gros besoin d'aide ! ! ! ! ! (plusieur virus... : s)
Forum Sécurité - Virus : gros besoin d'aide ! ! ! ! ! (plusieur virus... : s)
Logfile of HijackThis v1.99.1
Scan saved at 19:48:12, on 04/04/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
c:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
c:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
c:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
c:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
c:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\ehome\ehtray.exe
C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\HP\QuickPlay\QPService.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
C:\PROGRA~1\MESSAG~1\Demon.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\Program Files\Veoh Networks\Veoh\VeohClient.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Hewlett-Packard\HP Pavilion Webcam\HPWebcam.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\Program Files\Windows Desktop Search\WindowsSearchIndexer.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
c:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\mqsvc.exe
C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
C:\WINDOWS\system32\mqtgsvc.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Messenger\msmsgs.exe
C:\DOCUME~1\Nana\LOCALS~1\Temp\Répertoire temporaire 1 pour hijackthis.zip\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr? [...] &pf=laptop
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: dsWebAllowBHO Class - {2F85D76C-0569-466F-A488-493E6BD0E955} - C:\Program Files\Windows Desktop Search\dsWebAllow.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Alcohol Toolbar Helper - {8126A4A5-BFD3-46FE-BBDF-BFB5CF78E489} - C:\Program Files\Alcohol Toolbar\v3.2.0.0\Alcohol_Toolbar.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - c:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - c:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: Alcohol Toolbar - {ED4BD629-C1B6-4399-8A34-02CCAA921DC9} - C:\Program Files\Alcohol Toolbar\v3.2.0.0\Alcohol_Toolbar.dll
O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /nodetect
O4 - HKLM\..\Run: [MsmqIntCert] regsvr32 /s mqrt.dll
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] CHDAudPropShortcut.exe
O4 - HKLM\..\Run: [ccApp] "c:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\Hewlett-Packard\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [RecGuard] C:\Windows\SMINST\RecGuard.exe
O4 - HKLM\..\Run: [Reminder] C:\Windows\CREATOR\Remind_XP.exe
O4 - HKLM\..\Run: [Demon] C:\PROGRA~1\MESSAG~1\Demon.exe
O4 - HKLM\..\Run: [GSICONEXE] GSICON.EXE
O4 - HKLM\..\Run: [DSLAGENTEXE] DSLAGENT.EXE USB
O4 - HKLM\..\Run: [GsiFinal] rundll32 gspndll.dll,postInstall final
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [VideoraiPodConverter] C:\Program Files\VideoraiPodConverter\VideoraConverter.exe -t
O4 - HKLM\..\Run: [CLOCKMP3CASHACID] C:\Documents and Settings\All Users\Application Data\fourbookclockmp3\bike face.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [Veoh] "C:\Program Files\Veoh Networks\Veoh\VeohClient.exe" /VeohHide
O4 - HKCU\..\Run: [amva] C:\WINDOWS\system32\amvo.exe
O4 - HKCU\..\Run: [Cityextra] C:\DOCUME~1\Nana\APPLIC~1\INTRAF~1\File Stupid Aim.exe
O4 - Global Startup: Démarrage rapide de HP Photosmart Premier.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: HP Pavilion Webcam Tray Icon.lnk = ?
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?95b99fdf71a34090af2d783aac09b699
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?95b99fdf71a34090af2d783aac09b699
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\MESSAG~1\Messager Wanadoo.exe
O9 - Extra 'Tools' menuitem: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\MESSAG~1\Messager Wanadoo.exe
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.orange.fr (file missing) (HKCU)
O14 - IERESET.INF: START_PAGE_URL=http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=FR_FR&c=64&bd=pavilion&pf=laptop
O16 - DPF: {5C6698D9-7BE4-4122-8EC5-291D84DBD4A0} (Facebook Photo Uploader 4 Control) - http://upload.facebook.com/control [...] oader3.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: AddFiltr - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\AddFiltr.exe
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Internet Security Password Validation (ccISPwdSvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\ccPwdSvc.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - c:\Program Files\Norton Internet Security\comHost.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: Service Norton Protection Center (NSCService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - c:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
Bonjour, j'ai besoin d'aide pour donner une news vie à mon PC merçi d'avance !
Message édité par adrien49 le 04-04-2008 à 20:35:56
Un bonjour ? Une explication ?
Répondre à Angeldark
oui biensur je suis infestè de virus, je suis sous windows XP et j'aimerais que vous m'aidiez a enlever tous c'est virus. j'ai commencer par faire un scan avec hijack.
Ok.
Télécharge Lop S&D.exe sur ton Bureau.
