01net    Web


Actuellement en ligne : 740 Utilisateurs dont 83 dans Sécurité, virus et assimilés >S'inscrire      >S'identifier      >Recherche      >Aide  
modéré par A.Ouloube, naheulbeuk, bibou0007, totoftotof, IL-MAFIOSO, smilblick  
01net > Forum de 01net > Sécurité, virus et assimilés > Virus
> [résolu]pc infecte par 2 trojans et 1 virus dropper

  Offre d'emploi : 01net recrute 2 développeurs PHP / MySql
Auteur
Message
 
<     1       >
gustosas
  
   
      ?   @     Posté le 05/06/2008 18:42:56  
Voter pour ce message
:hello: bonjour a tout le forum
j ai un gros souci a mon ordi car j ai fait une analyse avec antivir et il m a detecte 2 trojan et 1 dropper je suis inquite merci de votre reponse le plus tot a plus :hello:

-->Message édité par gustosas le 08/06/2008 12:42:24<--
gustosas
  
   
      ?   @     Posté le 05/06/2008 19:00:57  
Voter pour ce message
les virus concernes est Trojan horse TR/Agent.DRV et he dropper DR/MartShop.1 encore merci :hello:
gustosas
  
   
      ?   @     Posté le 05/06/2008 21:26:29  
Voter pour ce message
1
gustosas
  
   
      ?   @     Posté le 06/06/2008 11:14:05  
Voter pour ce message
bonjour y a t'il personne pour me repondre? merci
Sora370
  Helper
  :-)
      ?   @     Posté le 06/06/2008 18:03:39  
Voter pour ce message
:hello:

Télécharge Hijackthis lien et tuto ici (De Trend Micro)

Clique alors sur "Do a system scan and save a logfile"
Le scan se fait très rapidement, puis un bloc-note apparaît
(le "logfile")
Dans ce bloc-note, va dans "Edition", puis "Selectionner Tout",
le texte est alors séléctionné, retourne dans "Edition" toujours
en laissant le texte séléctionné, et clique sur copier.
Colle le contenu ici dans ta prochaine réponse !
-->Message édité par Sora370 le 06/06/2008 18:05:11<--
-------
Venez voir ce beau forum ==> http://www.generation-online-fr.com/
gustosas
  
   
      ?   @     Posté le 06/06/2008 18:19:05  
Voter pour ce message
voici le rapport hijackthis
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:17:43, on 06/06/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe
C:\Program Files\CyberLink\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Controle Parental\bin\optproxy.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\BitDefender\BitDefender Communicator\xcommsvr.exe
C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\CyberLink\PowerCinema\PCMService.exe
C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe
C:\HP\KBD\KBD.EXE
C:\PROGRA~1\CONTRO~1\bin\optgui.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\BitDefender\BitDefender 2008\bdagent.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Nikon\PictureProject\NkbMonitor.exe
C:\Program Files\ChaosSoft\TransText\TransText.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe
c:\windows\system\hpsysdrv.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\BitDefender\BitDefender 2008\vsserv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.01net.com/telecharger/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&(...)
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&(...)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://orange.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.01net.com/telecharger/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&(...)
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.01net.com/telecharger/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&(...)
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O2 - BHO: PDFCreator Toolbar Helper - {C451C08A-EC37-45DF-AAAD-18B51AB5E837} - C:\Program Files\PDFCreator Toolbar\v3.3.0.1\PDFCreator_Toolbar.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: PDFCreator Toolbar - {31CF9EBE-5755-4A1D-AC25-2834D952D9B4} - C:\Program Files\PDFCreator Toolbar\v3.3.0.1\PDFCreator_Toolbar.dll
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2008\IEToolbar.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\CyberLink\PowerCinema\PCMService.exe"
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [HPBootOp] "C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe" /run
O4 - HKLM\..\Run: [Reminder] "C:\Windows\Creator\Remind_XP.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
O4 - HKLM\..\Run: [OpwareSE2] "c:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe"
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [OPTENET_GUI] C:\PROGRA~1\CONTRO~1\bin\optgui.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\BitDefender\BitDefender 2008\bdagent.exe"
O4 - HKLM\..\Run: [BDMCon] "C:\Program Files\Softwin\BitDefender10\bdmcon.exe" /reg
O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2008\IEShow.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [UberIcon] "C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - .DEFAULT User Startup: Pin.lnk = C:\hp\bin\CLOAKER.EXE (User 'Default user')
O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
O4 - Startup: TransBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe
O4 - Startup: UberIcon.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe
O4 - Startup: Y'z Shadow.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe
O4 - Global Startup: NkbMonitor.exe.lnk = C:\Program Files\Nikon\PictureProject\NkbMonitor.exe
O4 - Global Startup: TransText.lnk = C:\Program Files\ChaosSoft\TransText\TransText.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O15 - Trusted Zone: *.canalplay.com
O15 - Trusted Zone: *.canalplusactive.com
O15 - Trusted Zone: *.canalplay.com (HKLM)
O15 - Trusted Zone: *.canalplusactive.com (HKLM)
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Avira AntiVir Personal – Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal – Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe
O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\CyberLink\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe
O23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender SRL - C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Orange Contrôle Parental (OPTENET_FILTER) - Orange - C:\Program Files\Controle Parental\bin\optproxy.exe
O23 - Service: Service CANALPLAY - Canal+ Active - C:\Program Files\Lecteur CANALPLAY\CanalPlayService.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S.R.L. - C:\Program Files\BitDefender\BitDefender 2008\vsserv.exe
O23 - Service: BitDefender Communicator (XCOMM) - BitDefender - C:\Program Files\Fichiers communs\BitDefender\BitDefender Communicator\xcommsvr.exe

--
End of file - 13090 bytes
Sora370
  Helper
  :-)
      ?   @     Posté le 06/06/2008 18:32:31  
Voter pour ce message
Sur ton bureau, télécharge GenProc (de narco4 & jean-chretien1)

Dézippe le dossier ; double-clique sur GenProc.bat [:jean-chretien1:3] … et poste
le contenu du rapport qui s'ouvre (que tu découvres une procédure ou pas !).

[:Poulbot:6] Aide en images
-->Message édité par Sora370 le 06/06/2008 18:34:33<--
-------
Venez voir ce beau forum ==> http://www.generation-online-fr.com/
gustosas
  
   
      ?   @     Posté le 06/06/2008 18:52:35  
Voter pour ce message
il me dit que il manque un ou plusieurs fichiers au
fonctionnement du programme
Sora370
  Helper
  :-)
      ?   @     Posté le 06/06/2008 18:56:15  
Voter pour ce message
déssinstalle le et réinstalle le . ;)
-------
Venez voir ce beau forum ==> http://www.generation-online-fr.com/
gustosas
  
   
      ?   @     Posté le 06/06/2008 19:15:46  
Voter pour ce message
c'est pareil je l'ai fait plusieurs fois
Sora370
  Helper
  :-)
      ?   @     Posté le 06/06/2008 19:39:30  
Voter pour ce message
A tu extrait correctement clic droit extraire tout désactive t'es protection aussi , recommance . ;)
-------
Venez voir ce beau forum ==> http://www.generation-online-fr.com/
gustosas
  
   
      ?   @     Posté le 06/06/2008 19:50:19  
Voter pour ce message
ca y est
Rapport GenProc 1.970 [1] effectué le 06/06/2008 à 19:49:37,60 - Windows XP

Dans CCleaner, clique sur "Options", "Avancé" et décoche la case "Effacer uniquement les fichiers, du dossier Temp de Windows, plus vieux que 48 heures". Par la suite, laisse-le avec ses réglages par défaut. C'est tout.

