infection ordie lent jnai besoin merci

Salut
Bon moi je vien de me faire infecter car jai télécharger un film sur limewire et que finalement stai pas le film que je voulait regarder. Premierement mon ordie est tres lent et il apparaît mintenant des page publicitaire ce qui ne metait jamais arriver encore. Je me debrouille bien a lordie donc si vous maider le plus rapidement sa serai bien agréable et tres gentil car j’ai besoin de mon laptop pour mes examen finaux XD

Je fonction sur vista avec internet explorer jai comme anti virus kaspersky et maintenant apres linfection jais threat fire
Merci d’avance bye

MalwareByte's Anti-Malware

télécharge MalwareByte's Anti-Malware et installe le.
http://www.malwarebytes.org/mbam/program/mbam-setup.exe
- Assure toi qu'il se soit bien mis à jour avant de passer à la suite.

- Aide : Tutoriel MABM
Redémarre en mode sans échec :

o Redémarre ton ordinateur
o Après avoir entendu l'ordinateur biper lors du démarrage, mais avant que l'icône Windows apparaisse, tapote la touche F8 (une pression par seconde).
o A la place du chargement normal de Windows, un menu avec différentes options devrait apparaître.
o Choisis la première option, pour exécuter Windows en mode sans échec, puis appuie sur "Entrée".
o Choisis ton compte.

* Lance MBAM et sélectionne "Exécuter un examen complet". Patiente le temps du scan.

* Une fois le scan terminé,clique sur "Supprimer la sélection".

Si MBAM a besoin de redémarrer pour terminer la suppression, accepte en cliquant sur Ok. Enregistre le rapport sur ton Bureau lorsqu'il s'affichera
_________________

salut
voici le raport

Malwarebytes' Anti-Malware 1.17
Version de la base de données: 854

18:47:12 2008-06-13
mbam-log-6-13-2008 (18-47-12).txt

Type de recherche: Examen complet (C:\|D:\|)
Eléments examinés: 128761
Temps écoulé: 22 minute(s), 10 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 13
Valeur(s) du Registre infectée(s): 3
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 1
Fichier(s) infecté(s): 2

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\Interface\{54b287f9-fd90-4457-b65e-cb91560c021d} (Adware.Mirar) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{6e4c7afc-9915-4036-b7f9-8b3f1710788f} (Adware.Mirar) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{147a976f-eee1-4377-8ea7-4716e4cdd239} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{9afb8248-617f-460d-9366-d71cdeda3179} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\MediaHoldings (Adware.PlayMP3Z) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\Mirar (AdWare.Mirar) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\PlayMP3 (Adware.PlayMP3Z) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PlayMP3 (Adware.PlayMP3Z) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\FBrowsingAdvisor (Trojan.FBrowsingAdvisor) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\fbrowsingadvisor_is1 (Trojan.FBrowsingAdvisor) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\RelatedPageInstall (Adware.Mirar) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\NetProject (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\WakeNet (Trojan.Adware) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\New Windows\Allow\*.securewebinfo.com (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\New Windows\Allow\*.safetyincludes.com (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\New Windows\Allow\*.securemanaging.com (Trojan.Zlob) -> Quarantined and deleted successfully.

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
C:\Program Files\DivoCodec (Trojan.Downloader) -> Quarantined and deleted successfully.

Fichier(s) infecté(s):
C:\Program Files\DivoCodec\minime.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\Users\Sébastien\Favorites\Online Security Test.url (Rogue.Link) -> Quarantined and deleted successfully.

re,
Désactive ton antivirus le temps du scan.
sous vista, désactive l'uac.
Scan en ligne avec BitDefender Online :

Le scan ne fonctionne uniquement sous Internet explorer.
Rends toi sur ce site internet : http://www.bitdefender.fr/scan_fr/scan8/ie.html
Aide : http://www.bibou0007.com/scans-en-ligne-f75/tutorial-bitdefender-online-t390.htm
Ton navigateur doit accepter l'ActiveX du site. Installe-le
Une fois fait, clique sur "Démarrer l'analyse"
Patiente pendant le scan....
Une fois le scan terminé, clique sur "Cliquer ici pour exporter le rapport"
Une fenêtre s'ouvre alors sauvegarde-le au format html.
Poste le rapport copier/coller dans ta prochaine réponse.
_________________

re,
ensuite passe un bon coup de cleaner et fais un rapport hjt:
- Télécharge HiJackThis de Merijn sur ton bureau.
- Double-clic sur HijackThis
- Génère un rapport en suivant ces indications :
- Exécute le et clique sur Do a scan and save log file.
- Le rapport s'ouvre sur le Bloc-Note
- Colle le rapport ici, pour cela :
- Menu Edition / Selectionner Tout
- Menu Edition / copier
- Ici dans un nouveau message : clic droit / coller
Aide : http://www.bibou0007.com/outils-specifiques-f78/tutorial-de-hijackthis-v202-t108.htm

Je file et je re + tard
++
_________________

salut
raport bitdefender

BitDefender Online Scanner

Rapport d'analyse généré à: Fri, Jun 13, 2008 - 19:50:31

Voie d'analyse: C:\;D:\;E:\;

Statistiques

Temps
00:29:52

Fichiers
69543

Directoires
15562

Secteurs de boot
4

Archives
500

Paquets programmes
5920

Résultats

Virus identifiés
0

Fichiers infectés
0

Fichiers suspects
0

Avertissements
0

Désinfectés
0

Fichiers effacés
0

Info sur les moteurs

Définition virus
1260782

Version des moteurs
AVCORE v1.0 (build 2422) (i386) (Sep 25 2007 08:26:36)