- Double-clique dessus pour lancer l'installation
- Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
- Séléctionne la langue souhaitée , puis choisis l'option 1 (Recherche)
- Patiente jusqu'à la fin du scan
- Poste le rapport généré (C:\lopR.txt)
(Si le Bureau ne réapparait pas presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide)
Répondre à Angeldark
-----------------------[ Lop S&D 4.1.0-6 XP/Vista ]---------------------
[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : Nana ] [ "C:\Lop SD" ]
[ 05/04/2008 | 14:39:39,00 ] [ PC : JOHANNA ]
[ MAJ : 02-04-2008 | 23:05 ]
-------------[ Listing des dossiers dans Application Data ]------------
[18/09/2006|08:54] C:\DOCUME~1\ADMINI~1\APPLIC~1\.
[18/09/2006|08:54] C:\DOCUME~1\ADMINI~1\APPLIC~1\..
[29/06/2006|12:59] C:\DOCUME~1\ADMINI~1\APPLIC~1\desktop.ini
[18/09/2006|16:33] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[18/09/2006|09:05] C:\DOCUME~1\ADMINI~1\APPLIC~1\Macromedia
[18/09/2006|16:33] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[18/09/2006|08:54] C:\DOCUME~1\ADMINI~1\APPLIC~1\Symantec
[05/04/2008|14:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\.
[05/04/2008|14:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\..
[05/04/2008|14:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\addr_file.html
[04/04/2008|23:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[01/07/2007|12:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[20/01/2007|14:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[04/04/2008|12:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avira
[18/09/2006|09:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[29/06/2006|12:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[04/04/2008|13:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\fourbookclockmp3
[13/11/2006|17:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[05/11/2006|01:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[05/11/2006|02:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hpzinstall.log
[18/09/2006|16:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[04/04/2008|20:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
[11/05/2007|20:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[18/03/2007|22:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[18/09/2006|08:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
[05/12/2007|22:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QTSBandwidthCache
[18/09/2006|16:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[18/09/2006|16:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
[18/09/2006|08:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[12/09/2007|20:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[13/11/2006|17:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[18/09/2006|08:54] C:\DOCUME~1\DEFAUL~1\APPLIC~1\.
[18/09/2006|08:54] C:\DOCUME~1\DEFAUL~1\APPLIC~1\..
[29/06/2006|12:59] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[18/09/2006|16:33] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[18/09/2006|09:05] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
[18/09/2006|16:33] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[18/09/2006|08:54] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec
[18/09/2006|08:38] C:\DOCUME~1\LOCALS~1\APPLIC~1\.
[18/09/2006|08:38] C:\DOCUME~1\LOCALS~1\APPLIC~1\..
[12/09/2007|20:00] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[23/01/2008|16:58] C:\DOCUME~1\Nana\APPLIC~1\.
[23/01/2008|16:58] C:\DOCUME~1\Nana\APPLIC~1\..
[04/04/2008|23:03] C:\DOCUME~1\Nana\APPLIC~1\Adobe
[22/11/2006|21:59] C:\DOCUME~1\Nana\APPLIC~1\AdobeUM
[09/03/2008|21:25] C:\DOCUME~1\Nana\APPLIC~1\Apple Computer
[05/11/2006|04:03] C:\DOCUME~1\Nana\APPLIC~1\CyberLink
[29/06/2006|12:59] C:\DOCUME~1\Nana\APPLIC~1\desktop.ini
[12/02/2007|19:04] C:\DOCUME~1\Nana\APPLIC~1\DivX
[18/11/2006|21:38] C:\DOCUME~1\Nana\APPLIC~1\Google
[05/11/2006|00:33] C:\DOCUME~1\Nana\APPLIC~1\Help
[05/11/2006|02:55] C:\DOCUME~1\Nana\APPLIC~1\HP
[18/09/2006|16:33] C:\DOCUME~1\Nana\APPLIC~1\Identities
[19/10/2007|12:52] C:\DOCUME~1\Nana\APPLIC~1\Image Zone Express
[04/04/2008|13:07] C:\DOCUME~1\Nana\APPLIC~1\INTRAFLAP
[19/12/2006|17:16] C:\DOCUME~1\Nana\APPLIC~1\Leadertech
[13/11/2006|17:20] C:\DOCUME~1\Nana\APPLIC~1\Macromedia
[30/01/2008|21:33] C:\DOCUME~1\Nana\APPLIC~1\Microsoft
[16/04/2007|12:54] C:\DOCUME~1\Nana\APPLIC~1\Screenshot Sender
[19/12/2006|17:16] C:\DOCUME~1\Nana\APPLIC~1\Sonic
[02/06/2007|15:50] C:\DOCUME~1\Nana\APPLIC~1\Sun
[18/09/2006|08:54] C:\DOCUME~1\Nana\APPLIC~1\Symantec
[05/11/2006|19:19] C:\DOCUME~1\Nana\APPLIC~1\Template
[13/11/2006|17:34] C:\DOCUME~1\Nana\APPLIC~1\Windows Desktop Search
[23/01/2008|16:58] C:\DOCUME~1\Nana\APPLIC~1\wklnhst.dat
[18/09/2006|08:38] C:\DOCUME~1\NETWOR~1\APPLIC~1\.
[18/09/2006|08:38] C:\DOCUME~1\NETWOR~1\APPLIC~1\..
