Kilal-FR

et beh !!! soit je comprend rien, soit antivir est vraiment plus efficace... je viens de lancer le scan deja 6 ou 7 infections trouver rienq ue dans les 5% de depart... Je veux pas etre defaitiste, mais il y a de grande chance que je revienne poser des questions^^

mouhahahahhaha, le lexique qui tue, non je suis tout de mm meilleur que ca, ces mots la, je les ai assimilé depuis quelques belles années !!!! bon allez je me suis lancer, j'ai virer Avast et je vais tester ce petit nouveau pour moi Si jamais il m'arrive des bricolles, vous me retrouver, a trainer, dans le coin Bye!!

Ok, je comprend mieux, effectivement, j'ai fait une mise jour de messenger live... mais cela dit je suis plutot du genre prudent. La, j'ai du passer a coté, mais ca m'etonnes (je pense plutot qu'une petite maline a la maison s'en est charger^^) cela dit, il n'y a pas mort d'homme. J'ai bien mis en favori les liens je vais m'empresser de bouquiner ca, et de faire connaitre tout ces petits trucs a mon entourage. Pour ce qui est de l'antivirus, Cela m'embete de changer (mais y'a que les imbeciles qui ne ch.... ) tout simplement parce que je privilegie de base les programmes traduits en francais, l'anglais de maniere generale, ne me derange pas trop, mais des que cela s'attaque a des termes spécifiques, je commence a etre franchement largué... En tout cas, vu l'acceuil recu, je n'hesiterai plus une seule seconde a venir poser des questions!! Bonne soirée et peut etre a tres bientot , j'edit me post sur le champ ,)

Cool ! si les infos sont remontées, ca me fais plaisir, mon prob servira donc a en resoudre d'autre. Oui, je dispose bien sur de daemon tools la version 4.11.1 Lite pour etre plus precis, et je m'en sers de maniere assez reguliere! Autrement non plus de fenetres pop-up, plus de symptomes bizarres, cela dit je n'ai pas relancer mon boot Vista sur l'autre HDD depuis un bon moment (une 10 ene de jours) donc avant l'apparation de toutes les choses bizarres... j'espere donc juste que cette partition n'a pas ete touché (je touche du bois) Enfin un grand merci pour avoir pris du temps pour etudier mon probleme, mm avec un niveau de bidouillage informatique pas trop mauvais, dans un cas comme ca, je me sens vraiment petit mais alors tout petit^^ Edit : j'allais oublier de demander, mais quel etait en fait la source de MES soucis, que je ne me fasse pas avoir 2 fois et quel sont les moyens de prevenir ce genre de prob, le mieux possible? !!!

voila le rapport tel quel, pour eviter de faire des betises, j'ai preferer mm pas le regarder^^ lol GMER 1.0.14.14205 - http://www.gmer.net Rootkit scan 2008-04-15 11:20:15 Windows 5.1.2600 Service Pack 2 ---- Registry - GMER 1.0.14 ---- Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s1 -2117218944 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s2 -187024205 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@h0 2 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0 1 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew 0x89 0xF1 0xE5 0x8B ... Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@h0 0 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@khjeh 0xAB 0x34 0x42 0x84 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@p0 C:\Program Files\DAEMON Tools\ Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001@khjeh 0x17 0x1E 0x49 0xA6 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001@a0 0x20 0x01 0x00 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40@khjeh 0x9D 0x8D 0x51 0x69 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf41 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf41@khjeh 0xD8 0x03 0x7E 0xBD ... Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf42 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf42@khjeh 0xDF 0x3A 0xA4 0x9F ... Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf43 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf43@khjeh 0xE4 0x39 0xC0 0x41 ... Reg HKLM\SYSTEM\ControlSet004\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04 Reg HKLM\SYSTEM\ControlSet004\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0 1 Reg HKLM\SYSTEM\ControlSet004\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew 0x89 0xF1 0xE5 0x8B ... Reg HKLM\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@h0 0 Reg HKLM\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@khjeh 0xAB 0x34 0x42 0x84 ... Reg HKLM\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@p0 C:\Program Files\DAEMON Tools\ Reg HKLM\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001 Reg HKLM\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001@khjeh 0x17 0x1E 0x49 0xA6 ... Reg HKLM\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001@a0 0x20 0x01 0x00 0x00 ... Reg HKLM\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40 Reg HKLM\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40@khjeh 0x9D 0x8D 0x51 0x69 ... Reg HKLM\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf41 Reg HKLM\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf41@khjeh 0xD8 0x03 0x7E 0xBD ... Reg HKLM\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf42 Reg HKLM\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf42@khjeh 0xDF 0x3A 0xA4 0x9F ... Reg HKLM\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf43 Reg HKLM\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf43@khjeh 0xE4 0x39 0xC0 0x41 ... Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Electronic Arts\Command & Conquer 3 Les guerres du Tiberium\x2122\Assistance\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Electronic Arts\Command & Conquer 3 Les guerres du Tiberium\x2122\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\ 1 Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\en-us\WebHelp_Skin_Files\ 1 Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\en-us\ 1 Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\ 1 Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\ 1 Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\WebHelp_Skin_Files\ 1 Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Core\1.0\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Core\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Meta\1.0\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Meta\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Movies\1.0\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Movies\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\EnglishAudio\1.0\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\EnglishAudio\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\RetailExe\1.0\Data\Cursors\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\RetailExe\1.0\Data\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\RetailExe\1.0\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\RetailExe\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Lang-french\1.0\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Lang-french\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\Controller\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\Crash\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\Cz\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\Da\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\De\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\Direct_X\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\en-uk\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\en-us\Controller\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\en-us\Crash\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\en-us\Direct_X\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\en-us\Error_Message\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\en-us\Getting_More_Help_Online\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\en-us\Graphics\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\en-us\Install\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\en-us\Lock-up_and_Freeze\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\en-us\Online_Connectivity_and_Performance\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\en-us\Sound\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\en-us\WebHelp_Skin_Files\XP_Silver\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\en-us\whdata\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\en-us\Whitepages\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\en-us\whxdata\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\Error_Message\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\Es\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\Fi\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\fr-fr\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\Getting_More_Help_Online\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\Graphics\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\Hu\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\Install\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\It\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\Lock-up_and_Freeze\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\NL\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\No\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\Online_Connectivity_and_Performance\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\Pol\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\pt\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\pt-br\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\Ru\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\Sound\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\Sv\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\WebHelp_Skin_Files\XP_Silver\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\whdata\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\Whitepages\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\EA Help\whxdata\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\DirectX\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Launcher\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\sv\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\es\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\ru\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\pl\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\it\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\hu\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\de\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\fr-fr\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\nl\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Support\cs\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Assistance\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders@C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\ Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Core\1.0\config.txt 1 Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Meta\1.0\config.txt 1 Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Movies\1.0\config.txt 1 Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\EnglishAudio\1.0\config.txt 1 Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\Lang-french\1.0\config.txt 1 Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\CNC3EP1_french_1.0.SkuDef 1 Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\RetailExe\1.0\Data\Cursors\SCCTelestrator.ani 1 Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\RetailExe\1.0\config.txt 1 Reg HKCU\Software\Microsoft\Windows\ShellNoRoam\MUICache@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\cnc3ep1.exe Command and Conquer? 3 Kane's Wrath Launcher Reg HKCU\Software\Microsoft\Windows\ShellNoRoam\MUICache@D:\Electronic Arts\Command & Conquer\x00a03\xa0 La Fureur de Kane\RetailExe\1.0\cnc3ep1.dat Command and Conquer? 3 Kane's Wrath ---- EOF - GMER 1.0.14 ---- Bon courage pour l'analyse, je reviendrai ce soir, bonne journée