Analyse des plugins
16

Archive des plugins
42

Unpack des plugins
7

E-mail plugins
6

Système plugins
5

Paramètres d'analyse

Première action
Désinfecté

Seconde Action
Supprimé

Heuristique
Oui

Acceptez les avertissements
Oui

Extensions analysées
exe;com;dll;ocx;scr;bin;dat;386;vxd;sys;wdm;cla;class;ovl;ole;hlp;doc;dot;xls;ppt;wbk;wiz;pot;ppa;xla;xlt;vbs;vbe;mdb;rtf;htm;hta;html;xml;xtp;php;asp;js;shs;chm;lnk;pif;prc;url;smm;pfd;msi;ini;csc;cmd;bas;

Excludez les extensions

Analyse d'emails
Oui

Analyse des Archives
Oui

Analyser paquets programmes
Oui

Analyse des fichiers
Oui

Analyse de boot
Oui

Fichier analysé
Statut

Aucun virus trouvé.

re

raport hijacthis

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:02:34, on 2008-06-13
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\System32\smss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\Ati2evxx.exe
C:\Windows\System32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\Ati2evxx.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
C:\Program Files\Launch Manager\QtZgAcer.EXE
C:\Windows\system32\PnkBstrA.exe
C:\Program Files\Search Settings\SearchSettings.exe
C:\Windows\system32\svchost.exe
C:\Program Files\Winamp\winampa.exe
C:\Windows\system32\svchost.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\ThreatFire\TFService.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe
C:\Program Files\Logitech\QuickCam\Quickcam.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
C:\Windows\system32\DRIVERS\xaudio.exe
C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
C:\Program Files\ThreatFire\TFTray.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Druide\Antidote\Gestionnaire Antidote.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\ATI Technologies\ATI.ACE\CLI.EXE
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\DNA\btdna.exe
C:\Users\SBASTI~1\AppData\Local\Temp\RtkBtMnt.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
C:\Program Files\ATI Technologies\ATI.ACE\CLI.exe
C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\SBASTI~1\AppData\Local\Temp\Fichiers Internet temporaires\Content.IE5\YHCXZ1YI\HiJackThis[1].exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://cf.rd.yahoo.com/customize/ycomp/defaults/sp/*http://cf.yahoo.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.ca.acer.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.ca.acer.yahoo.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://cf.rd.yahoo.com/customize/ycomp/defaults/su/*http://cf.yahoo.com
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Winamp Search Class - {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files\Winamp Toolbar\winamptb.dll (file missing)
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O1 - Hosts: ::1 localhost
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Winamp Toolbar Loader - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb125\SearchSettings.dll
O3 - Toolbar: Winamp Toolbar - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (file missing)
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe"
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE
O4 - HKLM\..\Run: [SearchSettings] C:\Program Files\Search Settings\SearchSettings.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe"
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe"
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam\Quickcam.exe" /hide
O4 - HKLM\..\Run: [ThreatFire] C:\Program Files\ThreatFire\TFTray.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [?????????] ??????????????e
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\DNA\btdna.exe"
O4 - HKCU\..\Run: [Gestionnaire Antidote.exe] C:\Program Files\Druide\Antidote\Gestionnaire Antidote.exe
O4 - HKCU\..\Run: [junkthis] "C:\ProgramData\JugsStyleStyle.7t159h"
O4 - HKCU\..\Run: [Base road long save] "C:\ProgramData\meow first pop.1fncjfq"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [Gestionnaire Antidote.exe] C:\Program Files\Druide\Antidote\Gestionnaire Antidote.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Gestionnaire Antidote.exe] C:\Program Files\Druide\Antidote\Gestionnaire Antidote.exe (User 'Default user')
O4 - Global Startup: Empowering Technology Launcher.lnk = ?
O8 - Extra context menu item: &Winamp Search - C:\ProgramData\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Statistiques d’Anti-Virus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scieplugin.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O13 - Gopher Prefix:
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1.0\r3hook.dll
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: Kaspersky Anti-Virus 6.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: Planificateur LiveUpdate automatique - Unknown owner - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: ThreatFire - PC Tools - C:\Program Files\ThreatFire\TFService.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 11367 bytes

**Super admin** Inscrit le : 07 Déc 2007 Messages : 2298

salut
il te reste plusieurs petite infection!!
désinstale SearchSettings
et supprime ca en gras
C:\Program Files\Search Settings\

ensuite il y as une infection LOP et et des reste d infection du vers msn

Si tu es sous vista desactive l UAC ‘’ pour xp passé a la suite ‘’ tuto desactivation de l UAC
Télécharge Lop S&D.exe sur ton Bureau. tuto lop S&D
http://eric.71.mespages.googlepages.com/LopSD.exe
• Double-clique dessus pour lancer l'installation
• Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
• Séléctionne la langue souhaitée , puis choisis l'option 1 (Recherche)
• Patiente jusqu'à la fin du scan
• Poste le rapport généré (C:\lopR.txt)

(Si le Bureau ne réapparait pas presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide)
_________________
Il est plus simple d'infecter votre pc que de le désinfecter,pensez y. Ne pas cliquer ici

