mon ordi rame

bonjour,

mon PC rame de plus en plus. j'avais cru comprendre sur le forum qu'il fallait le formater pour lui rendre sa vigueur d'antan mais des forumeurs me l'ont déconseillé.

le fait es tque je ne peux plus utiliser mon logiciel de montage vidéo car ça rame trop.

Que faire alors ?

merci de votre aide.

Salut à toi et bienvenue,

Afin de nous éclairer sur la nature précise de tes soucis "infectieux",
dans un premier temps fais cette procédure et poste le rapport généré par Random's system information tool (RSIT) par
random/random
Télécharge random's system information tool (RSIT) par random/random et sauvegarde-le sur le Bureau.

- Double-clique sur RSIT.exe afin de lancer RSIT.
- Clique Continue à l'écran Disclaimer.
- Si l'outil HIjackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera et tu devras accepter la licence.

- Poste le contenu de log.txt (<<qui sera affiché)
ainsi que info.txt (<<qui sera réduit dans la Barre des Tâches).

// ! Important !
=======================

Ps:
======
Conseil d'ordre général
---->> Aller sur le Net avec Windows Internet Explorer, n'est pas souhaitable.
Pour vous en convaincre, un petit test de votre navigateur

Comparez-donc Windows Internet Explorer avec Mozilla-Firefox (ce dernier devrait atteindre les 92 )
Quand à Windows Internet Explorer, j'en laisse la surprise...

Toutefois, ce qui ne veut pas dire que Windows Internet Explorer, ne doit pas être à jour ! (vérifier que vous avez la dernière version ! )

Télécharger Mozilla-Firefox 3.0. X. (le X représente évidemment la dernière version ) et le mettre à l'install comme Navigateur par défaut.

lien ici

-->source ici de conseils
Eviter à tous prix de poster dans plusieurs Forum à la fois...pas de multi-postage donc !



Poster les 2 rapports demandés (log.txt et info.txt)
En cas de fichier trop gros, suffit de le diviser sur deux réponses, ou plus.....




PS:
si tu ne peux pas télécharger en direct avec la machine infectée, il est évident qu'il faut faire usage, d'une carte SD ou clé usb via un autre PC.

voici le rapport demandé :

Logfile of random's system information tool 1.07 (written by random/random)
Run by Florian & Stéphanie at 2010-06-19 09:57:54
Microsoft Windows XP Professionnel Service Pack 3
System drive C: has 13 GB (32%) free of 40 GB
Total RAM: 2046 MB (64% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 09:57:56, on 19/06/2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Brother\ControlCenter2\brctrcen.exe
C:\Program Files\NetRatingsNetSight\NetSight\NielsenOnline.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\NetRatingsNetSight\NetSight\NielsenOnline.exe
C:\Program Files\CyberLink\PCM4Everio\EverioService.exe
C:\Program Files\Multimedia Mouse Driver\V5\StartAutorun.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Multimedia Mouse Driver\V5\KMConfig.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
C:\Garmin\gStart.exe
C:\documents and settings\florian & stéphanie\local settings\application data\mmcbhgf.exe
C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
C:\Program Files\Multimedia Mouse Driver\V5\KMProcess.exe
C:\Program Files\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatcher.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\brss01a.exe
C:\Program Files\Brother\Brmfcmon\BrMfcmon.exe
C:\Program Files\Ahead\NeroNET\NeroNET.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\FsUsbExService.Exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Live\Toolbar\wltuser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Florian & Stéphanie\Bureau\RSIT.exe
C:\Program Files\trend micro\Florian & Stéphanie.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.valcenis.com/video.htm
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = ;setup.msn.com;memberservices.msn.com;*.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O1 - Hosts: 212.150.54.250 dv-networks.com
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: BrowserHelper Class - {8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6} - C:\Program Files\SGPSA\SearchAssistant.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: Search Assistant - {F0626A63-410B-45E2-99A1-3F2475B2D695} - C:\Program Files\SGPSA\BHO.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [SetDefPrt] C:\Program Files\Brother\Brmfl05a\BrStDvPt.exe
O4 - HKLM\..\Run: [ControlCenter2.0] C:\Program Files\Brother\ControlCenter2\brctrcen.exe /autorun
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKLM\..\Run: [NielsenOnline] C:\Program Files\NetRatingsNetSight\NetSight\NielsenOnline.exe
O4 - HKLM\..\Run: [SoftwareHelper] C:\Documents and Settings\Florian & Stéphanie\Application Data\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe
O4 - HKLM\..\Run: [EverioService] "C:\Program Files\CyberLink\PCM4Everio\EverioService.exe"
O4 - HKLM\..\Run: [KMConfig] "C:\Program Files\Multimedia Mouse Driver\V5\StartAutorun.exe" KMConfig.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SGPUpdater] C:\Program Files\Search Guard PlusU\sgpUpdaters.exe
O4 - HKLM\..\Run: [FBSearch] C:\Program Files\Search Guard Plus\SearchGuardPlus.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe -CheckReg
O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Free Download Manager] C:\Program Files\Free Download Manager\fdm.exe -autorun
O4 - HKCU\..\Run: [Bits Platform] C:\DOCUME~1\FLORIA~1\APPLIC~1\MANAGE~1\name meow.exe
O4 - HKCU\..\Run: [LaunchList] C:\Program Files\Pinnacle\Studio 11\LaunchList2.exe
O4 - HKCU\..\Run: [AutoStartNPSAgent] C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
O4 - HKCU\..\Run: [gStart] C:\Garmin\gStart.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [mmcbhgf] "c:\documents and settings\florian & stéphanie\local settings\application data\mmcbhgf.exe" mmcbhgf
O4 - HKCU\..\RunOnce: [Shockwave Updater] C:\WINDOWS\system32\Adobe\SHOCKW~1\SWHELP~3.EXE -Update -1103470 -"Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; GTB6.3; .NET CLR 1.1.4322; .NET CLR 2.0.50727; OfficeLiveConnector.1.3; OfficeLivePatch.0.0; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729)" -"http://jeux2moto.com/jeu+de+moto+cross+en+3d.php"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Outil de détection de support PMB.lnk = C:\Program Files\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatcher.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Contrôleur d’état.lnk = C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {05D96F71-87C6-11D3-9BE4-00902742D6E0} (QuickPlace Class) - http://qp1.orion.education.fr/qp2.cab
O16 - DPF: {0972B098-DEE9-4279-AC7E-4BAAA029102D} (PhotoboxPhotowaysUploader5 Control) - http://assets.photobox.com/assets/aurigma/ImageUploader5.cab?20100429082905
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://missbonduelle.spaces.live.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} (Image Uploader Control) - http://www.new2.foto.com/ImageUploader5.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1163785418093
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2005111401/housecall.trendmicro.com/housecall/xscan53.cab
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://missbonduelle.spaces.live.com/PhotoUpload/MsnPUpld.cab
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://fichiers.touslesdrivers.com/maconfig/MaConfig_3_1_2_1.cab
O16 - DPF: {BD8667B7-38D8-4C77-B580-18C3E146372C} (Creative Toolbox Plug-in) - http://bmm.imgag.com/imgag/cp/install/crusher-fr.cab
O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\system32\brsvc01a.exe
O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe
O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: FsUsbExService - Teruten - C:\WINDOWS\system32\FsUsbExService.Exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner - C:\WINDOWS\system32\imapi.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Ma-Config Service (maconfservice) - Unknown owner - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: Partage de Bureau à distance NetMeeting (mnmsrvc) - Unknown owner - C:\WINDOWS\system32\mnmsrvc.exe
O23 - Service: NeroNET - Ahead Software AG - C:\Program Files\Ahead\NeroNET\NeroNET.exe
O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: Carte à puce (SCardSvr) - Unknown owner - C:\WINDOWS\System32\SCardSvr.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Journaux et alertes de performance (SysmonLog) - Unknown owner - C:\WINDOWS\system32\smlogsvc.exe
O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe

--
End of file - 15562 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\OGALogon.job
C:\WINDOWS\tasks\RegPowerClean.job
C:\WINDOWS\tasks\RPCReminder.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{182854A5-3FFD-40B1-BAF5-6346834D0150}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2006-12-18 59032]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
C:\Program Files\Spybot - Search & Destroy\SDHelper.dll [2004-05-12 744960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5CA3D70E-1895-11CF-8E15-001234567890}]
DriveLetterAccess - C:\WINDOWS\System32\DLA\DLASHX_W.DLL [2006-06-13 110652]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2009-05-19 137600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6}]
BrowserHelper Class - C:\Program Files\SGPSA\SearchAssistant.dll [2009-10-15 123904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-12-21 263280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll [2009-12-21 764912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-06-06 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-06-06 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F0626A63-410B-45E2-99A1-3F2475B2D695}]
Search Assistant - C:\Program Files\SGPSA\BHO.dll [2009-11-06 293376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-12-21 263280]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SetDefPrt"=C:\Program Files\Brother\Brmfl05a\BrStDvPt.exe [2005-01-26 49152]
"ControlCenter2.0"=C:\Program Files\Brother\ControlCenter2\brctrcen.exe [2005-05-17 933888]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2008-01-21 61440]
"NielsenOnline"=C:\Program Files\NetRatingsNetSight\NetSight\NielsenOnline.exe [2007-11-30 45056]
"EoEngine"= []
"SoftwareHelper"=C:\Documents and Settings\Florian & Stéphanie\Application Data\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe []
"EverioService"=C:\Program Files\CyberLink\PCM4Everio\EverioService.exe [2007-11-01 151552]
"KMConfig"=C:\Program Files\Multimedia Mouse Driver\V5\StartAutorun.exe [2007-03-06 212992]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2006-03-01 577536]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-11-25 81000]
"TkBellExe"=C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [2009-10-04 198160]
"SGPUpdater"=C:\Program Files\Search Guard PlusU\sgpUpdaters.exe [2009-05-15 67456]
"FBSearch"=C:\Program Files\Search Guard Plus\SearchGuardPlus.exe [2009-05-04 194432]
"NPSStartup"= []
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2010-03-17 421888]
"PinnacleDriverCheck"=C:\WINDOWS\system32\PSDrvCheck.exe [2004-03-10 406016]
"DLA"=C:\WINDOWS\System32\DLA\DLACTRLW.EXE [2006-06-13 127036]
"SunJavaUpdateSched"=C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe [2006-12-15 75520]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Free Download Manager"=C:\Program Files\Free Download Manager\fdm.exe -autorun []
"Bits Platform"=C:\DOCUME~1\FLORIA~1\APPLIC~1\MANAGE~1\name meow.exe []
"LaunchList"=C:\Program Files\Pinnacle\Studio 11\LaunchList2.exe []
"AutoStartNPSAgent"=C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe [2009-04-02 102400]
"gStart"=C:\Garmin\gStart.exe [2008-08-13 1891416]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-12-21 39408]
"NoSpam"= []
"mmcbhgf"=c:\documents and settings\florian & stéphanie\local settings\application data\mmcbhgf.exe [2010-06-16 495104]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Shockwave Updater"=C:\WINDOWS\system32\Adobe\SHOCKW~1\SWHELP~3.EXE [2008-11-04 460216]