# Etape 1/ Télécharge :

- Lop S&D.exe (Eric 71 & Angeldark) http://eric.71.mespages.googlepages.com/LopSD.exe sur ton bureau.

- MSNFix.zip (!aur3n7) http://sosvirus.changelog.fr/MSNFix.zip et décompresse-le sur le Bureau.


***** Copie la suite de la procédure dans un fichier texte et redémarre en mode sans échec comme indiqué ici http://www.pcloisirs.eu/mode_sans_echec.htm (choisis ta session courante "Compaq_Propriétaire") *****


# Etape 2/

Lance le fichier MSNFix.bat qui se trouve dans le dossier MSNfix, sur le bureau.
- Exécute l'option R.
- Si l'infection est détectée, exécute l'option N.
- Sauvegarde ce rapport sur ton bureau.

# Etape 3/

Double-clique sur Lop S&D pour lancer l'installation, séléctionne la langue souhaitée, puis choisis l'Option 2 - Suppression - et patiente jusqu'à ce qu'il ait terminé.

# Etape 4/

Lance CCleaner : "Nettoyeur"/"lancer le nettoyage" et c'est tout.

# Etape 5/

Redémarre normalement et poste, dans la même réponse :
- Un nouveau rapport HijackThis, toutes fenêtres et applications fermées http://www.trendsecure.com/portal/en-US/threat_analytics/HiJackThis.exe ;
- Le contenu du rapport MSNfix situé sur le Bureau ;
- Le contenu du rapport C:\lopR.txt ;


Précise les difficultés que tu as eu (ce que tu n'as pas pu faire...) ainsi que l'évolution de la situation.
Sora370
  Helper
  :-)
      ?   @     Posté le 06/06/2008 19:53:15  
Voter pour ce message
Mais tout ceci en application . ;)
-------
Venez voir ce beau forum ==> http://www.generation-online-fr.com/
gustosas
  
   
      ?   @     Posté le 06/06/2008 20:55:43  
Voter pour ce message
les rapports demander
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:50:32, on 06/06/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe
C:\Program Files\CyberLink\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Controle Parental\bin\optproxy.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\BitDefender\BitDefender Communicator\xcommsvr.exe
C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
C:\Program Files\BitDefender\BitDefender 2008\vsserv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\CyberLink\PowerCinema\PCMService.exe
C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe
C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\HP\KBD\KBD.EXE
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe
C:\PROGRA~1\CONTRO~1\bin\optgui.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\BitDefender\BitDefender 2008\bdagent.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\Nikon\PictureProject\NkbMonitor.exe
C:\Program Files\ChaosSoft\TransText\TransText.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe
c:\windows\system\hpsysdrv.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Program Files\iPod\bin\iPodService.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.01net.com/telecharger/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&(...)
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&(...)
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://orange.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.01net.com/telecharger/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&(...)
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.01net.com/telecharger/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&(...)
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O2 - BHO: PDFCreator Toolbar Helper - {C451C08A-EC37-45DF-AAAD-18B51AB5E837} - C:\Program Files\PDFCreator Toolbar\v3.3.0.1\PDFCreator_Toolbar.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: PDFCreator Toolbar - {31CF9EBE-5755-4A1D-AC25-2834D952D9B4} - C:\Program Files\PDFCreator Toolbar\v3.3.0.1\PDFCreator_Toolbar.dll
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2008\IEToolbar.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\CyberLink\PowerCinema\PCMService.exe"
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [HPBootOp] "C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe" /run
O4 - HKLM\..\Run: [Reminder] "C:\Windows\Creator\Remind_XP.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
O4 - HKLM\..\Run: [OpwareSE2] "c:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe"
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [OPTENET_GUI] C:\PROGRA~1\CONTRO~1\bin\optgui.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\BitDefender\BitDefender 2008\bdagent.exe"
O4 - HKLM\..\Run: [BDMCon] "C:\Program Files\Softwin\BitDefender10\bdmcon.exe" /reg
O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2008\IEShow.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [UberIcon] "C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - .DEFAULT User Startup: Pin.lnk = C:\hp\bin\CLOAKER.EXE (User 'Default user')
O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
O4 - Startup: TransBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe
O4 - Startup: UberIcon.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe
O4 - Startup: Y'z Shadow.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe
O4 - Global Startup: NkbMonitor.exe.lnk = C:\Program Files\Nikon\PictureProject\NkbMonitor.exe
O4 - Global Startup: TransText.lnk = C:\Program Files\ChaosSoft\TransText\TransText.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O15 - Trusted Zone: *.canalplay.com
O15 - Trusted Zone: *.canalplusactive.com
O15 - Trusted Zone: *.canalplay.com (HKLM)
O15 - Trusted Zone: *.canalplusactive.com (HKLM)
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Avira AntiVir Personal – Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal – Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe
O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\CyberLink\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe
O23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender SRL - C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Orange Contrôle Parental (OPTENET_FILTER) - Orange - C:\Program Files\Controle Parental\bin\optproxy.exe
O23 - Service: Service CANALPLAY - Canal+ Active - C:\Program Files\Lecteur CANALPLAY\CanalPlayService.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S.R.L. - C:\Program Files\BitDefender\BitDefender 2008\vsserv.exe
O23 - Service: BitDefender Communicator (XCOMM) - BitDefender - C:\Program Files\Fichiers communs\BitDefender\BitDefender Communicator\xcommsvr.exe

--
End of file - 13319 bytes
MSNFix 1.720-1

C:\Documents and Settings\Compaq_Propri‚taire\Bureau\MSNFix
Fix exécuté le 06/06/2008 - 20:10:57,92 By Compaq_Propri‚taire
mode sans échec

************************ Recherche les fichiers présents

Aucun Fichier trouvé

************************ Recherche les dossiers présents

Aucun dossier trouvé


************************ Fichiers suspects

Aucun Fichier trouvé


************************ HKLM\...\Winlogon\Userinit

Userinit = C:\WINDOWS\system32\userinit.exe,

Important : http://msnfix.changelog.fr/index.php/2008/05/18/32-alerte


------------------------------------------------------------------------
Auteur : !aur3n7 Contact: http://changelog.fr
------------------------------------------------------------------------

--------------------------------------------- END ---------------------------------------------


-----------------------[ Lop S&D 4.2.1-2 XP/Vista ]---------------------

[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : Compaq_Propri‚taire ] [ "C:\Lop SD" ] [ Selection : 2 ]
[ 06/06/2008 | 20:38:50,32 ] [ PC : NOM-EB85C523610 ]
[ MAJ : 01-06-2008 | 15:51 ]


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////

Supprimé! - C:\Program Files\Multi_Media_France\INSTALL.LOG
Supprimé! - C:\Program Files\Multi_Media_France

