supprimer les publicités CID

Salut,

Rapport très incomplet.

ok il a du beuguer au millieu alor je t'en fait un autre et je le poste merci.

Effectivement il y a eu un bug voici le nouveau rapport:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 01:35:56, on 23/04/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\a-squared Free\a2service.exe
C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\WINDOWS\system32\drivers\KodakCCS.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PDFCreatorMessages.exe
C:\WINDOWS\system32\PSIService.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\fxssvc.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Acer\Empowering Technology\eRecovery\Monitor.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\Acer\Acer eMode Management\AspireService.exe
C:\Program Files\Acer\Acer eConsole\MediaSync.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Corel\Corel Snapfire\Corel Photo Downloader.exe
C:\Program Files\Global Graphics\Jaws PDF Creator\PDFClient.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe
C:\Program Files\iPod\bin\iPodService.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/avcenter/fix_homep...
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://global.acer.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SWEETIE - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - C:\PROGRA~1\MACROG~1\SWEETI~1\toolbar.dll (file missing)
O2 - BHO: NCO 2.0 IE BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Fichiers communs\Symantec Shared\coShared\Browser\2.0\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\PROGRA~1\FICHIE~1\SYMANT~1\IDS\IPSBHO.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll
O3 - Toolbar: Afficher Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Fichiers communs\Symantec Shared\coShared\Browser\2.0\CoIEPlg.dll
O4 - HKLM\..\Run: [LaunchApp] Alaunch
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [ntiMUI] c:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [AspireService] C:\Program Files\Acer\Acer eMode Management\AspireService.exe
O4 - HKLM\..\Run: [MediaSync] C:\Program Files\Acer\Acer eConsole\MediaSync.exe
O4 - HKLM\..\Run: [eRecoveryService] C:\Acer\Empowering Technology\eRecovery\Monitor.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [Corel Photo Downloader] C:\Program Files\Corel\Corel Snapfire\Corel Photo Downloader.exe
O4 - HKLM\..\Run: [PDFCreatorClient] "C:\Program Files\Global Graphics\Jaws PDF Creator\PDFClient.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [RavAV] C:\WINDOWS\RavMonE.exe
O4 - HKLM\..\Run: [mpeg heck log link] C:\Documents and Settings\All Users\Application Data\Joy coal mpeg heck\does chic.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton Internet Security\osCheck.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\WANADOO\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM=
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Logiciel Kodak EasyShare.lnk = C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
O4 - Global Startup: Kodak software updater.lnk = C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Symantec Fax Starter Edition Port.lnk = C:\Program Files\Microsoft Office\Office\1036\OLFSNT40.EXE
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?6ec6c6e6d5dd4c56a058d368b709fafa
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?6ec6c6e6d5dd4c56a058d368b709fafa
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {1FF43AD5-2262-4C2F-81D4-26D710C3F305} (VB2S Mannequin Virtuel Control) - http://mannequin.redoute.fr/activex/Mannequin.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.ca...
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Cont...
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://mailysrd.spaces.live.com/PhotoUpload/MsnPUpld.ca...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
O16 - DPF: {DC75FEF6-165D-4D25-A518-C8C4BDA7BAA6} (CPlayFirstDinerDashControl Object) - http://msnfr.oberon-media.com/online2/MSN_INTL_FRANCE/d...
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
O23 - Service: Acer Media Server - Acer Inc. - C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Planificateur LiveUpdate automatique (Automatic LiveUpdate Scheduler) - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\VAScanner\comHost.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Kodak Camera Connection Software (KodakCCS) - Eastman Kodak Company - C:\WINDOWS\system32\drivers\KodakCCS.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE
O23 - Service: LiveUpdate Notice - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PDFCreatorMessages - Global Graphics Software Ltd. - C:\WINDOWS\system32\PDFCreatorMessages.exe
O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\PROGRA~1\FICHIE~1\SYMANT~1\CCPD-LC\symlcsvc.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe

--
End of file - 14480 bytes

Re,

Télécharge Lop S&D.exe ( d’ Eric 71 & Angeldark ) sur ton bureau.

Double-clique dessus pour lancer l'installation

Puis double-clique sur le raccourci Lop S&D présent sur ton bureau (Si tu es sous Vista, clique droit -> exécuter en tant qu'admin)

Séléctionne la langue souhaitée , puis choisis l'Option 1 ( Recherche )

Patiente jusqu'à la fin du scan

Poste le rapport généré ( C:\lopR.txt )

Si ton bureau ne réapparait pas, fais CTRL+ALT+SUPP pour ouvrir le gestionnaire de tâches.
Puis rends-toi à l'onglet "processus". Clique en haut à gauche sur fichiers et choisis "Nouvelle tâche (exécuter)"
Tapes explorer et valide. Cela te fera apparaitre ton bureau

je te remerci voici le rapport obtenue:

-----------------------[ Lop S&D 4.1.1-7 XP/Vista ]---------------------

[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : gwenn ] [ "C:\Lop SD" ]
[ 23/04/2008 | 2:16:20,89 ] [ PC : MALILISME ]
[ MAJ : 22-04-2008 | 22:25 ]

-------------[ Listing des dossiers dans Application Data ]------------

[02/12/2005|02:41] C:\DOCUME~1\DEFAUL~1\APPLIC~1\.
[02/12/2005|02:41] C:\DOCUME~1\DEFAUL~1\APPLIC~1\..
[11/02/2008|20:05] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Apple Computer
[23/01/2005|11:51] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[23/01/2005|12:07] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[23/01/2005|11:51] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[23/01/2005|12:13] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec

[02/12/2005|02:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\.
[02/12/2005|02:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\..
[23/01/2005|12:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[22/01/2008|19:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Aliasworlds
[05/07/2007|21:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[05/07/2007|21:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[01/11/2007|23:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Azureus
[08/03/2006|22:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[10/03/2007|13:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BVRP Software
[19/09/2006|22:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Corel
[19/02/2006|12:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[23/01/2005|11:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[16/02/2006|18:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\eConsole
[28/01/2008|00:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Fugazo
[12/09/2006|11:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[03/11/2007|23:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HipSoft
[13/10/2006|20:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\iWin
[11/10/2007|19:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Joy coal mpeg heck
[15/02/2006|20:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kodak
[17/12/2007|21:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\LauncherAccess.dt
[08/03/2006|22:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
[20/02/2006|11:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[23/01/2005|11:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[18/06/2007|01:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NannyMania
[01/05/2006|18:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
[30/10/2006|11:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Oberon Media
[24/09/2006|12:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst
[22/02/2008|01:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QTSBandwidthCache
[15/02/2006|21:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[13/10/2006|19:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sandlot Games
[23/01/2005|12:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[19/01/2007|10:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[24/06/2006|23:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TuneUp Software
[15/07/2006|15:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\UDL
[19/03/2006|20:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[15/12/2006|20:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[28/12/2007|21:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[21/04/2006|15:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WmaLiteDefaultCamp
[05/06/2006|22:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom

[02/12/2005|02:41] C:\DOCUME~1\NETWOR~1\APPLIC~1\.
[02/12/2005|02:41] C:\DOCUME~1\NETWOR~1\APPLIC~1\..
[23/01/2005|11:51] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[07/03/2006|20:38] C:\DOCUME~1\NETWOR~1\APPLIC~1\Symantec