[18/09/2006|08:38] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------
[04/04/2008 23:00][--ah-----] C:\WINDOWS\tasks\ADD121F79186D473.job
[28/11/2007 22:45][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[05/04/2008 14:26][--a------] C:\WINDOWS\tasks\Check Updates for Windows Live Toolbar.job
[04/04/2008 20:00][--a------] C:\WINDOWS\tasks\Norton AntiVirus - Effectuer une analyse complŠte du systŠme - Nana.job
[05/04/2008 14:23][--ah-----] C:\WINDOWS\tasks\SA.DAT
[25/03/2006 06:00][-rah-----] C:\WINDOWS\tasks\desktop.ini
---------------[ Listing des dossiers dans C:\Program Files ]--------------
[04/04/2008|12:45] C:\Program Files\.
[04/04/2008|12:45] C:\Program Files\..
[04/04/2008|20:02] C:\Program Files\Adobe
[11/05/2007|20:49] C:\Program Files\Adverts
[08/07/2007|20:22] C:\Program Files\Alcohol Soft
[08/07/2007|20:22] C:\Program Files\Alcohol Toolbar
[28/11/2007|22:45] C:\Program Files\Apple Software Update
[04/04/2008|12:45] C:\Program Files\Avira
[01/02/2007|21:24] C:\Program Files\AviSynth 2.5
[05/11/2006|03:33] C:\Program Files\Boonty
[05/11/2006|03:33] C:\Program Files\BoontyGames
[18/09/2006|16:33] C:\Program Files\ComPlus Applications
[18/09/2006|09:13] C:\Program Files\CONEXANT
[20/12/2006|17:55] C:\Program Files\DivX
[01/03/2007|20:22] C:\Program Files\EA GAMES
[05/11/2006|00:22] C:\Program Files\ECI Telecom
[21/10/2007|16:49] C:\Program Files\eMule
[04/04/2008|20:05] C:\Program Files\Fichiers communs
[18/09/2006|09:01] C:\Program Files\FrenchOtto
[18/09/2006|09:01] C:\Program Files\GemMasterFrench
[06/02/2007|20:35] C:\Program Files\Google
[05/11/2006|01:50] C:\Program Files\Hewlett-Packard
[05/11/2006|01:54] C:\Program Files\HP
[05/11/2006|00:07] C:\Program Files\HPQ
[04/04/2008|20:02] C:\Program Files\InstallShield Installation Information
[14/02/2008|13:22] C:\Program Files\Internet Explorer
[09/06/2007|15:23] C:\Program Files\INTRAFLAP
[21/10/2007|16:31] C:\Program Files\Inventel
[02/03/2008|15:12] C:\Program Files\iPod
[02/03/2008|15:13] C:\Program Files\iTunes
[18/09/2006|16:33] C:\Program Files\Java
[13/11/2006|17:40] C:\Program Files\LimeWire
[11/11/2006|02:48] C:\Program Files\Maxis
[05/11/2006|03:33] C:\Program Files\Mes Jeux T‚l‚charg‚s
[05/11/2006|00:22] C:\Program Files\Messager Wanadoo
[19/11/2006|15:32] C:\Program Files\Messenger
[09/06/2007|15:23] C:\Program Files\Messenger Plus! Live
[18/09/2006|16:33] C:\Program Files\microsoft frontpage
[18/09/2006|09:04] C:\Program Files\Microsoft Office
[19/11/2006|15:30] C:\Program Files\Microsoft Works
[18/09/2006|16:33] C:\Program Files\Movie Maker
[18/09/2006|16:33] C:\Program Files\MSN
[18/09/2006|16:33] C:\Program Files\MSN Gaming Zone
[09/06/2007|15:22] C:\Program Files\MSN Messenger
[19/11/2006|15:29] C:\Program Files\MSXML 4.0
[18/09/2006|16:33] C:\Program Files\NetMeeting
[18/09/2006|09:13] C:\Program Files\NetWaiting
[06/10/2007|11:46] C:\Program Files\Norton Internet Security
[04/02/2007|17:20] C:\Program Files\ONES Trial (F)
[18/09/2006|16:33] C:\Program Files\Online Services
[22/10/2007|20:21] C:\Program Files\Orange
[13/06/2007|22:14] C:\Program Files\Outlook Express
[02/03/2008|15:08] C:\Program Files\QuickTime
[18/09/2006|09:12] C:\Program Files\Services en ligne
[18/09/2006|16:33] C:\Program Files\Sonic
[20/01/2007|15:06] C:\Program Files\Symantec
[18/09/2006|09:05] C:\Program Files\Synaptics
[18/09/2006|16:33] C:\Program Files\Uninstall Information
[20/11/2007|15:02] C:\Program Files\Veoh Networks
[01/02/2007|21:24] C:\Program Files\VideoraiPodConverter
[05/04/2008|14:26] C:\Program Files\Wanadoo
[13/11/2006|17:33] C:\Program Files\Windows Desktop Search
[09/06/2007|15:22] C:\Program Files\Windows Live
[28/01/2007|21:44] C:\Program Files\Windows Live Safety Center
[13/11/2006|17:32] C:\Program Files\Windows Live Toolbar
[12/09/2007|19:04] C:\Program Files\Windows Media Connect 2
[12/09/2007|19:04] C:\Program Files\Windows Media Player
[18/09/2006|16:33] C:\Program Files\Windows NT
[18/09/2006|16:33] C:\Program Files\Windows Plus
[18/09/2006|16:33] C:\Program Files\WindowsUpdate
[12/02/2007|19:31] C:\Program Files\wt3d.ini
[18/09/2006|16:33] C:\Program Files\xerox
------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------
[04/04/2008|20:05] C:\Program Files\Fichiers communs\.