//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


-------------[ Listing des dossiers dans Application Data ]------------

[23/11/2004|17:13] C:\DOCUME~1\ADMINI~1\APPLIC~1\desktop.ini
[16/12/2007|23:20] C:\DOCUME~1\ADMINI~1\APPLIC~1\HPQ
[27/10/2005|00:34] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[03/01/2006|04:14] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[23/11/2006|14:53] C:\DOCUME~1\ADMINI~1\APPLIC~1\Mozilla
[03/01/2006|03:42] C:\DOCUME~1\ADMINI~1\APPLIC~1\Real

[03/01/2006|03:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[16/09/2006|15:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe Systems
[13/09/2007|06:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[27/10/2006|20:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[05/01/2008|13:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Audio Units
[05/06/2008|12:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avira
[30/05/2008|18:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BitDefender
[30/05/2008|18:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BitDefender(2)
[08/09/2006|09:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[05/01/2008|13:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BSD
[16/12/2007|19:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BVRP Software
[24/08/2006|20:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CanonBJ
[03/01/2006|03:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[23/11/2004|17:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[05/01/2008|13:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\EnterNHelp
[24/08/2007|11:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\fluxDVD
[23/07/2007|19:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[06/06/2008|08:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
[29/06/2007|13:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater(2)
[29/08/2007|22:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
[03/01/2006|04:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Hewlett-Packard
[03/02/2007|11:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[03/01/2006|03:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hpzinstall.log
[24/08/2007|13:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Icon Constructor 3
[03/01/2006|03:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[31/05/2008|09:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
[15/09/2006|19:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macromedia
[03/05/2008|19:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[15/02/2007|16:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Help
[19/12/2007|22:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Mozilla
[24/08/2007|11:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\mpDRM
[31/10/2007|11:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\muvee Technologies
[20/12/2007|12:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Nikon
[21/05/2008|19:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PKP_DLds.DAT
[21/05/2008|19:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PKP_DLec.DAT
[15/09/2007|21:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QTSBandwidthCache
[20/12/2007|11:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[03/01/2006|03:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[24/08/2006|20:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ScanSoft
[08/01/2008|17:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skyline
[03/01/2006|03:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
[17/05/2008|12:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony Ericsson
[31/05/2008|14:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[24/08/2006|20:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SSScanAppDataDir
[24/08/2006|20:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SSScanWizard
[19/12/2007|19:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[17/05/2008|12:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Teleca
[03/05/2008|23:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[30/08/2006|17:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Trymedia
[05/01/2008|13:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ultima_T15
[09/09/2006|10:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[12/11/2007|18:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[07/09/2006|21:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion

[12/05/2008|14:48] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Adobe
[20/12/2007|07:37] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Ahead
[29/04/2008|11:33] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Apple Computer
[05/01/2008|13:31] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Application Support
[22/01/2008|17:57] C:\DOCUME~1\COMPAQ~1\APPLIC~1\ArcSoft
[30/05/2008|18:06] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Bitdefender
[30/05/2008|18:05] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Bitdefender(2)
[02/06/2008|13:24] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Canon
[22/12/2007|14:23] C:\DOCUME~1\COMPAQ~1\APPLIC~1\CyberLink
[23/11/2004|17:13] C:\DOCUME~1\COMPAQ~1\APPLIC~1\desktop.ini
[14/01/2008|12:13] C:\DOCUME~1\COMPAQ~1\APPLIC~1\DivX
[27/05/2008|18:55] C:\DOCUME~1\COMPAQ~1\APPLIC~1\EoRezo
[21/01/2008|18:42] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Google
[24/01/2008|18:37] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Help
[20/12/2007|16:08] C:\DOCUME~1\COMPAQ~1\APPLIC~1\HP
[02/01/2008|19:51] C:\DOCUME~1\COMPAQ~1\APPLIC~1\HPQ
[27/10/2005|00:34] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Identities
[22/01/2008|18:07] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Image Zone Express
[19/12/2007|23:44] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Leadertech
[19/12/2007|14:16] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Macromedia
[27/04/2008|18:08] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Microsoft
[27/05/2008|18:57] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Mozilla
[13/01/2008|20:48] C:\DOCUME~1\COMPAQ~1\APPLIC~1\muvee Technologies
[20/12/2007|11:57] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Nikon
[19/12/2007|18:04] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Real
[19/12/2007|18:47] C:\DOCUME~1\COMPAQ~1\APPLIC~1\ScanSoft
[19/12/2007|23:45] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Sonic
[11/01/2008|13:33] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Sun
[27/05/2008|19:09] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Talkback
[17/05/2008|12:56] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Teleca
[19/12/2007|23:17] C:\DOCUME~1\COMPAQ~1\APPLIC~1\vlc
[21/05/2008|15:17] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Vso

[23/11/2004|17:13] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[27/10/2005|00:34] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[03/01/2006|04:14] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[03/01/2006|03:42] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Real

[13/04/2007|13:55] C:\DOCUME~1\LOCALS~1\APPLIC~1\Google
[03/01/2006|03:15] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[03/01/2006|03:15] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

[05/06/2008 12:15][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[06/06/2008 20:06][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 13:00][-rah-----] C:\WINDOWS\tasks\desktop.ini