C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
Adobe Gamma Loader.lnk - C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
Contrôleur d’état.lnk - C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
DSLMON.lnk - C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
Lancement rapide d'Adobe Reader.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe

C:\Documents and Settings\Florian & Stéphanie\Menu Démarrer\Programmes\Démarrage
Outil de détection de support PMB.lnk - C:\Program Files\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatcher.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2008-02-26 126976]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265088]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayL oad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aawservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewall policy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\eMule\emule.exe"="C:\Program Files\eMule\emule.exe:*:Enabled:eMule"
"C:\Program Files\IncrediMail\bin\IMApp.exe"="C:\Program Files\IncrediMail\bin\IMApp.exe:*:Enabled:IncrediMail"
"C:\Program Files\IncrediMail\bin\IncMail.exe"="C:\Program Files\IncrediMail\bin\IncMail.exe:*:Enabled:IncrediMail"
"C:\Program Files\IncrediMail\bin\ImpCnt.exe"="C:\Program Files\IncrediMail\bin\ImpCnt.exe:*:Enabled:IncrediMail"
"C:\Documents and Settings\Florian & Stéphanie\Bureau\incredimail_install.exe"="C:\Documents and Settings\Florian & Stéphanie\Bureau\incredimail_install.exe:*:Enabled:IncrediMail Installer"
"C:\Documents and Settings\Florian & Stéphanie\Local Settings\Temp\ImInstaller\IncrediMail\incredimail_install.exe"="C:\Documents and Settings\Florian & Stéphanie\Local Settings\Temp\ImInstaller\IncrediMail\incredimail_install.exe:*:Enabled:IncrediMail Installer"
"C:\Program Files\NielsenNetratings\bin\insight.exe"="C:\Program Files\NielsenNetratings\bin\insight.exe:*:Enabled:insight"
"C:\WINDOWS\system32\ftp.exe"="C:\WINDOWS\system32\ftp.exe:*:Disabled:Logiciel de transfert de fichiers"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\WINDOWS\system32\rtcshare.exe"="C:\WINDOWS\system32\rtcshare.exe:*:Enabled:Partage de l'application RTC"
"C:\Program Files\Pinnacle\Studio 11\programs\RM.exe"="C:\Program Files\Pinnacle\Studio 11\programs\RM.exe:*:Enabled:Render Manager"
"C:\Program Files\Pinnacle\Studio 11\programs\Studio.exe"="C:\Program Files\Pinnacle\Studio 11\programs\Studio.exe:*:Enabled:Studio"
"C:\Program Files\Pinnacle\Studio 11\programs\PMSRegisterFile.exe"="C:\Program Files\Pinnacle\Studio 11\programs\PMSRegisterFile.exe:*:Enabled:PMSRegisterFile"
"C:\Program Files\Pinnacle\Studio 11\programs\umi.exe"="C:\Program Files\Pinnacle\Studio 11\programs\umi.exe:*:Enabled:umi"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\Documents and Settings\Florian & Stéphanie\Bureau\incredimail_install(1).exe"="C:\Documents and Settings\Florian & Stéphanie\Bureau\incredimail_install(1).exe:*:Enabled:IncrediMail Installer"
"C:\Program Files\Last.fm\LastFM.exe"="C:\Program Files\Last.fm\LastFM.exe:*:Enabled:Last.fm"
"C:\Program Files\Pando Networks\Pando\pando.exe"="C:\Program Files\Pando Networks\Pando\pando.exe:*:Enabled:pando"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\ma-config.com\maconfservice.exe"="C:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare"
"C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe"="C:\Program Files\Samsung\Samsung New PC Studio\npsasvr.exe:*:Enabled:KTF MUSIC AoD Server"
"C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe"="C:\Program Files\Samsung\Samsung New PC Studio\npsvsvr.exe:*:Enabled:KTF MUSIC VoD Server"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewall policy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live FolderShare"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{1a473254-f6c7-11dd-8e27-001617d4bf8e}]
shell\AutoRun\command - I:\LaunchU3.exe -a


======List of files/folders created in the last 1 months======

2010-06-19 09:57:03 ----D---- C:\Program Files\trend micro
2010-06-19 09:57:02 ----D---- C:\rsit
2010-06-11 22:56:10 ----HDC---- C:\WINDOWS\$NtUninstallKB980218$
2010-06-11 22:56:03 ----HDC---- C:\WINDOWS\$NtUninstallKB980195$
2010-06-11 22:54:50 ----SHD---- C:\Config.Msi
2010-06-11 22:53:56 ----HDC---- C:\WINDOWS\$NtUninstallKB979559$
2010-06-11 22:51:35 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2010-06-11 22:51:11 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2010-06-11 22:50:38 ----HDC---- C:\WINDOWS\$NtUninstallKB975562$
2010-06-06 11:37:48 ----D---- C:\My Music
2010-06-06 11:37:30 ----A---- C:\WINDOWS\system32\deployJava1.dll
2010-06-06 11:37:29 ----A---- C:\WINDOWS\system32\javaws.exe
2010-06-06 11:37:29 ----A---- C:\WINDOWS\system32\javaw.exe
2010-06-06 11:37:29 ----A---- C:\WINDOWS\system32\java.exe
2010-06-05 12:58:37 ----D---- C:\Documents and Settings\All Users\Application Data\Sun
2010-06-05 12:38:21 ----D---- C:\WINDOWS\Drivers
2010-05-25 19:39:33 ----HDC---- C:\WINDOWS\$NtUninstallKB981793$