[04/04/2008|20:05] C:\Program Files\Fichiers communs\..
[04/04/2008|20:05] C:\Program Files\Fichiers communs\Adobe
[04/04/2008|20:05] C:\Program Files\Fichiers communs\Adobe Systems Shared
[01/07/2007|12:27] C:\Program Files\Fichiers communs\Apple
[21/10/2007|16:31] C:\Program Files\Fichiers communs\FDEUnInstaller.exe
[05/11/2006|01:49] C:\Program Files\Fichiers communs\Hewlett-Packard
[18/09/2006|16:33] C:\Program Files\Fichiers communs\HP
[18/09/2006|08:56] C:\Program Files\Fichiers communs\InstallShield
[18/09/2006|16:33] C:\Program Files\Fichiers communs\Java
[18/09/2006|09:24] C:\Program Files\Fichiers communs\LightScribe
[30/04/2007|11:51] C:\Program Files\Fichiers communs\Microsoft Shared
[18/09/2006|16:33] C:\Program Files\Fichiers communs\MSSoap
[18/09/2006|16:33] C:\Program Files\Fichiers communs\ODBC
[18/09/2006|16:33] C:\Program Files\Fichiers communs\Services
[18/09/2006|16:33] C:\Program Files\Fichiers communs\Sonic Shared
[18/09/2006|16:33] C:\Program Files\Fichiers communs\SpeechEngines
[18/09/2006|16:33] C:\Program Files\Fichiers communs\SureThing Shared
[05/04/2008|14:30] C:\Program Files\Fichiers communs\Symantec Shared
[13/06/2007|22:14] C:\Program Files\Fichiers communs\System
[18/09/2006|16:33] C:\Program Files\Fichiers communs\TiVo Shared
----------------------[ Recherche avec S_Lop ]---------------------
Aucun fichier / dossier Lop trouvé !
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
C:\Program Files\Adverts
C:\Program Files\Adverts\uninst.exe
C:\WINDOWS\Tasks\ADD121F79186D473.job
----------------------[ Verification du Registre ]----------------------
..... OK !
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts MODIFIE
127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD
127.0.0.1 download.errorsafe.com ## added by CiD
127.0.0.1 download.systemdoctor.com ## added by CiD
127.0.0.1 download.winantispyware.com ## added by CiD
127.0.0.1 download.windrivecleaner.com ## added by CiD
127.0.0.1 download.winfixer.com ## added by CiD
127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 es.winantivirus.com ## added by CiD
127.0.0.1 fr.winantivirus.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 go.winantivirus.com ## added by CiD
127.0.0.1 hk.winantivirus.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 instlog.winantivirus.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 kb.winantivirus.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 secure.winantivirus.com ## added by CiD
127.0.0.1 support.winantivirus.com ## added by CiD
127.0.0.1 ulog.winantivirus.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 utils.winantivirus.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winantivirus.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 www.drivecleaner.com ## added by CiD
127.0.0.1 www.errorprotector.com ## added by CiD
127.0.0.1 www.errorsafe.com ## added by CiD
127.0.0.1 www.systemdoctor.com ## added by CiD
127.0.0.1 www.win-anti-virus-pro.com ## added by CiD
127.0.0.1 www.win-virus-pro.com ## added by CiD
127.0.0.1 www.winantispam.com ## added by CiD
127.0.0.1 www.winantispy.com ## added by CiD
127.0.0.1 www.winantispyware.com ## added by CiD
127.0.0.1 www.winantivirus.com ## added by CiD
127.0.0.1 www.winantiviruspro.com ## added by CiD
127.0.0.1 www.windrivecleaner.com ## added by CiD
127.0.0.1 www.windrivesafe.com ## added by CiD
127.0.0.1 www.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 www.utils.winfixer.com ## added by CiD
127.0.0.1 www.winfixer2006.com ## added by CiD
127.0.0.1 www.winsoftware.com ## added by CiD
-> 72 ( 70 ## added by CiD )
/!\ 1 Not 127.0.0.1 !!
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-04-05 14:40:36
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden files ...
scan completed successfully
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
Aucune autre infection trouvée !