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[22/02/2007|22:20] C:\Program Files\A.S.C
[03/01/2006|03:45] C:\Program Files\Adobe
[26/12/2007|11:05] C:\Program Files\Advanced Tetric v3.45
[06/03/2007|18:19] C:\Program Files\Ahead
[29/04/2008|11:15] C:\Program Files\Apple Software Update
[28/06/2007|19:28] C:\Program Files\ArcSoft
[16/11/2007|15:48] C:\Program Files\Atari
[05/06/2008|12:07] C:\Program Files\Avira
[31/08/2007|22:03] C:\Program Files\AviSynth 2.5
[30/05/2008|18:18] C:\Program Files\BitDefender
[15/10/2006|18:58] C:\Program Files\Boonty
[15/10/2006|18:53] C:\Program Files\BoontyGames
[24/08/2006|20:11] C:\Program Files\Canon
[26/12/2007|10:38] C:\Program Files\CartaGoGo
[15/04/2007|08:45] C:\Program Files\CCleaner
[20/12/2007|15:27] C:\Program Files\ChaosSoft
[20/10/2005|21:06] C:\Program Files\ComPlus Applications
[06/03/2008|12:48] C:\Program Files\Controle Parental
[03/01/2006|03:45] C:\Program Files\CyberLink
[04/05/2008|08:52] C:\Program Files\Deer Drive
[27/01/2007|18:51] C:\Program Files\denouvel
[29/08/2006|11:26] C:\Program Files\directx
[20/05/2008|21:51] C:\Program Files\Disc2Phone
[11/02/2008|18:02] C:\Program Files\Disney Interactive
[22/02/2008|21:50] C:\Program Files\DivX
[24/12/2007|11:57] C:\Program Files\Drawing for Children
[30/06/2007|10:30] C:\Program Files\EasyPHP1-8
[10/09/2006|19:42] C:\Program Files\EFSUM
[30/05/2008|17:48] C:\Program Files\eMule
[28/05/2008|21:40] C:\Program Files\EoRezo
[28/03/2008|12:23] C:\Program Files\eRightSoft
[06/01/2007|13:41] C:\Program Files\FBSoftware
[29/05/2008|22:07] C:\Program Files\Fichiers communs
[29/06/2007|13:26] C:\Program Files\FileZilla
[20/10/2006|18:25] C:\Program Files\Free
[24/03/2007|16:31] C:\Program Files\FreePeg
[23/12/2007|17:26] C:\Program Files\Frozen-Bubble
[03/05/2008|19:43] C:\Program Files\GamesBar
[21/01/2008|18:41] C:\Program Files\Google
[03/01/2006|03:58] C:\Program Files\Hewlett-Packard
[03/01/2006|03:44] C:\Program Files\HP
[20/12/2007|13:16] C:\Program Files\Icon Constructor 2
[06/03/2008|12:46] C:\Program Files\InstallShield Installation Information
[09/04/2008|22:50] C:\Program Files\Internet Explorer
[24/03/2007|16:01] C:\Program Files\Invasion2
[24/11/2006|14:06] C:\Program Files\Inventel
[15/09/2007|21:36] C:\Program Files\iPod
[13/11/2007|22:34] C:\Program Files\iPuissance 4D
[29/04/2008|11:33] C:\Program Files\iTunes
[29/03/2008|16:02] C:\Program Files\Java
[13/05/2008|16:39] C:\Program Files\JL2008B
[31/08/2007|21:26] C:\Program Files\Kate's Video Converter
[29/06/2007|13:26] C:\Program Files\LaBoiteACouleurs
[31/05/2008|09:29] C:\Program Files\Lavasoft
[22/12/2007|16:36] C:\Program Files\Lecteur CANALPLAY
[24/03/2007|16:32] C:\Program Files\Lexa software
[19/04/2008|22:08] C:\Program Files\Ludiclub
[15/09/2006|19:26] C:\Program Files\Macromedia
[10/11/2007|09:33] C:\Program Files\Memory
[03/01/2006|03:28] C:\Program Files\Messenger
[17/03/2008|18:00] C:\Program Files\MiC“-Soft
[14/10/2006|17:43] C:\Program Files\Microsoft ActiveSync
[13/11/2007|23:32] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[27/10/2005|00:36] C:\Program Files\microsoft frontpage
[03/01/2006|03:47] C:\Program Files\Microsoft Office
[14/10/2006|17:43] C:\Program Files\Microsoft Visual Studio
[03/01/2006|03:47] C:\Program Files\Microsoft Works
[24/08/2006|22:44] C:\Program Files\Microsoft.NET
[20/12/2007|14:58] C:\Program Files\Movie Maker
[06/06/2008|19:22] C:\Program Files\Mozilla Firefox
[18/08/2007|09:11] C:\Program Files\MSECACHE
[27/10/2005|00:36] C:\Program Files\MSN
[27/10/2005|00:36] C:\Program Files\MSN Gaming Zone
[20/12/2007|14:24] C:\Program Files\MSN Messenger
[19/12/2007|19:35] C:\Program Files\MSXML 4.0
[20/12/2007|07:36] C:\Program Files\Nero
[27/10/2005|00:36] C:\Program Files\NetMeeting
[03/02/2007|12:20] C:\Program Files\Nikon
[14/09/2006|13:55] C:\Program Files\Nouveau Document texte.txt
[27/10/2005|00:36] C:\Program Files\Online Services
[02/07/2007|19:49] C:\Program Files\OpenOffice.org 2.2
[03/05/2008|19:43] C:\Program Files\Orange
[20/12/2007|14:58] C:\Program Files\Outlook Express
[24/03/2007|16:27] C:\Program Files\Parsec LAN-Test
[03/01/2006|03:55] C:\Program Files\PC-Doctor 5 for Windows
[22/05/2008|19:17] C:\Program Files\PDFCreator
[22/05/2008|19:17] C:\Program Files\PDFCreator Toolbar
[02/01/2007|13:44] C:\Program Files\Photo Print Calendar from YOKOHAMA Ver.3.00E beta
[10/06/2007|17:10] C:\Program Files\PhotoBox
[07/03/2008|22:39] C:\Program Files\PIXELA
[03/09/2006|14:35] C:\Program Files\Play at Joe's
[29/04/2008|11:31] C:\Program Files\QuickTime
[03/01/2006|03:42] C:\Program Files\Real
[27/01/2007|16:32] C:\Program Files\RndLabs
[04/11/2006|20:52] C:\Program Files\RngInterstitial.dll
[09/10/2006|15:31] C:\Program Files\Satsuki Decoder Pack
[24/08/2006|20:15] C:\Program Files\ScanSoft
[09/12/2006|17:12] C:\Program Files\Securitoo
[03/01/2006|03:59] C:\Program Files\Services en ligne
[22/05/2008|19:17] C:\Program Files\settings.dat
[19/10/2006|21:36] C:\Program Files\Sierra On-Line
[08/01/2008|17:38] C:\Program Files\Skyline
[27/10/2006|11:50] C:\Program Files\Softwin
[23/11/2007|18:31] C:\Program Files\Solone
[03/01/2006|03:43] C:\Program Files\Sonic
[17/05/2008|12:51] C:\Program Files\Sony Ericsson
[19/10/2006|21:38] C:\Program Files\Space Invaders OpenGL
[23/10/2006|16:24] C:\Program Files\Spybot - Search & Destroy
[04/02/2007|18:45] C:\Program Files\Stardock
[08/10/2007|18:53] C:\Program Files\Stellarium
[19/10/2006|17:27] C:\Program Files\TERMINAL Studio
[04/02/2007|19:01] C:\Program Files\TGTSoft
[02/01/2007|12:39] C:\Program Files\Top Factures
[11/05/2008|20:21] C:\Program Files\TrackMania Nations ESWC
[06/06/2008|18:17] C:\Program Files\Trend Micro
[20/10/2005|21:06] C:\Program Files\Uninstall Information
[09/09/2006|19:18] C:\Program Files\VideoLAN
[30/06/2007|13:22] C:\Program Files\VSO
[02/01/2007|13:49] C:\Program Files\WASEO
[30/11/2007|23:25] C:\Program Files\Windows Live Favorites
[28/11/2007|17:11] C:\Program Files\Windows Live Safety Center
[30/11/2007|23:25] C:\Program Files\Windows Live Toolbar
[02/11/2006|16:51] C:\Program Files\Windows Media Connect 2
[20/12/2007|14:50] C:\Program Files\Windows Media Player
[27/10/2005|00:36] C:\Program Files\Windows NT
[20/10/2005|21:05] C:\Program Files\WindowsUpdate
[02/04/2007|22:54] C:\Program Files\WinRAR
[25/05/2007|10:33] C:\Program Files\Winspn
[09/09/2006|17:58] C:\Program Files\WinZip
[27/10/2005|00:37] C:\Program Files\xerox
[30/08/2006|15:20] C:\Program Files\Xplosiv
[07/09/2006|21:47] C:\Program Files\Yahoo!

