A voir également:
- Trojan ! Aidez moi Svp.
- Trojan remover - Télécharger - Antivirus & Antimalwares
- Trojan b901 ✓ - Forum Virus
- Csrss.exe trojan ✓ - Forum Virus
- [Virus] Trojan ou virus dans csrss.exe et spo - Forum Virus
- Trojan wacatac ✓ - Forum Virus
20 réponses
Utilisateur anonyme
26 déc. 2008 à 23:38
26 déc. 2008 à 23:38
Bonsoir,
ludsfa, je commencerais plutot par lui faire poster un rapport HJT non ?
Tu balance navilog1 parce qu'il parle de pubs, mais ce n'est pas parce qu'il y a des pubs, que c'est une infection Navipromo ou Lop. =D
Je suis le sujet :)
ludsfa, je commencerais plutot par lui faire poster un rapport HJT non ?
Tu balance navilog1 parce qu'il parle de pubs, mais ce n'est pas parce qu'il y a des pubs, que c'est une infection Navipromo ou Lop. =D
Je suis le sujet :)
ludsfa
Messages postés
1284
Date d'inscription
dimanche 3 février 2008
Statut
Membre
Dernière intervention
15 janvier 2018
15
27 déc. 2008 à 11:12
27 déc. 2008 à 11:12
Bonjour à vous deux,
Infection lop apparemment.
télécharge ToolsCleaner sur ton bureau.
double clic sur le l'icone tools cleaner ensuite sélectionne recherche en haut à gauche.
Ensuite clic sur suppression.
tools cleaner va supprimer navilog et tout autre logiciels de désinfection.
Tu peux également te servir des options facultatives si tu le souhaite.
Ensuite recommence l'opération Hijackthis .
Infection lop apparemment.
télécharge ToolsCleaner sur ton bureau.
double clic sur le l'icone tools cleaner ensuite sélectionne recherche en haut à gauche.
Ensuite clic sur suppression.
tools cleaner va supprimer navilog et tout autre logiciels de désinfection.
Tu peux également te servir des options facultatives si tu le souhaite.
Ensuite recommence l'opération Hijackthis .
Bonjour,
Voila le rapport de HijackThis :
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:48:13, on 27/12/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\hphmon06.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\ALCWZRD.EXE
C:\WINDOWS\ALCMTR.EXE
C:\WINDOWS\system32\LXSUPMON.EXE
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Neuf\Kit\WiFi\9wifi.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\rundll32.exe
C:\PROGRA~1\WI1F86~1\MESSEN~1\msnmsgr.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\PROGRA~1\WI1F86~1\MESSEN~1\msnmsgr.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.neuf.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://actus.sfr.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://actus.sfr.fr
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://ie.redirect.hp.com/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll
R3 - URLSearchHook: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: XTTBPos00 Class - {055FD26D-3A88-4e15-963D-DC8493744B1D} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: SWEETIE Class - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - C:\PROGRA~1\MACROG~1\SWEETI~1\toolbar.dll
O2 - BHO: (no name) - {2fccf445-cdc4-4e98-8d12-89cdabca3c71} - C:\WINDOWS\system32\memezori.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5f90c0e3-4c0a-4d54-a8ac-5afe6163a99e} - C:\PROGRAM FILES\STARWARE370\BIN\STARWARE370.DLL
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: solution Class - {99C6D1BB-7555-474C-91DA-D8FB62A9CC75} - C:\WINDOWS\system32\hX32152X.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.1.807.1746\swg.dll
O3 - Toolbar: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll
O3 - Toolbar: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
O3 - Toolbar: Starware Toolbar Musique - {1962c5bc-e475-465b-823b-133e711bceb9} - C:\PROGRAM FILES\STARWARE370\BIN\STARWARE370.DLL
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [Raccourci vers la page des propriétés de High Definition Audio] HDAudPropShortcut.exe
O4 - HKLM\..\Run: [HPHUPD06] c:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe
O4 - HKLM\..\Run: [HPHmon06] C:\WINDOWS\system32\hphmon06.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
O4 - HKLM\..\Run: [PrinTray] C:\WINDOWS\System32\spool\DRIVERS\W32X86\2\printray.exe
O4 - HKLM\..\Run: [LXSUPMON] C:\WINDOWS\system32\LXSUPMON.EXE RUN
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Autoconfigurateur WiFi Neuf] "C:\Program Files\Neuf\Kit\WiFi\9wifi.exe"
O4 - HKLM\..\Run: [gulafubuga] Rundll32.exe "C:\WINDOWS\system32\poviwumi.dll",s
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [4c731f48] rundll32.exe "C:\WINDOWS\system32\zabinose.dll",b
O4 - HKLM\..\Run: [CPM4f402cd4] Rundll32.exe "c:\windows\system32\vevinaho.dll",a
O4 - HKCU\..\Run: [msnmsgr] "C:\PROGRA~1\WI1F86~1\MESSEN~1\msnmsgr.exe" /background
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [gulafubuga] Rundll32.exe "C:\WINDOWS\system32\poviwumi.dll",s (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\FlashUtil9e.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\FlashUtil9e.exe (User 'Default user')
O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: HP Photosmart Premier Fast Start.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: Les Sims 2 Nuits de Folie
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O8 - Extra context menu item: &ICQ Toolbar Search - res://C:\Program Files\ICQToolbar\toolbaru.dll/SEARCH.HTML
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Download with Go!Zilla - file://C:\Program Files\Go!Zilla\download-with-gozilla.html
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?06d9a862c09e4bb0a2fc4b330bb7d5c4
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?06d9a862c09e4bb0a2fc4b330bb7d5c4
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm (HKCU)
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm (HKCU)
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.mail.live.com/mail/w1/resources/MSNPUpld.cab
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O20 - AppInit_DLLs: c:\windows\system32\bugudesi.dll C:\WINDOWS\system32\gupuvefa.dll c:\windows\system32\vevinaho.dll
O21 - SSODL: SSODL - {EC43E3FD-5C60-46a6-97D7-E0B85DBDD6C4} - c:\windows\system32\vevinaho.dll
O22 - SharedTaskScheduler: STS - {EC43E3FD-5C60-46a6-97D7-E0B85DBDD6C4} - c:\windows\system32\vevinaho.dll
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
End of file - 13227 bytes
Voila le rapport de HijackThis :
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:48:13, on 27/12/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\hphmon06.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\ALCWZRD.EXE
C:\WINDOWS\ALCMTR.EXE
C:\WINDOWS\system32\LXSUPMON.EXE
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Neuf\Kit\WiFi\9wifi.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\rundll32.exe
C:\PROGRA~1\WI1F86~1\MESSEN~1\msnmsgr.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\PROGRA~1\WI1F86~1\MESSEN~1\msnmsgr.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.neuf.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://actus.sfr.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://actus.sfr.fr
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://ie.redirect.hp.com/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll
R3 - URLSearchHook: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: XTTBPos00 Class - {055FD26D-3A88-4e15-963D-DC8493744B1D} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: SWEETIE Class - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - C:\PROGRA~1\MACROG~1\SWEETI~1\toolbar.dll
O2 - BHO: (no name) - {2fccf445-cdc4-4e98-8d12-89cdabca3c71} - C:\WINDOWS\system32\memezori.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5f90c0e3-4c0a-4d54-a8ac-5afe6163a99e} - C:\PROGRAM FILES\STARWARE370\BIN\STARWARE370.DLL
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: solution Class - {99C6D1BB-7555-474C-91DA-D8FB62A9CC75} - C:\WINDOWS\system32\hX32152X.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.1.807.1746\swg.dll
O3 - Toolbar: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll
O3 - Toolbar: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
O3 - Toolbar: Starware Toolbar Musique - {1962c5bc-e475-465b-823b-133e711bceb9} - C:\PROGRAM FILES\STARWARE370\BIN\STARWARE370.DLL
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [Raccourci vers la page des propriétés de High Definition Audio] HDAudPropShortcut.exe
O4 - HKLM\..\Run: [HPHUPD06] c:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe
O4 - HKLM\..\Run: [HPHmon06] C:\WINDOWS\system32\hphmon06.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
O4 - HKLM\..\Run: [PrinTray] C:\WINDOWS\System32\spool\DRIVERS\W32X86\2\printray.exe
O4 - HKLM\..\Run: [LXSUPMON] C:\WINDOWS\system32\LXSUPMON.EXE RUN
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Autoconfigurateur WiFi Neuf] "C:\Program Files\Neuf\Kit\WiFi\9wifi.exe"
O4 - HKLM\..\Run: [gulafubuga] Rundll32.exe "C:\WINDOWS\system32\poviwumi.dll",s
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [4c731f48] rundll32.exe "C:\WINDOWS\system32\zabinose.dll",b
O4 - HKLM\..\Run: [CPM4f402cd4] Rundll32.exe "c:\windows\system32\vevinaho.dll",a
O4 - HKCU\..\Run: [msnmsgr] "C:\PROGRA~1\WI1F86~1\MESSEN~1\msnmsgr.exe" /background
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [gulafubuga] Rundll32.exe "C:\WINDOWS\system32\poviwumi.dll",s (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\FlashUtil9e.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\FlashUtil9e.exe (User 'Default user')
O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: HP Photosmart Premier Fast Start.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: Les Sims 2 Nuits de Folie
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O8 - Extra context menu item: &ICQ Toolbar Search - res://C:\Program Files\ICQToolbar\toolbaru.dll/SEARCH.HTML
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Download with Go!Zilla - file://C:\Program Files\Go!Zilla\download-with-gozilla.html
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?06d9a862c09e4bb0a2fc4b330bb7d5c4
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?06d9a862c09e4bb0a2fc4b330bb7d5c4
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm (HKCU)
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm (HKCU)
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.mail.live.com/mail/w1/resources/MSNPUpld.cab
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O20 - AppInit_DLLs: c:\windows\system32\bugudesi.dll C:\WINDOWS\system32\gupuvefa.dll c:\windows\system32\vevinaho.dll
O21 - SSODL: SSODL - {EC43E3FD-5C60-46a6-97D7-E0B85DBDD6C4} - c:\windows\system32\vevinaho.dll
O22 - SharedTaskScheduler: STS - {EC43E3FD-5C60-46a6-97D7-E0B85DBDD6C4} - c:\windows\system32\vevinaho.dll
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
End of file - 13227 bytes
ludsfa
Messages postés
1284
Date d'inscription
dimanche 3 février 2008
Statut
Membre
Dernière intervention
15 janvier 2018
15
30 déc. 2008 à 11:41
30 déc. 2008 à 11:41
salut,
ok télécharge Malwarebytes' Anti-Malware sur ton bureau.
* Installe-le en double-cliquant sur le fichier Download_mbam-setup.exe.
Une fois l'installation et la mise à jour effectuées :
Démarrage en mode sans échec
/!\ Ne jamais démarrer en mode sans échec via MSCONFIG /!\
* Exécute maintenant MalwareByte's Anti-Malware. Si cela n'est pas déjà fait, sélectionne "Exécuter un examen complet".
* Afin de lancer la recherche, clic sur"Rechercher".
* Une fois le scan terminé, une fenêtre s'ouvre, clic sur OK. Deux possibilités s'offrent à toi :
-- si le programme n'a rien trouvé, appuie sur OK. Un rapport va apparaître, ferme-le.
-- si des infections sont présentes, clic sur "Afficher les résultats" puis sur "Supprimer la sélection". Enregistre le rapport sur ton Bureau afin de le poster dans ta prochaine réponse.
REMARQUE : Si MalwareByte's Anti-Malware a besoin de redémarrer pour terminer la suppression, accepte en cliquant sur Ok.
ok télécharge Malwarebytes' Anti-Malware sur ton bureau.
* Installe-le en double-cliquant sur le fichier Download_mbam-setup.exe.
Une fois l'installation et la mise à jour effectuées :
Démarrage en mode sans échec
/!\ Ne jamais démarrer en mode sans échec via MSCONFIG /!\
* Exécute maintenant MalwareByte's Anti-Malware. Si cela n'est pas déjà fait, sélectionne "Exécuter un examen complet".
* Afin de lancer la recherche, clic sur"Rechercher".
* Une fois le scan terminé, une fenêtre s'ouvre, clic sur OK. Deux possibilités s'offrent à toi :
-- si le programme n'a rien trouvé, appuie sur OK. Un rapport va apparaître, ferme-le.
-- si des infections sont présentes, clic sur "Afficher les résultats" puis sur "Supprimer la sélection". Enregistre le rapport sur ton Bureau afin de le poster dans ta prochaine réponse.
REMARQUE : Si MalwareByte's Anti-Malware a besoin de redémarrer pour terminer la suppression, accepte en cliquant sur Ok.
Coucou, tout d'abord Bonne année 2009; tout plein de bonheur a vous tous =)
Voila le rapport avec Malwarebytes' Anti-Malware:
Malwarebytes' Anti-Malware 1.32
Version de la base de données: 1638
Windows 5.1.2600 Service Pack 2
11/01/2009 17:41:47
mbam-log-2009-01-11 (17-41-47).txt
Type de recherche: Examen complet (C:\|D:\|)
Eléments examinés: 169620
Temps écoulé: 2 hour(s), 0 minute(s), 16 second(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 27
Valeur(s) du Registre infectée(s): 2
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 288
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2fccf445-cdc4-4e98-8d12-89cdabca3c71} (Trojan.Vundo.H) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{2fccf445-cdc4-4e98-8d12-89cdabca3c71} (Trojan.Vundo.H) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\minibugtransporter.minibugtransporterx (Adware.Minibug) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{3c2d2a1e-031f-4397-9614-87c932a848e0} (Adware.Minibug) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{04a38f6b-006f-4247-ba4c-02a139d5531c} (Adware.Minibug) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{2b96d5cc-c5b5-49a5-a69d-cc0a30f9028c} (Adware.Minibug) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\minibugtransporter.minibugtransporterx.1 (Adware.Minibug) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\solution.solution (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{00476c87-a276-49bf-86bc-ff005732430b} (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{892b2785-b0d0-4aa2-ae6a-0ed60b00a979} (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{99c6d1bb-7555-474c-91da-d8fb62a9cc75} (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{99c6d1bb-7555-474c-91da-d8fb62a9cc75} (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99c6d1bb-7555-474c-91da-d8fb62a9cc75} (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\solution.solution.1 (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{e81cf86b-f683-422a-b742-3f2427ea9d6a} (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{f919fbd3-a96b-4679-af26-f551439bb5fd} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{09f1adac-76d8-4d0f-99a5-5c907dadb988} (Rogue.Multiple) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{b64f4a7c-97c9-11da-8bde-f66bad1e3f3a} (Rogue.WinAntivirus) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1962c5bc-e475-465b-823b-133e711bceb9} (Adware.Starware) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{5f90c0e3-4c0a-4d54-a8ac-5afe6163a99e} (Adware.Starware) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{1962c5bc-e475-465b-823b-133e711bceb9} (Adware.Starware) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{e550dc77-ef3b-474f-b59c-b3e2aa1fa6a5} (Adware.Starware) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\contim (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\dslcnnct (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\rdfa (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\starware370 (Adware.Starware) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\starware370 (Adware.Starware) -> Quarantined and deleted successfully.
Valeur(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\gulafubuga (Trojan.Vundo.H) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\C:\Program Files\Fichiers communs\Real\WeatherBug\MiniBugTransporter.dll (Adware.Minibug) -> Quarantined and deleted successfully.
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
C:\WINDOWS\system32\bawayeka.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\akeyawab.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\davafuhu.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\uhufavad.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\fakahale.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\elahakaf.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\fobunayi.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\iyanubof.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\fohajifu.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ufijahof.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\fosajugu.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ugujasof.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\gagekije.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ejikegag.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\galifure.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\erufilag.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\gehuseda.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\adesuheg.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\gijareso.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\oserajig.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\gilefede.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\edefelig.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\hinilezo.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ozelinih.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\hiyokovu.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\uvokoyih.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\liwoduki.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ikudowil.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\modufime.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\emifudom.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\nigokeyo.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\oyekogin.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\purahulu.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\uluharup.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\rinafala.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\alafanir.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\sikatodo.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\odotakis.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\sodimafe.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\efamidos.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\vabejodu.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\udojebav.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\wasodoku.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ukodosaw.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\wekenopo.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\oponekew.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\yakiyetu.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\uteyikay.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\yevigatu.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\utagivey.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\yolefode.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\edofeloy.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\zabinose.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\esonibaz.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\zadoleso.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\oselodaz.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\zimizapa.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\apazimiz.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Program Files\Fichiers communs\Real\WeatherBug\MiniBugTransporter.dll (Adware.Minibug) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\hX32152X.dll (Trojan.BHO) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Propriétaire\Local Settings\Temp\3yEPNJ4P.exe (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Propriétaire\Local Settings\Temp\42g1275i.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Propriétaire\Local Settings\Temp\7nu07ql4.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Propriétaire\Local Settings\Temp\8tkg35Gr.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Propriétaire\Local Settings\Temp\B8AblG1L.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Propriétaire\Local Settings\Temp\BC8xN05p.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Propriétaire\Local Settings\Temp\CPHrR3P3.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Propriétaire\Local Settings\Temp\cW2j3l2M.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Propriétaire\Local Settings\Temp\f3jrMX2p.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Propriétaire\Local Settings\Temp\f3pxT44C.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Propriétaire\Local Settings\Temp\K5wym3Xy.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Propriétaire\Local Settings\Temp\K75OQinD.exe (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Propriétaire\Local Settings\Temp\s4428o8r.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP627\A0174738.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP627\A0174797.dll (Trojan.BHO) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP627\A0174798.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP627\A0174875.dll (Trojan.BHO) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP627\A0174876.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP627\A0174910.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP627\A0174933.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP628\A0174941.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP628\A0174986.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP628\A0175002.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP629\A0175018.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP629\A0175039.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP629\A0175053.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP629\A0175179.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP630\A0175209.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP630\A0175225.exe (Trojan.Swizzor) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP631\A0176227.exe (Trojan.Swizzor) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP631\A0177229.exe (Trojan.Swizzor) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP631\A0177264.exe (Trojan.Swizzor) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP631\A0177335.exe (Trojan.Swizzor) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP632\A0177346.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP632\A0177347.exe (Trojan.Swizzor) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP638\A0177666.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP638\A0177667.exe (Trojan.Swizzor) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP644\A0177967.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP644\A0177968.exe (Trojan.Swizzor) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP644\A0178609.exe (Trojan.Swizzor) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP644\A0178610.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP645\A0178632.exe (Trojan.Swizzor) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP645\A0178634.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP645\A0178655.exe (Trojan.Swizzor) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP645\A0178660.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP645\A0180653.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP645\A0180654.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP645\A0180674.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP645\A0180675.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP645\A0181673.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP645\A0181674.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP645\A0181693.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP645\A0181696.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP646\A0181714.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP646\A0181720.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP646\A0181739.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP646\A0181796.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP646\A0182735.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP646\A0182738.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP646\A0182755.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP646\A0182772.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP646\A0182773.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP646\A0184773.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP647\A0184892.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP647\A0184893.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP647\A0184898.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP647\A0186899.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP647\A0186900.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP650\A0188280.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP650\A0188350.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP650\A0188396.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP650\A0188410.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP650\A0189414.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP651\A0190416.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP651\A0190417.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP651\A0192439.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP651\A0193412.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP651\A0194411.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP651\A0195433.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP651\A0196450.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP651\A0196451.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP651\A0196464.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP651\A0196465.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP651\A0196470.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP652\A0197454.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP654\A0204502.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP654\A0205577.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP654\A0205591.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP655\A0206492.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP655\A0206493.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP655\A0207511.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP655\A0208524.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP655\A0209547.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP655\A0210548.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP655\A0210557.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP655\A0210573.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP655\A0210574.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP656\A0211573.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP656\A0211574.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP656\A0214576.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP656\A0214577.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP657\A0216573.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP657\A0216574.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP657\A0217571.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP657\A0217574.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP657\A0218571.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP657\A0218572.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP658\A0222575.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP658\A0223573.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP658\A0223574.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP658\A0224572.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP658\A0224573.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP659\A0225571.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP659\A0225572.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP659\A0227610.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP659\A0228610.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP659\A0228611.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP660\A0230611.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP660\A0230612.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP660\A0230628.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP660\A0230645.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP660\A0230646.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP660\A0231652.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP660\A0232648.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP660\A0234652.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP660\A0234653.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP661\A0235647.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP661\A0236670.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP661\A0236672.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP661\A0237670.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP661\A0237674.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP661\A0239668.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP662\A0240658.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP662\A0240680.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP662\A0242669.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP662\A0242682.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP662\A0242683.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP662\A0243685.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP662\A0244684.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP662\A0244685.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP662\A0245685.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0246704.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0247704.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0247705.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0247706.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0248703.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0249692.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0249704.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0249735.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0249736.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0250732.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0250739.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0251734.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0251735.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0252733.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0252734.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0252747.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0252761.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0252762.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0253759.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0253765.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0255761.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0255765.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0256758.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0258770.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0260771.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0265772.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0265773.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0266775.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0267773.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0267779.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0268774.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0268775.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0269777.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0270831.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0272775.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0273771.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0273772.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0274772.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0274773.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0275773.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0276772.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0277773.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0280775.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0280776.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0280794.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0281780.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP664\A0285780.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP665\A0290800.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP665\A0295791.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP666\A0314908.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP666\A0314916.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP666\A0314920.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP666\A0314938.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP676\A0327001.dll (Adware.Starware) -> Quarantined and deleted successfully.
C:\ToolBar SD\Backup-TB\Program Files\Starware370\Starware370.dll (Adware.Starware) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\bI5LF01u.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\bI5LF01u.exe.vir (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\busulupa.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dozepiwa.dll.tmp (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\fV65485V.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\gavuzeyi.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\gifuyovi.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\hakaduki.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\hX32152X(2).dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\jepewosi.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\kibemole(2).dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\kukolare.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\metigime.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\potozahe.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\sonewibu.dll.vir (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\temupuri.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\vunoyedi.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\yeneseje.dll.vir (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\Temp\oyaX0dSI.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\bI5LF01u.exe.a_a (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\fV65485V.exe.a_a (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\SC8yh47A.exe.a_a (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dajifuji.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\zugezevu.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\jepazeje.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\vajafeti.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\leheziti.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\jahomayo.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\hagiyobi.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\nezogeju.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\gogogahi.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\fomikago.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
Voila le rapport avec Malwarebytes' Anti-Malware:
Malwarebytes' Anti-Malware 1.32
Version de la base de données: 1638
Windows 5.1.2600 Service Pack 2
11/01/2009 17:41:47
mbam-log-2009-01-11 (17-41-47).txt
Type de recherche: Examen complet (C:\|D:\|)
Eléments examinés: 169620
Temps écoulé: 2 hour(s), 0 minute(s), 16 second(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 27
Valeur(s) du Registre infectée(s): 2
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 288
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2fccf445-cdc4-4e98-8d12-89cdabca3c71} (Trojan.Vundo.H) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{2fccf445-cdc4-4e98-8d12-89cdabca3c71} (Trojan.Vundo.H) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\minibugtransporter.minibugtransporterx (Adware.Minibug) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{3c2d2a1e-031f-4397-9614-87c932a848e0} (Adware.Minibug) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{04a38f6b-006f-4247-ba4c-02a139d5531c} (Adware.Minibug) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{2b96d5cc-c5b5-49a5-a69d-cc0a30f9028c} (Adware.Minibug) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\minibugtransporter.minibugtransporterx.1 (Adware.Minibug) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\solution.solution (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{00476c87-a276-49bf-86bc-ff005732430b} (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{892b2785-b0d0-4aa2-ae6a-0ed60b00a979} (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{99c6d1bb-7555-474c-91da-d8fb62a9cc75} (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{99c6d1bb-7555-474c-91da-d8fb62a9cc75} (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99c6d1bb-7555-474c-91da-d8fb62a9cc75} (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\solution.solution.1 (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{e81cf86b-f683-422a-b742-3f2427ea9d6a} (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{f919fbd3-a96b-4679-af26-f551439bb5fd} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{09f1adac-76d8-4d0f-99a5-5c907dadb988} (Rogue.Multiple) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{b64f4a7c-97c9-11da-8bde-f66bad1e3f3a} (Rogue.WinAntivirus) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1962c5bc-e475-465b-823b-133e711bceb9} (Adware.Starware) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{5f90c0e3-4c0a-4d54-a8ac-5afe6163a99e} (Adware.Starware) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{1962c5bc-e475-465b-823b-133e711bceb9} (Adware.Starware) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{e550dc77-ef3b-474f-b59c-b3e2aa1fa6a5} (Adware.Starware) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\contim (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\dslcnnct (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\rdfa (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\starware370 (Adware.Starware) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\starware370 (Adware.Starware) -> Quarantined and deleted successfully.
Valeur(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\gulafubuga (Trojan.Vundo.H) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\C:\Program Files\Fichiers communs\Real\WeatherBug\MiniBugTransporter.dll (Adware.Minibug) -> Quarantined and deleted successfully.