[02/12/2005|02:41] C:\DOCUME~1\LOCALS~1\APPLIC~1\.
[02/12/2005|02:41] C:\DOCUME~1\LOCALS~1\APPLIC~1\..
[23/01/2005|11:51] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[15/02/2006|14:33] C:\DOCUME~1\MAILYS~1\APPLIC~1\.
[15/02/2006|14:33] C:\DOCUME~1\MAILYS~1\APPLIC~1\..
[19/02/2006|12:23] C:\DOCUME~1\MAILYS~1\APPLIC~1\Adobe
[23/04/2006|18:31] C:\DOCUME~1\MAILYS~1\APPLIC~1\AdobeUM
[05/07/2007|22:00] C:\DOCUME~1\MAILYS~1\APPLIC~1\Apple Computer
[01/11/2007|23:57] C:\DOCUME~1\MAILYS~1\APPLIC~1\Azureus
[25/06/2006|10:46] C:\DOCUME~1\MAILYS~1\APPLIC~1\CopyToDvd
[19/09/2006|22:38] C:\DOCUME~1\MAILYS~1\APPLIC~1\Corel
[08/04/2006|20:54] C:\DOCUME~1\MAILYS~1\APPLIC~1\CyberLink
[23/01/2005|11:51] C:\DOCUME~1\MAILYS~1\APPLIC~1\desktop.ini
[21/04/2006|15:25] C:\DOCUME~1\MAILYS~1\APPLIC~1\Else plus
[02/08/2006|16:35] C:\DOCUME~1\MAILYS~1\APPLIC~1\EPSON
[15/02/2006|16:00] C:\DOCUME~1\MAILYS~1\APPLIC~1\FotoWire
[19/01/2007|10:01] C:\DOCUME~1\MAILYS~1\APPLIC~1\Gaijin Ent
[18/08/2006|17:24] C:\DOCUME~1\MAILYS~1\APPLIC~1\Google
[27/03/2006|00:43] C:\DOCUME~1\MAILYS~1\APPLIC~1\Help
[23/01/2005|12:07] C:\DOCUME~1\MAILYS~1\APPLIC~1\Identities
[10/03/2007|13:33] C:\DOCUME~1\MAILYS~1\APPLIC~1\InstallShield
[13/10/2006|20:30] C:\DOCUME~1\MAILYS~1\APPLIC~1\iWin
[25/11/2007|13:59] C:\DOCUME~1\MAILYS~1\APPLIC~1\Jane s Hotel
[15/02/2006|15:18] C:\DOCUME~1\MAILYS~1\APPLIC~1\Macromedia
[07/12/2007|20:15] C:\DOCUME~1\MAILYS~1\APPLIC~1\MessengerSkinner
[23/01/2005|11:51] C:\DOCUME~1\MAILYS~1\APPLIC~1\Microsoft
[20/10/2006|12:13] C:\DOCUME~1\MAILYS~1\APPLIC~1\Microsoft Web Folders
[16/02/2008|14:26] C:\DOCUME~1\MAILYS~1\APPLIC~1\MSN Pictures Displayer
[22/09/2006|19:54] C:\DOCUME~1\MAILYS~1\APPLIC~1\MSNInstaller
[25/11/2007|16:38] C:\DOCUME~1\MAILYS~1\APPLIC~1\My Games
[30/07/2006|23:28] C:\DOCUME~1\MAILYS~1\APPLIC~1\NCH Swift Sound
[11/03/2006|10:39] C:\DOCUME~1\MAILYS~1\APPLIC~1\PlayFirst
[17/12/2007|21:16] C:\DOCUME~1\MAILYS~1\APPLIC~1\Samsung
[04/11/2007|00:16] C:\DOCUME~1\MAILYS~1\APPLIC~1\Sandlot Games
[14/05/2007|16:13] C:\DOCUME~1\MAILYS~1\APPLIC~1\Screenshot Sender
[19/11/2006|12:27] C:\DOCUME~1\MAILYS~1\APPLIC~1\Skype
[12/03/2006|19:18] C:\DOCUME~1\MAILYS~1\APPLIC~1\Sun
[23/01/2005|12:13] C:\DOCUME~1\MAILYS~1\APPLIC~1\Symantec
[24/06/2006|23:02] C:\DOCUME~1\MAILYS~1\APPLIC~1\TuneUp Software
[14/04/2007|15:23] C:\DOCUME~1\MAILYS~1\APPLIC~1\uTorrent
[25/06/2006|10:45] C:\DOCUME~1\MAILYS~1\APPLIC~1\Vso
[19/02/2008|00:25] C:\DOCUME~1\MAILYS~1\APPLIC~1\WinRAR
[05/06/2006|22:59] C:\DOCUME~1\MAILYS~1\APPLIC~1\Zylom

[17/02/2006|16:03] C:\DOCUME~1\NELLYL~1\APPLIC~1\.
[17/02/2006|16:03] C:\DOCUME~1\NELLYL~1\APPLIC~1\..
[23/01/2005|11:51] C:\DOCUME~1\NELLYL~1\APPLIC~1\desktop.ini
[15/10/2007|16:57] C:\DOCUME~1\NELLYL~1\APPLIC~1\Else plus
[26/09/2006|19:00] C:\DOCUME~1\NELLYL~1\APPLIC~1\Google
[23/01/2005|12:07] C:\DOCUME~1\NELLYL~1\APPLIC~1\Identities
[17/02/2006|16:08] C:\DOCUME~1\NELLYL~1\APPLIC~1\Macromedia
[23/01/2005|11:51] C:\DOCUME~1\NELLYL~1\APPLIC~1\Microsoft
[23/01/2005|12:13] C:\DOCUME~1\NELLYL~1\APPLIC~1\Symantec
[24/04/2006|13:30] C:\DOCUME~1\NELLYL~1\APPLIC~1\WinAntiVirus Pro 2006

[07/04/2006|10:12] C:\DOCUME~1\LOLO\APPLIC~1\.
[07/04/2006|10:12] C:\DOCUME~1\LOLO\APPLIC~1\..
[29/12/2006|14:44] C:\DOCUME~1\LOLO\APPLIC~1\Adobe
[23/01/2005|11:51] C:\DOCUME~1\LOLO\APPLIC~1\desktop.ini
[09/02/2008|11:40] C:\DOCUME~1\LOLO\APPLIC~1\Else plus
[15/09/2006|11:53] C:\DOCUME~1\LOLO\APPLIC~1\Google
[23/01/2005|12:07] C:\DOCUME~1\LOLO\APPLIC~1\Identities
[13/03/2007|16:25] C:\DOCUME~1\LOLO\APPLIC~1\InstallShield
[07/04/2006|10:23] C:\DOCUME~1\LOLO\APPLIC~1\Macromedia
[23/01/2005|11:51] C:\DOCUME~1\LOLO\APPLIC~1\Microsoft
[15/09/2006|11:52] C:\DOCUME~1\LOLO\APPLIC~1\MSNInstaller
[23/01/2005|12:13] C:\DOCUME~1\LOLO\APPLIC~1\Symantec

[22/10/2006|03:26] C:\DOCUME~1\gwenn\APPLIC~1\.
[22/10/2006|03:26] C:\DOCUME~1\gwenn\APPLIC~1\..
[21/02/2008|00:36] C:\DOCUME~1\gwenn\APPLIC~1\Adobe
[23/01/2005|11:51] C:\DOCUME~1\gwenn\APPLIC~1\desktop.ini
[21/02/2008|00:36] C:\DOCUME~1\gwenn\APPLIC~1\Else plus
[22/10/2006|17:43] C:\DOCUME~1\gwenn\APPLIC~1\Google
[26/10/2006|00:26] C:\DOCUME~1\gwenn\APPLIC~1\Help
[23/01/2005|12:07] C:\DOCUME~1\gwenn\APPLIC~1\Identities
[22/10/2006|17:35] C:\DOCUME~1\gwenn\APPLIC~1\Macromedia
[23/01/2005|11:51] C:\DOCUME~1\gwenn\APPLIC~1\Microsoft
[13/01/2007|19:01] C:\DOCUME~1\gwenn\APPLIC~1\PlayFirst
[23/01/2005|12:13] C:\DOCUME~1\gwenn\APPLIC~1\Symantec