------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------

[03/01/2006|03:46] C:\Program Files\Fichiers communs\Adobe
[16/09/2006|15:18] C:\Program Files\Fichiers communs\Adobe Systems Shared
[06/03/2007|18:31] C:\Program Files\Fichiers communs\Ahead
[16/12/2006|15:03] C:\Program Files\Fichiers communs\AOL
[15/09/2007|21:31] C:\Program Files\Fichiers communs\Apple
[30/05/2008|18:18] C:\Program Files\Fichiers communs\BitDefender
[24/08/2006|22:45] C:\Program Files\Fichiers communs\DESIGNER
[19/12/2007|13:19] C:\Program Files\Fichiers communs\FDEUnInstaller.exe
[24/08/2007|11:13] C:\Program Files\Fichiers communs\fluxDVD
[03/01/2006|03:39] C:\Program Files\Fichiers communs\HP
[03/01/2006|03:57] C:\Program Files\Fichiers communs\InstallShield
[03/01/2006|03:24] C:\Program Files\Fichiers communs\Java
[14/10/2006|17:42] C:\Program Files\Fichiers communs\L&H
[15/09/2006|19:27] C:\Program Files\Fichiers communs\Macromedia
[19/12/2007|23:34] C:\Program Files\Fichiers communs\Microsoft Shared
[24/08/2007|11:13] C:\Program Files\Fichiers communs\mpDRM
[27/10/2005|00:35] C:\Program Files\Fichiers communs\MSSoap
[03/11/2006|19:15] C:\Program Files\Fichiers communs\muvee Technologies
[03/11/2006|19:22] C:\Program Files\Fichiers communs\Nikon
[03/05/2008|19:43] C:\Program Files\Fichiers communs\Oberon Media
[27/10/2005|00:35] C:\Program Files\Fichiers communs\ODBC
[26/12/2007|20:58] C:\Program Files\Fichiers communs\Real
[19/12/2007|18:47] C:\Program Files\Fichiers communs\ScanSoft Shared
[27/10/2005|00:35] C:\Program Files\Fichiers communs\Services
[09/09/2006|18:09] C:\Program Files\Fichiers communs\Softwin
[03/01/2006|03:43] C:\Program Files\Fichiers communs\Sonic Shared
[27/10/2005|00:35] C:\Program Files\Fichiers communs\SpeechEngines
[03/01/2006|03:43] C:\Program Files\Fichiers communs\SureThing Shared
[19/12/2007|19:31] C:\Program Files\Fichiers communs\Symantec Shared
[19/12/2007|19:44] C:\Program Files\Fichiers communs\System
[20/05/2008|21:59] C:\Program Files\Fichiers communs\Teleca Shared
[03/01/2006|03:43] C:\Program Files\Fichiers communs\TiVo Shared
[31/05/2008|09:28] C:\Program Files\Fichiers communs\Wise Installation Wizard
[26/12/2007|20:58] C:\Program Files\Fichiers communs\xing shared

---------------------------[ Process ]--------------------------

... 13

... OK !

----------------------[ Recherche avec S_Lop ]---------------------

Aucun fichier / dossier Lop trouvé !

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

Aucun fichier / dossier Lop trouvé !

----------------------[ Verification du Registre ]----------------------

..... OK !

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts PROPRE


----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-06-06 20:39:51
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------


Aucune autre infection trouvée !

[F:229][D:43]-> C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp
[F:38][D:0]-> C:\DOCUME~1\COMPAQ~1\Cookies
[F:1438][D:4]-> C:\DOCUME~1\COMPAQ~1\LOCALS~1\TEMPOR~1\content.IE5

--------------------[ Fin du rapport a 20:41:12,29 ]----------------------
Sora370
  Helper
  :-)
      ?   @     Posté le 06/06/2008 21:07:13  
Voter pour ce message
:hello:

==> Désactive toute protection résidente ( antivirus…) ! Aide ici : http://forum.pcastuces.com/desactiver_les_protections_residentes-f31s4.htm

  • Télécharge Combofix de sUBs
  • Sauvegarde le sur ton bureau et pas ailleurs !
  • Redémarre en mode sans échecs

    Note : /!\ Ne jamais redémarrer en mode sans échec via msconfig ! /!\

  • Déconnecte-toi d’internet, ferme tous les programmes en cours.
  • Double-clic sur combofix.exe ( le .exe peut ne pas apparaître ).
  • Il va te poser une question, réponds par la touche 1 et entrée pour valider, laisse toi guider.
  • Laisse combofix travailler : ne fais donc pas autre chose en même temps ! Et surtout ne clique pas sur la fenêtre avec ta souris au risque de planter le PC.
  • Attends que combofix ait terminé, un rapport sera créé. Poste le rapport. Il se trouve ici : C:\Combofix.txt

    Aide : Un guide et un tutoriel sur l'utilisation de ComboFix

    ==> Copie/colle un nouveau rapport HiJackThis avec.

    ;)
    -------
    Venez voir ce beau forum ==> http://www.generation-online-fr.com/
    • gustosas
      
       
          ?   @     Posté le 06/06/2008 21:39:36  
    Voter pour ce message
    les 2 rapports
    ComboFix 08-06-06.2 - Compaq_Propriétaire 2008-06-06 21:23:51.1 - NTFSx86 MINIMAL
    Microsoft Windows XP Édition familiale 5.1.2600.2.1252.1.1036.18.762 [GMT 2:00]
    Endroit: C:\Documents and Settings\Compaq_Propriétaire\Bureau\ComboFix.exe
    .

    ((((((((((((((((((((((((((((( Fichiers créés 2008-05-06 to 2008-06-06 ))))))))))))))))))))))))))))))))))))
    .

