Popup CID sous windows vista
Résolu/Fermé
youhimitsu2008
Messages postés
19
Date d'inscription
dimanche 8 février 2009
Statut
Membre
Dernière intervention
31 juillet 2011
-
8 févr. 2009 à 17:58
youhimitsu2008 Messages postés 19 Date d'inscription dimanche 8 février 2009 Statut Membre Dernière intervention 31 juillet 2011 - 12 févr. 2009 à 11:51
youhimitsu2008 Messages postés 19 Date d'inscription dimanche 8 février 2009 Statut Membre Dernière intervention 31 juillet 2011 - 12 févr. 2009 à 11:51
A voir également:
- Popup CID sous windows vista
- Windows vista - Télécharger - Divers Utilitaires
- Clé windows 10 gratuit - Guide
- Montage video windows - Guide
- Windows ne démarre pas - Guide
- Windows 10 gratuit - Accueil - Mise à jour
7 réponses
^^Marie^^
Messages postés
113901
Date d'inscription
mardi 6 septembre 2005
Statut
Membre
Dernière intervention
28 août 2020
3 275
8 févr. 2009 à 18:01
8 févr. 2009 à 18:01
Bonjour
Je te prepare un discours et je re
Je te prepare un discours et je re
^^Marie^^
Messages postés
113901
Date d'inscription
mardi 6 septembre 2005
Statut
Membre
Dernière intervention
28 août 2020
3 275
8 févr. 2009 à 18:03
8 févr. 2009 à 18:03
Re
Fais ce qui suit dans l'ordre :
C - Ccleaner :
(nettoyeur de registre, cookies+temps+tempos+prefetch+historique+etc.)
* Télécharge CCleaner.
(attention à l'installation penser à DECOCHER l'installation de Yahoo toolbar discrètement proposé en plus de CCleaner).
https://www.pcastuces.com/logitheque/ccleaner.htm
http://www.commentcamarche.net/telecharger/telecharger 168 ccleaner
Installe le dans un répertoire dédié.
Décoche pendant l'installation
--- les deux cases "Ajouter l'option ... "
--- Contrôler les mises à jour
* Lance Ccleaner pour un nettoyage complet.
Tutorial ici:
https://kerio.probb.fr/t242-tuto-ccleaner-v-2
https://www.malekal.com/tutoriel-ccleaner/
ET
http://perso.orange.fr/jesses/Docs/Logiciels/CCleaner.htm
==============================================
Pour Vista, il faut cette version de HijackThis :la 2.0.2
https://www.pcastuces.com/logitheque/hijackthis.htm
Veille à ce que le contrôle des comptes utilisateurs (UAC) soit désactivé.
- Va dans démarrer puis panneau de configuration
- Double Clique sur l'icône "Comptes d'utilisateurs"
- Clique ensuite sur désactiver et valide.
Clic droit sur l'icône de HJT
L'exécuter en tant qu'administrateur
Dézippe le dans un dossier prévu à cet effet.
Par exemple C:\hijackthis < Enregistre le bien dans c : !
Démo : (Merci a Balltrap34 pour cette réalisation)
http://pageperso.aol.fr/balltrap34/Hijenr.gif
http://pageperso.aol.fr/balltrap34/Hijenr.gif
Lance le puis:
Clique sur "do a system scan and save logfile" (cf démo)
Faire un copier coller du log entier sur le forum
Démo : (Merci a Balltrap34 pour cette réalisation)
http://pageperso.aol.fr/balltrap34/demohijack.htmhttp://pageperso.aol.fr/balltrap34/demohijack.htm
http://www.tutoriaux-excalibur.com/hijackthis.htmhttp://www.tutoriaux-excalibur.com/hijackthis.htm
============================================
Télécharge Lop S&D.exe sur ton bureau
tu télécharge Lop S&D.exe sur ton Bureau.https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
https://sites.google.com/site/dcangeldark/changelog
• Double-clique dessus pour lancer l'installation
• Puis double-clique sur le raccourci Lop S&D présent sur ton bureau
• Séléctionne la langue souhaitée , puis choisis l'Option 1 ( Recherche )
• Patiente jusqu'à la fin du scan
• Poste le rapport généré ( C:\lopR.txt )
( Si le Bureau ne réapparait pas presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide )
+++
Fais ce qui suit dans l'ordre :
C - Ccleaner :
(nettoyeur de registre, cookies+temps+tempos+prefetch+historique+etc.)
* Télécharge CCleaner.
(attention à l'installation penser à DECOCHER l'installation de Yahoo toolbar discrètement proposé en plus de CCleaner).
https://www.pcastuces.com/logitheque/ccleaner.htm
http://www.commentcamarche.net/telecharger/telecharger 168 ccleaner
Installe le dans un répertoire dédié.
Décoche pendant l'installation
--- les deux cases "Ajouter l'option ... "
--- Contrôler les mises à jour
* Lance Ccleaner pour un nettoyage complet.
Tutorial ici:
https://kerio.probb.fr/t242-tuto-ccleaner-v-2
https://www.malekal.com/tutoriel-ccleaner/
ET
http://perso.orange.fr/jesses/Docs/Logiciels/CCleaner.htm
==============================================
Pour Vista, il faut cette version de HijackThis :la 2.0.2
https://www.pcastuces.com/logitheque/hijackthis.htm
Veille à ce que le contrôle des comptes utilisateurs (UAC) soit désactivé.
- Va dans démarrer puis panneau de configuration
- Double Clique sur l'icône "Comptes d'utilisateurs"
- Clique ensuite sur désactiver et valide.
Clic droit sur l'icône de HJT
L'exécuter en tant qu'administrateur
Dézippe le dans un dossier prévu à cet effet.
Par exemple C:\hijackthis < Enregistre le bien dans c : !
Démo : (Merci a Balltrap34 pour cette réalisation)
http://pageperso.aol.fr/balltrap34/Hijenr.gif
http://pageperso.aol.fr/balltrap34/Hijenr.gif
Lance le puis:
Clique sur "do a system scan and save logfile" (cf démo)
Faire un copier coller du log entier sur le forum
Démo : (Merci a Balltrap34 pour cette réalisation)
http://pageperso.aol.fr/balltrap34/demohijack.htmhttp://pageperso.aol.fr/balltrap34/demohijack.htm
http://www.tutoriaux-excalibur.com/hijackthis.htmhttp://www.tutoriaux-excalibur.com/hijackthis.htm
============================================
Télécharge Lop S&D.exe sur ton bureau
tu télécharge Lop S&D.exe sur ton Bureau.https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
https://sites.google.com/site/dcangeldark/changelog
• Double-clique dessus pour lancer l'installation
• Puis double-clique sur le raccourci Lop S&D présent sur ton bureau
• Séléctionne la langue souhaitée , puis choisis l'Option 1 ( Recherche )
• Patiente jusqu'à la fin du scan
• Poste le rapport généré ( C:\lopR.txt )
( Si le Bureau ne réapparait pas presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide )
+++
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:31:24, on 08/02/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v8.00 (8.00.6001.18372)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\hp\support\hpsysdrv.exe
C:\hp\KBD\kbd.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\Winamp\winampa.exe
C:\Windows\Philips\SPC500NC\Monitor.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Microsoft LifeChat\LifeChat.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Windows Live\Family Safety\fsui.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Device Manager\msgrdvmn.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Hercules\WiFi Station\WiFiStation.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSTE08.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Windows Live\Messenger\wlcsdk.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Live\Toolbar\wltuser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-be
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?fdr=lc&toHttps=1&redig=FA6AD360E0BE4C719380F8C470A3D3A8
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-be
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-be
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-be
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Windows Live Family Safety Browser Helper - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll
O2 - BHO: Click-to-Call BHO - {5C255C8A-E604-49b4-9D64-90988571CECB} - C:\Program Files\Windows Live\Messenger\wlchtc.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [hpsysdrv] c:\hp\support\hpsysdrv.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [SPC500NC_Monitor] C:\Windows\Philips\SPC500NC\Monitor.exe
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [LifeCam] "C:\Program Files\Microsoft LifeCam\LifeExp.exe"
O4 - HKLM\..\Run: [Windows Mobile-based device management] %windir%\WindowsMobile\wmdc.exe
O4 - HKLM\..\Run: [DPService] "C:\Program Files\HP\DVDPlay\DPService.exe"
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe"
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [LifeChat] "C:\Program Files\Microsoft LifeChat\LifeChat.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [fssui] "C:\Program Files\Windows Live\Family Safety\fsui.exe" -autorun
O4 - HKLM\..\Run: [WindowsLivePhone] c:\Program Files\Windows Live\Device Manager\msgrdvmn.exe /AutoRun
O4 - HKLM\..\RunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [Real Desktop] "C:\Program Files\Real Desktop\Real Desktop.exe"
O4 - HKCU\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [WindowsLivePhone] "C:\Program Files\Windows Live\Device Manager\msgrdvmn.exe" /AutoRun
O4 - HKCU\..\Run: [ares] "C:\Program Files\Ares\Ares.exe" -h
O4 - HKCU\..\Run: [Messenger (Yahoo!)] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
O4 - HKCU\..\Run: [DATA AXIS] "C:\ProgramData\FOUR DRIVE DRIVE.edho1"
O4 - HKCU\..\Run: [bait deaf idle setup] "C:\ProgramData\Tick spam pure.peufrof"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O4 - Global Startup: PalTalk.lnk = C:\Program Files\Paltalk Messenger\paltalk.exe
O4 - Global Startup: WiFi Station.lnk = C:\Program Files\Hercules\WiFi Station\WiFiStation.exe