/!\ [Fich:3818][Doss:41] C:\DOCUME~1\Nana\LOCALS~1\Temp
/!\ [Fich:30][Doss:0] C:\DOCUME~1\Nana\Cookies
/!\ [Fich:6285][Doss:20] C:\DOCUME~1\Nana\TEMPOR~1\content.IE5
--------------------[ Fin du rapport a 14:41:12,81 ]----------------------
Re,
Relance Lop S&D
- Choisis cette fois ci l'Option 2 (Suppression)
- Ne ferme pas la fenêtre lors de la suppression !
- Poste le rapport généré (C:\lopR.txt)
(Si le Bureau ne réapparaît pas, presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide)
Répondre à Angeldark
-----------------------[ Lop S&D 4.1.0-6 XP/Vista ]---------------------
[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : Nana ] [ "C:\Lop SD" ]
[ 05/04/2008 | 15:21:56,43 ] [ PC : JOHANNA ]
[ MAJ : 02-04-2008 | 23:05 ]
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////
Supprimé! - C:\Program Files\Adverts\uninst.exe
Supprimé! - C:\WINDOWS\Tasks\ADD121F79186D473.job
Supprimé! - C:\Program Files\Adverts
Restauré! - Fichier Hosts
//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
-------------[ Listing des dossiers dans Application Data ]------------
[18/09/2006|08:54] C:\DOCUME~1\ADMINI~1\APPLIC~1\.
[18/09/2006|08:54] C:\DOCUME~1\ADMINI~1\APPLIC~1\..
[29/06/2006|12:59] C:\DOCUME~1\ADMINI~1\APPLIC~1\desktop.ini
[18/09/2006|16:33] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[18/09/2006|09:05] C:\DOCUME~1\ADMINI~1\APPLIC~1\Macromedia
[18/09/2006|16:33] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[18/09/2006|08:54] C:\DOCUME~1\ADMINI~1\APPLIC~1\Symantec
[05/04/2008|14:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\.
[05/04/2008|14:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\..
[05/04/2008|14:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\addr_file.html
[04/04/2008|23:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[01/07/2007|12:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[20/01/2007|14:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[04/04/2008|12:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avira
[18/09/2006|09:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[29/06/2006|12:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[04/04/2008|13:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\fourbookclockmp3
[13/11/2006|17:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[05/11/2006|01:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[05/11/2006|02:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hpzinstall.log
[18/09/2006|16:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[04/04/2008|20:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
[11/05/2007|20:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[18/03/2007|22:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[18/09/2006|08:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
[05/12/2007|22:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QTSBandwidthCache
[18/09/2006|16:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[18/09/2006|16:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
[18/09/2006|08:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[12/09/2007|20:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[13/11/2006|17:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[18/09/2006|08:54] C:\DOCUME~1\DEFAUL~1\APPLIC~1\.
[18/09/2006|08:54] C:\DOCUME~1\DEFAUL~1\APPLIC~1\..
[29/06/2006|12:59] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[18/09/2006|16:33] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[18/09/2006|09:05] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
[18/09/2006|16:33] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[18/09/2006|08:54] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec
[18/09/2006|08:38] C:\DOCUME~1\LOCALS~1\APPLIC~1\.
[18/09/2006|08:38] C:\DOCUME~1\LOCALS~1\APPLIC~1\..
[12/09/2007|20:00] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[23/01/2008|16:58] C:\DOCUME~1\Nana\APPLIC~1\.
[23/01/2008|16:58] C:\DOCUME~1\Nana\APPLIC~1\..
[04/04/2008|23:03] C:\DOCUME~1\Nana\APPLIC~1\Adobe
[22/11/2006|21:59] C:\DOCUME~1\Nana\APPLIC~1\AdobeUM
[09/03/2008|21:25] C:\DOCUME~1\Nana\APPLIC~1\Apple Computer
[05/11/2006|04:03] C:\DOCUME~1\Nana\APPLIC~1\CyberLink
[29/06/2006|12:59] C:\DOCUME~1\Nana\APPLIC~1\desktop.ini
[12/02/2007|19:04] C:\DOCUME~1\Nana\APPLIC~1\DivX
[18/11/2006|21:38] C:\DOCUME~1\Nana\APPLIC~1\Google
[05/11/2006|00:33] C:\DOCUME~1\Nana\APPLIC~1\Help
[05/11/2006|02:55] C:\DOCUME~1\Nana\APPLIC~1\HP
[18/09/2006|16:33] C:\DOCUME~1\Nana\APPLIC~1\Identities
[19/10/2007|12:52] C:\DOCUME~1\Nana\APPLIC~1\Image Zone Express
[04/04/2008|13:07] C:\DOCUME~1\Nana\APPLIC~1\INTRAFLAP
[19/12/2006|17:16] C:\DOCUME~1\Nana\APPLIC~1\Leadertech
[13/11/2006|17:20] C:\DOCUME~1\Nana\APPLIC~1\Macromedia
[30/01/2008|21:33] C:\DOCUME~1\Nana\APPLIC~1\Microsoft
[16/04/2007|12:54] C:\DOCUME~1\Nana\APPLIC~1\Screenshot Sender
[19/12/2006|17:16] C:\DOCUME~1\Nana\APPLIC~1\Sonic
[02/06/2007|15:50] C:\DOCUME~1\Nana\APPLIC~1\Sun
[18/09/2006|08:54] C:\DOCUME~1\Nana\APPLIC~1\Symantec
[05/11/2006|19:19] C:\DOCUME~1\Nana\APPLIC~1\Template
[13/11/2006|17:34] C:\DOCUME~1\Nana\APPLIC~1\Windows Desktop Search
[23/01/2008|16:58] C:\DOCUME~1\Nana\APPLIC~1\wklnhst.dat
[18/09/2006|08:38] C:\DOCUME~1\NETWOR~1\APPLIC~1\.