voici le nouveau rapport : Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 09:18:05, on 15/04/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16640) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\ZoneLabs\vsmon.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Fichiers communs\Logitech\QCDriver3\LVCOMS.EXE C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe C:\WINDOWS\tsnp2std.exe C:\WINDOWS\vsnp2std.exe C:\Program Files\ASUS\Ai Suite\AiNap\AiNap.exe C:\Program Files\Analog Devices\Core\smax4pnp.exe C:\Program Files\Analog Devices\SoundMAX\smax4.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe D:\steam\steam.exe C:\Program Files\DAEMON Tools\daemon.exe C:\WINDOWS\system32\bgsvcgen.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\PnkBstrA.exe C:\Program Files\MagicDisc\MagicDisc.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\Windows Live\Messenger\usnsvc.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.orange.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.01net.com/telecharger/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.01net.com/telecharger/ R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file) O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [LVCOMS] C:\Program Files\Fichiers communs\Logitech\QCDriver3\LVCOMS.EXE O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" O4 - HKLM\..\Run: [tsnp2std] C:\WINDOWS\tsnp2std.exe O4 - HKLM\..\Run: [snp2std] C:\WINDOWS\vsnp2std.exe O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM\..\Run: [Ai Nap] "C:\Program Files\ASUS\Ai Suite\AiNap\AiNap.exe" O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [soundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe O4 - HKLM\..\Run: [soundMAX] "C:\Program Files\Analog Devices\SoundMAX\smax4.exe" /tray O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [warn default inter for] C:\Documents and Settings\All Users\Application Data\Time Dead Warn Default\BURN DATA.exe O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [steam] "d:\steam\steam.exe" -silent O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools\daemon.exe" O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user') O4 - Startup: MagicDisc.lnk = C:\Program Files\MagicDisc\MagicDisc.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {051D0E35-F4E3-4C8D-B411-AB0875F4C683} (Anark Client 4.0 ActiveX Control) - http://install.anark.com/client/version4/w...en/AMClient.cab O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} - http://messenger.zone.msn.com/binary/MineS...er.cab31267.cab O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} - http://www.fileplanet.com/fpdlmgr/cabs/FPDC_2.3.3.102.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab O16 - DPF: {67A5F8DC-1A4B-4D66-9F24-A704AD929EEE} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownlo.../sysreqlab2.cab O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab O16 - DPF: {69EF49E5-FE46-4B92-B5FA-2193AB7A6B8A} (GameLauncher Control) - http://www.acclaim.com/cabs/acclaim_v4.cab O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) - O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://express.foto.com/Newuploader/ImageUploader4.cab O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2005111...all/xscan53.cab O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} - http://www.touslesdrivers.com/fichiers/har...ion_2_0_4_9.cab O16 - DPF: {B9907873-6560-4A36-B76B-9DADE84A7F55} (FnacmusicDnl.DnlManager) - http://www.fnacmusic.com/telechargementFna...nacmusicDnl.CAB O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O16 - DPF: {CE3409C4-9E26-4F8E-83E4-778498F9E7B4} (PB_Uploader Class) - http://www.photobox.fr/discount/clients/up...er_v2.2.0.6.cab O16 - DPF: {E87F6C8E-16C0-11D3-BEF7-009027438003} (Persits Software XUpload) - http://www.fnacphoto.com/ectelechargement/...oad/XUpload.ocx O16 - DPF: {E8F628B5-259A-4734-97EE-BA914D7BE941} (Driver Agent ActiveX Control) - http://driveragent.com/files/driveragent.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: B's Recorder GOLD Library General Service (bgsvcgen) - B.H.A Corporation - C:\WINDOWS\system32\bgsvcgen.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe (file missing) O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe -- End of file - 10917 bytes C'est quand mm bien bizarre , on vois toujours le burn data.exe, je comprend pas grand chose.. j'ai fait des recherche (tous fichiers, tous dossiers) sous Windows et il ne trouve rien, si tu as une idée! je suis preneur, cela dit je n'ai absoluement plus aucun soucis d'ouverture de fenetre de PUB, uand a l'autre infection dont tu me parlais je ne l'avais jamais remarqué (a moins que les 2 infections soit lié). PS: je poste un second rapport apres un Ccleaner "registre", je me suis douté que ca venait simplement d'une entrée registre qui n'avait pas sauté: Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 09:28:00, on 15/04/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16640) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\ZoneLabs\vsmon.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Fichiers communs\Logitech\QCDriver3\LVCOMS.EXE C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe C:\WINDOWS\tsnp2std.exe C:\WINDOWS\vsnp2std.exe C:\Program Files\ASUS\Ai Suite\AiNap\AiNap.exe C:\Program Files\Analog Devices\Core\smax4pnp.exe C:\Program Files\Analog Devices\SoundMAX\smax4.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe D:\steam\steam.exe C:\Program Files\DAEMON Tools\daemon.exe C:\WINDOWS\system32\bgsvcgen.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\PnkBstrA.exe C:\Program Files\MagicDisc\MagicDisc.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\Windows Live\Messenger\usnsvc.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.orange.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.01net.com/telecharger/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.01net.com/telecharger/ R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file) O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [LVCOMS] C:\Program Files\Fichiers communs\Logitech\QCDriver3\LVCOMS.EXE O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" O4 - HKLM\..\Run: [tsnp2std] C:\WINDOWS\tsnp2std.exe O4 - HKLM\..\Run: [snp2std] C:\WINDOWS\vsnp2std.exe O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM\..\Run: [Ai Nap] "C:\Program Files\ASUS\Ai Suite\AiNap\AiNap.exe" O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [soundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe O4 - HKLM\..\Run: [soundMAX] "C:\Program Files\Analog Devices\SoundMAX\smax4.exe" /tray O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [steam] "d:\steam\steam.exe" -silent O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools\daemon.exe" O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user') O4 - Startup: MagicDisc.lnk = C:\Program Files\MagicDisc\MagicDisc.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {051D0E35-F4E3-4C8D-B411-AB0875F4C683} (Anark Client 4.0 ActiveX Control) - http://install.anark.com/client/version4/w...en/AMClient.cab O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} - http://messenger.zone.msn.com/binary/MineS...er.cab31267.cab O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} - http://www.fileplanet.com/fpdlmgr/cabs/FPDC_2.3.3.102.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab O16 - DPF: {67A5F8DC-1A4B-4D66-9F24-A704AD929EEE} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownlo.../sysreqlab2.cab O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab O16 - DPF: {69EF49E5-FE46-4B92-B5FA-2193AB7A6B8A} (GameLauncher Control) - http://www.acclaim.com/cabs/acclaim_v4.cab O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) - O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://express.foto.com/Newuploader/ImageUploader4.cab O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2005111...all/xscan53.cab O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} - http://www.touslesdrivers.com/fichiers/har...ion_2_0_4_9.cab O16 - DPF: {B9907873-6560-4A36-B76B-9DADE84A7F55} (FnacmusicDnl.DnlManager) - http://www.fnacmusic.com/telechargementFna...nacmusicDnl.CAB O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O16 - DPF: {CE3409C4-9E26-4F8E-83E4-778498F9E7B4} (PB_Uploader Class) - http://www.photobox.fr/discount/clients/up...er_v2.2.0.6.cab O16 - DPF: {E87F6C8E-16C0-11D3-BEF7-009027438003} (Persits Software XUpload) - http://www.fnacphoto.com/ectelechargement/...oad/XUpload.ocx O16 - DPF: {E8F628B5-259A-4734-97EE-BA914D7BE941} (Driver Agent ActiveX Control) - http://driveragent.com/files/driveragent.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: B's Recorder GOLD Library General Service (bgsvcgen) - B.H.A Corporation - C:\WINDOWS\system32\bgsvcgen.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe (file missing) O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe -- End of file - 10701 bytes Apparement, on a l'air d'etre bon sur celui la, reste l'analyser pour voir si tout va bien, et apres je pense qu'il me restera simplement a te dire un grand merci

hum... sifflote, les yeux au ciel.... Le dossier n'existe pas!! enfin plus precisement n'existe plus, je l'ai delete juste apres avoir posté mon premier rapport Hijackthis.... je sais pas si c'etait une connerie mais bon, ca a deja ete fait. vu que je n'avais aucune idée de ce que c'etait et que ca se trouvé sur les 2 sessions du pc.... enfin bon! J'espere que ce n'est pas trop grave. J'atten de nouvelles instructions, je serai + dispo ce soir pour reagir au message plus rapidement.

