Salut,

Tu as une infection tenace : Bagle.

• Désactive l'UAC le temps de la désinfection.
• Télécharge FindyKill (par Chiquitine29) sur ton Bureau.
• Lance l'installation avec les paramètres par défaut.
• Clique droit sur le raccourci FindyKill situé sur ton Bureau. et choisis Exécuter en tant qu'administrateur .
• Au menu principal, choisis l'option 1 (Recherche).
• Poste le rapport FindyKill.txt

Note : le rapport FindyKill.txt est sauvegardé à la racine du disque.

http://www.commentcamarche.net/for [...] n32-valide

bambiemag ---> Reste ici sur IDN, ne poste pas ton sujet sur plusieurs forums sinon ton PC peut planter si tu suis plusieurs procédures en même temps.

Patiente.

C'est la nouvelle variante de Bagle ^^

/!\ Supprime tes cracks et keygens pour éviter une nouvelle infection. /!\

• Branche tes disques amovibles à ton PC (clefs USB, disque dur externe, etc...) sans les ouvrir.
• Clique droit sur le raccourci FindyKill situé sur ton Bureau et choisis Exécuter en tant qu'administrateur.
• Au menu principal, choisis l'option 2 (Suppression).

/!\ Il y aura 1 redémarrage, laisse travailler l'outil jusqu'à l'apparition du message "nettoyage effectué" /!\

• Ensuite, poste le rapport FindyKill.txt

Note : le rapport FindyKill.txt est sauvegardé à la racine du disque.

voilà le deuxième rapport

----------------- FindyKill V4.095 ------------------

* User : Magali - PC-DE-MAGALI
* Emplacement : C:\Program Files\FindyKill
* Outils Mis a jours le 07/11/08 par Chiquitine29
* Suppression effectuée à 12:52:28 le 08/11/2008
* Windows Vista - Internet Explorer 7.0.6001.18000


((((((((((((((( *** Suppression *** ))))))))))))))))))


--------------- [ Processus actifs ] ----------------


C:\Windows\System32\smss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\LogonUI.exe
C:\Windows\system32\Ati2evxx.exe
C:\Windows\System32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\Ati2evxx.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\userinit.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\CDBurnerXP\NMSAccessU.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\firststeps\OnlineDiagnostic\TestManager\TestHandler.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\runonce.exe
C:\Windows\system32\conime.exe

--------------- [ Fichiers/Dossiers infectieux ] ----------------


»»»» Suppression des fichiers dans C:


»»»» Suppression des fichiers dans C:\Windows


»»»» Suppression des fichiers dans C:\Windows\Prefetch

Supprimé ! - C:\Windows\prefetch\MDELK.EXE-BA78416E.pf
Supprimé ! - C:\Windows\prefetch\WINTEMS.EXE-DA572320.pf

»»»» Suppression des fichiers dans C:\Windows\system32

Supprimé ! - C:\Windows\system32\mdelk.exe
Supprimé ! - C:\Windows\system32\wintems.exe

»»»» Suppression des fichiers dans C:\Windows\system32\drivers

Supprimé ! - C:\Windows\system32\drivers\srosa.sys
Supprimé ! - C:\Windows\system32\drivers\srosa2.sys
Supprimé ! - C:\Windows\system32\drivers\winfilse.exe
Supprimé ! - C:\Windows\system32\drivers\downld\42942671.exe
Supprimé ! - C:\Windows\system32\drivers\downld\42945546.exe
Supprimé ! - C:\Windows\system32\drivers\downld\43004796.exe
Supprimé ! - C:\Windows\system32\drivers\downld\43021218.exe
Supprimé ! - C:\Windows\system32\drivers\downld\43076984.exe
Supprimé ! - C:\Windows\system32\drivers\downld\43112187.exe
Supprimé ! - C:\Windows\system32\drivers\downld\43122390.exe
Supprimé ! - C:\Windows\system32\drivers\downld\43129500.exe
Supprimé ! - "C:\Windows\system32\drivers\downld"

»»»» Suppression des fichiers dans C:\Users\Magali\AppData\Roaming


»»»» Suppression des fichiers dans C:\Users\Magali\AppData\Local\Temp


»»»» Suppression des fichiers dans C:\Users\Magali\Local Settings\Temporary Internet Files\Content.IE5

Supprimé ! - C:\Users\Magali\Local Settings\Temporary Internet Files\Content.IE5\250LQ6CV\b64_3[1].jpg
Supprimé ! - C:\Users\Magali\Local Settings\Temporary Internet Files\Content.IE5\BS73K26P\b64_2[1].jpg
Supprimé ! - C:\Users\Magali\Local Settings\Temporary Internet Files\Content.IE5\BS73K26P\b64_3[1].jpg
Supprimé ! - C:\Users\Magali\Local Settings\Temporary Internet Files\Content.IE5\WV4V1AHW\b64_1[1].jpg

--------------- [ Registre / Clés infectieuses ] ----------------

Supprimé ! - HKEY_CURRENT_USER\Software\bisoft
Supprimé ! - HKEY_CURRENT_USER\Software\DateTime4
Supprimé ! - HKEY_CURRENT_USER\Software\FirtR
Supprimé ! - HKEY_CURRENT_USER\Software\FFC
Supprimé ! - HKEY_CURRENT_USER\Software\CHKPTR
Supprimé ! - HKEY_USERS\S-1-5-21-2926379309-2324675709-2357044307-1000\Software\Local AppWizard-Generated Applications\msnmsgr
Supprimé ! - HKEY_USERS\S-1-5-21-2926379309-2324675709-2357044307-1000\Software\Local AppWizard-Generated Applications\patch
Supprimé ! - HKEY_USERS\S-1-5-21-2926379309-2324675709-2357044307-1000\Software\Local AppWizard-Generated Applications\winfilse

--------------- [ Etat / Redémarage des services ] ----------------


+- Services : [ Auto=2 / Demande=3 / Désactivé=4 ]

Ndisuio - Type de démarrage = 3

EapHost - Type de démarrage = 2

Wlansvc - Type de démarrage = 2

SharedAccess - Type de démarrage = 2

wuauserv - Type de démarrage = 2

wscsvc - Type de démarrage = 2

WinDefend - Type de démarrage = 2


--------------- [ Nettoyage des supports amovibles ] ----------------

+- Informations :

C: - Lecteur fixe
D: - Lecteur amovible
E: - Lecteur fixe
G: - Lecteur amovible
H: - Lecteur amovible

+- Suppression des fichiers :


--------------- [ Registre / Moutpoint2 ] ----------------


-> Recherche négative.