[18/09/2006|08:38] C:\DOCUME~1\NETWOR~1\APPLIC~1\..
[18/09/2006|08:38] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------
[28/11/2007 22:45][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[05/04/2008 14:26][--a------] C:\WINDOWS\tasks\Check Updates for Windows Live Toolbar.job
[04/04/2008 20:00][--a------] C:\WINDOWS\tasks\Norton AntiVirus - Effectuer une analyse complŠte du systŠme - Nana.job
[05/04/2008 14:23][--ah-----] C:\WINDOWS\tasks\SA.DAT
[25/03/2006 06:00][-rah-----] C:\WINDOWS\tasks\desktop.ini
---------------[ Listing des dossiers dans C:\Program Files ]--------------
[05/04/2008|15:21] C:\Program Files\.
[05/04/2008|15:21] C:\Program Files\..
[04/04/2008|20:02] C:\Program Files\Adobe
[08/07/2007|20:22] C:\Program Files\Alcohol Soft
[08/07/2007|20:22] C:\Program Files\Alcohol Toolbar
[28/11/2007|22:45] C:\Program Files\Apple Software Update
[04/04/2008|12:45] C:\Program Files\Avira
[01/02/2007|21:24] C:\Program Files\AviSynth 2.5
[05/11/2006|03:33] C:\Program Files\Boonty
[05/11/2006|03:33] C:\Program Files\BoontyGames
[18/09/2006|16:33] C:\Program Files\ComPlus Applications
[18/09/2006|09:13] C:\Program Files\CONEXANT
[20/12/2006|17:55] C:\Program Files\DivX
[01/03/2007|20:22] C:\Program Files\EA GAMES
[05/11/2006|00:22] C:\Program Files\ECI Telecom
[21/10/2007|16:49] C:\Program Files\eMule
[04/04/2008|20:05] C:\Program Files\Fichiers communs
[18/09/2006|09:01] C:\Program Files\FrenchOtto
[18/09/2006|09:01] C:\Program Files\GemMasterFrench
[06/02/2007|20:35] C:\Program Files\Google
[05/11/2006|01:50] C:\Program Files\Hewlett-Packard
[05/11/2006|01:54] C:\Program Files\HP
[05/11/2006|00:07] C:\Program Files\HPQ
[04/04/2008|20:02] C:\Program Files\InstallShield Installation Information
[14/02/2008|13:22] C:\Program Files\Internet Explorer
[09/06/2007|15:23] C:\Program Files\INTRAFLAP
[21/10/2007|16:31] C:\Program Files\Inventel
[02/03/2008|15:12] C:\Program Files\iPod
[02/03/2008|15:13] C:\Program Files\iTunes
[18/09/2006|16:33] C:\Program Files\Java
[13/11/2006|17:40] C:\Program Files\LimeWire
[11/11/2006|02:48] C:\Program Files\Maxis
[05/11/2006|03:33] C:\Program Files\Mes Jeux T‚l‚charg‚s
[05/11/2006|00:22] C:\Program Files\Messager Wanadoo
[19/11/2006|15:32] C:\Program Files\Messenger
[09/06/2007|15:23] C:\Program Files\Messenger Plus! Live
[18/09/2006|16:33] C:\Program Files\microsoft frontpage
[18/09/2006|09:04] C:\Program Files\Microsoft Office
[19/11/2006|15:30] C:\Program Files\Microsoft Works
[18/09/2006|16:33] C:\Program Files\Movie Maker
[18/09/2006|16:33] C:\Program Files\MSN
[18/09/2006|16:33] C:\Program Files\MSN Gaming Zone
[09/06/2007|15:22] C:\Program Files\MSN Messenger
[19/11/2006|15:29] C:\Program Files\MSXML 4.0
[18/09/2006|16:33] C:\Program Files\NetMeeting
[18/09/2006|09:13] C:\Program Files\NetWaiting
[06/10/2007|11:46] C:\Program Files\Norton Internet Security
[04/02/2007|17:20] C:\Program Files\ONES Trial (F)
[18/09/2006|16:33] C:\Program Files\Online Services
[22/10/2007|20:21] C:\Program Files\Orange
[13/06/2007|22:14] C:\Program Files\Outlook Express
[02/03/2008|15:08] C:\Program Files\QuickTime
[18/09/2006|09:12] C:\Program Files\Services en ligne
