2007 18:08 <REP> Eyeblaster
22/08/2007 23:05 <REP> FloodLightGames
14/07/2007 10:47 <REP> Gaijin Ent
21/10/2007 21:47 <REP> GameHouse
13/10/2007 14:07 <REP> Gamelab
03/03/2008 21:42 <REP> gemsweeperextractedgfx
19/12/2007 21:51 <REP> GibbHill Properties Ltd
14/10/2007 22:57 <REP> Google
21/02/2007 17:42 <REP> Gtek
27/02/2007 23:45 <REP> Help
02/01/2008 23:14 <REP> Home Sweet Home
24/07/2007 17:59 <REP> HouseCall 6.6
11/03/2007 02:32 <REP> HP
21/02/2007 17:42 <REP> Identities
24/02/2007 02:01 <REP> Image Zone Express
01/07/2007 23:12 <REP> iWin
10/10/2007 00:44 <REP> Jane s Hotel
26/03/2007 04:18 <REP> Jasc
28/01/2008 22:22 <REP> Land Of Runes
21/02/2007 17:46 <REP> Leadertech
06/10/2007 10:46 <REP> LimeWire
21/02/2007 20:02 <REP> Macromedia
01/09/2007 00:08 <REP> Magic Academy
20/02/2008 20:42 <REP> Magic Seeds
21/02/2007 17:43 <REP> McAfee.com Personal Firewall
21/02/2007 17:42 <REP> Microsoft
22/02/2007 13:56 <REP> Mozilla
27/07/2007 23:18 <REP> My Games
17/09/2007 22:31 <REP> Mysteryville2
17/09/2007 16:59 <REP> Nokia
17/09/2007 17:36 <REP> Nokia Multimedia Player
17/01/2008 10:14 <REP> Oberon Games
21/10/2007 23:46 <REP> Oliver Pearl
17/09/2007 16:59 <REP> PC Suite
11/08/2007 22:30 <REP> PlayFirst
16/12/2007 17:45 <REP> Real
24/07/2007 16:50 <REP> RegistrySmart
13/02/2008 15:01 <REP> River Past G5
16/10/2007 22:24 <REP> Sandlot Games
10/03/2007 19:01 <REP> Screenshot Sender
14/12/2007 22:23 <REP> SecuROM
21/02/2007 22:07 <REP> Sonic
21/02/2007 17:53 <REP> Sun
06/02/2008 23:38 <REP> Super-Cow
21/02/2007 17:42 <REP> Symantec
29/01/2008 12:20 <REP> Todae
28/02/2008 20:33 <REP> TuneUp Software
26/11/2007 21:54 <REP> TypingMaster7
29/01/2008 22:21 <REP> Valusoft
30/09/2007 21:47 <REP> VeniceMysteryData
26/11/2007 21:41 <REP> Viacleaner
17/12/2007 05:29 <REP> Vso
05/10/2007 23:48 <REP> Wildfire
19/12/2007 21:44 <REP> WinButler
02/10/2007 10:20 <REP> Windows Desktop Search
01/09/2007 20:24 <REP> WinRAR
25/02/2007 23:28 <REP> Zylom
21/02/2007 17:42 62 desktop.ini
27/02/2007 05:54 5.632 dvd.bmk
22/02/2007 12:27 427.448 GDIPFONTCACHEV1.DAT
17/12/2007 05:29 87.608 inst.exe
17/09/2007 17:07 135.164 NMM-MetaData.db
17/12/2007 05:29 7.887 pcouffin.cat
17/12/2007 05:29 1.144 pcouffin.inf
17/12/2007 05:30 34 pcouffin.log
17/12/2007 05:29 47.360 pcouffin.sys
9 fichier(s) 712.339 octets
81 Rép(s) 81.524.903.936 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 20A5-AEA1