-------------[ Listing des dossiers dans Application Data ]------------
[2008-02-08|22:48] C:\Users\SBASTI~1\AppData\Roaming\Adobe\Flash Player
[2008-01-07|16:42] C:\Users\SBASTI~1\AppData\Roaming\Adobe\Linguistics
[2008-01-07|16:41] C:\Users\SBASTI~1\AppData\Roaming\Adobe\Acrobat
[2008-01-07|11:44] C:\Users\SBASTI~1\AppData\Roaming\Adobe\ESD
[2008-04-12|15:49] C:\Users\SBASTI~1\AppData\Roaming\Apple Computer\iTunes
[2007-12-31|15:14] C:\Users\SBASTI~1\AppData\Roaming\ATI\ACE
[2008-03-16|20:57] C:\Users\SBASTI~1\AppData\Roaming\Audacity\AutoSave
[2008-03-16|20:52] C:\Users\SBASTI~1\AppData\Roaming\Audacity\presets
[2008-01-20|00:30] C:\Users\SBASTI~1\AppData\Roaming\AVS4YOU\AVSVideoConverter
[2008-01-19|13:54] C:\Users\SBASTI~1\AppData\Roaming\AVSMedia\AVSCaptureWizard
[2008-01-19|13:33] C:\Users\SBASTI~1\AppData\Roaming\AVSMedia\AVSVideoConverter
[2008-05-06|17:40] C:\Users\SBASTI~1\AppData\Roaming\Azureus\active
[2008-05-06|17:40] C:\Users\SBASTI~1\AppData\Roaming\Azureus\dht
[2008-05-06|17:40] C:\Users\SBASTI~1\AppData\Roaming\Azureus\net
[2008-05-06|17:40] C:\Users\SBASTI~1\AppData\Roaming\Azureus\torrents
[2008-05-06|17:33] C:\Users\SBASTI~1\AppData\Roaming\Azureus\logs
[2008-05-06|16:59] C:\Users\SBASTI~1\AppData\Roaming\Azureus\tmp
[2008-04-28|17:05] C:\Users\SBASTI~1\AppData\Roaming\Azureus\media
[2008-04-27|23:38] C:\Users\SBASTI~1\AppData\Roaming\Azureus\shares
[2008-04-27|23:38] C:\Users\SBASTI~1\AppData\Roaming\Azureus\plugins
[2008-01-14|21:57] C:\Users\SBASTI~1\AppData\Roaming\CyberLink\MagicDirector
[2008-01-14|21:57] C:\Users\SBASTI~1\AppData\Roaming\CyberLink\MediaCache
[2008-01-14|21:54] C:\Users\SBASTI~1\AppData\Roaming\CyberLink\PowerDVD
[2008-01-12|00:12] C:\Users\SBASTI~1\AppData\Roaming\CyberLink\PowerCinem
[2008-01-14|20:37] C:\Users\SBASTI~1\AppData\Roaming\DivX\DivX Player
[2008-06-05|17:34] C:\Users\SBASTI~1\AppData\Roaming\Druide\Antidote
[2008-01-09|14:42] C:\Users\SBASTI~1\AppData\Roaming\eMule\config
[2007-12-31|15:13] C:\Users\SBASTI~1\AppData\Roaming\Identities\{F60B1085-B859-464C-A3C2-821EAC55D9D5}
[2008-05-24|13:39] C:\Users\SBASTI~1\AppData\Roaming\Jasc\Animation Shop
[2008-05-11|14:53] C:\Users\SBASTI~1\AppData\Roaming\Leadertech\PowerRegister
[2008-06-03|22:07] C:\Users\SBASTI~1\AppData\Roaming\LimeWire\.AppSpecialShare
[2008-03-15|17:50] C:\Users\SBASTI~1\AppData\Roaming\LimeWire\xml
[2008-03-15|17:44] C:\Users\SBASTI~1\AppData\Roaming\LimeWire\themes
[2008-06-14|10:59] C:\Users\SBASTI~1\AppData\Roaming\Macromedia\Flash Player
[2008-06-13|18:11] C:\Users\SBASTI~1\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware
[2008-06-13|17:51] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\Templates
[2008-06-12|12:50] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\Outlook
[2008-06-05|17:26] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\Office
[2008-06-05|17:26] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\Excel
[2008-06-05|17:26] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\Publisher
[2008-06-05|17:20] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\IMJP10
[2008-05-26|18:15] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\Windows Photo Gallery
[2008-05-25|18:52] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\MSN Messenger
[2008-05-25|14:42] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\Word
[2008-05-22|18:36] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\UProof
[2008-05-21|19:40] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\Installer
[2008-05-21|19:03] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\InfoPath
[2008-05-21|19:02] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\PowerPoint
[2008-05-21|18:29] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\Proof
[2008-05-21|18:23] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\Document Building Blocks
[2008-05-21|18:23] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\AddIns
[2008-05-11|14:24] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\ModŠles
[2008-04-18|22:12] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\preuve
[2008-03-29|09:15] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\Internet Explorer
[2008-03-09|14:04] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\Speech
[2008-01-21|22:00] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\MMC
[2008-01-17|18:40] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\CLR Security Config
[2008-01-14|22:00] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\Media Player
[2008-01-05|12:25] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\HTML Help
[2008-01-04|14:33] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\Crypto