O9 - Extra button: Statistiques d’Anti-Virus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\SCIEPlgn.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: PalTalk - {4EAFEF58-EEFA-4116-983D-03B49BCBFFFE} - C:\Program Files\Paltalk Messenger\Paltalk.exe (file missing)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O13 - Gopher Prefix:
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1.0\r3hook.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Kaspersky Anti-Virus 7.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logitech\Bluetooth\LBTServ.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe
Scan saved at 18:31:24, on 08/02/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v8.00 (8.00.6001.18372)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\hp\support\hpsysdrv.exe
C:\hp\KBD\kbd.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\Winamp\winampa.exe
C:\Windows\Philips\SPC500NC\Monitor.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Microsoft LifeChat\LifeChat.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Windows Live\Family Safety\fsui.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Device Manager\msgrdvmn.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Hercules\WiFi Station\WiFiStation.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSTE08.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Windows Live\Messenger\wlcsdk.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Live\Toolbar\wltuser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-be
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?fdr=lc&toHttps=1&redig=FA6AD360E0BE4C719380F8C470A3D3A8
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-be
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-be
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-be
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Windows Live Family Safety Browser Helper - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll
O2 - BHO: Click-to-Call BHO - {5C255C8A-E604-49b4-9D64-90988571CECB} - C:\Program Files\Windows Live\Messenger\wlchtc.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [hpsysdrv] c:\hp\support\hpsysdrv.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [SPC500NC_Monitor] C:\Windows\Philips\SPC500NC\Monitor.exe
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [LifeCam] "C:\Program Files\Microsoft LifeCam\LifeExp.exe"
O4 - HKLM\..\Run: [Windows Mobile-based device management] %windir%\WindowsMobile\wmdc.exe
O4 - HKLM\..\Run: [DPService] "C:\Program Files\HP\DVDPlay\DPService.exe"
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe"
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [LifeChat] "C:\Program Files\Microsoft LifeChat\LifeChat.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [fssui] "C:\Program Files\Windows Live\Family Safety\fsui.exe" -autorun
O4 - HKLM\..\Run: [WindowsLivePhone] c:\Program Files\Windows Live\Device Manager\msgrdvmn.exe /AutoRun
O4 - HKLM\..\RunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [Real Desktop] "C:\Program Files\Real Desktop\Real Desktop.exe"
O4 - HKCU\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [WindowsLivePhone] "C:\Program Files\Windows Live\Device Manager\msgrdvmn.exe" /AutoRun
O4 - HKCU\..\Run: [ares] "C:\Program Files\Ares\Ares.exe" -h
O4 - HKCU\..\Run: [Messenger (Yahoo!)] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
O4 - HKCU\..\Run: [DATA AXIS] "C:\ProgramData\FOUR DRIVE DRIVE.edho1"
O4 - HKCU\..\Run: [bait deaf idle setup] "C:\ProgramData\Tick spam pure.peufrof"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O4 - Global Startup: PalTalk.lnk = C:\Program Files\Paltalk Messenger\paltalk.exe
O4 - Global Startup: WiFi Station.lnk = C:\Program Files\Hercules\WiFi Station\WiFiStation.exe
O9 - Extra button: Statistiques d’Anti-Virus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\SCIEPlgn.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: PalTalk - {4EAFEF58-EEFA-4116-983D-03B49BCBFFFE} - C:\Program Files\Paltalk Messenger\Paltalk.exe (file missing)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O13 - Gopher Prefix:
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1.0\r3hook.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Kaspersky Anti-Virus 7.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logitech\Bluetooth\LBTServ.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe
^^Marie^^
Messages postés
113901
Date d'inscription
mardi 6 septembre 2005
Statut
Membre
Dernière intervention
28 août 2020
3 275
9 févr. 2009 à 23:04
9 févr. 2009 à 23:04
Bonsoir
Me faudrait le rapport Lop S&D.exe comme demande au poste 2
Merci
+++
Me faudrait le rapport Lop S&D.exe comme demande au poste 2
Merci
+++
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
youhimitsu2008
Messages postés
19
Date d'inscription
dimanche 8 février 2009
Statut
Membre
Dernière intervention
31 juillet 2011
12 févr. 2009 à 00:45
12 févr. 2009 à 00:45
--------------------\\ Lop S&D 4.2.5-0 XP/Vista
Microsoft® Windows Vista™ Édition Familiale Basique ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : AMD Athlon(tm) 64 Processor 3500+ )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : ali ( Administrator )
BOOT : Normal boot
Antivirus : Kaspersky Anti-Virus 7.0.0.125 (Activated)
C:\ (Local Disk) - NTFS - Total:228 Go (Free:86 Go)
D:\ (Local Disk) - NTFS - Total:4 Go (Free:0 Go)
E:\ (CD or DVD)
F:\ (USB)
G:\ (USB)
H:\ (USB)
I:\ (USB)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 12/02/2009| 0:37 )
[ UAC => 1 ]
--------------------\\ Listing des dossiers dans Local
[25/11/2008|21:08] C:\Users\ali\AppData\Local\ACD Systems
[23/01/2009|01:06] C:\Users\ali\AppData\Local\Adobe
[17/12/2007|21:26] C:\Users\ali\AppData\Local\Apple
[07/08/2008|19:49] C:\Users\ali\AppData\Local\Apple Computer
[30/11/2007|00:19] C:\Users\ali\AppData\Local\Application Data
[08/11/2008|14:16] C:\Users\ali\AppData\Local\Ares
[14/12/2008|01:23] C:\Users\ali\AppData\Local\d3d9caps.dat
[08/02/2009|15:19] C:\Users\ali\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[25/11/2008|21:01] C:\Users\ali\AppData\Local\Downloaded Installations
[12/06/2008|11:47] C:\Users\ali\AppData\Local\DVDPlay
[05/12/2008|02:53] C:\Users\ali\AppData\Local\GDIPFONTCACHEV1.DAT
[01/03/2008|15:40] C:\Users\ali\AppData\Local\Google
[30/11/2007|00:19] C:\Users\ali\AppData\Local\Historique
[11/02/2009|00:18] C:\Users\ali\AppData\Local\IconCache.db
[20/06/2008|02:58] C:\Users\ali\AppData\Local\LogMeIn
[23/11/2008|01:52] C:\Users\ali\AppData\Local\Microsoft
[04/12/2007|14:04] C:\Users\ali\AppData\Local\Microsoft Games
[30/12/2007|00:53] C:\Users\ali\AppData\Local\Microsoft Help
[11/01/2008|22:31] C:\Users\ali\AppData\Local\MicroVision Applications
[03/04/2008|18:37] C:\Users\ali\AppData\Local\Mozilla
[09/06/2008|14:33] C:\Users\ali\AppData\Local\NOS
[23/05/2008|19:35] C:\Users\ali\AppData\Local\PowerCinema
[13/03/2008|15:52] C:\Users\ali\AppData\Local\Shareaza
[12/02/2009|00:37] C:\Users\ali\AppData\Local\Temp
[30/11/2007|00:19] C:\Users\ali\AppData\Local\Temporary Internet Files
[08/12/2007|01:34] C:\Users\ali\AppData\Local\VirtualStore
[10/12/2007|12:32] C:\Users\ali\AppData\Local\Windows Live Writer
[22/01/2009|13:31] C:\Users\ali\AppData\Local\WLDM
[09/11/2008|21:49] C:\Users\ali\AppData\Local\Yahoo
--------------------\\ Tâches planifiées dans C:\Windows\tasks
[12/02/2009 00:37][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{A7C412CF-FE87-49C4-BB4D-440CBAF871B8}.job
[11/02/2009 11:15][--ah-----] C:\Windows\tasks\SA.DAT
[11/02/2009 00:18][--a------] C:\Windows\tasks\SCHEDLGU.TXT
--------------------\\ Listing des dossiers dans C:\ProgramData
[25/11/2008|16:35] C:\ProgramData\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[25/11/2008|21:02] C:\ProgramData\ACD Systems
[23/01/2009|01:10] C:\ProgramData\Adobe
[17/12/2007|21:26] C:\ProgramData\Apple
[17/04/2008|11:02] C:\ProgramData\Apple Computer
[02/11/2006|13:59] C:\ProgramData\Application Data
[08/12/2007|03:45] C:\ProgramData\Azureus
[30/11/2007|00:14] C:\ProgramData\Bureau
[05/09/2008|01:33] C:\ProgramData\CyberLink
[02/11/2006|13:59] C:\ProgramData\Desktop
[02/11/2006|13:59] C:\ProgramData\Documents
[18/03/2008|23:07] C:\ProgramData\Downloaded Installations
[19/12/2007|11:49] C:\ProgramData\eSellerate
[13/12/2007|22:37] C:\ProgramData\ezsid.dat
[07/02/2009|22:39] C:\ProgramData\ezsidmv.dat
[30/11/2007|00:14] C:\ProgramData\Favoris
[02/11/2006|13:59] C:\ProgramData\Favorites
[05/12/2008|02:52] C:\ProgramData\FLEXnet
[08/02/2009|00:11] C:\ProgramData\FOUR DRIVE DRIVE.edho1
[08/02/2009|00:11] C:\ProgramData\FOUR DRIVE DRIVE.zqv9ws
[08/02/2009|14:48] C:\ProgramData\Google
[08/02/2009|00:12] C:\ProgramData\Grey flag ping
[07/12/2006|05:58] C:\ProgramData\Hewlett-Packard
[30/11/2007|01:22] C:\ProgramData\HP
[22/12/2008|01:38] C:\ProgramData\HP Product Assistant
[01/12/2007|23:26] C:\ProgramData\HPSSUPPLY
[19/12/2008|14:00] C:\ProgramData\hpzinstall.log
[08/02/2009|00:11] C:\ProgramData\Htm Support Bait Deaf
[25/12/2008|16:14] C:\ProgramData\ICQ
[07/12/2006|05:36] C:\ProgramData\InstallShield
[11/02/2009|11:16] C:\ProgramData\Kaspersky Lab
[18/01/2008|21:12] C:\ProgramData\LogiShrd
[18/01/2008|21:13] C:\ProgramData\Logitech
[20/06/2008|02:58] C:\ProgramData\LogMeIn
[30/11/2007|00:14] C:\ProgramData\Menu D‚marrer
[09/12/2007|20:12] C:\ProgramData\Messenger Plus!