[23/10/2006|19:37] C:\DOCUME~1\INVIT\APPLIC~1\.
[23/10/2006|19:37] C:\DOCUME~1\INVIT\APPLIC~1\..
[23/01/2005|11:51] C:\DOCUME~1\INVIT\APPLIC~1\desktop.ini
[11/11/2007|14:52] C:\DOCUME~1\INVIT\APPLIC~1\Else plus
[16/12/2006|19:26] C:\DOCUME~1\INVIT\APPLIC~1\Google
[23/01/2005|12:07] C:\DOCUME~1\INVIT\APPLIC~1\Identities
[16/12/2006|19:22] C:\DOCUME~1\INVIT\APPLIC~1\Macromedia
[23/01/2005|11:51] C:\DOCUME~1\INVIT\APPLIC~1\Microsoft
[23/01/2005|12:13] C:\DOCUME~1\INVIT\APPLIC~1\Symantec

----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

[21/04/2008 21:32][--a------] C:\WINDOWS\tasks\Norton Internet Security - Effectuer une analyse complŠte du systŠme - Mailys RENAUD.job
[23/04/2008 02:14][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[21/04/2008 18:24][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[11/04/2008 22:58][--a------] C:\WINDOWS\tasks\Maintenance en 1 clic.job
[23/04/2008 01:30][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 05:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[02/12/2005|02:41] C:\Program Files\.
[02/12/2005|02:41] C:\Program Files\..
[15/02/2006|14:36] C:\Program Files\Acer
[23/01/2005|12:10] C:\Program Files\Adobe
[19/04/2007|18:19] C:\Program Files\ADSL Drivers
[19/02/2006|23:42] C:\Program Files\Advanced Messenger Plus
[22/04/2007|22:53] C:\Program Files\Akimania
[07/01/2008|16:02] C:\Program Files\Alwil Software
[23/01/2005|12:16] C:\Program Files\AMD
[05/07/2007|21:59] C:\Program Files\Apple Software Update
[07/01/2008|17:00] C:\Program Files\a-squared Free
[10/04/2006|10:01] C:\Program Files\Atlantis
[10/03/2007|13:24] C:\Program Files\Avanquest update
[23/01/2005|12:07] C:\Program Files\AvRack
[01/11/2007|23:51] C:\Program Files\Azureus
[08/03/2006|22:27] C:\Program Files\Boonty
[08/03/2006|22:23] C:\Program Files\BoontyGames
[18/02/2006|14:13] C:\Program Files\Bullfrog
[31/07/2006|00:08] C:\Program Files\CDBurnerXP Pro 3
[31/07/2006|00:07] C:\Program Files\cdbxp_setup_3.0.116.zip
[24/04/2006|19:14] C:\Program Files\Common Files
[23/01/2005|11:56] C:\Program Files\ComPlus Applications
[19/09/2006|22:32] C:\Program Files\Corel
[23/01/2005|12:13] C:\Program Files\CyberLink
[26/08/2006|15:21] C:\Program Files\Digital Photo Navigator 1.0
[29/03/2006|21:32] C:\Program Files\DivX
[31/05/2006|17:56] C:\Program Files\EA GAMES
[07/02/2008|16:19] C:\Program Files\Else plus
[19/02/2006|12:39] C:\Program Files\eMule
[17/02/2006|17:10] C:\Program Files\EPSON
[25/06/2006|03:52] C:\Program Files\ESET
[23/01/2005|11:52] C:\Program Files\Fichiers communs
[20/02/2008|21:57] C:\Program Files\FileZilla
[02/02/2007|16:39] C:\Program Files\Global Graphics
[23/04/2006|22:47] C:\Program Files\GlobFX Technologies
[18/08/2006|17:24] C:\Program Files\Google
[24/02/2007|18:10] C:\Program Files\GoogleEarthWin_EARA.exe
[07/12/2006|21:22] C:\Program Files\IKEA HomePlanner
[23/01/2005|12:07] C:\Program Files\InstallShield Installation Information
[23/01/2005|11:56] C:\Program Files\Internet Explorer
[05/07/2007|22:00] C:\Program Files\iPod
[08/02/2007|18:57] C:\Program Files\IrfanView
[05/07/2007|22:00] C:\Program Files\iTunes
[15/02/2006|14:34] C:\Program Files\Java
[15/02/2006|20:58] C:\Program Files\Kodak
[15/02/2006|15:58] C:\Program Files\Logitech
[29/12/2007|17:13] C:\Program Files\Macrogaming
[25/12/2006|17:34] C:\Program Files\Maxis
[08/03/2006|22:28] C:\Program Files\Mes Jeux Install‚s
[23/01/2005|11:55] C:\Program Files\Messenger
[14/05/2007|16:13] C:\Program Files\Messenger Plus! Live
[19/02/2006|23:55] C:\Program Files\MessengerPlus! 3
[07/12/2007|20:14] C:\Program Files\MessengerSkinner
[02/03/2007|16:39] C:\Program Files\Micro Application
[29/12/2007|21:00] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[23/01/2005|11:58] C:\Program Files\microsoft frontpage
[10/03/2006|20:56] C:\Program Files\Microsoft Office
[20/10/2006|12:15] C:\Program Files\Microsoft Visual Studio
[28/12/2006|23:19] C:\Program Files\Microsoft Works
[10/03/2007|13:37] C:\Program Files\Motorola Phone Tools
[23/01/2005|11:56] C:\Program Files\Movie Maker
[23/01/2005|11:55] C:\Program Files\MSN
[24/09/2006|12:54] C:\Program Files\MSN Games
[23/01/2005|11:55] C:\Program Files\MSN Gaming Zone
[23/04/2007|20:17] C:\Program Files\MSN Messenger
[16/11/2006|10:43] C:\Program Files\MSN Pictures Displayer
[19/11/2006|03:01] C:\Program Files\MSXML 4.0
[23/01/2005|11:56] C:\Program Files\NetMeeting
[23/01/2005|12:11] C:\Program Files\NewTech Infosystems
[09/02/2008|10:48] C:\Program Files\Norton Internet Security
[23/01/2005|11:55] C:\Program Files\Online Services
[23/01/2005|11:56] C:\Program Files\Outlook Express
[05/07/2007|21:59] C:\Program Files\QuickTime
[23/01/2005|12:07] C:\Program Files\Realtek AC97
[23/01/2005|12:07] C:\Program Files\Realtek Sound Manager
[10/04/2006|10:00] C:\Program Files\ReflexiveArcade
[17/12/2007|20:43] C:\Program Files\Samsung
[23/01/2005|11:57] C:\Program Files\Services en ligne
[03/09/2006|02:47] C:\Program Files\Singles
[19/11/2006|12:27] C:\Program Files\Skype
[09/02/2008|10:47] C:\Program Files\Symantec
[03/05/2006|23:40] C:\Program Files\Tracker Software
[22/04/2008|13:31] C:\Program Files\Trend Micro
[24/06/2006|23:02] C:\Program Files\TuneUp Utilities 2006
[23/01/2005|12:07] C:\Program Files\Uninstall Information
[14/04/2007|15:23] C:\Program Files\uTorrent
[26/03/2006|23:52] C:\Program Files\VSO
[15/02/2006|15:15] C:\Program Files\Wanadoo
[28/12/2006|23:32] C:\Program Files\WDVIEWER.EXE
[25/06/2006|03:02] C:\Program Files\Winamp
[19/03/2006|20:58] C:\Program Files\Windows Journal Viewer
[15/06/2007|18:38] C:\Program Files\Windows Live
[15/12/2006|20:49] C:\Program Files\Windows Live Toolbar
[20/04/2007|20:59] C:\Program Files\Windows Media Connect 2
[23/01/2005|11:55] C:\Program Files\Windows Media Player
[23/01/2005|11:55] C:\Program Files\Windows NT
[09/02/2008|10:53] C:\Program Files\Windows Sidebar
[23/01/2005|11:57] C:\Program Files\WindowsUpdate
[19/02/2008|00:25] C:\Program Files\WinRAR
[26/05/2007|20:35] C:\Program Files\winstat
[28/12/2006|23:19] C:\Program Files\wp6rtf.exe
[23/01/2005|11:58] C:\Program Files\xerox
[21/06/2006|16:16] C:\Program Files\Ypji
[01/01/2008|21:16] C:\Program Files\Zylom Games