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
C:\WINDOWS\system32\bawayeka.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\akeyawab.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\davafuhu.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\uhufavad.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\fakahale.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\elahakaf.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\fobunayi.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\iyanubof.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\fohajifu.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ufijahof.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\fosajugu.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ugujasof.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\gagekije.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ejikegag.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\galifure.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\erufilag.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\gehuseda.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\adesuheg.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\gijareso.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\oserajig.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\gilefede.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\edefelig.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\hinilezo.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ozelinih.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\hiyokovu.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\uvokoyih.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\liwoduki.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ikudowil.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\modufime.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\emifudom.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\nigokeyo.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\oyekogin.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\purahulu.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\uluharup.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\rinafala.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\alafanir.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\sikatodo.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\odotakis.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\sodimafe.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\efamidos.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\vabejodu.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\udojebav.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\wasodoku.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ukodosaw.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\wekenopo.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\oponekew.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\yakiyetu.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\uteyikay.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\yevigatu.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\utagivey.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\yolefode.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\edofeloy.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\zabinose.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\esonibaz.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\zadoleso.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\oselodaz.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\zimizapa.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\apazimiz.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Program Files\Fichiers communs\Real\WeatherBug\MiniBugTransporter.dll (Adware.Minibug) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\hX32152X.dll (Trojan.BHO) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Propriétaire\Local Settings\Temp\3yEPNJ4P.exe (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Propriétaire\Local Settings\Temp\42g1275i.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Propriétaire\Local Settings\Temp\7nu07ql4.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Propriétaire\Local Settings\Temp\8tkg35Gr.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Propriétaire\Local Settings\Temp\B8AblG1L.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Propriétaire\Local Settings\Temp\BC8xN05p.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Propriétaire\Local Settings\Temp\CPHrR3P3.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Propriétaire\Local Settings\Temp\cW2j3l2M.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Propriétaire\Local Settings\Temp\f3jrMX2p.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Propriétaire\Local Settings\Temp\f3pxT44C.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Propriétaire\Local Settings\Temp\K5wym3Xy.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Propriétaire\Local Settings\Temp\K75OQinD.exe (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Documents and Settings\HP_Propriétaire\Local Settings\Temp\s4428o8r.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP627\A0174738.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP627\A0174797.dll (Trojan.BHO) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP627\A0174798.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP627\A0174875.dll (Trojan.BHO) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP627\A0174876.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP627\A0174910.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP627\A0174933.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP628\A0174941.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP628\A0174986.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP628\A0175002.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP629\A0175018.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP629\A0175039.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP629\A0175053.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP629\A0175179.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP630\A0175209.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP630\A0175225.exe (Trojan.Swizzor) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP631\A0176227.exe (Trojan.Swizzor) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP631\A0177229.exe (Trojan.Swizzor) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP631\A0177264.exe (Trojan.Swizzor) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP631\A0177335.exe (Trojan.Swizzor) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP632\A0177346.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP632\A0177347.exe (Trojan.Swizzor) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP638\A0177666.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP638\A0177667.exe (Trojan.Swizzor) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP644\A0177967.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP644\A0177968.exe (Trojan.Swizzor) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP644\A0178609.exe (Trojan.Swizzor) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP644\A0178610.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP645\A0178632.exe (Trojan.Swizzor) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP645\A0178634.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP645\A0178655.exe (Trojan.Swizzor) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP645\A0178660.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP645\A0180653.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP645\A0180654.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP645\A0180674.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP645\A0180675.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP645\A0181673.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP645\A0181674.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP645\A0181693.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP645\A0181696.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP646\A0181714.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP646\A0181720.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP646\A0181739.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP646\A0181796.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP646\A0182735.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP646\A0182738.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP646\A0182755.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP646\A0182772.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP646\A0182773.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP646\A0184773.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP647\A0184892.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP647\A0184893.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP647\A0184898.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP647\A0186899.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP647\A0186900.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP650\A0188280.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP650\A0188350.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP650\A0188396.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP650\A0188410.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP650\A0189414.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP651\A0190416.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP651\A0190417.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP651\A0192439.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP651\A0193412.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP651\A0194411.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP651\A0195433.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP651\A0196450.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP651\A0196451.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP651\A0196464.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP651\A0196465.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP651\A0196470.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP652\A0197454.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP654\A0204502.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP654\A0205577.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP654\A0205591.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP655\A0206492.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP655\A0206493.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP655\A0207511.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP655\A0208524.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP655\A0209547.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP655\A0210548.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP655\A0210557.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP655\A0210573.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP655\A0210574.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP656\A0211573.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP656\A0211574.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP656\A0214576.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP656\A0214577.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP657\A0216573.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP657\A0216574.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP657\A0217571.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP657\A0217574.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP657\A0218571.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP657\A0218572.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP658\A0222575.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP658\A0223573.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP658\A0223574.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP658\A0224572.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP658\A0224573.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP659\A0225571.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP659\A0225572.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP659\A0227610.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP659\A0228610.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP659\A0228611.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP660\A0230611.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP660\A0230612.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP660\A0230628.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP660\A0230645.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP660\A0230646.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP660\A0231652.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP660\A0232648.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP660\A0234652.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP660\A0234653.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP661\A0235647.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP661\A0236670.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP661\A0236672.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP661\A0237670.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP661\A0237674.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP661\A0239668.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP662\A0240658.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP662\A0240680.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP662\A0242669.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP662\A0242682.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP662\A0242683.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP662\A0243685.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP662\A0244684.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP662\A0244685.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP662\A0245685.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0246704.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0247704.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0247705.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0247706.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0248703.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0249692.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0249704.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0249735.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0249736.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0250732.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0250739.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0251734.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0251735.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0252733.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0252734.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0252747.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0252761.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0252762.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0253759.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0253765.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0255761.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0255765.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0256758.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0258770.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0260771.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0265772.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0265773.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0266775.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0267773.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0267779.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0268774.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0268775.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0269777.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0270831.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0272775.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0273771.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0273772.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0274772.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0274773.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0275773.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0276772.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0277773.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0280775.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0280776.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0280794.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP663\A0281780.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP664\A0285780.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP665\A0290800.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP665\A0295791.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP666\A0314908.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP666\A0314916.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP666\A0314920.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP666\A0314938.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP676\A0327001.dll (Adware.Starware) -> Quarantined and deleted successfully.
C:\ToolBar SD\Backup-TB\Program Files\Starware370\Starware370.dll (Adware.Starware) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\bI5LF01u.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\bI5LF01u.exe.vir (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\busulupa.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dozepiwa.dll.tmp (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\fV65485V.exe (Trojan.Adclicker) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\gavuzeyi.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\gifuyovi.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\hakaduki.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\hX32152X(2).dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\jepewosi.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\kibemole(2).dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\kukolare.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\metigime.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\potozahe.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\sonewibu.dll.vir (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\temupuri.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\vunoyedi.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\yeneseje.dll.vir (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\Temp\oyaX0dSI.exe (Trojan.Clicker) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\bI5LF01u.exe.a_a (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\fV65485V.exe.a_a (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\SC8yh47A.exe.a_a (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dajifuji.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\zugezevu.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\jepazeje.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\vajafeti.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\leheziti.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\jahomayo.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\hagiyobi.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\nezogeju.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\gogogahi.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\fomikago.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
ludsfa
Messages postés
1284
Date d'inscription
dimanche 3 février 2008
Statut
Membre
Dernière intervention
15 janvier 2018
15
26 déc. 2008 à 23:36
26 déc. 2008 à 23:36
bonsoir,
télécharge Navilog (IL-MAFIOSO)
Enregistre-le sur ton Bureau.
Lance l'installation en double cliquant sur navilog.exe.
Une fois l'installation terminée, l'utilitaire s'exécutera automatiquement.
(Si ce n'est pas le cas, double clique sur le raccourci présent sur le Bureau)
Laisse-toi guider par l'utilitaire. Choisis l'option 1 puis valide.
! N'utilise pas l'option 2, 3 et 4 sans notre accord !
Patiente jusqu'à l'apparition de ce message :
"*** Analyse Termine le ..... ***"
Appuie sur une touche comme demandé. Le Bloc-notes va s'ouvrir. Poste-nous son contenu de cette manière :
-> Edition / Sélectionner tout
-> Edition / Copier
-> Clique-Droit / Coller dans ta réponse
NOTE : Le rapport se trouve également ici : C:\fixnavi.txt
télécharge Navilog (IL-MAFIOSO)
Enregistre-le sur ton Bureau.
Lance l'installation en double cliquant sur navilog.exe.
Une fois l'installation terminée, l'utilitaire s'exécutera automatiquement.
(Si ce n'est pas le cas, double clique sur le raccourci présent sur le Bureau)
Laisse-toi guider par l'utilitaire. Choisis l'option 1 puis valide.
! N'utilise pas l'option 2, 3 et 4 sans notre accord !
Patiente jusqu'à l'apparition de ce message :
"*** Analyse Termine le ..... ***"
Appuie sur une touche comme demandé. Le Bloc-notes va s'ouvrir. Poste-nous son contenu de cette manière :
-> Edition / Sélectionner tout
-> Edition / Copier
-> Clique-Droit / Coller dans ta réponse
NOTE : Le rapport se trouve également ici : C:\fixnavi.txt
Le rapport avec Navilog :
Search Navipromo version 3.7.0 commencé le 27/12/2008 à 0:07:28,07
!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!
!!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!!
Outil exécuté depuis C:\Program Files\navilog1
Mise à jour le 10.12.2008 à 21h00 par IL-MAFIOSO
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : Intel(R) Pentium(R) 4 CPU 2.93GHz )
BIOS : v3.06
USER : HP_Propriétaire ( Administrator )
BOOT : Normal boot
C:\ (Local Disk) - NTFS - Total:179 Go (Free:151 Go)
D:\ (Local Disk) - NTFS - Total:6 Go (Free:6 Go)
E:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)
H:\ (USB)
I:\ (USB)
J:\ (USB)
K:\ (USB)
Recherche executé en mode normal
*** Recherche Programmes installés ***
*** Recherche dossiers dans "C:\WINDOWS" ***
*** Recherche dossiers dans "C:\Program Files" ***
*** Recherche dossiers dans "C:\Documents and Settings\All Users\menudm~1\progra~1" ***
*** Recherche dossiers dans "C:\Documents and Settings\All Users\menudm~1" ***
*** Recherche dossiers dans "c:\docume~1\alluse~1\applic~1" ***
*** Recherche dossiers dans "C:\Documents and Settings\HP_Propriétaire\applic~1" ***
*** Recherche dossiers dans "C:\DOCUME~1\ANDRA~1\applic~1" ***
*** Recherche dossiers dans "C:\Documents and Settings\HP_Propriétaire\locals~1\applic~1" ***
*** Recherche dossiers dans "C:\DOCUME~1\ANDRA~1\locals~1\applic~1" ***
*** Recherche dossiers dans "C:\Documents and Settings\HP_Propriétaire\menudm~1\progra~1" ***
*** Recherche dossiers dans "C:\DOCUME~1\ANDRA~1\menudm~1\progra~1" ***
*** Recherche avec Catchme-rootkit/stealth malware detector par gmer ***
pour + d'infos : http://www.gmer.net
*** Recherche avec GenericNaviSearch ***
!!! Tous ces résultats peuvent révéler des fichiers légitimes !!!
!!! A vérifier impérativement avant toute suppression manuelle !!!
* Recherche dans "C:\WINDOWS\system32" *
* Recherche dans "C:\Documents and Settings\HP_Propriétaire\locals~1\applic~1" *
* Recherche dans "C:\DOCUME~1\ANDRA~1\locals~1\applic~1" *
*** Recherche fichiers ***
*** Recherche clés spécifiques dans le Registre ***
!! Les clés trouvées ne sont pas forcément infectées !!
*** Module de Recherche complémentaire ***
(Recherche fichiers spécifiques)
1)Recherche nouveaux fichiers Instant Access :
2)Recherche Heuristique :
* Dans "C:\WINDOWS\system32" :
* Dans "C:\Documents and Settings\HP_Propriétaire\locals~1\applic~1" :
* Dans "C:\DOCUME~1\ANDRA~1\locals~1\applic~1" :
3)Recherche Certificats :
Certificat Egroup absent !
Certificat Electronic-Group absent !
Certificat Montorgueil absent !
Certificat OOO-Favorit absent !
Certificat Sunny-Day-Design-Ltd absent !
4)Recherche autres dossiers et fichiers connus :
AF59A4E991865681.job trouvé ! Infection Lop possible non traitée par cet outil !
*** Analyse terminée le 27/12/2008 à 0:25:50,07 ***
Search Navipromo version 3.7.0 commencé le 27/12/2008 à 0:07:28,07
!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!
!!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!!
Outil exécuté depuis C:\Program Files\navilog1
Mise à jour le 10.12.2008 à 21h00 par IL-MAFIOSO
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : Intel(R) Pentium(R) 4 CPU 2.93GHz )
BIOS : v3.06
USER : HP_Propriétaire ( Administrator )
BOOT : Normal boot
C:\ (Local Disk) - NTFS - Total:179 Go (Free:151 Go)
D:\ (Local Disk) - NTFS - Total:6 Go (Free:6 Go)
E:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)
H:\ (USB)
I:\ (USB)
J:\ (USB)
K:\ (USB)
Recherche executé en mode normal
*** Recherche Programmes installés ***
*** Recherche dossiers dans "C:\WINDOWS" ***
*** Recherche dossiers dans "C:\Program Files" ***
*** Recherche dossiers dans "C:\Documents and Settings\All Users\menudm~1\progra~1" ***
*** Recherche dossiers dans "C:\Documents and Settings\All Users\menudm~1" ***
*** Recherche dossiers dans "c:\docume~1\alluse~1\applic~1" ***
*** Recherche dossiers dans "C:\Documents and Settings\HP_Propriétaire\applic~1" ***
*** Recherche dossiers dans "C:\DOCUME~1\ANDRA~1\applic~1" ***
*** Recherche dossiers dans "C:\Documents and Settings\HP_Propriétaire\locals~1\applic~1" ***
*** Recherche dossiers dans "C:\DOCUME~1\ANDRA~1\locals~1\applic~1" ***
*** Recherche dossiers dans "C:\Documents and Settings\HP_Propriétaire\menudm~1\progra~1" ***
*** Recherche dossiers dans "C:\DOCUME~1\ANDRA~1\menudm~1\progra~1" ***
*** Recherche avec Catchme-rootkit/stealth malware detector par gmer ***
pour + d'infos : http://www.gmer.net
*** Recherche avec GenericNaviSearch ***
!!! Tous ces résultats peuvent révéler des fichiers légitimes !!!
!!! A vérifier impérativement avant toute suppression manuelle !!!
* Recherche dans "C:\WINDOWS\system32" *
* Recherche dans "C:\Documents and Settings\HP_Propriétaire\locals~1\applic~1" *
* Recherche dans "C:\DOCUME~1\ANDRA~1\locals~1\applic~1" *
*** Recherche fichiers ***
*** Recherche clés spécifiques dans le Registre ***
!! Les clés trouvées ne sont pas forcément infectées !!
*** Module de Recherche complémentaire ***
(Recherche fichiers spécifiques)
1)Recherche nouveaux fichiers Instant Access :
2)Recherche Heuristique :
* Dans "C:\WINDOWS\system32" :
* Dans "C:\Documents and Settings\HP_Propriétaire\locals~1\applic~1" :
* Dans "C:\DOCUME~1\ANDRA~1\locals~1\applic~1" :
3)Recherche Certificats :
Certificat Egroup absent !
Certificat Electronic-Group absent !
Certificat Montorgueil absent !
Certificat OOO-Favorit absent !
Certificat Sunny-Day-Design-Ltd absent !
4)Recherche autres dossiers et fichiers connus :
AF59A4E991865681.job trouvé ! Infection Lop possible non traitée par cet outil !
*** Analyse terminée le 27/12/2008 à 0:25:50,07 ***
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
ludsfa
Messages postés
1284
Date d'inscription
dimanche 3 février 2008
Statut
Membre
Dernière intervention
15 janvier 2018
15
26 déc. 2008 à 23:46
26 déc. 2008 à 23:46
ok , avant navlog fais ceci:
Télécharge puis installe Hijackthis (Trend Micro)
Poste ensuite un rapport dans ta prochaine réponse.
AIDE : Comment utiliser Hijackthis v2.0.2 :
http://www.infos-du-net.com/forum/271838-11-tuto-utiliser-hijackthis
Télécharge puis installe Hijackthis (Trend Micro)
Poste ensuite un rapport dans ta prochaine réponse.
AIDE : Comment utiliser Hijackthis v2.0.2 :
http://www.infos-du-net.com/forum/271838-11-tuto-utiliser-hijackthis
ludsfa
Messages postés
1284
Date d'inscription
dimanche 3 février 2008
Statut
Membre
Dernière intervention
15 janvier 2018
15
27 déc. 2008 à 00:00
27 déc. 2008 à 00:00
Tu as réussis à télécharger Navlog??
ludsfa
Messages postés
1284
Date d'inscription
dimanche 3 février 2008
Statut
Membre
Dernière intervention
15 janvier 2018
15
27 déc. 2008 à 00:07
27 déc. 2008 à 00:07
ok voilà ce que tu va faire fais le scan navilog envois le moi et ensuite on va voir pour ce souci.
ludsfa
Messages postés
1284
Date d'inscription
dimanche 3 février 2008
Statut
Membre
Dernière intervention
15 janvier 2018
15
27 déc. 2008 à 00:31
27 déc. 2008 à 00:31
pas de soucis.
ludsfa
Messages postés
1284
Date d'inscription
dimanche 3 février 2008
Statut
Membre
Dernière intervention
15 janvier 2018
15
27 déc. 2008 à 01:04
27 déc. 2008 à 01:04
je veux dire que j'attend ton rapport
Le rapport avec Navilog :
Search Navipromo version 3.7.0 commencé le 27/12/2008 à 0:07:28,07
!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!
!!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!!
Outil exécuté depuis C:\Program Files\navilog1
Mise à jour le 10.12.2008 à 21h00 par IL-MAFIOSO
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : Intel(R) Pentium(R) 4 CPU 2.93GHz )
BIOS : v3.06
USER : HP_Propriétaire ( Administrator )
BOOT : Normal boot
C:\ (Local Disk) - NTFS - Total:179 Go (Free:151 Go)
D:\ (Local Disk) - NTFS - Total:6 Go (Free:6 Go)
E:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)
H:\ (USB)
I:\ (USB)
J:\ (USB)
K:\ (USB)
Recherche executé en mode normal
*** Recherche Programmes installés ***
*** Recherche dossiers dans "C:\WINDOWS" ***
*** Recherche dossiers dans "C:\Program Files" ***
*** Recherche dossiers dans "C:\Documents and Settings\All Users\menudm~1\progra~1" ***
*** Recherche dossiers dans "C:\Documents and Settings\All Users\menudm~1" ***
*** Recherche dossiers dans "c:\docume~1\alluse~1\applic~1" ***
*** Recherche dossiers dans "C:\Documents and Settings\HP_Propriétaire\applic~1" ***
*** Recherche dossiers dans "C:\DOCUME~1\ANDRA~1\applic~1" ***
*** Recherche dossiers dans "C:\Documents and Settings\HP_Propriétaire\locals~1\applic~1" ***
*** Recherche dossiers dans "C:\DOCUME~1\ANDRA~1\locals~1\applic~1" ***
*** Recherche dossiers dans "C:\Documents and Settings\HP_Propriétaire\menudm~1\progra~1" ***
*** Recherche dossiers dans "C:\DOCUME~1\ANDRA~1\menudm~1\progra~1" ***
*** Recherche avec Catchme-rootkit/stealth malware detector par gmer ***
pour + d'infos : http://www.gmer.net
*** Recherche avec GenericNaviSearch ***
!!! Tous ces résultats peuvent révéler des fichiers légitimes !!!
!!! A vérifier impérativement avant toute suppression manuelle !!!
* Recherche dans "C:\WINDOWS\system32" *
* Recherche dans "C:\Documents and Settings\HP_Propriétaire\locals~1\applic~1" *
* Recherche dans "C:\DOCUME~1\ANDRA~1\locals~1\applic~1" *
*** Recherche fichiers ***
*** Recherche clés spécifiques dans le Registre ***
!! Les clés trouvées ne sont pas forcément infectées !!
*** Module de Recherche complémentaire ***
(Recherche fichiers spécifiques)
1)Recherche nouveaux fichiers Instant Access :
2)Recherche Heuristique :
* Dans "C:\WINDOWS\system32" :
* Dans "C:\Documents and Settings\HP_Propriétaire\locals~1\applic~1" :
* Dans "C:\DOCUME~1\ANDRA~1\locals~1\applic~1" :
3)Recherche Certificats :
Certificat Egroup absent !
Certificat Electronic-Group absent !
Certificat Montorgueil absent !
Certificat OOO-Favorit absent !
Certificat Sunny-Day-Design-Ltd absent !
4)Recherche autres dossiers et fichiers connus :
AF59A4E991865681.job trouvé ! Infection Lop possible non traitée par cet outil !
*** Analyse terminée le 27/12/2008 à 0:25:50,07 ***
Search Navipromo version 3.7.0 commencé le 27/12/2008 à 0:07:28,07
!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!
!!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!!
Outil exécuté depuis C:\Program Files\navilog1
Mise à jour le 10.12.2008 à 21h00 par IL-MAFIOSO
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : Intel(R) Pentium(R) 4 CPU 2.93GHz )
BIOS : v3.06
USER : HP_Propriétaire ( Administrator )
BOOT : Normal boot
C:\ (Local Disk) - NTFS - Total:179 Go (Free:151 Go)
D:\ (Local Disk) - NTFS - Total:6 Go (Free:6 Go)
E:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)
H:\ (USB)
I:\ (USB)
J:\ (USB)
K:\ (USB)
Recherche executé en mode normal
*** Recherche Programmes installés ***
*** Recherche dossiers dans "C:\WINDOWS" ***
*** Recherche dossiers dans "C:\Program Files" ***
*** Recherche dossiers dans "C:\Documents and Settings\All Users\menudm~1\progra~1" ***
*** Recherche dossiers dans "C:\Documents and Settings\All Users\menudm~1" ***
*** Recherche dossiers dans "c:\docume~1\alluse~1\applic~1" ***
*** Recherche dossiers dans "C:\Documents and Settings\HP_Propriétaire\applic~1" ***
*** Recherche dossiers dans "C:\DOCUME~1\ANDRA~1\applic~1" ***
*** Recherche dossiers dans "C:\Documents and Settings\HP_Propriétaire\locals~1\applic~1" ***
*** Recherche dossiers dans "C:\DOCUME~1\ANDRA~1\locals~1\applic~1" ***
*** Recherche dossiers dans "C:\Documents and Settings\HP_Propriétaire\menudm~1\progra~1" ***
*** Recherche dossiers dans "C:\DOCUME~1\ANDRA~1\menudm~1\progra~1" ***
*** Recherche avec Catchme-rootkit/stealth malware detector par gmer ***
pour + d'infos : http://www.gmer.net
*** Recherche avec GenericNaviSearch ***
!!! Tous ces résultats peuvent révéler des fichiers légitimes !!!
!!! A vérifier impérativement avant toute suppression manuelle !!!
* Recherche dans "C:\WINDOWS\system32" *
* Recherche dans "C:\Documents and Settings\HP_Propriétaire\locals~1\applic~1" *
* Recherche dans "C:\DOCUME~1\ANDRA~1\locals~1\applic~1" *
*** Recherche fichiers ***
*** Recherche clés spécifiques dans le Registre ***
!! Les clés trouvées ne sont pas forcément infectées !!
*** Module de Recherche complémentaire ***
(Recherche fichiers spécifiques)
1)Recherche nouveaux fichiers Instant Access :
2)Recherche Heuristique :
* Dans "C:\WINDOWS\system32" :
* Dans "C:\Documents and Settings\HP_Propriétaire\locals~1\applic~1" :
* Dans "C:\DOCUME~1\ANDRA~1\locals~1\applic~1" :
3)Recherche Certificats :
Certificat Egroup absent !
Certificat Electronic-Group absent !
Certificat Montorgueil absent !
Certificat OOO-Favorit absent !
Certificat Sunny-Day-Design-Ltd absent !
4)Recherche autres dossiers et fichiers connus :
AF59A4E991865681.job trouvé ! Infection Lop possible non traitée par cet outil !
*** Analyse terminée le 27/12/2008 à 0:25:50,07 ***
Utilisateur anonyme
27 déc. 2008 à 10:19
27 déc. 2008 à 10:19
hehe tu vois ? =)
Fait lui passer Toolscleaner2 et retelecharger Hijackthis apres peut-etre que ca marchera!
Fait lui passer Toolscleaner2 et retelecharger Hijackthis apres peut-etre que ca marchera!
Utilisateur anonyme
27 déc. 2008 à 11:15
27 déc. 2008 à 11:15
Oui du bon vieux LOP ! =D
Si hijackthis ne marche pas, faudra verifier un eventuel Bagle.
Si hijackthis ne marche pas, faudra verifier un eventuel Bagle.