[19/12/2008|19:51] C:\ProgramData\Microsoft
[11/02/2009|13:02] C:\ProgramData\Microsoft Help
[30/11/2007|00:14] C:\ProgramData\ModŠles
[26/12/2008|17:07] C:\ProgramData\NCH Swift Sound
[22/08/2008|00:56] C:\ProgramData\NVIDIA
[01/02/2009|16:08] C:\ProgramData\Office Genuine Advantage
[05/02/2009|23:29] C:\ProgramData\Roxio
[08/02/2009|17:50] C:\ProgramData\Skype
[01/12/2007|22:56] C:\ProgramData\Sonic
[02/11/2006|13:59] C:\ProgramData\Start Menu
[30/11/2007|00:53] C:\ProgramData\Symantec
[14/03/2008|23:26] C:\ProgramData\TEMP
[02/11/2006|13:59] C:\ProgramData\Templates
[08/02/2009|00:11] C:\ProgramData\Tick spam pure.peufrof
[30/11/2007|01:18] C:\ProgramData\WEBREG
[14/06/2008|11:40] C:\ProgramData\WLInstaller
[09/11/2008|20:44] C:\ProgramData\Yahoo!
--------------------\\ Listing des dossiers dans C:\Program Files
[10/03/2008|05:31] C:\Program Files\3rd Generation
[25/11/2008|21:02] C:\Program Files\ACD Systems
[23/01/2009|01:11] C:\Program Files\Adobe
[16/12/2007|01:44] C:\Program Files\adslTV
[17/12/2007|02:42] C:\Program Files\AliveBox
[01/12/2007|19:16] C:\Program Files\Alwil Software
[04/03/2008|00:05] C:\Program Files\Anark
[07/08/2008|14:05] C:\Program Files\Apple Software Update
[03/02/2009|14:01] C:\Program Files\Azureus
[23/12/2008|20:37] C:\Program Files\Bonjour
[08/02/2009|18:14] C:\Program Files\CCleaner
[08/02/2009|00:11] C:\Program Files\Circle Developement
[05/03/2008|20:09] C:\Program Files\CL-5300 Digital Camera
[08/02/2009|17:50] C:\Program Files\Common Files
[12/03/2008|06:40] C:\Program Files\DivX
[07/12/2007|15:48] C:\Program Files\D-Link
[30/11/2007|00:14] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[08/02/2009|18:36] C:\Program Files\Google
[26/11/2008|21:34] C:\Program Files\Hercules
[30/11/2007|01:17] C:\Program Files\Hewlett-Packard
[23/05/2008|19:35] C:\Program Files\HP
[25/12/2008|16:27] C:\Program Files\ICQ6
[25/12/2008|16:14] C:\Program Files\InstallShield Installation Information
[01/02/2009|16:00] C:\Program Files\Internet Explorer
[25/11/2008|16:34] C:\Program Files\iPod
[25/11/2008|16:35] C:\Program Files\iTunes
[04/12/2008|22:54] C:\Program Files\Java
[03/06/2008|20:47] C:\Program Files\Kaspersky Lab
[25/10/2008|18:40] C:\Program Files\LimeWire
[18/01/2008|21:17] C:\Program Files\Logitech
[08/02/2009|00:11] C:\Program Files\Messenger Plus! Live
[23/01/2009|00:44] C:\Program Files\Micro Application
[19/12/2008|19:53] C:\Program Files\Microsoft
[07/12/2007|22:57] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[02/11/2006|13:35] C:\Program Files\Microsoft Games
[21/02/2008|17:34] C:\Program Files\Microsoft LifeCam
[27/10/2008|20:22] C:\Program Files\Microsoft LifeChat
[30/12/2007|02:53] C:\Program Files\Microsoft Office
[19/12/2008|19:53] C:\Program Files\Microsoft Office Outlook Connector
[22/10/2008|10:41] C:\Program Files\Microsoft Silverlight
[18/10/2008|15:10] C:\Program Files\Microsoft SQL Server Compact Edition
[19/12/2008|19:51] C:\Program Files\Microsoft Sync Framework
[30/12/2007|01:04] C:\Program Files\Microsoft Visual Studio
[30/12/2007|00:55] C:\Program Files\Microsoft Visual Studio 8
[30/12/2007|02:53] C:\Program Files\Microsoft Works
[30/12/2007|01:01] C:\Program Files\Microsoft.NET
[07/11/2008|20:52] C:\Program Files\Mio Technology
[13/12/2007|20:57] C:\Program Files\MioNet
[29/12/2007|15:01] C:\Program Files\mIRC
[06/06/2008|16:46] C:\Program Files\Movie Maker
[30/12/2007|01:04] C:\Program Files\MSBuild
[07/12/2007|22:52] C:\Program Files\MSXML 4.0
[26/12/2008|17:11] C:\Program Files\NCH Software
[30/12/2007|01:26] C:\Program Files\OpenOffice.org 2.2
[20/04/2008|00:26] C:\Program Files\PC Connectivity Solution
[07/12/2006|05:52] C:\Program Files\PC-Doctor 5 for Windows
[13/12/2007|19:43] C:\Program Files\Philips
[25/11/2008|16:31] C:\Program Files\QuickTime
[01/02/2008|01:40] C:\Program Files\Real
[23/05/2008|19:38] C:\Program Files\Realtek
[02/11/2006|13:35] C:\Program Files\Reference Assemblies
[07/12/2006|05:29] C:\Program Files\Roxio
[07/12/2006|05:38] C:\Program Files\Services en ligne
[08/02/2009|17:50] C:\Program Files\Skype
[11/03/2008|20:07] C:\Program Files\Sony Ericsson
[09/11/2008|22:43] C:\Program Files\TomTom DesktopSuite
[08/02/2009|18:28] C:\Program Files\Trend Micro
[02/11/2006|13:58] C:\Program Files\Uninstall Information
[10/08/2008|18:13] C:\Program Files\ViaMichelin
[06/12/2007|23:40] C:\Program Files\VideoLAN
[18/03/2008|23:08] C:\Program Files\VirginMega
[21/10/2008|20:37] C:\Program Files\Virtual Earth 3D
[11/03/2008|19:51] C:\Program Files\VS Revo Group
[13/08/2008|23:31] C:\Program Files\Winamp
[06/06/2008|16:46] C:\Program Files\Windows Calendar
[06/06/2008|16:46] C:\Program Files\Windows Collaboration
[06/06/2008|16:46] C:\Program Files\Windows Defender
[22/01/2009|13:31] C:\Program Files\Windows Live
[19/12/2008|19:46] C:\Program Files\Windows Live SkyDrive
[09/02/2008|02:53] C:\Program Files\Windows Live Toolbar
[11/02/2009|13:00] C:\Program Files\Windows Mail
[06/06/2008|16:46] C:\Program Files\Windows Media Player
[30/11/2007|00:14] C:\Program Files\Windows NT
[06/06/2008|16:46] C:\Program Files\Windows Photo Gallery
[06/06/2008|16:46] C:\Program Files\Windows Sidebar
[08/12/2007|22:38] C:\Program Files\WinRAR
[29/12/2007|15:01] C:\Program Files\xchat
[08/02/2009|18:36] C:\Program Files\Yahoo!
--------------------\\ Listing des dossiers dans C:\Program Files\Common Files
[25/11/2008|21:03] C:\Program Files\Common Files\ACD Systems
[23/01/2009|01:12] C:\Program Files\Common Files\Adobe
[05/12/2008|00:30] C:\Program Files\Common Files\Adobe AIR
[25/11/2008|16:34] C:\Program Files\Common Files\Apple
[30/12/2007|01:04] C:\Program Files\Common Files\DESIGNER
[30/11/2007|01:15] C:\Program Files\Common Files\Hewlett-Packard
[30/11/2007|01:16] C:\Program Files\Common Files\HP
[07/12/2006|05:48] C:\Program Files\Common Files\InstallShield
[11/12/2007|14:29] C:\Program Files\Common Files\Java
[07/12/2006|05:29] C:\Program Files\Common Files\LightScribe
[23/06/2008|16:17] C:\Program Files\Common Files\Logishrd
[23/06/2008|16:17] C:\Program Files\Common Files\Logitech
[07/12/2006|05:29] C:\Program Files\Common Files\LS Getting Started
[19/12/2008|19:46] C:\Program Files\Common Files\microsoft shared
[09/12/2007|00:08] C:\Program Files\Common Files\NSV
[01/02/2008|01:42] C:\Program Files\Common Files\Real
[07/12/2006|05:28] C:\Program Files\Common Files\Roxio Shared
[02/11/2006|12:18] C:\Program Files\Common Files\Services
[08/02/2009|17:50] C:\Program Files\Common Files\Skype
[07/12/2006|05:28] C:\Program Files\Common Files\Sonic Shared
[02/11/2006|12:18] C:\Program Files\Common Files\SpeechEngines
[07/12/2006|05:29] C:\Program Files\Common Files\SureThing Shared
[30/11/2007|01:10] C:\Program Files\Common Files\Symantec Shared
[19/12/2008|19:53] C:\Program Files\Common Files\System
[11/03/2008|20:06] C:\Program Files\Common Files\Teleca Shared