------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------

[02/12/2005|02:41] C:\Program Files\Fichiers communs\.
[02/12/2005|02:41] C:\Program Files\Fichiers communs\..
[23/01/2005|12:10] C:\Program Files\Fichiers communs\Adobe
[05/07/2007|21:58] C:\Program Files\Fichiers communs\Apple
[08/03/2006|22:28] C:\Program Files\Fichiers communs\BOONTY Shared
[08/05/2006|19:25] C:\Program Files\Fichiers communs\Borland Shared
[19/09/2006|22:36] C:\Program Files\Fichiers communs\Corel
[20/10/2006|12:15] C:\Program Files\Fichiers communs\Designer
[15/02/2006|16:00] C:\Program Files\Fichiers communs\FotoWire
[23/01/2005|12:05] C:\Program Files\Fichiers communs\InstallShield
[06/04/1999|14:27] C:\Program Files\Fichiers communs\IRAABOUT.DLL
[09/12/1998|04:53] C:\Program Files\Fichiers communs\IRALPTTR.DLL
[09/12/1998|04:53] C:\Program Files\Fichiers communs\IRAMDMTR.DLL
[09/12/1998|04:53] C:\Program Files\Fichiers communs\IRAREG.DLL
[09/12/1998|04:53] C:\Program Files\Fichiers communs\IRASRIAL.DLL
[09/12/1998|04:53] C:\Program Files\Fichiers communs\IRAWEBTR.DLL
[15/02/2006|14:34] C:\Program Files\Fichiers communs\Java
[15/02/2006|20:59] C:\Program Files\Fichiers communs\Kodak
[15/02/2006|15:58] C:\Program Files\Fichiers communs\Logitech
[08/03/2006|22:43] C:\Program Files\Fichiers communs\Macrovision Shared
[23/01/2005|11:52] C:\Program Files\Fichiers communs\Microsoft Shared
[23/01/2005|11:56] C:\Program Files\Fichiers communs\MSSoap
[23/01/2005|12:12] C:\Program Files\Fichiers communs\muvee Technologies
[23/01/2005|12:11] C:\Program Files\Fichiers communs\NewTech Infosystems
[23/01/2005|11:52] C:\Program Files\Fichiers communs\ODBC
[13/10/2006|19:37] C:\Program Files\Fichiers communs\Sandlot Shared
[23/01/2005|11:56] C:\Program Files\Fichiers communs\Services
[23/01/2005|11:52] C:\Program Files\Fichiers communs\SpeechEngines
[09/02/2008|10:35] C:\Program Files\Fichiers communs\Symantec Shared
[23/01/2005|11:56] C:\Program Files\Fichiers communs\System
[28/12/2007|21:23] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[24/06/2006|23:01] C:\Program Files\Fichiers communs\Wise Installation Wizard

----------------------[ Recherche avec S_Lop ]---------------------

Aucun fichier / dossier Lop trouvé !

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

C:\DOCUME~1\MAILYS~1\APPLIC~1\ELSE PLUS
C:\DOCUME~1\MAILYS~1\APPLIC~1\ELSE PLUS\ejxtuubq.exe
C:\DOCUME~1\NELLYL~1\APPLIC~1\ELSE PLUS
C:\DOCUME~1\NELLYL~1\APPLIC~1\ELSE PLUS\JoyPokeForkBlue.exe
C:\DOCUME~1\NELLYL~1\APPLIC~1\ELSE PLUS\zwuwnfee.exe
C:\DOCUME~1\NELLYL~1\APPLIC~1\ELSE PLUS\wpkqeyrh.exe
C:\DOCUME~1\LOLO\APPLIC~1\ELSE PLUS
C:\DOCUME~1\gwenn\APPLIC~1\ELSE PLUS
C:\DOCUME~1\INVIT\APPLIC~1\ELSE PLUS
C:\Program Files\ELSE PLUS
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Joy coal mpeg heck
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Joy coal mpeg heck\Active Real.exe
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Joy coal mpeg heck\does chic.exe

----------------------[ Verification du Registre ]----------------------

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"mpeg heck log link"="C:\\Documents and Settings\\All Users\\Application Data\\Joy coal mpeg heck\\does chic.exe"

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts MODIFIE

127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD
127.0.0.1 download.errorsafe.com ## added by CiD
127.0.0.1 download.systemdoctor.com ## added by CiD
127.0.0.1 download.winantispyware.com ## added by CiD
127.0.0.1 download.windrivecleaner.com ## added by CiD
127.0.0.1 download.winfixer.com ## added by CiD
127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 es.winantivirus.com ## added by CiD
127.0.0.1 fr.winantivirus.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 go.winantivirus.com ## added by CiD
127.0.0.1 hk.winantivirus.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 instlog.winantivirus.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 kb.winantivirus.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 secure.winantivirus.com ## added by CiD
127.0.0.1 support.winantivirus.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 ulog.winantivirus.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 utils.winantivirus.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winantivirus.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 www.drivecleaner.com ## added by CiD
127.0.0.1 www.errorprotector.com ## added by CiD
127.0.0.1 www.errorsafe.com ## added by CiD
127.0.0.1 www.systemdoctor.com ## added by CiD
127.0.0.1 www.utils.winfixer.com ## added by CiD
127.0.0.1 www.win-anti-virus-pro.com ## added by CiD
127.0.0.1 www.win-virus-pro.com ## added by CiD
127.0.0.1 www.winantispam.com ## added by CiD
127.0.0.1 www.winantispy.com ## added by CiD
127.0.0.1 www.winantispyware.com ## added by CiD
127.0.0.1 www.winantivirus.com ## added by CiD
127.0.0.1 www.winantiviruspro.com ## added by CiD
127.0.0.1 www.windrivecleaner.com ## added by CiD
127.0.0.1 www.windrivesafe.com ## added by CiD
127.0.0.1 www.winfixer.com ## added by CiD
127.0.0.1 www.winfixer2006.com ## added by CiD
127.0.0.1 www.winsoftware.com ## added by CiD

-> 72 ( 70 ## added by CiD )

/!\ 1 Not 127.0.0.1 !!

----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-04-23 02:17:05
Windows 5.1.2600 Service Pack 2 FAT NTAPI
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------

C:\WINDOWS\system32\nvs2.inf
! EGDACCESS !


/!\ [Fich:76][Doss:5] C:\DOCUME~1\gwenn\LOCALS~1\Temp
/!\ [Fich:234][Doss:0] C:\DOCUME~1\gwenn\Cookies
/!\ [Fich:16885][Doss:16] C:\DOCUME~1\gwenn\LOCALS~1\TEMPOR~1\content.IE5

--------------------[ Fin du rapport a 2:17:36,29 ]----------------------

Re,

Tu as une autre infection en plus..

Relance Lop S&D

Choisis cette fois ci l'Option 2 ( Suppression )

Ne ferme pas la fenêtre lors de la suppression !

Poste le rapport généré ( C:\lopR.txt )

Si ton bureau ne réapparait pas, fais CTRL+ALT+SUPP pour ouvrir le gestionnaire de tâches.
Puis rends-toi à l'onglet "processus". Clique en haut à gauche sur fichiers et choisis "Nouvelle tâche (exécuter)"
Tapes explorer et valide. Cela te fera apparaitre ton bureau

***********

Sélectionne l'intégralité du cadre ci-dessous :

@echo off
CD \
dir /s /a "\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst" > "%userprofile%\bureau\lop.log"
dir /s /a "\DOCUME~1\ALLUSE~1\APPLIC~1\WmaLiteDefaultCamp" >> "%userprofile%\bureau\lop.log"
pause
color cf
echo /!\ PRIERE DE POSTER LE RAPPORT QUI VA S'OUVRIR SUR LE FORUM /!\
pause
%userprofile%\bureau\lop.log & del /f /q %userprofile%\bureau\lop.log, %userprofile%\bureau\lop.bat
exit

Copie/colle le dans le Bloc Notes (Démarrer\Tous les programmes\Accessoires\Bloc notes.)
Enregistre le sous sur ton bureau sous le nom de lop.bat
Double-clique dessus.