hihi, impec, je ne comprend pas trop ce que ca supprime, mais si c'est pour la bonne cause voila donc les 1er rapport: Clean Navipromo version 3.5.3 commencé le 14/04/2008 à 7:52:01,68 Outil exécuté depuis C:\Program Files\navilog1 Session actuelle : "Kilal" Mise à jour le 09.04.2008 à 20h00 par IL-MAFIOSO Microsoft Windows XP [version 5.1.2600] Internet Explorer : 7.0.5730.11 Système de fichiers : NTFS Mode suppression automatique avec prise en charge résultats Catchme et GNS *** fsbl1.txt non trouvé *** (Assurez-vous que Catchme n'avait rien trouvé lors de la recherche) *** Suppression avec sauvegardes résultats GenericNaviSearch *** * Suppression dans C:\WINDOWS\System32 * * Suppression dans "C:\Documents and Settings\Kilal\locals~1\applic~1" * * Suppression dans "C:\DOCUME~1\Mag\locals~1\applic~1" * *** Suppression dossiers dans C:\WINDOWS *** *** Suppression dossiers dans C:\Program Files *** *** Suppression dossiers dans C:\DOCUME~1\ALLUSE~1\APPLIC~1 *** *** Suppression dossiers dans "C:\Documents and Settings\Kilal\applic~1" *** *** Suppression dossiers dans "C:\Documents and Settings\Kilal\locals~1\applic~1" *** *** Suppression dossiers dans "C:\Documents and Settings\Kilal\menudm~1\progra~1" *** *** Suppression dossiers dans C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1 *** *** Suppression fichiers *** C:\WINDOWS\pack.epk supprimé ! *** Suppression fichiers temporaires *** Nettoyage contenu C:\WINDOWS\Temp effectué ! Nettoyage contenu C:\Documents and Settings\Kilal\locals~1\Temp effectué ! *** Traitement Recherche complémentaire *** (Recherche fichiers spécifiques) 1)Suppression avec sauvegardes nouveaux fichiers Instant Access : 2)Recherche, création sauvegardes et suppression Heuristique : * Dans C:\WINDOWS\system32 * ladbgsqvbf.dat trouvé ! Copie ladbgsqvbf.dat réalisée avec succès ! ladbgsqvbf.dat supprimé ! ladbgsqvbf_nav.dat trouvé ! Copie ladbgsqvbf_nav.dat réalisée avec succès ! ladbgsqvbf_nav.dat supprimé ! ladbgsqvbf_navps.dat trouvé ! Copie ladbgsqvbf_navps.dat réalisée avec succès ! ladbgsqvbf_navps.dat supprimé ! * Dans "C:\Documents and Settings\Kilal\locals~1\applic~1" * * Dans "C:\DOCUME~1\Mag\locals~1\applic~1" * *** Sauvegarde du Registre vers dossier Safebackup *** sauvegarde du Registre réalisée avec succès ! *** Nettoyage Registre *** Nettoyage Registre Ok *** Certificats *** Certificat Egroup supprimé ! Certificat Electronic-Group absent ! Certificat OOO-Favorit absent ! Certificat Sunny-Day-Design-Ltdt absent ! *** Nettoyage terminé le 14/04/2008 à 7:54:41,37 *** ET le deuxieme : Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 07:59:30, on 14/04/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16640) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\ZoneLabs\vsmon.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\WINDOWS\system32\bgsvcgen.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\PnkBstrA.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Fichiers communs\Logitech\QCDriver3\LVCOMS.EXE C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe C:\WINDOWS\tsnp2std.exe C:\WINDOWS\vsnp2std.exe C:\Program Files\ASUS\Ai Suite\AiNap\AiNap.exe C:\Program Files\Analog Devices\Core\smax4pnp.exe C:\Program Files\Analog Devices\SoundMAX\smax4.exe C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe D:\steam\steam.exe C:\Program Files\DAEMON Tools\daemon.exe C:\Program Files\MagicDisc\MagicDisc.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Windows Live\Messenger\usnsvc.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.orange.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.01net.com/telecharger/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.01net.com/telecharger/ R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file) O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [LVCOMS] C:\Program Files\Fichiers communs\Logitech\QCDriver3\LVCOMS.EXE O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" O4 - HKLM\..\Run: [tsnp2std] C:\WINDOWS\tsnp2std.exe O4 - HKLM\..\Run: [snp2std] C:\WINDOWS\vsnp2std.exe O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM\..\Run: [Ai Nap] "C:\Program Files\ASUS\Ai Suite\AiNap\AiNap.exe" O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [soundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe O4 - HKLM\..\Run: [soundMAX] "C:\Program Files\Analog Devices\SoundMAX\smax4.exe" /tray O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [warn default inter for] C:\Documents and Settings\All Users\Application Data\Time Dead Warn Default\BURN DATA.exe O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [steam] "d:\steam\steam.exe" -silent O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools\daemon.exe" O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user') O4 - Startup: MagicDisc.lnk = C:\Program Files\MagicDisc\MagicDisc.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {051D0E35-F4E3-4C8D-B411-AB0875F4C683} (Anark Client 4.0 ActiveX Control) - http://install.anark.com/client/version4/w...en/AMClient.cab O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} - http://messenger.zone.msn.com/binary/MineS...er.cab31267.cab O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} - http://www.fileplanet.com/fpdlmgr/cabs/FPDC_2.3.3.102.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab O16 - DPF: {67A5F8DC-1A4B-4D66-9F24-A704AD929EEE} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownlo.../sysreqlab2.cab O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab O16 - DPF: {69EF49E5-FE46-4B92-B5FA-2193AB7A6B8A} (GameLauncher Control) - http://www.acclaim.com/cabs/acclaim_v4.cab O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) - O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://express.foto.com/Newuploader/ImageUploader4.cab O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2005111...all/xscan53.cab O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} - http://www.touslesdrivers.com/fichiers/har...ion_2_0_4_9.cab O16 - DPF: {B9907873-6560-4A36-B76B-9DADE84A7F55} (FnacmusicDnl.DnlManager) - http://www.fnacmusic.com/telechargementFna...nacmusicDnl.CAB O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O16 - DPF: {CE3409C4-9E26-4F8E-83E4-778498F9E7B4} (PB_Uploader Class) - http://www.photobox.fr/discount/clients/up...er_v2.2.0.6.cab O16 - DPF: {E87F6C8E-16C0-11D3-BEF7-009027438003} (Persits Software XUpload) - http://www.fnacphoto.com/ectelechargement/...oad/XUpload.ocx O16 - DPF: {E8F628B5-259A-4734-97EE-BA914D7BE941} (Driver Agent ActiveX Control) - http://driveragent.com/files/driveragent.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: B's Recorder GOLD Library General Service (bgsvcgen) - B.H.A Corporation - C:\WINDOWS\system32\bgsvcgen.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe (file missing) O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe -- End of file - 10973 bytes