[18/10/2008|13:18] C:\Program Files\Common Files\Windows Live
[07/12/2007|19:08] C:\Program Files\Common Files\WindowsLiveInstaller
[01/02/2008|01:42] C:\Program Files\Common Files\xing shared
--------------------\\ Process
( 93 Processes )
iexplore.exe ~ [PID:2856]
iexplore.exe ~ [PID:508]
iexplore.exe ~ [PID:4308]
iexplore.exe ~ [PID:1208]
iexplore.exe ~ [PID:4244]
--------------------\\ Recherche avec S_Lop
C:\ProgramData\FOUR DRIVE DRIVE.edho1
C:\ProgramData\FOUR DRIVE DRIVE.zqv9ws
C:\ProgramData\Tick spam pure.peufrof
C:\Users\ali\AppData\Local\Temp\bis56E2.exe
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\ProgramData\Htm Support Bait Deaf
C:\ProgramData\Htm Support Bait Deaf\Size one.dat
C:\ProgramData\Htm Support Bait Deaf\Size one.exe
C:\Users\ali\AppData\Local\Temp\nsr6431.tmp
C:\Program Files\Circle Developement
C:\Program Files\Circle Developement\Uninstall.exe
--------------------\\ Verification du Registre
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DATA AXIS"="\"C:\\ProgramData\\FOUR DRIVE DRIVE.edho1\""
"bait deaf idle setup"="\"C:\\ProgramData\\Tick spam pure.peufrof\""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-02-12 00:38:02
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
C:\Users\ali\AppData\Local\Temp\~DFCF8B.tmp
C:\Users\ali\AppData\Local\Temp\~DFCF9B.tmp
scan completed successfully
hidden processes: 0
hidden files: 463
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:228][D:8]-> C:\Users\ali\AppData\Local\Temp
[F:53][D:1]-> C:\Users\ali\AppData\Roaming\MICROS~1\Windows\Cookies
[F:76][D:5]-> C:\Users\ali\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:58][D:10]-> C:\$Recycle.Bin
1 - "C:\Lop SD\LopR_1.txt" - 12/02/2009| 0:44 - Option : [1]
--------------------\\ Fin du rapport a 0:44:01
[ UAC => 1 ]
Microsoft® Windows Vista™ Édition Familiale Basique ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : AMD Athlon(tm) 64 Processor 3500+ )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : ali ( Administrator )
BOOT : Normal boot
Antivirus : Kaspersky Anti-Virus 7.0.0.125 (Activated)
C:\ (Local Disk) - NTFS - Total:228 Go (Free:86 Go)
D:\ (Local Disk) - NTFS - Total:4 Go (Free:0 Go)
E:\ (CD or DVD)
F:\ (USB)
G:\ (USB)
H:\ (USB)
I:\ (USB)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 12/02/2009| 0:37 )
[ UAC => 1 ]
--------------------\\ Listing des dossiers dans Local
[25/11/2008|21:08] C:\Users\ali\AppData\Local\ACD Systems
[23/01/2009|01:06] C:\Users\ali\AppData\Local\Adobe
[17/12/2007|21:26] C:\Users\ali\AppData\Local\Apple
[07/08/2008|19:49] C:\Users\ali\AppData\Local\Apple Computer
[30/11/2007|00:19] C:\Users\ali\AppData\Local\Application Data
[08/11/2008|14:16] C:\Users\ali\AppData\Local\Ares
[14/12/2008|01:23] C:\Users\ali\AppData\Local\d3d9caps.dat
[08/02/2009|15:19] C:\Users\ali\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[25/11/2008|21:01] C:\Users\ali\AppData\Local\Downloaded Installations
[12/06/2008|11:47] C:\Users\ali\AppData\Local\DVDPlay
[05/12/2008|02:53] C:\Users\ali\AppData\Local\GDIPFONTCACHEV1.DAT
[01/03/2008|15:40] C:\Users\ali\AppData\Local\Google
[30/11/2007|00:19] C:\Users\ali\AppData\Local\Historique
[11/02/2009|00:18] C:\Users\ali\AppData\Local\IconCache.db
[20/06/2008|02:58] C:\Users\ali\AppData\Local\LogMeIn
[23/11/2008|01:52] C:\Users\ali\AppData\Local\Microsoft
[04/12/2007|14:04] C:\Users\ali\AppData\Local\Microsoft Games
[30/12/2007|00:53] C:\Users\ali\AppData\Local\Microsoft Help
[11/01/2008|22:31] C:\Users\ali\AppData\Local\MicroVision Applications
[03/04/2008|18:37] C:\Users\ali\AppData\Local\Mozilla
[09/06/2008|14:33] C:\Users\ali\AppData\Local\NOS
[23/05/2008|19:35] C:\Users\ali\AppData\Local\PowerCinema
[13/03/2008|15:52] C:\Users\ali\AppData\Local\Shareaza
[12/02/2009|00:37] C:\Users\ali\AppData\Local\Temp
[30/11/2007|00:19] C:\Users\ali\AppData\Local\Temporary Internet Files
[08/12/2007|01:34] C:\Users\ali\AppData\Local\VirtualStore
[10/12/2007|12:32] C:\Users\ali\AppData\Local\Windows Live Writer
[22/01/2009|13:31] C:\Users\ali\AppData\Local\WLDM
[09/11/2008|21:49] C:\Users\ali\AppData\Local\Yahoo
--------------------\\ Tâches planifiées dans C:\Windows\tasks
[12/02/2009 00:37][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{A7C412CF-FE87-49C4-BB4D-440CBAF871B8}.job
[11/02/2009 11:15][--ah-----] C:\Windows\tasks\SA.DAT
[11/02/2009 00:18][--a------] C:\Windows\tasks\SCHEDLGU.TXT
--------------------\\ Listing des dossiers dans C:\ProgramData
[25/11/2008|16:35] C:\ProgramData\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[25/11/2008|21:02] C:\ProgramData\ACD Systems
[23/01/2009|01:10] C:\ProgramData\Adobe
[17/12/2007|21:26] C:\ProgramData\Apple
[17/04/2008|11:02] C:\ProgramData\Apple Computer
[02/11/2006|13:59] C:\ProgramData\Application Data
[08/12/2007|03:45] C:\ProgramData\Azureus
[30/11/2007|00:14] C:\ProgramData\Bureau
[05/09/2008|01:33] C:\ProgramData\CyberLink
[02/11/2006|13:59] C:\ProgramData\Desktop
[02/11/2006|13:59] C:\ProgramData\Documents
[18/03/2008|23:07] C:\ProgramData\Downloaded Installations
[19/12/2007|11:49] C:\ProgramData\eSellerate
[13/12/2007|22:37] C:\ProgramData\ezsid.dat
[07/02/2009|22:39] C:\ProgramData\ezsidmv.dat
[30/11/2007|00:14] C:\ProgramData\Favoris
[02/11/2006|13:59] C:\ProgramData\Favorites
[05/12/2008|02:52] C:\ProgramData\FLEXnet
[08/02/2009|00:11] C:\ProgramData\FOUR DRIVE DRIVE.edho1
[08/02/2009|00:11] C:\ProgramData\FOUR DRIVE DRIVE.zqv9ws
[08/02/2009|14:48] C:\ProgramData\Google
[08/02/2009|00:12] C:\ProgramData\Grey flag ping
[07/12/2006|05:58] C:\ProgramData\Hewlett-Packard
[30/11/2007|01:22] C:\ProgramData\HP
[22/12/2008|01:38] C:\ProgramData\HP Product Assistant
[01/12/2007|23:26] C:\ProgramData\HPSSUPPLY
[19/12/2008|14:00] C:\ProgramData\hpzinstall.log
[08/02/2009|00:11] C:\ProgramData\Htm Support Bait Deaf
[25/12/2008|16:14] C:\ProgramData\ICQ
[07/12/2006|05:36] C:\ProgramData\InstallShield
[11/02/2009|11:16] C:\ProgramData\Kaspersky Lab
[18/01/2008|21:12] C:\ProgramData\LogiShrd
[18/01/2008|21:13] C:\ProgramData\Logitech
[20/06/2008|02:58] C:\ProgramData\LogMeIn
[30/11/2007|00:14] C:\ProgramData\Menu D‚marrer
[09/12/2007|20:12] C:\ProgramData\Messenger Plus!
[19/12/2008|19:51] C:\ProgramData\Microsoft
[11/02/2009|13:02] C:\ProgramData\Microsoft Help
[30/11/2007|00:14] C:\ProgramData\ModŠles
[26/12/2008|17:07] C:\ProgramData\NCH Swift Sound
[22/08/2008|00:56] C:\ProgramData\NVIDIA
[01/02/2009|16:08] C:\ProgramData\Office Genuine Advantage
[05/02/2009|23:29] C:\ProgramData\Roxio
[08/02/2009|17:50] C:\ProgramData\Skype
[01/12/2007|22:56] C:\ProgramData\Sonic
[02/11/2006|13:59] C:\ProgramData\Start Menu
[30/11/2007|00:53] C:\ProgramData\Symantec
[14/03/2008|23:26] C:\ProgramData\TEMP
[02/11/2006|13:59] C:\ProgramData\Templates
[08/02/2009|00:11] C:\ProgramData\Tick spam pure.peufrof
[30/11/2007|01:18] C:\ProgramData\WEBREG
[14/06/2008|11:40] C:\ProgramData\WLInstaller
[09/11/2008|20:44] C:\ProgramData\Yahoo!