Bonjour,
Voila le rapport de HijackThis :
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:48:13, on 27/12/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\hphmon06.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\ALCWZRD.EXE
C:\WINDOWS\ALCMTR.EXE
C:\WINDOWS\system32\LXSUPMON.EXE
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Neuf\Kit\WiFi\9wifi.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\rundll32.exe
C:\PROGRA~1\WI1F86~1\MESSEN~1\msnmsgr.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\PROGRA~1\WI1F86~1\MESSEN~1\msnmsgr.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.neuf.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q305&bd=pavilion&pf=desktop
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://actus.sfr.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://actus.sfr.fr
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.msn.com/fr-fr?cobrand=hp-desktop.msn.com&ocid=HPDHP&pc=HPDTDF
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll
R3 - URLSearchHook: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: XTTBPos00 Class - {055FD26D-3A88-4e15-963D-DC8493744B1D} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: SWEETIE Class - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - C:\PROGRA~1\MACROG~1\SWEETI~1\toolbar.dll
O2 - BHO: (no name) - {2fccf445-cdc4-4e98-8d12-89cdabca3c71} - C:\WINDOWS\system32\memezori.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5f90c0e3-4c0a-4d54-a8ac-5afe6163a99e} - C:\PROGRAM FILES\STARWARE370\BIN\STARWARE370.DLL
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: solution Class - {99C6D1BB-7555-474C-91DA-D8FB62A9CC75} - C:\WINDOWS\system32\hX32152X.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.1.807.1746\swg.dll
O3 - Toolbar: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll
O3 - Toolbar: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
O3 - Toolbar: Starware Toolbar Musique - {1962c5bc-e475-465b-823b-133e711bceb9} - C:\PROGRAM FILES\STARWARE370\BIN\STARWARE370.DLL
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [Raccourci vers la page des propriétés de High Definition Audio] HDAudPropShortcut.exe
O4 - HKLM\..\Run: [HPHUPD06] c:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe
O4 - HKLM\..\Run: [HPHmon06] C:\WINDOWS\system32\hphmon06.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
O4 - HKLM\..\Run: [PrinTray] C:\WINDOWS\System32\spool\DRIVERS\W32X86\2\printray.exe
O4 - HKLM\..\Run: [LXSUPMON] C:\WINDOWS\system32\LXSUPMON.EXE RUN
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Autoconfigurateur WiFi Neuf] "C:\Program Files\Neuf\Kit\WiFi\9wifi.exe"
O4 - HKLM\..\Run: [gulafubuga] Rundll32.exe "C:\WINDOWS\system32\poviwumi.dll",s
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [4c731f48] rundll32.exe "C:\WINDOWS\system32\zabinose.dll",b
O4 - HKLM\..\Run: [CPM4f402cd4] Rundll32.exe "c:\windows\system32\vevinaho.dll",a
O4 - HKCU\..\Run: [msnmsgr] "C:\PROGRA~1\WI1F86~1\MESSEN~1\msnmsgr.exe" /background
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [gulafubuga] Rundll32.exe "C:\WINDOWS\system32\poviwumi.dll",s (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\FlashUtil9e.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\FlashUtil9e.exe (User 'Default user')
O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: HP Photosmart Premier Fast Start.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: Les Sims 2 Nuits de Folie
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O8 - Extra context menu item: &ICQ Toolbar Search - res://C:\Program Files\ICQToolbar\toolbaru.dll/SEARCH.HTML
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Download with Go!Zilla - file://C:\Program Files\Go!Zilla\download-with-gozilla.html
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?06d9a862c09e4bb0a2fc4b330bb7d5c4
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?06d9a862c09e4bb0a2fc4b330bb7d5c4
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm (HKCU)
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm (HKCU)
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.mail.live.com/mail/w1/resources/MSNPUpld.cab
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O20 - AppInit_DLLs: c:\windows\system32\bugudesi.dll C:\WINDOWS\system32\gupuvefa.dll c:\windows\system32\vevinaho.dll
O21 - SSODL: SSODL - {EC43E3FD-5C60-46a6-97D7-E0B85DBDD6C4} - c:\windows\system32\vevinaho.dll
O22 - SharedTaskScheduler: STS - {EC43E3FD-5C60-46a6-97D7-E0B85DBDD6C4} - c:\windows\system32\vevinaho.dll
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
Voila le rapport de HijackThis :
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:48:13, on 27/12/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\hphmon06.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\ALCWZRD.EXE
C:\WINDOWS\ALCMTR.EXE
C:\WINDOWS\system32\LXSUPMON.EXE
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Neuf\Kit\WiFi\9wifi.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\rundll32.exe
C:\PROGRA~1\WI1F86~1\MESSEN~1\msnmsgr.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\PROGRA~1\WI1F86~1\MESSEN~1\msnmsgr.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.neuf.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q305&bd=pavilion&pf=desktop
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://actus.sfr.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://actus.sfr.fr
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.msn.com/fr-fr?cobrand=hp-desktop.msn.com&ocid=HPDHP&pc=HPDTDF
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll
R3 - URLSearchHook: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: XTTBPos00 Class - {055FD26D-3A88-4e15-963D-DC8493744B1D} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: SWEETIE Class - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - C:\PROGRA~1\MACROG~1\SWEETI~1\toolbar.dll
O2 - BHO: (no name) - {2fccf445-cdc4-4e98-8d12-89cdabca3c71} - C:\WINDOWS\system32\memezori.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5f90c0e3-4c0a-4d54-a8ac-5afe6163a99e} - C:\PROGRAM FILES\STARWARE370\BIN\STARWARE370.DLL
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: solution Class - {99C6D1BB-7555-474C-91DA-D8FB62A9CC75} - C:\WINDOWS\system32\hX32152X.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.1.807.1746\swg.dll
O3 - Toolbar: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll
O3 - Toolbar: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
O3 - Toolbar: Starware Toolbar Musique - {1962c5bc-e475-465b-823b-133e711bceb9} - C:\PROGRAM FILES\STARWARE370\BIN\STARWARE370.DLL
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [Raccourci vers la page des propriétés de High Definition Audio] HDAudPropShortcut.exe
O4 - HKLM\..\Run: [HPHUPD06] c:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe
O4 - HKLM\..\Run: [HPHmon06] C:\WINDOWS\system32\hphmon06.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
O4 - HKLM\..\Run: [PrinTray] C:\WINDOWS\System32\spool\DRIVERS\W32X86\2\printray.exe
O4 - HKLM\..\Run: [LXSUPMON] C:\WINDOWS\system32\LXSUPMON.EXE RUN
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Autoconfigurateur WiFi Neuf] "C:\Program Files\Neuf\Kit\WiFi\9wifi.exe"
O4 - HKLM\..\Run: [gulafubuga] Rundll32.exe "C:\WINDOWS\system32\poviwumi.dll",s
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [4c731f48] rundll32.exe "C:\WINDOWS\system32\zabinose.dll",b
O4 - HKLM\..\Run: [CPM4f402cd4] Rundll32.exe "c:\windows\system32\vevinaho.dll",a
O4 - HKCU\..\Run: [msnmsgr] "C:\PROGRA~1\WI1F86~1\MESSEN~1\msnmsgr.exe" /background
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [gulafubuga] Rundll32.exe "C:\WINDOWS\system32\poviwumi.dll",s (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\FlashUtil9e.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\FlashUtil9e.exe (User 'Default user')
O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: HP Photosmart Premier Fast Start.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: Les Sims 2 Nuits de Folie
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O8 - Extra context menu item: &ICQ Toolbar Search - res://C:\Program Files\ICQToolbar\toolbaru.dll/SEARCH.HTML
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Download with Go!Zilla - file://C:\Program Files\Go!Zilla\download-with-gozilla.html
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?06d9a862c09e4bb0a2fc4b330bb7d5c4
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?06d9a862c09e4bb0a2fc4b330bb7d5c4
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm (HKCU)
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm (HKCU)
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.mail.live.com/mail/w1/resources/MSNPUpld.cab
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O20 - AppInit_DLLs: c:\windows\system32\bugudesi.dll C:\WINDOWS\system32\gupuvefa.dll c:\windows\system32\vevinaho.dll
O21 - SSODL: SSODL - {EC43E3FD-5C60-46a6-97D7-E0B85DBDD6C4} - c:\windows\system32\vevinaho.dll
O22 - SharedTaskScheduler: STS - {EC43E3FD-5C60-46a6-97D7-E0B85DBDD6C4} - c:\windows\system32\vevinaho.dll
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
ludsfa
Messages postés
1284
Date d'inscription
dimanche 3 février 2008
Statut
Membre
Dernière intervention
15 janvier 2018
15
27 déc. 2008 à 16:44
27 déc. 2008 à 16:44
re,
Télécharge Lop S&D.exe sur ton bureau :
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
* Double-clique dessus pour lancer l'installation
* Puis double-clique sur le raccourci Lop S&D présent sur ton bureau
* Sélectionne la langue souhaitée , puis choisis l'Option 1 ( Recherche )
* Patiente jusqu'à la fin du scan
* Poste le rapport généré ( C:\lopR.txt )
( Si le Bureau ne réapparait pas presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide )
Télécharge Lop S&D.exe sur ton bureau :
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
* Double-clique dessus pour lancer l'installation
* Puis double-clique sur le raccourci Lop S&D présent sur ton bureau
* Sélectionne la langue souhaitée , puis choisis l'Option 1 ( Recherche )
* Patiente jusqu'à la fin du scan
* Poste le rapport généré ( C:\lopR.txt )
( Si le Bureau ne réapparait pas presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide )
Le rapport avec Lop S&D:
--------------------\\ Lop S&D 4.2.5-0 XP/Vista
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : Intel(R) Pentium(R) 4 CPU 2.93GHz )
BIOS : v3.06
USER : HP_Propriétaire ( Administrator )
BOOT : Normal boot
C:\ (Local Disk) - NTFS - Total:179 Go (Free:151 Go)
D:\ (Local Disk) - NTFS - Total:6 Go (Free:6 Go)
E:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)
H:\ (USB)
I:\ (USB)
J:\ (USB)
K:\ (USB)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 27/12/2008|17:02 )
--------------------\\ Listing des dossiers dans APPLIC~1
[23/12/2008|22:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[22/12/2008|13:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{5A76C6B3-3FA8-46D0-AA81-62C3805E38BC}
[22/12/2008|13:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\~0
[14/05/2006|19:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ACD Systems
[01/01/2005|15:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[29/09/2005|20:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL
[23/12/2008|22:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[03/12/2006|15:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[01/11/2008|23:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avg7
[12/03/2008|15:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[01/01/2005|15:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Hewlett-Packard
[03/11/2007|00:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\holdcurberrorjump
[20/07/2008|19:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[01/01/2005|15:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[28/11/2005|19:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[01/11/2008|23:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[14/09/2005|12:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\muvee Technologies
[31/10/2005|23:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[01/01/2005|15:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[02/11/2008|00:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Simply Super Software
[21/01/2007|22:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
[24/10/2005|19:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[27/12/2008|16:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370
[10/11/2008|15:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SUPERAntiSpyware.com
[11/03/2006|12:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[23/12/2008|22:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[06/03/2007|17:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems
[17/08/2006|11:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[26/10/2006|14:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[09/10/2008|16:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WindowsLiveInstaller
[26/10/2008|15:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[26/10/2008|15:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion
[02/04/2007|11:41] C:\DOCUME~1\ANDRA~1\APPLIC~1\AOL
[01/01/2005|15:44] C:\DOCUME~1\ANDRA~1\APPLIC~1\Apple Computer
[02/04/2007|11:41] C:\DOCUME~1\ANDRA~1\APPLIC~1\AVG7
[02/04/2007|11:42] C:\DOCUME~1\ANDRA~1\APPLIC~1\HP
[25/11/2004|04:26] C:\DOCUME~1\ANDRA~1\APPLIC~1\Identities
[01/11/2008|23:51] C:\DOCUME~1\ANDRA~1\APPLIC~1\Microsoft
[01/01/2005|15:56] C:\DOCUME~1\ANDRA~1\APPLIC~1\SampleView
[01/01/2005|16:04] C:\DOCUME~1\ANDRA~1\APPLIC~1\Symantec
[01/01/2005|15:44] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Apple Computer
[25/11/2004|04:26] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[05/07/2007|17:33] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[01/01/2005|15:56] C:\DOCUME~1\DEFAUL~1\APPLIC~1\SampleView
[01/01/2005|16:04] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec
[14/05/2006|19:35] C:\DOCUME~1\HP_PRO~1\APPLIC~1\ACD Systems
[19/11/2008|17:36] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Adobe
[28/11/2008|13:25] C:\DOCUME~1\HP_PRO~1\APPLIC~1\AdobeUM
[17/02/2006|17:03] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Ahead
[29/09/2005|20:12] C:\DOCUME~1\HP_PRO~1\APPLIC~1\AOL
[03/01/2008|22:26] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Apple Computer
[01/11/2008|23:55] C:\DOCUME~1\HP_PRO~1\APPLIC~1\AVG7
[31/10/2008|23:48] C:\DOCUME~1\HP_PRO~1\APPLIC~1\dvdcss
[31/10/2005|23:07] C:\DOCUME~1\HP_PRO~1\APPLIC~1\FotoWire
[25/02/2007|13:08] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Google
[17/03/2006|21:34] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Help
[21/01/2007|22:40] C:\DOCUME~1\HP_PRO~1\APPLIC~1\HP
[12/05/2007|17:48] C:\DOCUME~1\HP_PRO~1\APPLIC~1\ICQ
[01/05/2007|18:46] C:\DOCUME~1\HP_PRO~1\APPLIC~1\ICQ Toolbar
[25/11/2004|04:26] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Identities
[28/11/2008|19:20] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Image Zone Express
[14/09/2005|12:33] C:\DOCUME~1\HP_PRO~1\APPLIC~1\InterVideo
[09/02/2006|19:16] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Jasc
[01/05/2006|15:12] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Jasc Software Inc
[01/11/2008|23:45] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Lavasoft
[13/09/2005|16:09] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Leadertech
[03/07/2008|18:04] C:\DOCUME~1\HP_PRO~1\APPLIC~1\LimeWire
[11/12/2005|14:38] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Macromedia
[09/10/2008|19:28] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Microsoft
[11/10/2008|14:42] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Mostick
[13/05/2008|15:35] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Mozilla
[03/11/2007|00:56] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Mpeg64Each
[26/10/2008|13:19] C:\DOCUME~1\HP_PRO~1\APPLIC~1\MSNInstaller
[14/09/2005|12:35] C:\DOCUME~1\HP_PRO~1\APPLIC~1\muvee Technologies
[22/12/2008|13:35] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Real
[01/01/2005|15:56] C:\DOCUME~1\HP_PRO~1\APPLIC~1\SampleView
[02/11/2008|00:53] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Simply Super Software
[05/05/2007|23:24] C:\DOCUME~1\HP_PRO~1\APPLIC~1\SmartDraw
[13/09/2005|16:11] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Sonic
[27/12/2008|16:07] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370
[30/09/2005|15:54] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Sun
[22/12/2008|13:37] C:\DOCUME~1\HP_PRO~1\APPLIC~1\SUPERAntiSpyware.com
[29/09/2005|18:44] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Symantec
[26/08/2007|17:32] C:\DOCUME~1\HP_PRO~1\APPLIC~1\vlc
[12/09/2008|17:27] C:\DOCUME~1\LOCALS~1\APPLIC~1\Adobe
[01/11/2008|23:55] C:\DOCUME~1\LOCALS~1\APPLIC~1\AVG7
[01/09/2008|15:00] C:\DOCUME~1\LOCALS~1\APPLIC~1\Google
[01/09/2008|15:00] C:\DOCUME~1\LOCALS~1\APPLIC~1\ICQ Toolbar
[01/11/2008|23:51] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[28/10/2008|18:00] C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370
[17/12/2005|19:50] C:\DOCUME~1\LOCALS~1\APPLIC~1\Symantec
[16/07/2008|09:03] C:\DOCUME~1\NETWOR~1\APPLIC~1\Adobe
[16/07/2008|09:02] C:\DOCUME~1\NETWOR~1\APPLIC~1\Google
[16/07/2008|09:02] C:\DOCUME~1\NETWOR~1\APPLIC~1\ICQ Toolbar
[16/07/2008|09:03] C:\DOCUME~1\NETWOR~1\APPLIC~1\Macromedia
[11/11/2008|14:17] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[19/11/2008|20:03] C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[26/12/2008 23:00][--a------] C:\WINDOWS\tasks\At72.job
[26/12/2008 22:00][--a------] C:\WINDOWS\tasks\At71.job
[26/12/2008 21:00][--a------] C:\WINDOWS\tasks\At70.job
[26/12/2008 20:00][--a------] C:\WINDOWS\tasks\At69.job
[26/12/2008 19:00][--a------] C:\WINDOWS\tasks\At68.job
[26/12/2008 18:00][--a------] C:\WINDOWS\tasks\At67.job
[27/12/2008 17:00][--a------] C:\WINDOWS\tasks\At66.job
[27/12/2008 15:00][--a------] C:\WINDOWS\tasks\At64.job
[27/12/2008 16:00][--a------] C:\WINDOWS\tasks\At65.job
[21/12/2008 13:00][--a------] C:\WINDOWS\tasks\At62.job
[26/12/2008 14:00][--a------] C:\WINDOWS\tasks\At63.job
[15/12/2008 12:00][--a------] C:\WINDOWS\tasks\At61.job
[16/12/2008 11:00][--a------] C:\WINDOWS\tasks\At60.job
[08/12/2008 10:00][--a------] C:\WINDOWS\tasks\At59.job
[21/09/2008 17:31][--a------] C:\WINDOWS\tasks\At58.job
[21/09/2008 17:31][--a------] C:\WINDOWS\tasks\At57.job
[21/09/2008 17:31][--a------] C:\WINDOWS\tasks\At56.job
[21/09/2008 17:31][--a------] C:\WINDOWS\tasks\At54.job
[21/09/2008 17:31][--a------] C:\WINDOWS\tasks\At55.job
[21/09/2008 17:31][--a------] C:\WINDOWS\tasks\At53.job
[27/12/2008 02:00][--a------] C:\WINDOWS\tasks\At51.job
[21/09/2008 17:31][--a------] C:\WINDOWS\tasks\At52.job
[27/12/2008 01:00][--a------] C:\WINDOWS\tasks\At50.job
[27/12/2008 00:17][--a------] C:\WINDOWS\tasks\At49.job
[26/12/2008 23:00][--a------] C:\WINDOWS\tasks\At48.job
[26/12/2008 21:00][--a------] C:\WINDOWS\tasks\At46.job
[26/12/2008 22:00][--a------] C:\WINDOWS\tasks\At47.job
[26/12/2008 20:00][--a------] C:\WINDOWS\tasks\At45.job
[26/12/2008 19:00][--a------] C:\WINDOWS\tasks\At44.job
[26/12/2008 18:00][--a------] C:\WINDOWS\tasks\At43.job
[27/12/2008 17:00][--a------] C:\WINDOWS\tasks\At42.job
[27/12/2008 16:00][--a------] C:\WINDOWS\tasks\At41.job
[27/12/2008 15:00][--a------] C:\WINDOWS\tasks\At40.job
[26/12/2008 14:00][--a------] C:\WINDOWS\tasks\At39.job
[21/12/2008 13:07][--a------] C:\WINDOWS\tasks\At38.job
[15/12/2008 15:26][--a------] C:\WINDOWS\tasks\At37.job
[16/12/2008 12:52][--a------] C:\WINDOWS\tasks\At36.job
[08/12/2008 10:00][--a------] C:\WINDOWS\tasks\At35.job
[15/07/2008 20:58][--a------] C:\WINDOWS\tasks\At34.job
[15/07/2008 20:58][--a------] C:\WINDOWS\tasks\At33.job
[15/07/2008 20:58][--a------] C:\WINDOWS\tasks\At32.job
[15/07/2008 20:58][--a------] C:\WINDOWS\tasks\At31.job
[15/07/2008 20:58][--a------] C:\WINDOWS\tasks\At30.job
[25/07/2008 03:00][--a------] C:\WINDOWS\tasks\At29.job
[31/08/2008 02:03][--a------] C:\WINDOWS\tasks\At28.job
[27/12/2008 02:00][--a------] C:\WINDOWS\tasks\At27.job
[27/12/2008 01:00][--a------] C:\WINDOWS\tasks\At26.job
[27/12/2008 00:28][--a------] C:\WINDOWS\tasks\At25.job
[26/12/2008 18:00][--a------] C:\WINDOWS\tasks\Norton Security Scan.job
[23/12/2008 22:18][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[27/12/2008 17:00][--ah-----] C:\WINDOWS\tasks\AF59A4E991865681.job
[27/12/2008 14:27][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 19:00][-rah-----] C:\WINDOWS\tasks\desktop.ini
( AF59A4E991865681.job )=( c:\docume~1\hp_pro~1\applic~1\mpeg64~1\CoalBrowseUp.exe )
--------------------\\ MsgPlus SPONSOR INSTALLED !
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MsgPlus! Plugin]
"SponsorInstalled"=dword:00000000
--------------------\\ Listing des dossiers dans C:\Program Files
[14/05/2006|19:32] C:\Program Files\ACD Systems
[22/12/2008|13:33] C:\Program Files\Adobe
[16/09/2007|11:12] C:\Program Files\Adverts
[29/09/2005|20:03] C:\Program Files\AOL 9.0
[23/12/2008|22:18] C:\Program Files\Apple Software Update
[01/01/2005|16:12] C:\Program Files\ATI Technologies
[23/12/2008|22:19] C:\Program Files\Bonjour
[26/10/2008|15:09] C:\Program Files\CCleaner
[26/01/2008|15:46] C:\Program Files\Changer XP
[24/11/2004|02:37] C:\Program Files\ComPlus Applications
[10/01/2007|15:19] C:\Program Files\Dictionnaire
[02/04/2006|18:29] C:\Program Files\DivX
[29/06/2007|18:04] C:\Program Files\EA GAMES
[01/01/2006|23:35] C:\Program Files\Easy Internet signup
[05/05/2008|14:44] C:\Program Files\eMule
[23/12/2008|22:18] C:\Program Files\Fichiers communs
[29/10/2007|23:14] C:\Program Files\Go!Zilla
[02/11/2008|23:18] C:\Program Files\Google
[02/11/2008|00:01] C:\Program Files\Grisoft
[21/01/2007|22:23] C:\Program Files\Hewlett-Packard
[21/01/2007|22:23] C:\Program Files\HP
[01/01/2005|15:49] C:\Program Files\HPQ
[09/04/2007|20:08] C:\Program Files\ICQLite
[27/12/2008|14:45] C:\Program Files\ICQToolbar
[22/12/2008|13:30] C:\Program Files\InstallShield Installation Information
[11/11/2008|18:03] C:\Program Files\Internet Explorer
[01/01/2005|16:12] C:\Program Files\InterVideo
[23/12/2008|22:20] C:\Program Files\iPod
[23/12/2008|22:21] C:\Program Files\iTunes
[14/09/2005|15:25] C:\Program Files\Ja2
[17/10/2006|18:18] C:\Program Files\Jasc Software Inc
[29/09/2005|17:48] C:\Program Files\Java
[09/06/2008|20:25] C:\Program Files\LG Electronics
[09/06/2008|20:24] C:\Program Files\LGE GSM PC Sync
[05/05/2008|14:37] C:\Program Files\LimeWire
[31/10/2005|23:07] C:\Program Files\Logitech
[03/06/2006|11:44] C:\Program Files\Macrogaming
[30/09/2005|20:06] C:\Program Files\Maxis
[29/08/2008|01:02] C:\Program Files\Messenger
[24/11/2006|21:50] C:\Program Files\Messenger Plus! Live
[16/09/2007|19:15] C:\Program Files\MessengerPlus! 3
[09/10/2008|16:41] C:\Program Files\Microsoft
[25/11/2004|04:27] C:\Program Files\microsoft frontpage
[23/12/2008|22:09] C:\Program Files\Microsoft Office
[01/01/2006|23:35] C:\Program Files\Microsoft Picture It! 7
[09/10/2008|16:43] C:\Program Files\Microsoft SQL Server Compact Edition
[31/10/2005|20:52] C:\Program Files\Microsoft Works
[15/10/2005|18:41] C:\Program Files\Microsoft Works Suite 2003
[19/01/2006|20:27] C:\Program Files\Mindscape
[08/06/2006|18:17] C:\Program Files\MonkeyPhoto
[25/11/2004|04:27] C:\Program Files\Movie Maker
[27/12/2008|14:54] C:\Program Files\Mozilla Firefox
[03/11/2008|14:58] C:\Program Files\Mozilla Firefox 3 Beta 5
[24/07/2007|23:21] C:\Program Files\MP3 Player Utilities 4.04
[25/11/2006|11:46] C:\Program Files\Mpeg64Each
[26/10/2008|14:27] C:\Program Files\MSECACHE
[26/10/2008|13:19] C:\Program Files\MSN
[25/11/2004|04:27] C:\Program Files\MSN Gaming Zone
[15/11/2006|17:58] C:\Program Files\MSXML 4.0
[01/01/2005|16:13] C:\Program Files\muvee Technologies
[04/12/2005|14:31] C:\Program Files\Net Pro Anti Popup
[20/11/2005|17:51] C:\Program Files\NetMeeting
[01/09/2007|21:39] C:\Program Files\Neuf
[11/03/2006|12:14] C:\Program Files\Norton AntiVirus
[17/12/2005|20:18] C:\Program Files\Norton Internet Security
[21/12/2008|18:00] C:\Program Files\Norton Security Scan
[05/05/2008|14:44] C:\Program Files\NRJ
[25/11/2004|04:27] C:\Program Files\Online Services
[12/06/2007|22:56] C:\Program Files\Outlook Express
[20/05/2007|20:26] C:\Program Files\PC-Doctor for Windows
[24/12/2008|18:35] C:\Program Files\PhotoFiltre
[04/12/2008|19:21] C:\Program Files\PowerPoint to Video
[23/12/2008|22:19] C:\Program Files\QuickTime
[17/11/2008|21:17] C:\Program Files\Real
[01/01/2005|15:54] C:\Program Files\Services en ligne
[02/10/2005|11:59] C:\Program Files\SLD Codec Pack
[29/08/2006|15:21] C:\Program Files\SM
[03/11/2007|14:33] C:\Program Files\Smart Explorer
[05/05/2007|23:16] C:\Program Files\SmartDraw 2007
[01/01/2005|15:40] C:\Program Files\Sonic
[24/10/2005|19:15] C:\Program Files\Spybot - Search & Destroy
[23/12/2008|22:13] C:\Program Files\Spyware Doctor
[22/05/2006|21:43] C:\Program Files\Stardock
[02/07/2007|21:02] C:\Program Files\Starware370
[22/12/2008|13:36] C:\Program Files\SUPERAntiSpyware
[11/03/2006|12:14] C:\Program Files\Symantec
[27/12/2008|14:46] C:\Program Files\Trend Micro
[06/03/2007|17:02] C:\Program Files\Ulead Systems
[24/11/2004|02:37] C:\Program Files\Uninstall Information
[26/08/2007|17:30] C:\Program Files\VideoLAN
[31/10/2005|19:23] C:\Program Files\WinAce
[01/11/2008|00:03] C:\Program Files\Winamp
[26/10/2008|15:37] C:\Program Files\Windows Live
[09/10/2008|16:42] C:\Program Files\Windows Live Toolbar
[09/04/2008|19:58] C:\Program Files\Windows Media Components
[24/03/2008|22:22] C:\Program Files\Windows Media Connect 2
[24/03/2008|22:22] C:\Program Files\Windows Media Player
[20/09/2005|17:06] C:\Program Files\Windows NT
[24/11/2004|02:37] C:\Program Files\WindowsUpdate
[01/05/2007|17:50] C:\Program Files\WinRAR
[25/11/2004|04:28] C:\Program Files\xerox
[11/12/2005|14:38] C:\Program Files\Yahoo!