[2008-01-04|10:09] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\Network
[2007-12-31|17:36] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\Windows
[2007-12-31|17:11] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\Macros compl‚mentaires
[2007-12-31|16:32] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\IdentityCRL
[2007-12-31|15:14] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\SystemCertificates
[2007-12-31|15:13] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\Protect
[2007-12-31|15:12] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\Credentials
[2008-05-27|17:56] C:\Users\SBASTI~1\AppData\Roaming\River Past G5\Audio Converter
[2008-01-07|18:34] C:\Users\SBASTI~1\AppData\Roaming\Sony\Sound Forge
[2008-01-18|19:53] C:\Users\SBASTI~1\AppData\Roaming\SoundSpectrum\WhiteCap
[2008-01-07|17:27] C:\Users\SBASTI~1\AppData\Roaming\Syntrillium\Cool Edit Pro
[2008-01-21|17:28] C:\Users\SBASTI~1\AppData\Roaming\U3\temp
[2008-05-27|19:48] C:\Users\SBASTI~1\AppData\Roaming\Winamp\Plugins
----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------
[2008-06-13 20:00][--a------] C:\Windows\tasks\Norton Internet Security - Analyse systŠme complŠte - S‚bastien.job
[2008-06-13 22:18][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{06DE795E-B849-4E44-A00D-8B2D46358960}.job
[2008-06-14 10:57][--ah-----] C:\Windows\tasks\SA.DAT
[2008-06-14 10:56][--a------] C:\Windows\tasks\SCHEDLGU.TXT
------[ Listing des dossiers dans C:\ProgramData ]------
[2008-06-09|16:47] C:\ProgramData\Adobe
[2008-01-20|20:09] C:\ProgramData\Apple
[2006-11-02|08:59] C:\ProgramData\Application Data
[2008-06-12|12:51] C:\ProgramData\Avg8
[2008-01-19|12:57] C:\ProgramData\AVS4YOU
[2007-12-31|15:09] C:\ProgramData\Bureau
[2008-05-11|14:50] C:\ProgramData\CyberLink
[2006-11-02|08:59] C:\ProgramData\Desktop
[2006-11-02|08:59] C:\ProgramData\Documents
[2008-01-18|18:57] C:\ProgramData\DVD Shrink
[2008-02-22|20:02] C:\ProgramData\eMule
[2007-12-31|15:09] C:\ProgramData\Favoris
[2006-11-02|08:59] C:\ProgramData\Favorites
[2008-06-13|16:57] C:\ProgramData\File dvd base road
[2008-06-13|18:56] C:\ProgramData\great two poll
[2007-12-31|15:13] C:\ProgramData\InstallShield
[2008-06-13|16:57] C:\ProgramData\JugsStyleStyle.7t159h
[2008-06-13|16:57] C:\ProgramData\JugsStyleStyle.ru8lq
[2008-06-14|11:00] C:\ProgramData\Kaspersky Lab
[2008-06-13|14:33] C:\ProgramData\LogiShrd
[2008-05-11|23:22] C:\ProgramData\Logitech
[2008-06-13|18:10] C:\ProgramData\Malwarebytes
[2007-12-31|15:09] C:\ProgramData\Menu D‚marrer
[2008-06-13|16:57] C:\ProgramData\meow first pop.1fncjfq
[2008-01-06|18:24] C:\ProgramData\Messenger Plus!
[2008-05-21|18:08] C:\ProgramData\Microsoft
[2008-06-09|17:36] C:\ProgramData\Microsoft Help
[2007-12-31|15:09] C:\ProgramData\ModŠles
[2008-01-14|21:53] C:\ProgramData\NtiDvdCopy
[2008-06-13|17:26] C:\ProgramData\PC Tools
[2008-05-27|17:56] C:\ProgramData\River Past G5
[2006-11-02|08:59] C:\ProgramData\Start Menu
[2008-01-21|17:54] C:\ProgramData\Symantec
[2008-06-14|11:02] C:\ProgramData\TEMP
[2006-11-02|08:59] C:\ProgramData\Templates
[2008-05-24|13:33] C:\ProgramData\Ulead Systems
[2008-04-02|17:31] C:\ProgramData\Winamp Toolbar
[2008-01-04|19:48] C:\ProgramData\WLInstaller
[2008-01-04|11:58] C:\ProgramData\Yahoo! Companion
---------------[ Listing des dossiers dans C:\Program Files ]--------------
[2008-06-09|16:47] C:\Program Files\Adobe
[2006-12-06|01:08] C:\Program Files\ATI Technologies
[2008-05-11|17:39] C:\Program Files\Audacity
[2008-03-12|20:57] C:\Program Files\Bonjour
[2008-05-11|17:47] C:\Program Files\CCleaner
[2008-06-09|16:47] C:\Program Files\Common Files
[2008-06-10|20:13] C:\Program Files\desktop.ini
[2008-05-20|16:29] C:\Program Files\DNA
[2008-05-21|19:49] C:\Program Files\Druide
[2008-05-14|16:52] C:\Program Files\EA GAMES
[2008-06-05|08:52] C:\Program Files\EA SPORTS
[2008-05-12|21:14] C:\Program Files\Fake Webcam
[2007-12-31|15:09] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[2008-05-13|18:58] C:\Program Files\HyCam2
[2008-05-24|13:36] C:\Program Files\InstallShield Installation Information
[2008-04-20|15:21] C:\Program Files\Interapple
[2008-06-10|20:05] C:\Program Files\Internet Explorer
[2008-05-11|17:47] C:\Program Files\Java
[2008-06-11|21:30] C:\Program Files\JkDefrag
[2008-06-11|20:56] C:\Program Files\Kaspersky Lab
[2007-12-31|15:14] C:\Program Files\Launch Manager
[2008-05-11|17:44] C:\Program Files\LimeWire
[2008-06-13|14:33] C:\Program Files\Logitech
[2008-06-13|18:10] C:\Program Files\Malwarebytes' Anti-Malware
[2008-05-13|22:46] C:\Program Files\Messenger
[2008-03-28|16:36] C:\Program Files\Messenger Plus! Live