--------------------\\ Listing des dossiers dans C:\Program Files
[10/03/2008|05:31] C:\Program Files\3rd Generation
[25/11/2008|21:02] C:\Program Files\ACD Systems
[23/01/2009|01:11] C:\Program Files\Adobe
[16/12/2007|01:44] C:\Program Files\adslTV
[17/12/2007|02:42] C:\Program Files\AliveBox
[01/12/2007|19:16] C:\Program Files\Alwil Software
[04/03/2008|00:05] C:\Program Files\Anark
[07/08/2008|14:05] C:\Program Files\Apple Software Update
[03/02/2009|14:01] C:\Program Files\Azureus
[23/12/2008|20:37] C:\Program Files\Bonjour
[08/02/2009|18:14] C:\Program Files\CCleaner
[08/02/2009|00:11] C:\Program Files\Circle Developement
[05/03/2008|20:09] C:\Program Files\CL-5300 Digital Camera
[08/02/2009|17:50] C:\Program Files\Common Files
[12/03/2008|06:40] C:\Program Files\DivX
[07/12/2007|15:48] C:\Program Files\D-Link
[30/11/2007|00:14] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[08/02/2009|18:36] C:\Program Files\Google
[26/11/2008|21:34] C:\Program Files\Hercules
[30/11/2007|01:17] C:\Program Files\Hewlett-Packard
[23/05/2008|19:35] C:\Program Files\HP
[25/12/2008|16:27] C:\Program Files\ICQ6
[25/12/2008|16:14] C:\Program Files\InstallShield Installation Information
[01/02/2009|16:00] C:\Program Files\Internet Explorer
[25/11/2008|16:34] C:\Program Files\iPod
[25/11/2008|16:35] C:\Program Files\iTunes
[04/12/2008|22:54] C:\Program Files\Java
[03/06/2008|20:47] C:\Program Files\Kaspersky Lab
[25/10/2008|18:40] C:\Program Files\LimeWire
[18/01/2008|21:17] C:\Program Files\Logitech
[08/02/2009|00:11] C:\Program Files\Messenger Plus! Live
[23/01/2009|00:44] C:\Program Files\Micro Application
[19/12/2008|19:53] C:\Program Files\Microsoft
[07/12/2007|22:57] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[02/11/2006|13:35] C:\Program Files\Microsoft Games
[21/02/2008|17:34] C:\Program Files\Microsoft LifeCam
[27/10/2008|20:22] C:\Program Files\Microsoft LifeChat
[30/12/2007|02:53] C:\Program Files\Microsoft Office
[19/12/2008|19:53] C:\Program Files\Microsoft Office Outlook Connector
[22/10/2008|10:41] C:\Program Files\Microsoft Silverlight
[18/10/2008|15:10] C:\Program Files\Microsoft SQL Server Compact Edition
[19/12/2008|19:51] C:\Program Files\Microsoft Sync Framework
[30/12/2007|01:04] C:\Program Files\Microsoft Visual Studio
[30/12/2007|00:55] C:\Program Files\Microsoft Visual Studio 8
[30/12/2007|02:53] C:\Program Files\Microsoft Works
[30/12/2007|01:01] C:\Program Files\Microsoft.NET
[07/11/2008|20:52] C:\Program Files\Mio Technology
[13/12/2007|20:57] C:\Program Files\MioNet
[29/12/2007|15:01] C:\Program Files\mIRC
[06/06/2008|16:46] C:\Program Files\Movie Maker
[30/12/2007|01:04] C:\Program Files\MSBuild
[07/12/2007|22:52] C:\Program Files\MSXML 4.0
[26/12/2008|17:11] C:\Program Files\NCH Software
[30/12/2007|01:26] C:\Program Files\OpenOffice.org 2.2
[20/04/2008|00:26] C:\Program Files\PC Connectivity Solution
[07/12/2006|05:52] C:\Program Files\PC-Doctor 5 for Windows
[13/12/2007|19:43] C:\Program Files\Philips
[25/11/2008|16:31] C:\Program Files\QuickTime
[01/02/2008|01:40] C:\Program Files\Real
[23/05/2008|19:38] C:\Program Files\Realtek
[02/11/2006|13:35] C:\Program Files\Reference Assemblies
[07/12/2006|05:29] C:\Program Files\Roxio
[07/12/2006|05:38] C:\Program Files\Services en ligne
[08/02/2009|17:50] C:\Program Files\Skype
[11/03/2008|20:07] C:\Program Files\Sony Ericsson
[09/11/2008|22:43] C:\Program Files\TomTom DesktopSuite
[08/02/2009|18:28] C:\Program Files\Trend Micro
[02/11/2006|13:58] C:\Program Files\Uninstall Information
[10/08/2008|18:13] C:\Program Files\ViaMichelin
[06/12/2007|23:40] C:\Program Files\VideoLAN
[18/03/2008|23:08] C:\Program Files\VirginMega
[21/10/2008|20:37] C:\Program Files\Virtual Earth 3D
[11/03/2008|19:51] C:\Program Files\VS Revo Group
[13/08/2008|23:31] C:\Program Files\Winamp
[06/06/2008|16:46] C:\Program Files\Windows Calendar
[06/06/2008|16:46] C:\Program Files\Windows Collaboration
[06/06/2008|16:46] C:\Program Files\Windows Defender
[22/01/2009|13:31] C:\Program Files\Windows Live
[19/12/2008|19:46] C:\Program Files\Windows Live SkyDrive
[09/02/2008|02:53] C:\Program Files\Windows Live Toolbar
[11/02/2009|13:00] C:\Program Files\Windows Mail
[06/06/2008|16:46] C:\Program Files\Windows Media Player
[30/11/2007|00:14] C:\Program Files\Windows NT
[06/06/2008|16:46] C:\Program Files\Windows Photo Gallery
[06/06/2008|16:46] C:\Program Files\Windows Sidebar
[08/12/2007|22:38] C:\Program Files\WinRAR
[29/12/2007|15:01] C:\Program Files\xchat
[08/02/2009|18:36] C:\Program Files\Yahoo!
--------------------\\ Listing des dossiers dans C:\Program Files\Common Files
[25/11/2008|21:03] C:\Program Files\Common Files\ACD Systems
[23/01/2009|01:12] C:\Program Files\Common Files\Adobe
[05/12/2008|00:30] C:\Program Files\Common Files\Adobe AIR
[25/11/2008|16:34] C:\Program Files\Common Files\Apple
[30/12/2007|01:04] C:\Program Files\Common Files\DESIGNER
[30/11/2007|01:15] C:\Program Files\Common Files\Hewlett-Packard
[30/11/2007|01:16] C:\Program Files\Common Files\HP
[07/12/2006|05:48] C:\Program Files\Common Files\InstallShield
[11/12/2007|14:29] C:\Program Files\Common Files\Java
[07/12/2006|05:29] C:\Program Files\Common Files\LightScribe
[23/06/2008|16:17] C:\Program Files\Common Files\Logishrd
[23/06/2008|16:17] C:\Program Files\Common Files\Logitech
[07/12/2006|05:29] C:\Program Files\Common Files\LS Getting Started
[19/12/2008|19:46] C:\Program Files\Common Files\microsoft shared
[09/12/2007|00:08] C:\Program Files\Common Files\NSV
[01/02/2008|01:42] C:\Program Files\Common Files\Real
[07/12/2006|05:28] C:\Program Files\Common Files\Roxio Shared
[02/11/2006|12:18] C:\Program Files\Common Files\Services
[08/02/2009|17:50] C:\Program Files\Common Files\Skype
[07/12/2006|05:28] C:\Program Files\Common Files\Sonic Shared
[02/11/2006|12:18] C:\Program Files\Common Files\SpeechEngines
[07/12/2006|05:29] C:\Program Files\Common Files\SureThing Shared
[30/11/2007|01:10] C:\Program Files\Common Files\Symantec Shared
[19/12/2008|19:53] C:\Program Files\Common Files\System
[11/03/2008|20:06] C:\Program Files\Common Files\Teleca Shared
[18/10/2008|13:18] C:\Program Files\Common Files\Windows Live
[07/12/2007|19:08] C:\Program Files\Common Files\WindowsLiveInstaller
[01/02/2008|01:42] C:\Program Files\Common Files\xing shared
--------------------\\ Process
( 93 Processes )
iexplore.exe ~ [PID:2856]
iexplore.exe ~ [PID:508]
iexplore.exe ~ [PID:4308]
iexplore.exe ~ [PID:1208]
iexplore.exe ~ [PID:4244]
--------------------\\ Recherche avec S_Lop
C:\ProgramData\FOUR DRIVE DRIVE.edho1
C:\ProgramData\FOUR DRIVE DRIVE.zqv9ws
C:\ProgramData\Tick spam pure.peufrof
C:\Users\ali\AppData\Local\Temp\bis56E2.exe
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\ProgramData\Htm Support Bait Deaf
C:\ProgramData\Htm Support Bait Deaf\Size one.dat
C:\ProgramData\Htm Support Bait Deaf\Size one.exe
C:\Users\ali\AppData\Local\Temp\nsr6431.tmp
C:\Program Files\Circle Developement
C:\Program Files\Circle Developement\Uninstall.exe
--------------------\\ Verification du Registre
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DATA AXIS"="\"C:\\ProgramData\\FOUR DRIVE DRIVE.edho1\""
"bait deaf idle setup"="\"C:\\ProgramData\\Tick spam pure.peufrof\""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-02-12 00:38:02
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
C:\Users\ali\AppData\Local\Temp\~DFCF8B.tmp
C:\Users\ali\AppData\Local\Temp\~DFCF9B.tmp
scan completed successfully
hidden processes: 0
hidden files: 463
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:228][D:8]-> C:\Users\ali\AppData\Local\Temp
[F:53][D:1]-> C:\Users\ali\AppData\Roaming\MICROS~1\Windows\Cookies
[F:76][D:5]-> C:\Users\ali\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:58][D:10]-> C:\$Recycle.Bin
1 - "C:\Lop SD\LopR_1.txt" - 12/02/2009| 0:44 - Option : [1]
--------------------\\ Fin du rapport a 0:44:01
[ UAC => 1 ]
^^Marie^^
Messages postés
113901
Date d'inscription
mardi 6 septembre 2005
Statut
Membre
Dernière intervention
28 août 2020
3 275
12 févr. 2009 à 10:01
12 févr. 2009 à 10:01
Bonjour
Relance Lop S&D
• Choisis cette fois ci l'Option 2 ( Suppression )
• Ne ferme pas la fenêtre lors de la suppression !
• Poste le rapport généré ( C:\lopR.txt )
( Si le Bureau ne réapparît pas presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide )
+ 1 log hijackthis
Relance Lop S&D
• Choisis cette fois ci l'Option 2 ( Suppression )
• Ne ferme pas la fenêtre lors de la suppression !
• Poste le rapport généré ( C:\lopR.txt )
( Si le Bureau ne réapparît pas presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide )
+ 1 log hijackthis
youhimitsu2008
Messages postés
19
Date d'inscription
dimanche 8 février 2009
Statut
Membre
Dernière intervention
31 juillet 2011
12 févr. 2009 à 11:51
12 févr. 2009 à 11:51
--------------------\\ Lop S&D 4.2.5-0 XP/Vista
Microsoft® Windows Vista™ Édition Familiale Basique ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : AMD Athlon(tm) 64 Processor 3500+ )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : ali ( Administrator )
BOOT : Normal boot
Antivirus : Kaspersky Anti-Virus 7.0.0.125 (Activated)
C:\ (Local Disk) - NTFS - Total:228 Go (Free:85 Go)
D:\ (Local Disk) - NTFS - Total:4 Go (Free:0 Go)
E:\ (CD or DVD)
F:\ (USB)
G:\ (USB)
H:\ (USB)
I:\ (USB)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [2] ( 12/02/2009|11:44 )
[ UAC => 1 ]
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION
Supprime! - C:\ProgramData\Htm Support Bait Deaf\Size one.dat
Supprime! - C:\ProgramData\Htm Support Bait Deaf\Size one.exe
Supprime! - C:\Users\ali\AppData\Local\Temp\nsr6431.tmp
Supprime! - C:\Program Files\Circle Developement\Uninstall.exe
Supprime! - C:\ProgramData\FOUR DRIVE DRIVE.edho1
Supprime! - C:\ProgramData\FOUR DRIVE DRIVE.zqv9ws
Supprime! - C:\ProgramData\Tick spam pure.peufrof
Supprime! - C:\Users\ali\AppData\Local\Temp\bis56E2.exe
Supprime! - C:\ProgramData\Htm Support Bait Deaf
Supprime! - C:\Program Files\Circle Developement
-
[ Fichier Hosts ] .. Restaure!