voici le rapport généré par Lop S&D:

-----------------------[ Lop S&D 4.1.1-7 XP/Vista ]---------------------

[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : gwenn ] [ "C:\Lop SD" ]
[ 23/04/2008 | 13:15:48,62 ] [ PC : MALILISME ]
[ MAJ : 22-04-2008 | 22:25 ]

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////

Supprimé! - C:\DOCUME~1\MAILYS~1\APPLIC~1\ELSE PLUS\ejxtuubq.exe
Supprimé! - C:\DOCUME~1\NELLYL~1\APPLIC~1\ELSE PLUS\JoyPokeForkBlue.exe
Supprimé! - C:\DOCUME~1\NELLYL~1\APPLIC~1\ELSE PLUS\zwuwnfee.exe
Supprimé! - C:\DOCUME~1\NELLYL~1\APPLIC~1\ELSE PLUS\wpkqeyrh.exe
Supprimé! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Joy coal mpeg heck\Active Real.exe
Supprimé! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Joy coal mpeg heck\does chic.exe
Supprimé! - C:\DOCUME~1\MAILYS~1\APPLIC~1\ELSE PLUS
Supprimé! - C:\DOCUME~1\NELLYL~1\APPLIC~1\ELSE PLUS
Supprimé! - C:\DOCUME~1\LOLO\APPLIC~1\ELSE PLUS
Supprimé! - C:\DOCUME~1\gwenn\APPLIC~1\ELSE PLUS
Supprimé! - C:\DOCUME~1\INVIT\APPLIC~1\ELSE PLUS
Supprimé! - C:\Program Files\ELSE PLUS
Supprimé! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Joy coal mpeg heck
Restauré! - Fichier Hosts

//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


-------------[ Listing des dossiers dans Application Data ]------------

[02/12/2005|02:41] C:\DOCUME~1\DEFAUL~1\APPLIC~1\.
[02/12/2005|02:41] C:\DOCUME~1\DEFAUL~1\APPLIC~1\..
[11/02/2008|20:05] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Apple Computer
[23/01/2005|11:51] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[23/01/2005|12:07] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[23/01/2005|11:51] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[23/01/2005|12:13] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec

[02/12/2005|02:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\.
[02/12/2005|02:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\..
[23/01/2005|12:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[22/01/2008|19:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Aliasworlds
[05/07/2007|21:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[05/07/2007|21:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[01/11/2007|23:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Azureus
[08/03/2006|22:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[10/03/2007|13:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BVRP Software
[19/09/2006|22:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Corel
[19/02/2006|12:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[23/01/2005|11:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[16/02/2006|18:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\eConsole
[28/01/2008|00:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Fugazo
[12/09/2006|11:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[03/11/2007|23:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HipSoft
[13/10/2006|20:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\iWin
[15/02/2006|20:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kodak
[17/12/2007|21:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\LauncherAccess.dt
[08/03/2006|22:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
[20/02/2006|11:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[23/01/2005|11:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[18/06/2007|01:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NannyMania
[01/05/2006|18:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
[30/10/2006|11:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Oberon Media
[24/09/2006|12:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst
[22/02/2008|01:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QTSBandwidthCache
[15/02/2006|21:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[13/10/2006|19:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sandlot Games
[23/01/2005|12:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[19/01/2007|10:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[24/06/2006|23:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TuneUp Software
[15/07/2006|15:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\UDL
[19/03/2006|20:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[15/12/2006|20:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[28/12/2007|21:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[21/04/2006|15:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WmaLiteDefaultCamp
[05/06/2006|22:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom

[02/12/2005|02:41] C:\DOCUME~1\NETWOR~1\APPLIC~1\.
[02/12/2005|02:41] C:\DOCUME~1\NETWOR~1\APPLIC~1\..
[23/01/2005|11:51] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[07/03/2006|20:38] C:\DOCUME~1\NETWOR~1\APPLIC~1\Symantec

[02/12/2005|02:41] C:\DOCUME~1\LOCALS~1\APPLIC~1\.
[02/12/2005|02:41] C:\DOCUME~1\LOCALS~1\APPLIC~1\..
[23/01/2005|11:51] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[15/02/2006|14:33] C:\DOCUME~1\MAILYS~1\APPLIC~1\.
[15/02/2006|14:33] C:\DOCUME~1\MAILYS~1\APPLIC~1\..
[19/02/2006|12:23] C:\DOCUME~1\MAILYS~1\APPLIC~1\Adobe
[23/04/2006|18:31] C:\DOCUME~1\MAILYS~1\APPLIC~1\AdobeUM
[05/07/2007|22:00] C:\DOCUME~1\MAILYS~1\APPLIC~1\Apple Computer
[01/11/2007|23:57] C:\DOCUME~1\MAILYS~1\APPLIC~1\Azureus
[25/06/2006|10:46] C:\DOCUME~1\MAILYS~1\APPLIC~1\CopyToDvd
[19/09/2006|22:38] C:\DOCUME~1\MAILYS~1\APPLIC~1\Corel
[08/04/2006|20:54] C:\DOCUME~1\MAILYS~1\APPLIC~1\CyberLink
[23/01/2005|11:51] C:\DOCUME~1\MAILYS~1\APPLIC~1\desktop.ini
[02/08/2006|16:35] C:\DOCUME~1\MAILYS~1\APPLIC~1\EPSON
[15/02/2006|16:00] C:\DOCUME~1\MAILYS~1\APPLIC~1\FotoWire
[19/01/2007|10:01] C:\DOCUME~1\MAILYS~1\APPLIC~1\Gaijin Ent
[18/08/2006|17:24] C:\DOCUME~1\MAILYS~1\APPLIC~1\Google
[27/03/2006|00:43] C:\DOCUME~1\MAILYS~1\APPLIC~1\Help
[23/01/2005|12:07] C:\DOCUME~1\MAILYS~1\APPLIC~1\Identities
[10/03/2007|13:33] C:\DOCUME~1\MAILYS~1\APPLIC~1\InstallShield
[13/10/2006|20:30] C:\DOCUME~1\MAILYS~1\APPLIC~1\iWin
[25/11/2007|13:59] C:\DOCUME~1\MAILYS~1\APPLIC~1\Jane s Hotel
[15/02/2006|15:18] C:\DOCUME~1\MAILYS~1\APPLIC~1\Macromedia
[07/12/2007|20:15] C:\DOCUME~1\MAILYS~1\APPLIC~1\MessengerSkinner
[23/01/2005|11:51] C:\DOCUME~1\MAILYS~1\APPLIC~1\Microsoft
[20/10/2006|12:13] C:\DOCUME~1\MAILYS~1\APPLIC~1\Microsoft Web Folders
[16/02/2008|14:26] C:\DOCUME~1\MAILYS~1\APPLIC~1\MSN Pictures Displayer
[22/09/2006|19:54] C:\DOCUME~1\MAILYS~1\APPLIC~1\MSNInstaller
[25/11/2007|16:38] C:\DOCUME~1\MAILYS~1\APPLIC~1\My Games
[30/07/2006|23:28] C:\DOCUME~1\MAILYS~1\APPLIC~1\NCH Swift Sound
[11/03/2006|10:39] C:\DOCUME~1\MAILYS~1\APPLIC~1\PlayFirst
[17/12/2007|21:16] C:\DOCUME~1\MAILYS~1\APPLIC~1\Samsung
[04/11/2007|00:16] C:\DOCUME~1\MAILYS~1\APPLIC~1\Sandlot Games
[14/05/2007|16:13] C:\DOCUME~1\MAILYS~1\APPLIC~1\Screenshot Sender
[19/11/2006|12:27] C:\DOCUME~1\MAILYS~1\APPLIC~1\Skype
[12/03/2006|19:18] C:\DOCUME~1\MAILYS~1\APPLIC~1\Sun
[23/01/2005|12:13] C:\DOCUME~1\MAILYS~1\APPLIC~1\Symantec
[24/06/2006|23:02] C:\DOCUME~1\MAILYS~1\APPLIC~1\TuneUp Software
[14/04/2007|15:23] C:\DOCUME~1\MAILYS~1\APPLIC~1\uTorrent
[25/06/2006|10:45] C:\DOCUME~1\MAILYS~1\APPLIC~1\Vso
[19/02/2008|00:25] C:\DOCUME~1\MAILYS~1\APPLIC~1\WinRAR
[05/06/2006|22:59] C:\DOCUME~1\MAILYS~1\APPLIC~1\Zylom