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[14/05/2006|19:32] C:\Program Files\Fichiers communs\ACD Systems
[30/08/2006|18:10] C:\Program Files\Fichiers communs\Adobe
[29/09/2005|20:03] C:\Program Files\Fichiers communs\AOL
[29/09/2005|20:03] C:\Program Files\Fichiers communs\aolshare
[23/12/2008|22:20] C:\Program Files\Fichiers communs\Apple
[31/10/2005|23:07] C:\Program Files\Fichiers communs\FotoWire
[01/01/2005|15:35] C:\Program Files\Fichiers communs\Hewlett-Packard
[01/01/2005|15:29] C:\Program Files\Fichiers communs\HP
[01/01/2005|16:12] C:\Program Files\Fichiers communs\InstallShield
[01/05/2006|15:13] C:\Program Files\Fichiers communs\Jasc Software Inc
[01/01/2005|15:15] C:\Program Files\Fichiers communs\Java
[31/10/2005|23:05] C:\Program Files\Fichiers communs\Logitech
[26/10/2008|15:38] C:\Program Files\Fichiers communs\Microsoft Shared
[25/11/2004|04:26] C:\Program Files\Fichiers communs\MSSoap
[01/01/2005|16:13] C:\Program Files\Fichiers communs\muvee Technologies
[22/08/2006|10:51] C:\Program Files\Fichiers communs\NSV
[25/11/2004|04:26] C:\Program Files\Fichiers communs\ODBC
[22/12/2008|13:35] C:\Program Files\Fichiers communs\Real
[20/09/2005|17:06] C:\Program Files\Fichiers communs\Services
[01/01/2005|15:39] C:\Program Files\Fichiers communs\Sonic Shared
[25/11/2004|04:26] C:\Program Files\Fichiers communs\SpeechEngines
[22/05/2006|21:43] C:\Program Files\Fichiers communs\Stardock
[01/01/2005|15:39] C:\Program Files\Fichiers communs\SureThing Shared
[23/11/2008|18:05] C:\Program Files\Fichiers communs\Symantec Shared
[12/06/2007|22:56] C:\Program Files\Fichiers communs\System
[01/01/2005|15:40] C:\Program Files\Fichiers communs\TiVo Shared
[06/11/2006|20:48] C:\Program Files\Fichiers communs\Ulead Systems
[09/10/2008|16:24] C:\Program Files\Fichiers communs\Windows Live
[26/10/2008|15:38] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[03/04/2006|18:48] C:\Program Files\Fichiers communs\WinFixer 2005
--------------------\\ Process
( 53 Processes )
IEXPLORE.EXE ~ [PID:5624]
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\DOCUME~1\HP_PRO~1\APPLIC~1\mpeg64~1
C:\Program Files\mpeg64~1
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsu891.tmp
C:\Program Files\Adverts
C:\Program Files\Adverts\uninst.exe
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@banner.cotedazurpalace[2].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@cotedazurpalace[2].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@www.cotedazurpalace[1].txt
C:\WINDOWS\Tasks\AF59A4E991865681.job
--------------------\\ Verification du Registre
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts MODIFIE
127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD
127.0.0.1 download.errorsafe.com ## added by CiD
127.0.0.1 download.systemdoctor.com ## added by CiD
127.0.0.1 download.winantispyware.com ## added by CiD
127.0.0.1 download.windrivecleaner.com ## added by CiD
127.0.0.1 download.winfixer.com ## added by CiD
127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 es.winantivirus.com ## added by CiD
127.0.0.1 fr.winantivirus.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 go.winantivirus.com ## added by CiD
127.0.0.1 hk.winantivirus.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 instlog.winantivirus.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 kb.winantivirus.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 secure.winantivirus.com ## added by CiD
127.0.0.1 support.winantivirus.com ## added by CiD
127.0.0.1 ulog.winantivirus.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 utils.winantivirus.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winantivirus.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.drivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.errorprotector.com ## added by CiD
127.0.0.1 [i]ww/iw.errorsafe.com ## added by CiD
127.0.0.1 [i]ww/iw.systemdoctor.com ## added by CiD
127.0.0.1 [i]ww/iw.win-anti-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.win-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispam.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispy.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispyware.com ## added by CiD
127.0.0.1 [i]ww/iw.winantivirus.com ## added by CiD
127.0.0.1 [i]ww/iw.winantiviruspro.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivesafe.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 [i]ww/iw.utils.winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer2006.com ## added by CiD
127.0.0.1 [i]ww/iw.winsoftware.com ## added by CiD
-> 72 [ 70 ## added by CiD ]
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-12-27 17:08:21
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
C:\DOCUME~1\HP_PRO~1\LOCALS~1\APPLIC~1\Mozilla\Firefox\Profiles\fejq2o65.default\Cache\A35F6843d01
scan completed successfully
hidden processes: 0
hidden files: 2
--------------------\\ Recherche d'autres infections
C:\WINDOWS\Tasks\At25.job
C:\WINDOWS\Tasks\At26.job
C:\WINDOWS\Tasks\At27.job
C:\WINDOWS\Tasks\At28.job
C:\WINDOWS\Tasks\At29.job
C:\WINDOWS\Tasks\At30.job
C:\WINDOWS\Tasks\At31.job
C:\WINDOWS\Tasks\At32.job
C:\WINDOWS\Tasks\At33.job
C:\WINDOWS\Tasks\At34.job
C:\WINDOWS\Tasks\At35.job
C:\WINDOWS\Tasks\At36.job
C:\WINDOWS\Tasks\At37.job
C:\WINDOWS\Tasks\At38.job
C:\WINDOWS\Tasks\At39.job
C:\WINDOWS\Tasks\At40.job
C:\WINDOWS\Tasks\At41.job
C:\WINDOWS\Tasks\At42.job
C:\WINDOWS\Tasks\At43.job
C:\WINDOWS\Tasks\At44.job
C:\WINDOWS\Tasks\At45.job
C:\WINDOWS\Tasks\At46.job
C:\WINDOWS\Tasks\At47.job
C:\WINDOWS\Tasks\At48.job
C:\WINDOWS\Tasks\At49.job
C:\WINDOWS\Tasks\At50.job
C:\WINDOWS\Tasks\At51.job
C:\WINDOWS\Tasks\At52.job
C:\WINDOWS\Tasks\At53.job
C:\WINDOWS\Tasks\At54.job
C:\WINDOWS\Tasks\At55.job
C:\WINDOWS\Tasks\At56.job
C:\WINDOWS\Tasks\At57.job
C:\WINDOWS\Tasks\At58.job
C:\WINDOWS\Tasks\At59.job
C:\WINDOWS\Tasks\At60.job
C:\WINDOWS\Tasks\At61.job
C:\WINDOWS\Tasks\At62.job
C:\WINDOWS\Tasks\At63.job
C:\WINDOWS\Tasks\At64.job
C:\WINDOWS\Tasks\At65.job
C:\WINDOWS\Tasks\At66.job
C:\WINDOWS\Tasks\At67.job
C:\WINDOWS\Tasks\At68.job
C:\WINDOWS\Tasks\At69.job
C:\WINDOWS\Tasks\At70.job
C:\WINDOWS\Tasks\At71.job
C:\WINDOWS\Tasks\At72.job
--------------------\\ ROGUES ..
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370
C:\PROGRA~1\Starware370
[F:3190][D:81]-> C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp
[F:112][D:0]-> C:\DOCUME~1\HP_PRO~1\Cookies
[F:10635][D:21]-> C:\DOCUME~1\HP_PRO~1\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 27/12/2008|17:14 - Option : [1]
--------------------\\ Fin du rapport a 17:14:01
--------------------\\ Lop S&D 4.2.5-0 XP/Vista
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : Intel(R) Pentium(R) 4 CPU 2.93GHz )
BIOS : v3.06
USER : HP_Propriétaire ( Administrator )
BOOT : Normal boot
C:\ (Local Disk) - NTFS - Total:179 Go (Free:151 Go)
D:\ (Local Disk) - NTFS - Total:6 Go (Free:6 Go)
E:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)
H:\ (USB)
I:\ (USB)
J:\ (USB)
K:\ (USB)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 27/12/2008|17:02 )
--------------------\\ Listing des dossiers dans APPLIC~1
[23/12/2008|22:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[22/12/2008|13:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{5A76C6B3-3FA8-46D0-AA81-62C3805E38BC}
[22/12/2008|13:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\~0
[14/05/2006|19:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ACD Systems
[01/01/2005|15:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[29/09/2005|20:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL
[23/12/2008|22:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[03/12/2006|15:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[01/11/2008|23:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avg7
[12/03/2008|15:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[01/01/2005|15:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Hewlett-Packard
[03/11/2007|00:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\holdcurberrorjump
[20/07/2008|19:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[01/01/2005|15:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[28/11/2005|19:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[01/11/2008|23:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[14/09/2005|12:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\muvee Technologies
[31/10/2005|23:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[01/01/2005|15:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[02/11/2008|00:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Simply Super Software
[21/01/2007|22:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
[24/10/2005|19:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[27/12/2008|16:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370
[10/11/2008|15:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SUPERAntiSpyware.com
[11/03/2006|12:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[23/12/2008|22:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[06/03/2007|17:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems
[17/08/2006|11:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[26/10/2006|14:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[09/10/2008|16:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WindowsLiveInstaller
[26/10/2008|15:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[26/10/2008|15:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion
[02/04/2007|11:41] C:\DOCUME~1\ANDRA~1\APPLIC~1\AOL
[01/01/2005|15:44] C:\DOCUME~1\ANDRA~1\APPLIC~1\Apple Computer
[02/04/2007|11:41] C:\DOCUME~1\ANDRA~1\APPLIC~1\AVG7
[02/04/2007|11:42] C:\DOCUME~1\ANDRA~1\APPLIC~1\HP
[25/11/2004|04:26] C:\DOCUME~1\ANDRA~1\APPLIC~1\Identities
[01/11/2008|23:51] C:\DOCUME~1\ANDRA~1\APPLIC~1\Microsoft
[01/01/2005|15:56] C:\DOCUME~1\ANDRA~1\APPLIC~1\SampleView
[01/01/2005|16:04] C:\DOCUME~1\ANDRA~1\APPLIC~1\Symantec
[01/01/2005|15:44] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Apple Computer
[25/11/2004|04:26] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[05/07/2007|17:33] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[01/01/2005|15:56] C:\DOCUME~1\DEFAUL~1\APPLIC~1\SampleView
[01/01/2005|16:04] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec
[14/05/2006|19:35] C:\DOCUME~1\HP_PRO~1\APPLIC~1\ACD Systems
[19/11/2008|17:36] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Adobe
[28/11/2008|13:25] C:\DOCUME~1\HP_PRO~1\APPLIC~1\AdobeUM
[17/02/2006|17:03] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Ahead
[29/09/2005|20:12] C:\DOCUME~1\HP_PRO~1\APPLIC~1\AOL
[03/01/2008|22:26] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Apple Computer
[01/11/2008|23:55] C:\DOCUME~1\HP_PRO~1\APPLIC~1\AVG7
[31/10/2008|23:48] C:\DOCUME~1\HP_PRO~1\APPLIC~1\dvdcss
[31/10/2005|23:07] C:\DOCUME~1\HP_PRO~1\APPLIC~1\FotoWire
[25/02/2007|13:08] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Google
[17/03/2006|21:34] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Help
[21/01/2007|22:40] C:\DOCUME~1\HP_PRO~1\APPLIC~1\HP
[12/05/2007|17:48] C:\DOCUME~1\HP_PRO~1\APPLIC~1\ICQ
[01/05/2007|18:46] C:\DOCUME~1\HP_PRO~1\APPLIC~1\ICQ Toolbar
[25/11/2004|04:26] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Identities
[28/11/2008|19:20] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Image Zone Express
[14/09/2005|12:33] C:\DOCUME~1\HP_PRO~1\APPLIC~1\InterVideo
[09/02/2006|19:16] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Jasc
[01/05/2006|15:12] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Jasc Software Inc
[01/11/2008|23:45] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Lavasoft
[13/09/2005|16:09] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Leadertech
[03/07/2008|18:04] C:\DOCUME~1\HP_PRO~1\APPLIC~1\LimeWire
[11/12/2005|14:38] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Macromedia
[09/10/2008|19:28] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Microsoft
[11/10/2008|14:42] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Mostick
[13/05/2008|15:35] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Mozilla
[03/11/2007|00:56] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Mpeg64Each
[26/10/2008|13:19] C:\DOCUME~1\HP_PRO~1\APPLIC~1\MSNInstaller
[14/09/2005|12:35] C:\DOCUME~1\HP_PRO~1\APPLIC~1\muvee Technologies
[22/12/2008|13:35] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Real
[01/01/2005|15:56] C:\DOCUME~1\HP_PRO~1\APPLIC~1\SampleView
[02/11/2008|00:53] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Simply Super Software
[05/05/2007|23:24] C:\DOCUME~1\HP_PRO~1\APPLIC~1\SmartDraw
[13/09/2005|16:11] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Sonic
[27/12/2008|16:07] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370
[30/09/2005|15:54] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Sun
[22/12/2008|13:37] C:\DOCUME~1\HP_PRO~1\APPLIC~1\SUPERAntiSpyware.com
[29/09/2005|18:44] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Symantec
[26/08/2007|17:32] C:\DOCUME~1\HP_PRO~1\APPLIC~1\vlc
[12/09/2008|17:27] C:\DOCUME~1\LOCALS~1\APPLIC~1\Adobe
[01/11/2008|23:55] C:\DOCUME~1\LOCALS~1\APPLIC~1\AVG7
[01/09/2008|15:00] C:\DOCUME~1\LOCALS~1\APPLIC~1\Google
[01/09/2008|15:00] C:\DOCUME~1\LOCALS~1\APPLIC~1\ICQ Toolbar
[01/11/2008|23:51] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[28/10/2008|18:00] C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370
[17/12/2005|19:50] C:\DOCUME~1\LOCALS~1\APPLIC~1\Symantec
[16/07/2008|09:03] C:\DOCUME~1\NETWOR~1\APPLIC~1\Adobe
[16/07/2008|09:02] C:\DOCUME~1\NETWOR~1\APPLIC~1\Google
[16/07/2008|09:02] C:\DOCUME~1\NETWOR~1\APPLIC~1\ICQ Toolbar
[16/07/2008|09:03] C:\DOCUME~1\NETWOR~1\APPLIC~1\Macromedia
[11/11/2008|14:17] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[19/11/2008|20:03] C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[26/12/2008 23:00][--a------] C:\WINDOWS\tasks\At72.job
[26/12/2008 22:00][--a------] C:\WINDOWS\tasks\At71.job
[26/12/2008 21:00][--a------] C:\WINDOWS\tasks\At70.job
[26/12/2008 20:00][--a------] C:\WINDOWS\tasks\At69.job
[26/12/2008 19:00][--a------] C:\WINDOWS\tasks\At68.job
[26/12/2008 18:00][--a------] C:\WINDOWS\tasks\At67.job
[27/12/2008 17:00][--a------] C:\WINDOWS\tasks\At66.job
[27/12/2008 15:00][--a------] C:\WINDOWS\tasks\At64.job
[27/12/2008 16:00][--a------] C:\WINDOWS\tasks\At65.job
[21/12/2008 13:00][--a------] C:\WINDOWS\tasks\At62.job
[26/12/2008 14:00][--a------] C:\WINDOWS\tasks\At63.job
[15/12/2008 12:00][--a------] C:\WINDOWS\tasks\At61.job
[16/12/2008 11:00][--a------] C:\WINDOWS\tasks\At60.job
[08/12/2008 10:00][--a------] C:\WINDOWS\tasks\At59.job
[21/09/2008 17:31][--a------] C:\WINDOWS\tasks\At58.job
[21/09/2008 17:31][--a------] C:\WINDOWS\tasks\At57.job
[21/09/2008 17:31][--a------] C:\WINDOWS\tasks\At56.job
[21/09/2008 17:31][--a------] C:\WINDOWS\tasks\At54.job
[21/09/2008 17:31][--a------] C:\WINDOWS\tasks\At55.job
[21/09/2008 17:31][--a------] C:\WINDOWS\tasks\At53.job
[27/12/2008 02:00][--a------] C:\WINDOWS\tasks\At51.job
[21/09/2008 17:31][--a------] C:\WINDOWS\tasks\At52.job
[27/12/2008 01:00][--a------] C:\WINDOWS\tasks\At50.job
[27/12/2008 00:17][--a------] C:\WINDOWS\tasks\At49.job
[26/12/2008 23:00][--a------] C:\WINDOWS\tasks\At48.job
[26/12/2008 21:00][--a------] C:\WINDOWS\tasks\At46.job
[26/12/2008 22:00][--a------] C:\WINDOWS\tasks\At47.job
[26/12/2008 20:00][--a------] C:\WINDOWS\tasks\At45.job
[26/12/2008 19:00][--a------] C:\WINDOWS\tasks\At44.job
[26/12/2008 18:00][--a------] C:\WINDOWS\tasks\At43.job
[27/12/2008 17:00][--a------] C:\WINDOWS\tasks\At42.job
[27/12/2008 16:00][--a------] C:\WINDOWS\tasks\At41.job
[27/12/2008 15:00][--a------] C:\WINDOWS\tasks\At40.job
[26/12/2008 14:00][--a------] C:\WINDOWS\tasks\At39.job
[21/12/2008 13:07][--a------] C:\WINDOWS\tasks\At38.job
[15/12/2008 15:26][--a------] C:\WINDOWS\tasks\At37.job
[16/12/2008 12:52][--a------] C:\WINDOWS\tasks\At36.job
[08/12/2008 10:00][--a------] C:\WINDOWS\tasks\At35.job
[15/07/2008 20:58][--a------] C:\WINDOWS\tasks\At34.job
[15/07/2008 20:58][--a------] C:\WINDOWS\tasks\At33.job
[15/07/2008 20:58][--a------] C:\WINDOWS\tasks\At32.job
[15/07/2008 20:58][--a------] C:\WINDOWS\tasks\At31.job
[15/07/2008 20:58][--a------] C:\WINDOWS\tasks\At30.job
[25/07/2008 03:00][--a------] C:\WINDOWS\tasks\At29.job
[31/08/2008 02:03][--a------] C:\WINDOWS\tasks\At28.job
[27/12/2008 02:00][--a------] C:\WINDOWS\tasks\At27.job
[27/12/2008 01:00][--a------] C:\WINDOWS\tasks\At26.job
[27/12/2008 00:28][--a------] C:\WINDOWS\tasks\At25.job
[26/12/2008 18:00][--a------] C:\WINDOWS\tasks\Norton Security Scan.job
[23/12/2008 22:18][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[27/12/2008 17:00][--ah-----] C:\WINDOWS\tasks\AF59A4E991865681.job
[27/12/2008 14:27][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 19:00][-rah-----] C:\WINDOWS\tasks\desktop.ini
( AF59A4E991865681.job )=( c:\docume~1\hp_pro~1\applic~1\mpeg64~1\CoalBrowseUp.exe )
--------------------\\ MsgPlus SPONSOR INSTALLED !
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MsgPlus! Plugin]
"SponsorInstalled"=dword:00000000
--------------------\\ Listing des dossiers dans C:\Program Files
[14/05/2006|19:32] C:\Program Files\ACD Systems
[22/12/2008|13:33] C:\Program Files\Adobe
[16/09/2007|11:12] C:\Program Files\Adverts
[29/09/2005|20:03] C:\Program Files\AOL 9.0
[23/12/2008|22:18] C:\Program Files\Apple Software Update
[01/01/2005|16:12] C:\Program Files\ATI Technologies
[23/12/2008|22:19] C:\Program Files\Bonjour
[26/10/2008|15:09] C:\Program Files\CCleaner
[26/01/2008|15:46] C:\Program Files\Changer XP
[24/11/2004|02:37] C:\Program Files\ComPlus Applications
[10/01/2007|15:19] C:\Program Files\Dictionnaire
[02/04/2006|18:29] C:\Program Files\DivX
[29/06/2007|18:04] C:\Program Files\EA GAMES
[01/01/2006|23:35] C:\Program Files\Easy Internet signup
[05/05/2008|14:44] C:\Program Files\eMule
[23/12/2008|22:18] C:\Program Files\Fichiers communs
[29/10/2007|23:14] C:\Program Files\Go!Zilla
[02/11/2008|23:18] C:\Program Files\Google
[02/11/2008|00:01] C:\Program Files\Grisoft
[21/01/2007|22:23] C:\Program Files\Hewlett-Packard
[21/01/2007|22:23] C:\Program Files\HP
[01/01/2005|15:49] C:\Program Files\HPQ
[09/04/2007|20:08] C:\Program Files\ICQLite
[27/12/2008|14:45] C:\Program Files\ICQToolbar
[22/12/2008|13:30] C:\Program Files\InstallShield Installation Information
[11/11/2008|18:03] C:\Program Files\Internet Explorer
[01/01/2005|16:12] C:\Program Files\InterVideo
[23/12/2008|22:20] C:\Program Files\iPod
[23/12/2008|22:21] C:\Program Files\iTunes
[14/09/2005|15:25] C:\Program Files\Ja2
[17/10/2006|18:18] C:\Program Files\Jasc Software Inc
[29/09/2005|17:48] C:\Program Files\Java
[09/06/2008|20:25] C:\Program Files\LG Electronics
[09/06/2008|20:24] C:\Program Files\LGE GSM PC Sync
[05/05/2008|14:37] C:\Program Files\LimeWire
[31/10/2005|23:07] C:\Program Files\Logitech
[03/06/2006|11:44] C:\Program Files\Macrogaming
[30/09/2005|20:06] C:\Program Files\Maxis
[29/08/2008|01:02] C:\Program Files\Messenger
[24/11/2006|21:50] C:\Program Files\Messenger Plus! Live
[16/09/2007|19:15] C:\Program Files\MessengerPlus! 3
[09/10/2008|16:41] C:\Program Files\Microsoft
[25/11/2004|04:27] C:\Program Files\microsoft frontpage
[23/12/2008|22:09] C:\Program Files\Microsoft Office
[01/01/2006|23:35] C:\Program Files\Microsoft Picture It! 7
[09/10/2008|16:43] C:\Program Files\Microsoft SQL Server Compact Edition
[31/10/2005|20:52] C:\Program Files\Microsoft Works
[15/10/2005|18:41] C:\Program Files\Microsoft Works Suite 2003
[19/01/2006|20:27] C:\Program Files\Mindscape
[08/06/2006|18:17] C:\Program Files\MonkeyPhoto
[25/11/2004|04:27] C:\Program Files\Movie Maker
[27/12/2008|14:54] C:\Program Files\Mozilla Firefox
[03/11/2008|14:58] C:\Program Files\Mozilla Firefox 3 Beta 5
[24/07/2007|23:21] C:\Program Files\MP3 Player Utilities 4.04
[25/11/2006|11:46] C:\Program Files\Mpeg64Each
[26/10/2008|14:27] C:\Program Files\MSECACHE
[26/10/2008|13:19] C:\Program Files\MSN
[25/11/2004|04:27] C:\Program Files\MSN Gaming Zone
[15/11/2006|17:58] C:\Program Files\MSXML 4.0
[01/01/2005|16:13] C:\Program Files\muvee Technologies
[04/12/2005|14:31] C:\Program Files\Net Pro Anti Popup
[20/11/2005|17:51] C:\Program Files\NetMeeting
[01/09/2007|21:39] C:\Program Files\Neuf
[11/03/2006|12:14] C:\Program Files\Norton AntiVirus
[17/12/2005|20:18] C:\Program Files\Norton Internet Security
[21/12/2008|18:00] C:\Program Files\Norton Security Scan
[05/05/2008|14:44] C:\Program Files\NRJ
[25/11/2004|04:27] C:\Program Files\Online Services
[12/06/2007|22:56] C:\Program Files\Outlook Express
[20/05/2007|20:26] C:\Program Files\PC-Doctor for Windows
[24/12/2008|18:35] C:\Program Files\PhotoFiltre
[04/12/2008|19:21] C:\Program Files\PowerPoint to Video
[23/12/2008|22:19] C:\Program Files\QuickTime
[17/11/2008|21:17] C:\Program Files\Real
[01/01/2005|15:54] C:\Program Files\Services en ligne
[02/10/2005|11:59] C:\Program Files\SLD Codec Pack
[29/08/2006|15:21] C:\Program Files\SM
[03/11/2007|14:33] C:\Program Files\Smart Explorer
[05/05/2007|23:16] C:\Program Files\SmartDraw 2007
[01/01/2005|15:40] C:\Program Files\Sonic
[24/10/2005|19:15] C:\Program Files\Spybot - Search & Destroy
[23/12/2008|22:13] C:\Program Files\Spyware Doctor
[22/05/2006|21:43] C:\Program Files\Stardock
[02/07/2007|21:02] C:\Program Files\Starware370
[22/12/2008|13:36] C:\Program Files\SUPERAntiSpyware
[11/03/2006|12:14] C:\Program Files\Symantec
[27/12/2008|14:46] C:\Program Files\Trend Micro
[06/03/2007|17:02] C:\Program Files\Ulead Systems
[24/11/2004|02:37] C:\Program Files\Uninstall Information
[26/08/2007|17:30] C:\Program Files\VideoLAN
[31/10/2005|19:23] C:\Program Files\WinAce
[01/11/2008|00:03] C:\Program Files\Winamp
[26/10/2008|15:37] C:\Program Files\Windows Live
[09/10/2008|16:42] C:\Program Files\Windows Live Toolbar
[09/04/2008|19:58] C:\Program Files\Windows Media Components
[24/03/2008|22:22] C:\Program Files\Windows Media Connect 2
[24/03/2008|22:22] C:\Program Files\Windows Media Player
[20/09/2005|17:06] C:\Program Files\Windows NT
[24/11/2004|02:37] C:\Program Files\WindowsUpdate
[01/05/2007|17:50] C:\Program Files\WinRAR
[25/11/2004|04:28] C:\Program Files\xerox
[11/12/2005|14:38] C:\Program Files\Yahoo!