======List of files/folders modified in the last 1 months======

2010-06-19 09:57:27 ----D---- C:\WINDOWS\Prefetch
2010-06-19 09:57:03 ----RD---- C:\Program Files
2010-06-19 08:36:40 ----D---- C:\WINDOWS\system32
2010-06-19 08:36:40 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-06-19 08:33:53 ----D---- C:\WINDOWS\Temp
2010-06-18 22:01:51 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-06-18 21:37:45 ----AC---- C:\WINDOWS\Radio_Fr.ini
2010-06-17 20:24:01 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help
2010-06-17 18:01:07 ----D---- C:\WINDOWS\system32\CatRoot2
2010-06-16 13:39:36 ----A---- C:\WINDOWS\NeroDigital.ini
2010-06-12 12:30:37 ----RSD---- C:\WINDOWS\assembly
2010-06-12 12:28:22 ----D---- C:\WINDOWS\Microsoft.NET
2010-06-12 12:21:38 ----D---- C:\WINDOWS
2010-06-11 22:56:13 ----HD---- C:\WINDOWS\inf
2010-06-11 22:56:12 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-06-11 22:56:07 ----A---- C:\WINDOWS\imsins.BAK
2010-06-11 22:56:07 ----A---- C:\WINDOWS\iis6.BAK
2010-06-11 22:56:02 ----HD---- C:\WINDOWS\$hf_mig$
2010-06-11 22:55:59 ----SHD---- C:\WINDOWS\Installer
2010-06-11 22:53:48 ----D---- C:\Program Files\Internet Explorer
2010-06-11 22:53:39 ----D---- C:\WINDOWS\ie8updates
2010-06-11 22:49:00 ----D---- C:\WINDOWS\WinSxS
2010-06-05 12:58:36 ----D---- C:\Program Files\Fichiers communs\Java
2010-06-05 12:52:42 ----D---- C:\WINDOWS\system32\drivers
2010-06-04 18:32:37 ----D---- C:\Program Files\Microsoft Silverlight
2010-05-28 21:37:34 ----A---- C:\WINDOWS\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2009-11-25 27408]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2009-11-25 114768]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2009-11-25 48560]
R1 DLACDBHM;DLACDBHM; C:\WINDOWS\System32\Drivers\DLACDBHM.SYS [2006-03-17 5660]
R1 DLARTL_N;DLARTL_N; C:\WINDOWS\System32\Drivers\DLARTL_N.SYS [2006-03-17 22684]
R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40576]
R1 nnrnstdi;nnrnstdi; C:\WINDOWS\system32\drivers\nnrnstdi.sys [2009-08-21 15360]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2009-11-25 20560]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2009-11-25 94160]
R2 DLABOIOM;DLABOIOM; C:\WINDOWS\System32\DLA\DLABOIOM.SYS [2006-06-13 25724]
R2 DLADResN;DLADResN; C:\WINDOWS\System32\DLA\DLADResN.SYS [2006-06-13 2496]
R2 DLAIFS_M;DLAIFS_M; C:\WINDOWS\System32\DLA\DLAIFS_M.SYS [2006-06-13 86844]
R2 DLAOPIOM;DLAOPIOM; C:\WINDOWS\System32\DLA\DLAOPIOM.SYS [2006-06-13 14716]
R2 DLAPoolM;DLAPoolM; C:\WINDOWS\System32\DLA\DLAPoolM.SYS [2006-06-13 6364]
R2 DLAUDF_M;DLAUDF_M; C:\WINDOWS\System32\DLA\DLAUDF_M.SYS [2006-06-13 88476]
R2 DLAUDFAM;DLAUDFAM; C:\WINDOWS\System32\DLA\DLAUDFAM.SYS [2006-06-13 94460]
R2 DRVNDDM;DRVNDDM; C:\WINDOWS\System32\Drivers\DRVNDDM.SYS [2006-03-17 40544]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2006-05-10 3964736]
R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 ASAPIW2k;ASAPIW2K; C:\WINDOWS\system32\drivers\ASAPIW2k.sys [2004-03-10 11264]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2009-11-25 23120]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2008-02-26 2863616]
R3 BrScnUsb;Brother USB Still Image driver; C:\WINDOWS\System32\Drivers\BrScnUsb.sys [2004-10-15 15295]
R3 FsUsbExDisk;FsUsbExDisk; \??\C:\WINDOWS\system32\FsUsbExDisk.SYS []
R3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 km_filter;km_filter; C:\WINDOWS\system32\drivers\km_filter.sys [2009-08-21 9088]
R3 MarvinBus;Pinnacle Marvin Bus; C:\WINDOWS\system32\DRIVERS\MarvinBus.sys [2007-01-04 171520]
R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2007-01-04 47360]
R3 rtl8139;Pilote NT de carte Realtek PCI Fast Ethernet à base RTL8139(A/B/C); C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-04 20992]
R3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
R3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
R3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S1 ASPI32;ASPI32; C:\WINDOWS\system32\drivers\ASPI32.sys []
S2 ADILOADER;General Purpose USB Driver (adildr.sys); C:\WINDOWS\System32\Drivers\adildr.sys [2003-07-17 46167]
S3 61883;Pilote d'unité 61883; C:\WINDOWS\system32\DRIVERS\61883.sys [2008-04-13 48128]
S3 adiusbaw;USB ADSL WAN Adapter; C:\WINDOWS\system32\DRIVERS\adiusbaw.sys [2003-03-27 127145]
S3 Avc;Périphérique AVC; C:\WINDOWS\system32\DRIVERS\avc.sys [2008-04-13 38912]
S3 aw40xni0;aw40xni0; C:\WINDOWS\system32\drivers\aw40xni0.sys []
S3 catchme;catchme; \??\C:\DOCUME~1\FLORIA~1\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 driverhardwarev2;driverhardwarev2; \??\C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys []
S3 GMSIPCI;GMSIPCI; \??\F:\INSTALL\GMSIPCI.SYS []
S3 grmnusb;Garmin USB Driver; C:\WINDOWS\system32\drivers\grmnusb.sys [2009-04-17 9344]
S3 MSDV;Microsoft DV Camera and VCR; C:\WINDOWS\system32\DRIVERS\msdv.sys [2008-04-13 51200]
S3 MSICPL;MSICPL; \??\F:\install4\MSICPL.sys []
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 NielGfx;Nielsen USB GFX; C:\WINDOWS\system32\drivers\nielgfx.sys []
S3 nm;Pilote du Moniteur réseau; C:\WINDOWS\system32\DRIVERS\NMnt.sys [2008-04-13 40320]
S3 NPF;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys []
S3 NTACCESS;NTACCESS; \??\F:\NTACCESS.sys []
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2007-09-17 21632]
S3 PD1030VID;Creative WebCam Pro; C:\WINDOWS\system32\DRIVERS\p1030vid.sys [2000-12-26 167661]
S3 SetupNTGLM7X;SetupNTGLM7X; \??\F:\NTGLM7X.sys []
S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 SQTECH905C;DualCamera; C:\WINDOWS\System32\Drivers\Capt905c.sys [2005-07-13 33890]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\WINDOWS\system32\DRIVERS\ss_bbus.sys [2009-03-20 90112]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\WINDOWS\system32\DRIVERS\ss_bmdfl.sys [2009-03-20 14976]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\WINDOWS\system32\DRIVERS\ss_bmdm.sys [2009-03-20 121856]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2009-08-28 40448]
S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 As1216p;As1216p; C:\WINDOWS\system32\drivers\As1216p.sys []
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 aawservice;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe [2008-07-07 611664]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-08-28 144672]
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-11-25 18752]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2008-02-26 520192]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-11-25 138680]
R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 FsUsbExService;FsUsbExService; C:\WINDOWS\system32\FsUsbExService.Exe [2009-03-31 233472]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-06-06 153376]
R2 MDM;Machine Debug Manager; C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-20 322120]
R2 NeroNET;NeroNET; C:\Program Files\Ahead\NeroNET\NeroNET.exe [2004-11-30 1122304]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\CyberLink\Shared Files\RichVideo.exe [2006-12-20 272024]
R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-05-19 240512]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-11-25 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-11-25 352920]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2008-02-25 593920]
S2 Brother XP spl Service;BrSplService; C:\WINDOWS\system32\brsvc01a.exe [2002-04-12 57344]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe [2010-05-07 68096]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 Boonty Games;Boonty Games; C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe [2007-02-21 69120]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-12-21 182768]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 maconfservice;Ma-Config Service; C:\Program Files\ma-config.com\maconfservice.exe [2009-04-21 216232]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files\WinPcap\rpcapd.exe [2005-08-02 86016]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2008-04-07 430592]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
S4 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]

-----------------EOF-----------------

re,
pas mal d' inefctions dans ton PC

je résume !

Infection BT
Infection FakeAlert
Infection LOP
Infection MagicControl

dans un premier temps fais ceci:

Ensuite fais ceci:

Télécharge Malwarebytes' Anti-Malware et installe le (assure toi qu'il se soit bien mis à jour avant de passer à la suite).

-->source ici
note:
=========
Si tu as déjà le logiciel sur ta machine, faire une mise à jour

ensuite,

* Redémarre en mode sans échec :

o Après avoir entendu l'ordinateur biper lors du démarrage, mais avant que l'icône Windows apparaisse, tapote la touche F8 (une pression par seconde).
o A la place du chargement normal de Windows, un menu avec différentes options devrait aparaître.
o Choisis la première option, pour exécuter Windows en mode sans échec, puis appuie sur "Entrée".
o Choisis ton compte.

* Si besoin: pour une aide visuelle clic ici

* Lance MBAM et sélectionne "Exécuter un examen rapide". Patiente le temps du scan.
* Une fois le scan terminé,clique sur "Supprimer la sélection".


Si MBAM a besoin de redémarrer pour terminer la suppression, accepte en cliquant sur Ok.
Enregistre le rapport sur ton Bureau lorsqu'il s'affichera.
Poste le rapport dans ta prochaine réponse.

ps:
--->aide visuelle sur Mbam ici

voici le rapport :

Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Version de la base de données: 4052

Windows 5.1.2600 Service Pack 3 (Safe Mode)
Internet Explorer 8.0.6001.18702

19/06/2010 17:13:41
mbam-log-2010-06-19 (17-13-41).txt

Type d'examen: Examen rapide
Elément(s) analysé(s): 120176
Temps écoulé: 9 minute(s), 10 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 13
Valeur(s) du Registre infectée(s): 3
Elément(s) de données du Registre infecté(s): 3
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 4

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1a93c934-025b-4c3a-b38e-9654a7003239} (Adware.Gamesbar) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{6f282b65-56bf-4bd1-a8b2-a4449a05863d} (Adware.Gamesbar) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{018b7ec3-eeca-11d3-8e71-0000e82c6c0d} (Adware.ISTBar) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1d4db7d2-6ec9-47a3-bd87-1e41684e07bb} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{100eb1fd-d03e-47fd-81f3-ee91287f9465} (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{c5428486-50a0-4a02-9d20-520b59a9f9b2} (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{c5428486-50a0-4a02-9d20-520b59a9f9b3} (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{90b8b761-df2b-48ac-bbe0-bcc03a819b3b} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{4a7c84e2-e95c-43c6-8dd3-03abcd0eb60e} (Adware.SmartShopper) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{8bcb5337-ec01-4e38-840c-a964f174255b} (Adware.SmartShopper) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{4a7c84e2-e95c-43c6-8dd3-03abcd0eb60e} (Adware.SmartShopper) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\fcn (Rogue.Residue) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\EoRezo (Rogue.Eorezo) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\mmcbhgf (Adware.Navipromo.H) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{90b8b761-df2b-48ac-bbe0-bcc03a819b3b} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Terminal Server\Install\Software\Microsoft\Windows\CurrentVersion\Run\firevall administrating (Trojan.Backdoor) -> Quarantined and deleted successfully.

Elément(s) de données du Registre infecté(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
C:\Documents and Settings\Florian & Stéphanie\Local Settings\Application Data\mmcbhgf_navps.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\Florian & Stéphanie\Local Settings\Application Data\mmcbhgf_nav.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\Florian & Stéphanie\Local Settings\Application Data\mmcbhgf.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\Florian & Stéphanie\Local Settings\Application Data\mmcbhgf.exe (Adware.Navipromo.H) -> Quarantined and deleted successfully.


merci d'avance pour ton aide.

re,


Je te conseille ceci:

Fais un scan de ta machine avec Spybot-S&D©®
Rends-toi sur ce lien et télécharge l'utilitaire.
Installe-le et fais la mise à jour.

Toutefois être prudent à l'install, si nécessaire décocher toute installation de Yahoo Toolbars ( et compagnie ,ça devient une manie dans les gratuits d'auto installer ces bestioles !)
De plus, n'accepte pas l'installation de "Teatimer" .

Si par hasard tu l'as accepter, ce n'est pas dramatique fais ceci:

1) Désactive le Teatimer de Spybot

[*]Ouvre Spybot
[*]Rends-toi dans le menu Mode
[*]Coche la case Mode Avancé
[*]Clique sur Outils (tout en bas)
[*]Dans Résident, tu décoches la case Resident Teatimer
-----> L'icône doit être absente de la barre des tâches...

Tutoriel animé :
-->source ici

(merci Balltrap34 !)

j'ai fait l'analyse avec spybot et j'ai fait réparer les erreurs.

voici le rapport d'analyse.