[17/02/2006|16:03] C:\DOCUME~1\NELLYL~1\APPLIC~1\.
[17/02/2006|16:03] C:\DOCUME~1\NELLYL~1\APPLIC~1\..
[23/01/2005|11:51] C:\DOCUME~1\NELLYL~1\APPLIC~1\desktop.ini
[26/09/2006|19:00] C:\DOCUME~1\NELLYL~1\APPLIC~1\Google
[23/01/2005|12:07] C:\DOCUME~1\NELLYL~1\APPLIC~1\Identities
[17/02/2006|16:08] C:\DOCUME~1\NELLYL~1\APPLIC~1\Macromedia
[23/01/2005|11:51] C:\DOCUME~1\NELLYL~1\APPLIC~1\Microsoft
[23/01/2005|12:13] C:\DOCUME~1\NELLYL~1\APPLIC~1\Symantec
[24/04/2006|13:30] C:\DOCUME~1\NELLYL~1\APPLIC~1\WinAntiVirus Pro 2006

[07/04/2006|10:12] C:\DOCUME~1\LOLO\APPLIC~1\.
[07/04/2006|10:12] C:\DOCUME~1\LOLO\APPLIC~1\..
[29/12/2006|14:44] C:\DOCUME~1\LOLO\APPLIC~1\Adobe
[23/01/2005|11:51] C:\DOCUME~1\LOLO\APPLIC~1\desktop.ini
[15/09/2006|11:53] C:\DOCUME~1\LOLO\APPLIC~1\Google
[23/01/2005|12:07] C:\DOCUME~1\LOLO\APPLIC~1\Identities
[13/03/2007|16:25] C:\DOCUME~1\LOLO\APPLIC~1\InstallShield
[07/04/2006|10:23] C:\DOCUME~1\LOLO\APPLIC~1\Macromedia
[23/01/2005|11:51] C:\DOCUME~1\LOLO\APPLIC~1\Microsoft
[15/09/2006|11:52] C:\DOCUME~1\LOLO\APPLIC~1\MSNInstaller
[23/01/2005|12:13] C:\DOCUME~1\LOLO\APPLIC~1\Symantec

[22/10/2006|03:26] C:\DOCUME~1\gwenn\APPLIC~1\.
[22/10/2006|03:26] C:\DOCUME~1\gwenn\APPLIC~1\..
[21/02/2008|00:36] C:\DOCUME~1\gwenn\APPLIC~1\Adobe
[23/01/2005|11:51] C:\DOCUME~1\gwenn\APPLIC~1\desktop.ini
[22/10/2006|17:43] C:\DOCUME~1\gwenn\APPLIC~1\Google
[26/10/2006|00:26] C:\DOCUME~1\gwenn\APPLIC~1\Help
[23/01/2005|12:07] C:\DOCUME~1\gwenn\APPLIC~1\Identities
[22/10/2006|17:35] C:\DOCUME~1\gwenn\APPLIC~1\Macromedia
[23/01/2005|11:51] C:\DOCUME~1\gwenn\APPLIC~1\Microsoft
[13/01/2007|19:01] C:\DOCUME~1\gwenn\APPLIC~1\PlayFirst
[23/01/2005|12:13] C:\DOCUME~1\gwenn\APPLIC~1\Symantec

[23/10/2006|19:37] C:\DOCUME~1\INVIT\APPLIC~1\.
[23/10/2006|19:37] C:\DOCUME~1\INVIT\APPLIC~1\..
[23/01/2005|11:51] C:\DOCUME~1\INVIT\APPLIC~1\desktop.ini
[16/12/2006|19:26] C:\DOCUME~1\INVIT\APPLIC~1\Google
[23/01/2005|12:07] C:\DOCUME~1\INVIT\APPLIC~1\Identities
[16/12/2006|19:22] C:\DOCUME~1\INVIT\APPLIC~1\Macromedia
[23/01/2005|11:51] C:\DOCUME~1\INVIT\APPLIC~1\Microsoft
[23/01/2005|12:13] C:\DOCUME~1\INVIT\APPLIC~1\Symantec