Répertoire de C:\DOCUME~1\Nous\Local Settings\Application Data

21/02/2007 17:42 <REP> .
21/02/2007 17:42 <REP> ..
21/02/2007 17:42 <REP> {3248F0A6-6813-11D6-A77B-00B0D0150060}
21/02/2007 17:48 <REP> Adobe
13/09/2007 10:55 <REP> Apple
28/05/2007 09:37 <REP> Apple Computer
21/02/2007 17:42 <REP> ApplicationHistory
12/03/2007 14:45 <REP> Ares
03/12/2007 00:43 <REP> CDBurnerXP_Soft
17/01/2008 16:17 <REP> Deployment
25/01/2008 23:06 <REP> FamilyRestaurant
21/02/2007 17:42 <REP> Google
16/08/2007 21:53 <REP> Grubby Games
27/02/2007 23:45 <REP> Help
22/07/2007 22:34 <REP> Identities
18/08/2007 19:31 <REP> JollyBear
21/02/2007 23:08 <REP> Logitech-LS
21/02/2007 17:42 <REP> Microsoft
15/12/2007 16:41 <REP> Microsoft Help
22/02/2007 13:56 <REP> Mozilla
29/11/2007 18:42 <REP> Multi_Media
10/08/2007 22:09 <REP> Oberon Games
15/08/2007 22:21 <REP> Oberon Media
24/01/2008 16:08 <REP> PcCamera
05/08/2007 09:49 <REP> PCHealth
07/11/2007 23:09 <REP> PrettyGoodGames
03/01/2008 01:21 <REP> RayV
22/02/2007 05:39 <REP> Shareaza
17/09/2007 22:21 <REP> SpookyManor
22/02/2007 03:52 <REP> Stardock
08/09/2007 14:46 <REP> Steam
24/04/2007 18:23 <REP> SupportSoft
06/03/2007 16:43 <REP> TechSmith
25/04/2007 20:39 <REP> WMTools Downloaded Files
21/02/2007 18:33 53.248 DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
21/02/2007 17:42 127 fusioncache.dat
21/02/2007 17:42 458.352 GDIPFONTCACHEV1.DAT
08/01/2008 00:20 3.709.240 IconCache.db
4 fichier(s) 4.220.967 octets
34 Rép(s) 81.524.899.840 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 20A5-AEA1

Répertoire de C:\DOCUME~1\Propriétaire

Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 20A5-AEA1

Répertoire de C:\DOCUME~1\Propriétaire\Local Settings\Application Data

21/02/2007 17:43 <REP> .
21/02/2007 17:43 <REP> ..
21/02/2007 17:43 <REP> Google
0 fichier(s) 0 octets
3 Rép(s) 81.524.899.840 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 20A5-AEA1

Répertoire de C:\WINDOWS\system32\config\systemprofile\Application Data

20/08/2004 11:40 <REP> .
20/08/2004 11:40 <REP> ..
21/02/2007 17:42 <REP> Gtek
21/02/2007 17:42 <REP> Identities
21/02/2007 17:43 <REP> McAfee.com Personal Firewall
20/08/2004 11:40 <REP> Microsoft
21/02/2007 17:42 <REP> Symantec
20/08/2004 11:40 62 desktop.ini
1 fichier(s) 62 octets
7 Rép(s) 81.524.899.840 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 20A5-AEA1

Répertoire de C:\WINDOWS\system32\config\systemprofile\Local Settings\Application Data

20/08/2004 11:40 <REP> .
20/08/2004 11:40 <REP> ..
21/02/2007 17:42 <REP> {3248F0A6-6813-11D6-A77B-00B0D0150060}
21/02/2007 17:42 <REP> ApplicationHistory
21/02/2007 17:42 <REP> Google
20/08/2004 11:40 <REP> Microsoft
30/09/2007 19:14 <REP> WindowsLiveInstaller
21/02/2007 17:42 135 fusioncache.dat
21/02/2007 17:42 35.728 GDIPFONTCACHEV1.DAT
21/02/2007 17:42 2.697.724 IconCache.db
3 fichier(s) 2.733.587 octets
7 Rép(s) 81.524.895.744 octets libres

******************************************
Recherche des taches planifiées dans C:\WINDOWS\tasks


C:\WINDOWS\Tasks\8570E0C081739A78.job
s  "€!Ø    7 c : \ d o c u m e ~ 1 \ n o u s \ a p p l i c ~ 1 \ c d r o m f ~ 1 \ o k a y e r r o r d a r t . e x e  N o u s 
0 Ï