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing des dossiers dans Local
[25/11/2008|21:08] C:\Users\ali\AppData\Local\ACD Systems
[23/01/2009|01:06] C:\Users\ali\AppData\Local\Adobe
[17/12/2007|21:26] C:\Users\ali\AppData\Local\Apple
[07/08/2008|19:49] C:\Users\ali\AppData\Local\Apple Computer
[30/11/2007|00:19] C:\Users\ali\AppData\Local\Application Data
[08/11/2008|14:16] C:\Users\ali\AppData\Local\Ares
[14/12/2008|01:23] C:\Users\ali\AppData\Local\d3d9caps.dat
[12/02/2009|03:56] C:\Users\ali\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[25/11/2008|21:01] C:\Users\ali\AppData\Local\Downloaded Installations
[12/06/2008|11:47] C:\Users\ali\AppData\Local\DVDPlay
[05/12/2008|02:53] C:\Users\ali\AppData\Local\GDIPFONTCACHEV1.DAT
[01/03/2008|15:40] C:\Users\ali\AppData\Local\Google
[30/11/2007|00:19] C:\Users\ali\AppData\Local\Historique
[11/02/2009|00:18] C:\Users\ali\AppData\Local\IconCache.db
[20/06/2008|02:58] C:\Users\ali\AppData\Local\LogMeIn
[23/11/2008|01:52] C:\Users\ali\AppData\Local\Microsoft
[04/12/2007|14:04] C:\Users\ali\AppData\Local\Microsoft Games
[30/12/2007|00:53] C:\Users\ali\AppData\Local\Microsoft Help
[11/01/2008|22:31] C:\Users\ali\AppData\Local\MicroVision Applications
[03/04/2008|18:37] C:\Users\ali\AppData\Local\Mozilla
[09/06/2008|14:33] C:\Users\ali\AppData\Local\NOS
[23/05/2008|19:35] C:\Users\ali\AppData\Local\PowerCinema
[13/03/2008|15:52] C:\Users\ali\AppData\Local\Shareaza
[12/02/2009|11:44] C:\Users\ali\AppData\Local\Temp
[30/11/2007|00:19] C:\Users\ali\AppData\Local\Temporary Internet Files
[08/12/2007|01:34] C:\Users\ali\AppData\Local\VirtualStore
[10/12/2007|12:32] C:\Users\ali\AppData\Local\Windows Live Writer
[22/01/2009|13:31] C:\Users\ali\AppData\Local\WLDM
[09/11/2008|21:49] C:\Users\ali\AppData\Local\Yahoo
--------------------\\ Tâches planifiées dans C:\Windows\tasks
[12/02/2009 11:25][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{A7C412CF-FE87-49C4-BB4D-440CBAF871B8}.job
[11/02/2009 11:15][--ah-----] C:\Windows\tasks\SA.DAT
[11/02/2009 00:18][--a------] C:\Windows\tasks\SCHEDLGU.TXT
--------------------\\ Listing des dossiers dans C:\ProgramData
[25/11/2008|16:35] C:\ProgramData\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[25/11/2008|21:02] C:\ProgramData\ACD Systems
[23/01/2009|01:10] C:\ProgramData\Adobe
[17/12/2007|21:26] C:\ProgramData\Apple
[17/04/2008|11:02] C:\ProgramData\Apple Computer
[02/11/2006|13:59] C:\ProgramData\Application Data
[08/12/2007|03:45] C:\ProgramData\Azureus
[30/11/2007|00:14] C:\ProgramData\Bureau
[05/09/2008|01:33] C:\ProgramData\CyberLink
[02/11/2006|13:59] C:\ProgramData\Desktop
[02/11/2006|13:59] C:\ProgramData\Documents
[18/03/2008|23:07] C:\ProgramData\Downloaded Installations
[19/12/2007|11:49] C:\ProgramData\eSellerate
[13/12/2007|22:37] C:\ProgramData\ezsid.dat
[07/02/2009|22:39] C:\ProgramData\ezsidmv.dat
[30/11/2007|00:14] C:\ProgramData\Favoris
[02/11/2006|13:59] C:\ProgramData\Favorites
[05/12/2008|02:52] C:\ProgramData\FLEXnet
[08/02/2009|14:48] C:\ProgramData\Google
[08/02/2009|00:12] C:\ProgramData\Grey flag ping
[07/12/2006|05:58] C:\ProgramData\Hewlett-Packard
[30/11/2007|01:22] C:\ProgramData\HP
[22/12/2008|01:38] C:\ProgramData\HP Product Assistant
[01/12/2007|23:26] C:\ProgramData\HPSSUPPLY
[19/12/2008|14:00] C:\ProgramData\hpzinstall.log
[25/12/2008|16:14] C:\ProgramData\ICQ
[07/12/2006|05:36] C:\ProgramData\InstallShield
[11/02/2009|11:16] C:\ProgramData\Kaspersky Lab
[18/01/2008|21:12] C:\ProgramData\LogiShrd
[18/01/2008|21:13] C:\ProgramData\Logitech
[20/06/2008|02:58] C:\ProgramData\LogMeIn
[30/11/2007|00:14] C:\ProgramData\Menu D‚marrer
[09/12/2007|20:12] C:\ProgramData\Messenger Plus!
[19/12/2008|19:51] C:\ProgramData\Microsoft
[11/02/2009|13:02] C:\ProgramData\Microsoft Help
[30/11/2007|00:14] C:\ProgramData\ModŠles
[26/12/2008|17:07] C:\ProgramData\NCH Swift Sound
[22/08/2008|00:56] C:\ProgramData\NVIDIA
[01/02/2009|16:08] C:\ProgramData\Office Genuine Advantage
[05/02/2009|23:29] C:\ProgramData\Roxio
[08/02/2009|17:50] C:\ProgramData\Skype
[01/12/2007|22:56] C:\ProgramData\Sonic
[02/11/2006|13:59] C:\ProgramData\Start Menu
[30/11/2007|00:53] C:\ProgramData\Symantec
[14/03/2008|23:26] C:\ProgramData\TEMP
[02/11/2006|13:59] C:\ProgramData\Templates
[30/11/2007|01:18] C:\ProgramData\WEBREG
[14/06/2008|11:40] C:\ProgramData\WLInstaller
[09/11/2008|20:44] C:\ProgramData\Yahoo!