--------------- [ Recherche Cracks / Keygen ] ----------------

C:\Users\Magali\AppData\Local\IM\Notifier\cracking_up.imn
C:\Users\Magali\AppData\Local\IM\Runtime\Notifier\E02C28C0-38CB-4505-B0F1-B6A2D6625408\cracking_up_thumb.gif
C:\Users\Magali\Desktop\MAGNiTUDE\Keygen.exe
C:\Users\Magali\Documents\Programmes\Ultra Avi Converter 1.3.2 & Crack - Per Convertire Avi To Avi,Mpeg,Vcd,Svcd,Dvd,Wmv.rar
C:\Users\Magali\Documents\Programmes\MAGNiTUDE\Keygen.exe


---------------- ! Fin du rapport ! ------------------

voici le rapport log :

Logfile of random's system information tool 1.04 (written by random/random)
Run by Magali at 2008-11-08 14:32:11
Microsoft® Windows Vista™ Édition Familiale Basique Service Pack 1
System drive C: has 15 GB (14%) free of 111 GB
Total RAM: 1918 MB (65% free)

HijackThis download failed

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{68F9551E-0411-48E4-9AAF-4BC42A6A46BE}]
EWPBrowseObject Class - C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll [2006-04-18 34304]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll [2007-07-12 501136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2007-09-20 328752]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - c:\program files\google\googletoolbar2.dll [2007-05-26 2436160]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D5792AA9-D373-4039-8670-2CDAB6A71F15}]
WebManager Class - C:\Program Files\BitDownload\TorrentManager.dll [2006-12-22 126976]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{327C2873-E90D-4c37-AA9D-10AC9BABA46C} - Easy-WebPrint - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll [2006-04-18 552960]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\program files\google\googletoolbar2.dll [2007-05-26 2436160]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"WireLessMouse "=C:\Program Files\Multimedia Combo Set\MouseDrv.exe [2004-06-27 503808]
"WireLessKeyboard "=C:\Program Files\Multimedia Combo Set\PS2USBKbdDrv.exe [2005-08-02 274432]
"TomTomHOME.exe"=C:\Program Files\TomTom HOME\TomTomHOME.exe [2007-03-14 3770024]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-11 39792]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2006-12-29 4317184]
"zzz_ImInstaller_IncrediMail"=C:\Users\Magali\AppData\Local\Temp\ImInstaller\IncrediMail\IncrediMail_Install.exe -startup -product IncrediMail []
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2008-03-29 79224]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"IncrediMail"=C:\Program Files\IncrediMail\bin\IncMail.exe [2007-08-21 208946]
"msnmsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2006-10-02 798728]
"EPSON Stylus DX4400 Series"=C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATICAE.EXE [2007-03-01 180736]
"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-19 202240]
"CollaborationHost"=C:\Windows\system32\p2phost.exe [2008-01-19 192000]
"ISUSPM Startup"=C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe [2004-04-17 196608]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office\OSA9.EXE

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{5e3615a3-9091-11dc-b3ab-001a9219c4fb}]
shell\AutoRun\command - D:\InstallTomTomHOME.exe


======List of files/folders created in the last 1 months======

2008-11-08 14:32:11 ----D---- C:\rsit
2008-11-08 12:52:28 ----A---- C:\FindyKill.txt
2008-11-08 12:17:17 ----D---- C:\Program Files\FindyKill
2008-11-08 10:41:10 ----A---- C:\Windows\system32\aswBoot.exe
2008-11-06 20:54:34 ----D---- C:\Users\Magali\AppData\Roaming\PeerNetworking
2008-11-05 07:31:36 ----D---- C:\Program Files\VideoLAN
2008-10-29 06:25:12 ----A---- C:\Windows\system32\wersvc.dll
2008-10-29 06:25:12 ----A---- C:\Windows\system32\Faultrep.dll
2008-10-29 06:24:48 ----A---- C:\Windows\system32\win32spl.dll
2008-10-23 18:39:24 ----A---- C:\Windows\system32\netapi32.dll
2008-10-15 21:06:26 ----A---- C:\Windows\system32\mshtml.dll
2008-10-15 21:06:24 ----A---- C:\Windows\system32\ieframe.dll
2008-10-15 21:06:21 ----A---- C:\Windows\system32\urlmon.dll
2008-10-15 21:06:19 ----A---- C:\Windows\system32\wininet.dll
2008-10-15 21:06:18 ----A---- C:\Windows\system32\iertutil.dll
2008-10-15 21:06:13 ----A---- C:\Windows\system32\mstime.dll
2008-10-15 21:06:07 ----A---- C:\Windows\system32\jsproxy.dll
2008-10-15 20:58:52 ----A---- C:\Windows\system32\ntkrnlpa.exe
2008-10-15 20:58:51 ----A---- C:\Windows\system32\ntoskrnl.exe

======List of files/folders modified in the last 1 months======

2008-11-08 14:32:12 ----D---- C:\Windows\Prefetch
2008-11-08 14:32:08 ----D---- C:\Windows\Temp
2008-11-08 14:24:43 ----HD---- C:\Windows\system32\drivers
2008-11-08 14:24:41 ----D---- C:\Windows\System32
2008-11-08 14:24:19 ----D---- C:\Program Files\Alwil Software
2008-11-08 13:04:58 ----SD---- C:\Windows\Downloaded Program Files
2008-11-08 13:04:41 ----D---- C:\Windows\inf
2008-11-08 13:04:41 ----A---- C:\Windows\system32\PerfStringBackup.INI
2008-11-08 12:17:17 ----RD---- C:\Program Files
2008-11-08 12:15:03 ----D---- C:\Windows\system32\catroot2
2008-11-08 11:02:36 ----D---- C:\Windows\tracing
2008-11-08 10:39:58 ----D---- C:\Windows
2008-11-08 10:33:50 ----SHD---- C:\System Volume Information
2008-11-07 21:23:56 ----A---- C:\Windows\msnfix.txt
2008-11-07 20:20:45 ----SHD---- C:\Windows\Installer
2008-11-07 07:42:45 ----D---- C:\Windows\system32\wbem
2008-11-07 07:42:04 ----D---- C:\Windows\registration
2008-11-06 21:33:47 ----D---- C:\Windows\Logs
2008-11-06 21:28:15 ----A---- C:\Windows\ntbtlog.txt
2008-11-06 21:18:49 ----D---- C:\Windows\Minidump
2008-11-06 08:12:57 ----D---- C:\Program Files\TomTom HOME
2008-10-30 03:00:44 ----D---- C:\Windows\winsxs
2008-10-29 06:23:55 ----D---- C:\Windows\system32\catroot
2008-10-16 02:08:23 ----D---- C:\Program Files\Windows Mail
2008-10-16 02:08:22 ----D---- C:\Windows\system32\migration