[18/09/2006|16:33] C:\Program Files\Sonic
[20/01/2007|15:06] C:\Program Files\Symantec
[18/09/2006|09:05] C:\Program Files\Synaptics
[18/09/2006|16:33] C:\Program Files\Uninstall Information
[20/11/2007|15:02] C:\Program Files\Veoh Networks
[01/02/2007|21:24] C:\Program Files\VideoraiPodConverter
[05/04/2008|14:26] C:\Program Files\Wanadoo
[13/11/2006|17:33] C:\Program Files\Windows Desktop Search
[09/06/2007|15:22] C:\Program Files\Windows Live
[28/01/2007|21:44] C:\Program Files\Windows Live Safety Center
[13/11/2006|17:32] C:\Program Files\Windows Live Toolbar
[12/09/2007|19:04] C:\Program Files\Windows Media Connect 2
[12/09/2007|19:04] C:\Program Files\Windows Media Player
[18/09/2006|16:33] C:\Program Files\Windows NT
[18/09/2006|16:33] C:\Program Files\Windows Plus
[18/09/2006|16:33] C:\Program Files\WindowsUpdate
[12/02/2007|19:31] C:\Program Files\wt3d.ini
[18/09/2006|16:33] C:\Program Files\xerox
------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------
[04/04/2008|20:05] C:\Program Files\Fichiers communs\.
[04/04/2008|20:05] C:\Program Files\Fichiers communs\..
[04/04/2008|20:05] C:\Program Files\Fichiers communs\Adobe
[04/04/2008|20:05] C:\Program Files\Fichiers communs\Adobe Systems Shared
[01/07/2007|12:27] C:\Program Files\Fichiers communs\Apple
[21/10/2007|16:31] C:\Program Files\Fichiers communs\FDEUnInstaller.exe
[05/11/2006|01:49] C:\Program Files\Fichiers communs\Hewlett-Packard
[18/09/2006|16:33] C:\Program Files\Fichiers communs\HP
[18/09/2006|08:56] C:\Program Files\Fichiers communs\InstallShield
[18/09/2006|16:33] C:\Program Files\Fichiers communs\Java
[18/09/2006|09:24] C:\Program Files\Fichiers communs\LightScribe
[30/04/2007|11:51] C:\Program Files\Fichiers communs\Microsoft Shared
[18/09/2006|16:33] C:\Program Files\Fichiers communs\MSSoap
[18/09/2006|16:33] C:\Program Files\Fichiers communs\ODBC
[18/09/2006|16:33] C:\Program Files\Fichiers communs\Services
[18/09/2006|16:33] C:\Program Files\Fichiers communs\Sonic Shared
[18/09/2006|16:33] C:\Program Files\Fichiers communs\SpeechEngines
[18/09/2006|16:33] C:\Program Files\Fichiers communs\SureThing Shared
[05/04/2008|14:30] C:\Program Files\Fichiers communs\Symantec Shared
[13/06/2007|22:14] C:\Program Files\Fichiers communs\System
[18/09/2006|16:33] C:\Program Files\Fichiers communs\TiVo Shared
----------------------[ Recherche avec S_Lop ]---------------------
Aucun fichier / dossier Lop trouvé !
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
Aucun fichier / dossier Lop trouvé !
----------------------[ Verification du Registre ]----------------------
..... OK !
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts PROPRE
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-04-05 15:23:15
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden files ...
scan completed successfully
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
Aucune autre infection trouvée !
/!\ [Fich:3818][Doss:41] C:\DOCUME~1\Nana\LOCALS~1\Temp
/!\ [Fich:21][Doss:0] C:\DOCUME~1\Nana\Cookies
/!\ [Fich:6510][Doss:20] C:\DOCUME~1\Nana\TEMPOR~1\content.IE5
--------------------[ Fin du rapport a 15:23:31,07 ]----------------------
Reposte un rapport Hijackthis.