[2007-12-31|16:35] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[2007-12-31|17:07] C:\Program Files\Microsoft FrontPage
[2008-06-10|20:00] C:\Program Files\Microsoft Games
[2008-05-21|18:09] C:\Program Files\Microsoft Office
[2008-05-20|15:41] C:\Program Files\Microsoft Silverlight
[2008-05-21|18:03] C:\Program Files\Microsoft Visual Studio 8
[2008-05-21|18:10] C:\Program Files\Microsoft Works
[2008-05-21|18:08] C:\Program Files\Microsoft.NET
[2008-06-10|20:05] C:\Program Files\Movie Maker
[2008-05-21|18:09] C:\Program Files\MSBuild
[2007-12-31|16:28] C:\Program Files\MSXML 4.0
[2008-04-11|19:54] C:\Program Files\NavigationProgram
[2006-12-06|01:30] C:\Program Files\NewTech Infosystems
[2006-11-02|08:35] C:\Program Files\Reference Assemblies
[2006-12-06|01:20] C:\Program Files\Synaptics
[2008-01-06|19:25] C:\Program Files\SystemRequirementsLab
[2008-06-13|17:26] C:\Program Files\ThreatFire
[2006-11-02|08:58] C:\Program Files\Uninstall Information
[2008-05-11|18:30] C:\Program Files\VirtualDJ
[2008-05-12|22:02] C:\Program Files\Winamp
[2008-06-10|20:05] C:\Program Files\Windows Calendar
[2008-06-10|20:05] C:\Program Files\Windows Collaboration
[2008-06-10|20:05] C:\Program Files\Windows Defender
[2008-01-04|19:48] C:\Program Files\Windows Live
[2008-06-13|20:17] C:\Program Files\Windows Live Safety Center
[2008-06-10|20:05] C:\Program Files\Windows Mail
[2008-06-10|20:05] C:\Program Files\Windows Media Player
[2007-12-31|15:09] C:\Program Files\Windows NT
[2008-06-10|20:05] C:\Program Files\Windows Photo Gallery
[2008-06-10|20:05] C:\Program Files\Windows Sidebar
[2008-05-11|18:06] C:\Program Files\WinRAR
[2008-05-11|17:46] C:\Program Files\Yahoo!
------[ Listing des dossiers dans C:\Program Files\Common Files ]------
[2008-06-09|16:47] C:\Program Files\Common Files\Adobe
[2008-01-20|18:08] C:\Program Files\Common Files\AVSMedia
[2008-05-21|18:09] C:\Program Files\Common Files\DESIGNER
[2007-12-31|15:13] C:\Program Files\Common Files\InstallShield
[2008-05-11|17:45] C:\Program Files\Common Files\Java
[2006-12-06|01:30] C:\Program Files\Common Files\LightScribe
[2008-06-13|14:37] C:\Program Files\Common Files\LogiShrd
[2008-05-21|18:10] C:\Program Files\Common Files\microsoft shared
[2006-12-06|01:30] C:\Program Files\Common Files\NewTech Infosystems
[2008-01-14|21:27] C:\Program Files\Common Files\PX Storage Engine
[2006-11-02|07:18] C:\Program Files\Common Files\Services
[2006-11-02|07:18] C:\Program Files\Common Files\SpeechEngines
[2008-01-21|18:01] C:\Program Files\Common Files\Symantec Shared
[2008-06-10|20:05] C:\Program Files\Common Files\System
[2007-12-31|15:54] C:\Program Files\Common Files\WindowsLiveInstaller
---------------------------[ Process ]--------------------------
... 75
iexplore.exe ~ [4488]
iexplore.exe ~ [5728]
----------------------[ Recherche avec S_Lop ]---------------------
C:\ProgramData\meow first pop.1fncjfq
C:\ProgramData\meow first pop.1fncjfq
C:\Users\SBASTI~1\AppData\Local\Temp\bisA54.exe
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
C:\ProgramData\File dvd base road
C:\ProgramData\File dvd base road\part kind.exe
C:\Windows\Prefetch\DIVOCODEC-1.0.0.2-SETUP-0827[-60B61835.pf
C:\Windows\Prefetch\DIVOCODEC-1.0.0.2-SETUP-0827[-AD938D98.pf
C:\Windows\Prefetch\DIVOCODEC-1.0.0.2-SETUP-0827[-EC88CAC5.pf
----------------------[ Verification du Registre ]----------------------
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
..... OK !
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts PROPRE
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-06-14 11:04:38
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
=> C:\Users\S‚bastien\AppData\Roaming\Microsoft\Windows\Recent\Call_Of_Duty_4_Crackfix_And_Keygen-Razor1911.lnk
=> C:\Users\S‚bastien\AppData\Roaming\Microsoft\Windows\Recent\CrackDown22.lnk
=> C:\Users\S‚bastien\AppData\Roaming\uTorrent\Call of Duty4-Razor1911+Keygen and Crack.torrent
=> C:\Users\S‚bastien\Favorites\Servers with cracked in name, playing Call of Duty 4 Server - Player Search Game - Monitor . COM.url
=> C:\Users\S‚bastien\AppData\Roaming\Microsoft\Windows\Recent\AVS+Video+Converter+4.8.2.677+(Full+Version+with+Keygen).lnk
=> C:\Users\S‚bastien\AppData\Roaming\Microsoft\Windows\Recent\AVS_Video_Converter_4_8_1_455_Full_incl_Keygen.lnk
=> C:\Users\S‚bastien\AppData\Roaming\Microsoft\Windows\Recent\Call_Of_Duty_4_Crackfix_And_Keygen-Razor1911.lnk
=> C:\Users\S‚bastien\AppData\Roaming\uTorrent\Call of Duty4-Razor1911+Keygen and Crack.torrent
[F:491][D:64]-> C:\Users\SBASTI~1\AppData\Local\Temp
[F:3][D:1]-> C:\Users\SBASTI~1\AppData\Roaming\MICROS~1\Windows\Cookies
[F:26][D:1]-> C:\$Recycle.Bin
[ UAC => 1 ]