--- Search result list ---
WhenU.DAEMONTools.SearchBar: [SBI $4C750DBD] Dossier Programme (Répertoire, fixed)
C:\Program Files\DaemonTools_WhenUSave_Installer\

WhenU.DAEMONTools.SearchBar: [SBI $C18FAFDD] Exécutable (Fichier, fixed)
C:\Program Files\DaemonTools_WhenUSave_Installer\DaemonTools_WhenUSave_Installer.exe
Properties.size=0
Properties.md5=D41D8CD98F00B204E9800998ECF8427E

FastBrowserSearchToolbar: [SBI $0ECF0F00] Réglages (Clé du registre, fixed)
HKEY_USERS\S-1-5-21-602162358-1060284298-725345543-1003\Software\FBSearch

FastBrowserSearchToolbar: [SBI $E62EEFC5] Réglages (Clé du registre, fixed)
HKEY_CLASSES_ROOT\AppID\{055069F3-F78B-4BD1-A277-FE66648D3300}

FastBrowserSearchToolbar: [SBI $20609F11] Class ID (Clé du registre, fixed)
HKEY_CLASSES_ROOT\CLSID\{F0626A63-410B-45E2-99A1-3F2475B2D695}

FastBrowserSearchToolbar: [SBI $16A94C9F] Type library (Clé du registre, fixed)
HKEY_CLASSES_ROOT\TypeLib\{3088C799-9630-4719-A471-4544D7CABC2D}

FastBrowserSearchToolbar: [SBI $B4FBE6F2] Browser helper object (Clé du registre, fixed)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F0626A63-410B-45E2-99A1-3F2475B2D695}

Win32.Agent.fbx: [SBI $86BD92BA] Réglages (Clé du registre, fixed)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\mmcbhgf

MediaPlex: Cookie traceur (Internet Explorer: Florian & Stéphanie) (Cookie, fixed)


Statcounter: Cookie traceur (Internet Explorer: Florian & Stéphanie) (Cookie, fixed)


FastClick: Cookie traceur (Internet Explorer: Florian & Stéphanie) (Cookie, fixed)


Win32.PornPopUp: Cookie traceur (Internet Explorer: Florian & Stéphanie) (Cookie, fixed)


BlueStreak: Cookie traceur (Internet Explorer: Florian & Stéphanie) (Cookie, fixed)


MediaPlex: Cookie traceur (Internet Explorer: Florian & Stéphanie) (Cookie, fixed)


Tradedoubler: Cookie traceur (Internet Explorer: Florian & Stéphanie) (Cookie, fixed)


MediaPlex: Cookie traceur (Internet Explorer: Florian & Stéphanie) (Cookie, fixed)


Right Media: Cookie traceur (Internet Explorer: Florian & Stéphanie) (Cookie, fixed)


Zedo: Cookie traceur (Internet Explorer: Florian & Stéphanie) (Cookie, fixed)


Adviva: Cookie traceur (Internet Explorer: Florian & Stéphanie) (Cookie, fixed)


DoubleClick: Cookie traceur (Internet Explorer: Florian & Stéphanie) (Cookie, fixed)


WebTrends live: Cookie traceur (Internet Explorer: Florian & Stéphanie) (Cookie, fixed)


HitBox: Cookie traceur (Internet Explorer: Florian & Stéphanie) (Cookie, fixed)


HitBox: Cookie traceur (Internet Explorer: Florian & Stéphanie) (Cookie, fixed)


Win32.PornPopUp: Cookie traceur (Internet Explorer: Florian & Stéphanie) (Cookie, fixed)



--- S

re,
bien on avance,
fais ceci:


relance ce programme et post le rapport généré.


C:\Program Files\trend micro\Florian & Stéphanie.exe

voilà !

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:44:10, on 19/06/2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Brother\ControlCenter2\brctrcen.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\NetRatingsNetSight\NetSight\NielsenOnline.exe
C:\Program Files\CyberLink\PCM4Everio\EverioService.exe
C:\Program Files\NetRatingsNetSight\NetSight\NielsenOnline.exe
C:\Program Files\Multimedia Mouse Driver\V5\StartAutorun.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Multimedia Mouse Driver\V5\KMConfig.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
C:\Garmin\gStart.exe
C:\Program Files\Multimedia Mouse Driver\V5\KMProcess.exe
C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
C:\Program Files\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatcher.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\WINDOWS\system32\brsvc01a.exe
C:\WINDOWS\system32\brss01a.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Brother\Brmfcmon\BrMfcmon.exe
C:\Program Files\Ahead\NeroNET\NeroNET.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\FsUsbExService.Exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Live\Toolbar\wltuser.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\trend micro\Florian & Stéphanie.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.valcenis.com/video.htm
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = ;setup.msn.com;memberservices.msn.com;*.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O1 - Hosts: 212.150.54.250 dv-networks.com
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: BrowserHelper Class - {8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6} - C:\Program Files\SGPSA\SearchAssistant.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [SetDefPrt] C:\Program Files\Brother\Brmfl05a\BrStDvPt.exe
O4 - HKLM\..\Run: [ControlCenter2.0] C:\Program Files\Brother\ControlCenter2\brctrcen.exe /autorun
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKLM\..\Run: [NielsenOnline] C:\Program Files\NetRatingsNetSight\NetSight\NielsenOnline.exe
O4 - HKLM\..\Run: [SoftwareHelper] C:\Documents and Settings\Florian & Stéphanie\Application Data\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe
O4 - HKLM\..\Run: [EverioService] "C:\Program Files\CyberLink\PCM4Everio\EverioService.exe"
O4 - HKLM\..\Run: [KMConfig] "C:\Program Files\Multimedia Mouse Driver\V5\StartAutorun.exe" KMConfig.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SGPUpdater] C:\Program Files\Search Guard PlusU\sgpUpdaters.exe
O4 - HKLM\..\Run: [FBSearch] C:\Program Files\Search Guard Plus\SearchGuardPlus.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe -CheckReg
O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe"
O4 - HKLM\..\RunOnce: [SpybotDeletingA9371] command.com /c del "C:\Program Files\DaemonTools_WhenUSave_Installer\DaemonTools_WhenUSave_Installer.exe"
O4 - HKLM\..\RunOnce: [SpybotDeletingC2148] cmd.exe /c del "C:\Program Files\DaemonTools_WhenUSave_Installer\DaemonTools_WhenUSave_Installer.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Free Download Manager] C:\Program Files\Free Download Manager\fdm.exe -autorun
O4 - HKCU\..\Run: [Bits Platform] C:\DOCUME~1\FLORIA~1\APPLIC~1\MANAGE~1\name meow.exe
O4 - HKCU\..\Run: [LaunchList] C:\Program Files\Pinnacle\Studio 11\LaunchList2.exe
O4 - HKCU\..\Run: [AutoStartNPSAgent] C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
O4 - HKCU\..\Run: [gStart] C:\Garmin\gStart.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\RunOnce: [Shockwave Updater] C:\WINDOWS\system32\Adobe\SHOCKW~1\SWHELP~3.EXE -Update -1103470 -"Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; GTB6.3; .NET CLR 1.1.4322; .NET CLR 2.0.50727; OfficeLiveConnector.1.3; OfficeLivePatch.0.0; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729)" -"http://jeux2moto.com/jeu+de+moto+cross+en+3d.php"
O4 - HKCU\..\RunOnce: [SpybotDeletingB8520] command.com /c del "C:\Program Files\DaemonTools_WhenUSave_Installer\DaemonTools_WhenUSave_Installer.exe"
O4 - HKCU\..\RunOnce: [SpybotDeletingD1059] cmd.exe /c del "C:\Program Files\DaemonTools_WhenUSave_Installer\DaemonTools_WhenUSave_Installer.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Outil de détection de support PMB.lnk = C:\Program Files\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatcher.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Contrôleur d’état.lnk = C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {05D96F71-87C6-11D3-9BE4-00902742D6E0} (QuickPlace Class) - http://qp1.orion.education.fr/qp2.cab
O16 - DPF: {0972B098-DEE9-4279-AC7E-4BAAA029102D} (PhotoboxPhotowaysUploader5 Control) - http://assets.photobox.com/assets/aurigma/ImageUploader5.cab?20100429082905
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://missbonduelle.spaces.live.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} (Image Uploader Control) - http://www.new2.foto.com/ImageUploader5.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1163785418093
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2005111401/housecall.trendmicro.com/housecall/xscan53.cab
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://missbonduelle.spaces.live.com/PhotoUpload/MsnPUpld.cab
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://fichiers.touslesdrivers.com/maconfig/MaConfig_3_1_2_1.cab
O16 - DPF: {BD8667B7-38D8-4C77-B580-18C3E146372C} (Creative Toolbox Plug-in) - http://bmm.imgag.com/imgag/cp/install/crusher-fr.cab
O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\system32\brsvc01a.exe
O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe
O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: FsUsbExService - Teruten - C:\WINDOWS\system32\FsUsbExService.Exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner - C:\WINDOWS\system32\imapi.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Ma-Config Service (maconfservice) - Unknown owner - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: Partage de Bureau à distance NetMeeting (mnmsrvc) - Unknown owner - C:\WINDOWS\system32\mnmsrvc.exe
O23 - Service: NeroNET - Ahead Software AG - C:\Program Files\Ahead\NeroNET\NeroNET.exe
O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: Carte à puce (SCardSvr) - Unknown owner - C:\WINDOWS\System32\SCardSvr.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Journaux et alertes de performance (SysmonLog) - Unknown owner - C:\WINDOWS\system32\smlogsvc.exe
O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe

--
End of file - 15663 bytes

est-ce que cela suffit comme info ?

re,
reste pas mal de choses néfastes...on continue.


Télécharge Lop S&D de Angeldark et Eric71 sur ton bureau.

* Double-clic sur le fichier d'install que tu viens de télécharger
* L'install se lance, Accepte la licence et clic sur suivant,
* Un raccourci va être créé sur le bureau en fin d'install.

* Double-clic sur ce raccourcis.
* Une fenêtre bleue s'ouvre, tape "F" pour accepter Français.
* Une nouvelle fenêtre va s'ouvrir avec un menu à choix multiple.
* Tape 1 pour Rechercher et valide ton choix par la touche Entrée.
* Laisse l'outil travailler, il va générer un rapport, poste le à la suite.