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[14/05/2006|19:32] C:\Program Files\Fichiers communs\ACD Systems
[30/08/2006|18:10] C:\Program Files\Fichiers communs\Adobe
[29/09/2005|20:03] C:\Program Files\Fichiers communs\AOL
[29/09/2005|20:03] C:\Program Files\Fichiers communs\aolshare
[23/12/2008|22:20] C:\Program Files\Fichiers communs\Apple
[31/10/2005|23:07] C:\Program Files\Fichiers communs\FotoWire
[01/01/2005|15:35] C:\Program Files\Fichiers communs\Hewlett-Packard
[01/01/2005|15:29] C:\Program Files\Fichiers communs\HP
[01/01/2005|16:12] C:\Program Files\Fichiers communs\InstallShield
[01/05/2006|15:13] C:\Program Files\Fichiers communs\Jasc Software Inc
[01/01/2005|15:15] C:\Program Files\Fichiers communs\Java
[31/10/2005|23:05] C:\Program Files\Fichiers communs\Logitech
[26/10/2008|15:38] C:\Program Files\Fichiers communs\Microsoft Shared
[25/11/2004|04:26] C:\Program Files\Fichiers communs\MSSoap
[01/01/2005|16:13] C:\Program Files\Fichiers communs\muvee Technologies
[22/08/2006|10:51] C:\Program Files\Fichiers communs\NSV
[25/11/2004|04:26] C:\Program Files\Fichiers communs\ODBC
[22/12/2008|13:35] C:\Program Files\Fichiers communs\Real
[20/09/2005|17:06] C:\Program Files\Fichiers communs\Services
[01/01/2005|15:39] C:\Program Files\Fichiers communs\Sonic Shared
[25/11/2004|04:26] C:\Program Files\Fichiers communs\SpeechEngines
[22/05/2006|21:43] C:\Program Files\Fichiers communs\Stardock
[01/01/2005|15:39] C:\Program Files\Fichiers communs\SureThing Shared
[23/11/2008|18:05] C:\Program Files\Fichiers communs\Symantec Shared
[12/06/2007|22:56] C:\Program Files\Fichiers communs\System
[01/01/2005|15:40] C:\Program Files\Fichiers communs\TiVo Shared
[06/11/2006|20:48] C:\Program Files\Fichiers communs\Ulead Systems
[09/10/2008|16:24] C:\Program Files\Fichiers communs\Windows Live
[26/10/2008|15:38] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[03/04/2006|18:48] C:\Program Files\Fichiers communs\WinFixer 2005
--------------------\\ Process
( 53 Processes )
IEXPLORE.EXE ~ [PID:5624]
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\DOCUME~1\HP_PRO~1\APPLIC~1\mpeg64~1
C:\Program Files\mpeg64~1
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsu891.tmp
C:\Program Files\Adverts
C:\Program Files\Adverts\uninst.exe
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@banner.cotedazurpalace[2].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@cotedazurpalace[2].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@www.cotedazurpalace[1].txt
C:\WINDOWS\Tasks\AF59A4E991865681.job
--------------------\\ Verification du Registre
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts MODIFIE
127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD
127.0.0.1 download.errorsafe.com ## added by CiD
127.0.0.1 download.systemdoctor.com ## added by CiD
127.0.0.1 download.winantispyware.com ## added by CiD
127.0.0.1 download.windrivecleaner.com ## added by CiD
127.0.0.1 download.winfixer.com ## added by CiD
127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 es.winantivirus.com ## added by CiD
127.0.0.1 fr.winantivirus.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 go.winantivirus.com ## added by CiD
127.0.0.1 hk.winantivirus.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 instlog.winantivirus.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 kb.winantivirus.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 secure.winantivirus.com ## added by CiD
127.0.0.1 support.winantivirus.com ## added by CiD
127.0.0.1 ulog.winantivirus.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 utils.winantivirus.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winantivirus.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.drivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.errorprotector.com ## added by CiD
127.0.0.1 [i]ww/iw.errorsafe.com ## added by CiD
127.0.0.1 [i]ww/iw.systemdoctor.com ## added by CiD
127.0.0.1 [i]ww/iw.win-anti-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.win-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispam.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispy.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispyware.com ## added by CiD
127.0.0.1 [i]ww/iw.winantivirus.com ## added by CiD
127.0.0.1 [i]ww/iw.winantiviruspro.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivesafe.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 [i]ww/iw.utils.winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer2006.com ## added by CiD
127.0.0.1 [i]ww/iw.winsoftware.com ## added by CiD
-> 72 [ 70 ## added by CiD ]
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-12-27 17:08:21
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
C:\DOCUME~1\HP_PRO~1\LOCALS~1\APPLIC~1\Mozilla\Firefox\Profiles\fejq2o65.default\Cache\A35F6843d01
scan completed successfully
hidden processes: 0
hidden files: 2
--------------------\\ Recherche d'autres infections
C:\WINDOWS\Tasks\At25.job
C:\WINDOWS\Tasks\At26.job
C:\WINDOWS\Tasks\At27.job
C:\WINDOWS\Tasks\At28.job
C:\WINDOWS\Tasks\At29.job
C:\WINDOWS\Tasks\At30.job
C:\WINDOWS\Tasks\At31.job
C:\WINDOWS\Tasks\At32.job
C:\WINDOWS\Tasks\At33.job
C:\WINDOWS\Tasks\At34.job
C:\WINDOWS\Tasks\At35.job
C:\WINDOWS\Tasks\At36.job
C:\WINDOWS\Tasks\At37.job
C:\WINDOWS\Tasks\At38.job
C:\WINDOWS\Tasks\At39.job
C:\WINDOWS\Tasks\At40.job
C:\WINDOWS\Tasks\At41.job
C:\WINDOWS\Tasks\At42.job
C:\WINDOWS\Tasks\At43.job
C:\WINDOWS\Tasks\At44.job
C:\WINDOWS\Tasks\At45.job
C:\WINDOWS\Tasks\At46.job
C:\WINDOWS\Tasks\At47.job
C:\WINDOWS\Tasks\At48.job
C:\WINDOWS\Tasks\At49.job
C:\WINDOWS\Tasks\At50.job
C:\WINDOWS\Tasks\At51.job
C:\WINDOWS\Tasks\At52.job
C:\WINDOWS\Tasks\At53.job
C:\WINDOWS\Tasks\At54.job
C:\WINDOWS\Tasks\At55.job
C:\WINDOWS\Tasks\At56.job
C:\WINDOWS\Tasks\At57.job
C:\WINDOWS\Tasks\At58.job
C:\WINDOWS\Tasks\At59.job
C:\WINDOWS\Tasks\At60.job
C:\WINDOWS\Tasks\At61.job
C:\WINDOWS\Tasks\At62.job
C:\WINDOWS\Tasks\At63.job
C:\WINDOWS\Tasks\At64.job
C:\WINDOWS\Tasks\At65.job
C:\WINDOWS\Tasks\At66.job
C:\WINDOWS\Tasks\At67.job
C:\WINDOWS\Tasks\At68.job
C:\WINDOWS\Tasks\At69.job
C:\WINDOWS\Tasks\At70.job
C:\WINDOWS\Tasks\At71.job
C:\WINDOWS\Tasks\At72.job
--------------------\\ ROGUES ..
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370
C:\PROGRA~1\Starware370
[F:3190][D:81]-> C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp
[F:112][D:0]-> C:\DOCUME~1\HP_PRO~1\Cookies
[F:10635][D:21]-> C:\DOCUME~1\HP_PRO~1\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 27/12/2008|17:14 - Option : [1]
--------------------\\ Fin du rapport a 17:14:01
ludsfa
Messages postés
1284
Date d'inscription
dimanche 3 février 2008
Statut
Membre
Dernière intervention
15 janvier 2018
15
27 déc. 2008 à 17:22
27 déc. 2008 à 17:22
ok super on continue,
1
Relance Lop S&D
* Choisis cette fois ci <gras>l'Option 2 ( Suppression )
* Ne ferme pas la fenêtre lors de la suppression !
* Poste le rapport généré ( C:\lopR.txt ) </gras>
2)
Télécharge Toolbar S&D de la Team IDN sur ton bureau.
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/ToolBarSD.exe?attachauth=ANoY7cqJWPphpudyTqv7TRo5RQ3nm_Sx8JluVMO59X5E9cyE3j3LqKlmStIqiDqJdIgMJLi7MXn2nKVajQfoWuVvZZ2wIx_vkqO4k4P0K9jh-ra9jaKPXdZcoaVF2UqJZNH8ubL_42uIwh6f35xJ2GJMuzddVj2Qth1DgZ839lxEIFGkgWz3TdfvNMy-YtxfA3gqBUrj4U4LFeAPiWr3ClmjIP0t_Xs5PQ%3D%3D&attredirects=2
* Double-clique dessus pour lancer l'installation.
* Accepte le contrat de licence.
* Puis double-clique sur le raccourci Toolbar S&D présent sur ton bureau.
* Sélectionne la langue souhaitée et valide par la touche entrée.
* Choisis l'option 1 ( Recherche ).
* Patiente jusqu'à la fin du scan.
* Poste le rapport généré. ( C:\TB.txt )
1
Relance Lop S&D
* Choisis cette fois ci <gras>l'Option 2 ( Suppression )
* Ne ferme pas la fenêtre lors de la suppression !
* Poste le rapport généré ( C:\lopR.txt ) </gras>
2)
Télécharge Toolbar S&D de la Team IDN sur ton bureau.
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/ToolBarSD.exe?attachauth=ANoY7cqJWPphpudyTqv7TRo5RQ3nm_Sx8JluVMO59X5E9cyE3j3LqKlmStIqiDqJdIgMJLi7MXn2nKVajQfoWuVvZZ2wIx_vkqO4k4P0K9jh-ra9jaKPXdZcoaVF2UqJZNH8ubL_42uIwh6f35xJ2GJMuzddVj2Qth1DgZ839lxEIFGkgWz3TdfvNMy-YtxfA3gqBUrj4U4LFeAPiWr3ClmjIP0t_Xs5PQ%3D%3D&attredirects=2
* Double-clique dessus pour lancer l'installation.
* Accepte le contrat de licence.
* Puis double-clique sur le raccourci Toolbar S&D présent sur ton bureau.
* Sélectionne la langue souhaitée et valide par la touche entrée.
* Choisis l'option 1 ( Recherche ).
* Patiente jusqu'à la fin du scan.
* Poste le rapport généré. ( C:\TB.txt )
1. Le rapport avec Lop S&D :
--------------------\\ Lop S&D 4.2.5-0 XP/Vista
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : Intel(R) Pentium(R) 4 CPU 2.93GHz )
BIOS : v3.06
USER : HP_Propriétaire ( Administrator )
BOOT : Normal boot
C:\ (Local Disk) - NTFS - Total:179 Go (Free:151 Go)
D:\ (Local Disk) - NTFS - Total:6 Go (Free:6 Go)
E:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)
H:\ (USB)
I:\ (USB)
J:\ (USB)
K:\ (USB)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [2] ( 27/12/2008|17:21 )
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION
Supprime! - C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsu891.tmp
Supprime! - C:\Program Files\Adverts\uninst.exe
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@banner.cotedazurpalace[2].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@cotedazurpalace[2].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@www.cotedazurpalace[1].txt
Supprime! - C:\WINDOWS\Tasks\AF59A4E991865681.job
Supprime! - C:\DOCUME~1\HP_PRO~1\APPLIC~1\mpeg64~1
Supprime! - C:\Program Files\mpeg64~1
Supprime! - C:\Program Files\Adverts
-
[ Fichier Hosts ] .. Restaure!
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing des dossiers dans APPLIC~1
[23/12/2008|22:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[22/12/2008|13:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{5A76C6B3-3FA8-46D0-AA81-62C3805E38BC}
[22/12/2008|13:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\~0
[14/05/2006|19:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ACD Systems
[01/01/2005|15:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[29/09/2005|20:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL
[23/12/2008|22:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[03/12/2006|15:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[01/11/2008|23:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avg7
[12/03/2008|15:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[01/01/2005|15:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Hewlett-Packard
[03/11/2007|00:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\holdcurberrorjump
[20/07/2008|19:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[01/01/2005|15:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[28/11/2005|19:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[01/11/2008|23:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[14/09/2005|12:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\muvee Technologies
[31/10/2005|23:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[01/01/2005|15:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[02/11/2008|00:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Simply Super Software
[21/01/2007|22:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
[24/10/2005|19:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[27/12/2008|17:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370
[10/11/2008|15:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SUPERAntiSpyware.com
[11/03/2006|12:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[23/12/2008|22:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[06/03/2007|17:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems
[17/08/2006|11:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[26/10/2006|14:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[09/10/2008|16:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WindowsLiveInstaller
[26/10/2008|15:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[26/10/2008|15:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion
[02/04/2007|11:41] C:\DOCUME~1\ANDRA~1\APPLIC~1\AOL
[01/01/2005|15:44] C:\DOCUME~1\ANDRA~1\APPLIC~1\Apple Computer
[02/04/2007|11:41] C:\DOCUME~1\ANDRA~1\APPLIC~1\AVG7
[02/04/2007|11:42] C:\DOCUME~1\ANDRA~1\APPLIC~1\HP
[25/11/2004|04:26] C:\DOCUME~1\ANDRA~1\APPLIC~1\Identities
[01/11/2008|23:51] C:\DOCUME~1\ANDRA~1\APPLIC~1\Microsoft
[01/01/2005|15:56] C:\DOCUME~1\ANDRA~1\APPLIC~1\SampleView
[01/01/2005|16:04] C:\DOCUME~1\ANDRA~1\APPLIC~1\Symantec
[01/01/2005|15:44] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Apple Computer
[25/11/2004|04:26] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[05/07/2007|17:33] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[01/01/2005|15:56] C:\DOCUME~1\DEFAUL~1\APPLIC~1\SampleView
[01/01/2005|16:04] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec
[14/05/2006|19:35] C:\DOCUME~1\HP_PRO~1\APPLIC~1\ACD Systems
[19/11/2008|17:36] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Adobe
[28/11/2008|13:25] C:\DOCUME~1\HP_PRO~1\APPLIC~1\AdobeUM
[17/02/2006|17:03] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Ahead
[29/09/2005|20:12] C:\DOCUME~1\HP_PRO~1\APPLIC~1\AOL
[03/01/2008|22:26] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Apple Computer
[01/11/2008|23:55] C:\DOCUME~1\HP_PRO~1\APPLIC~1\AVG7
[31/10/2008|23:48] C:\DOCUME~1\HP_PRO~1\APPLIC~1\dvdcss
[31/10/2005|23:07] C:\DOCUME~1\HP_PRO~1\APPLIC~1\FotoWire
[25/02/2007|13:08] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Google
[17/03/2006|21:34] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Help
[21/01/2007|22:40] C:\DOCUME~1\HP_PRO~1\APPLIC~1\HP
[12/05/2007|17:48] C:\DOCUME~1\HP_PRO~1\APPLIC~1\ICQ
[01/05/2007|18:46] C:\DOCUME~1\HP_PRO~1\APPLIC~1\ICQ Toolbar
[25/11/2004|04:26] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Identities
[28/11/2008|19:20] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Image Zone Express
[14/09/2005|12:33] C:\DOCUME~1\HP_PRO~1\APPLIC~1\InterVideo
[09/02/2006|19:16] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Jasc
[01/05/2006|15:12] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Jasc Software Inc
[01/11/2008|23:45] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Lavasoft
[13/09/2005|16:09] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Leadertech
[03/07/2008|18:04] C:\DOCUME~1\HP_PRO~1\APPLIC~1\LimeWire
[11/12/2005|14:38] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Macromedia
[09/10/2008|19:28] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Microsoft
[11/10/2008|14:42] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Mostick
[13/05/2008|15:35] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Mozilla
[26/10/2008|13:19] C:\DOCUME~1\HP_PRO~1\APPLIC~1\MSNInstaller
[14/09/2005|12:35] C:\DOCUME~1\HP_PRO~1\APPLIC~1\muvee Technologies
[22/12/2008|13:35] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Real
[01/01/2005|15:56] C:\DOCUME~1\HP_PRO~1\APPLIC~1\SampleView
[02/11/2008|00:53] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Simply Super Software
[05/05/2007|23:24] C:\DOCUME~1\HP_PRO~1\APPLIC~1\SmartDraw
[13/09/2005|16:11] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Sonic
[27/12/2008|17:09] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370
[30/09/2005|15:54] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Sun
[22/12/2008|13:37] C:\DOCUME~1\HP_PRO~1\APPLIC~1\SUPERAntiSpyware.com
[29/09/2005|18:44] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Symantec
[26/08/2007|17:32] C:\DOCUME~1\HP_PRO~1\APPLIC~1\vlc
[12/09/2008|17:27] C:\DOCUME~1\LOCALS~1\APPLIC~1\Adobe
[01/11/2008|23:55] C:\DOCUME~1\LOCALS~1\APPLIC~1\AVG7
[01/09/2008|15:00] C:\DOCUME~1\LOCALS~1\APPLIC~1\Google
[01/09/2008|15:00] C:\DOCUME~1\LOCALS~1\APPLIC~1\ICQ Toolbar
[01/11/2008|23:51] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[28/10/2008|18:00] C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370
[17/12/2005|19:50] C:\DOCUME~1\LOCALS~1\APPLIC~1\Symantec
[16/07/2008|09:03] C:\DOCUME~1\NETWOR~1\APPLIC~1\Adobe
[16/07/2008|09:02] C:\DOCUME~1\NETWOR~1\APPLIC~1\Google
[16/07/2008|09:02] C:\DOCUME~1\NETWOR~1\APPLIC~1\ICQ Toolbar
[16/07/2008|09:03] C:\DOCUME~1\NETWOR~1\APPLIC~1\Macromedia
[11/11/2008|14:17] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[19/11/2008|20:03] C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[26/12/2008 23:00][--a------] C:\WINDOWS\tasks\At72.job
[26/12/2008 22:00][--a------] C:\WINDOWS\tasks\At71.job
[26/12/2008 21:00][--a------] C:\WINDOWS\tasks\At70.job
[26/12/2008 20:00][--a------] C:\WINDOWS\tasks\At69.job
[26/12/2008 19:00][--a------] C:\WINDOWS\tasks\At68.job
[26/12/2008 18:00][--a------] C:\WINDOWS\tasks\At67.job
[27/12/2008 17:00][--a------] C:\WINDOWS\tasks\At66.job
[27/12/2008 15:00][--a------] C:\WINDOWS\tasks\At64.job
[27/12/2008 16:00][--a------] C:\WINDOWS\tasks\At65.job
[21/12/2008 13:00][--a------] C:\WINDOWS\tasks\At62.job
[26/12/2008 14:00][--a------] C:\WINDOWS\tasks\At63.job
[15/12/2008 12:00][--a------] C:\WINDOWS\tasks\At61.job
[16/12/2008 11:00][--a------] C:\WINDOWS\tasks\At60.job
[08/12/2008 10:00][--a------] C:\WINDOWS\tasks\At59.job
[21/09/2008 17:31][--a------] C:\WINDOWS\tasks\At58.job
[21/09/2008 17:31][--a------] C:\WINDOWS\tasks\At57.job
[21/09/2008 17:31][--a------] C:\WINDOWS\tasks\At56.job
[21/09/2008 17:31][--a------] C:\WINDOWS\tasks\At54.job
[21/09/2008 17:31][--a------] C:\WINDOWS\tasks\At55.job
[21/09/2008 17:31][--a------] C:\WINDOWS\tasks\At53.job
[27/12/2008 02:00][--a------] C:\WINDOWS\tasks\At51.job
[21/09/2008 17:31][--a------] C:\WINDOWS\tasks\At52.job
[27/12/2008 01:00][--a------] C:\WINDOWS\tasks\At50.job
[27/12/2008 00:17][--a------] C:\WINDOWS\tasks\At49.job
[26/12/2008 23:00][--a------] C:\WINDOWS\tasks\At48.job
[26/12/2008 21:00][--a------] C:\WINDOWS\tasks\At46.job
[26/12/2008 22:00][--a------] C:\WINDOWS\tasks\At47.job
[26/12/2008 20:00][--a------] C:\WINDOWS\tasks\At45.job
[26/12/2008 19:00][--a------] C:\WINDOWS\tasks\At44.job
[27/12/2008 17:00][--a------] C:\WINDOWS\tasks\At42.job
[26/12/2008 18:00][--a------] C:\WINDOWS\tasks\At43.job
[27/12/2008 16:00][--a------] C:\WINDOWS\tasks\At41.job
[27/12/2008 15:00][--a------] C:\WINDOWS\tasks\At40.job
[26/12/2008 14:00][--a------] C:\WINDOWS\tasks\At39.job
[21/12/2008 13:07][--a------] C:\WINDOWS\tasks\At38.job
[15/12/2008 15:26][--a------] C:\WINDOWS\tasks\At37.job
[16/12/2008 12:52][--a------] C:\WINDOWS\tasks\At36.job
[15/07/2008 20:58][--a------] C:\WINDOWS\tasks\At34.job
[08/12/2008 10:00][--a------] C:\WINDOWS\tasks\At35.job
[15/07/2008 20:58][--a------] C:\WINDOWS\tasks\At33.job
[15/07/2008 20:58][--a------] C:\WINDOWS\tasks\At32.job
[15/07/2008 20:58][--a------] C:\WINDOWS\tasks\At31.job
[15/07/2008 20:58][--a------] C:\WINDOWS\tasks\At30.job
[25/07/2008 03:00][--a------] C:\WINDOWS\tasks\At29.job
[31/08/2008 02:03][--a------] C:\WINDOWS\tasks\At28.job
[27/12/2008 02:00][--a------] C:\WINDOWS\tasks\At27.job
[27/12/2008 01:00][--a------] C:\WINDOWS\tasks\At26.job
[27/12/2008 00:28][--a------] C:\WINDOWS\tasks\At25.job
[26/12/2008 18:00][--a------] C:\WINDOWS\tasks\Norton Security Scan.job
[23/12/2008 22:18][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[27/12/2008 14:27][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 19:00][-rah-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ MsgPlus SPONSOR INSTALLED !
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MsgPlus! Plugin]
"SponsorInstalled"=dword:00000000
--------------------\\ Listing des dossiers dans C:\Program Files
[14/05/2006|19:32] C:\Program Files\ACD Systems
[22/12/2008|13:33] C:\Program Files\Adobe
[29/09/2005|20:03] C:\Program Files\AOL 9.0
[23/12/2008|22:18] C:\Program Files\Apple Software Update
[01/01/2005|16:12] C:\Program Files\ATI Technologies
[23/12/2008|22:19] C:\Program Files\Bonjour
[26/10/2008|15:09] C:\Program Files\CCleaner
[26/01/2008|15:46] C:\Program Files\Changer XP
[24/11/2004|02:37] C:\Program Files\ComPlus Applications
[10/01/2007|15:19] C:\Program Files\Dictionnaire
[02/04/2006|18:29] C:\Program Files\DivX
[29/06/2007|18:04] C:\Program Files\EA GAMES
[01/01/2006|23:35] C:\Program Files\Easy Internet signup
[05/05/2008|14:44] C:\Program Files\eMule
[23/12/2008|22:18] C:\Program Files\Fichiers communs
[29/10/2007|23:14] C:\Program Files\Go!Zilla
[02/11/2008|23:18] C:\Program Files\Google
[02/11/2008|00:01] C:\Program Files\Grisoft
[21/01/2007|22:23] C:\Program Files\Hewlett-Packard
[21/01/2007|22:23] C:\Program Files\HP
[01/01/2005|15:49] C:\Program Files\HPQ
[09/04/2007|20:08] C:\Program Files\ICQLite
[27/12/2008|14:45] C:\Program Files\ICQToolbar
[22/12/2008|13:30] C:\Program Files\InstallShield Installation Information
[11/11/2008|18:03] C:\Program Files\Internet Explorer
[01/01/2005|16:12] C:\Program Files\InterVideo
[23/12/2008|22:20] C:\Program Files\iPod
[23/12/2008|22:21] C:\Program Files\iTunes
[14/09/2005|15:25] C:\Program Files\Ja2
[17/10/2006|18:18] C:\Program Files\Jasc Software Inc
[29/09/2005|17:48] C:\Program Files\Java
[09/06/2008|20:25] C:\Program Files\LG Electronics
[09/06/2008|20:24] C:\Program Files\LGE GSM PC Sync
[05/05/2008|14:37] C:\Program Files\LimeWire
[31/10/2005|23:07] C:\Program Files\Logitech
[03/06/2006|11:44] C:\Program Files\Macrogaming
[30/09/2005|20:06] C:\Program Files\Maxis
[29/08/2008|01:02] C:\Program Files\Messenger
[24/11/2006|21:50] C:\Program Files\Messenger Plus! Live
[16/09/2007|19:15] C:\Program Files\MessengerPlus! 3
[09/10/2008|16:41] C:\Program Files\Microsoft
[25/11/2004|04:27] C:\Program Files\microsoft frontpage
[23/12/2008|22:09] C:\Program Files\Microsoft Office
[01/01/2006|23:35] C:\Program Files\Microsoft Picture It! 7
[09/10/2008|16:43] C:\Program Files\Microsoft SQL Server Compact Edition
[31/10/2005|20:52] C:\Program Files\Microsoft Works
[15/10/2005|18:41] C:\Program Files\Microsoft Works Suite 2003
[19/01/2006|20:27] C:\Program Files\Mindscape
[08/06/2006|18:17] C:\Program Files\MonkeyPhoto
[25/11/2004|04:27] C:\Program Files\Movie Maker
[27/12/2008|14:54] C:\Program Files\Mozilla Firefox
[03/11/2008|14:58] C:\Program Files\Mozilla Firefox 3 Beta 5
[24/07/2007|23:21] C:\Program Files\MP3 Player Utilities 4.04
[26/10/2008|14:27] C:\Program Files\MSECACHE
[26/10/2008|13:19] C:\Program Files\MSN
[25/11/2004|04:27] C:\Program Files\MSN Gaming Zone
[15/11/2006|17:58] C:\Program Files\MSXML 4.0
[01/01/2005|16:13] C:\Program Files\muvee Technologies
[04/12/2005|14:31] C:\Program Files\Net Pro Anti Popup
[20/11/2005|17:51] C:\Program Files\NetMeeting
[01/09/2007|21:39] C:\Program Files\Neuf
[11/03/2006|12:14] C:\Program Files\Norton AntiVirus
[17/12/2005|20:18] C:\Program Files\Norton Internet Security
[21/12/2008|18:00] C:\Program Files\Norton Security Scan
[05/05/2008|14:44] C:\Program Files\NRJ
[25/11/2004|04:27] C:\Program Files\Online Services
[12/06/2007|22:56] C:\Program Files\Outlook Express
[20/05/2007|20:26] C:\Program Files\PC-Doctor for Windows
[24/12/2008|18:35] C:\Program Files\PhotoFiltre
[04/12/2008|19:21] C:\Program Files\PowerPoint to Video
[23/12/2008|22:19] C:\Program Files\QuickTime
[17/11/2008|21:17] C:\Program Files\Real
[01/01/2005|15:54] C:\Program Files\Services en ligne
[02/10/2005|11:59] C:\Program Files\SLD Codec Pack
[29/08/2006|15:21] C:\Program Files\SM
[03/11/2007|14:33] C:\Program Files\Smart Explorer
[05/05/2007|23:16] C:\Program Files\SmartDraw 2007
[01/01/2005|15:40] C:\Program Files\Sonic
[24/10/2005|19:15] C:\Program Files\Spybot - Search & Destroy
[23/12/2008|22:13] C:\Program Files\Spyware Doctor
[22/05/2006|21:43] C:\Program Files\Stardock
[02/07/2007|21:02] C:\Program Files\Starware370
[22/12/2008|13:36] C:\Program Files\SUPERAntiSpyware
[11/03/2006|12:14] C:\Program Files\Symantec
[27/12/2008|14:46] C:\Program Files\Trend Micro
[06/03/2007|17:02] C:\Program Files\Ulead Systems
[24/11/2004|02:37] C:\Program Files\Uninstall Information
[26/08/2007|17:30] C:\Program Files\VideoLAN
[31/10/2005|19:23] C:\Program Files\WinAce
[01/11/2008|00:03] C:\Program Files\Winamp
[26/10/2008|15:37] C:\Program Files\Windows Live
[09/10/2008|16:42] C:\Program Files\Windows Live Toolbar
[09/04/2008|19:58] C:\Program Files\Windows Media Components
[24/03/2008|22:22] C:\Program Files\Windows Media Connect 2
[24/03/2008|22:22] C:\Program Files\Windows Media Player
[20/09/2005|17:06] C:\Program Files\Windows NT
[24/11/2004|02:37] C:\Program Files\WindowsUpdate
[01/05/2007|17:50] C:\Program Files\WinRAR
[25/11/2004|04:28] C:\Program Files\xerox
[11/12/2005|14:38] C:\Program Files\Yahoo!