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2008-03-29 23152]
R1 aswSP;avast! Self Protection; C:\Windows\system32\drivers\aswSP.sys [2008-03-29 75856]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2008-03-29 42912]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\DRIVERS\aswFsBlk.sys [2008-03-29 20560]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\DRIVERS\aswMonFlt.sys [2008-03-29 50768]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-01-02 1668456]
R3 MarvinBus;Pinnacle Marvin Bus; C:\Windows\system32\DRIVERS\MarvinBus.sys [2007-01-04 171520]
R3 R300;R300; C:\Windows\system32\DRIVERS\atikmdag.sys [2006-12-06 2085888]
R3 rt70x86;RT2500 USB Wireless LAN Driver; C:\Windows\system32\DRIVERS\netr70.sys [2006-10-20 243200]
R3 RTL8023xp;Realtek 10/100 NIC Family NDIS x86 Driver; C:\Windows\system32\DRIVERS\Rtnicxp.sys [2006-11-24 50688]
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-19 83328]
S1 sK9Ou0s;sK9Ou0s; \??\C:\Windows\system32\drivers\srosa2.sys []
S3 drmkaud;Filtre de décodeur DRM (Noyau Microsoft); C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys []
S3 HdAudAddService;Pilote de fonction UAA 1.1 Microsoft pour le service High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 MSKSSRV;Proxy de service de répartition Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Proxy d'horloge de répartition Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Proxy de gestion de qualité de répartition Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 usbscan;Pilote de scanneur USB; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-19 35328]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2008-01-19 39936]
S4 iaStor;Intel AHCI Controller; C:\Windows\system32\drivers\iastor.sys [2006-05-11 247808]
S4 nvatabus;nvatabus; C:\Windows\system32\drivers\nvatabus.sys [2006-07-14 105088]
S4 viamraid;viamraid; C:\Windows\system32\drivers\viamraid.sys [2006-03-31 100992]
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [2006-11-02 11264]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2008-03-29 17272]
R2 Ati External Event Utility;Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe [2006-12-05 557056]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2008-03-29 144760]
R2 NMSAccessU;NMSAccessU; C:\Program Files\CDBurnerXP\NMSAccessU.exe [2008-03-09 71096]
R2 TestHandler;Fujitsu Siemens Computers Diagnostic Testhandler; C:\firststeps\OnlineDiagnostic\TestManager\TestHandler.exe [2006-11-14 204800]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2008-03-29 247160]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2008-03-29 345464]
S2 PCLEPCI;PCLEPCI; C:\Windows\system32\drivers\pclepci.sys [2005-02-09 14165]
S2 Planificateur LiveUpdate automatique;Planificateur LiveUpdate automatique; C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe []
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2007-05-26 138168]
S3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\Windows Live\Messenger\usnsvc.exe [2007-10-18 98328]
S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]
S4 Symantec Core LC;Symantec Core LC; C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe [2007-01-20 1174152]

-----------------EOF-----------------


et voici le rapport info :