C:\WINDOWS\Tasks\AppleSoftwareUpdate.job


`vVKò¾H½aPšzò"F ê <
s  €!Ø     : C : \ P r o g r a m F i l e s \ A p p l e S o f t w a r e U p d a t e \ S o f t w a r e U p d a t e . e x e  - t a s k  S Y S T E M 
0 ×
  


C:\WINDOWS\Tasks\Maintenance
Maintenance inexploitable


C:\WINDOWS\Tasks\Norton
Norton inexploitable


C:\WINDOWS\Tasks\Vérifier
Vérifier inexploitable

******************************************
## Répertoires de C:\Program Files

Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 20A5-AEA1

Répertoire de C:\Program Files

07/03/2008 20:15 <REP> .
07/03/2008 20:15 <REP> ..
19/12/2007 21:44 10 .autoreg
07/02/2008 21:39 <REP> ABAEnglishCourse
10/01/2008 17:08 <REP> Adobe
28/01/2008 16:53 <REP> Adverts
16/01/2008 15:32 <REP> AnglaisFacile.com
13/09/2007 10:55 <REP> Apple Software Update
17/02/2007 14:48 <REP> BAE
24/04/2007 18:23 <REP> Belgacom
27/02/2008 21:05 <REP> bfgclient
08/02/2008 22:10 <REP> Bonjour
21/12/2007 20:39 <REP> Boonty
05/01/2008 18:26 <REP> BoontyGames
17/02/2007 14:40 <REP> Broadcom
21/02/2007 19:53 <REP> CCleaner
03/12/2007 00:20 <REP> CDBurnerXP
07/02/2008 04:02 <REP> Cdrom Five
21/01/2008 20:27 <REP> Circle Developement
14/12/2007 21:56 <REP> Common Files
20/08/2004 11:35 <REP> ComPlus Applications
16/01/2008 15:32 <REP> Conference
21/06/2007 10:25 <REP> Dell
17/02/2007 14:48 <REP> Dell Support
17/09/2007 16:59 <REP> DIFX
18/09/2007 15:49 <REP> DivX
19/12/2007 22:09 <REP> EA GAMES
05/03/2008 22:41 <REP> eMule
23/02/2008 18:51 <REP> Fichiers communs
29/11/2007 18:45 <REP> filesubmit
20/02/2008 21:56 <REP> Gamenext
06/01/2008 23:40 <REP> GamesBar
04/02/2008 12:38 <REP> Gamevance
22/02/2008 00:04 <REP> Google
13/03/2007 03:15 <REP> Hewlett-Packard
13/03/2007 02:50 <REP> HP
24/09/2007 10:58 <REP> ING
17/02/2007 14:41 <REP> InterActual
14/02/2008 03:10 <REP> Internet Explorer
05/03/2008 22:12 <REP> InternetGameBox
08/02/2008 22:12 <REP> iPod
08/02/2008 22:12 <REP> iTunes
26/03/2007 04:19 <REP> Jasc Software Inc
15/11/2007 14:22 <REP> Java
21/12/2007 17:47 <REP> Labtec
06/02/2008 10:28 <REP> Livre Album Fuji Photo
07/02/2008 19:50 <REP> Logitech
24/06/2007 18:39 <REP> McAfee.com
17/02/2007 14:37 <REP> Messenger
16/12/2007 20:53 <REP> Messenger Plus! Live
28/01/2008 16:53 <REP> MessengerPlus! 3
24/07/2007 19:16 <REP> Microsoft Baseline Security Analyzer 2
25/07/2007 12:22 <REP> Microsoft CAPICOM 2.1.0.2
03/03/2008 21:38 <REP> Microsoft Carioca
20/08/2004 11:37 <REP> microsoft frontpage
19/12/2007 20:38 <REP> Microsoft Office
23/02/2008 15:39 <REP> Microsoft Silverlight
30/09/2007 19:28 <REP> Microsoft SQL Server Compact Edition
17/12/2007 16:43 <REP> Microsoft Visual Studio