Répondre à Angeldark
Logfile of HijackThis v1.99.1
Scan saved at 16:28:16, on 05/04/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
c:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
c:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
c:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
c:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
c:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\ehome\ehtray.exe
C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\HP\QuickPlay\QPService.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
C:\PROGRA~1\MESSAG~1\Demon.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\Program Files\Veoh Networks\Veoh\VeohClient.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Hewlett-Packard\HP Pavilion Webcam\HPWebcam.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\Windows Desktop Search\WindowsSearchIndexer.exe
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
c:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\mqsvc.exe
C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
C:\WINDOWS\system32\mqtgsvc.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\iTunes\iTunes.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceHelper.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\distnoted.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\AcroRd32.exe
C:\WINDOWS\system32\wuauclt.exe
C:\DOCUME~1\Nana\LOCALS~1\Temp\Répertoire temporaire 2 pour hijackthis.zip\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr? [...] &pf=laptop
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: dsWebAllowBHO Class - {2F85D76C-0569-466F-A488-493E6BD0E955} - C:\Program Files\Windows Desktop Search\dsWebAllow.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Alcohol Toolbar Helper - {8126A4A5-BFD3-46FE-BBDF-BFB5CF78E489} - C:\Program Files\Alcohol Toolbar\v3.2.0.0\Alcohol_Toolbar.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - c:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - c:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: Alcohol Toolbar - {ED4BD629-C1B6-4399-8A34-02CCAA921DC9} - C:\Program Files\Alcohol Toolbar\v3.2.0.0\Alcohol_Toolbar.dll
O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /nodetect
O4 - HKLM\..\Run: [MsmqIntCert] regsvr32 /s mqrt.dll
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] CHDAudPropShortcut.exe
O4 - HKLM\..\Run: [ccApp] "c:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\Hewlett-Packard\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [RecGuard] C:\Windows\SMINST\RecGuard.exe
O4 - HKLM\..\Run: [Reminder] C:\Windows\CREATOR\Remind_XP.exe
O4 - HKLM\..\Run: [Demon] C:\PROGRA~1\MESSAG~1\Demon.exe
O4 - HKLM\..\Run: [GSICONEXE] GSICON.EXE
O4 - HKLM\..\Run: [DSLAGENTEXE] DSLAGENT.EXE USB
O4 - HKLM\..\Run: [GsiFinal] rundll32 gspndll.dll,postInstall final
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [VideoraiPodConverter] C:\Program Files\VideoraiPodConverter\VideoraConverter.exe -t
O4 - HKLM\..\Run: [CLOCKMP3CASHACID] C:\Documents and Settings\All Users\Application Data\fourbookclockmp3\bike face.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [Veoh] "C:\Program Files\Veoh Networks\Veoh\VeohClient.exe" /VeohHide
O4 - HKCU\..\Run: [amva] C:\WINDOWS\system32\amvo.exe
O4 - HKCU\..\Run: [Cityextra] C:\DOCUME~1\Nana\APPLIC~1\INTRAF~1\File Stupid Aim.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Démarrage rapide de HP Photosmart Premier.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: HP Pavilion Webcam Tray Icon.lnk = ?
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?95b99fdf71a34090af2d783aac09b699
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?95b99fdf71a34090af2d783aac09b699
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\MESSAG~1\Messager Wanadoo.exe
O9 - Extra 'Tools' menuitem: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\MESSAG~1\Messager Wanadoo.exe
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.orange.fr (file missing) (HKCU)
O14 - IERESET.INF: START_PAGE_URL=http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=FR_FR&c=64&bd=pavilion&pf=laptop
O16 - DPF: {5C6698D9-7BE4-4122-8EC5-291D84DBD4A0} (Facebook Photo Uploader 4 Control) - http://upload.facebook.com/control [...] oader3.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: AddFiltr - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\AddFiltr.exe
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Internet Security Password Validation (ccISPwdSvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\ccPwdSvc.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - c:\Program Files\Norton Internet Security\comHost.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: Service Norton Protection Center (NSCService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - c:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
Re,
Fix les lignes dans le cadre ci-dessous avec Hijackthis : AIDE EN IMAGES
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) |
Télécharge OTMoveIt (d'OldTimer). Sauvegarde-le sur ton Bureau.
Sélectionne tous les emplacements dans le cadre ci-dessous :
C:\DOCUME~1\Nana\APPLIC~1\INTRAF~1 |
---> Clique-droit puis Copier (ou Ctrl+C)
Double-clique sur OTMoveIt.exe afin de le lancer.
Fais un Clique-droit sur le cadre de gauche puis choisis Coller (ou Ctrl+V).
Clique maintenant sur MoveIt!
Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
Accepte en cliquant sur YES.
Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
Le nom du rapport correspond au moment de sa création : date_heure.log
->Informations sur le logiciel<-
Message édité par Angeldark le 06-04-2008 à 12:19:55
Répondre à Angeldark
File/Folder [fixed]C:\DOCUME~1\Nana\APPLIC~1\INTRAF~1 not found.
File/Folder C:\WINDOWS\system32\amvo.exe not found.
C:\Documents and Settings\All Users\Application Data\fourbookclockmp3 moved successfully.
OTMoveIt2 v1.0.21 log created on 04052008_181356
voila le Result
RAPPORT
File/Folder [fixed]C:\DOCUME~1\Nana\APPLIC~1\INTRAF~1 not found.
File/Folder C:\WINDOWS\system32\amvo.exe not found.
C:\Documents and Settings\All Users\Application Data\fourbookclockmp3 moved successfully.
OTMoveIt2 v1.0.21 log created on 04052008_181356
Il y a eu une erreur dans les balises 
Tu peux recommencer ?
Répondre à Angeldark
Il y a 2560 utilisateurs connus et inconnus. Pour voir la liste des connectés connus, cliquez ici.