info.txt logfile of random's system information tool 1.04 2008-11-08 14:32:16

======Uninstall list======

InstallPluginsStudio.exe -->C:\Program Files\Pinnacle\Studio 11\plugins\rtfx\Uninstal.exe
-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
-->C:\Program Files\Nero\Nero 7\nero\uninstall\UNNERO.exe /UNINSTALL
-->C:\Windows\UNNeroMediaHome.exe /UNINSTALL
-->C:\Windows\UNNeroShowTime.exe /UNINSTALL
-->C:\Windows\UNNeroVision.exe /UNINSTALL
-->C:\Windows\UNRecode.exe /UNINSTALL
Adobe Acrobat and Reader 8.1.2 Security Update 1 (KB403742)-->MsiExec.exe /X{6846389C-BAC0-4374-808E-B120F86AF5D7}
Adobe Flash Player ActiveX-->C:\Windows\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Reader 8.1.2 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A81200000003}
Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
Assistant de connexion Windows Live-->MsiExec.exe /I{AFA4E5FD-ED70-4D92-99D0-162FD56DC986}
ATI Catalyst Control Center Ex-->MsiExec.exe /I{00905C35-3A76-5952-CB6A-CDAFCD6B517D}
avast! Antivirus-->C:\Program Files\Alwil Software\Avast4\aswRunDll.exe "C:\Program Files\Alwil Software\Avast4\Setup\setiface.dll",RunSetup
BitDownload version 3.0.0.0-->"C:\Program Files\BitDownload\unins000.exe"
BulletProofSoft Youtube Video Grabber 1.0.0.4-->"C:\Program Files\BulletProofSoft.com\Youtube Video Grabber\unins000.exe"
Camera RAW Plug-In for EPSON Creativity Suite-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{8DAC1AE4-33D1-4A78-8A42-00E09EDECC3E}\SETUP.EXE" -l0x40c UNINST
CDBurnerXP-->"C:\Program Files\CDBurnerXP\unins000.exe"
CX4300_5500_DX4400 Manuel-->C:\Program Files\EPSON\TPMANUAL\CX4300_5500_DX4400\FRA\USE_G\DOCUNINS.EXE
DivX Codec-->C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
DivX Converter-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
DivX Player-->C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER
DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
Easy-WebPrint-->C:\Windows\IsUn040c.exe -f"C:\Program Files\Canon\Easy-WebPrint\Uninst.isu"
Enregistrement utilisateur de Canon iP1300-->C:\Program Files\Canon\IJEREG\iP1300\UNINST.EXE
EPSON Attach To Email-->C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{20C45B32-5AB6-46A4-94EF-58950CAF05E5} /l1033 ADDREMOVEDLG
EPSON Copy Utility 3-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{67EDD823-135A-4D59-87BD-950616D6E857}\SETUP.EXE" -l0x40c -UnInstall
EPSON Easy Photo Print-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B66E665A-DF96-4C38-9422-C7F74BC1B4E5}\SETUP.EXE" -l0x40c UNINST
EPSON File Manager-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2EB81825-E9EE-44F4-8F51-1240C3898DC6}\Setup.exe" -l0x40c UNINST
EPSON Logiciel imprimante-->C:\Windows\system32\spool\DRIVERS\W32X86\3\EPUPDATE.EXE /R
EPSON Scan Assistant-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2A88F1BF-7041-4E42-84B1-6B4ACB83AC64}\Setup.exe" -l0x40c -u
EPSON Scan-->C:\Program Files\epson\escndv\setup\setup.exe /r
FindyKill-->C:\Program Files\FindyKill\Uninstal.exe
Free 3GP Video Converter version 2.4-->"C:\Program Files\DVDVideoSoft\Free 3GP Video Converter\unins000.exe"
Free YouTube Download 2.1-->"C:\Program Files\DVDVideoSoft\Free YouTube Download\unins000.exe"
Free YouTube to iPod Converter version 2.8-->"C:\Program Files\DVDVideoSoft\Free YouTube to iPod Converter\unins000.exe"
Free YouTube Uploader version 2.1-->"C:\Program Files\DVDVideoSoft\Free YouTube Uploader\unins000.exe"
Google Toolbar for Internet Explorer-->MsiExec.exe /I{DBEA1034-5882-4A88-8033-81C4EF0CFA29}
Google Toolbar for Internet Explorer-->regsvr32 /u /s "c:\program files\google\googletoolbar2.dll"
IncrediMail Xe-->C:\PROGRA~1\INCRED~1\bin\imsetup.exe /remove /addon:IncrediMail /log:IncMail.log
Infra Recorder-->C:\Program Files\Infra Recorder\uninstall.exe
Java(TM) 6 Update 2-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160020}
Java(TM) SE Runtime Environment 6 Update 1-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160010}
Lame ACM MP3 Codec-->C:\Windows\system32\rundll32.exe setupapi,InstallHinfSection Remove_LameMP3 132 C:\Windows\INF\LameACM.inf
Lphant v3.00 Beta 5b-->"C:\Program Files\lphant\unins000.exe"
Microsoft Office 2000 CD-ROM 2-->MsiExec.exe /I{0004040C-78E1-11D2-B60F-006097C998E7}
Microsoft Office 2000 Premium-->MsiExec.exe /I{0000040C-78E1-11D2-B60F-006097C998E7}
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 (KB941833)-->MsiExec.exe /I{C523D256-313D-4866-B36A-F3DE528246EF}
Multimedia Combo Set-->C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{6206FD57-3E60-4A52-AD1B-7D9F7BA2777E}
Nero 7 Essentials-->MsiExec.exe /I{D34D82E0-4600-407B-9478-8506C1DD1036}
OneStopSoft Youtube Video File Downloader 1.0.0.7-->"C:\Program Files\OneStopSoft.com\Youtube Video File Downloader\unins000.exe"
Pinnacle Instant DVD Recorder-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EF781A5C-58F5-4BFD-87F9-E4F14D382F25}\setup.exe" -l0x40c UNINSTALL
Ralink Wireless LAN Card-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E91E8912-769D-42F0-8408-0E329443BABC}\setup.exe" -l0x9 -removeonly
Realtek High Definition Audio Driver-->RtlUpd.exe -r -m
Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Studio 11-->C:\Program Files\InstallShield Installation Information\{110B1ADF-2EAE-4E8F-B501-D2A1E6D8ED9D}\Setup2.exe -runfromtemp -l0x040c UNINSTALL -removeonly
Test_OnlineDiagnostic-->MsiExec.exe /I{538A1AE6-5D8B-4BF1-B1B3-AE14FDE21C09}
TomTom HOME-->C:\Program Files\InstallShield Installation Information\{CE325D55-FCAF-4273-BB79-069BB8747270}\setup.exe -runfromtemp -l0x040c -removeonly -removeonly
Ultra AVI Converter 1.3.2-->"C:\Program Files\Ultra AVI Converter\unins000.exe"
Uninstall 1.0.0.0-->"C:\Program Files\Common Files\DVDVideoSoft\unins000.exe"
Windows Live installer-->MsiExec.exe /X{FD44E544-E7D0-4DBA-9FA0-8AE1A1300390}
Windows Live Messenger-->MsiExec.exe /X{BADF6744-3787-48F6-B8C9-4C4995401D65}
Wireless 802.11g USB Adapter-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{73E94429-C8A2-46B5-A203-E30C62D5379D}\setup.exe" -l0x40c
Yahoo! Desktop Login-->MsiExec.exe /I{F9AEEC34-CF00-4CBD-9E36-DF9DC4002685}

======Security center information======

AV: avast! antivirus 4.8.1169 [VPS 080329-0] (outdated)
AV: Norton Internet Security (outdated)
FW: Norton Internet Security (disabled)
AS: Avira AntiVir PersonalEdition
AS: Windows Defender
AS: Norton Internet Security (outdated)
AS: avast! antivirus 4.8.1169 [VPS 080329-0] (outdated)

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\ATI Technologies\ATI.ACE
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=x86
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 79 Stepping 2, AuthenticAMD
"PROCESSOR_REVISION"=4f02
"NUMBER_OF_PROCESSORS"=1

-----------------EOF-----------------

--------------------\\ Lop S&D 4.2.4-9c XP/Vista

Microsoft (R) Windows Script Host Version 5.7
Copyright (C) Microsoft Corporation 1996-2001. Tous droits r‚serv‚s.
Microsoft® Windows Vista™ Édition Familiale Basique ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : AMD Athlon(tm) 64 Processor 3200+ )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : Magali ( Administrator )
BOOT : Normal boot
Antivirus : Norton Internet Security 2007 (Activated)
Firewall : Norton Internet Security 2007 (Not Activated)
C:\ (Local Disk) - NTFS - Total:108 Go (Free:14 Go)
E:\ (Local Disk) - NTFS - Total:27 Go (Free:7 Go)
F:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 01-11-2008|16:30 )
Option : [1] ( 08/11/2008|14:54 )