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[14/05/2006|19:32] C:\Program Files\Fichiers communs\ACD Systems
[30/08/2006|18:10] C:\Program Files\Fichiers communs\Adobe
[29/09/2005|20:03] C:\Program Files\Fichiers communs\AOL
[29/09/2005|20:03] C:\Program Files\Fichiers communs\aolshare
[23/12/2008|22:20] C:\Program Files\Fichiers communs\Apple
[31/10/2005|23:07] C:\Program Files\Fichiers communs\FotoWire
[01/01/2005|15:35] C:\Program Files\Fichiers communs\Hewlett-Packard
[01/01/2005|15:29] C:\Program Files\Fichiers communs\HP
[01/01/2005|16:12] C:\Program Files\Fichiers communs\InstallShield
[01/05/2006|15:13] C:\Program Files\Fichiers communs\Jasc Software Inc
[01/01/2005|15:15] C:\Program Files\Fichiers communs\Java
[31/10/2005|23:05] C:\Program Files\Fichiers communs\Logitech
[26/10/2008|15:38] C:\Program Files\Fichiers communs\Microsoft Shared
[25/11/2004|04:26] C:\Program Files\Fichiers communs\MSSoap
[01/01/2005|16:13] C:\Program Files\Fichiers communs\muvee Technologies
[22/08/2006|10:51] C:\Program Files\Fichiers communs\NSV
[25/11/2004|04:26] C:\Program Files\Fichiers communs\ODBC
[22/12/2008|13:35] C:\Program Files\Fichiers communs\Real
[20/09/2005|17:06] C:\Program Files\Fichiers communs\Services
[01/01/2005|15:39] C:\Program Files\Fichiers communs\Sonic Shared
[25/11/2004|04:26] C:\Program Files\Fichiers communs\SpeechEngines
[22/05/2006|21:43] C:\Program Files\Fichiers communs\Stardock
[01/01/2005|15:39] C:\Program Files\Fichiers communs\SureThing Shared
[23/11/2008|18:05] C:\Program Files\Fichiers communs\Symantec Shared
[12/06/2007|22:56] C:\Program Files\Fichiers communs\System
[01/01/2005|15:40] C:\Program Files\Fichiers communs\TiVo Shared
[06/11/2006|20:48] C:\Program Files\Fichiers communs\Ulead Systems
[09/10/2008|16:24] C:\Program Files\Fichiers communs\Windows Live
[26/10/2008|15:38] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[03/04/2006|18:48] C:\Program Files\Fichiers communs\WinFixer 2005
--------------------\\ Process
( 52 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-12-27 17:31:00
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 1
--------------------\\ Recherche d'autres infections
C:\WINDOWS\Tasks\At25.job
C:\WINDOWS\Tasks\At26.job
C:\WINDOWS\Tasks\At27.job
C:\WINDOWS\Tasks\At28.job
C:\WINDOWS\Tasks\At29.job
C:\WINDOWS\Tasks\At30.job
C:\WINDOWS\Tasks\At31.job
C:\WINDOWS\Tasks\At32.job
C:\WINDOWS\Tasks\At33.job
C:\WINDOWS\Tasks\At34.job
C:\WINDOWS\Tasks\At35.job
C:\WINDOWS\Tasks\At36.job
C:\WINDOWS\Tasks\At37.job
C:\WINDOWS\Tasks\At38.job
C:\WINDOWS\Tasks\At39.job
C:\WINDOWS\Tasks\At40.job
C:\WINDOWS\Tasks\At41.job
C:\WINDOWS\Tasks\At42.job
C:\WINDOWS\Tasks\At43.job
C:\WINDOWS\Tasks\At44.job
C:\WINDOWS\Tasks\At45.job
C:\WINDOWS\Tasks\At46.job
C:\WINDOWS\Tasks\At47.job
C:\WINDOWS\Tasks\At48.job
C:\WINDOWS\Tasks\At49.job
C:\WINDOWS\Tasks\At50.job
C:\WINDOWS\Tasks\At51.job
C:\WINDOWS\Tasks\At52.job
C:\WINDOWS\Tasks\At53.job
C:\WINDOWS\Tasks\At54.job
C:\WINDOWS\Tasks\At55.job
C:\WINDOWS\Tasks\At56.job
C:\WINDOWS\Tasks\At57.job
C:\WINDOWS\Tasks\At58.job
C:\WINDOWS\Tasks\At59.job
C:\WINDOWS\Tasks\At60.job
C:\WINDOWS\Tasks\At61.job
C:\WINDOWS\Tasks\At62.job
C:\WINDOWS\Tasks\At63.job
C:\WINDOWS\Tasks\At64.job
C:\WINDOWS\Tasks\At65.job
C:\WINDOWS\Tasks\At66.job
C:\WINDOWS\Tasks\At67.job
C:\WINDOWS\Tasks\At68.job
C:\WINDOWS\Tasks\At69.job
C:\WINDOWS\Tasks\At70.job
C:\WINDOWS\Tasks\At71.job
C:\WINDOWS\Tasks\At72.job
--------------------\\ ROGUES ..
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370
C:\PROGRA~1\Starware370
[F:3187][D:81]-> C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp
[F:109][D:0]-> C:\DOCUME~1\HP_PRO~1\Cookies
[F:10721][D:21]-> C:\DOCUME~1\HP_PRO~1\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 27/12/2008|17:14 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 27/12/2008|17:34 - Option : [2]
--------------------\\ Fin du rapport a 17:34:24
2. Le rapport avec Toolbar S&D (team IDN) :
-----------\\ ToolBar S&D 1.2.8 XP/Vista
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : Intel(R) Pentium(R) 4 CPU 2.93GHz )
BIOS : v3.06
USER : HP_Propriétaire ( Administrator )
BOOT : Normal boot
C:\ (Local Disk) - NTFS - Total:179 Go (Free:151 Go)
D:\ (Local Disk) - NTFS - Total:6 Go (Free:6 Go)
E:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)
H:\ (USB)
I:\ (USB)
J:\ (USB)
K:\ (USB)
"C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 )
Option : [1] ( 27/12/2008|17:38 )
-----------\\ Recherche de Fichiers / Dossiers ...
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\buttons
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\contexts
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\SimpleUpdate
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem12F6.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem13A6.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem33BA.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem3687.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem459F.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem574A.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem594B.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem6062.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem615F.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem6562.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem6B92.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem6C7D.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem6CE8.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem6E48.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem6EC9.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem792F.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem794E.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem83D2.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem8C7F.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem91B5.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem94F8.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem9798.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem982C.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem9954.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem9B43.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem9EC.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemA541.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemAA9F.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemADCE.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemAFB9.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemB653.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemB7E.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemB9E4.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemBB7.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemBC90.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemBD11.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemBD31.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemBDF0.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemBE9D.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemBFC5.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemC018.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemC0E7.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemC15C.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemC216.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemC2B1.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemC429.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\buttons\563_button_1b_def.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\buttons\563_button_1b_over.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\buttons\572_button_1b_def.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\buttons\572_button_1b_over.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\buttons\573_button_1b_def.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\buttons\573_button_1b_over.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\buttons\Button_60.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\buttons\Button_70.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\buttons\Button_80.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\buttons\FindIt.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\buttons\FindItHot.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\buttons\findithotxp.png
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\buttons\finditxp.png
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\buttons\logo.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\buttons\logoxp.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\contexts\error.xml
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\contexts\Related.xml
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\contexts\Travel.xml
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\SimpleUpdate\ProductMessagingConfig.xml
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\SimpleUpdate\ProductMessagingConfig.xml.backup
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\SimpleUpdate\SimpleUpdateConfig.xml
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\SimpleUpdate\SimpleUpdateConfig.xml.backup
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\SimpleUpdate\TimerManagerConfig.xml
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\SimpleUpdate\TimerManagerConfig.xml.backup
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\BrowserSearch
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Button_6
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Button_7
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Button_8
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Configurator
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\ErrorSearch
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Layouts
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Manager
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Paroles
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Radio_FR
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Recherche_de_musique
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\RelatedSearch
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Telechargement
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\TemB9C.tmp
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Toolbar
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\ToolbarLogo
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\ToolbarSearch
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\TravelSearch
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\BrowserSearch\BrowserSearch.xml
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\BrowserSearch\BrowserSearch.xml.backup
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Button_6\Button_6Options.xml
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Button_6\Button_6Options.xml.backup
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Button_7\Button_7Options.xml
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Button_7\Button_7Options.xml.backup
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Button_8\Button_8Options.xml
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Button_8\Button_8Options.xml.backup
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Configurator\Configurator.xml
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Configurator\Configurator.xml.backup
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\ErrorSearch\ErrorSearchOptions.xml
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\ErrorSearch\ErrorSearchOptions.xml.backup
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Layouts\ToolbarLayout.xml
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Layouts\ToolbarLayout.xml.backup
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Manager\ManagerOptions.xml
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Manager\ManagerOptions.xml.backup
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Paroles\ParolesOptions.xml
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Paroles\ParolesOptions.xml.backup
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Radio_FR\Radio_FROptions.xml
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Radio_FR\Radio_FROptions.xml.backup
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Recherche_de_musique\Recherche_de_musiqueOptions.xml
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Recherche_de_musique\Recherche_de_musiqueOptions.xml.backup
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\RelatedSearch\RelatedSearchOptions.xml
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\RelatedSearch\RelatedSearchOptions.xml.backup
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Telechargement\TelechargementOptions.xml
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Telechargement\TelechargementOptions.xml.backup
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Toolbar\TBProductsOptions.xml
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Toolbar\TBProductsOptions.xml.backup
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\ToolbarLogo\ToolbarLogoOptions.xml
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\ToolbarLogo\ToolbarLogoOptions.xml.backup
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\ToolbarSearch\ToolbarSearchOptions.xml
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\ToolbarSearch\ToolbarSearchOptions.xml.backup
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\TravelSearch\TravelSearchOptions.xml
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\TravelSearch\TravelSearchOptions.xml.backup
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\BrowserSearch
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Button_6
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Button_7
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Button_8
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Configurator
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\ErrorSearch
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Layouts
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Manager
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Paroles
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Radio_FR
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Recherche_de_musique
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\RelatedSearch
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Telechargement
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Toolbar
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\ToolbarLogo
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\ToolbarSearch
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\TravelSearch
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\BrowserSearch\BrowserSearch.xml
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\BrowserSearch\BrowserSearch.xml.backup
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Button_6\Button_6Options.xml
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Button_6\Button_6Options.xml.backup
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Button_7\Button_7Options.xml
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Button_7\Button_7Options.xml.backup
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Button_8\Button_8Options.xml
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Button_8\Button_8Options.xml.backup
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Configurator\Configurator.xml
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Configurator\Configurator.xml.backup
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\ErrorSearch\ErrorSearchOptions.xml
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\ErrorSearch\ErrorSearchOptions.xml.backup
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Layouts\ToolbarLayout.xml
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Layouts\ToolbarLayout.xml.backup
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Manager\ManagerOptions.xml
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Manager\ManagerOptions.xml.backup
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Paroles\ParolesOptions.xml
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Paroles\ParolesOptions.xml.backup
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Radio_FR\Radio_FROptions.xml
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Radio_FR\Radio_FROptions.xml.backup
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Recherche_de_musique\Recherche_de_musiqueOptions.xml
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Recherche_de_musique\Recherche_de_musiqueOptions.xml.backup
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\RelatedSearch\RelatedSearchOptions.xml
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\RelatedSearch\RelatedSearchOptions.xml.backup
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Telechargement\TelechargementOptions.xml
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Telechargement\TelechargementOptions.xml.backup
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Toolbar\TBProductsOptions.xml
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Toolbar\TBProductsOptions.xml.backup
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\ToolbarLogo\ToolbarLogoOptions.xml
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\ToolbarLogo\ToolbarLogoOptions.xml.backup
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\ToolbarSearch\ToolbarSearchOptions.xml
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\ToolbarSearch\ToolbarSearchOptions.xml.backup
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\TravelSearch\TravelSearchOptions.xml
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\TravelSearch\TravelSearchOptions.xml.backup
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\BrowserSearch
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Button_6
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Button_7
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Button_8
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Configurator
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\ErrorSearch
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Layouts
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Manager
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Paroles
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Radio_FR
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Recherche_de_musique
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\RelatedSearch
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Telechargement
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Toolbar
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\ToolbarLogo
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\ToolbarSearch
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\TravelSearch
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\BrowserSearch\BrowserSearch.xml
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\BrowserSearch\BrowserSearch.xml.backup
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Button_6\Button_6Options.xml
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Button_6\Button_6Options.xml.backup
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Button_7\Button_7Options.xml
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Button_7\Button_7Options.xml.backup
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Button_8\Button_8Options.xml
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Button_8\Button_8Options.xml.backup
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Configurator\Configurator.xml
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Configurator\Configurator.xml.backup
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\ErrorSearch\ErrorSearchOptions.xml
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\ErrorSearch\ErrorSearchOptions.xml.backup
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Layouts\ToolbarLayout.xml
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Layouts\ToolbarLayout.xml.backup
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Manager\ManagerOptions.xml
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Manager\ManagerOptions.xml.backup
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Paroles\ParolesOptions.xml
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Paroles\ParolesOptions.xml.backup
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Radio_FR\Radio_FROptions.xml
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Radio_FR\Radio_FROptions.xml.backup
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Recherche_de_musique\Recherche_de_musiqueOptions.xml
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Recherche_de_musique\Recherche_de_musiqueOptions.xml.backup
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\RelatedSearch\RelatedSearchOptions.xml
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\RelatedSearch\RelatedSearchOptions.xml.backup
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Telechargement\TelechargementOptions.xml
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Telechargement\TelechargementOptions.xml.backup
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Toolbar\TBProductsOptions.xml
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Toolbar\TBProductsOptions.xml.backup
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\ToolbarLogo\ToolbarLogoOptions.xml
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\ToolbarLogo\ToolbarLogoOptions.xml.backup
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\ToolbarSearch\ToolbarSearchOptions.xml
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\ToolbarSearch\ToolbarSearchOptions.xml.backup
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\TravelSearch\TravelSearchOptions.xml
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\TravelSearch\TravelSearchOptions.xml.backup
C:\Program Files\Starware370
C:\Program Files\Starware370\bin
C:\Program Files\Starware370\brand.bmp
C:\Program Files\Starware370\icons
C:\Program Files\Starware370\Starware370Config.xml
C:\Program Files\Starware370\Starware370Uninstall.exe
C:\Program Files\Starware370\bin\Starware370.dll
C:\Program Files\Starware370\icons\star_16.ico
-----------\\ Extensions
(HP_Propri‚taire) - {b9db16a4-6edc-47ec-a1f4-b86292ed211d} => dwhelper
-----------\\ [..\Internet Explorer\Main]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Start Page"="https://www.msn.com/fr-fr/?ocid=iehp"
"Default_Page_URL"="http://www.neuf.fr"
"Default_Search_URL"="http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q305&bd=pavilion&pf=desktop"
"Search Bar"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Prev Search Page"="https://www.google.com/?gws_rd=ssl"
"Prev Search Bar"="http://www.google.com/toolbar/ie8/sidebar.html"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"SearchMigratedDefaultURL"="https://www.google.com/webhp?gws_rd=ssl{searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="https://www.msn.com/fr-fr/?ocid=iehp"
"Default_Search_URL"="https://actus.sfr.fr"
"Start Page"="https://www.msn.com/fr-fr/?ocid=iehp"
"Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
--------------------\\ Recherche d'autres infections
C:\WINDOWS\Tasks\At25.job
C:\WINDOWS\Tasks\At26.job
C:\WINDOWS\Tasks\At27.job
C:\WINDOWS\Tasks\At28.job
C:\WINDOWS\Tasks\At29.job
C:\WINDOWS\Tasks\At30.job
C:\WINDOWS\Tasks\At31.job
C:\WINDOWS\Tasks\At32.job
C:\WINDOWS\Tasks\At33.job
C:\WINDOWS\Tasks\At34.job
C:\WINDOWS\Tasks\At35.job
C:\WINDOWS\Tasks\At36.job
C:\WINDOWS\Tasks\At37.job
C:\WINDOWS\Tasks\At38.job
C:\WINDOWS\Tasks\At39.job
C:\WINDOWS\Tasks\At40.job
C:\WINDOWS\Tasks\At41.job
C:\WINDOWS\Tasks\At42.job
C:\WINDOWS\Tasks\At43.job
C:\WINDOWS\Tasks\At44.job
C:\WINDOWS\Tasks\At45.job
C:\WINDOWS\Tasks\At46.job
C:\WINDOWS\Tasks\At47.job
C:\WINDOWS\Tasks\At48.job
C:\WINDOWS\Tasks\At49.job
C:\WINDOWS\Tasks\At50.job
C:\WINDOWS\Tasks\At51.job
C:\WINDOWS\Tasks\At52.job
C:\WINDOWS\Tasks\At53.job
C:\WINDOWS\Tasks\At54.job
C:\WINDOWS\Tasks\At55.job
C:\WINDOWS\Tasks\At56.job
C:\WINDOWS\Tasks\At57.job
C:\WINDOWS\Tasks\At58.job
C:\WINDOWS\Tasks\At59.job
C:\WINDOWS\Tasks\At60.job
C:\WINDOWS\Tasks\At61.job
C:\WINDOWS\Tasks\At62.job
C:\WINDOWS\Tasks\At63.job
C:\WINDOWS\Tasks\At64.job
C:\WINDOWS\Tasks\At65.job
C:\WINDOWS\Tasks\At66.job
C:\WINDOWS\Tasks\At67.job
C:\WINDOWS\Tasks\At68.job
C:\WINDOWS\Tasks\At69.job
C:\WINDOWS\Tasks\At70.job
C:\WINDOWS\Tasks\At71.job
C:\WINDOWS\Tasks\At72.job
--------------------\\ ROGUES ..
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370
C:\PROGRA~1\Starware370
1 - "C:\ToolBar SD\TB_1.txt" - 27/12/2008|17:41 - Option : [1]
-----------\\ Fin du rapport a 17:41:01,53
--------------------\\ Lop S&D 4.2.5-0 XP/Vista
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : Intel(R) Pentium(R) 4 CPU 2.93GHz )
BIOS : v3.06
USER : HP_Propriétaire ( Administrator )
BOOT : Normal boot
C:\ (Local Disk) - NTFS - Total:179 Go (Free:151 Go)
D:\ (Local Disk) - NTFS - Total:6 Go (Free:6 Go)
E:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)
H:\ (USB)
I:\ (USB)
J:\ (USB)
K:\ (USB)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [2] ( 27/12/2008|17:21 )
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION
Supprime! - C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsu891.tmp
Supprime! - C:\Program Files\Adverts\uninst.exe
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@banner.cotedazurpalace[2].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@cotedazurpalace[2].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@www.cotedazurpalace[1].txt
Supprime! - C:\WINDOWS\Tasks\AF59A4E991865681.job
Supprime! - C:\DOCUME~1\HP_PRO~1\APPLIC~1\mpeg64~1
Supprime! - C:\Program Files\mpeg64~1
Supprime! - C:\Program Files\Adverts
-
[ Fichier Hosts ] .. Restaure!
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing des dossiers dans APPLIC~1
[23/12/2008|22:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[22/12/2008|13:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{5A76C6B3-3FA8-46D0-AA81-62C3805E38BC}
[22/12/2008|13:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\~0
[14/05/2006|19:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ACD Systems
[01/01/2005|15:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[29/09/2005|20:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL
[23/12/2008|22:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[03/12/2006|15:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[01/11/2008|23:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avg7
[12/03/2008|15:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[01/01/2005|15:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Hewlett-Packard
[03/11/2007|00:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\holdcurberrorjump
[20/07/2008|19:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[01/01/2005|15:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[28/11/2005|19:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[01/11/2008|23:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[14/09/2005|12:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\muvee Technologies
[31/10/2005|23:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[01/01/2005|15:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[02/11/2008|00:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Simply Super Software
[21/01/2007|22:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
[24/10/2005|19:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[27/12/2008|17:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370
[10/11/2008|15:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SUPERAntiSpyware.com
[11/03/2006|12:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[23/12/2008|22:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[06/03/2007|17:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems
[17/08/2006|11:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[26/10/2006|14:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[09/10/2008|16:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WindowsLiveInstaller
[26/10/2008|15:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[26/10/2008|15:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion
[02/04/2007|11:41] C:\DOCUME~1\ANDRA~1\APPLIC~1\AOL
[01/01/2005|15:44] C:\DOCUME~1\ANDRA~1\APPLIC~1\Apple Computer
[02/04/2007|11:41] C:\DOCUME~1\ANDRA~1\APPLIC~1\AVG7
[02/04/2007|11:42] C:\DOCUME~1\ANDRA~1\APPLIC~1\HP
[25/11/2004|04:26] C:\DOCUME~1\ANDRA~1\APPLIC~1\Identities
[01/11/2008|23:51] C:\DOCUME~1\ANDRA~1\APPLIC~1\Microsoft
[01/01/2005|15:56] C:\DOCUME~1\ANDRA~1\APPLIC~1\SampleView
[01/01/2005|16:04] C:\DOCUME~1\ANDRA~1\APPLIC~1\Symantec
[01/01/2005|15:44] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Apple Computer
[25/11/2004|04:26] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[05/07/2007|17:33] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[01/01/2005|15:56] C:\DOCUME~1\DEFAUL~1\APPLIC~1\SampleView
[01/01/2005|16:04] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec
[14/05/2006|19:35] C:\DOCUME~1\HP_PRO~1\APPLIC~1\ACD Systems
[19/11/2008|17:36] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Adobe
[28/11/2008|13:25] C:\DOCUME~1\HP_PRO~1\APPLIC~1\AdobeUM
[17/02/2006|17:03] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Ahead
[29/09/2005|20:12] C:\DOCUME~1\HP_PRO~1\APPLIC~1\AOL
[03/01/2008|22:26] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Apple Computer
[01/11/2008|23:55] C:\DOCUME~1\HP_PRO~1\APPLIC~1\AVG7
[31/10/2008|23:48] C:\DOCUME~1\HP_PRO~1\APPLIC~1\dvdcss
[31/10/2005|23:07] C:\DOCUME~1\HP_PRO~1\APPLIC~1\FotoWire
[25/02/2007|13:08] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Google
[17/03/2006|21:34] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Help
[21/01/2007|22:40] C:\DOCUME~1\HP_PRO~1\APPLIC~1\HP
[12/05/2007|17:48] C:\DOCUME~1\HP_PRO~1\APPLIC~1\ICQ
[01/05/2007|18:46] C:\DOCUME~1\HP_PRO~1\APPLIC~1\ICQ Toolbar
[25/11/2004|04:26] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Identities
[28/11/2008|19:20] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Image Zone Express
[14/09/2005|12:33] C:\DOCUME~1\HP_PRO~1\APPLIC~1\InterVideo
[09/02/2006|19:16] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Jasc
[01/05/2006|15:12] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Jasc Software Inc
[01/11/2008|23:45] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Lavasoft
[13/09/2005|16:09] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Leadertech
[03/07/2008|18:04] C:\DOCUME~1\HP_PRO~1\APPLIC~1\LimeWire
[11/12/2005|14:38] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Macromedia
[09/10/2008|19:28] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Microsoft
[11/10/2008|14:42] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Mostick
[13/05/2008|15:35] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Mozilla
[26/10/2008|13:19] C:\DOCUME~1\HP_PRO~1\APPLIC~1\MSNInstaller
[14/09/2005|12:35] C:\DOCUME~1\HP_PRO~1\APPLIC~1\muvee Technologies
[22/12/2008|13:35] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Real
[01/01/2005|15:56] C:\DOCUME~1\HP_PRO~1\APPLIC~1\SampleView
[02/11/2008|00:53] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Simply Super Software
[05/05/2007|23:24] C:\DOCUME~1\HP_PRO~1\APPLIC~1\SmartDraw
[13/09/2005|16:11] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Sonic
[27/12/2008|17:09] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370
[30/09/2005|15:54] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Sun
[22/12/2008|13:37] C:\DOCUME~1\HP_PRO~1\APPLIC~1\SUPERAntiSpyware.com
[29/09/2005|18:44] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Symantec
[26/08/2007|17:32] C:\DOCUME~1\HP_PRO~1\APPLIC~1\vlc
[12/09/2008|17:27] C:\DOCUME~1\LOCALS~1\APPLIC~1\Adobe
[01/11/2008|23:55] C:\DOCUME~1\LOCALS~1\APPLIC~1\AVG7
[01/09/2008|15:00] C:\DOCUME~1\LOCALS~1\APPLIC~1\Google
[01/09/2008|15:00] C:\DOCUME~1\LOCALS~1\APPLIC~1\ICQ Toolbar
[01/11/2008|23:51] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[28/10/2008|18:00] C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370
[17/12/2005|19:50] C:\DOCUME~1\LOCALS~1\APPLIC~1\Symantec
[16/07/2008|09:03] C:\DOCUME~1\NETWOR~1\APPLIC~1\Adobe
[16/07/2008|09:02] C:\DOCUME~1\NETWOR~1\APPLIC~1\Google
[16/07/2008|09:02] C:\DOCUME~1\NETWOR~1\APPLIC~1\ICQ Toolbar
[16/07/2008|09:03] C:\DOCUME~1\NETWOR~1\APPLIC~1\Macromedia
[11/11/2008|14:17] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[19/11/2008|20:03] C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[26/12/2008 23:00][--a------] C:\WINDOWS\tasks\At72.job
[26/12/2008 22:00][--a------] C:\WINDOWS\tasks\At71.job
[26/12/2008 21:00][--a------] C:\WINDOWS\tasks\At70.job
[26/12/2008 20:00][--a------] C:\WINDOWS\tasks\At69.job
[26/12/2008 19:00][--a------] C:\WINDOWS\tasks\At68.job
[26/12/2008 18:00][--a------] C:\WINDOWS\tasks\At67.job
[27/12/2008 17:00][--a------] C:\WINDOWS\tasks\At66.job
[27/12/2008 15:00][--a------] C:\WINDOWS\tasks\At64.job
[27/12/2008 16:00][--a------] C:\WINDOWS\tasks\At65.job
[21/12/2008 13:00][--a------] C:\WINDOWS\tasks\At62.job
[26/12/2008 14:00][--a------] C:\WINDOWS\tasks\At63.job
[15/12/2008 12:00][--a------] C:\WINDOWS\tasks\At61.job
[16/12/2008 11:00][--a------] C:\WINDOWS\tasks\At60.job
[08/12/2008 10:00][--a------] C:\WINDOWS\tasks\At59.job
[21/09/2008 17:31][--a------] C:\WINDOWS\tasks\At58.job
[21/09/2008 17:31][--a------] C:\WINDOWS\tasks\At57.job
[21/09/2008 17:31][--a------] C:\WINDOWS\tasks\At56.job
[21/09/2008 17:31][--a------] C:\WINDOWS\tasks\At54.job
[21/09/2008 17:31][--a------] C:\WINDOWS\tasks\At55.job
[21/09/2008 17:31][--a------] C:\WINDOWS\tasks\At53.job
[27/12/2008 02:00][--a------] C:\WINDOWS\tasks\At51.job
[21/09/2008 17:31][--a------] C:\WINDOWS\tasks\At52.job
[27/12/2008 01:00][--a------] C:\WINDOWS\tasks\At50.job
[27/12/2008 00:17][--a------] C:\WINDOWS\tasks\At49.job
[26/12/2008 23:00][--a------] C:\WINDOWS\tasks\At48.job
[26/12/2008 21:00][--a------] C:\WINDOWS\tasks\At46.job
[26/12/2008 22:00][--a------] C:\WINDOWS\tasks\At47.job
[26/12/2008 20:00][--a------] C:\WINDOWS\tasks\At45.job
[26/12/2008 19:00][--a------] C:\WINDOWS\tasks\At44.job
[27/12/2008 17:00][--a------] C:\WINDOWS\tasks\At42.job
[26/12/2008 18:00][--a------] C:\WINDOWS\tasks\At43.job
[27/12/2008 16:00][--a------] C:\WINDOWS\tasks\At41.job
[27/12/2008 15:00][--a------] C:\WINDOWS\tasks\At40.job
[26/12/2008 14:00][--a------] C:\WINDOWS\tasks\At39.job
[21/12/2008 13:07][--a------] C:\WINDOWS\tasks\At38.job
[15/12/2008 15:26][--a------] C:\WINDOWS\tasks\At37.job
[16/12/2008 12:52][--a------] C:\WINDOWS\tasks\At36.job
[15/07/2008 20:58][--a------] C:\WINDOWS\tasks\At34.job
[08/12/2008 10:00][--a------] C:\WINDOWS\tasks\At35.job
[15/07/2008 20:58][--a------] C:\WINDOWS\tasks\At33.job
[15/07/2008 20:58][--a------] C:\WINDOWS\tasks\At32.job
[15/07/2008 20:58][--a------] C:\WINDOWS\tasks\At31.job
[15/07/2008 20:58][--a------] C:\WINDOWS\tasks\At30.job
[25/07/2008 03:00][--a------] C:\WINDOWS\tasks\At29.job
[31/08/2008 02:03][--a------] C:\WINDOWS\tasks\At28.job
[27/12/2008 02:00][--a------] C:\WINDOWS\tasks\At27.job
[27/12/2008 01:00][--a------] C:\WINDOWS\tasks\At26.job
[27/12/2008 00:28][--a------] C:\WINDOWS\tasks\At25.job
[26/12/2008 18:00][--a------] C:\WINDOWS\tasks\Norton Security Scan.job
[23/12/2008 22:18][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[27/12/2008 14:27][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 19:00][-rah-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ MsgPlus SPONSOR INSTALLED !