--------------------[ Fin du rapport a 11:06:24,54 ]----------------------

salut

voici le raport

jai du suprimer le debut car il a un max de longueur

et sa speut tu que le logiciel ai des infection car thrat fir mindique cela

bye

**Super admin** Inscrit le : 07 Déc 2007 Messages : 2298

non le logiciel na pas de virus c est ce qu on appel un faux positif!!

Relance Lop S&D
• Choisis cette fois ci l'Option 2 (Suppression)
• Ne ferme pas la fenêtre lors de la suppression !
• Poste le rapport généré (C:\lopR.txt)

(Si le Bureau ne réapparît pas presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide)
_________________
Il est plus simple d'infecter votre pc que de le désinfecter,pensez y. Ne pas cliquer ici

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////
Supprimé! - C:\ProgramData\File dvd base road\part kind.exe
Supprimé! - C:\Windows\Prefetch\DIVOCODEC-1.0.0.2-SETUP-0827[-60B61835.pf
Supprimé! - C:\Windows\Prefetch\DIVOCODEC-1.0.0.2-SETUP-0827[-AD938D98.pf
Supprimé! - C:\Windows\Prefetch\DIVOCODEC-1.0.0.2-SETUP-0827[-EC88CAC5.pf
Supprimé! - C:\ProgramData\meow first pop.1fncjfq
Supprimé! - C:\Users\SBASTI~1\AppData\Local\Temp\bisA54.exe
Supprimé! - C:\ProgramData\File dvd base road
Restauré! - Fichier Hosts
/////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
-------------[ Listing des dossiers dans Application Data ]------------
[2008-02-08|22:48] C:\Users\SBASTI~1\AppData\Roaming\Adobe\Flash Player
[2008-01-07|16:42] C:\Users\SBASTI~1\AppData\Roaming\Adobe\Linguistics
[2008-01-07|16:41] C:\Users\SBASTI~1\AppData\Roaming\Adobe\Acrobat
[2008-01-07|11:44] C:\Users\SBASTI~1\AppData\Roaming\Adobe\ESD
[2008-04-12|15:49] C:\Users\SBASTI~1\AppData\Roaming\Apple Computer\iTunes
[2007-12-31|15:14] C:\Users\SBASTI~1\AppData\Roaming\ATI\ACE
[2008-03-16|20:57] C:\Users\SBASTI~1\AppData\Roaming\Audacity\AutoSave
[2008-03-16|20:52] C:\Users\SBASTI~1\AppData\Roaming\Audacity\presets
[2008-01-20|00:30] C:\Users\SBASTI~1\AppData\Roaming\AVS4YOU\AVSVideoConverter
[2008-01-19|13:54] C:\Users\SBASTI~1\AppData\Roaming\AVSMedia\AVSCaptureWizard
[2008-01-19|13:33] C:\Users\SBASTI~1\AppData\Roaming\AVSMedia\AVSVideoConverter
[2008-05-06|17:40] C:\Users\SBASTI~1\AppData\Roaming\Azureus\active
[2008-05-06|17:40] C:\Users\SBASTI~1\AppData\Roaming\Azureus\dht
[2008-05-06|17:40] C:\Users\SBASTI~1\AppData\Roaming\Azureus\net
[2008-05-06|17:40] C:\Users\SBASTI~1\AppData\Roaming\Azureus\torrents
[2008-05-06|17:33] C:\Users\SBASTI~1\AppData\Roaming\Azureus\logs
[2008-05-06|16:59] C:\Users\SBASTI~1\AppData\Roaming\Azureus\tmp
[2008-04-28|17:05] C:\Users\SBASTI~1\AppData\Roaming\Azureus\media
[2008-04-27|23:38] C:\Users\SBASTI~1\AppData\Roaming\Azureus\shares
[2008-04-27|23:38] C:\Users\SBASTI~1\AppData\Roaming\Azureus\plugins
[2008-01-14|21:57] C:\Users\SBASTI~1\AppData\Roaming\CyberLink\MagicDirector
[2008-01-14|21:57] C:\Users\SBASTI~1\AppData\Roaming\CyberLink\MediaCache
[2008-01-14|21:54] C:\Users\SBASTI~1\AppData\Roaming\CyberLink\PowerDVD
[2008-01-12|00:12] C:\Users\SBASTI~1\AppData\Roaming\CyberLink\PowerCinema
[2008-01-14|20:37] C:\Users\SBASTI~1\AppData\Roaming\DivX\DivX Player
[2008-06-05|17:34] C:\Users\SBASTI~1\AppData\Roaming\Druide\Antidote
[2008-01-09|14:42] C:\Users\SBASTI~1\AppData\Roaming\eMule\config
[2007-12-31|15:13] C:\Users\SBASTI~1\AppData\Roaming\Identities\{F60B1085-B859-464C-A3C2-821EAC55D9D5}
[2008-05-24|13:39] C:\Users\SBASTI~1\AppData\Roaming\Jasc\Animation Shop
[2008-05-11|14:53] C:\Users\SBASTI~1\AppData\Roaming\Leadertech\PowerRegister
[2008-06-03|22:07] C:\Users\SBASTI~1\AppData\Roaming\LimeWire\.AppSpecialShare
[2008-03-15|17:50] C:\Users\SBASTI~1\AppData\Roaming\LimeWire\xml
[2008-03-15|17:44] C:\Users\SBASTI~1\AppData\Roaming\LimeWire\themes
[2008-06-14|10:59] C:\Users\SBASTI~1\AppData\Roaming\Macromedia\Flash Player
[2008-06-13|18:11] C:\Users\SBASTI~1\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware
[2008-06-13|17:51] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\Templates
[2008-06-12|12:50] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\Outlook
[2008-06-05|17:26] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\Office
[2008-06-05|17:26] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\Excel
[2008-06-05|17:26] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\Publisher
[2008-06-05|17:20] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\IMJP10
[2008-05-26|18:15] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\Windows Photo Gallery
[2008-05-25|18:52] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\MSN Messenger
[2008-05-25|14:42] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\Word
[2008-05-22|18:36] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\UProof
[2008-05-21|19:40] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\Installer
[2008-05-21|19:03] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\InfoPath
[2008-05-21|19:02] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\PowerPoint
[2008-05-21|18:29] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\Proof
[2008-05-21|18:23] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\Document Building Blocks
[2008-05-21|18:23] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\AddIns
[2008-05-11|14:24] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\ModŠles
[2008-04-18|22:12] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\preuve
[2008-03-29|09:15] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\Internet Explorer
[2008-03-09|14:04] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\Speech
[2008-01-21|22:00] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\MMC
[2008-01-17|18:40] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\CLR Security Config
[2008-01-14|22:00] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\Media Player
[2008-01-05|12:25] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\HTML Help
[2008-01-04|14:33] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\Crypto
[2008-01-04|10:09] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\Network
[2007-12-31|17:36] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\Windows
[2007-12-31|17:11] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\Macros compl‚mentaires
[2007-12-31|16:32] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\IdentityCRL
[2007-12-31|15:14] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\SystemCertificates
[2007-12-31|15:13] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\Protect
[2007-12-31|15:12] C:\Users\SBASTI~1\AppData\Roaming\Microsoft\Credentials
[2008-05-27|17:56] C:\Users\SBASTI~1\AppData\Roaming\River Past G5\Audio Converter