19/12/2007 20:20 <REP> Microsoft Visual Studio 8
17/12/2007 16:43 <REP> Microsoft Works
17/12/2007 16:42 <REP> Microsoft.NET
28/02/2008 21:37 <REP> Mortimer Beckett And The Secrets Of Spooky Manor
20/08/2004 11:35 <REP> Movie Maker
07/03/2008 20:53 <REP> Mozilla Firefox
19/12/2007 20:26 <REP> MSBuild
20/08/2004 11:34 <REP> MSN
01/09/2007 20:25 <REP> MSN Adder
20/08/2004 11:34 <REP> MSN Gaming Zone
28/02/2008 21:37 <REP> MSN Messenger
07/02/2008 21:42 <REP> MSN Pictures Displayer
21/02/2007 21:53 <REP> MSXML 4.0
06/12/2007 22:02 <REP> Multi_Media
20/08/2004 11:35 <REP> NetMeeting
24/07/2007 20:19 <REP> Netscape
17/09/2007 16:59 <REP> Nokia
20/09/2007 18:42 <REP> Norton Internet Security
29/11/2007 14:58 <REP> OneStepSearch
20/08/2004 11:34 <REP> Online Services
13/06/2007 12:05 <REP> Outlook Express
04/02/2008 12:38 <REP> Overland
17/09/2007 16:59 <REP> PC Connectivity Solution
28/11/2007 23:19 <REP> PCMaid
02/10/2007 23:12 <REP> Plus!
17/09/2007 22:08 <REP> PMsn Paraiso
08/02/2008 22:09 <REP> QuickTime
22/02/2008 20:39 <REP> Radio Fr Solo
05/01/2008 18:26 <REP> RayV
16/12/2007 17:45 <REP> Real
17/09/2007 22:20 <REP> ReflexiveArcade
13/02/2008 15:01 <REP> River Past
18/09/2007 12:25 774.144 RngInterstitial.dll
23/02/2007 04:20 <REP> Roxio
20/08/2004 11:35 <REP> Services en ligne
17/02/2007 14:39 <REP> Sigmatel
24/07/2007 19:17 <REP> SiSoftware
29/11/2007 17:26 <REP> SlySoft
17/02/2007 14:44 <REP> Sonic
07/03/2008 20:15 <REP> Spybot - Search & Destroy
15/11/2007 14:18 <REP> Steam
24/04/2007 18:23 <REP> SupportSoft
12/02/2008 11:00 <REP> Symantec
06/03/2007 16:37 <REP> TechSmith
28/12/2007 18:20 <REP> Téléchargeur de The Secrets of Da Vinci
27/02/2008 21:05 0 temp01
05/03/2008 18:30 <REP> tgtsoft
28/02/2008 20:33 <REP> TuneUp Utilities 2004
14/10/2007 23:12 <REP> UltimateZip 2007
27/06/2007 02:22 <REP> Usability Sciences
26/11/2007 00:27 <REP> Veoh Networks
25/07/2007 19:31 <REP> VideoLAN
24/07/2007 20:23 <REP> Viewpoint
05/03/2008 18:25 <REP> ViVi Cursor 2.0
08/03/2007 20:53 <REP> VSAdd-in
22/12/2007 10:21 <REP> VSO
06/02/2008 10:54 <REP> Wedding Album Maker Gold
29/08/2007 23:02 <REP> Winamp
30/09/2007 19:27 <REP> Windows Desktop Search
28/02/2008 03:01 <REP> Windows Live
23/02/2008 18:58 <REP> Windows Live Favorites
30/08/2007 23:03 <REP> Windows Live Safety Center
23/02/2008 18:59 <REP> Windows Live Toolbar
22/02/2007 02:32 <REP> Windows Media Connect 2
29/01/2008 12:20 <REP> Windows Media Player
20/08/2004 11:34 <REP> Windows NT
06/03/2008 06:13 <REP> WinRAR
20/08/2004 11:37 <REP> xerox
16/12/2007 21:44 <REP> Yahoo!
05/03/2008 21:51 <REP> Zylom Games
3 fichier(s) 774.154 octets
126 Rép(s) 81.524.891.648 octets libres