pour tte les manip demandées j'ai couper lantivirus, comme ca pas de soucis et voici donc le second rapport : Search Navipromo version 3.5.3 commencé le 13/04/2008 à 19:26:39,21 !!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!! !!! Postez ce rapport sur le forum pour le faire analyser !!! !!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!! Outil exécuté depuis C:\Program Files\navilog1 Session actuelle : "Kilal" Mise à jour le 09.04.2008 à 20h00 par IL-MAFIOSO Microsoft Windows XP [version 5.1.2600] Internet Explorer : 7.0.5730.11 Système de fichiers : NTFS Executé en mode normal *** Recherche Programmes installés *** *** Recherche dossiers dans C:\WINDOWS *** *** Recherche dossiers dans C:\Program Files *** *** Recherche dossiers dans C:\DOCUME~1\ALLUSE~1\APPLIC~1 *** *** Recherche dossiers dans "C:\Documents and Settings\Kilal\applic~1" *** *** Recherche dossiers dans "C:\Documents and Settings\Kilal\locals~1\applic~1" *** *** Recherche dossiers dans "C:\Documents and Settings\Kilal\menudm~1\progra~1" *** *** Recherche dossiers dans C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1 *** *** Recherche avec Catchme-rootkit/stealth malware detector par gmer *** pour + d'infos : http://www.gmer.net Aucun Fichier trouvé *** Recherche avec GenericNaviSearch *** !!! Tous ces résultats peuvent révéler des fichiers légitimes !!! !!! A vérifier impérativement avant toute suppression manuelle !!! * Recherche dans C:\WINDOWS\system32 * * Recherche dans "C:\Documents and Settings\Kilal\locals~1\applic~1" * * Recherche dans "C:\DOCUME~1\Mag\locals~1\applic~1" * *** Recherche fichiers *** C:\WINDOWS\pack.epk trouvé ! *** Recherche clés spécifiques dans le Registre *** HKEY_CURRENT_USER\Software\Lanconfig trouvé ! *** Module de Recherche complémentaire *** (Recherche fichiers spécifiques) 1)Recherche nouveaux fichiers Instant Access : 2)Recherche Heuristique : * Dans C:\WINDOWS\system32 : ladbgsqvbf.dat trouvé ! ladbgsqvbf_nav.dat trouvé ! ladbgsqvbf_navps.dat trouvé ! * Dans "C:\Documents and Settings\Kilal\locals~1\applic~1" : * Dans "C:\DOCUME~1\Mag\locals~1\applic~1" : 3)Recherche Certificats : Certificat Egroup trouvé ! Certificat Electronic-Group absent ! Certificat OOO-Favorit absent ! Certificat Sunny-Day-Design-Ltd absent ! 4)Recherche fichiers connus : *** Analyse terminée le 13/04/2008 à 19:32:17,09 ***

encore merci de -----------------------[ Lop S&D 4.1.0-9 XP/Vista ]--------------------- [ Windows XP (NT 5.1) Build 2600, Service Pack 2 ] [ USER : Kilal ] [ "C:\Lop SD" ] [ 13/04/2008 | 19:21:21,57 ] [ PC : KIKI-XXX65CFRZ5 ] [ MAJ : 08-04-2008 | 23:37 ] \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION ///////////////////////////// Supprimé! - C:\Program Files\BitTorrent Fastest Tool\BitDownload-4.5-setup.exe Supprimé! - C:\Program Files\BitTorrent Fastest Tool\BitP.exe Supprimé! - C:\Program Files\BitTorrent Fastest Tool\INSTALL.LOG Supprimé! - C:\WINDOWS\Tasks\AE90DEB4918F4F1C.job Supprimé! - C:\Program Files\BitTorrent Fastest Tool Restauré! - Fichier Hosts //////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ -------------[ Listing des dossiers dans Application Data ]------------ [12/04/2008|20:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\. [12/04/2008|20:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\.. [30/09/2006|06:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ACD Systems [12/02/2008|19:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe [09/09/2007|11:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple [11/11/2006|14:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer [30/01/2008|17:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Autodesk [12/05/2007|10:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink [29/06/2002|01:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini [10/04/2008|17:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink [10/01/2008|12:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Earthsim [03/03/2008|23:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Exetender [29/06/2002|03:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google [07/12/2006|12:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus! [13/11/2007|09:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft [18/12/2006|21:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN6 [22/06/2007|00:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NVIDIA [22/02/2008|12:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Outspark [03/02/2008|20:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QTSBandwidthCache [14/07/2007|18:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype [12/04/2008|11:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy [16/10/2007|09:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Tages [23/06/2007|03:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Trymedia [16/03/2008|11:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ubisoft [11/09/2007|01:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems [10/11/2006|01:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage [01/12/2007|14:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller [29/06/2002|01:26] C:\DOCUME~1\DEFAUL~1\APPLIC~1\. [29/06/2002|01:26] C:\DOCUME~1\DEFAUL~1\APPLIC~1\.. [29/06/2002|01:26] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini [29/06/2002|00:35] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft [12/04/2008|19:58] C:\DOCUME~1\Kilal\APPLIC~1\. [12/04/2008|19:58] C:\DOCUME~1\Kilal\APPLIC~1\.. [30/09/2006|06:36] C:\DOCUME~1\Kilal\APPLIC~1\ACD Systems [23/12/2006|13:25] C:\DOCUME~1\Kilal\APPLIC~1\Activision [23/06/2007|02:29] C:\DOCUME~1\Kilal\APPLIC~1\Adobe [07/03/2007|16:08] C:\DOCUME~1\Kilal\APPLIC~1\AdobeUM [20/06/2007|22:28] C:\DOCUME~1\Kilal\APPLIC~1\Ahead [13/11/2006|20:37] C:\DOCUME~1\Kilal\APPLIC~1\Apple Computer [28/01/2008|17:15] C:\DOCUME~1\Kilal\APPLIC~1\AutoDWG [13/04/2008|19:21] C:\DOCUME~1\Kilal\APPLIC~1\Azureus [30/03/2008|06:10] C:\DOCUME~1\Kilal\APPLIC~1\Bioshock [29/10/2007|09:16] C:\DOCUME~1\Kilal\APPLIC~1\Codemasters [03/04/2007|20:28] C:\DOCUME~1\Kilal\APPLIC~1\Command & Conquer 3 Les guerres du Tiberium [01/04/2008|00:06] C:\DOCUME~1\Kilal\APPLIC~1\Command & Conquerÿ3ÿ La Fureur de Kane [12/05/2007|10:32] C:\DOCUME~1\Kilal\APPLIC~1\CyberLink [22/12/2007|10:00] C:\DOCUME~1\Kilal\APPLIC~1\DAEMON Tools [29/06/2002|01:26] C:\DOCUME~1\Kilal\APPLIC~1\desktop.ini [27/01/2008|14:40] C:\DOCUME~1\Kilal\APPLIC~1\dvdcss [17/04/2007|20:15] C:\DOCUME~1\Kilal\APPLIC~1\Electronic Arts [14/01/2007|19:14] C:\DOCUME~1\Kilal\APPLIC~1\ezpinst.exe [05/04/2008|21:42] C:\DOCUME~1\Kilal\APPLIC~1\foobar2000 [16/12/2007|17:36] C:\DOCUME~1\Kilal\APPLIC~1\GDIPFONTCACHEV1.DAT [29/06/2002|03:25] C:\DOCUME~1\Kilal\APPLIC~1\Google [29/06/2002|03:02] C:\DOCUME~1\Kilal\APPLIC~1\Help [29/06/2002|00:41] C:\DOCUME~1\Kilal\APPLIC~1\Identities [28/02/2007|10:27] C:\DOCUME~1\Kilal\APPLIC~1\InstallShield [30/03/2008|04:12] C:\DOCUME~1\Kilal\APPLIC~1\InstallShield Installation Information [17/06/2007|18:46] C:\DOCUME~1\Kilal\APPLIC~1\Macromedia [12/04/2008|17:59] C:\DOCUME~1\Kilal\APPLIC~1\Microsoft [16/09/2007|17:40] C:\DOCUME~1\Kilal\APPLIC~1\Nero [14/01/2007|19:14] C:\DOCUME~1\Kilal\APPLIC~1\pcouffin.cat [14/01/2007|19:14] C:\DOCUME~1\Kilal\APPLIC~1\pcouffin.inf [14/01/2007|19:14] C:\DOCUME~1\Kilal\APPLIC~1\pcouffin.log [14/01/2007|19:14] C:\DOCUME~1\Kilal\APPLIC~1\pcouffin.sys [06/03/2008|23:41] C:\DOCUME~1\Kilal\APPLIC~1\PnkBstrK.sys [27/09/2007|17:20] C:\DOCUME~1\Kilal\APPLIC~1\Screenshot Sender [27/11/2006|18:41] C:\DOCUME~1\Kilal\APPLIC~1\SecuROM [23/11/2007|18:58] C:\DOCUME~1\Kilal\APPLIC~1\Sierra Entertainment [20/03/2008|22:56] C:\DOCUME~1\Kilal\APPLIC~1\Skype [30/10/2006|20:05] C:\DOCUME~1\Kilal\APPLIC~1\Sun [01/01/2002|19:08] C:\DOCUME~1\Kilal\APPLIC~1\teamspeak2 [16/03/2008|11:16] C:\DOCUME~1\Kilal\APPLIC~1\Ubisoft [13/05/2007|16:13] C:\DOCUME~1\Kilal\APPLIC~1\ViewerApp.dat [30/09/2006|14:55] C:\DOCUME~1\Kilal\APPLIC~1\vlc [14/01/2007|19:14] C:\DOCUME~1\Kilal\APPLIC~1\Vso [29/06/2002|00:38] C:\DOCUME~1\LOCALS~1\APPLIC~1\. [29/06/2002|00:38] C:\DOCUME~1\LOCALS~1\APPLIC~1\.. [12/04/2008|17:59] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft [12/04/2008|20:06] C:\DOCUME~1\Mag\APPLIC~1\. [12/04/2008|20:06] C:\DOCUME~1\Mag\APPLIC~1\.. [01/10/2006|03:50] C:\DOCUME~1\Mag\APPLIC~1\ACD Systems [14/07/2007|19:49] C:\DOCUME~1\Mag\APPLIC~1\Adobe [09/11/2006|19:45] C:\DOCUME~1\Mag\APPLIC~1\AdobeUM [18/10/2006|20:32] C:\DOCUME~1\Mag\APPLIC~1\Ahead [04/02/2008|21:00] C:\DOCUME~1\Mag\APPLIC~1\Apple Computer [10/01/2008|13:49] C:\DOCUME~1\Mag\APPLIC~1\ATI [10/04/2008|20:43] C:\DOCUME~1\Mag\APPLIC~1\Azureus [29/06/2002|01:26] C:\DOCUME~1\Mag\APPLIC~1\desktop.ini [20/03/2008|19:55] C:\DOCUME~1\Mag\APPLIC~1\dvdcss [10/04/2008|09:30] C:\DOCUME~1\Mag\APPLIC~1\foobar2000 [07/04/2008|09:32] C:\DOCUME~1\Mag\APPLIC~1\GDIPFONTCACHEV1.DAT [30/09/2006|18:36] C:\DOCUME~1\Mag\APPLIC~1\Google [01/11/2007|14:14] C:\DOCUME~1\Mag\APPLIC~1\Help [30/09/2006|18:35] C:\DOCUME~1\Mag\APPLIC~1\Identities [18/09/2007|14:46] C:\DOCUME~1\Mag\APPLIC~1\InterVideo [13/04/2007|19:35] C:\DOCUME~1\Mag\APPLIC~1\Macromedia [12/04/2008|17:59] C:\DOCUME~1\Mag\APPLIC~1\Microsoft [21/12/2006|11:13] C:\DOCUME~1\Mag\APPLIC~1\MSN6 [18/09/2007|14:36] C:\DOCUME~1\Mag\APPLIC~1\Nero [29/03/2008|17:21] C:\DOCUME~1\Mag\APPLIC~1\Skype [04/02/2008|20:52] C:\DOCUME~1\Mag\APPLIC~1\Sony Ericsson [11/11/2006|13:10] C:\DOCUME~1\Mag\APPLIC~1\Sun [04/02/2008|20:53] C:\DOCUME~1\Mag\APPLIC~1\Teleca [11/04/2007|23:41] C:\DOCUME~1\Mag\APPLIC~1\vlc [29/06/2002|00:38] C:\DOCUME~1\NETWOR~1\APPLIC~1\. [29/06/2002|00:38] C:\DOCUME~1\NETWOR~1\APPLIC~1\.. [12/04/2008|17:59] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft ----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]--------------- [13/04/2008 18:40][--ah-----] C:\WINDOWS\tasks\User_Feed_Synchronization-{8B40D698-7E27-4479-8EA4-B8A9F665FB09}.job [01/04/2008 20:31][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job [13/04/2008 11:02][--ah-----] C:\WINDOWS\tasks\SA.DAT [28/08/2001 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini ---------------[ Listing des dossiers dans C:\Program Files ]-------------- [13/04/2008|19:21] C:\Program Files\. [13/04/2008|19:21] C:\Program Files\.. [30/09/2006|06:36] C:\Program Files\ACD Systems [12/02/2008|19:17] C:\Program Files\Adobe [15/12/2007|14:36] C:\Program Files\AGEIA Technologies [19/09/2007|02:04] C:\Program Files\Ahead [29/06/2002|02:21] C:\Program Files\Alwil Software [17/10/2007|00:42] C:\Program Files\Analog Devices [15/03/2008|00:46] C:\Program Files\Anark [30/09/2007|11:26] C:\Program Files\Apple Software Update [11/09/2007|00:37] C:\Program Files\ASUS [28/01/2008|17:10] C:\Program Files\AutoDWG [08/03/2008|18:31] C:\Program Files\Azureus [01/10/2007|23:56] C:\Program Files\CCleaner [22/03/2007|17:01] C:\Program Files\CDex_150 [23/02/2008|15:49] C:\Program Files\Common Files [29/06/2002|00:33] C:\Program Files\ComPlus Applications [21/01/2008|19:24] C:\Program Files\CyberLink [21/12/2007|20:02] C:\Program Files\DAEMON Tools [25/07/2007|02:29] C:\Program Files\DivX [30/09/2006|05:57] C:\Program Files\DVD Shrink [17/12/2006|15:13] C:\Program Files\DVDFab Decrypter 3 [12/04/2008|08:45] C:\Program Files\eMule [04/02/2008|21:04] C:\Program Files\Fichiers communs [08/09/2007|02:32] C:\Program Files\FlashGet [30/09/2007|21:28] C:\Program Files\foobar2000 [14/02/2007|22:20] C:\Program Files\Google [13/06/2007|16:53] C:\Program Files\IGN [06/04/2008|00:53] C:\Program Files\InstallShield Installation Information [06/04/2008|00:53] C:\Program Files\Intel [06/12/2007|17:03] C:\Program Files\Intel Corporation [11/04/2008|17:44] C:\Program Files\Internet Explorer [14/03/2008|19:57] C:\Program Files\Java [10/01/2008|23:29] C:\Program Files\Lavalys [15/11/2007|12:32] C:\Program Files\MagicDisc [22/05/2007|00:58] C:\Program Files\MagicISO [10/01/2008|23:24] C:\Program Files\Marvell [30/09/2006|07:35] C:\Program Files\Messenger [01/04/2008|21:44] C:\Program Files\Messenger Plus! Live [29/06/2002|00:36] C:\Program Files\microsoft frontpage [25/06/2007|15:15] C:\Program Files\Microsoft Office [01/12/2007|14:17] C:\Program Files\Microsoft SQL Server Compact Edition [29/06/2002|01:32] C:\Program Files\Movie Maker [21/04/2007|20:54] C:\Program Files\MSBuild [29/06/2002|00:32] C:\Program Files\MSN Gaming Zone [18/11/2006|09:48] C:\Program Files\MSXML 4.0 [15/08/2007|11:35] C:\Program Files\MSXML 6.0 [29/06/2002|01:31] C:\Program Files\NetMeeting [10/01/2008|00:16] C:\Program Files\nLite [19/10/2007|00:40] C:\Program Files\OCCT [11/12/2007|10:51] C:\Program Files\OpenAL [13/06/2007|15:05] C:\Program Files\Outlook Express [04/03/2008|09:39] C:\Program Files\Player Metaboli [30/01/2008|16:49] C:\Program Files\PowerISO [25/12/2007|21:45] C:\Program Files\QuickTime [21/04/2007|20:50] C:\Program Files\Reference Assemblies [03/03/2008|23:16] C:\Program Files\RivaTuner v2.07 [29/06/2002|02:40] C:\Program Files\SAGEM [29/06/2002|00:33] C:\Program Files\Services en ligne [14/01/2008|18:10] C:\Program Files\Setup Files [14/07/2007|18:05] C:\Program Files\Skype [30/12/2006|12:13] C:\Program Files\Sony [19/02/2008|01:39] C:\Program Files\Spybot - Search & Destroy [08/02/2008|10:14] C:\Program Files\SystemRequirementsLab [13/06/2007|16:54] C:\Program Files\Teamspeak2_RC2 [12/04/2008|17:53] C:\Program Files\Trend Micro [23/12/2007|16:08] C:\Program Files\UnderCoverXP [26/01/2008|13:40] C:\Program Files\UnH Solutions [30/01/2008|17:03] C:\Program Files\Uninstall Information [30/09/2006|14:54] C:\Program Files\VideoLAN [29/06/2002|03:03] C:\Program Files\Wanadoo [06/12/2007|16:38] C:\Program Files\Windows Live [08/11/2006|23:02] C:\Program Files\Windows Live Safety Center [30/09/2006|14:33] C:\Program Files\Windows Media Components [03/10/2007|09:26] C:\Program Files\Windows Media Connect 2 [03/10/2007|09:26] C:\Program Files\Windows Media Player [29/06/2002|01:30] C:\Program Files\Windows NT [29/06/2002|02:41] C:\Program Files\WindowsUpdate [01/11/2007|14:14] C:\Program Files\WinRAR [07/07/2007|15:49] C:\Program Files\WMV9_VCM [29/06/2002|00:36] C:\Program Files\xerox [30/09/2006|14:55] C:\Program Files\Zone Labs ------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------ [04/02/2008|21:04] C:\Program Files\Fichiers communs\. [04/02/2008|21:04] C:\Program Files\Fichiers communs\.. [30/09/2006|06:36] C:\Program Files\Fichiers communs\ACD Systems [12/02/2008|19:17] C:\Program Files\Fichiers communs\Adobe [19/09/2007|02:04] C:\Program Files\Fichiers communs\Ahead [09/09/2007|11:31] C:\Program Files\Fichiers communs\Apple [09/10/2007|10:21] C:\Program Files\Fichiers communs\Blizzard Entertainment [30/01/2008|17:02] C:\Program Files\Fichiers communs\Designer [26/06/2007|16:21] C:\Program Files\Fichiers communs\DirectX [29/06/2002|02:10] C:\Program Files\Fichiers communs\InstallShield [09/10/2006|01:04] C:\Program Files\Fichiers communs\Java [30/09/2006|14:34] C:\Program Files\Fichiers communs\Logitech [10/01/2008|23:21] C:\Program Files\Fichiers communs\Microsoft Shared [29/06/2002|00:33] C:\Program Files\Fichiers communs\MSSoap [29/06/2002|01:27] C:\Program Files\Fichiers communs\ODBC [29/06/2002|00:33] C:\Program Files\Fichiers communs\Services [25/10/2007|16:56] C:\Program Files\Fichiers communs\Skype [28/06/2007|15:15] C:\Program Files\Fichiers communs\snp2std [29/06/2002|01:27] C:\Program Files\Fichiers communs\SpeechEngines [13/06/2007|15:05] C:\Program Files\Fichiers communs\System [05/02/2008|10:06] C:\Program Files\Fichiers communs\Teleca Shared [04/02/2007|00:49] C:\Program Files\Fichiers communs\Vbox [13/11/2007|09:37] C:\Program Files\Fichiers communs\WindowsLiveInstaller [01/01/2008|17:12] C:\Program Files\Fichiers communs\Wise Installation Wizard ----------------------[ Recherche avec S_Lop ]--------------------- Aucun fichier / dossier Lop trouvé ! -----------------[ Recherche de Fichiers / Dossiers Lop ]----------------- Aucun fichier / dossier Lop trouvé ! ----------------------[ Verification du Registre ]---------------------- ..... OK ! --------------------[ Verification du fichier Hosts ]--------------------- Fichier Hosts PROPRE ----------------[ Recherche de fichiers avec Catchme ]----------------- catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-04-13 19:21:47 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden processes ... scanning hidden files ... scan completed successfully hidden processes: 0 hidden files: 0 --------------------[ Recherche d'autres infections ]--------------------- C:\WINDOWS\pack.epk C:\WINDOWS\system32\ladbgsqvbf_navps.dat C:\WINDOWS\system32\ladbgsqvbf_nav.dat C:\WINDOWS\system32\ladbgsqvbf.dat ! EGDACCESS ! /!\ [Fich:20][Doss:7] C:\DOCUME~1\Kilal\LOCALS~1\Temp /!\ [Fich:120][Doss:0] C:\DOCUME~1\Kilal\Cookies /!\ [Fich:8236][Doss:32] C:\DOCUME~1\Kilal\LOCALS~1\TEMPOR~1\content.IE5 --------------------[ Fin du rapport a 19:22:59,57 ]---------------------- vous occupez de mon cas, voici le rapport:

Hop, suite a mon message j'ai fait pas mal de recherche sur la rasion de mon prob, et normalement, le prob n'existe plus, mais par securité je prefere que vous regardiez le rapport de plus pret -----------------------[ Lop S&D 4.1.0-9 XP/Vista ]--------------------- [ Windows XP (NT 5.1) Build 2600, Service Pack 2 ] [ USER : Kilal ] [ "C:\Lop SD" ] [ 13/04/2008 | 11:13:24,42 ] [ PC : KIKI-XXX65CFRZ5 ] [ MAJ : 08-04-2008 | 23:37 ] -------------[ Listing des dossiers dans Application Data ]------------ [12/04/2008|20:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\. [12/04/2008|20:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\.. [30/09/2006|06:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ACD Systems [12/02/2008|19:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe [09/09/2007|11:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple [11/11/2006|14:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer [30/01/2008|17:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Autodesk [12/05/2007|10:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink [29/06/2002|01:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini [10/04/2008|17:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink [10/01/2008|12:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Earthsim [03/03/2008|23:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Exetender [29/06/2002|03:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google [07/12/2006|12:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus! [13/11/2007|09:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft [18/12/2006|21:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN6 [22/06/2007|00:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NVIDIA [22/02/2008|12:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Outspark [03/02/2008|20:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QTSBandwidthCache [14/07/2007|18:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype [12/04/2008|11:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy [16/10/2007|09:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Tages [23/06/2007|03:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Trymedia [16/03/2008|11:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ubisoft [11/09/2007|01:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems [10/11/2006|01:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage [01/12/2007|14:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller [29/06/2002|01:26] C:\DOCUME~1\DEFAUL~1\APPLIC~1\. [29/06/2002|01:26] C:\DOCUME~1\DEFAUL~1\APPLIC~1\.. [29/06/2002|01:26] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini [29/06/2002|00:35] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft [12/04/2008|19:58] C:\DOCUME~1\Kilal\APPLIC~1\. [12/04/2008|19:58] C:\DOCUME~1\Kilal\APPLIC~1\.. [30/09/2006|06:36] C:\DOCUME~1\Kilal\APPLIC~1\ACD Systems [23/12/2006|13:25] C:\DOCUME~1\Kilal\APPLIC~1\Activision [23/06/2007|02:29] C:\DOCUME~1\Kilal\APPLIC~1\Adobe [07/03/2007|16:08] C:\DOCUME~1\Kilal\APPLIC~1\AdobeUM [20/06/2007|22:28] C:\DOCUME~1\Kilal\APPLIC~1\Ahead [13/11/2006|20:37] C:\DOCUME~1\Kilal\APPLIC~1\Apple Computer [28/01/2008|17:15] C:\DOCUME~1\Kilal\APPLIC~1\AutoDWG [06/04/2008|01:09] C:\DOCUME~1\Kilal\APPLIC~1\Azureus [30/03/2008|06:10] C:\DOCUME~1\Kilal\APPLIC~1\Bioshock [29/10/2007|09:16] C:\DOCUME~1\Kilal\APPLIC~1\Codemasters [03/04/2007|20:28] C:\DOCUME~1\Kilal\APPLIC~1\Command & Conquer 3 Les guerres du Tiberium [01/04/2008|00:06] C:\DOCUME~1\Kilal\APPLIC~1\Command & Conquerÿ3ÿ La Fureur de Kane [12/05/2007|10:32] C:\DOCUME~1\Kilal\APPLIC~1\CyberLink [22/12/2007|10:00] C:\DOCUME~1\Kilal\APPLIC~1\DAEMON Tools [29/06/2002|01:26] C:\DOCUME~1\Kilal\APPLIC~1\desktop.ini [27/01/2008|14:40] C:\DOCUME~1\Kilal\APPLIC~1\dvdcss [17/04/2007|20:15] C:\DOCUME~1\Kilal\APPLIC~1\Electronic Arts [14/01/2007|19:14] C:\DOCUME~1\Kilal\APPLIC~1\ezpinst.exe [05/04/2008|21:42] C:\DOCUME~1\Kilal\APPLIC~1\foobar2000 [16/12/2007|17:36] C:\DOCUME~1\Kilal\APPLIC~1\GDIPFONTCACHEV1.DAT [29/06/2002|03:25] C:\DOCUME~1\Kilal\APPLIC~1\Google [29/06/2002|03:02] C:\DOCUME~1\Kilal\APPLIC~1\Help [29/06/2002|00:41] C:\DOCUME~1\Kilal\APPLIC~1\Identities [28/02/2007|10:27] C:\DOCUME~1\Kilal\APPLIC~1\InstallShield [30/03/2008|04:12] C:\DOCUME~1\Kilal\APPLIC~1\InstallShield Installation Information [17/06/2007|18:46] C:\DOCUME~1\Kilal\APPLIC~1\Macromedia [12/04/2008|17:59] C:\DOCUME~1\Kilal\APPLIC~1\Microsoft [16/09/2007|17:40] C:\DOCUME~1\Kilal\APPLIC~1\Nero [14/01/2007|19:14] C:\DOCUME~1\Kilal\APPLIC~1\pcouffin.cat [14/01/2007|19:14] C:\DOCUME~1\Kilal\APPLIC~1\pcouffin.inf [14/01/2007|19:14] C:\DOCUME~1\Kilal\APPLIC~1\pcouffin.log [14/01/2007|19:14] C:\DOCUME~1\Kilal\APPLIC~1\pcouffin.sys [06/03/2008|23:41] C:\DOCUME~1\Kilal\APPLIC~1\PnkBstrK.sys [27/09/2007|17:20] C:\DOCUME~1\Kilal\APPLIC~1\Screenshot Sender [27/11/2006|18:41] C:\DOCUME~1\Kilal\APPLIC~1\SecuROM [23/11/2007|18:58] C:\DOCUME~1\Kilal\APPLIC~1\Sierra Entertainment [20/03/2008|22:56] C:\DOCUME~1\Kilal\APPLIC~1\Skype [30/10/2006|20:05] C:\DOCUME~1\Kilal\APPLIC~1\Sun [01/01/2002|19:08] C:\DOCUME~1\Kilal\APPLIC~1\teamspeak2 [16/03/2008|11:16] C:\DOCUME~1\Kilal\APPLIC~1\Ubisoft [13/05/2007|16:13] C:\DOCUME~1\Kilal\APPLIC~1\ViewerApp.dat [30/09/2006|14:55] C:\DOCUME~1\Kilal\APPLIC~1\vlc [14/01/2007|19:14] C:\DOCUME~1\Kilal\APPLIC~1\Vso [29/06/2002|00:38] C:\DOCUME~1\LOCALS~1\APPLIC~1\. [29/06/2002|00:38] C:\DOCUME~1\LOCALS~1\APPLIC~1\.. [12/04/2008|17:59] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft [12/04/2008|20:06] C:\DOCUME~1\Mag\APPLIC~1\. [12/04/2008|20:06] C:\DOCUME~1\Mag\APPLIC~1\.. [01/10/2006|03:50] C:\DOCUME~1\Mag\APPLIC~1\ACD Systems [14/07/2007|19:49] C:\DOCUME~1\Mag\APPLIC~1\Adobe [09/11/2006|19:45] C:\DOCUME~1\Mag\APPLIC~1\AdobeUM [18/10/2006|20:32] C:\DOCUME~1\Mag\APPLIC~1\Ahead [04/02/2008|21:00] C:\DOCUME~1\Mag\APPLIC~1\Apple Computer [10/01/2008|13:49] C:\DOCUME~1\Mag\APPLIC~1\ATI [10/04/2008|20:43] C:\DOCUME~1\Mag\APPLIC~1\Azureus [29/06/2002|01:26] C:\DOCUME~1\Mag\APPLIC~1\desktop.ini [20/03/2008|19:55] C:\DOCUME~1\Mag\APPLIC~1\dvdcss [10/04/2008|09:30] C:\DOCUME~1\Mag\APPLIC~1\foobar2000 [07/04/2008|09:32] C:\DOCUME~1\Mag\APPLIC~1\GDIPFONTCACHEV1.DAT [30/09/2006|18:36] C:\DOCUME~1\Mag\APPLIC~1\Google [01/11/2007|14:14] C:\DOCUME~1\Mag\APPLIC~1\Help [30/09/2006|18:35] C:\DOCUME~1\Mag\APPLIC~1\Identities [18/09/2007|14:46] C:\DOCUME~1\Mag\APPLIC~1\InterVideo [13/04/2007|19:35] C:\DOCUME~1\Mag\APPLIC~1\Macromedia [12/04/2008|17:59] C:\DOCUME~1\Mag\APPLIC~1\Microsoft [21/12/2006|11:13] C:\DOCUME~1\Mag\APPLIC~1\MSN6 [18/09/2007|14:36] C:\DOCUME~1\Mag\APPLIC~1\Nero [29/03/2008|17:21] C:\DOCUME~1\Mag\APPLIC~1\Skype [04/02/2008|20:52] C:\DOCUME~1\Mag\APPLIC~1\Sony Ericsson [11/11/2006|13:10] C:\DOCUME~1\Mag\APPLIC~1\Sun [04/02/2008|20:53] C:\DOCUME~1\Mag\APPLIC~1\Teleca [11/04/2007|23:41] C:\DOCUME~1\Mag\APPLIC~1\vlc [29/06/2002|00:38] C:\DOCUME~1\NETWOR~1\APPLIC~1\. [29/06/2002|00:38] C:\DOCUME~1\NETWOR~1\APPLIC~1\.. [12/04/2008|17:59] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft ----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]--------------- [13/04/2008 00:00][--ah-----] C:\WINDOWS\tasks\AE90DEB4918F4F1C.job [12/04/2008 19:31][--ah-----] C:\WINDOWS\tasks\User_Feed_Synchronization-{8B40D698-7E27-4479-8EA4-B8A9F665FB09}.job [01/04/2008 20:31][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job [13/04/2008 11:02][--ah-----] C:\WINDOWS\tasks\SA.DAT [28/08/2001 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini ---------------[ Listing des dossiers dans C:\Program Files ]-------------- [12/04/2008|20:10] C:\Program Files\. [12/04/2008|20:10] C:\Program Files\.. [30/09/2006|06:36] C:\Program Files\ACD Systems [12/02/2008|19:17] C:\Program Files\Adobe [15/12/2007|14:36] C:\Program Files\AGEIA Technologies [19/09/2007|02:04] C:\Program Files\Ahead [29/06/2002|02:21] C:\Program Files\Alwil Software [17/10/2007|00:42] C:\Program Files\Analog Devices [15/03/2008|00:46] C:\Program Files\Anark [30/09/2007|11:26] C:\Program Files\Apple Software Update [11/09/2007|00:37] C:\Program Files\ASUS [28/01/2008|17:10] C:\Program Files\AutoDWG [08/03/2008|18:31] C:\Program Files\Azureus [12/04/2008|10:02] C:\Program Files\BitTorrent Fastest Tool [01/10/2007|23:56] C:\Program Files\CCleaner [22/03/2007|17:01] C:\Program Files\CDex_150 [23/02/2008|15:49] C:\Program Files\Common Files [29/06/2002|00:33] C:\Program Files\ComPlus Applications [21/01/2008|19:24] C:\Program Files\CyberLink [21/12/2007|20:02] C:\Program Files\DAEMON Tools [25/07/2007|02:29] C:\Program Files\DivX [30/09/2006|05:57] C:\Program Files\DVD Shrink [17/12/2006|15:13] C:\Program Files\DVDFab Decrypter 3 [12/04/2008|08:45] C:\Program Files\eMule [04/02/2008|21:04] C:\Program Files\Fichiers communs [08/09/2007|02:32] C:\Program Files\FlashGet [30/09/2007|21:28] C:\Program Files\foobar2000 [14/02/2007|22:20] C:\Program Files\Google [13/06/2007|16:53] C:\Program Files\IGN [06/04/2008|00:53] C:\Program Files\InstallShield Installation Information [06/04/2008|00:53] C:\Program Files\Intel [06/12/2007|17:03] C:\Program Files\Intel Corporation [11/04/2008|17:44] C:\Program Files\Internet Explorer [14/03/2008|19:57] C:\Program Files\Java [10/01/2008|23:29] C:\Program Files\Lavalys [15/11/2007|12:32] C:\Program Files\MagicDisc [22/05/2007|00:58] C:\Program Files\MagicISO [10/01/2008|23:24] C:\Program Files\Marvell [30/09/2006|07:35] C:\Program Files\Messenger [01/04/2008|21:44] C:\Program Files\Messenger Plus! Live [29/06/2002|00:36] C:\Program Files\microsoft frontpage [25/06/2007|15:15] C:\Program Files\Microsoft Office [01/12/2007|14:17] C:\Program Files\Microsoft SQL Server Compact Edition [29/06/2002|01:32] C:\Program Files\Movie Maker [21/04/2007|20:54] C:\Program Files\MSBuild [29/06/2002|00:32] C:\Program Files\MSN Gaming Zone [18/11/2006|09:48] C:\Program Files\MSXML 4.0 [15/08/2007|11:35] C:\Program Files\MSXML 6.0 [29/06/2002|01:31] C:\Program Files\NetMeeting [10/01/2008|00:16] C:\Program Files\nLite [19/10/2007|00:40] C:\Program Files\OCCT [11/12/2007|10:51] C:\Program Files\OpenAL [13/06/2007|15:05] C:\Program Files\Outlook Express [04/03/2008|09:39] C:\Program Files\Player Metaboli [30/01/2008|16:49] C:\Program Files\PowerISO [25/12/2007|21:45] C:\Program Files\QuickTime [21/04/2007|20:50] C:\Program Files\Reference Assemblies [03/03/2008|23:16] C:\Program Files\RivaTuner v2.07 [29/06/2002|02:40] C:\Program Files\SAGEM [29/06/2002|00:33] C:\Program Files\Services en ligne [14/01/2008|18:10] C:\Program Files\Setup Files [14/07/2007|18:05] C:\Program Files\Skype [30/12/2006|12:13] C:\Program Files\Sony [19/02/2008|01:39] C:\Program Files\Spybot - Search & Destroy [08/02/2008|10:14] C:\Program Files\SystemRequirementsLab [13/06/2007|16:54] C:\Program Files\Teamspeak2_RC2 [12/04/2008|17:53] C:\Program Files\Trend Micro [23/12/2007|16:08] C:\Program Files\UnderCoverXP [26/01/2008|13:40] C:\Program Files\UnH Solutions [30/01/2008|17:03] C:\Program Files\Uninstall Information [30/09/2006|14:54] C:\Program Files\VideoLAN [29/06/2002|03:03] C:\Program Files\Wanadoo [06/12/2007|16:38] C:\Program Files\Windows Live [08/11/2006|23:02] C:\Program Files\Windows Live Safety Center [30/09/2006|14:33] C:\Program Files\Windows Media Components [03/10/2007|09:26] C:\Program Files\Windows Media Connect 2 [03/10/2007|09:26] C:\Program Files\Windows Media Player [29/06/2002|01:30] C:\Program Files\Windows NT [29/06/2002|02:41] C:\Program Files\WindowsUpdate [01/11/2007|14:14] C:\Program Files\WinRAR [07/07/2007|15:49] C:\Program Files\WMV9_VCM [29/06/2002|00:36] C:\Program Files\xerox [30/09/2006|14:55] C:\Program Files\Zone Labs ------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------ [04/02/2008|21:04] C:\Program Files\Fichiers communs\. [04/02/2008|21:04] C:\Program Files\Fichiers communs\.. [30/09/2006|06:36] C:\Program Files\Fichiers communs\ACD Systems [12/02/2008|19:17] C:\Program Files\Fichiers communs\Adobe [19/09/2007|02:04] C:\Program Files\Fichiers communs\Ahead [09/09/2007|11:31] C:\Program Files\Fichiers communs\Apple [09/10/2007|10:21] C:\Program Files\Fichiers communs\Blizzard Entertainment [30/01/2008|17:02] C:\Program Files\Fichiers communs\Designer [26/06/2007|16:21] C:\Program Files\Fichiers communs\DirectX [29/06/2002|02:10] C:\Program Files\Fichiers communs\InstallShield [09/10/2006|01:04] C:\Program Files\Fichiers communs\Java [30/09/2006|14:34] C:\Program Files\Fichiers communs\Logitech [10/01/2008|23:21] C:\Program Files\Fichiers communs\Microsoft Shared [29/06/2002|00:33] C:\Program Files\Fichiers communs\MSSoap [29/06/2002|01:27] C:\Program Files\Fichiers communs\ODBC [29/06/2002|00:33] C:\Program Files\Fichiers communs\Services [25/10/2007|16:56] C:\Program Files\Fichiers communs\Skype [28/06/2007|15:15] C:\Program Files\Fichiers communs\snp2std [29/06/2002|01:27] C:\Program Files\Fichiers communs\SpeechEngines [13/06/2007|15:05] C:\Program Files\Fichiers communs\System [05/02/2008|10:06] C:\Program Files\Fichiers communs\Teleca Shared [04/02/2007|00:49] C:\Program Files\Fichiers communs\Vbox [13/11/2007|09:37] C:\Program Files\Fichiers communs\WindowsLiveInstaller [01/01/2008|17:12] C:\Program Files\Fichiers communs\Wise Installation Wizard ----------------------[ Recherche avec S_Lop ]--------------------- Aucun fichier / dossier Lop trouvé ! -----------------[ Recherche de Fichiers / Dossiers Lop ]----------------- C:\Program Files\BitTorrent Fastest Tool C:\Program Files\BitTorrent Fastest Tool\BitDownload-4.5-setup.exe C:\Program Files\BitTorrent Fastest Tool\BitP.exe C:\Program Files\BitTorrent Fastest Tool\INSTALL.LOG C:\WINDOWS\Prefetch\BITDOWNLOAD.EXE-002ED0A0.pf C:\WINDOWS\Prefetch\BITTORRENT FASTEST TOOL0308_M-02CE44D9.pf C:\WINDOWS\Prefetch\BITTORRENT FASTEST TOOL0308_M-1FB04724.pf C:\WINDOWS\Tasks\AE90DEB4918F4F1C.job ----------------------[ Verification du Registre ]---------------------- ..... OK ! --------------------[ Verification du fichier Hosts ]--------------------- Fichier Hosts MODIFIE 127.0.0.1 bin.errorprotector.com ## added by CiD 127.0.0.1 br.errorsafe.com ## added by CiD 127.0.0.1 br.winantivirus.com ## added by CiD 127.0.0.1 br.winfixer.com ## added by CiD 127.0.0.1 cdn.drivecleaner.com ## added by CiD 127.0.0.1 cdn.errorsafe.com ## added by CiD 127.0.0.1 cdn.winsoftware.com ## added by CiD 127.0.0.1 de.errorsafe.com ## added by CiD 127.0.0.1 de.winantivirus.com ## added by CiD 127.0.0.1 download.cdn.drivecleaner.com ## added by CiD 127.0.0.1 download.cdn.errorsafe.com ## added by CiD 127.0.0.1 download.cdn.winsoftware.com ## added by CiD 127.0.0.1 download.errorsafe.com ## added by CiD 127.0.0.1 download.systemdoctor.com ## added by CiD 127.0.0.1 download.winantispyware.com ## added by CiD 127.0.0.1 download.windrivecleaner.com ## added by CiD 127.0.0.1 download.winfixer.com ## added by CiD 127.0.0.1 drivecleaner.com ## added by CiD 127.0.0.1 dynamique.drivecleaner.com ## added by CiD 127.0.0.1 errorprotector.com ## added by CiD 127.0.0.1 errorsafe.com ## added by CiD 127.0.0.1 es.winantivirus.com ## added by CiD 127.0.0.1 fr.winantivirus.com ## added by CiD 127.0.0.1 fr.winfixer.com ## added by CiD 127.0.0.1 go.drivecleaner.com ## added by CiD 127.0.0.1 go.errorsafe.com ## added by CiD 127.0.0.1 go.winantispyware.com ## added by CiD 127.0.0.1 go.winantivirus.com ## added by CiD 127.0.0.1 hk.winantivirus.com ## added