----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

[21/04/2008 21:32][--a------] C:\WINDOWS\tasks\Norton Internet Security - Effectuer une analyse complŠte du systŠme - Mailys RENAUD.job
[23/04/2008 13:15][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[21/04/2008 18:24][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[11/04/2008 22:58][--a------] C:\WINDOWS\tasks\Maintenance en 1 clic.job
[23/04/2008 01:30][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 05:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[02/12/2005|02:41] C:\Program Files\.
[02/12/2005|02:41] C:\Program Files\..
[15/02/2006|14:36] C:\Program Files\Acer
[23/01/2005|12:10] C:\Program Files\Adobe
[19/04/2007|18:19] C:\Program Files\ADSL Drivers
[19/02/2006|23:42] C:\Program Files\Advanced Messenger Plus
[22/04/2007|22:53] C:\Program Files\Akimania
[07/01/2008|16:02] C:\Program Files\Alwil Software
[23/01/2005|12:16] C:\Program Files\AMD
[05/07/2007|21:59] C:\Program Files\Apple Software Update
[07/01/2008|17:00] C:\Program Files\a-squared Free
[10/04/2006|10:01] C:\Program Files\Atlantis
[10/03/2007|13:24] C:\Program Files\Avanquest update
[23/01/2005|12:07] C:\Program Files\AvRack
[01/11/2007|23:51] C:\Program Files\Azureus
[08/03/2006|22:27] C:\Program Files\Boonty
[08/03/2006|22:23] C:\Program Files\BoontyGames
[18/02/2006|14:13] C:\Program Files\Bullfrog
[31/07/2006|00:08] C:\Program Files\CDBurnerXP Pro 3
[31/07/2006|00:07] C:\Program Files\cdbxp_setup_3.0.116.zip
[24/04/2006|19:14] C:\Program Files\Common Files
[23/01/2005|11:56] C:\Program Files\ComPlus Applications
[19/09/2006|22:32] C:\Program Files\Corel
[23/01/2005|12:13] C:\Program Files\CyberLink
[26/08/2006|15:21] C:\Program Files\Digital Photo Navigator 1.0
[29/03/2006|21:32] C:\Program Files\DivX
[31/05/2006|17:56] C:\Program Files\EA GAMES
[19/02/2006|12:39] C:\Program Files\eMule
[17/02/2006|17:10] C:\Program Files\EPSON
[25/06/2006|03:52] C:\Program Files\ESET
[23/01/2005|11:52] C:\Program Files\Fichiers communs
[20/02/2008|21:57] C:\Program Files\FileZilla
[02/02/2007|16:39] C:\Program Files\Global Graphics
[23/04/2006|22:47] C:\Program Files\GlobFX Technologies
[18/08/2006|17:24] C:\Program Files\Google
[24/02/2007|18:10] C:\Program Files\GoogleEarthWin_EARA.exe
[07/12/2006|21:22] C:\Program Files\IKEA HomePlanner
[23/01/2005|12:07] C:\Program Files\InstallShield Installation Information
[23/01/2005|11:56] C:\Program Files\Internet Explorer
[05/07/2007|22:00] C:\Program Files\iPod
[08/02/2007|18:57] C:\Program Files\IrfanView
[05/07/2007|22:00] C:\Program Files\iTunes
[15/02/2006|14:34] C:\Program Files\Java
[15/02/2006|20:58] C:\Program Files\Kodak
[15/02/2006|15:58] C:\Program Files\Logitech
[29/12/2007|17:13] C:\Program Files\Macrogaming
[25/12/2006|17:34] C:\Program Files\Maxis
[08/03/2006|22:28] C:\Program Files\Mes Jeux Install‚s
[23/01/2005|11:55] C:\Program Files\Messenger
[14/05/2007|16:13] C:\Program Files\Messenger Plus! Live
[19/02/2006|23:55] C:\Program Files\MessengerPlus! 3
[07/12/2007|20:14] C:\Program Files\MessengerSkinner
[02/03/2007|16:39] C:\Program Files\Micro Application
[29/12/2007|21:00] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[23/01/2005|11:58] C:\Program Files\microsoft frontpage
[10/03/2006|20:56] C:\Program Files\Microsoft Office
[20/10/2006|12:15] C:\Program Files\Microsoft Visual Studio
[28/12/2006|23:19] C:\Program Files\Microsoft Works
[10/03/2007|13:37] C:\Program Files\Motorola Phone Tools
[23/01/2005|11:56] C:\Program Files\Movie Maker
[23/01/2005|11:55] C:\Program Files\MSN
[24/09/2006|12:54] C:\Program Files\MSN Games
[23/01/2005|11:55] C:\Program Files\MSN Gaming Zone
[23/04/2007|20:17] C:\Program Files\MSN Messenger
[16/11/2006|10:43] C:\Program Files\MSN Pictures Displayer
[19/11/2006|03:01] C:\Program Files\MSXML 4.0
[23/01/2005|11:56] C:\Program Files\NetMeeting
[23/01/2005|12:11] C:\Program Files\NewTech Infosystems
[09/02/2008|10:48] C:\Program Files\Norton Internet Security
[23/01/2005|11:55] C:\Program Files\Online Services
[23/01/2005|11:56] C:\Program Files\Outlook Express
[05/07/2007|21:59] C:\Program Files\QuickTime
[23/01/2005|12:07] C:\Program Files\Realtek AC97
[23/01/2005|12:07] C:\Program Files\Realtek Sound Manager
[10/04/2006|10:00] C:\Program Files\ReflexiveArcade
[17/12/2007|20:43] C:\Program Files\Samsung
[23/01/2005|11:57] C:\Program Files\Services en ligne
[03/09/2006|02:47] C:\Program Files\Singles
[19/11/2006|12:27] C:\Program Files\Skype
[09/02/2008|10:47] C:\Program Files\Symantec
[03/05/2006|23:40] C:\Program Files\Tracker Software
[22/04/2008|13:31] C:\Program Files\Trend Micro
[24/06/2006|23:02] C:\Program Files\TuneUp Utilities 2006
[23/01/2005|12:07] C:\Program Files\Uninstall Information
[14/04/2007|15:23] C:\Program Files\uTorrent
[26/03/2006|23:52] C:\Program Files\VSO
[15/02/2006|15:15] C:\Program Files\Wanadoo
[28/12/2006|23:32] C:\Program Files\WDVIEWER.EXE
[25/06/2006|03:02] C:\Program Files\Winamp
[19/03/2006|20:58] C:\Program Files\Windows Journal Viewer
[15/06/2007|18:38] C:\Program Files\Windows Live
[15/12/2006|20:49] C:\Program Files\Windows Live Toolbar
[20/04/2007|20:59] C:\Program Files\Windows Media Connect 2
[23/01/2005|11:55] C:\Program Files\Windows Media Player
[23/01/2005|11:55] C:\Program Files\Windows NT
[09/02/2008|10:53] C:\Program Files\Windows Sidebar
[23/01/2005|11:57] C:\Program Files\WindowsUpdate
[19/02/2008|00:25] C:\Program Files\WinRAR
[26/05/2007|20:35] C:\Program Files\winstat
[28/12/2006|23:19] C:\Program Files\wp6rtf.exe
[23/01/2005|11:58] C:\Program Files\xerox
[21/06/2006|16:16] C:\Program Files\Ypji
[01/01/2008|21:16] C:\Program Files\Zylom Games

------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------

[02/12/2005|02:41] C:\Program Files\Fichiers communs\.
[02/12/2005|02:41] C:\Program Files\Fichiers communs\..
[23/01/2005|12:10] C:\Program Files\Fichiers communs\Adobe
[05/07/2007|21:58] C:\Program Files\Fichiers communs\Apple
[08/03/2006|22:28] C:\Program Files\Fichiers communs\BOONTY Shared
[08/05/2006|19:25] C:\Program Files\Fichiers communs\Borland Shared
[19/09/2006|22:36] C:\Program Files\Fichiers communs\Corel
[20/10/2006|12:15] C:\Program Files\Fichiers communs\Designer
[15/02/2006|16:00] C:\Program Files\Fichiers communs\FotoWire
[23/01/2005|12:05] C:\Program Files\Fichiers communs\InstallShield
[06/04/1999|14:27] C:\Program Files\Fichiers communs\IRAABOUT.DLL
[09/12/1998|04:53] C:\Program Files\Fichiers communs\IRALPTTR.DLL
[09/12/1998|04:53] C:\Program Files\Fichiers communs\IRAMDMTR.DLL
[09/12/1998|04:53] C:\Program Files\Fichiers communs\IRAREG.DLL
[09/12/1998|04:53] C:\Program Files\Fichiers communs\IRASRIAL.DLL
[09/12/1998|04:53] C:\Program Files\Fichiers communs\IRAWEBTR.DLL
[15/02/2006|14:34] C:\Program Files\Fichiers communs\Java
[15/02/2006|20:59] C:\Program Files\Fichiers communs\Kodak
[15/02/2006|15:58] C:\Program Files\Fichiers communs\Logitech
[08/03/2006|22:43] C:\Program Files\Fichiers communs\Macrovision Shared
[23/01/2005|11:52] C:\Program Files\Fichiers communs\Microsoft Shared
[23/01/2005|11:56] C:\Program Files\Fichiers communs\MSSoap
[23/01/2005|12:12] C:\Program Files\Fichiers communs\muvee Technologies
[23/01/2005|12:11] C:\Program Files\Fichiers communs\NewTech Infosystems
[23/01/2005|11:52] C:\Program Files\Fichiers communs\ODBC
[13/10/2006|19:37] C:\Program Files\Fichiers communs\Sandlot Shared
[23/01/2005|11:56] C:\Program Files\Fichiers communs\Services
[23/01/2005|11:52] C:\Program Files\Fichiers communs\SpeechEngines
[09/02/2008|10:35] C:\Program Files\Fichiers communs\Symantec Shared
[23/01/2005|11:56] C:\Program Files\Fichiers communs\System
[28/12/2007|21:23] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[24/06/2006|23:01] C:\Program Files\Fichiers communs\Wise Installation Wizard

----------------------[ Recherche avec S_Lop ]---------------------

Aucun fichier / dossier Lop trouvé !

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

Aucun fichier / dossier Lop trouvé !

----------------------[ Verification du Registre ]----------------------

..... OK !

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts PROPRE


----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-04-23 13:17:02
Windows 5.1.2600 Service Pack 2 FAT NTAPI
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------

C:\WINDOWS\system32\nvs2.inf
! EGDACCESS !


/!\ [Fich:84][Doss:5] C:\DOCUME~1\gwenn\LOCALS~1\Temp
/!\ [Fich:283][Doss:0] C:\DOCUME~1\gwenn\Cookies
/!\ [Fich:18981][Doss:16] C:\DOCUME~1\gwenn\LOCALS~1\TEMPOR~1\content.IE5

--------------------[ Fin du rapport a 13:17:53,84 ]----------------------
qu'est ce que je dois maintenant avec lop.bat.