    2008-06-06 20:38 . 2008-06-06 20:41 <REP> d-------- C:\Lop SD
    2008-06-06 18:17 . 2008-06-06 18:17 <REP> d-------- C:\Program Files\Trend Micro
    2008-06-05 12:07 . 2008-06-05 12:07 <REP> d-------- C:\Program Files\Avira
    2008-06-05 12:07 . 2008-06-05 12:07 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Avira
    2008-05-31 09:29 . 2008-05-31 09:31 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Lavasoft
    2008-05-30 18:20 . 2008-06-06 21:20 121 --a------ C:\WINDOWS\bdagent.INI
    2008-05-30 18:18 . 2008-05-30 18:18 <REP> d-------- C:\Program Files\BitDefender
    2008-05-30 18:06 . 2008-05-30 18:06 <REP> d-------- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Bitdefender
    2008-05-30 18:06 . 2008-05-30 18:06 <REP> d-------- C:\Documents and Settings\All Users\Application Data\BitDefender
    2008-05-30 16:15 . 2008-05-30 18:05 <REP> d-------- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Bitdefender(2)
    2008-05-30 16:14 . 2008-05-30 18:06 <REP> d-------- C:\Documents and Settings\All Users\Application Data\BitDefender(2)
    2008-05-29 22:07 . 2008-05-30 18:18 <REP> d-------- C:\Program Files\Fichiers communs\BitDefender
    2008-05-29 21:33 . 2008-06-06 20:49 54,156 --ah----- C:\WINDOWS\QTFont.qfn
    2008-05-29 21:33 . 2008-05-29 21:33 1,409 --a------ C:\WINDOWS\QTFont.for
    2008-05-27 19:09 . 2008-05-27 19:09 <REP> d-------- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Talkback
    2008-05-27 18:52 . 2008-05-28 21:40 <REP> d-------- C:\Program Files\EoRezo
    2008-05-27 18:52 . 2008-05-27 18:55 <REP> d-------- C:\Documents and Settings\Compaq_Propriétaire\Application Data\EoRezo
    2008-05-22 19:17 . 2008-05-22 19:17 <REP> d-------- C:\Program Files\PDFCreator Toolbar
    2008-05-22 19:17 . 2008-05-22 19:17 253,116 --a------ C:\WINDOWS\PDFCreator_Toolbar_Uninstaller_3687.exe
    2008-05-22 19:17 . 2008-05-22 19:17 15,397 --a------ C:\Program Files\settings.dat
    2008-05-22 19:16 . 2008-05-22 19:17 <REP> d-------- C:\Program Files\PDFCreator
    2008-05-22 19:16 . 2004-03-09 00:00 662,288 --a------ C:\WINDOWS\system32\MSCOMCT2.OCX
    2008-05-22 19:16 . 2005-10-15 12:32 196,608 --a------ C:\WINDOWS\system32\pdfcmnnt.dll
    2008-05-22 19:16 . 1998-07-13 01:08 141,312 --a------ C:\WINDOWS\system32\MSCMCFR.DLL
    2008-05-22 19:16 . 1998-06-24 00:00 137,000 --a------ C:\WINDOWS\system32\MSMAPI32.OCX
    2008-05-22 19:16 . 1998-07-13 01:08 59,904 --a------ C:\WINDOWS\system32\MSCC2FR.DLL
    2008-05-22 19:16 . 1998-07-06 00:00 23,552 --a------ C:\WINDOWS\system32\MSMPIDE.DLL
    2008-05-17 13:03 . 2008-05-20 21:51 <REP> d-------- C:\Program Files\Disc2Phone
    2008-05-17 12:55 . 2008-05-17 12:56 <REP> d-------- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Teleca
    2008-05-17 12:51 . 2008-05-17 12:51 <REP> d-------- C:\Program Files\Sony Ericsson
    2008-05-17 12:51 . 2008-05-20 21:59 <REP> d-------- C:\Program Files\Fichiers communs\Teleca Shared
    2008-05-17 12:51 . 2008-05-17 12:52 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Teleca
    2008-05-17 12:51 . 2008-05-17 12:51 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Sony Ericsson
    2008-05-16 11:58 . 2008-05-16 11:58 12,632 --a------ C:\WINDOWS\system32\lsdelete.exe
    2008-05-13 16:51 . 2004-08-04 00:55 20,992 --a------ C:\WINDOWS\system32\dshowext.ax
    2008-05-13 16:51 . 2004-08-04 00:55 20,992 --a------ C:\WINDOWS\system32\dllcache\dshowext.ax
    2008-05-13 16:39 . 2008-05-13 16:39 <REP> d-------- C:\Program Files\JL2008B
    2008-05-13 16:39 . 2007-11-23 10:54 134,042 --a------ C:\WINDOWS\system32\drivers\jl2008pc.sys
    2008-05-13 16:39 . 2005-07-11 12:10 14,848 --a------ C:\WINDOWS\system32\jl2008.ax
    2008-05-12 14:46 . 2008-05-12 15:00 <REP> d-------- C:\WINDOWS\system32\Adobe

    .
    (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2008-06-06 18:43 --------- d-----w C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
    2008-06-06 06:23 --------- d-----w C:\Documents and Settings\All Users\Application Data\Google Updater
    2008-06-02 11:24 --------- d-----w C:\Documents and Settings\Compaq_Propriétaire\Application Data\Canon
    2008-05-31 07:29 --------- d-----w C:\Program Files\Lavasoft
    2008-05-31 07:28 --------- d-----w C:\Program Files\Fichiers communs\Wise Installation Wizard
    2008-05-30 16:05 81,984 ----a-w C:\WINDOWS\system32\bdod.bin
    2008-05-30 15:48 --------- d-----w C:\Program Files\eMule
    2008-05-21 17:56 20 ---h--w C:\Documents and Settings\All Users\Application Data\PKP_DLec.DAT
    2008-05-21 17:56 20 ---h--w C:\Documents and Settings\All Users\Application Data\PKP_DLds.DAT
    2008-05-21 13:17 --------- d-----w C:\Documents and Settings\Compaq_Propriétaire\Application Data\Vso
    2008-05-11 18:21 --------- d-----w C:\Program Files\TrackMania Nations ESWC
    2008-05-04 06:52 --------- d-----w C:\Program Files\Deer Drive
    2008-05-03 21:32 --------- d---a-w C:\Documents and Settings\All Users\Application Data\TEMP
    2008-05-03 17:43 --------- d-----w C:\Program Files\Orange
    2008-05-03 17:43 --------- d-----w C:\Program Files\GamesBar
    2008-05-03 17:43 --------- d-----w C:\Program Files\Fichiers communs\Oberon Media
    2008-04-29 09:33 --------- d-----w C:\Program Files\iTunes
    2008-04-29 09:33 --------- d-----w C:\Documents and Settings\Compaq_Propriétaire\Application Data\Apple Computer
    2008-04-29 09:31 --------- d-----w C:\Program Files\QuickTime
    2008-04-29 09:20 15,648 ----a-w C:\WINDOWS\system32\drivers\NSDriver.sys
    2008-04-29 09:19 15,648 ----a-w C:\WINDOWS\system32\drivers\Awrtrd.sys
    2008-04-29 09:19 12,960 ----a-w C:\WINDOWS\system32\drivers\Awrtpd.sys
    2008-04-29 09:15 --------- d-----w C:\Program Files\Apple Software Update
    2008-04-19 20:08 --------- d-----w C:\Program Files\Ludiclub
    2008-03-25 04:51 621,344 ----a-w C:\WINDOWS\system32\mswstr10.dll
    2008-03-25 04:51 621,344 ----a-w C:\WINDOWS\system32\dllcache\mswstr10.dll
    2008-03-25 04:51 194,144 ----a-w C:\WINDOWS\system32\msjint40.dll
    2008-03-25 04:51 194,144 ----a-w C:\WINDOWS\system32\dllcache\msjint40.dll
    2008-03-20 08:09 1,845,376 ----a-w C:\WINDOWS\system32\win32k.sys
    2008-03-20 08:09 1,845,376 ----a-w C:\WINDOWS\system32\dllcache\win32k.sys
    2007-12-19 11:19 278,528 ----a-w C:\Program Files\Fichiers communs\FDEUnInstaller.exe
    2006-11-04 18:52 774,144 ----a-w C:\Program Files\RngInterstitial.dll
    2006-09-14 11:55 11 ----a-w C:\Program Files\Nouveau Document texte.txt
    2006-05-03 10:06 163,328 --sh--r C:\WINDOWS\system32\flvDX.dll
    2007-02-21 11:47 31,232 --sh--r C:\WINDOWS\system32\msfDX.dll
    2007-12-17 13:43 27,648 --sh--w C:\WINDOWS\system32\Smab0.dll
    .