Relance Lop S&D de Angeldark et Eric71
Cette fois-ci, choisis l'option 2, suppression+Host.
Poste le rapport.

vo les rapports :

recherche


--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : Intel(R) Core(TM)2 CPU 6400 @ 2.13GHz )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : Florian & Stéphanie ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1368 [VPS 100621-1] 4.8.1368 (Activated)
C:\ (Local Disk) - NTFS - Total:39 Go (Free:12 Go)
D:\ (Local Disk) - NTFS - Total:78 Go (Free:22 Go)
E:\ (Local Disk) - NTFS - Total:115 Go (Free:35 Go)
F:\ (CD or DVD)
H:\ (CD or DVD)
I:\ (USB)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 22/06/2010| 7:23 )

--------------------\\ Listing des dossiers dans APPLIC~1

[28/03/2009|08:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{00D89592-F643-4D8D-8F0F-AFAE0F14D4C3}
[26/09/2009|21:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[07/05/2010|21:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[02/12/2006|16:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
[26/09/2009|21:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[05/05/2010|18:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[18/03/2008|15:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ATI
[21/02/2007|10:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[17/11/2006|19:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Brother
[23/01/2010|13:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cyberlink
[07/11/2008|19:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Downloaded Installations
[14/01/2010|14:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\GARMIN
[21/12/2009|09:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[17/11/2006|19:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[09/05/2010|08:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
[04/05/2009|19:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ma-config.com
[07/05/2010|21:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
[28/02/2007|10:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\magssupportwaitball
[19/06/2010|17:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[04/12/2006|22:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[08/12/2009|21:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[17/06/2010|20:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Help
[05/10/2009|18:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Office Genuine Advantage
[04/05/2009|18:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PC Drivers HeadQuarters
[08/12/2009|21:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PC Suite
[06/06/2007|08:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle
[05/03/2010|18:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Real
[07/05/2010|21:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SmartSound Software Inc
[07/05/2010|21:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony Corporation
[19/06/2010|19:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[05/06/2010|12:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sun
[03/05/2008|09:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[21/12/2006|20:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[07/11/2009|16:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Winferno
[27/02/2008|10:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller


[17/11/2006|19:26] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[07/05/2010|21:21] C:\DOCUME~1\FLORIA~1\APPLIC~1\Adobe
[18/05/2008|18:17] C:\DOCUME~1\FLORIA~1\APPLIC~1\AdobeUM
[20/05/2007|09:12] C:\DOCUME~1\FLORIA~1\APPLIC~1\Ahead
[26/09/2009|21:16] C:\DOCUME~1\FLORIA~1\APPLIC~1\Apple Computer
[07/11/2009|18:21] C:\DOCUME~1\FLORIA~1\APPLIC~1\Application Data
[09/03/2008|16:09] C:\DOCUME~1\FLORIA~1\APPLIC~1\ArcSoft
[18/03/2008|15:40] C:\DOCUME~1\FLORIA~1\APPLIC~1\ATI
[04/01/2007|14:44] C:\DOCUME~1\FLORIA~1\APPLIC~1\Brother
[20/11/2006|17:49] C:\DOCUME~1\FLORIA~1\APPLIC~1\Canon
[23/01/2010|13:25] C:\DOCUME~1\FLORIA~1\APPLIC~1\CyberLink
[30/11/2006|19:02] C:\DOCUME~1\FLORIA~1\APPLIC~1\DivX
[03/05/2009|10:30] C:\DOCUME~1\FLORIA~1\APPLIC~1\EoRezo
[14/01/2010|14:50] C:\DOCUME~1\FLORIA~1\APPLIC~1\GARMIN
[04/05/2009|19:23] C:\DOCUME~1\FLORIA~1\APPLIC~1\GetRightToGo
[30/11/2006|17:24] C:\DOCUME~1\FLORIA~1\APPLIC~1\Google
[15/03/2008|14:16] C:\DOCUME~1\FLORIA~1\APPLIC~1\Help
[17/11/2006|19:31] C:\DOCUME~1\FLORIA~1\APPLIC~1\Identities
[06/06/2007|08:24] C:\DOCUME~1\FLORIA~1\APPLIC~1\InstallShield
[27/09/2009|10:10] C:\DOCUME~1\FLORIA~1\APPLIC~1\LimeWire
[17/11/2006|20:00] C:\DOCUME~1\FLORIA~1\APPLIC~1\Macromedia
[19/06/2010|17:02] C:\DOCUME~1\FLORIA~1\APPLIC~1\Malwarebytes
[10/08/2007|20:22] C:\DOCUME~1\FLORIA~1\APPLIC~1\manager upload less
[22/11/2006|21:59] C:\DOCUME~1\FLORIA~1\APPLIC~1\Media Player Classic
[07/05/2010|21:52] C:\DOCUME~1\FLORIA~1\APPLIC~1\Microsoft
[05/10/2009|18:09] C:\DOCUME~1\FLORIA~1\APPLIC~1\Office Genuine Advantage
[24/10/2008|21:50] C:\DOCUME~1\FLORIA~1\APPLIC~1\OpenOffice.org
[08/12/2009|21:19] C:\DOCUME~1\FLORIA~1\APPLIC~1\PC Suite
[04/10/2009|09:04] C:\DOCUME~1\FLORIA~1\APPLIC~1\Real
[08/12/2009|21:15] C:\DOCUME~1\FLORIA~1\APPLIC~1\Samsung
[03/05/2009|10:38] C:\DOCUME~1\FLORIA~1\APPLIC~1\ScanSoft
[20/06/2007|08:00] C:\DOCUME~1\FLORIA~1\APPLIC~1\Screenshot Sender
[07/05/2010|22:05] C:\DOCUME~1\FLORIA~1\APPLIC~1\Sony Corporation
[30/11/2006|14:02] C:\DOCUME~1\FLORIA~1\APPLIC~1\Sun
[16/02/2009|22:40] C:\DOCUME~1\FLORIA~1\APPLIC~1\U3
[26/04/2009|11:41] C:\DOCUME~1\FLORIA~1\APPLIC~1\Vso
[11/04/2009|09:23] C:\DOCUME~1\FLORIA~1\APPLIC~1\WinRAR

[17/11/2006|19:30] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[12/07/2007|15:39] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[22/06/2010 07:18][--a------] C:\WINDOWS\tasks\RPCReminder.job
[22/06/2010 07:18][--a------] C:\WINDOWS\tasks\RegPowerClean.job
[22/06/2010 07:18][--a------] C:\WINDOWS\tasks\OGALogon.job
[16/06/2010 18:56][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[22/06/2010 07:18][--ah-----] C:\WINDOWS\tasks\SA.DAT
[28/09/2001 16:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[07/05/2010|21:16] C:\Program Files\Adobe
[11/03/2008|20:24] C:\Program Files\Adverts
[03/01/2007|21:28] C:\Program Files\Ahead
[17/11/2006|19:41] C:\Program Files\Alwil Software
[04/12/2007|21:49] C:\Program Files\Amazon
[09/05/2010|11:36] C:\Program Files\Antipub
[26/09/2009|21:12] C:\Program Files\Apple Software Update
[03/05/2009|10:46] C:\Program Files\ArcSoft
[18/03/2008|15:38] C:\Program Files\ATI Technologies
[09/05/2010|08:45] C:\Program Files\AutoMz
[06/05/2009|17:07] C:\Program Files\AvRack
[03/05/2009|16:13] C:\Program Files\Bonjour
[17/11/2006|19:57] C:\Program Files\Brother
[20/11/2006|17:47] C:\Program Files\Canon
[06/12/2008|19:01] C:\Program Files\CDex_170b2
[17/11/2006|19:57] C:\Program Files\Common Files
[17/11/2006|19:23] C:\Program Files\ComPlus Applications
[17/11/2006|20:06] C:\Program Files\Creative
[14/01/2009|12:31] C:\Program Files\CyberLink
[17/01/2009|15:43] C:\Program Files\Dactylo
[03/01/2007|19:45] C:\Program Files\DAEMON Tools
[14/01/2010|14:41] C:\Program Files\DIFX
[14/01/2009|12:24] C:\Program Files\Digital Photo Navigator 1.5
[08/05/2010|19:03] C:\Program Files\DivX
[10/01/2007|14:55] C:\Program Files\DVDFab Gold
[30/04/2009|18:46] C:\Program Files\eMule
[07/05/2010|21:19] C:\Program Files\Fichiers communs
[13/03/2007|20:35] C:\Program Files\Free History Eraser
[14/01/2010|14:41] C:\Program Files\Garmin
[21/12/2009|09:02] C:\Program Files\Google
[17/05/2010|12:51] C:\Program Files\InstallShield Installation Information
[11/06/2010|22:53] C:\Program Files\Internet Explorer
[21/12/2009|09:02] C:\Program Files\Java
[09/05/2010|08:22] C:\Program Files\Lavasoft
[04/05/2009|19:04] C:\Program Files\ma-config.com
[19/06/2010|17:02] C:\Program Files\Malwarebytes' Anti-Malware
[28/02/2007|10:41] C:\Program Files\manager upload less
[08/12/2009|21:15] C:\Program Files\MarkAny
[11/11/2009|10:53] C:\Program Files\Maxis
[03/05/2009|10:28] C:\Program Files\MeeSoft
[13/09/2008|07:31] C:\Program Files\Messenger
[15/12/2006|21:34] C:\Program Files\Messenger Plus! Live
[07/04/2007|10:58] C:\Program Files\Micro Application
[02/10/2009|15:16] C:\Program Files\Microsoft
[08/11/2009|23:24] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[20/11/2006|17:57] C:\Program Files\Microsoft Digital Image 2006
[17/11/2006|19:26] C:\Program Files\microsoft frontpage
[21/02/2010|10:35] C:\Program Files\Microsoft Office
[02/10/2009|15:19] C:\Program Files\Microsoft Office Outlook Connector
[04/06/2010|18:32] C:\Program Files\Microsoft Silverlight
[02/10/2009|15:17] C:\Program Files\Microsoft SQL Server Compact Edition
[02/10/2009|15:18] C:\Program Files\Microsoft Sync Framework
[17/11/2006|19:41] C:\Program Files\Microsoft Visual Studio
[24/02/2010|19:38] C:\Program Files\Microsoft Works
[21/02/2010|10:34] C:\Program Files\Microsoft.NET
[11/03/2010|13:12] C:\Program Files\Movie Maker
[28/11/2006|21:26] C:\Program Files\Mpgdvd
[21/07/2009|09:19] C:\Program Files\MSBuild
[20/04/2008|22:01] C:\Program Files\MSN
[17/11/2006|19:23] C:\Program Files\MSN Gaming Zone
[27/02/2008|10:24] C:\Program Files\MSN Messenger
[19/06/2010|18:14] C:\Program Files\MSNFix
[29/11/2006|20:51] C:\Program Files\MSXML 4.0
[30/01/2009|20:50] C:\Program Files\Multimedia Mouse Driver
[13/09/2008|07:26] C:\Program Files\NetMeeting
[04/07/2008|13:48] C:\Program Files\NetRatingsNetSight
[04/08/2007|09:37] C:\Program Files\Neuf
[04/07/2008|13:48] C:\Program Files\NielsenNetratings
[17/05/2010|12:51] C:\Program Files\OLYMPUS
[17/11/2006|19:23] C:\Program Files\Online Services
[24/10/2008|21:48] C:\Program Files\OpenOffice.org 3
[12/05/2010|20:15] C:\Program Files\Outlook Express
[08/12/2009|21:18] C:\Program Files\PC Connectivity Solution
[06/03/2010|10:03] C:\Program Files\Picasa2
[07/05/2010|20:54] C:\Program Files\Pinnacle
[08/11/2009|10:01] C:\Program Files\Playalot Games
[05/05/2010|19:00] C:\Program Files\QuickTime
[18/11/2006|20:00] C:\Program Files\QuickZip4
[27/08/2009|17:45] C:\Program Files\Radio Fr Solo
[04/10/2009|09:04] C:\Program Files\Real
[06/05/2009|17:07] C:\Program Files\Realtek AC97
[06/05/2009|17:07] C:\Program Files\Realtek Sound Manager
[21/07/2009|09:19] C:\Program Files\Reference Assemblies
[17/11/2006|19:33] C:\Program Files\SAGEM
[08/12/2009|21:18] C:\Program Files\Samsung
[03/05/2009|10:38] C:\Program Files\ScanSoft
[23/11/2009|22:30] C:\Program Files\Search Guard Plus
[23/11/2009|22:30] C:\Program Files\Search Guard PlusU
[03/05/2007|20:53] C:\Program Files\Setup
[23/11/2009|22:30] C:\Program Files\SGPSA
[12/09/2007|17:20] C:\Program Files\Share_Accelerator_MM
[04/05/2009|20:25] C:\Program Files\SHARP GSM GPRS USB Driver
[27/02/2010|18:56] C:\Program Files\SigmaTel
[17/11/2006|20:44] C:\Program Files\SmartSound Software
[21/05/2008|20:26] C:\Program Files\SmartSound Software Inc
[07/05/2010|21:57] C:\Program Files\Sonic
[07/05/2010|22:10] C:\Program Files\Sony
[19/06/2010|18:30] C:\Program Files\Spybot - Search & Destroy
[09/05/2010|11:35] C:\Program Files\StofWare
[19/06/2010|20:43] C:\Program Files\trend micro
[17/11/2006|19:31] C:\Program Files\Uninstall Information
[12/09/2007|17:23] C:\Program Files\WinAVI Video Converter
[02/10/2009|15:18] C:\Program Files\Windows Live
[09/03/2009|22:20] C:\Program Files\Windows Live SkyDrive
[30/05/2009|11:32] C:\Program Files\Windows Media Connect 2
[30/05/2009|11:31] C:\Program Files\Windows Media Player
[30/11/2006|21:56] C:\Program Files\Windows Media Recorder
[13/09/2008|07:26] C:\Program Files\Windows NT
[17/11/2006|19:25] C:\Program Files\WindowsUpdate
[07/11/2009|16:30] C:\Program Files\Winferno
[30/11/2006|21:57] C:\Program Files\WinPcap
[11/04/2009|09:23] C:\Program Files\WinRAR
[17/11/2006|19:26] C:\Program Files\xerox
[08/11/2009|10:01] C:\Program Files\Yahoo!
[23/08/2007|11:34] C:\Program Files\Zapu