--------------------\\ Listing des dossiers dans Local

[10/02/2008|12:50] C:\Users\Magali\AppData\Local\Adobe
[06/03/2007|22:47] C:\Users\Magali\AppData\Local\Ahead
[02/02/2007|20:15] C:\Users\Magali\AppData\Local\Application Data
[02/02/2007|20:17] C:\Users\Magali\AppData\Local\ATI
[22/06/2008|13:39] C:\Users\Magali\AppData\Local\CDBurnerXP_Soft
[10/03/2007|14:28] C:\Users\Magali\AppData\Local\d3d8caps.dat
[05/11/2008|07:26] C:\Users\Magali\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[26/10/2007|21:45] C:\Users\Magali\AppData\Local\GDIPFONTCACHEV1.DAT
[26/05/2007|12:42] C:\Users\Magali\AppData\Local\Google
[02/02/2007|20:15] C:\Users\Magali\AppData\Local\Historique
[08/11/2008|14:45] C:\Users\Magali\AppData\Local\IconCache.db
[03/06/2008|18:54] C:\Users\Magali\AppData\Local\IM
[06/02/2007|18:30] C:\Users\Magali\AppData\Local\Lphant
[27/04/2008|17:03] C:\Users\Magali\AppData\Local\Microsoft
[16/12/2007|21:44] C:\Users\Magali\AppData\Local\Microsoft Games
[06/11/2008|21:52] C:\Users\Magali\AppData\Local\MigWiz
[03/11/2007|16:12] C:\Users\Magali\AppData\Local\Pinnacle
[08/11/2008|14:51] C:\Users\Magali\AppData\Local\Temp
[02/02/2007|20:15] C:\Users\Magali\AppData\Local\Temporary Internet Files
[18/02/2007|16:19] C:\Users\Magali\AppData\Local\VirtualStore

--------------------\\ Tâches planifiées dans C:\Windows\tasks

[08/11/2008 14:46][--ah-----] C:\Windows\tasks\SA.DAT
[08/11/2008 14:45][--a------] C:\Windows\tasks\SCHEDLGU.TXT

--------------------\\ Listing des dossiers dans C:\ProgramData

[05/11/2008|21:02] C:\ProgramData\__FileUploader.log
[22/01/2008|19:30] C:\ProgramData\addr_file.html
[10/02/2008|13:12] C:\ProgramData\Adobe
[02/11/2006|13:59] C:\ProgramData\Application Data
[04/04/2008|22:54] C:\ProgramData\Avira
[02/02/2007|20:10] C:\ProgramData\Bureau
[02/11/2006|13:59] C:\ProgramData\Desktop
[02/11/2006|13:59] C:\ProgramData\Documents
[24/08/2008|10:20] C:\ProgramData\EPSON
[02/02/2007|20:10] C:\ProgramData\Favoris
[02/11/2006|13:59] C:\ProgramData\Favorites
[26/05/2007|12:39] C:\ProgramData\Google
[03/02/2007|23:23] C:\ProgramData\InstallShield
[02/02/2007|20:10] C:\ProgramData\Menu D‚marrer
[10/02/2008|23:09] C:\ProgramData\Microsoft
[02/02/2007|20:10] C:\ProgramData\ModŠles
[07/10/2007|14:13] C:\ProgramData\Pinnacle
[07/10/2007|14:14] C:\ProgramData\Pinnacle Studio
[11/03/2007|23:30] C:\ProgramData\SBT
[02/11/2006|13:59] C:\ProgramData\Start Menu
[01/03/2007|19:49] C:\ProgramData\Symantec
[02/11/2006|13:59] C:\ProgramData\Templates
[11/11/2007|21:20] C:\ProgramData\TomTom
[24/08/2008|10:25] C:\ProgramData\UDL
[27/04/2008|16:56] C:\ProgramData\WLInstaller

--------------------\\ Listing des dossiers dans C:\Program Files

[16/07/2008|18:27] C:\Program Files\Adobe
[07/03/2007|20:22] C:\Program Files\ahead
[08/11/2008|14:24] C:\Program Files\Alwil Software
[20/01/2007|12:59] C:\Program Files\ATI Technologies
[04/03/2007|17:35] C:\Program Files\AviSynth 2.5
[03/03/2007|17:39] C:\Program Files\BitDownload
[17/04/2008|20:46] C:\Program Files\BulletProofSoft.com
[22/09/2008|18:26] C:\Program Files\Canon
[22/06/2008|13:39] C:\Program Files\CDBurnerXP
[27/04/2008|16:57] C:\Program Files\Common Files
[14/06/2008|11:19] C:\Program Files\DivX
[17/04/2008|21:09] C:\Program Files\DVDVideoSoft
[22/09/2008|18:24] C:\Program Files\EA GAMES
[24/08/2008|10:24] C:\Program Files\epson
[04/03/2007|17:34] C:\Program Files\eRightSoft
[02/02/2007|20:10] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[08/11/2008|13:05] C:\Program Files\FindyKill
[26/05/2007|18:39] C:\Program Files\Google
[03/05/2008|23:46] C:\Program Files\IncrediMail
[08/03/2007|21:10] C:\Program Files\Infra Recorder
[24/08/2008|10:30] C:\Program Files\InstallShield Installation Information
[28/06/2008|21:59] C:\Program Files\Internet Explorer
[21/08/2007|19:07] C:\Program Files\Java
[06/02/2007|18:27] C:\Program Files\lphant
[28/04/2008|06:45] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[11/03/2007|23:40] C:\Program Files\Microsoft FrontPage
[02/11/2006|13:35] C:\Program Files\Microsoft Games
[11/03/2007|23:30] C:\Program Files\Microsoft Office
[11/03/2007|23:43] C:\Program Files\Microsoft Visual Studio
[28/06/2008|21:59] C:\Program Files\Movie Maker
[02/11/2006|13:35] C:\Program Files\MSBuild
[09/10/2007|02:02] C:\Program Files\MSXML 4.0
[06/11/2007|21:49] C:\Program Files\Multimedia Combo Set
[20/01/2007|13:07] C:\Program Files\Nero
[17/04/2008|20:08] C:\Program Files\OneStopSoft.com
[07/10/2007|14:10] C:\Program Files\Pinnacle
[03/02/2007|23:23] C:\Program Files\RALINK
[02/11/2006|13:35] C:\Program Files\Reference Assemblies
[11/03/2007|23:30] C:\Program Files\Snapshot Viewer
[11/11/2007|21:23] C:\Program Files\TomTom DesktopSuite
[06/11/2008|08:12] C:\Program Files\TomTom HOME
[11/10/2007|17:19] C:\Program Files\Trend Micro
[09/09/2007|10:26] C:\Program Files\Ultra AVI Converter
[02/11/2006|13:58] C:\Program Files\Uninstall Information
[05/11/2008|07:31] C:\Program Files\VideoLAN
[28/06/2008|21:59] C:\Program Files\Windows Calendar
[28/06/2008|21:59] C:\Program Files\Windows Collaboration
[28/06/2008|21:59] C:\Program Files\Windows Defender
[27/04/2008|16:58] C:\Program Files\Windows Live
[16/10/2008|02:08] C:\Program Files\Windows Mail
[28/06/2008|21:59] C:\Program Files\Windows Media Player
[02/02/2007|20:10] C:\Program Files\Windows NT
[28/06/2008|21:59] C:\Program Files\Windows Photo Gallery
[28/06/2008|21:59] C:\Program Files\Windows Sidebar
[18/02/2007|17:59] C:\Program Files\WinRAR
[02/02/2007|21:52] C:\Program Files\Wireless 802.11g Monitor