--------------------\\ Listing des dossiers dans C:\Program Files
[10/03/2008|05:31] C:\Program Files\3rd Generation
[25/11/2008|21:02] C:\Program Files\ACD Systems
[23/01/2009|01:11] C:\Program Files\Adobe
[16/12/2007|01:44] C:\Program Files\adslTV
[17/12/2007|02:42] C:\Program Files\AliveBox
[01/12/2007|19:16] C:\Program Files\Alwil Software
[04/03/2008|00:05] C:\Program Files\Anark
[07/08/2008|14:05] C:\Program Files\Apple Software Update
[03/02/2009|14:01] C:\Program Files\Azureus
[23/12/2008|20:37] C:\Program Files\Bonjour
[08/02/2009|18:14] C:\Program Files\CCleaner
[05/03/2008|20:09] C:\Program Files\CL-5300 Digital Camera
[08/02/2009|17:50] C:\Program Files\Common Files
[12/03/2008|06:40] C:\Program Files\DivX
[07/12/2007|15:48] C:\Program Files\D-Link
[30/11/2007|00:14] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[08/02/2009|18:36] C:\Program Files\Google
[26/11/2008|21:34] C:\Program Files\Hercules
[30/11/2007|01:17] C:\Program Files\Hewlett-Packard
[23/05/2008|19:35] C:\Program Files\HP
[25/12/2008|16:27] C:\Program Files\ICQ6
[25/12/2008|16:14] C:\Program Files\InstallShield Installation Information
[01/02/2009|16:00] C:\Program Files\Internet Explorer
[25/11/2008|16:34] C:\Program Files\iPod
[25/11/2008|16:35] C:\Program Files\iTunes
[04/12/2008|22:54] C:\Program Files\Java
[03/06/2008|20:47] C:\Program Files\Kaspersky Lab
[25/10/2008|18:40] C:\Program Files\LimeWire
[18/01/2008|21:17] C:\Program Files\Logitech
[08/02/2009|00:11] C:\Program Files\Messenger Plus! Live
[23/01/2009|00:44] C:\Program Files\Micro Application
[19/12/2008|19:53] C:\Program Files\Microsoft
[07/12/2007|22:57] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[02/11/2006|13:35] C:\Program Files\Microsoft Games
[21/02/2008|17:34] C:\Program Files\Microsoft LifeCam
[27/10/2008|20:22] C:\Program Files\Microsoft LifeChat
[30/12/2007|02:53] C:\Program Files\Microsoft Office
[19/12/2008|19:53] C:\Program Files\Microsoft Office Outlook Connector
[22/10/2008|10:41] C:\Program Files\Microsoft Silverlight
[18/10/2008|15:10] C:\Program Files\Microsoft SQL Server Compact Edition
[19/12/2008|19:51] C:\Program Files\Microsoft Sync Framework
[30/12/2007|01:04] C:\Program Files\Microsoft Visual Studio
[30/12/2007|00:55] C:\Program Files\Microsoft Visual Studio 8
[30/12/2007|02:53] C:\Program Files\Microsoft Works
[30/12/2007|01:01] C:\Program Files\Microsoft.NET
[07/11/2008|20:52] C:\Program Files\Mio Technology
[13/12/2007|20:57] C:\Program Files\MioNet
[29/12/2007|15:01] C:\Program Files\mIRC
[06/06/2008|16:46] C:\Program Files\Movie Maker
[30/12/2007|01:04] C:\Program Files\MSBuild
[07/12/2007|22:52] C:\Program Files\MSXML 4.0
[26/12/2008|17:11] C:\Program Files\NCH Software
[30/12/2007|01:26] C:\Program Files\OpenOffice.org 2.2
[20/04/2008|00:26] C:\Program Files\PC Connectivity Solution
[07/12/2006|05:52] C:\Program Files\PC-Doctor 5 for Windows
[13/12/2007|19:43] C:\Program Files\Philips
[25/11/2008|16:31] C:\Program Files\QuickTime
[01/02/2008|01:40] C:\Program Files\Real
[23/05/2008|19:38] C:\Program Files\Realtek
[02/11/2006|13:35] C:\Program Files\Reference Assemblies
[07/12/2006|05:29] C:\Program Files\Roxio
[07/12/2006|05:38] C:\Program Files\Services en ligne
[08/02/2009|17:50] C:\Program Files\Skype
[11/03/2008|20:07] C:\Program Files\Sony Ericsson
[09/11/2008|22:43] C:\Program Files\TomTom DesktopSuite
[08/02/2009|18:28] C:\Program Files\Trend Micro
[02/11/2006|13:58] C:\Program Files\Uninstall Information
[10/08/2008|18:13] C:\Program Files\ViaMichelin
[06/12/2007|23:40] C:\Program Files\VideoLAN
[18/03/2008|23:08] C:\Program Files\VirginMega
[21/10/2008|20:37] C:\Program Files\Virtual Earth 3D
[11/03/2008|19:51] C:\Program Files\VS Revo Group
[13/08/2008|23:31] C:\Program Files\Winamp
[06/06/2008|16:46] C:\Program Files\Windows Calendar
[06/06/2008|16:46] C:\Program Files\Windows Collaboration
[06/06/2008|16:46] C:\Program Files\Windows Defender
[22/01/2009|13:31] C:\Program Files\Windows Live
[19/12/2008|19:46] C:\Program Files\Windows Live SkyDrive
[09/02/2008|02:53] C:\Program Files\Windows Live Toolbar
[11/02/2009|13:00] C:\Program Files\Windows Mail
[06/06/2008|16:46] C:\Program Files\Windows Media Player
[30/11/2007|00:14] C:\Program Files\Windows NT
[06/06/2008|16:46] C:\Program Files\Windows Photo Gallery
[06/06/2008|16:46] C:\Program Files\Windows Sidebar
[08/12/2007|22:38] C:\Program Files\WinRAR
[29/12/2007|15:01] C:\Program Files\xchat
[08/02/2009|18:36] C:\Program Files\Yahoo!
--------------------\\ Listing des dossiers dans C:\Program Files\Common Files
[25/11/2008|21:03] C:\Program Files\Common Files\ACD Systems
[23/01/2009|01:12] C:\Program Files\Common Files\Adobe
[05/12/2008|00:30] C:\Program Files\Common Files\Adobe AIR
[25/11/2008|16:34] C:\Program Files\Common Files\Apple
[30/12/2007|01:04] C:\Program Files\Common Files\DESIGNER
[30/11/2007|01:15] C:\Program Files\Common Files\Hewlett-Packard
[30/11/2007|01:16] C:\Program Files\Common Files\HP
[07/12/2006|05:48] C:\Program Files\Common Files\InstallShield
[11/12/2007|14:29] C:\Program Files\Common Files\Java
[07/12/2006|05:29] C:\Program Files\Common Files\LightScribe
[23/06/2008|16:17] C:\Program Files\Common Files\Logishrd
[23/06/2008|16:17] C:\Program Files\Common Files\Logitech
[07/12/2006|05:29] C:\Program Files\Common Files\LS Getting Started
[19/12/2008|19:46] C:\Program Files\Common Files\microsoft shared
[09/12/2007|00:08] C:\Program Files\Common Files\NSV
[01/02/2008|01:42] C:\Program Files\Common Files\Real
[07/12/2006|05:28] C:\Program Files\Common Files\Roxio Shared
[02/11/2006|12:18] C:\Program Files\Common Files\Services
[08/02/2009|17:50] C:\Program Files\Common Files\Skype
[07/12/2006|05:28] C:\Program Files\Common Files\Sonic Shared
[02/11/2006|12:18] C:\Program Files\Common Files\SpeechEngines
[07/12/2006|05:29] C:\Program Files\Common Files\SureThing Shared
[30/11/2007|01:10] C:\Program Files\Common Files\Symantec Shared
[19/12/2008|19:53] C:\Program Files\Common Files\System
[11/03/2008|20:06] C:\Program Files\Common Files\Teleca Shared
[18/10/2008|13:18] C:\Program Files\Common Files\Windows Live
[07/12/2007|19:08] C:\Program Files\Common Files\WindowsLiveInstaller
[01/02/2008|01:42] C:\Program Files\Common Files\xing shared
--------------------\\ Process
( 84 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-02-12 11:44:48
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
C:\Users\ali\AppData\Local\Microsoft\Windows Live Mail\Sentinel\WLMailSearchSentinel.eml:OECustomProperty 143 bytes hidden from API
scan completed successfully
hidden processes: 0
hidden files: 462
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:263][D:12]-> C:\Users\ali\AppData\Local\Temp
[F:67][D:1]-> C:\Users\ali\AppData\Roaming\MICROS~1\Windows\Cookies
[F:188][D:5]-> C:\Users\ali\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:62][D:10]-> C:\$Recycle.Bin
1 - "C:\Lop SD\LopR_1.txt" - 12/02/2009| 0:44 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 12/02/2009|11:50 - Option : [2]
--------------------\\ Fin du rapport a 11:50:11
[ UAC => 1 ]
Microsoft® Windows Vista™ Édition Familiale Basique ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : AMD Athlon(tm) 64 Processor 3500+ )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : ali ( Administrator )
BOOT : Normal boot
Antivirus : Kaspersky Anti-Virus 7.0.0.125 (Activated)
C:\ (Local Disk) - NTFS - Total:228 Go (Free:85 Go)
D:\ (Local Disk) - NTFS - Total:4 Go (Free:0 Go)
E:\ (CD or DVD)
F:\ (USB)
G:\ (USB)
H:\ (USB)
I:\ (USB)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [2] ( 12/02/2009|11:44 )
[ UAC => 1 ]
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION
Supprime! - C:\ProgramData\Htm Support Bait Deaf\Size one.dat
Supprime! - C:\ProgramData\Htm Support Bait Deaf\Size one.exe
Supprime! - C:\Users\ali\AppData\Local\Temp\nsr6431.tmp
Supprime! - C:\Program Files\Circle Developement\Uninstall.exe
Supprime! - C:\ProgramData\FOUR DRIVE DRIVE.edho1
Supprime! - C:\ProgramData\FOUR DRIVE DRIVE.zqv9ws
Supprime! - C:\ProgramData\Tick spam pure.peufrof
Supprime! - C:\Users\ali\AppData\Local\Temp\bis56E2.exe
Supprime! - C:\ProgramData\Htm Support Bait Deaf
Supprime! - C:\Program Files\Circle Developement
-
[ Fichier Hosts ] .. Restaure!