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[07/05/2010|21:18] C:\Program Files\Fichiers communs\Adobe
[09/04/2009|17:36] C:\Program Files\Fichiers communs\Adobe AIR
[07/05/2010|21:19] C:\Program Files\Fichiers communs\Adobe Systems Shared
[30/11/2006|15:40] C:\Program Files\Fichiers communs\Ahead
[27/09/2009|12:50] C:\Program Files\Fichiers communs\Apple
[21/02/2007|10:28] C:\Program Files\Fichiers communs\BOONTY Shared
[21/02/2010|10:54] C:\Program Files\Fichiers communs\DESIGNER
[07/07/2009|12:09] C:\Program Files\Fichiers communs\DivX Shared
[17/11/2006|19:57] C:\Program Files\Fichiers communs\InstallShield
[05/06/2010|12:58] C:\Program Files\Fichiers communs\Java
[24/02/2010|19:38] C:\Program Files\Fichiers communs\Microsoft Shared
[17/11/2006|19:24] C:\Program Files\Fichiers communs\MSSoap
[03/05/2008|09:32] C:\Program Files\Fichiers communs\Oberon Media
[17/11/2006|20:10] C:\Program Files\Fichiers communs\ODBC
[04/10/2009|09:04] C:\Program Files\Fichiers communs\Real
[17/11/2006|19:24] C:\Program Files\Fichiers communs\Services
[17/11/2006|20:10] C:\Program Files\Fichiers communs\SpeechEngines
[11/01/2009|18:24] C:\Program Files\Fichiers communs\Symantec Shared
[02/10/2009|15:19] C:\Program Files\Fichiers communs\System
[09/03/2009|22:05] C:\Program Files\Fichiers communs\Windows Live
[27/02/2008|10:23] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[09/05/2010|08:22] C:\Program Files\Fichiers communs\Wise Installation Wizard
[04/10/2009|09:04] C:\Program Files\Fichiers communs\xing shared

--------------------\\ Process

( 68 Processes )

iexplore.exe ~ [PID:3284]
iexplore.exe ~ [PID:3368]
iexplore.exe ~ [PID:5684]

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\Program Files\Adverts
C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@advertstream[1].txt
C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@advertstream[2].txt
C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@advertstream[3].txt
C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@d2.advertserve[1].txt
C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@d2.advertserve[2].txt
C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@d2.advertserve[3].txt
C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@tradefx.advertserve[1].txt
C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@advertising[11].txt
C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@advertising[1].txt
C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@advertising[2].txt
C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@advertising[3].txt
C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@advertising[4].txt
C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@advertising[5].txt
C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@advertising[6].txt
C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@advertising[7].txt
C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@advertising[8].txt
C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@advertising[9].txt
C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@spartoo.db.advertising[1].txt
C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@uac.advertising[1].txt
C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@adin-www.bigpoint[2].txt
C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@adin.bigpoint[2].txt
C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@adin.bigpoint[3].txt
C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@bigpoint[1].txt
C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@bigpoint[2].txt
C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@fr.darkorbit.bigpoint[2].txt
C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@fr.deepolis.bigpoint[2].txt
C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@fr.seafight.bigpoint[2].txt
C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@fr.waroftitans.bigpoint[2].txt
C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@fr2.darkorbit.bigpoint[1].txt
C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@thepimps.bigpoint[1].txt
C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@cotedazurpalace[1].txt
C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@serve.cotedazurpalace[1].txt
C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@www.cotedazurpalace[2].txt
C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@partypoker[1].txt
C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@fr.seafight.bigpoint[2].txt
C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@banner.casinolasvegas[2].txt
C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@casinolasvegas[1].txt
C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@2xmoinscher[2].txt
C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@cc.2xmoinscher[2].txt
C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@www.2xmoinscher[2].txt
C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@888[2].txt

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts MODIFIE

127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD
127.0.0.1 download.errorsafe.com ## added by CiD
127.0.0.1 download.systemdoctor.com ## added by CiD
127.0.0.1 download.winantispyware.com ## added by CiD
127.0.0.1 download.windrivecleaner.com ## added by CiD
127.0.0.1 download.winfixer.com ## added by CiD
127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 www.drivecleaner.com ## added by CiD
127.0.0.1 www.errorprotector.com ## added by CiD
127.0.0.1 www.errorsafe.com ## added by CiD
127.0.0.1 www.systemdoctor.com ## added by CiD
127.0.0.1 www.win-anti-virus-pro.com ## added by CiD
127.0.0.1 www.win-virus-pro.com ## added by CiD
127.0.0.1 www.winantispam.com ## added by CiD
127.0.0.1 www.winantispy.com ## added by CiD
127.0.0.1 www.winantispyware.com ## added by CiD
127.0.0.1 www.winantiviruspro.com ## added by CiD
127.0.0.1 www.windrivecleaner.com ## added by CiD
127.0.0.1 www.windrivesafe.com ## added by CiD
127.0.0.1 www.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 www.utils.winfixer.com ## added by CiD
127.0.0.1 www.winfixer2006.com ## added by CiD
127.0.0.1 www.winsoftware.com ## added by CiD

-> 59 [ 56 ## added by CiD ]

/!\ 2 Not 127.0.0.1 !!