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MsgPlus! Plugin]
"SponsorInstalled"=dword:00000000
--------------------\\ Listing des dossiers dans C:\Program Files
[14/05/2006|19:32] C:\Program Files\ACD Systems
[22/12/2008|13:33] C:\Program Files\Adobe
[29/09/2005|20:03] C:\Program Files\AOL 9.0
[23/12/2008|22:18] C:\Program Files\Apple Software Update
[01/01/2005|16:12] C:\Program Files\ATI Technologies
[23/12/2008|22:19] C:\Program Files\Bonjour
[26/10/2008|15:09] C:\Program Files\CCleaner
[26/01/2008|15:46] C:\Program Files\Changer XP
[24/11/2004|02:37] C:\Program Files\ComPlus Applications
[10/01/2007|15:19] C:\Program Files\Dictionnaire
[02/04/2006|18:29] C:\Program Files\DivX
[29/06/2007|18:04] C:\Program Files\EA GAMES
[01/01/2006|23:35] C:\Program Files\Easy Internet signup
[05/05/2008|14:44] C:\Program Files\eMule
[23/12/2008|22:18] C:\Program Files\Fichiers communs
[29/10/2007|23:14] C:\Program Files\Go!Zilla
[02/11/2008|23:18] C:\Program Files\Google
[02/11/2008|00:01] C:\Program Files\Grisoft
[21/01/2007|22:23] C:\Program Files\Hewlett-Packard
[21/01/2007|22:23] C:\Program Files\HP
[01/01/2005|15:49] C:\Program Files\HPQ
[09/04/2007|20:08] C:\Program Files\ICQLite
[27/12/2008|14:45] C:\Program Files\ICQToolbar
[22/12/2008|13:30] C:\Program Files\InstallShield Installation Information
[11/11/2008|18:03] C:\Program Files\Internet Explorer
[01/01/2005|16:12] C:\Program Files\InterVideo
[23/12/2008|22:20] C:\Program Files\iPod
[23/12/2008|22:21] C:\Program Files\iTunes
[14/09/2005|15:25] C:\Program Files\Ja2
[17/10/2006|18:18] C:\Program Files\Jasc Software Inc
[29/09/2005|17:48] C:\Program Files\Java
[09/06/2008|20:25] C:\Program Files\LG Electronics
[09/06/2008|20:24] C:\Program Files\LGE GSM PC Sync
[05/05/2008|14:37] C:\Program Files\LimeWire
[31/10/2005|23:07] C:\Program Files\Logitech
[03/06/2006|11:44] C:\Program Files\Macrogaming
[30/09/2005|20:06] C:\Program Files\Maxis
[29/08/2008|01:02] C:\Program Files\Messenger
[24/11/2006|21:50] C:\Program Files\Messenger Plus! Live
[16/09/2007|19:15] C:\Program Files\MessengerPlus! 3
[09/10/2008|16:41] C:\Program Files\Microsoft
[25/11/2004|04:27] C:\Program Files\microsoft frontpage
[23/12/2008|22:09] C:\Program Files\Microsoft Office
[01/01/2006|23:35] C:\Program Files\Microsoft Picture It! 7
[09/10/2008|16:43] C:\Program Files\Microsoft SQL Server Compact Edition
[31/10/2005|20:52] C:\Program Files\Microsoft Works
[15/10/2005|18:41] C:\Program Files\Microsoft Works Suite 2003
[19/01/2006|20:27] C:\Program Files\Mindscape
[08/06/2006|18:17] C:\Program Files\MonkeyPhoto
[25/11/2004|04:27] C:\Program Files\Movie Maker
[27/12/2008|14:54] C:\Program Files\Mozilla Firefox
[03/11/2008|14:58] C:\Program Files\Mozilla Firefox 3 Beta 5
[24/07/2007|23:21] C:\Program Files\MP3 Player Utilities 4.04
[26/10/2008|14:27] C:\Program Files\MSECACHE
[26/10/2008|13:19] C:\Program Files\MSN
[25/11/2004|04:27] C:\Program Files\MSN Gaming Zone
[15/11/2006|17:58] C:\Program Files\MSXML 4.0
[01/01/2005|16:13] C:\Program Files\muvee Technologies
[04/12/2005|14:31] C:\Program Files\Net Pro Anti Popup
[20/11/2005|17:51] C:\Program Files\NetMeeting
[01/09/2007|21:39] C:\Program Files\Neuf
[11/03/2006|12:14] C:\Program Files\Norton AntiVirus
[17/12/2005|20:18] C:\Program Files\Norton Internet Security
[21/12/2008|18:00] C:\Program Files\Norton Security Scan
[05/05/2008|14:44] C:\Program Files\NRJ
[25/11/2004|04:27] C:\Program Files\Online Services
[12/06/2007|22:56] C:\Program Files\Outlook Express
[20/05/2007|20:26] C:\Program Files\PC-Doctor for Windows
[24/12/2008|18:35] C:\Program Files\PhotoFiltre
[04/12/2008|19:21] C:\Program Files\PowerPoint to Video
[23/12/2008|22:19] C:\Program Files\QuickTime
[17/11/2008|21:17] C:\Program Files\Real
[01/01/2005|15:54] C:\Program Files\Services en ligne
[02/10/2005|11:59] C:\Program Files\SLD Codec Pack
[29/08/2006|15:21] C:\Program Files\SM
[03/11/2007|14:33] C:\Program Files\Smart Explorer
[05/05/2007|23:16] C:\Program Files\SmartDraw 2007
[01/01/2005|15:40] C:\Program Files\Sonic
[24/10/2005|19:15] C:\Program Files\Spybot - Search & Destroy
[23/12/2008|22:13] C:\Program Files\Spyware Doctor
[22/05/2006|21:43] C:\Program Files\Stardock
[02/07/2007|21:02] C:\Program Files\Starware370
[22/12/2008|13:36] C:\Program Files\SUPERAntiSpyware
[11/03/2006|12:14] C:\Program Files\Symantec
[27/12/2008|14:46] C:\Program Files\Trend Micro
[06/03/2007|17:02] C:\Program Files\Ulead Systems
[24/11/2004|02:37] C:\Program Files\Uninstall Information
[26/08/2007|17:30] C:\Program Files\VideoLAN
[31/10/2005|19:23] C:\Program Files\WinAce
[01/11/2008|00:03] C:\Program Files\Winamp
[26/10/2008|15:37] C:\Program Files\Windows Live
[09/10/2008|16:42] C:\Program Files\Windows Live Toolbar
[09/04/2008|19:58] C:\Program Files\Windows Media Components
[24/03/2008|22:22] C:\Program Files\Windows Media Connect 2
[24/03/2008|22:22] C:\Program Files\Windows Media Player
[20/09/2005|17:06] C:\Program Files\Windows NT
[24/11/2004|02:37] C:\Program Files\WindowsUpdate
[01/05/2007|17:50] C:\Program Files\WinRAR
[25/11/2004|04:28] C:\Program Files\xerox
[11/12/2005|14:38] C:\Program Files\Yahoo!
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[14/05/2006|19:32] C:\Program Files\Fichiers communs\ACD Systems
[30/08/2006|18:10] C:\Program Files\Fichiers communs\Adobe
[29/09/2005|20:03] C:\Program Files\Fichiers communs\AOL
[29/09/2005|20:03] C:\Program Files\Fichiers communs\aolshare
[23/12/2008|22:20] C:\Program Files\Fichiers communs\Apple
[31/10/2005|23:07] C:\Program Files\Fichiers communs\FotoWire
[01/01/2005|15:35] C:\Program Files\Fichiers communs\Hewlett-Packard
[01/01/2005|15:29] C:\Program Files\Fichiers communs\HP
[01/01/2005|16:12] C:\Program Files\Fichiers communs\InstallShield
[01/05/2006|15:13] C:\Program Files\Fichiers communs\Jasc Software Inc
[01/01/2005|15:15] C:\Program Files\Fichiers communs\Java
[31/10/2005|23:05] C:\Program Files\Fichiers communs\Logitech
[26/10/2008|15:38] C:\Program Files\Fichiers communs\Microsoft Shared
[25/11/2004|04:26] C:\Program Files\Fichiers communs\MSSoap
[01/01/2005|16:13] C:\Program Files\Fichiers communs\muvee Technologies
[22/08/2006|10:51] C:\Program Files\Fichiers communs\NSV
[25/11/2004|04:26] C:\Program Files\Fichiers communs\ODBC
[22/12/2008|13:35] C:\Program Files\Fichiers communs\Real
[20/09/2005|17:06] C:\Program Files\Fichiers communs\Services
[01/01/2005|15:39] C:\Program Files\Fichiers communs\Sonic Shared
[25/11/2004|04:26] C:\Program Files\Fichiers communs\SpeechEngines
[22/05/2006|21:43] C:\Program Files\Fichiers communs\Stardock
[01/01/2005|15:39] C:\Program Files\Fichiers communs\SureThing Shared
[23/11/2008|18:05] C:\Program Files\Fichiers communs\Symantec Shared
[12/06/2007|22:56] C:\Program Files\Fichiers communs\System
[01/01/2005|15:40] C:\Program Files\Fichiers communs\TiVo Shared
[06/11/2006|20:48] C:\Program Files\Fichiers communs\Ulead Systems
[09/10/2008|16:24] C:\Program Files\Fichiers communs\Windows Live
[26/10/2008|15:38] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[03/04/2006|18:48] C:\Program Files\Fichiers communs\WinFixer 2005
--------------------\\ Process
( 52 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-12-27 17:31:00
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 1
--------------------\\ Recherche d'autres infections
C:\WINDOWS\Tasks\At25.job
C:\WINDOWS\Tasks\At26.job
C:\WINDOWS\Tasks\At27.job
C:\WINDOWS\Tasks\At28.job
C:\WINDOWS\Tasks\At29.job
C:\WINDOWS\Tasks\At30.job
C:\WINDOWS\Tasks\At31.job
C:\WINDOWS\Tasks\At32.job
C:\WINDOWS\Tasks\At33.job
C:\WINDOWS\Tasks\At34.job
C:\WINDOWS\Tasks\At35.job
C:\WINDOWS\Tasks\At36.job
C:\WINDOWS\Tasks\At37.job
C:\WINDOWS\Tasks\At38.job
C:\WINDOWS\Tasks\At39.job
C:\WINDOWS\Tasks\At40.job
C:\WINDOWS\Tasks\At41.job
C:\WINDOWS\Tasks\At42.job
C:\WINDOWS\Tasks\At43.job
C:\WINDOWS\Tasks\At44.job
C:\WINDOWS\Tasks\At45.job
C:\WINDOWS\Tasks\At46.job
C:\WINDOWS\Tasks\At47.job
C:\WINDOWS\Tasks\At48.job
C:\WINDOWS\Tasks\At49.job
C:\WINDOWS\Tasks\At50.job
C:\WINDOWS\Tasks\At51.job
C:\WINDOWS\Tasks\At52.job
C:\WINDOWS\Tasks\At53.job
C:\WINDOWS\Tasks\At54.job
C:\WINDOWS\Tasks\At55.job
C:\WINDOWS\Tasks\At56.job
C:\WINDOWS\Tasks\At57.job
C:\WINDOWS\Tasks\At58.job
C:\WINDOWS\Tasks\At59.job
C:\WINDOWS\Tasks\At60.job
C:\WINDOWS\Tasks\At61.job
C:\WINDOWS\Tasks\At62.job
C:\WINDOWS\Tasks\At63.job
C:\WINDOWS\Tasks\At64.job
C:\WINDOWS\Tasks\At65.job
C:\WINDOWS\Tasks\At66.job
C:\WINDOWS\Tasks\At67.job
C:\WINDOWS\Tasks\At68.job
C:\WINDOWS\Tasks\At69.job
C:\WINDOWS\Tasks\At70.job
C:\WINDOWS\Tasks\At71.job
C:\WINDOWS\Tasks\At72.job
--------------------\\ ROGUES ..
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370
C:\PROGRA~1\Starware370
[F:3187][D:81]-> C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp
[F:109][D:0]-> C:\DOCUME~1\HP_PRO~1\Cookies
[F:10721][D:21]-> C:\DOCUME~1\HP_PRO~1\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 27/12/2008|17:14 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 27/12/2008|17:34 - Option : [2]
--------------------\\ Fin du rapport a 17:34:24
2. Le rapport avec Toolbar S&D (team IDN) :
-----------\\ ToolBar S&D 1.2.8 XP/Vista
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : Intel(R) Pentium(R) 4 CPU 2.93GHz )
BIOS : v3.06
USER : HP_Propriétaire ( Administrator )
BOOT : Normal boot
C:\ (Local Disk) - NTFS - Total:179 Go (Free:151 Go)
D:\ (Local Disk) - NTFS - Total:6 Go (Free:6 Go)
E:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)
H:\ (USB)
I:\ (USB)
J:\ (USB)
K:\ (USB)
"C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 )
Option : [1] ( 27/12/2008|17:38 )
-----------\\ Recherche de Fichiers / Dossiers ...
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\buttons
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\contexts
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\SimpleUpdate
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem12F6.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem13A6.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem33BA.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem3687.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem459F.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem574A.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem594B.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem6062.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem615F.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem6562.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem6B92.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem6C7D.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem6CE8.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem6E48.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem6EC9.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem792F.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem794E.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem83D2.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem8C7F.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem91B5.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem94F8.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem9798.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem982C.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem9954.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem9B43.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem9EC.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemA541.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemAA9F.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemADCE.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemAFB9.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemB653.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemB7E.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemB9E4.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemBB7.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemBC90.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemBD11.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemBD31.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemBDF0.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemBE9D.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemBFC5.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemC018.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemC0E7.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemC15C.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemC216.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemC2B1.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemC429.tmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\buttons\563_button_1b_def.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\buttons\563_button_1b_over.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\buttons\572_button_1b_def.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\buttons\572_button_1b_over.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\buttons\573_button_1b_def.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\buttons\573_button_1b_over.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\buttons\Button_60.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\buttons\Button_70.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\buttons\Button_80.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\buttons\FindIt.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\buttons\FindItHot.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\buttons\findithotxp.png
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\buttons\finditxp.png
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\buttons\logo.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\buttons\logoxp.bmp
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\contexts\error.xml
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\contexts\Related.xml
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\contexts\Travel.xml
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\SimpleUpdate\ProductMessagingConfig.xml
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\SimpleUpdate\ProductMessagingConfig.xml.backup
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\SimpleUpdate\SimpleUpdateConfig.xml
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\SimpleUpdate\SimpleUpdateConfig.xml.backup
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\SimpleUpdate\TimerManagerConfig.xml
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\SimpleUpdate\TimerManagerConfig.xml.backup
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\BrowserSearch
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Button_6
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Button_7
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Button_8
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Configurator
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\ErrorSearch
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Layouts
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Manager
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Paroles
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Radio_FR
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Recherche_de_musique
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\RelatedSearch
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Telechargement
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\TemB9C.tmp
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Toolbar
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\ToolbarLogo
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\ToolbarSearch
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\TravelSearch
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\BrowserSearch\BrowserSearch.xml
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\BrowserSearch\BrowserSearch.xml.backup
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Button_6\Button_6Options.xml
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Button_6\Button_6Options.xml.backup
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Button_7\Button_7Options.xml
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Button_7\Button_7Options.xml.backup
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Button_8\Button_8Options.xml
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Button_8\Button_8Options.xml.backup
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Configurator\Configurator.xml
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Configurator\Configurator.xml.backup
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\ErrorSearch\ErrorSearchOptions.xml
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\ErrorSearch\ErrorSearchOptions.xml.backup
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Layouts\ToolbarLayout.xml
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Layouts\ToolbarLayout.xml.backup
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Manager\ManagerOptions.xml
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Manager\ManagerOptions.xml.backup
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Paroles\ParolesOptions.xml
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Paroles\ParolesOptions.xml.backup
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Radio_FR\Radio_FROptions.xml
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Radio_FR\Radio_FROptions.xml.backup
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Recherche_de_musique\Recherche_de_musiqueOptions.xml
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Recherche_de_musique\Recherche_de_musiqueOptions.xml.backup
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\RelatedSearch\RelatedSearchOptions.xml
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\RelatedSearch\RelatedSearchOptions.xml.backup
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Telechargement\TelechargementOptions.xml
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Telechargement\TelechargementOptions.xml.backup
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Toolbar\TBProductsOptions.xml
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Toolbar\TBProductsOptions.xml.backup
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\ToolbarLogo\ToolbarLogoOptions.xml
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\ToolbarLogo\ToolbarLogoOptions.xml.backup
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\ToolbarSearch\ToolbarSearchOptions.xml
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\ToolbarSearch\ToolbarSearchOptions.xml.backup
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\TravelSearch\TravelSearchOptions.xml
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\TravelSearch\TravelSearchOptions.xml.backup
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\BrowserSearch
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Button_6
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Button_7
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Button_8
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Configurator
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\ErrorSearch
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Layouts
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Manager
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Paroles
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Radio_FR
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Recherche_de_musique
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\RelatedSearch
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Telechargement
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Toolbar
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\ToolbarLogo
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\ToolbarSearch
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\TravelSearch
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\BrowserSearch\BrowserSearch.xml
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\BrowserSearch\BrowserSearch.xml.backup
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Button_6\Button_6Options.xml
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Button_6\Button_6Options.xml.backup
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Button_7\Button_7Options.xml
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Button_7\Button_7Options.xml.backup
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Button_8\Button_8Options.xml
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Button_8\Button_8Options.xml.backup
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Configurator\Configurator.xml
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Configurator\Configurator.xml.backup
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\ErrorSearch\ErrorSearchOptions.xml
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\ErrorSearch\ErrorSearchOptions.xml.backup
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Layouts\ToolbarLayout.xml
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Layouts\ToolbarLayout.xml.backup
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Manager\ManagerOptions.xml
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Manager\ManagerOptions.xml.backup
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Paroles\ParolesOptions.xml
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Paroles\ParolesOptions.xml.backup
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Radio_FR\Radio_FROptions.xml
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Radio_FR\Radio_FROptions.xml.backup
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Recherche_de_musique\Recherche_de_musiqueOptions.xml
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Recherche_de_musique\Recherche_de_musiqueOptions.xml.backup
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\RelatedSearch\RelatedSearchOptions.xml
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\RelatedSearch\RelatedSearchOptions.xml.backup
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Telechargement\TelechargementOptions.xml
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Telechargement\TelechargementOptions.xml.backup
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Toolbar\TBProductsOptions.xml
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Toolbar\TBProductsOptions.xml.backup
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\ToolbarLogo\ToolbarLogoOptions.xml
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\ToolbarLogo\ToolbarLogoOptions.xml.backup
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\ToolbarSearch\ToolbarSearchOptions.xml
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\ToolbarSearch\ToolbarSearchOptions.xml.backup
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\TravelSearch\TravelSearchOptions.xml
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\TravelSearch\TravelSearchOptions.xml.backup
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\BrowserSearch
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Button_6
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Button_7
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Button_8
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Configurator
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\ErrorSearch
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Layouts
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Manager
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Paroles
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Radio_FR
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Recherche_de_musique
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\RelatedSearch
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Telechargement
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Toolbar
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\ToolbarLogo
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\ToolbarSearch
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\TravelSearch
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\BrowserSearch\BrowserSearch.xml
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\BrowserSearch\BrowserSearch.xml.backup
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Button_6\Button_6Options.xml
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Button_6\Button_6Options.xml.backup
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Button_7\Button_7Options.xml
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Button_7\Button_7Options.xml.backup
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Button_8\Button_8Options.xml
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Button_8\Button_8Options.xml.backup
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Configurator\Configurator.xml
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Configurator\Configurator.xml.backup
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\ErrorSearch\ErrorSearchOptions.xml
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\ErrorSearch\ErrorSearchOptions.xml.backup
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Layouts\ToolbarLayout.xml
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Layouts\ToolbarLayout.xml.backup
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Manager\ManagerOptions.xml
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Manager\ManagerOptions.xml.backup
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Paroles\ParolesOptions.xml
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Paroles\ParolesOptions.xml.backup
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Radio_FR\Radio_FROptions.xml
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Radio_FR\Radio_FROptions.xml.backup
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Recherche_de_musique\Recherche_de_musiqueOptions.xml
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Recherche_de_musique\Recherche_de_musiqueOptions.xml.backup
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\RelatedSearch\RelatedSearchOptions.xml
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\RelatedSearch\RelatedSearchOptions.xml.backup
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Telechargement\TelechargementOptions.xml
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Telechargement\TelechargementOptions.xml.backup
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Toolbar\TBProductsOptions.xml
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Toolbar\TBProductsOptions.xml.backup
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\ToolbarLogo\ToolbarLogoOptions.xml
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\ToolbarLogo\ToolbarLogoOptions.xml.backup
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\ToolbarSearch\ToolbarSearchOptions.xml
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\ToolbarSearch\ToolbarSearchOptions.xml.backup
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\TravelSearch\TravelSearchOptions.xml
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\TravelSearch\TravelSearchOptions.xml.backup
C:\Program Files\Starware370
C:\Program Files\Starware370\bin
C:\Program Files\Starware370\brand.bmp
C:\Program Files\Starware370\icons
C:\Program Files\Starware370\Starware370Config.xml
C:\Program Files\Starware370\Starware370Uninstall.exe
C:\Program Files\Starware370\bin\Starware370.dll
C:\Program Files\Starware370\icons\star_16.ico
-----------\\ Extensions
(HP_Propri‚taire) - {b9db16a4-6edc-47ec-a1f4-b86292ed211d} => dwhelper
-----------\\ [..\Internet Explorer\Main]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Start Page"="https://www.msn.com/fr-fr/?ocid=iehp"
"Default_Page_URL"="http://www.neuf.fr"
"Default_Search_URL"="http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q305&bd=pavilion&pf=desktop"
"Search Bar"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Prev Search Page"="https://www.google.com/?gws_rd=ssl"
"Prev Search Bar"="http://www.google.com/toolbar/ie8/sidebar.html"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"SearchMigratedDefaultURL"="https://www.google.com/webhp?gws_rd=ssl{searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="https://www.msn.com/fr-fr/?ocid=iehp"
"Default_Search_URL"="https://actus.sfr.fr"
"Start Page"="https://www.msn.com/fr-fr/?ocid=iehp"
"Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
--------------------\\ Recherche d'autres infections
C:\WINDOWS\Tasks\At25.job
C:\WINDOWS\Tasks\At26.job
C:\WINDOWS\Tasks\At27.job
C:\WINDOWS\Tasks\At28.job
C:\WINDOWS\Tasks\At29.job
C:\WINDOWS\Tasks\At30.job
C:\WINDOWS\Tasks\At31.job
C:\WINDOWS\Tasks\At32.job
C:\WINDOWS\Tasks\At33.job
C:\WINDOWS\Tasks\At34.job
C:\WINDOWS\Tasks\At35.job
C:\WINDOWS\Tasks\At36.job
C:\WINDOWS\Tasks\At37.job
C:\WINDOWS\Tasks\At38.job
C:\WINDOWS\Tasks\At39.job
C:\WINDOWS\Tasks\At40.job
C:\WINDOWS\Tasks\At41.job
C:\WINDOWS\Tasks\At42.job
C:\WINDOWS\Tasks\At43.job
C:\WINDOWS\Tasks\At44.job
C:\WINDOWS\Tasks\At45.job
C:\WINDOWS\Tasks\At46.job
C:\WINDOWS\Tasks\At47.job
C:\WINDOWS\Tasks\At48.job
C:\WINDOWS\Tasks\At49.job
C:\WINDOWS\Tasks\At50.job
C:\WINDOWS\Tasks\At51.job
C:\WINDOWS\Tasks\At52.job
C:\WINDOWS\Tasks\At53.job
C:\WINDOWS\Tasks\At54.job
C:\WINDOWS\Tasks\At55.job
C:\WINDOWS\Tasks\At56.job
C:\WINDOWS\Tasks\At57.job
C:\WINDOWS\Tasks\At58.job
C:\WINDOWS\Tasks\At59.job
C:\WINDOWS\Tasks\At60.job
C:\WINDOWS\Tasks\At61.job
C:\WINDOWS\Tasks\At62.job
C:\WINDOWS\Tasks\At63.job
C:\WINDOWS\Tasks\At64.job
C:\WINDOWS\Tasks\At65.job
C:\WINDOWS\Tasks\At66.job
C:\WINDOWS\Tasks\At67.job
C:\WINDOWS\Tasks\At68.job
C:\WINDOWS\Tasks\At69.job
C:\WINDOWS\Tasks\At70.job
C:\WINDOWS\Tasks\At71.job
C:\WINDOWS\Tasks\At72.job
--------------------\\ ROGUES ..
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370
C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370
C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370
C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370
C:\PROGRA~1\Starware370
1 - "C:\ToolBar SD\TB_1.txt" - 27/12/2008|17:41 - Option : [1]
-----------\\ Fin du rapport a 17:41:01,53
ludsfa
Messages postés
1284
Date d'inscription
dimanche 3 février 2008
Statut
Membre
Dernière intervention
15 janvier 2018
15
27 déc. 2008 à 18:04
27 déc. 2008 à 18:04
re
Relance Toolbar-S&D en double-cliquant sur le raccourci. Tape sur "2" puis valide en appuyant sur "Entrée".