--------------------\\ Listing des dossiers dans C:\Program Files\Common Files

[10/02/2008|13:12] C:\Program Files\Common Files\Adobe
[29/03/2007|18:41] C:\Program Files\Common Files\Ahead
[11/03/2007|18:02] C:\Program Files\Common Files\Designer
[17/04/2008|21:09] C:\Program Files\Common Files\DVDVideoSoft
[20/01/2007|13:20] C:\Program Files\Common Files\Fujitsu Siemens Computers
[21/08/2007|17:54] C:\Program Files\Common Files\InstallShield
[26/05/2007|12:32] C:\Program Files\Common Files\Java
[27/04/2008|16:57] C:\Program Files\Common Files\microsoft shared
[27/12/2007|15:12] C:\Program Files\Common Files\PX Storage Engine
[02/11/2006|12:18] C:\Program Files\Common Files\Services
[02/11/2006|12:18] C:\Program Files\Common Files\SpeechEngines
[01/03/2007|19:49] C:\Program Files\Common Files\Symantec Shared
[28/06/2008|21:59] C:\Program Files\Common Files\System
[27/04/2008|16:57] C:\Program Files\Common Files\WindowsLiveInstaller

--------------------\\ Process

( 60 Processes )

iexplore.exe ~ [PID:3324]

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\Users\Magali\AppData\Roaming\BitDownload
C:\Users\Magali\AppData\Roaming\BitDownload\Data
C:\PROGRA~2\MICROS~1\Windows\STARTM~1\Programs\BitDownload
C:\PROGRA~2\MICROS~1\Windows\STARTM~1\Programs\BitDownload\BitDownload.lnk
C:\PROGRA~2\MICROS~1\Windows\STARTM~1\Programs\BitDownload\Uninstall BitDownload.lnk
C:\Program Files\BitDownload
C:\Program Files\BitDownload\BitDownload.exe
C:\Program Files\BitDownload\BitDownload.TRC
C:\Program Files\BitDownload\settings.ini
C:\Program Files\BitDownload\settings.stp
C:\Program Files\BitDownload\SkinCrafterDll.dll
C:\Program Files\BitDownload\Skins
C:\Program Files\BitDownload\Support
C:\Program Files\BitDownload\TorrentManager.dll
C:\Program Files\BitDownload\unins000.dat
C:\Program Files\BitDownload\unins000.exe
C:\Program Files\BitDownload\ZM

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-11-08 14:55:03
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 6

--------------------\\ Recherche d'autres infections

--------------------\\ Cracks & Keygens ..

C:\Users\Magali\AppData\Local\IM\Notifier\cracking_up.imn
C:\Users\Magali\AppData\Local\IM\Runtime\Notifier\E02C28C0-38CB-4505-B0F1-B6A2D6625408\cracking_up_thumb.gif
C:\Users\Magali\Desktop\MAGNiTUDE\Keygen.exe
C:\Users\Magali\Documents\Programmes\Ultra Avi Converter 1.3.2 & Crack - Per Convertire Avi To Avi,Mpeg,Vcd,Svcd,Dvd,Wmv.rar
C:\Users\Magali\Documents\Programmes\MAGNiTUDE\Keygen.exe


[F:33][D:6]-> C:\Users\Magali\AppData\Local\Temp
[F:39][D:1]-> C:\Users\Magali\AppData\Roaming\MICROS~1\Windows\Cookies
[F:768][D:4]-> C:\Users\Magali\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:3][D:3]-> C:\$Recycle.Bin

1 - "C:\Lop SD\LopR_1.txt" - 08/11/2008|14:57 - Option : [1]

--------------------\\ Fin du rapport a 14:57:35

--------------------\\ Lop S&D 4.2.4-9c XP/Vista

Microsoft (R) Windows Script Host Version 5.7
Copyright (C) Microsoft Corporation 1996-2001. Tous droits r‚serv‚s.
Microsoft® Windows Vista™ Édition Familiale Basique ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : AMD Athlon(tm) 64 Processor 3200+ )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : Magali ( Administrator )
BOOT : Normal boot
Antivirus : Norton Internet Security 2007 (Activated)
Firewall : Norton Internet Security 2007 (Not Activated)
C:\ (Local Disk) - NTFS - Total:108 Go (Free:14 Go)
E:\ (Local Disk) - NTFS - Total:27 Go (Free:7 Go)
F:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 01-11-2008|16:30 )
Option : [2] ( 08/11/2008|15:17 )


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

Supprime! - C:\Users\Magali\AppData\Roaming\BitDownload\Data
Supprime! - C:\PROGRA~2\MICROS~1\Windows\STARTM~1\Programs\BitDownload\BitDownload.lnk
Supprime! - C:\PROGRA~2\MICROS~1\Windows\STARTM~1\Programs\BitDownload\Uninstall BitDownload.lnk
Supprime! - C:\Program Files\BitDownload\BitDownload.exe
Supprime! - C:\Program Files\BitDownload\BitDownload.TRC
Supprime! - C:\Program Files\BitDownload\settings.ini
Supprime! - C:\Program Files\BitDownload\settings.stp
Supprime! - C:\Program Files\BitDownload\SkinCrafterDll.dll
Supprime! - C:\Program Files\BitDownload\Skins
Supprime! - C:\Program Files\BitDownload\Support
Supprime! - C:\Program Files\BitDownload\TorrentManager.dll
Supprime! - C:\Program Files\BitDownload\unins000.dat
Supprime! - C:\Program Files\BitDownload\unins000.exe
Supprime! - C:\Program Files\BitDownload\ZM
Supprime! - C:\Users\Magali\AppData\Roaming\BitDownload
Supprime! - C:\PROGRA~2\MICROS~1\Windows\STARTM~1\Programs\BitDownload
Supprime! - C:\Program Files\BitDownload
-
[ Fichier Hosts ] .. Restaure!