******************************************
## Popups autorisées

* Internet Explorer

! REG.EXE VERSION 3.0

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\New Windows\Allow
*.zylom.com REG_BINARY 00000000
fr.radiocontact.be REG_BINARY
host-domain-lookup.com REG_SZ
www.host-domain-lookup.com REG_SZ
searchweb2.com REG_SZ
www.searchweb2.com REG_SZ
www.skyrock.fm REG_BINARY
www.mmmora.be REG_BINARY
www.tfou.fr REG_BINARY
*.mail.live.com REG_BINARY
shokora.references.be REG_BINARY
www.pedigree.fr REG_BINARY
www.parano.be REG_BINARY

* Mozilla Firefox (1 autorisé 2 interdit)

---------- C:\DOCUMENTS AND SETTINGS\NOUS\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\ZS70X2DO.DEFAULT\HOSTPERM.1
host popup 1 www.sansfamille.be
host popup 1 www.pagesdor.be
host popup 1 www.tfou.fr
host popup 1 www.happybodytoyou.com
host popup 1 www.mangeusesdhomme.com
host popup 1 www.prizee.com
host popup 1 freeflashplayer.net

******************************************
## Registre

* [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
ford rule REG_SZ C:\DOCUME~1\Nous\APPLIC~1\CDROMF~1\DEBUG BASH LOCKS.exe

******************************************
## Zones de sécurité

* HKCU Domains (4)

* P3P History (5)

******************************************
## Recherche C:\WINDOWS\*.htm, "C:\WINDOWS\*.gif"


*************** Fin du rapport ****************

'soir ,

Post pour suivre la discussion ..

Re


[Custom Input]
< C:\DOCUME~1\Nous\APPLIC~1\CDROMF~1\ >
Folder C:\DOCUME~1\Nous\APPLIC~1\CDROMF~1\ not found.
< C:\WINDOWS\Tasks\8570E0C081739A78.job >
C:\WINDOWS\Tasks\8570E0C081739A78.job moved successfully.

OTMoveIt2 v1.0.20 log created on 03072008_230050

Re-Bonsoir

Au début, tu as utilisé Lop S&D option 1. Maintenant passe à l'option 2 puis poste le rapport. Avec un nouveau rapport HijackThis.