--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-06-22 07:24:08
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 1516

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:80][D:53]-> C:\DOCUME~1\FLORIA~1\LOCALS~1\Temp
[F:4131][D:0]-> C:\DOCUME~1\FLORIA~1\Cookies
[F:819][D:57]-> C:\DOCUME~1\FLORIA~1\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 22/06/2010| 7:25 - Option : [1]

--------------------\\ Fin du rapport a 7:25:55

voici le rapport de l'option 2


--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : Intel(R) Core(TM)2 CPU 6400 @ 2.13GHz )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : Florian & Stéphanie ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1368 [VPS 100621-1] 4.8.1368 (Activated)
C:\ (Local Disk) - NTFS - Total:39 Go (Free:12 Go)
D:\ (Local Disk) - NTFS - Total:78 Go (Free:22 Go)
E:\ (Local Disk) - NTFS - Total:115 Go (Free:35 Go)
F:\ (CD or DVD)
H:\ (CD or DVD)
I:\ (USB)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [2] ( 22/06/2010| 7:28 )


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

Supprime! - C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@advertstream[1].txt
Supprime! - C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@advertstream[2].txt
Supprime! - C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@advertstream[3].txt
Supprime! - C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@d2.advertserve[1].txt
Supprime! - C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@d2.advertserve[2].txt
Supprime! - C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@d2.advertserve[3].txt
Supprime! - C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@tradefx.advertserve[1].txt
Supprime! - C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@advertising[11].txt
Supprime! - C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@advertising[1].txt
Supprime! - C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@advertising[2].txt
Supprime! - C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@advertising[3].txt
Supprime! - C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@advertising[4].txt
Supprime! - C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@advertising[5].txt
Supprime! - C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@advertising[6].txt
Supprime! - C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@advertising[7].txt
Supprime! - C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@advertising[8].txt
Supprime! - C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@advertising[9].txt
Supprime! - C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@spartoo.db.advertising[1].txt
Supprime! - C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@uac.advertising[1].txt
Supprime! - C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@adin-www.bigpoint[2].txt
Supprime! - C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@adin.bigpoint[2].txt
Supprime! - C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@adin.bigpoint[3].txt
Supprime! - C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@bigpoint[1].txt
Supprime! - C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@bigpoint[2].txt
Supprime! - C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@fr.darkorbit.bigpoint[2].txt
Supprime! - C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@fr.deepolis.bigpoint[2].txt
Supprime! - C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@fr.seafight.bigpoint[2].txt
Supprime! - C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@fr.waroftitans.bigpoint[2].txt
Supprime! - C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@fr2.darkorbit.bigpoint[1].txt
Supprime! - C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@thepimps.bigpoint[1].txt
Supprime! - C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@cotedazurpalace[1].txt
Supprime! - C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@serve.cotedazurpalace[1].txt
Supprime! - C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@www.cotedazurpalace[2].txt
Supprime! - C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@partypoker[1].txt
Supprime! - C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@banner.casinolasvegas[2].txt
Supprime! - C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@casinolasvegas[1].txt
Supprime! - C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@2xmoinscher[2].txt
Supprime! - C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@cc.2xmoinscher[2].txt
Supprime! - C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@www.2xmoinscher[2].txt
Supprime! - C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@888[2].txt
Supprime! - C:\Program Files\Adverts
-
[ Fichier Hosts ] .. Restaure!

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


--------------------\\ Listing des dossiers dans APPLIC~1

[28/03/2009|08:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{00D89592-F643-4D8D-8F0F-AFAE0F14D4C3}
[26/09/2009|21:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[07/05/2010|21:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[02/12/2006|16:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
[26/09/2009|21:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[05/05/2010|18:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[18/03/2008|15:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ATI
[21/02/2007|10:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[17/11/2006|19:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Brother
[23/01/2010|13:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cyberlink
[07/11/2008|19:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Downloaded Installations
[14/01/2010|14:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\GARMIN
[21/12/2009|09:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[17/11/2006|19:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[09/05/2010|08:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
[04/05/2009|19:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ma-config.com
[07/05/2010|21:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
[28/02/2007|10:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\magssupportwaitball
[19/06/2010|17:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[04/12/2006|22:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[08/12/2009|21:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[17/06/2010|20:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Help
[05/10/2009|18:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Office Genuine Advantage
[04/05/2009|18:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PC Drivers HeadQuarters
[08/12/2009|21:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PC Suite
[06/06/2007|08:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle
[05/03/2010|18:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Real
[07/05/2010|21:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SmartSound Software Inc
[07/05/2010|21:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony Corporation
[19/06/2010|19:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[05/06/2010|12:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sun
[03/05/2008|09:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[21/12/2006|20:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[07/11/2009|16:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Winferno
[27/02/2008|10:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller


[17/11/2006|19:26] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[07/05/2010|21:21] C:\DOCUME~1\FLORIA~1\APPLIC~1\Adobe
[18/05/2008|18:17] C:\DOCUME~1\FLORIA~1\APPLIC~1\AdobeUM
[20/05/2007|09:12] C:\DOCUME~1\FLORIA~1\APPLIC~1\Ahead
[26/09/2009|21:16] C:\DOCUME~1\FLORIA~1\APPLIC~1\Apple Computer
[07/11/2009|18:21] C:\DOCUME~1\FLORIA~1\APPLIC~1\Application Data
[09/03/2008|16:09] C:\DOCUME~1\FLORIA~1\APPLIC~1\ArcSoft
[18/03/2008|15:40] C:\DOCUME~1\FLORIA~1\APPLIC~1\ATI
[04/01/2007|14:44] C:\DOCUME~1\FLORIA~1\APPLIC~1\Brother
[20/11/2006|17:49] C:\DOCUME~1\FLORIA~1\APPLIC~1\Canon
[23/01/2010|13:25] C:\DOCUME~1\FLORIA~1\APPLIC~1\CyberLink
[30/11/2006|19:02] C:\DOCUME~1\FLORIA~1\APPLIC~1\DivX
[03/05/2009|10:30] C:\DOCUME~1\FLORIA~1\APPLIC~1\EoRezo
[14/01/2010|14:50] C:\DOCUME~1\FLORIA~1\APPLIC~1\GARMIN
[04/05/2009|19:23] C:\DOCUME~1\FLORIA~1\APPLIC~1\GetRightToGo
[30/11/2006|17:24] C:\DOCUME~1\FLORIA~1\APPLIC~1\Google
[15/03/2008|14:16] C:\DOCUME~1\FLORIA~1\APPLIC~1\Help
[17/11/2006|19:31] C:\DOCUME~1\FLORIA~1\APPLIC~1\Identities
[06/06/2007|08:24] C:\DOCUME~1\FLORIA~1\APPLIC~1\InstallShield
[27/09/2009|10:10] C:\DOCUME~1\FLORIA~1\APPLIC~1\LimeWire
[17/11/2006|20:00] C:\DOCUME~1\FLORIA~1\APPLIC~1\Macromedia
[19/06/2010|17:02] C:\DOCUME~1\FLORIA~1\APPLIC~1\Malwarebytes
[10/08/2007|20:22] C:\DOCUME~1\FLORIA~1\APPLIC~1\manager upload less
[22/11/2006|21:59] C:\DOCUME~1\FLORIA~1\APPLIC~1\Media Player Classic
[07/05/2010|21:52] C:\DOCUME~1\FLORIA~1\APPLIC~1\Microsoft
[05/10/2009|18:09] C:\DOCUME~1\FLORIA~1\APPLIC~1\Office Genuine Advantage
[24/10/2008|21:50] C:\DOCUME~1\FLORIA~1\APPLIC~1\OpenOffice.org
[08/12/2009|21:19] C:\DOCUME~1\FLORIA~1\APPLIC~1\PC Suite
[04/10/2009|09:04] C:\DOCUME~1\FLORIA~1\APPLIC~1\Real
[08/12/2009|21:15] C:\DOCUME~1\FLORIA~1\APPLIC~1\Samsung
[03/05/2009|10:38] C:\DOCUME~1\FLORIA~1\APPLIC~1\ScanSoft
[20/06/2007|08:00] C:\DOCUME~1\FLORIA~1\APPLIC~1\Screenshot Sender
[07/05/2010|22:05] C:\DOCUME~1\FLORIA~1\APPLIC~1\Sony Corporation
[30/11/2006|14:02] C:\DOCUME~1\FLORIA~1\APPLIC~1\Sun
[16/02/2009|22:40] C:\DOCUME~1\FLORIA~1\APPLIC~1\U3
[26/04/2009|11:41] C:\DOCUME~1\FLORIA~1\APPLIC~1\Vso
[11/04/2009|09:23] C:\DOCUME~1\FLORIA~1\APPLIC~1\WinRAR