    ------- Sigcheck -------

    2007-06-13 15:22 979456 b68360ad8e80ec6b07c81ee40751d6b0 C:\WINDOWS\explorer.exe
    2007-06-13 15:10 1037312 b795475444d6d57a572c14b9e1a29839 C:\WINDOWS\$hf_mig$\KB938828\SP2QFE\explorer.exe
    2004-08-05 13:00 978432 9f3b76c8cf787449a47f05abab4e13e6 C:\WINDOWS\$NtUninstallKB938828$\explorer.exe
    2007-06-13 15:22 979456 b68360ad8e80ec6b07c81ee40751d6b0 C:\WINDOWS\ServicePackFiles\i386\explorer.exe
    2007-06-13 15:22 1037312 d0288319660edcfed07c7e74c4ea38a5 C:\WINDOWS\system32\dllcache\explorer.exe
    .
    ((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    REGEDIT4
    *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2004-10-14 01:24 1694208]
    "ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-05 13:00 15360]
    "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe" [2006-07-31 12:45 139264]
    "UberIcon"="C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe" [2006-05-21 09:43 180224]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "RTHDCPL"="RTHDCPL.EXE" [2006-03-08 13:54 16010240 C:\WINDOWS\RTHDCPL.EXE]
    "NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2006-01-25 04:15 7311360]
    "nwiz"="nwiz.exe" [2006-01-25 04:15 1519616 C:\WINDOWS\system32\nwiz.exe]
    "PCMService"="C:\Program Files\CyberLink\PowerCinema\PCMService.exe" [2006-02-25 03:46 147456]
    "Recguard"="C:\WINDOWS\SMINST\RECGUARD.EXE" [2005-07-22 23:14 237568]
    "PCDrProfiler"="" []
    "HPBootOp"="C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe" [2006-02-15 23:34 249856]
    "Reminder"="C:\Windows\Creator\Remind_XP.exe" [2004-12-14 03:23 663552]
    "HP Software Update"="C:\Program Files\HP\HP Software Update\HPwuSchd2.exe" [2005-02-17 07:11 49152]
    "OpwareSE2"="c:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe" [2003-05-08 11:00 49152]
    "Google Desktop Search"="C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" [2007-12-19 22:16 1836544]
    "TkBellExe"="C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" [2007-12-26 20:57 185632]
    "NeroFilterCheck"="C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe" [2006-01-12 17:40 155648]
    "KBD"="C:\HP\KBD\KBD.EXE" [2005-02-02 17:44 61440]
    "Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 23:16 39792]
    "OPTENET_GUI"="C:\PROGRA~1\CONTRO~1\bin\optgui.exe" [2007-12-13 19:57 422360]
    "SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" [2008-02-22 05:25 144784]
    "QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe" [2008-03-28 23:37 413696]
    "BDAgent"="C:\Program Files\BitDefender\BitDefender 2008\bdagent.exe" [2008-02-16 17:45 360448]
    "BDMCon"="C:\Program Files\Softwin\BitDefender10\bdmcon.exe" [2007-12-19 14:43 290816]
    "BitDefender Antiphishing Helper"="C:\Program Files\BitDefender\BitDefender 2008\IEShow.exe" [2007-10-09 15:46 61440]
    "avgnt"="C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [2008-02-12 10:06 262401]

    C:\Documents and Settings\Administrateur\Menu D‚marrer\Programmes\D‚marrage\
    Pin.lnk - C:\hp\bin\CLOAKER.EXE [2006-01-03 03:16:19 27136]

    C:\Documents and Settings\Compaq_Propri‚taire\Menu D‚marrer\Programmes\D‚marrage\
    RocketDock.lnk - C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe [2007-03-19 00:05:02 630784]
    TransBar.lnk - C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe [2005-06-01 21:41:18 65536]
    UberIcon.lnk - C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe [2006-05-21 09:43:08 180224]
    Y'z Shadow.lnk - C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe [2006-05-21 09:43:14 155648]

    C:\Documents and Settings\All Users\Menu D‚marrer\Programmes\D‚marrage\
    NkbMonitor.exe.lnk - C:\Program Files\Nikon\PictureProject\NkbMonitor.exe [2006-11-03 19:15:37 118784]
    TransText.lnk - C:\Program Files\ChaosSoft\TransText\TransText.exe [2007-12-20 15:27:18 32768]
    WinZip Quick Pick.lnk - C:\Program Files\WinZip\WZQKPICK.EXE [2006-09-09 17:58:29 122880]

    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
    "VIDC.I420"= i420vfw.dll
    "vidc.yv12"= yv12vfw.dll

    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
    "%windir%\\system32\\sessmgr.exe"=
    "C:\\Program Files\\CyberLink\\PowerCinema\\PowerCinema.exe"=
    "C:\\Program Files\\CyberLink\\PowerCinema\\PCMService.exe"=
    "C:\\Program Files\\eMule\\emule.exe"=
    "%windir%\\Network Diagnostic\\xpnetdiag.exe"=
    "C:\\Program Files\\Lecteur CANALPLAY\\CanalPlayer.exe"=
    "C:\\Program Files\\iTunes\\iTunes.exe"=
    "C:\\Program Files\\Messenger\\msmsgs.exe"=

    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
    "58400:TCP"= 58400:TCP:Pando P2P TCP Listening Port
    "58400:UDP"= 58400:UDP:Pando P2P UDP Listening Port
    "58414:TCP"= 58414:TCP:Pando P2P TCP Listening Port
    "58414:UDP"= 58414:UDP:Pando P2P UDP Listening Port
    "57770:TCP"= 57770:TCP:Pando P2P TCP Listening Port
    "57770:UDP"= 57770:UDP:Pando P2P UDP Listening Port
    "58810:TCP"= 58810:TCP:Pando P2P TCP Listening Port
    "58810:UDP"= 58810:UDP:Pando P2P UDP Listening Port

    R0 sonyhcb;Sony Digital Imaging Base;C:\WINDOWS\system32\DRIVERS\sonyhcb.sys [2001-11-05 10:23]
    R3 USBSTOR;Pilote de stockage de masse USB;C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-04 07:08]
    S2 OPTENET_FILTER;Orange Contrôle Parental;C:\Program Files\Controle Parental\bin\optproxy.exe [2007-12-13 19:53]
    S3 JL2008PC;Digital Camera;C:\WINDOWS\system32\Drivers\jl2008pc.sys [2007-11-23 10:54]
    S3 Service CANALPLAY;Service CANALPLAY;"C:\Program Files\Lecteur CANALPLAY\CanalPlayService.exe" [2007-11-29 13:27]
    S3 sonyhcs;Sony Digital Imaging Video;C:\WINDOWS\system32\DRIVERS\sonyhcs.sys [2001-11-05 10:23]
    S3 usbscan;Pilote de scanneur USB;C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 23:58]
    S3 WN5301;LIteon Wireless PCI Network Adapter Service;C:\WINDOWS\system32\DRIVERS\wn5301.sys [2005-10-05 19:44]

    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
    bdx REG_MULTI_SZ scan

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{12e8a658-aebc-11dc-89e7-001617870b25}]
    \Shell\AutoRun\command - J:\Setupx.exe

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{61eea1c1-ae58-11dc-89e2-001617870b25}]
    \Shell\AutoRun\command - J:\Setupx.exe

    *Newly Created Service* - CATCHME
    .
    Contenu du dossier 'Scheduled Tasks/Tâches planifiées'
    "2008-06-05 10:15:26 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job"
    - C:\Program Files\Apple Software Update\SoftwareUpdate.exe
    .
    **************************************************************************

    catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2008-06-06 21:27:46
    Windows 5.1.2600 Service Pack 2 NTFS

    Balayage processus cachés ...