Le 2ème avec hijackthis

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 23:18:13, on 7/03/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16608)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
C:\Program Files\CDBurnerXP\NMSAccessU.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Dell\Media Experience\DMXLauncher.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
C:\Program Files\Labtec\Desktop\V5.1\moffice.exe
C:\Program Files\Labtec\Keyboard\V5.1\kbdap32a.exe
C:\Program Files\Labtec\Keyboard\V5.1\MOUSE32A.EXE
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\WINDOWS\stsystra.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Veoh Networks\Veoh\VeohClient.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\tgtsoft\StyleXP\StyleXP.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Radio Fr Solo\Radio_Fr_Solo.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.skynet.be/search/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.be/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Page_URL = www.google.be/ig/dell?hl=fr&client [...] bd=0070217
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
R3 - URLSearchHook: Multi Media Toolbar - {b5146c40-189a-4311-bda9-fbae3e023187} - C:\Program Files\Multi_Media\tbMul0.dll (file missing)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - C:\Program Files\Fichiers communs\Symantec Shared\coShared\Browser\1.5\NppBho.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {41D68ED8-4CFF-4115-88A6-6EBB8AF19000} - (no file)
O2 - BHO: (no name) - {471AFE4E-A88B-47B6-8373-48798DE10208} - (no file)
O2 - BHO: (no name) - {5A6192F5-8387-4AD9-9DE7-7FB6C2875FD4} - (no file)
O2 - BHO: (no name) - {6F282B65-56BF-4BD1-A8B2-A4449A05863D} - (no file)
O2 - BHO: Gamevance Text - {7370F91F-6994-4595-9949-601FA2261C8D} - C:\Program Files\Gamevance\gvtl.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: Multi Media Toolbar - {b5146c40-189a-4311-bda9-fbae3e023187} - C:\Program Files\Multi_Media\tbMul0.dll (file missing)
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: TGTSoft Explorer Toolbar Changer - {C333CF63-767F-4831-94AC-E683D962C63C} - C:\Program Files\TGTSoft\StyleXP\TGT_BHO.dll
O2 - BHO: CBrowserHelperObject Object - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\BAE\BAE.dll
O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
O3 - Toolbar: Show Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - C:\Program Files\Fichiers communs\Symantec Shared\coShared\Browser\1.5\UIBHO.dll
O3 - Toolbar: (no name) - {6F282B65-56BF-4BD1-A8B2-A4449A05863D} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Multi Media Toolbar - {b5146c40-189a-4311-bda9-fbae3e023187} - C:\Program Files\Multi_Media\tbMul0.dll (file missing)
O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [DMXLauncher] C:\Program Files\Dell\Media Experience\DMXLauncher.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton Internet Security\osCheck.exe"
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [FLMOFFICE4DMOUSE] C:\Program Files\Labtec\Desktop\V5.1\moffice.exe
O4 - HKLM\..\Run: [OFFICEKB] C:\Program Files\Labtec\Keyboard\V5.1\kbdap32a.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Veoh] "C:\Program Files\Veoh Networks\Veoh\VeohClient.exe" /VeohHide
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [ViVi Cursor] "C:\Program Files\ViVi Cursor 2.0\ViVi_Cursor.exe" -start
O4 - HKCU\..\Run: [STYLEXP] C:\Program Files\tgtsoft\StyleXP\StyleXP.exe -Hide
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: (no name) - {1A93C934-025B-4c3a-B38E-9654A7003239} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: GamesBar - {1A93C934-025B-4c3a-B38E-9654A7003239} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {39FD89BF-D3F1-45b6-BB56-3582CCF489E1} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: McAfee Anti-Phishing Filter - {39FD89BF-D3F1-45b6-BB56-3582CCF489E1} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/bina [...] b56986.cab
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6 [...] vSniff.cab
O16 - DPF: {315B0BFB-2BD4-481B-80A3-A9B80727C61B} (WebIQ Engine Application Object) - http://webiq005.webiqonline.com/We [...] 536C585C9}
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.mail.live.com/mail/w1/ [...] NPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-B [...] E_UNO1.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/re [...] oscan8.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6 [...] /cabsa.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/bina [...] b56907.cab
O16 - DPF: {CAFEEFAC-0014-0001-0002-ABCDEFFEDCBA} (Environnement d'exécution Java 1.4.1_02) -
O20 - Winlogon Notify: mljiigh - mljiigh.dll (file missing)
O20 - Winlogon Notify: mljji - C:\WINDOWS\system32\mljji.dll (file missing)
O20 - Winlogon Notify: sstqp - C:\WINDOWS\system32\sstqp.dll (file missing)
O20 - Winlogon Notify: yayvusp - yayvusp.dll (file missing)
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\VAScanner\comHost.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Symantec IS Password Validation (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\isPwdSvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: McAfee WSC Integration (McDetect.exe) - Logitech Inc. - (no file)
O23 - Service: McAfee.com McShield (McShield) - Logitech Inc. - (no file)
O23 - Service: McAfee Task Scheduler (McTskshd.exe) - Logitech Inc. - (no file)
O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - Logitech Inc. - (no file)
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee - (no file)
O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: SiSoftware Database Agent Service (SandraDataSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a\Win32\RpcDataSrv.exe
O23 - Service: SiSoftware Sandra Agent Service (SandraTheSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XI.SP4a\RpcSandraSrv.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: StyleXPService - Unknown owner - C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2004\WinStylerThemeSvc.exe

--
End of file - 16977 bytes

Il me met que je n'est pas de fichiers infecté ???

Re ,

Fais la procédure sans le CFScript ... le fichier est peut-être légitime ( Microsoft )
http://www.bleepingcomputer.com/fi [...] l-288.html
le mauvais est normalement Located under C:\Program Files\GamesBar ( pas system32 )

à vérifier sur VT avant

oui mais c'est trop tard maintenant plus d'explorer.exe qui disparait très vite

car manque le shdocvw.dll

Bonjour ,

Tu peux poster le rapport Combofix ?

Re ,

mets Combofix sur ton Bureau et refais un scan