[2008-01-07|18:34] C:\Users\SBASTI~1\AppData\Roaming\Sony\Sound Forge
[2008-01-18|19:53] C:\Users\SBASTI~1\AppData\Roaming\SoundSpectrum\WhiteCap
[2008-01-07|17:27] C:\Users\SBASTI~1\AppData\Roaming\Syntrillium\Cool Edit Pro
[2008-01-21|17:28] C:\Users\SBASTI~1\AppData\Roaming\U3\temp
[2008-05-27|19:48] C:\Users\SBASTI~1\AppData\Roaming\Winamp\Plugins
----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------
[2008-06-13 20:00][--a------] C:\Windows\tasks\Norton Internet Security - Analyse systŠme complŠte - S‚bastien.job
[2008-06-13 22:18][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{06DE795E-B849-4E44-A00D-8B2D46358960}.job
[2008-06-14 13:43][--ah-----] C:\Windows\tasks\SA.DAT
[2008-06-14 13:42][--a------] C:\Windows\tasks\SCHEDLGU.TXT
------[ Listing des dossiers dans C:\ProgramData ]------
[2008-06-09|16:47] C:\ProgramData\Adobe
[2008-01-20|20:09] C:\ProgramData\Apple
[2006-11-02|08:59] C:\ProgramData\Application Data
[2008-06-12|12:51] C:\ProgramData\Avg8
[2008-01-19|12:57] C:\ProgramData\AVS4YOU
[2007-12-31|15:09] C:\ProgramData\Bureau
[2008-05-11|14:50] C:\ProgramData\CyberLink
[2006-11-02|08:59] C:\ProgramData\Desktop
[2006-11-02|08:59] C:\ProgramData\Documents
[2008-01-18|18:57] C:\ProgramData\DVD Shrink
[2008-02-22|20:02] C:\ProgramData\eMule
[2007-12-31|15:09] C:\ProgramData\Favoris
[2006-11-02|08:59] C:\ProgramData\Favorites
[2008-06-13|18:56] C:\ProgramData\great two poll
[2007-12-31|15:13] C:\ProgramData\InstallShield
[2008-06-13|16:57] C:\ProgramData\JugsStyleStyle.7t159h
[2008-06-13|16:57] C:\ProgramData\JugsStyleStyle.ru8lq
[2008-06-14|13:45] C:\ProgramData\Kaspersky Lab
[2008-06-13|14:33] C:\ProgramData\LogiShrd
[2008-05-11|23:22] C:\ProgramData\Logitech
[2008-06-13|18:10] C:\ProgramData\Malwarebytes
[2007-12-31|15:09] C:\ProgramData\Menu D‚marrer
[2008-01-06|18:24] C:\ProgramData\Messenger Plus!
[2008-05-21|18:08] C:\ProgramData\Microsoft
[2008-06-09|17:36] C:\ProgramData\Microsoft Help
[2007-12-31|15:09] C:\ProgramData\ModŠles
[2008-01-14|21:53] C:\ProgramData\NtiDvdCopy
[2008-06-13|17:26] C:\ProgramData\PC Tools
[2008-05-27|17:56] C:\ProgramData\River Past G5
[2006-11-02|08:59] C:\ProgramData\Start Menu
[2008-01-21|17:54] C:\ProgramData\Symantec
[2008-06-14|13:47] C:\ProgramData\TEMP
[2006-11-02|08:59] C:\ProgramData\Templates
[2008-05-24|13:33] C:\ProgramData\Ulead Systems
[2008-04-02|17:31] C:\ProgramData\Winamp Toolbar
[2008-01-04|19:48] C:\ProgramData\WLInstaller
[2008-01-04|11:58] C:\ProgramData\Yahoo! Companion
---------------[ Listing des dossiers dans C:\Program Files ]--------------
[2008-06-09|16:47] C:\Program Files\Adobe
[2006-12-06|01:08] C:\Program Files\ATI Technologies
[2008-05-11|17:39] C:\Program Files\Audacity
[2008-03-12|20:57] C:\Program Files\Bonjour
[2008-05-11|17:47] C:\Program Files\CCleaner
[2008-06-09|16:47] C:\Program Files\Common Files
[2008-06-10|20:13] C:\Program Files\desktop.ini
[2008-05-20|16:29] C:\Program Files\DNA
[2008-05-21|19:49] C:\Program Files\Druide
[2008-05-14|16:52] C:\Program Files\EA GAMES
[2008-06-05|08:52] C:\Program Files\EA SPORTS
[2008-05-12|21:14] C:\Program Files\Fake Webcam
[2007-12-31|15:09] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[2008-05-13|18:58] C:\Program Files\HyCam2
[2008-05-24|13:36] C:\Program Files\InstallShield Installation Information
[2008-04-20|15:21] C:\Program Files\Interapple
[2008-06-10|20:05] C:\Program Files\Internet Explorer
[2008-05-11|17:47] C:\Program Files\Java
[2008-06-11|21:30] C:\Program Files\JkDefrag
[2008-06-11|20:56] C:\Program Files\Kaspersky Lab
[2007-12-31|15:14] C:\Program Files\Launch Manager
[2008-05-11|17:44] C:\Program Files\LimeWire
[2008-06-13|14:33] C:\Program Files\Logitech
[2008-06-13|18:10] C:\Program Files\Malwarebytes' Anti-Malware
[2008-05-13|22:46] C:\Program Files\Messenger
[2008-03-28|16:36] C:\Program Files\Messenger Plus! Live
[2007-12-31|16:35] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[2007-12-31|17:07] C:\Program Files\Microsoft FrontPage
[2008-06-10|20:00] C:\Program Files\Microsoft Games
[2008-05-21|18:09] C:\Program Files\Microsoft Office
[2008-05-20|15:41] C:\Program Files\Microsoft Silverlight
[2008-05-21|18:03] C:\Program Files\Microsoft Visual Studio 8
[2008-05-21|18:10] C:\Program Files\Microsoft Works
[2008-05-21|18:08] C:\Program Files\Microsoft.NET
[2008-06-10|20:05] C:\Program Files\Movie Maker
[2008-05-21|18:09] C:\Program Files\MSBuild
[2007-12-31|16:28] C:\Program Files\MSXML 4.0
[2008-04-11|19:54] C:\Program Files\NavigationProgram
[2006-12-06|01:30] C:\Program Files\NewTech Infosystems
[2006-11-02|08:35] C:\Program Files\Reference Assemblies
[2006-12-06|01:20] C:\Program Files\Synaptics
[2008-01-06|19:25] C:\Program Files\SystemRequirementsLab
[2008-06-14|13:38] C:\Program Files\Teamspeak2_RC2
[2008-06-13|17:26] C:\Program Files\ThreatFire
[2006-11-02|08:58] C:\Program Files\Uninstall Information
[2008-05-11|18:30] C:\Program Files\VirtualDJ
[2008-05-12|22:02] C:\Program Files\Winamp
[2008-06-10|20:05] C:\Program Files\Windows Calendar
[2008-06-10|20:05] C:\Program Files\Windows Collaboration
[2008-06-10|20:05] C:\Program Files\Windows Defender
[2008-01-04|19:48] C:\Program Files\Windows Live
[2008-06-13|20:17] C:\Program Files\Windows Live Safety Center
[2008-06-10|20:05] C:\Program Files\Windows Mail
[2008-06-10|20:05] C:\Program Files\Windows Media Player
[2007-12-31|15:09] C:\Program Files\Windows NT
[2008-06-10|20:05] C:\Program Files\Windows Photo Gallery
[2008-06-10|20:05] C:\Program Files\Windows Sidebar
[2008-05-11|18:06] C:\Program Files\WinRAR
[2008-05-11|17:46] C:\Program Files\Yahoo!
------[ Listing des dossiers dans C:\Program Files\Common Files ]------
[2008-06-09|16:47] C:\Program Files\Common Files\Adobe
[2008-01-20|18:08] C:\Program Files\Common Files\AVSMedia
[2008-05-21|18:09] C:\Program Files\Common Files\DESIGNER
[2007-12-31|15:13] C:\Program Files\Common Files\InstallShield
[2008-05-11|17:45] C:\Program Files\Common Files\Java
[2006-12-06|01:30] C:\Program Files\Common Files\LightScribe
[2008-06-13|14:37] C:\Program Files\Common Files\LogiShrd
[2008-05-21|18:10] C:\Program Files\Common Files\microsoft shared
[2006-12-06|01:30] C:\Program Files\Common Files\NewTech Infosystems
[2008-01-14|21:27] C:\Program Files\Common Files\PX Storage Engine
[2006-11-02|07:18] C:\Program Files\Common Files\Services
[2006-11-02|07:18] C:\Program Files\Common Files\SpeechEngines
[2008-01-21|18:01] C:\Program Files\Common Files\Symantec Shared
[2008-06-10|20:05] C:\Program Files\Common Files\System
[2007-12-31|15:54] C:\Program Files\Common Files\WindowsLiveInstaller