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


--------------------\\ Listing des dossiers dans Local

[10/02/2008|12:50] C:\Users\Magali\AppData\Local\Adobe
[06/03/2007|22:47] C:\Users\Magali\AppData\Local\Ahead
[02/02/2007|20:15] C:\Users\Magali\AppData\Local\Application Data
[02/02/2007|20:17] C:\Users\Magali\AppData\Local\ATI
[22/06/2008|13:39] C:\Users\Magali\AppData\Local\CDBurnerXP_Soft
[10/03/2007|14:28] C:\Users\Magali\AppData\Local\d3d8caps.dat
[05/11/2008|07:26] C:\Users\Magali\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[26/10/2007|21:45] C:\Users\Magali\AppData\Local\GDIPFONTCACHEV1.DAT
[26/05/2007|12:42] C:\Users\Magali\AppData\Local\Google
[02/02/2007|20:15] C:\Users\Magali\AppData\Local\Historique
[08/11/2008|14:45] C:\Users\Magali\AppData\Local\IconCache.db
[03/06/2008|18:54] C:\Users\Magali\AppData\Local\IM
[06/02/2007|18:30] C:\Users\Magali\AppData\Local\Lphant
[27/04/2008|17:03] C:\Users\Magali\AppData\Local\Microsoft
[16/12/2007|21:44] C:\Users\Magali\AppData\Local\Microsoft Games
[06/11/2008|21:52] C:\Users\Magali\AppData\Local\MigWiz
[03/11/2007|16:12] C:\Users\Magali\AppData\Local\Pinnacle
[08/11/2008|15:17] C:\Users\Magali\AppData\Local\Temp
[02/02/2007|20:15] C:\Users\Magali\AppData\Local\Temporary Internet Files
[18/02/2007|16:19] C:\Users\Magali\AppData\Local\VirtualStore

--------------------\\ Tâches planifiées dans C:\Windows\tasks

[08/11/2008 14:46][--ah-----] C:\Windows\tasks\SA.DAT
[08/11/2008 14:45][--a------] C:\Windows\tasks\SCHEDLGU.TXT

--------------------\\ Listing des dossiers dans C:\ProgramData

[05/11/2008|21:02] C:\ProgramData\__FileUploader.log
[22/01/2008|19:30] C:\ProgramData\addr_file.html
[10/02/2008|13:12] C:\ProgramData\Adobe
[02/11/2006|13:59] C:\ProgramData\Application Data
[04/04/2008|22:54] C:\ProgramData\Avira
[02/02/2007|20:10] C:\ProgramData\Bureau
[02/11/2006|13:59] C:\ProgramData\Desktop
[02/11/2006|13:59] C:\ProgramData\Documents
[24/08/2008|10:20] C:\ProgramData\EPSON
[02/02/2007|20:10] C:\ProgramData\Favoris
[02/11/2006|13:59] C:\ProgramData\Favorites
[26/05/2007|12:39] C:\ProgramData\Google
[03/02/2007|23:23] C:\ProgramData\InstallShield
[02/02/2007|20:10] C:\ProgramData\Menu D‚marrer
[10/02/2008|23:09] C:\ProgramData\Microsoft
[02/02/2007|20:10] C:\ProgramData\ModŠles
[07/10/2007|14:13] C:\ProgramData\Pinnacle
[07/10/2007|14:14] C:\ProgramData\Pinnacle Studio
[11/03/2007|23:30] C:\ProgramData\SBT
[02/11/2006|13:59] C:\ProgramData\Start Menu
[01/03/2007|19:49] C:\ProgramData\Symantec
[02/11/2006|13:59] C:\ProgramData\Templates
[11/11/2007|21:20] C:\ProgramData\TomTom
[24/08/2008|10:25] C:\ProgramData\UDL
[27/04/2008|16:56] C:\ProgramData\WLInstaller