by CiD 127.0.0.1 instlog.errorsafe.com ## added by CiD 127.0.0.1 instlog.winantivirus.com ## added by CiD 127.0.0.1 instlog.winfixer.com ## added by CiD 127.0.0.1 jsp.drivecleaner.com ## added by CiD 127.0.0.1 kb.errorsafe.com ## added by CiD 127.0.0.1 kb.winantivirus.com ## added by CiD 127.0.0.1 nl.errorsafe.com ## added by CiD 127.0.0.1 se.errorsafe.com ## added by CiD 127.0.0.1 secure.drivecleaner.com ## added by CiD 127.0.0.1 secure.errorsafe.com ## added by CiD 127.0.0.1 secure.winantispam.com ## added by CiD 127.0.0.1 secure.winantispy.com ## added by CiD 127.0.0.1 secure.winantivirus.com ## added by CiD 127.0.0.1 support.winantivirus.com ## added by CiD 127.0.0.1 trial.updates.winsoftware.com ## added by CiD 127.0.0.1 ulog.winantivirus.com ## added by CiD 127.0.0.1 utils.errorsafe.com ## added by CiD 127.0.0.1 utils.winantivirus.com ## added by CiD 127.0.0.1 utils.winfixer.com ## added by CiD 127.0.0.1 winantispyware.com ## added by CiD 127.0.0.1 winantivirus.com ## added by CiD 127.0.0.1 winfixer.com ## added by CiD 127.0.0.1 winfixer2006.com ## added by CiD 127.0.0.1 winsoftware.com ## added by CiD 127.0.0.1 www.drivecleaner.com ## added by CiD 127.0.0.1 www.errorprotector.com ## added by CiD 127.0.0.1 www.errorsafe.com ## added by CiD 127.0.0.1 www.systemdoctor.com ## added by CiD 127.0.0.1 www.utils.winfixer.com ## added by CiD 127.0.0.1 www.win-anti-virus-pro.com ## added by CiD 127.0.0.1 www.win-virus-pro.com ## added by CiD 127.0.0.1 www.winantispam.com ## added by CiD 127.0.0.1 www.winantispy.com ## added by CiD 127.0.0.1 www.winantispyware.com ## added by CiD 127.0.0.1 www.winantivirus.com ## added by CiD 127.0.0.1 www.winantiviruspro.com ## added by CiD 127.0.0.1 www.windrivecleaner.com ## added by CiD 127.0.0.1 www.windrivesafe.com ## added by CiD 127.0.0.1 www.winfixer.com ## added by CiD 127.0.0.1 www.winfixer2006.com ## added by CiD 127.0.0.1 www.winsoftware.com ## added by CiD -> 8224 ( 70 ## added by CiD ) /!\ 2 Not 127.0.0.1 !! ----------------[ Recherche de fichiers avec Catchme ]----------------- catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-04-13 11:13:46 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden processes ... scanning hidden files ... scan completed successfully hidden processes: 0 hidden files: 0 --------------------[ Recherche d'autres infections ]--------------------- C:\WINDOWS\pack.epk C:\WINDOWS\system32\ladbgsqvbf_navps.dat C:\WINDOWS\system32\ladbgsqvbf_nav.dat C:\WINDOWS\system32\ladbgsqvbf.dat ! EGDACCESS ! /!\ [Fich:18][Doss:4] C:\DOCUME~1\Kilal\LOCALS~1\Temp /!\ [Fich:118][Doss:0] C:\DOCUME~1\Kilal\Cookies /!\ [Fich:6445][Doss:32] C:\DOCUME~1\Kilal\LOCALS~1\TEMPOR~1\content.IE5 --------------------[ Fin du rapport a 11:14:55,40 ]----------------------

Bonjour a tous Et tout d'abord, merci d'avoir creer des forums de ce type pour aider les autres! Je suis un petit nouveau par chez vou, mais depuis assez longtemps je parcours de nombreux forums pour divers pb rencontrés Seulement ce coup ci je coince reellement, je me suis fait infecté par une merdouille qui me fait poper des fenetres de pub CID sans arret .... je suis donc a la recherche d'aide de votre part! Je ne suis pas un gros utilisateur de HiJackthis (car heuresement pour moi, je n'ai pas eut a poster ce genre de rapport tres souvent) Mais bon voila ce qu'il en est En esperant que les experts de se prog pourront me dire comment agir vis a vis de mon infection Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 17:53:46, on 12/04/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16640) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\ZoneLabs\vsmon.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Fichiers communs\Logitech\QCDriver3\LVCOMS.EXE C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe C:\WINDOWS\tsnp2std.exe C:\WINDOWS\vsnp2std.exe C:\Program Files\ASUS\Ai Suite\AiNap\AiNap.exe C:\Program Files\Analog Devices\Core\smax4pnp.exe C:\Program Files\Analog Devices\SoundMAX\smax4.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\WINDOWS\system32\ctfmon.exe C:\WINDOWS\system32\bgsvcgen.exe C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe D:\steam\steam.exe C:\WINDOWS\system32\PnkBstrA.exe C:\Program Files\DAEMON Tools\daemon.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\MagicDisc\MagicDisc.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\Windows Live\Messenger\usnsvc.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.orange.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.01net.com/telecharger/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.01net.com/telecharger/ R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file) O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [LVCOMS] C:\Program Files\Fichiers communs\Logitech\QCDriver3\LVCOMS.EXE O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" O4 - HKLM\..\Run: [tsnp2std] C:\WINDOWS\tsnp2std.exe O4 - HKLM\..\Run: [snp2std] C:\WINDOWS\vsnp2std.exe O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM\..\Run: [Ai Nap] "C:\Program Files\ASUS\Ai Suite\AiNap\AiNap.exe" O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [soundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe O4 - HKLM\..\Run: [soundMAX] "C:\Program Files\Analog Devices\SoundMAX\smax4.exe" /tray O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [warn default inter for] C:\Documents and Settings\All Users\Application Data\Time Dead Warn Default\BURN DATA.exe O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [steam] "d:\steam\steam.exe" -silent O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools\daemon.exe" O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user') O4 - Startup: MagicDisc.lnk = C:\Program Files\MagicDisc\MagicDisc.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {051D0E35-F4E3-4C8D-B411-AB0875F4C683} (Anark Client 4.0 ActiveX Control) - http://install.anark.com/client/version4/w...en/AMClient.cab O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} - http://messenger.zone.msn.com/binary/MineS...er.cab31267.cab O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} - http://www.fileplanet.com/fpdlmgr/cabs/FPDC_2.3.3.102.cab O16 - DPF: {67A5F8DC-1A4B-4D66-9F24-A704AD929EEE} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownlo.../sysreqlab2.cab O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab O16 - DPF: {69EF49E5-FE46-4B92-B5FA-2193AB7A6B8A} (GameLauncher Control) - http://www.acclaim.com/cabs/acclaim_v4.cab O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) - O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://express.foto.com/Newuploader/ImageUploader4.cab O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2005111...all/xscan53.cab O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} - http://www.touslesdrivers.com/fichiers/har...ion_2_0_4_9.cab O16 - DPF: {B9907873-6560-4A36-B76B-9DADE84A7F55} (FnacmusicDnl.DnlManager) - http://www.fnacmusic.com/telechargementFna...nacmusicDnl.CAB O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O16 - DPF: {CE3409C4-9E26-4F8E-83E4-778498F9E7B4} (PB_Uploader Class) - http://www.photobox.fr/discount/clients/up...er_v2.2.0.6.cab O16 - DPF: {E87F6C8E-16C0-11D3-BEF7-009027438003} (Persits Software XUpload) - http://www.fnacphoto.com/ectelechargement/...oad/XUpload.ocx O16 - DPF: {E8F628B5-259A-4734-97EE-BA914D7BE941} (Driver Agent ActiveX Control) - http://driveragent.com/files/driveragent.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: B's Recorder GOLD Library General Service (bgsvcgen) - B.H.A Corporation - C:\WINDOWS\system32\bgsvcgen.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe (file missing) O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe -- End of file - 10609 bytes merci d'avance pour les recherches engendrés par ma demande. Je reste a l'affut de vos suggestions et manoeuvres!