    Balayage caché autostart entries ...

    Balayage des fichiers cachés ...

    Scan terminé avec succès
    Les fichiers cachés: 0

    **************************************************************************
    .
    Temps d'accomplissement: 2008-06-06 21:29:16
    ComboFix-quarantined-files.txt 2008-06-06 19:29:09

    Pre-Run: 135,326,195,712 octets libres
    Post-Run: 135,313,567,744 octets libres

    193 --- E O F --- 2008-05-28 19:46:33
    ComboFix 08-06-06.2 - Compaq_Propriétaire 2008-06-06 21:23:51.1 - NTFSx86 MINIMAL
    Microsoft Windows XP Édition familiale 5.1.2600.2.1252.1.1036.18.762 [GMT 2:00]
    Endroit: C:\Documents and Settings\Compaq_Propriétaire\Bureau\ComboFix.exe
    .

    ((((((((((((((((((((((((((((( Fichiers créés 2008-05-06 to 2008-06-06 ))))))))))))))))))))))))))))))))))))
    .

    2008-06-06 20:38 . 2008-06-06 20:41 <REP> d-------- C:\Lop SD
    2008-06-06 18:17 . 2008-06-06 18:17 <REP> d-------- C:\Program Files\Trend Micro
    2008-06-05 12:07 . 2008-06-05 12:07 <REP> d-------- C:\Program Files\Avira
    2008-06-05 12:07 . 2008-06-05 12:07 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Avira
    2008-05-31 09:29 . 2008-05-31 09:31 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Lavasoft
    2008-05-30 18:20 . 2008-06-06 21:20 121 --a------ C:\WINDOWS\bdagent.INI
    2008-05-30 18:18 . 2008-05-30 18:18 <REP> d-------- C:\Program Files\BitDefender
    2008-05-30 18:06 . 2008-05-30 18:06 <REP> d-------- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Bitdefender
    2008-05-30 18:06 . 2008-05-30 18:06 <REP> d-------- C:\Documents and Settings\All Users\Application Data\BitDefender
    2008-05-30 16:15 . 2008-05-30 18:05 <REP> d-------- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Bitdefender(2)
    2008-05-30 16:14 . 2008-05-30 18:06 <REP> d-------- C:\Documents and Settings\All Users\Application Data\BitDefender(2)
    2008-05-29 22:07 . 2008-05-30 18:18 <REP> d-------- C:\Program Files\Fichiers communs\BitDefender
    2008-05-29 21:33 . 2008-06-06 20:49 54,156 --ah----- C:\WINDOWS\QTFont.qfn
    2008-05-29 21:33 . 2008-05-29 21:33 1,409 --a------ C:\WINDOWS\QTFont.for
    2008-05-27 19:09 . 2008-05-27 19:09 <REP> d-------- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Talkback
    2008-05-27 18:52 . 2008-05-28 21:40 <REP> d-------- C:\Program Files\EoRezo
    2008-05-27 18:52 . 2008-05-27 18:55 <REP> d-------- C:\Documents and Settings\Compaq_Propriétaire\Application Data\EoRezo
    2008-05-22 19:17 . 2008-05-22 19:17 <REP> d-------- C:\Program Files\PDFCreator Toolbar
    2008-05-22 19:17 . 2008-05-22 19:17 253,116 --a------ C:\WINDOWS\PDFCreator_Toolbar_Uninstaller_3687.exe
    2008-05-22 19:17 . 2008-05-22 19:17 15,397 --a------ C:\Program Files\settings.dat
    2008-05-22 19:16 . 2008-05-22 19:17 <REP> d-------- C:\Program Files\PDFCreator
    2008-05-22 19:16 . 2004-03-09 00:00 662,288 --a------ C:\WINDOWS\system32\MSCOMCT2.OCX
    2008-05-22 19:16 . 2005-10-15 12:32 196,608 --a------ C:\WINDOWS\system32\pdfcmnnt.dll
    2008-05-22 19:16 . 1998-07-13 01:08 141,312 --a------ C:\WINDOWS\system32\MSCMCFR.DLL
    2008-05-22 19:16 . 1998-06-24 00:00 137,000 --a------ C:\WINDOWS\system32\MSMAPI32.OCX
    2008-05-22 19:16 . 1998-07-13 01:08 59,904 --a------ C:\WINDOWS\system32\MSCC2FR.DLL
    2008-05-22 19:16 . 1998-07-06 00:00 23,552 --a------ C:\WINDOWS\system32\MSMPIDE.DLL
    2008-05-17 13:03 . 2008-05-20 21:51 <REP> d-------- C:\Program Files\Disc2Phone
    2008-05-17 12:55 . 2008-05-17 12:56 <REP> d-------- C:\Documents and Settings\Compaq_Propriétaire\Application Data\Teleca
    2008-05-17 12:51 . 2008-05-17 12:51 <REP> d-------- C:\Program Files\Sony Ericsson
    2008-05-17 12:51 . 2008-05-20 21:59 <REP> d-------- C:\Program Files\Fichiers communs\Teleca Shared
    2008-05-17 12:51 . 2008-05-17 12:52 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Teleca
    2008-05-17 12:51 . 2008-05-17 12:51 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Sony Ericsson
    2008-05-16 11:58 . 2008-05-16 11:58 12,632 --a------ C:\WINDOWS\system32\lsdelete.exe
    2008-05-13 16:51 . 2004-08-04 00:55 20,992 --a------ C:\WINDOWS\system32\dshowext.ax
    2008-05-13 16:51 . 2004-08-04 00:55 20,992 --a------ C:\WINDOWS\system32\dllcache\dshowext.ax
    2008-05-13 16:39 . 2008-05-13 16:39 <REP> d-------- C:\Program Files\JL2008B
    2008-05-13 16:39 . 2007-11-23 10:54 134,042 --a------ C:\WINDOWS\system32\drivers\jl2008pc.sys
    2008-05-13 16:39 . 2005-07-11 12:10 14,848 --a------ C:\WINDOWS\system32\jl2008.ax
    2008-05-12 14:46 . 2008-05-12 15:00 <REP> d-------- C:\WINDOWS\system32\Adobe

    .
    (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2008-06-06 18:43 --------- d-----w C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
    2008-06-06 06:23 --------- d-----w C:\Documents and Settings\All Users\Application Data\Google Updater
    2008-06-02 11:24 --------- d-----w C:\Documents and Settings\Compaq_Propriétaire\Application Data\Canon
    2008-05-31 07:29 --------- d-----w C:\Program Files\Lavasoft
    2008-05-31 07:28 ---------