---------------------------[ Process ]--------------------------
... 71
... OK !
----------------------[ Recherche avec S_Lop ]---------------------
Aucun fichier / dossier Lop trouvé !
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
Aucun fichier / dossier Lop trouvé !
----------------------[ Verification du Registre ]----------------------
..... OK !
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts PROPRE
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-06-14 13:49:13
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
=> C:\Users\S‚bastien\AppData\Roaming\Microsoft\Windows\Recent\Call_Of_Duty_4_Crackfix_And_Keygen-Razor1911.lnk
=> C:\Users\S‚bastien\AppData\Roaming\Microsoft\Windows\Recent\CrackDown22.lnk
=> C:\Users\S‚bastien\AppData\Roaming\uTorrent\Call of Duty4-Razor1911+Keygen and Crack.torrent
=> C:\Users\S‚bastien\Favorites\Servers with cracked in name, playing Call of Duty 4 Server - Player Search Game - Monitor . COM.url
=> C:\Users\S‚bastien\AppData\Roaming\Microsoft\Windows\Recent\AVS+Video+Converter+4.8.2.677+(Full+Version+with+Keygen).lnk
=> C:\Users\S‚bastien\AppData\Roaming\Microsoft\Windows\Recent\AVS_Video_Converter_4_8_1_455_Full_incl_Keygen.lnk
=> C:\Users\S‚bastien\AppData\Roaming\Microsoft\Windows\Recent\Call_Of_Duty_4_Crackfix_And_Keygen-Razor1911.lnk
=> C:\Users\S‚bastien\AppData\Roaming\uTorrent\Call of Duty4-Razor1911+Keygen and Crack.torrent
[F:1675][D:64]-> C:\Users\SBASTI~1\AppData\Local\Temp
[F:3][D:1]-> C:\Users\SBASTI~1\AppData\Roaming\MICROS~1\Windows\Cookies
[F:26][D:1]-> C:\$Recycle.Bi
[ UAC => 1 ]
--------------------[ Fin du rapport a 13:50:27,19 ]----------------------