! Ne ferme pas la fenêtre lors de la suppression !
Un rapport sera généré, poste son contenu ici.
Relance Toolbar-S&D en double-cliquant sur le raccourci. Tape sur "2" puis valide en appuyant sur "Entrée".
! Ne ferme pas la fenêtre lors de la suppression !
Un rapport sera généré, poste son contenu ici.
Voila le rapport avec Toolbar S&D :
-----------\\ ToolBar S&D 1.2.8 XP/Vista
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : Intel(R) Pentium(R) 4 CPU 2.93GHz )
BIOS : v3.06
USER : HP_Propriétaire ( Administrator )
BOOT : Normal boot
C:\ (Local Disk) - NTFS - Total:179 Go (Free:151 Go)
D:\ (Local Disk) - NTFS - Total:6 Go (Free:6 Go)
E:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)
H:\ (USB)
I:\ (USB)
J:\ (USB)
K:\ (USB)
"C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 )
Option : [2] ( 27/12/2008|18:03 )
-----------\\ SUPPRESSION
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\buttons
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\contexts
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\SimpleUpdate
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem12F6.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem13A6.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem33BA.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem3687.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem459F.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem574A.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem594B.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem6062.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem615F.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem6562.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem6B92.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem6C7D.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem6CE8.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem6E48.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem6EC9.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem792F.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem794E.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem83D2.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem8C7F.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem91B5.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem94F8.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem9798.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem982C.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem9954.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem9B43.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem9EC.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemA541.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemAA9F.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemADCE.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemAFB9.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemB653.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemB7E.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemB9E4.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemBB7.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemBC90.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemBD11.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemBD31.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemBDF0.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemBE9D.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemBFC5.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemC018.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemC0E7.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemC15C.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemC216.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemC2B1.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemC429.tmp
Supprime! - C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\BrowserSearch
Supprime! - C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Button_6
Supprime! - C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Button_7
Supprime! - C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Button_8
Supprime! - C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Configurator
Supprime! - C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\ErrorSearch
Supprime! - C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Layouts
Supprime! - C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Manager
Supprime! - C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Paroles
Supprime! - C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Radio_FR
Supprime! - C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Recherche_de_musique
Supprime! - C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\RelatedSearch
Supprime! - C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Telechargement
Supprime! - C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\TemB9C.tmp
Supprime! - C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Toolbar
Supprime! - C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\ToolbarLogo
Supprime! - C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\ToolbarSearch
Supprime! - C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\TravelSearch
Supprime! - C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\BrowserSearch
Supprime! - C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Button_6
Supprime! - C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Button_7
Supprime! - C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Button_8
Supprime! - C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Configurator
Supprime! - C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\ErrorSearch
Supprime! - C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Layouts
Supprime! - C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Manager
Supprime! - C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Paroles
Supprime! - C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Radio_FR
Supprime! - C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Recherche_de_musique
Supprime! - C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\RelatedSearch
Supprime! - C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Telechargement
Supprime! - C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Toolbar
Supprime! - C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\ToolbarLogo
Supprime! - C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\ToolbarSearch
Supprime! - C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\TravelSearch
Supprime! - C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\BrowserSearch
Supprime! - C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Button_6
Supprime! - C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Button_7
Supprime! - C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Button_8
Supprime! - C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Configurator
Supprime! - C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\ErrorSearch
Supprime! - C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Layouts
Supprime! - C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Manager
Supprime! - C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Paroles
Supprime! - C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Radio_FR
Supprime! - C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Recherche_de_musique
Supprime! - C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\RelatedSearch
Supprime! - C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Telechargement
Supprime! - C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Toolbar
Supprime! - C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\ToolbarLogo
Supprime! - C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\ToolbarSearch
Supprime! - C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\TravelSearch
Supprime! - C:\Program Files\Starware370\bin
Supprime! - C:\Program Files\Starware370\brand.bmp
Supprime! - C:\Program Files\Starware370\icons
Supprime! - C:\Program Files\Starware370\Starware370Config.xml
Supprime! - C:\Program Files\Starware370\Starware370Uninstall.exe
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370
Supprime! - C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370
Supprime! - C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370
Supprime! - C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370
Supprime! - C:\Program Files\Starware370
-----------\\ Recherche de Fichiers / Dossiers ...
-----------\\ Extensions
(HP_Propri‚taire) - {b9db16a4-6edc-47ec-a1f4-b86292ed211d} => dwhelper
-----------\\ [..\Internet Explorer\Main]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Start Page"="https://www.msn.com/fr-fr/?ocid=iehp"
"Default_Page_URL"="http://www.neuf.fr"
"Default_Search_URL"="http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q305&bd=pavilion&pf=desktop"
"Search Bar"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Prev Search Page"="https://www.google.com/?gws_rd=ssl"
"Prev Search Bar"="http://www.google.com/toolbar/ie8/sidebar.html"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"SearchMigratedDefaultURL"="https://www.google.com/webhp?gws_rd=ssl{searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="https://www.msn.com/fr-fr/?ocid=iehp"
"Default_Search_URL"="https://actus.sfr.fr"
"Start Page"="https://www.msn.com/fr-fr/"
"Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
--------------------\\ Recherche d'autres infections
C:\WINDOWS\Tasks\At25.job
C:\WINDOWS\Tasks\At26.job
C:\WINDOWS\Tasks\At27.job
C:\WINDOWS\Tasks\At28.job
C:\WINDOWS\Tasks\At29.job
C:\WINDOWS\Tasks\At30.job
C:\WINDOWS\Tasks\At31.job
C:\WINDOWS\Tasks\At32.job
C:\WINDOWS\Tasks\At33.job
C:\WINDOWS\Tasks\At34.job
C:\WINDOWS\Tasks\At35.job
C:\WINDOWS\Tasks\At36.job
C:\WINDOWS\Tasks\At37.job
C:\WINDOWS\Tasks\At38.job
C:\WINDOWS\Tasks\At39.job
C:\WINDOWS\Tasks\At40.job
C:\WINDOWS\Tasks\At41.job
C:\WINDOWS\Tasks\At42.job
C:\WINDOWS\Tasks\At43.job
C:\WINDOWS\Tasks\At44.job
C:\WINDOWS\Tasks\At45.job
C:\WINDOWS\Tasks\At46.job
C:\WINDOWS\Tasks\At47.job
C:\WINDOWS\Tasks\At48.job
C:\WINDOWS\Tasks\At49.job
C:\WINDOWS\Tasks\At50.job
C:\WINDOWS\Tasks\At51.job
C:\WINDOWS\Tasks\At52.job
C:\WINDOWS\Tasks\At53.job
C:\WINDOWS\Tasks\At54.job
C:\WINDOWS\Tasks\At55.job
C:\WINDOWS\Tasks\At56.job
C:\WINDOWS\Tasks\At57.job
C:\WINDOWS\Tasks\At58.job
C:\WINDOWS\Tasks\At59.job
C:\WINDOWS\Tasks\At60.job
C:\WINDOWS\Tasks\At61.job
C:\WINDOWS\Tasks\At62.job
C:\WINDOWS\Tasks\At63.job
C:\WINDOWS\Tasks\At64.job
C:\WINDOWS\Tasks\At65.job
C:\WINDOWS\Tasks\At66.job
C:\WINDOWS\Tasks\At67.job
C:\WINDOWS\Tasks\At68.job
C:\WINDOWS\Tasks\At69.job
C:\WINDOWS\Tasks\At70.job
C:\WINDOWS\Tasks\At71.job
C:\WINDOWS\Tasks\At72.job
1 - "C:\ToolBar SD\TB_1.txt" - 27/12/2008|17:41 - Option : [1]
2 - "C:\ToolBar SD\TB_2.txt" - 27/12/2008|18:11 - Option : [2]
-----------\\ Fin du rapport a 18:11:14,28
-----------\\ ToolBar S&D 1.2.8 XP/Vista
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : Intel(R) Pentium(R) 4 CPU 2.93GHz )
BIOS : v3.06
USER : HP_Propriétaire ( Administrator )
BOOT : Normal boot
C:\ (Local Disk) - NTFS - Total:179 Go (Free:151 Go)
D:\ (Local Disk) - NTFS - Total:6 Go (Free:6 Go)
E:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)
H:\ (USB)
I:\ (USB)
J:\ (USB)
K:\ (USB)
"C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 )
Option : [2] ( 27/12/2008|18:03 )
-----------\\ SUPPRESSION
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\buttons
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\contexts
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\SimpleUpdate
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem12F6.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem13A6.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem33BA.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem3687.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem459F.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem574A.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem594B.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem6062.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem615F.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem6562.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem6B92.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem6C7D.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem6CE8.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem6E48.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem6EC9.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem792F.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem794E.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem83D2.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem8C7F.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem91B5.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem94F8.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem9798.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem982C.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem9954.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem9B43.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\Tem9EC.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemA541.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemAA9F.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemADCE.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemAFB9.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemB653.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemB7E.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemB9E4.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemBB7.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemBC90.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemBD11.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemBD31.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemBDF0.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemBE9D.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemBFC5.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemC018.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemC0E7.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemC15C.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemC216.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemC2B1.tmp
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370\TemC429.tmp
Supprime! - C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\BrowserSearch
Supprime! - C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Button_6
Supprime! - C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Button_7
Supprime! - C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Button_8
Supprime! - C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Configurator
Supprime! - C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\ErrorSearch
Supprime! - C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Layouts
Supprime! - C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Manager
Supprime! - C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Paroles
Supprime! - C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Radio_FR
Supprime! - C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Recherche_de_musique
Supprime! - C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\RelatedSearch
Supprime! - C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Telechargement
Supprime! - C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\TemB9C.tmp
Supprime! - C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\Toolbar
Supprime! - C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\ToolbarLogo
Supprime! - C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\ToolbarSearch
Supprime! - C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370\TravelSearch
Supprime! - C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\BrowserSearch
Supprime! - C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Button_6
Supprime! - C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Button_7
Supprime! - C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Button_8
Supprime! - C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Configurator
Supprime! - C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\ErrorSearch
Supprime! - C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Layouts
Supprime! - C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Manager
Supprime! - C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Paroles
Supprime! - C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Radio_FR
Supprime! - C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Recherche_de_musique
Supprime! - C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\RelatedSearch
Supprime! - C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Telechargement
Supprime! - C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\Toolbar
Supprime! - C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\ToolbarLogo
Supprime! - C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\ToolbarSearch
Supprime! - C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370\TravelSearch
Supprime! - C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\BrowserSearch
Supprime! - C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Button_6
Supprime! - C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Button_7
Supprime! - C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Button_8
Supprime! - C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Configurator
Supprime! - C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\ErrorSearch
Supprime! - C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Layouts
Supprime! - C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Manager
Supprime! - C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Paroles
Supprime! - C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Radio_FR
Supprime! - C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Recherche_de_musique
Supprime! - C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\RelatedSearch
Supprime! - C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Telechargement
Supprime! - C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\Toolbar
Supprime! - C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\ToolbarLogo
Supprime! - C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\ToolbarSearch
Supprime! - C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370\TravelSearch
Supprime! - C:\Program Files\Starware370\bin
Supprime! - C:\Program Files\Starware370\brand.bmp
Supprime! - C:\Program Files\Starware370\icons
Supprime! - C:\Program Files\Starware370\Starware370Config.xml
Supprime! - C:\Program Files\Starware370\Starware370Uninstall.exe
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Starware370
Supprime! - C:\DOCUME~1\HP_PRO~1\APPLIC~1\Starware370
Supprime! - C:\DOCUME~1\LOCALS~1\APPLIC~1\Starware370
Supprime! - C:\DOCUME~1\NETWOR~1\APPLIC~1\Starware370
Supprime! - C:\Program Files\Starware370
-----------\\ Recherche de Fichiers / Dossiers ...
-----------\\ Extensions
(HP_Propri‚taire) - {b9db16a4-6edc-47ec-a1f4-b86292ed211d} => dwhelper
-----------\\ [..\Internet Explorer\Main]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Start Page"="https://www.msn.com/fr-fr/?ocid=iehp"
"Default_Page_URL"="http://www.neuf.fr"
"Default_Search_URL"="http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q305&bd=pavilion&pf=desktop"
"Search Bar"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Prev Search Page"="https://www.google.com/?gws_rd=ssl"
"Prev Search Bar"="http://www.google.com/toolbar/ie8/sidebar.html"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"SearchMigratedDefaultURL"="https://www.google.com/webhp?gws_rd=ssl{searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="https://www.msn.com/fr-fr/?ocid=iehp"
"Default_Search_URL"="https://actus.sfr.fr"
"Start Page"="https://www.msn.com/fr-fr/"
"Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
--------------------\\ Recherche d'autres infections
C:\WINDOWS\Tasks\At25.job
C:\WINDOWS\Tasks\At26.job
C:\WINDOWS\Tasks\At27.job
C:\WINDOWS\Tasks\At28.job
C:\WINDOWS\Tasks\At29.job
C:\WINDOWS\Tasks\At30.job
C:\WINDOWS\Tasks\At31.job
C:\WINDOWS\Tasks\At32.job
C:\WINDOWS\Tasks\At33.job
C:\WINDOWS\Tasks\At34.job
C:\WINDOWS\Tasks\At35.job
C:\WINDOWS\Tasks\At36.job
C:\WINDOWS\Tasks\At37.job
C:\WINDOWS\Tasks\At38.job
C:\WINDOWS\Tasks\At39.job
C:\WINDOWS\Tasks\At40.job
C:\WINDOWS\Tasks\At41.job
C:\WINDOWS\Tasks\At42.job
C:\WINDOWS\Tasks\At43.job
C:\WINDOWS\Tasks\At44.job
C:\WINDOWS\Tasks\At45.job
C:\WINDOWS\Tasks\At46.job
C:\WINDOWS\Tasks\At47.job
C:\WINDOWS\Tasks\At48.job
C:\WINDOWS\Tasks\At49.job
C:\WINDOWS\Tasks\At50.job
C:\WINDOWS\Tasks\At51.job
C:\WINDOWS\Tasks\At52.job
C:\WINDOWS\Tasks\At53.job
C:\WINDOWS\Tasks\At54.job
C:\WINDOWS\Tasks\At55.job
C:\WINDOWS\Tasks\At56.job
C:\WINDOWS\Tasks\At57.job
C:\WINDOWS\Tasks\At58.job
C:\WINDOWS\Tasks\At59.job
C:\WINDOWS\Tasks\At60.job
C:\WINDOWS\Tasks\At61.job
C:\WINDOWS\Tasks\At62.job
C:\WINDOWS\Tasks\At63.job
C:\WINDOWS\Tasks\At64.job
C:\WINDOWS\Tasks\At65.job
C:\WINDOWS\Tasks\At66.job
C:\WINDOWS\Tasks\At67.job
C:\WINDOWS\Tasks\At68.job
C:\WINDOWS\Tasks\At69.job
C:\WINDOWS\Tasks\At70.job
C:\WINDOWS\Tasks\At71.job
C:\WINDOWS\Tasks\At72.job
1 - "C:\ToolBar SD\TB_1.txt" - 27/12/2008|17:41 - Option : [1]
2 - "C:\ToolBar SD\TB_2.txt" - 27/12/2008|18:11 - Option : [2]
-----------\\ Fin du rapport a 18:11:14,28
ludsfa
Messages postés
1284
Date d'inscription
dimanche 3 février 2008
Statut
Membre
Dernière intervention
15 janvier 2018
15
27 déc. 2008 à 18:47
27 déc. 2008 à 18:47
on poursuit,
télécharge sdfix sur ton bureau:
http://downloads.andymanchesta.com/RemovalTools/SDFix.exe
Double-clique sur SDFix.exe pour lancer l'installation.
Clique sur Install : cela va créer un dossier (à la racine du disque dur par défaut) nommé SDFix.
Il est indispensable d'effectuer le nettoyage avec SDFix en mode sans échec Démarrage en mode sans échec
Une fois en mode sans échec, double-clique sur RunThis.bat
Tape sur Y puis appui sur la touche Entrée de ton clavier, afin de lancer le nettoyage.
Appui sur une touche de ton clavier pour redémarrer le PC.
Appui sur une touche de ton clavier afin d'ouvrir le rapport créé par SDFix.
poste ensuite le rapport généré.
tuto sdfix : http://site-naheulbeuk.com/
télécharge sdfix sur ton bureau:
http://downloads.andymanchesta.com/RemovalTools/SDFix.exe
Double-clique sur SDFix.exe pour lancer l'installation.
Clique sur Install : cela va créer un dossier (à la racine du disque dur par défaut) nommé SDFix.
Il est indispensable d'effectuer le nettoyage avec SDFix en mode sans échec Démarrage en mode sans échec
Une fois en mode sans échec, double-clique sur RunThis.bat
Tape sur Y puis appui sur la touche Entrée de ton clavier, afin de lancer le nettoyage.
Appui sur une touche de ton clavier pour redémarrer le PC.
Appui sur une touche de ton clavier afin d'ouvrir le rapport créé par SDFix.
poste ensuite le rapport généré.
tuto sdfix : http://site-naheulbeuk.com/
Utilisateur anonyme
11 janv. 2009 à 18:33
11 janv. 2009 à 18:33
Slt,
eh beh yavait du monde,
-Poste un rapport hijackthis stp il doit surement y avoir des restes.
eh beh yavait du monde,
-Poste un rapport hijackthis stp il doit surement y avoir des restes.
Slt, c'est le rapport avec HijackThis:
- Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:25:03, on 11/01/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\ICQ6Toolbar\ICQ Service.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\hphmon06.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\ALCWZRD.EXE
C:\WINDOWS\ALCMTR.EXE
C:\WINDOWS\system32\LXSUPMON.EXE
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Neuf\Kit\WiFi\9wifi.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\PROGRA~1\WI1F86~1\MESSEN~1\msnmsgr.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\PROGRA~1\WI1F86~1\MESSEN~1\msnmsgr.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.neuf.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q305&bd=pavilion&pf=desktop
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://actus.sfr.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://actus.sfr.fr
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.msn.com/fr-fr?cobrand=hp-desktop.msn.com&ocid=HPDHP&pc=HPDTDF
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
R3 - URLSearchHook: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
R3 - URLSearchHook: {1A03F196-9617-4CA0-842B-A83CEECB022B} - - (no file)
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: XTTBPos00 Class - {055FD26D-3A88-4e15-963D-DC8493744B1D} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: SWEETIE Class - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - C:\PROGRA~1\MACROG~1\SWEETI~1\toolbar.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.1.807.1746\swg.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [Raccourci vers la page des propriétés de High Definition Audio] HDAudPropShortcut.exe
O4 - HKLM\..\Run: [HPHUPD06] c:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe
O4 - HKLM\..\Run: [HPHmon06] C:\WINDOWS\system32\hphmon06.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
O4 - HKLM\..\Run: [PrinTray] C:\WINDOWS\System32\spool\DRIVERS\W32X86\2\printray.exe
O4 - HKLM\..\Run: [LXSUPMON] C:\WINDOWS\system32\LXSUPMON.EXE RUN
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Autoconfigurateur WiFi Neuf] "C:\Program Files\Neuf\Kit\WiFi\9wifi.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [msnmsgr] "C:\PROGRA~1\WI1F86~1\MESSEN~1\msnmsgr.exe" /background
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [gulafubuga] Rundll32.exe "C:\WINDOWS\system32\poviwumi.dll",s (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\FlashUtil9e.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\FlashUtil9e.exe (User 'Default user')
O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: HP Photosmart Premier Fast Start.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: Les Sims 2 Nuits de Folie
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O8 - Extra context menu item: &ICQ Toolbar Search - res://C:\Program Files\ICQToolbar\toolbaru.dll/SEARCH.HTML
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Download with Go!Zilla - file://C:\Program Files\Go!Zilla\download-with-gozilla.html
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?06d9a862c09e4bb0a2fc4b330bb7d5c4
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?06d9a862c09e4bb0a2fc4b330bb7d5c4
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm (HKCU)
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm (HKCU)
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.mail.live.com/mail/w1/resources/MSNPUpld.cab
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O20 - AppInit_DLLs: c:\windows\system32\bugudesi.dll ,C:\WINDOWS\system32\gupuvefa.dll
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: ICQ Service - Unknown owner - C:\Program Files\ICQ6Toolbar\ICQ Service.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
- Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:25:03, on 11/01/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\ICQ6Toolbar\ICQ Service.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\hphmon06.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\ALCWZRD.EXE
C:\WINDOWS\ALCMTR.EXE
C:\WINDOWS\system32\LXSUPMON.EXE
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Neuf\Kit\WiFi\9wifi.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\PROGRA~1\WI1F86~1\MESSEN~1\msnmsgr.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\PROGRA~1\WI1F86~1\MESSEN~1\msnmsgr.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.neuf.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q305&bd=pavilion&pf=desktop
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.icq.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://actus.sfr.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://actus.sfr.fr
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.msn.com/fr-fr?cobrand=hp-desktop.msn.com&ocid=HPDHP&pc=HPDTDF
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
R3 - URLSearchHook: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
R3 - URLSearchHook: {1A03F196-9617-4CA0-842B-A83CEECB022B} - - (no file)
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: XTTBPos00 Class - {055FD26D-3A88-4e15-963D-DC8493744B1D} - C:\PROGRA~1\ICQTOO~1\toolbaru.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: SWEETIE Class - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - C:\PROGRA~1\MACROG~1\SWEETI~1\toolbar.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.1.807.1746\swg.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [Raccourci vers la page des propriétés de High Definition Audio] HDAudPropShortcut.exe
O4 - HKLM\..\Run: [HPHUPD06] c:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe
O4 - HKLM\..\Run: [HPHmon06] C:\WINDOWS\system32\hphmon06.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
O4 - HKLM\..\Run: [PrinTray] C:\WINDOWS\System32\spool\DRIVERS\W32X86\2\printray.exe
O4 - HKLM\..\Run: [LXSUPMON] C:\WINDOWS\system32\LXSUPMON.EXE RUN
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Autoconfigurateur WiFi Neuf] "C:\Program Files\Neuf\Kit\WiFi\9wifi.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [msnmsgr] "C:\PROGRA~1\WI1F86~1\MESSEN~1\msnmsgr.exe" /background
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [gulafubuga] Rundll32.exe "C:\WINDOWS\system32\poviwumi.dll",s (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\FlashUtil9e.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\FlashUtil9e.exe (User 'Default user')
O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: HP Photosmart Premier Fast Start.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: Les Sims 2 Nuits de Folie
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O8 - Extra context menu item: &ICQ Toolbar Search - res://C:\Program Files\ICQToolbar\toolbaru.dll/SEARCH.HTML
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Download with Go!Zilla - file://C:\Program Files\Go!Zilla\download-with-gozilla.html
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?06d9a862c09e4bb0a2fc4b330bb7d5c4
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?06d9a862c09e4bb0a2fc4b330bb7d5c4
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm (HKCU)
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm (HKCU)
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.mail.live.com/mail/w1/resources/MSNPUpld.cab
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O20 - AppInit_DLLs: c:\windows\system32\bugudesi.dll ,C:\WINDOWS\system32\gupuvefa.dll
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: ICQ Service - Unknown owner - C:\Program Files\ICQ6Toolbar\ICQ Service.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
Utilisateur anonyme
11 janv. 2009 à 19:34
11 janv. 2009 à 19:34
Il y a des reste !
-Télécharge Combofix de sUBs
-Enregistre-le impérativement sur ton bureau
-Déconnecte-toi du net et désactive ton antivirus (juste le temps de la procédur]).
-Ferme toutes les fenêtres.
-Double-clique sur combofix.exe (ne clique pas sur la fenêtre qui s'ouvre).
-Appuie sur Y pour lancer le scan.
-A la fin du scan (cela peut prendre du temps), un rapport sera créé.
-Poste ce rapport dans ton / tes prochain(s) message(s).
______________________________
Télécharge Toolbar-S&D sur ton Bureau :
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/ToolBarSD.exe?attachauth=ANoY7cqJWPphpudyTqv7TRo5RQ3nm_Sx8JluVMO59X5E9cyE3j3LqKlmStIqiDqJdIgMJLi7MXn2nKVajQfoWuVvZZ2wIx_vkqO4k4P0K9jh-ra9jaKPXdZcoaVF2UqJZNH8ubL_42uIwh6f35xJ2GJMuzddVj2Qth1DgZ839lxEIFGkgWz3TdfvNMy-YtxfA3gqBUrj4U4LFeAPiWr3ClmjIP0t_Xs5PQ%3D%3D&attredirects=2
* Lance l'installation du programme en exécutant le fichier téléchargé.
* Double-clique sur le raccourci de Toolbar-S&D.
* Sélectionne la langue puis valide.
* Choisis maintenant l'option 1 (Recherche). Patiente jusqu'à la fin de la recherche.
* Copie/colle le contenu du rapport situé dans C:\TB.txt
-Télécharge Combofix de sUBs
-Enregistre-le impérativement sur ton bureau
-Déconnecte-toi du net et désactive ton antivirus (juste le temps de la procédur]).
-Ferme toutes les fenêtres.
-Double-clique sur combofix.exe (ne clique pas sur la fenêtre qui s'ouvre).
-Appuie sur Y pour lancer le scan.
-A la fin du scan (cela peut prendre du temps), un rapport sera créé.
-Poste ce rapport dans ton / tes prochain(s) message(s).
______________________________
Télécharge Toolbar-S&D sur ton Bureau :
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/ToolBarSD.exe?attachauth=ANoY7cqJWPphpudyTqv7TRo5RQ3nm_Sx8JluVMO59X5E9cyE3j3LqKlmStIqiDqJdIgMJLi7MXn2nKVajQfoWuVvZZ2wIx_vkqO4k4P0K9jh-ra9jaKPXdZcoaVF2UqJZNH8ubL_42uIwh6f35xJ2GJMuzddVj2Qth1DgZ839lxEIFGkgWz3TdfvNMy-YtxfA3gqBUrj4U4LFeAPiWr3ClmjIP0t_Xs5PQ%3D%3D&attredirects=2
* Lance l'installation du programme en exécutant le fichier téléchargé.
* Double-clique sur le raccourci de Toolbar-S&D.
* Sélectionne la langue puis valide.
* Choisis maintenant l'option 1 (Recherche). Patiente jusqu'à la fin de la recherche.
* Copie/colle le contenu du rapport situé dans C:\TB.txt
Utilisateur anonyme
11 janv. 2009 à 21:24
11 janv. 2009 à 21:24
Excuse :
http://download.bleepingcomputer.com/sUBs/ComboFix.exe
http://download.bleepingcomputer.com/sUBs/ComboFix.exe