--------------------\\ Listing des dossiers dans C:\Program Files

[16/07/2008|18:27] C:\Program Files\Adobe
[07/03/2007|20:22] C:\Program Files\ahead
[08/11/2008|14:24] C:\Program Files\Alwil Software
[20/01/2007|12:59] C:\Program Files\ATI Technologies
[04/03/2007|17:35] C:\Program Files\AviSynth 2.5
[17/04/2008|20:46] C:\Program Files\BulletProofSoft.com
[22/09/2008|18:26] C:\Program Files\Canon
[22/06/2008|13:39] C:\Program Files\CDBurnerXP
[27/04/2008|16:57] C:\Program Files\Common Files
[14/06/2008|11:19] C:\Program Files\DivX
[17/04/2008|21:09] C:\Program Files\DVDVideoSoft
[22/09/2008|18:24] C:\Program Files\EA GAMES
[24/08/2008|10:24] C:\Program Files\epson
[04/03/2007|17:34] C:\Program Files\eRightSoft
[02/02/2007|20:10] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[08/11/2008|13:05] C:\Program Files\FindyKill
[26/05/2007|18:39] C:\Program Files\Google
[03/05/2008|23:46] C:\Program Files\IncrediMail
[08/03/2007|21:10] C:\Program Files\Infra Recorder
[24/08/2008|10:30] C:\Program Files\InstallShield Installation Information
[28/06/2008|21:59] C:\Program Files\Internet Explorer
[21/08/2007|19:07] C:\Program Files\Java
[06/02/2007|18:27] C:\Program Files\lphant
[28/04/2008|06:45] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[11/03/2007|23:40] C:\Program Files\Microsoft FrontPage
[02/11/2006|13:35] C:\Program Files\Microsoft Games
[11/03/2007|23:30] C:\Program Files\Microsoft Office
[11/03/2007|23:43] C:\Program Files\Microsoft Visual Studio
[28/06/2008|21:59] C:\Program Files\Movie Maker
[02/11/2006|13:35] C:\Program Files\MSBuild
[09/10/2007|02:02] C:\Program Files\MSXML 4.0
[06/11/2007|21:49] C:\Program Files\Multimedia Combo Set
[20/01/2007|13:07] C:\Program Files\Nero
[17/04/2008|20:08] C:\Program Files\OneStopSoft.com
[07/10/2007|14:10] C:\Program Files\Pinnacle
[03/02/2007|23:23] C:\Program Files\RALINK
[02/11/2006|13:35] C:\Program Files\Reference Assemblies
[11/03/2007|23:30] C:\Program Files\Snapshot Viewer
[11/11/2007|21:23] C:\Program Files\TomTom DesktopSuite
[06/11/2008|08:12] C:\Program Files\TomTom HOME
[08/11/2008|15:16] C:\Program Files\Trend Micro
[09/09/2007|10:26] C:\Program Files\Ultra AVI Converter
[02/11/2006|13:58] C:\Program Files\Uninstall Information
[05/11/2008|07:31] C:\Program Files\VideoLAN
[28/06/2008|21:59] C:\Program Files\Windows Calendar
[28/06/2008|21:59] C:\Program Files\Windows Collaboration
[28/06/2008|21:59] C:\Program Files\Windows Defender
[27/04/2008|16:58] C:\Program Files\Windows Live
[16/10/2008|02:08] C:\Program Files\Windows Mail
[28/06/2008|21:59] C:\Program Files\Windows Media Player
[02/02/2007|20:10] C:\Program Files\Windows NT
[28/06/2008|21:59] C:\Program Files\Windows Photo Gallery
[28/06/2008|21:59] C:\Program Files\Windows Sidebar
[18/02/2007|17:59] C:\Program Files\WinRAR
[02/02/2007|21:52] C:\Program Files\Wireless 802.11g Monitor

--------------------\\ Listing des dossiers dans C:\Program Files\Common Files

[10/02/2008|13:12] C:\Program Files\Common Files\Adobe
[29/03/2007|18:41] C:\Program Files\Common Files\Ahead
[11/03/2007|18:02] C:\Program Files\Common Files\Designer
[17/04/2008|21:09] C:\Program Files\Common Files\DVDVideoSoft
[20/01/2007|13:20] C:\Program Files\Common Files\Fujitsu Siemens Computers
[21/08/2007|17:54] C:\Program Files\Common Files\InstallShield
[26/05/2007|12:32] C:\Program Files\Common Files\Java
[27/04/2008|16:57] C:\Program Files\Common Files\microsoft shared
[27/12/2007|15:12] C:\Program Files\Common Files\PX Storage Engine
[02/11/2006|12:18] C:\Program Files\Common Files\Services
[02/11/2006|12:18] C:\Program Files\Common Files\SpeechEngines
[01/03/2007|19:49] C:\Program Files\Common Files\Symantec Shared
[28/06/2008|21:59] C:\Program Files\Common Files\System
[27/04/2008|16:57] C:\Program Files\Common Files\WindowsLiveInstaller

--------------------\\ Process

( 61 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-11-08 15:17:51
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 6

--------------------\\ Recherche d'autres infections

--------------------\\ Cracks & Keygens ..

C:\Users\Magali\AppData\Local\IM\Notifier\cracking_up.imn
C:\Users\Magali\AppData\Local\IM\Runtime\Notifier\E02C28C0-38CB-4505-B0F1-B6A2D6625408\cracking_up_thumb.gif
C:\Users\Magali\Desktop\MAGNiTUDE\Keygen.exe
C:\Users\Magali\Documents\Programmes\Ultra Avi Converter 1.3.2 & Crack - Per Convertire Avi To Avi,Mpeg,Vcd,Svcd,Dvd,Wmv.rar
C:\Users\Magali\Documents\Programmes\MAGNiTUDE\Keygen.exe


[F:43][D:7]-> C:\Users\Magali\AppData\Local\Temp
[F:40][D:1]-> C:\Users\Magali\AppData\Roaming\MICROS~1\Windows\Cookies
[F:850][D:4]-> C:\Users\Magali\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:3][D:3]-> C:\$Recycle.Bin

1 - "C:\Lop SD\LopR_1.txt" - 08/11/2008|14:57 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 08/11/2008|15:19 - Option : [2]

--------------------\\ Fin du rapport a 15:19:43

ok, merci, je lance l'examen...

je vais devoir partir, mais je collerais le rapport dés mon retour...

En tout cas, j'ai retrouvé ma connection wifi, avast semble fonctionner...

Sincèrement tu as assuré et je t'en remercie...

A plus tard, et je te dis bravo pour ton efficacité et ta patience.

voilà le rapport pour mbam :

Malwarebytes' Anti-Malware 1.30
Version de la base de données: 1373
Windows 6.0.6001 Service Pack 1

08/11/2008 19:21:40
mbam-log-2008-11-08 (19-21-40).txt

Type de recherche: Examen complet (C:\|E:\|)
Eléments examinés: 151481
Temps écoulé: 58 minute(s), 55 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 3
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\torrentmanager.webmanager (Trojan.Lop) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\torrentmanager.webmanager.1 (Trojan.Lop) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{d5792aa9-d373-4039-8670-2cdab6a71f15} (Trojan.Lop) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)

Bonsoir,

Poste pour suivre.

J'ai toujours pas réussi pour le scan, j'ai réglé le problème de controles activeX mais quand je clique sur "démarrer online scanner", il ne se passe rien... soit le virus est toujours là et bloque toujours, soit j'ai un gros souci avec mes paramètres de sécurité, mais là je patauge... il n'y a pas que pour ce site que rien ne va, quand je vais sur youtube, impossible de connecter ma session, ni de regarder des vidéos, on me dit de télécharger adobe player mais là encore quand je clique rien ne se passe... quelqu'un peu m'aider svp ?

heu... il me semblait que j'avais désinstaller norton quand j'ai eu le pc...

Merci de donner de tes nouvelles

Gaudinus ---> Pour toi, c'est sûr, tu es infecté par Bagle. Fais ton propre sujet