[17/11/2006|19:30] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[12/07/2007|15:39] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[22/06/2010 07:18][--a------] C:\WINDOWS\tasks\RPCReminder.job
[22/06/2010 07:18][--a------] C:\WINDOWS\tasks\RegPowerClean.job
[22/06/2010 07:18][--a------] C:\WINDOWS\tasks\OGALogon.job
[16/06/2010 18:56][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[22/06/2010 07:18][--ah-----] C:\WINDOWS\tasks\SA.DAT
[28/09/2001 16:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[07/05/2010|21:16] C:\Program Files\Adobe
[03/01/2007|21:28] C:\Program Files\Ahead
[17/11/2006|19:41] C:\Program Files\Alwil Software
[04/12/2007|21:49] C:\Program Files\Amazon
[09/05/2010|11:36] C:\Program Files\Antipub
[26/09/2009|21:12] C:\Program Files\Apple Software Update
[03/05/2009|10:46] C:\Program Files\ArcSoft
[18/03/2008|15:38] C:\Program Files\ATI Technologies
[09/05/2010|08:45] C:\Program Files\AutoMz
[06/05/2009|17:07] C:\Program Files\AvRack
[03/05/2009|16:13] C:\Program Files\Bonjour
[17/11/2006|19:57] C:\Program Files\Brother
[20/11/2006|17:47] C:\Program Files\Canon
[06/12/2008|19:01] C:\Program Files\CDex_170b2
[17/11/2006|19:57] C:\Program Files\Common Files
[17/11/2006|19:23] C:\Program Files\ComPlus Applications
[17/11/2006|20:06] C:\Program Files\Creative
[14/01/2009|12:31] C:\Program Files\CyberLink
[17/01/2009|15:43] C:\Program Files\Dactylo
[03/01/2007|19:45] C:\Program Files\DAEMON Tools
[14/01/2010|14:41] C:\Program Files\DIFX
[14/01/2009|12:24] C:\Program Files\Digital Photo Navigator 1.5
[08/05/2010|19:03] C:\Program Files\DivX
[10/01/2007|14:55] C:\Program Files\DVDFab Gold
[30/04/2009|18:46] C:\Program Files\eMule
[07/05/2010|21:19] C:\Program Files\Fichiers communs
[13/03/2007|20:35] C:\Program Files\Free History Eraser
[14/01/2010|14:41] C:\Program Files\Garmin
[21/12/2009|09:02] C:\Program Files\Google
[17/05/2010|12:51] C:\Program Files\InstallShield Installation Information
[11/06/2010|22:53] C:\Program Files\Internet Explorer
[21/12/2009|09:02] C:\Program Files\Java
[09/05/2010|08:22] C:\Program Files\Lavasoft
[04/05/2009|19:04] C:\Program Files\ma-config.com
[19/06/2010|17:02] C:\Program Files\Malwarebytes' Anti-Malware
[28/02/2007|10:41] C:\Program Files\manager upload less
[08/12/2009|21:15] C:\Program Files\MarkAny
[11/11/2009|10:53] C:\Program Files\Maxis
[03/05/2009|10:28] C:\Program Files\MeeSoft
[13/09/2008|07:31] C:\Program Files\Messenger
[15/12/2006|21:34] C:\Program Files\Messenger Plus! Live
[07/04/2007|10:58] C:\Program Files\Micro Application
[02/10/2009|15:16] C:\Program Files\Microsoft
[08/11/2009|23:24] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[20/11/2006|17:57] C:\Program Files\Microsoft Digital Image 2006
[17/11/2006|19:26] C:\Program Files\microsoft frontpage
[21/02/2010|10:35] C:\Program Files\Microsoft Office
[02/10/2009|15:19] C:\Program Files\Microsoft Office Outlook Connector
[04/06/2010|18:32] C:\Program Files\Microsoft Silverlight
[02/10/2009|15:17] C:\Program Files\Microsoft SQL Server Compact Edition
[02/10/2009|15:18] C:\Program Files\Microsoft Sync Framework
[17/11/2006|19:41] C:\Program Files\Microsoft Visual Studio
[24/02/2010|19:38] C:\Program Files\Microsoft Works
[21/02/2010|10:34] C:\Program Files\Microsoft.NET
[11/03/2010|13:12] C:\Program Files\Movie Maker
[28/11/2006|21:26] C:\Program Files\Mpgdvd
[21/07/2009|09:19] C:\Program Files\MSBuild
[20/04/2008|22:01] C:\Program Files\MSN
[17/11/2006|19:23] C:\Program Files\MSN Gaming Zone
[27/02/2008|10:24] C:\Program Files\MSN Messenger
[19/06/2010|18:14] C:\Program Files\MSNFix
[29/11/2006|20:51] C:\Program Files\MSXML 4.0
[30/01/2009|20:50] C:\Program Files\Multimedia Mouse Driver
[13/09/2008|07:26] C:\Program Files\NetMeeting
[04/07/2008|13:48] C:\Program Files\NetRatingsNetSight
[04/08/2007|09:37] C:\Program Files\Neuf
[04/07/2008|13:48] C:\Program Files\NielsenNetratings
[17/05/2010|12:51] C:\Program Files\OLYMPUS
[17/11/2006|19:23] C:\Program Files\Online Services
[24/10/2008|21:48] C:\Program Files\OpenOffice.org 3
[12/05/2010|20:15] C:\Program Files\Outlook Express
[08/12/2009|21:18] C:\Program Files\PC Connectivity Solution
[06/03/2010|10:03] C:\Program Files\Picasa2
[07/05/2010|20:54] C:\Program Files\Pinnacle
[08/11/2009|10:01] C:\Program Files\Playalot Games
[05/05/2010|19:00] C:\Program Files\QuickTime
[18/11/2006|20:00] C:\Program Files\QuickZip4
[27/08/2009|17:45] C:\Program Files\Radio Fr Solo
[04/10/2009|09:04] C:\Program Files\Real
[06/05/2009|17:07] C:\Program Files\Realtek AC97
[06/05/2009|17:07] C:\Program Files\Realtek Sound Manager
[21/07/2009|09:19] C:\Program Files\Reference Assemblies
[17/11/2006|19:33] C:\Program Files\SAGEM
[08/12/2009|21:18] C:\Program Files\Samsung
[03/05/2009|10:38] C:\Program Files\ScanSoft
[23/11/2009|22:30] C:\Program Files\Search Guard Plus
[23/11/2009|22:30] C:\Program Files\Search Guard PlusU
[03/05/2007|20:53] C:\Program Files\Setup
[23/11/2009|22:30] C:\Program Files\SGPSA
[12/09/2007|17:20] C:\Program Files\Share_Accelerator_MM
[04/05/2009|20:25] C:\Program Files\SHARP GSM GPRS USB Driver
[27/02/2010|18:56] C:\Program Files\SigmaTel
[17/11/2006|20:44] C:\Program Files\SmartSound Software
[21/05/2008|20:26] C:\Program Files\SmartSound Software Inc
[07/05/2010|21:57] C:\Program Files\Sonic
[07/05/2010|22:10] C:\Program Files\Sony
[19/06/2010|18:30] C:\Program Files\Spybot - Search & Destroy
[09/05/2010|11:35] C:\Program Files\StofWare
[19/06/2010|20:43] C:\Program Files\trend micro
[17/11/2006|19:31] C:\Program Files\Uninstall Information
[12/09/2007|17:23] C:\Program Files\WinAVI Video Converter
[02/10/2009|15:18] C:\Program Files\Windows Live
[09/03/2009|22:20] C:\Program Files\Windows Live SkyDrive
[30/05/2009|11:32] C:\Program Files\Windows Media Connect 2
[30/05/2009|11:31] C:\Program Files\Windows Media Player
[30/11/2006|21:56] C:\Program Files\Windows Media Recorder
[13/09/2008|07:26] C:\Program Files\Windows NT
[17/11/2006|19:25] C:\Program Files\WindowsUpdate
[07/11/2009|16:30] C:\Program Files\Winferno
[30/11/2006|21:57] C:\Program Files\WinPcap
[11/04/2009|09:23] C:\Program Files\WinRAR
[17/11/2006|19:26] C:\Program Files\xerox
[08/11/2009|10:01] C:\Program Files\Yahoo!
[23/08/2007|11:34] C:\Program Files\Zapu

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[07/05/2010|21:18] C:\Program Files\Fichiers communs\Adobe
[09/04/2009|17:36] C:\Program Files\Fichiers communs\Adobe AIR
[07/05/2010|21:19] C:\Program Files\Fichiers communs\Adobe Systems Shared
[30/11/2006|15:40] C:\Program Files\Fichiers communs\Ahead
[27/09/2009|12:50] C:\Program Files\Fichiers communs\Apple
[21/02/2007|10:28] C:\Program Files\Fichiers communs\BOONTY Shared
[21/02/2010|10:54] C:\Program Files\Fichiers communs\DESIGNER
[07/07/2009|12:09] C:\Program Files\Fichiers communs\DivX Shared
[17/11/2006|19:57] C:\Program Files\Fichiers communs\InstallShield
[05/06/2010|12:58] C:\Program Files\Fichiers communs\Java
[24/02/2010|19:38] C:\Program Files\Fichiers communs\Microsoft Shared
[17/11/2006|19:24] C:\Program Files\Fichiers communs\MSSoap
[03/05/2008|09:32] C:\Program Files\Fichiers communs\Oberon Media
[17/11/2006|20:10] C:\Program Files\Fichiers communs\ODBC
[04/10/2009|09:04] C:\Program Files\Fichiers communs\Real
[17/11/2006|19:24] C:\Program Files\Fichiers communs\Services
[17/11/2006|20:10] C:\Program Files\Fichiers communs\SpeechEngines
[11/01/2009|18:24] C:\Program Files\Fichiers communs\Symantec Shared
[02/10/2009|15:19] C:\Program Files\Fichiers communs\System
[09/03/2009|22:05] C:\Program Files\Fichiers communs\Windows Live
[27/02/2008|10:23] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[09/05/2010|08:22] C:\Program Files\Fichiers communs\Wise Installation Wizard
[04/10/2009|09:04] C:\Program Files\Fichiers communs\xing shared

--------------------\\ Process

( 63 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-06-22 07:29:13
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 1516

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:72][D:53]-> C:\DOCUME~1\FLORIA~1\LOCALS~1\Temp
[F:4090][D:0]-> C:\DOCUME~1\FLORIA~1\Cookies
[F:874][D:57]-> C:\DOCUME~1\FLORIA~1\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 22/06/2010| 7:25 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 22/06/2010| 7:30 - Option : [2]

--------------------\\ Fin du rapport a 7:30:19

re,

Télécharge Toolbar-S&D (Team IDN) sur ton Bureau.

[*]Lance l'installation du programme en exécutant le fichier téléchargé.
[*]Double-clique maintenant sur le raccourci de Toolbar-S&D.( avec Vista, clic droit sur le raccourcis et lancer comme Administrateur )
[*]Sélectionne la langue souhaitée en tapant la lettre de ton choix puis en validant avec la touche Entrée.
[*]Choisis maintenant l'option 1 (Recherche). Patiente jusqu'à la fin de la recherche.
[*]Poste le rapport généré. (C:\TB.txt)

===================================================

voici le rapport ! y 'en a encore beaucoup ? !!!!



-----------\\ ToolBar S&D 1.2.9 XP/Vista

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : Intel(R) Core(TM)2 CPU 6400 @ 2.13GHz )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : Florian & Stéphanie ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1368 [VPS 100622-0] 4.8.1368 (Activated)
C:\ (Local Disk) - NTFS - Total:39 Go (Free:12 Go)
D:\ (Local Disk) - NTFS - Total:78 Go (Free:22 Go)
E:\ (Local Disk) - NTFS - Total:115 Go (Free:35 Go)
F:\ (CD or DVD)
H:\ (CD or DVD)
I:\ (USB)

"C:\ToolBar SD" ( MAJ : 22-08-2009|18:42 )
Option : [1] ( 22/06/2010|13:00 )

-----------\\ Recherche de Fichiers / Dossiers ...

C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@mywebsearch[1].txt
C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@cs.lp.smartshopper[2].txt
C:\DOCUME~1\FLORIA~1\Cookies\florian_&_stéphanie@smartshopper[2].txt

-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Start Page"="http://www.valcenis.com/video.htm"
"Default_Search_URL"="http://www.google.com/ie"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"


--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !


1 - "C:\ToolBar SD\TB_1.txt" - 22/06/2010|13:01 - Option : [1]

-----------\\ Fin du rapport a 13:01:25.93