Tu as bien eu un rapport qui s'est ouvert ?

j'ai ce rapport la (mais il a un probleme):
Le volume dans le lecteur C s'appelle ACER
Le num‚ro de s‚rie du volume est 320D-180E

R‚pertoire de C:\DOCUME~1\ALLUSE~1\APPLIC~1\WmaLiteDefaultCamp

21/04/2006 15:25 <REP> .
21/04/2006 15:25 <REP> ..
18/09/2007 18:31 1ÿ980ÿ992 rulefindlog
24/03/2007 00:39 1ÿ454ÿ632 idolsiteslow
04/04/2007 21:16 2ÿ128 Balm Body More
20/08/2007 14:35 277ÿ688 bikewmanurb
4 fichier(s) 3ÿ715ÿ440 octets

Total des fichiers list‚sÿ:
4 fichier(s) 3ÿ715ÿ440 octets
2 R‚p(s) 44ÿ851ÿ265ÿ536 octets libres

Excuse moi, j'ai fait une erreur, refais-le bat (je l'ai édité) et poste moi le rapport.

pas de probleme voici le nouveau rapport:
Le volume dans le lecteur C s'appelle ACER
Le num‚ro de s‚rie du volume est 320D-180E

R‚pertoire de C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst

24/09/2006 12:55 <REP> .
24/09/2006 12:55 <REP> ..
24/09/2006 12:55 <REP> dinerdash2
07/12/2006 11:33 <REP> dinerdashfloonthego
14/10/2007 20:53 <REP> Diner Dash
03/11/2007 23:32 <REP> weddingdash
25/11/2007 15:29 <REP> chocolatier
05/01/2008 14:17 <REP> dreamchronicles
0 fichier(s) 0 octets

R‚pertoire de C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst\dinerdash2

24/09/2006 12:55 <REP> .
24/09/2006 12:55 <REP> ..
19/11/2007 18:34 <REP> activex
0 fichier(s) 0 octets

R‚pertoire de C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst\dinerdash2\activex

19/11/2007 18:34 <REP> .
19/11/2007 18:34 <REP> ..
0 fichier(s) 0 octets

R‚pertoire de C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst\dinerdashfloonthego

07/12/2006 11:33 <REP> .
07/12/2006 11:33 <REP> ..
0 fichier(s) 0 octets

R‚pertoire de C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst\Diner Dash

14/10/2007 20:53 <REP> .
14/10/2007 20:53 <REP> ..
0 fichier(s) 0 octets

R‚pertoire de C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst\weddingdash

03/11/2007 23:32 <REP> .
03/11/2007 23:32 <REP> ..
0 fichier(s) 0 octets

R‚pertoire de C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst\chocolatier

25/11/2007 15:29 <REP> .
25/11/2007 15:29 <REP> ..
0 fichier(s) 0 octets

R‚pertoire de C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst\dreamchronicles

05/01/2008 14:17 <REP> .
05/01/2008 14:17 <REP> ..
0 fichier(s) 0 octets

Total des fichiers list‚sÿ:
0 fichier(s) 0 octets
23 R‚p(s) 44ÿ851ÿ265ÿ536 octets libres
Le volume dans le lecteur C s'appelle ACER
Le num‚ro de s‚rie du volume est 320D-180E

R‚pertoire de C:\DOCUME~1\ALLUSE~1\APPLIC~1\WmaLiteDefaultCamp

21/04/2006 15:25 <REP> .
21/04/2006 15:25 <REP> ..
18/09/2007 18:31 1ÿ980ÿ992 rulefindlog
24/03/2007 00:39 1ÿ454ÿ632 idolsiteslow
04/04/2007 21:16 2ÿ128 Balm Body More
20/08/2007 14:35 277ÿ688 bikewmanurb
4 fichier(s) 3ÿ715ÿ440 octets

Total des fichiers list‚sÿ:
4 fichier(s) 3ÿ715ÿ440 octets
2 R‚p(s) 44ÿ851ÿ265ÿ536 octets libres

qu'est ce qu'il faut que je fasse maintenant

Re,

Si tu n'es pas d'accord pour supprimer Boonty, dis-le moi et ne fais pas ce qui suit.

Désinstalle via Ajout/Suppression de Programmes (si présents) :

SweetIm

Macromaging

Boonty


Télécharger OTMoveIt2. ( de OldTimer)

Enregistrece fichier sur le Bureau.

Fais un double clic sur OTMoveIt2.exe pour lancer l'exécution de l'outil. (Note: Si tu utilises Vista, fais un clic droit sur le fichier puis choisissez Exécuter en tant qu'administrateur).

Copie les lignes de la zone "Code" ci-dessous en les sélectionnant TOUTES puis en appuyant simultanément sur les touches CTRL et C (ou, après les avoir sélectionnées, en faisant un clic droit puis en choisissant Copier):

C:\Program Files\Fichiers communs\BOONTY Shared
C:\Program Files\Macrogaming
C:\Program Files\Boonty
C:\Program Files\BoontyGames
C:\DOCUME~1\NELLYL~1\APPLIC~1\WinAntiVirus Pro 2006
C:\DOCUME~1\ALLUSE~1\APPLIC~1\WmaLiteDefaultCamp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY

Retourne dans la fenêtre de OTMoveIt2, fais un clic droit dans la zone "Paste List of Files/Folders to Move" (sous la barre bleu clair) puis choisis Coller.

Clique sur le bouton rouge Moveit!.

Copie tout ce qui se trouve dans la zone Results (sous la barre verte) en sélectionnant TOUTES LES LIGNES puis en appuyant simultanément sur les touches CTRL et C (ou, après les avoir sélectionnées, en faisant un clic droit puis en choisissant Copier), et coller ces résulats en réponse sur le forum.

Ferme OTMoveIt2

Note: Si un fichier ou un dossier ne peut pas être déplacé immédiatement, un redémarrage sera peut-être nécessaire afin de terminer le processus de déplacement. Si le redémarrage de la machine t'est demandé, choisis Oui/Yes. Dans ce cas, après le redémarrage, ouvre le Bloc-notes (Démarrer->Tous les programmes->Accessoires->Bloc-notes), clique sur Fichier->Ouvrir, dans la zone "Nom du fichier" taper *.log et appuie sur la touche Entrée, navigue jusqu'au dossier C:\_OTMoveIt\MovedFiles, puis ouvre le fichier .log le plus récent; ensuite fais un copier/coller du contenu de ce document en réponse sur le forum.

Si tu obtiens un message comme quoi le rapport ne peut pas être créé, copie/colle ce qui apparaît dans la colonne droite de l’outil.

je n'ai ni boonty ni sweetim je fais quoi

Continue  

Logfile of HijackThis v1.99.1
Scan saved at 20:04:20, on 04/05/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\Spyware Doctor\svcntaux.exe
C:\Program Files\Spyware Doctor\swdsvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Spyware Doctor\SDTrayApp.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\DAEMON Tools Lite\daemon.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\NETGEAR\MA101 USB Adapter Configuration Utility\WlanMonitor.exe
C:\Program Files\Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter\WLANUTL.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\WinRAR\WinRAR.exe
C:\DOCUME~1\Mark\LOCALS~1\Temp\Rar$EX00.578\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.fr/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.fr/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.google.fr/keyword/%s
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
F2 - REG:system.ini: UserInit=C:\WINDOWS\SYSTEM32\userinit.exe
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O4 - HKLM\..\Run: [ace the math live] C:\Documents and Settings\All Users\Application Data\Mode eggs ace the\SPAM SUPPORT.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [CamserviceDeluxe2] C:\Program Files\Hercules\Deluxe Optical Glass\Camservice.exe /startup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SDTray] "C:\Program Files\Spyware Doctor\SDTrayApp.exe"
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [ADMIN REAL] C:\DOCUME~1\Mark\APPLIC~1\JOYSTA~1\Inside idol.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKCU\..\Run: [SpywareStop] C:\Program Files\SpywareStop\SpywareStop.exe -boot
O4 - Global Startup: MA101 Configuration Utility .lnk = ?
O4 - Global Startup: Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk = ?
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://fichiers.touslesdrivers.com/fichiers/hardwaredet...
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WINDOW~4\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WINDOW~4\MESSEN~1\MSGRAP~1.DLL
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\PROGRA~1\ALWILS~1\Avast4\ashMaiSv.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\svcntaux.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\swdsvc.exe

merci je pense que s'est comme cela que l'on supprime les pub cid

?