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing des dossiers dans Local
[25/11/2008|21:08] C:\Users\ali\AppData\Local\ACD Systems
[23/01/2009|01:06] C:\Users\ali\AppData\Local\Adobe
[17/12/2007|21:26] C:\Users\ali\AppData\Local\Apple
[07/08/2008|19:49] C:\Users\ali\AppData\Local\Apple Computer
[30/11/2007|00:19] C:\Users\ali\AppData\Local\Application Data
[08/11/2008|14:16] C:\Users\ali\AppData\Local\Ares
[14/12/2008|01:23] C:\Users\ali\AppData\Local\d3d9caps.dat
[12/02/2009|03:56] C:\Users\ali\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[25/11/2008|21:01] C:\Users\ali\AppData\Local\Downloaded Installations
[12/06/2008|11:47] C:\Users\ali\AppData\Local\DVDPlay
[05/12/2008|02:53] C:\Users\ali\AppData\Local\GDIPFONTCACHEV1.DAT
[01/03/2008|15:40] C:\Users\ali\AppData\Local\Google
[30/11/2007|00:19] C:\Users\ali\AppData\Local\Historique
[11/02/2009|00:18] C:\Users\ali\AppData\Local\IconCache.db
[20/06/2008|02:58] C:\Users\ali\AppData\Local\LogMeIn
[23/11/2008|01:52] C:\Users\ali\AppData\Local\Microsoft
[04/12/2007|14:04] C:\Users\ali\AppData\Local\Microsoft Games
[30/12/2007|00:53] C:\Users\ali\AppData\Local\Microsoft Help
[11/01/2008|22:31] C:\Users\ali\AppData\Local\MicroVision Applications
[03/04/2008|18:37] C:\Users\ali\AppData\Local\Mozilla
[09/06/2008|14:33] C:\Users\ali\AppData\Local\NOS
[23/05/2008|19:35] C:\Users\ali\AppData\Local\PowerCinema
[13/03/2008|15:52] C:\Users\ali\AppData\Local\Shareaza
[12/02/2009|11:44] C:\Users\ali\AppData\Local\Temp
[30/11/2007|00:19] C:\Users\ali\AppData\Local\Temporary Internet Files
[08/12/2007|01:34] C:\Users\ali\AppData\Local\VirtualStore
[10/12/2007|12:32] C:\Users\ali\AppData\Local\Windows Live Writer
[22/01/2009|13:31] C:\Users\ali\AppData\Local\WLDM
[09/11/2008|21:49] C:\Users\ali\AppData\Local\Yahoo
--------------------\\ Tâches planifiées dans C:\Windows\tasks
[12/02/2009 11:25][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{A7C412CF-FE87-49C4-BB4D-440CBAF871B8}.job
[11/02/2009 11:15][--ah-----] C:\Windows\tasks\SA.DAT
[11/02/2009 00:18][--a------] C:\Windows\tasks\SCHEDLGU.TXT
--------------------\\ Listing des dossiers dans C:\ProgramData
[25/11/2008|16:35] C:\ProgramData\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[25/11/2008|21:02] C:\ProgramData\ACD Systems
[23/01/2009|01:10] C:\ProgramData\Adobe
[17/12/2007|21:26] C:\ProgramData\Apple
[17/04/2008|11:02] C:\ProgramData\Apple Computer
[02/11/2006|13:59] C:\ProgramData\Application Data
[08/12/2007|03:45] C:\ProgramData\Azureus
[30/11/2007|00:14] C:\ProgramData\Bureau
[05/09/2008|01:33] C:\ProgramData\CyberLink
[02/11/2006|13:59] C:\ProgramData\Desktop
[02/11/2006|13:59] C:\ProgramData\Documents
[18/03/2008|23:07] C:\ProgramData\Downloaded Installations
[19/12/2007|11:49] C:\ProgramData\eSellerate
[13/12/2007|22:37] C:\ProgramData\ezsid.dat
[07/02/2009|22:39] C:\ProgramData\ezsidmv.dat
[30/11/2007|00:14] C:\ProgramData\Favoris
[02/11/2006|13:59] C:\ProgramData\Favorites
[05/12/2008|02:52] C:\ProgramData\FLEXnet
[08/02/2009|14:48] C:\ProgramData\Google
[08/02/2009|00:12] C:\ProgramData\Grey flag ping
[07/12/2006|05:58] C:\ProgramData\Hewlett-Packard
[30/11/2007|01:22] C:\ProgramData\HP
[22/12/2008|01:38] C:\ProgramData\HP Product Assistant
[01/12/2007|23:26] C:\ProgramData\HPSSUPPLY
[19/12/2008|14:00] C:\ProgramData\hpzinstall.log
[25/12/2008|16:14] C:\ProgramData\ICQ
[07/12/2006|05:36] C:\ProgramData\InstallShield
[11/02/2009|11:16] C:\ProgramData\Kaspersky Lab
[18/01/2008|21:12] C:\ProgramData\LogiShrd
[18/01/2008|21:13] C:\ProgramData\Logitech
[20/06/2008|02:58] C:\ProgramData\LogMeIn
[30/11/2007|00:14] C:\ProgramData\Menu D‚marrer
[09/12/2007|20:12] C:\ProgramData\Messenger Plus!
[19/12/2008|19:51] C:\ProgramData\Microsoft
[11/02/2009|13:02] C:\ProgramData\Microsoft Help
[30/11/2007|00:14] C:\ProgramData\ModŠles
[26/12/2008|17:07] C:\ProgramData\NCH Swift Sound
[22/08/2008|00:56] C:\ProgramData\NVIDIA
[01/02/2009|16:08] C:\ProgramData\Office Genuine Advantage
[05/02/2009|23:29] C:\ProgramData\Roxio
[08/02/2009|17:50] C:\ProgramData\Skype
[01/12/2007|22:56] C:\ProgramData\Sonic
[02/11/2006|13:59] C:\ProgramData\Start Menu
[30/11/2007|00:53] C:\ProgramData\Symantec
[14/03/2008|23:26] C:\ProgramData\TEMP
[02/11/2006|13:59] C:\ProgramData\Templates
[30/11/2007|01:18] C:\ProgramData\WEBREG
[14/06/2008|11:40] C:\ProgramData\WLInstaller
[09/11/2008|20:44] C:\ProgramData\Yahoo!
--------------------\\ Listing des dossiers dans C:\Program Files
[10/03/2008|05:31] C:\Program Files\3rd Generation
[25/11/2008|21:02] C:\Program Files\ACD Systems
[23/01/2009|01:11] C:\Program Files\Adobe
[16/12/2007|01:44] C:\Program Files\adslTV
[17/12/2007|02:42] C:\Program Files\AliveBox
[01/12/2007|19:16] C:\Program Files\Alwil Software
[04/03/2008|00:05] C:\Program Files\Anark
[07/08/2008|14:05] C:\Program Files\Apple Software Update
[03/02/2009|14:01] C:\Program Files\Azureus
[23/12/2008|20:37] C:\Program Files\Bonjour
[08/02/2009|18:14] C:\Program Files\CCleaner
[05/03/2008|20:09] C:\Program Files\CL-5300 Digital Camera
[08/02/2009|17:50] C:\Program Files\Common Files
[12/03/2008|06:40] C:\Program Files\DivX
[07/12/2007|15:48] C:\Program Files\D-Link
[30/11/2007|00:14] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[08/02/2009|18:36] C:\Program Files\Google
[26/11/2008|21:34] C:\Program Files\Hercules
[30/11/2007|01:17] C:\Program Files\Hewlett-Packard
[23/05/2008|19:35] C:\Program Files\HP
[25/12/2008|16:27] C:\Program Files\ICQ6
[25/12/2008|16:14] C:\Program Files\InstallShield Installation Information
[01/02/2009|16:00] C:\Program Files\Internet Explorer
[25/11/2008|16:34] C:\Program Files\iPod
[25/11/2008|16:35] C:\Program Files\iTunes
[04/12/2008|22:54] C:\Program Files\Java
[03/06/2008|20:47] C:\Program Files\Kaspersky Lab
[25/10/2008|18:40] C:\Program Files\LimeWire
[18/01/2008|21:17] C:\Program Files\Logitech
[08/02/2009|00:11] C:\Program Files\Messenger Plus! Live
[23/01/2009|00:44] C:\Program Files\Micro Application
[19/12/2008|19:53] C:\Program Files\Microsoft
[07/12/2007|22:57] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[02/11/2006|13:35] C:\Program Files\Microsoft Games
[21/02/2008|17:34] C:\Program Files\Microsoft LifeCam
[27/10/2008|20:22] C:\Program Files\Microsoft LifeChat
[30/12/2007|02:53] C:\Program Files\Microsoft Office
[19/12/2008|19:53] C:\Program Files\Microsoft Office Outlook Connector
[22/10/2008|10:41] C:\Program Files\Microsoft Silverlight
[18/10/2008|15:10] C:\Program Files\Microsoft SQL Server Compact Edition
[19/12/2008|19:51] C:\Program Files\Microsoft Sync Framework
[30/12/2007|01:04] C:\Program Files\Microsoft Visual Studio
[30/12/2007|00:55] C:\Program Files\Microsoft Visual Studio 8
[30/12/2007|02:53] C:\Program Files\Microsoft Works
[30/12/2007|01:01] C:\Program Files\Microsoft.NET
[07/11/2008|20:52] C:\Program Files\Mio Technology
[13/12/2007|20:57] C:\Program Files\MioNet
[29/12/2007|15:01] C:\Program Files\mIRC
[06/06/2008|16:46] C:\Program Files\Movie Maker
[30/12/2007|01:04] C:\Program Files\MSBuild
[07/12/2007|22:52] C:\Program Files\MSXML 4.0
[26/12/2008|17:11] C:\Program Files\NCH Software
[30/12/2007|01:26] C:\Program Files\OpenOffice.org 2.2
[20/04/2008|00:26] C:\Program Files\PC Connectivity Solution
[07/12/2006|05:52] C:\Program Files\PC-Doctor 5 for Windows
[13/12/2007|19:43] C:\Program Files\Philips
[25/11/2008|16:31] C:\Program Files\QuickTime
[01/02/2008|01:40] C:\Program Files\Real
[23/05/2008|19:38] C:\Program Files\Realtek
[02/11/2006|13:35] C:\Program Files\Reference Assemblies
[07/12/2006|05:29] C:\Program Files\Roxio
[07/12/2006|05:38] C:\Program Files\Services en ligne
[08/02/2009|17:50] C:\Program Files\Skype
[11/03/2008|20:07] C:\Program Files\Sony Ericsson
[09/11/2008|22:43] C:\Program Files\TomTom DesktopSuite
[08/02/2009|18:28] C:\Program Files\Trend Micro
[02/11/2006|13:58] C:\Program Files\Uninstall Information
[10/08/2008|18:13] C:\Program Files\ViaMichelin
[06/12/2007|23:40] C:\Program Files\VideoLAN
[18/03/2008|23:08] C:\Program Files\VirginMega
[21/10/2008|20:37] C:\Program Files\Virtual Earth 3D
[11/03/2008|19:51] C:\Program Files\VS Revo Group
[13/08/2008|23:31] C:\Program Files\Winamp
[06/06/2008|16:46] C:\Program Files\Windows Calendar
[06/06/2008|16:46] C:\Program Files\Windows Collaboration
[06/06/2008|16:46] C:\Program Files\Windows Defender
[22/01/2009|13:31] C:\Program Files\Windows Live
[19/12/2008|19:46] C:\Program Files\Windows Live SkyDrive
[09/02/2008|02:53] C:\Program Files\Windows Live Toolbar
[11/02/2009|13:00] C:\Program Files\Windows Mail
[06/06/2008|16:46] C:\Program Files\Windows Media Player
[30/11/2007|00:14] C:\Program Files\Windows NT
[06/06/2008|16:46] C:\Program Files\Windows Photo Gallery
[06/06/2008|16:46] C:\Program Files\Windows Sidebar
[08/12/2007|22:38] C:\Program Files\WinRAR
[29/12/2007|15:01] C:\Program Files\xchat
[08/02/2009|18:36] C:\Program Files\Yahoo!
--------------------\\ Listing des dossiers dans C:\Program Files\Common Files
[25/11/2008|21:03] C:\Program Files\Common Files\ACD Systems
[23/01/2009|01:12] C:\Program Files\Common Files\Adobe
[05/12/2008|00:30] C:\Program Files\Common Files\Adobe AIR
[25/11/2008|16:34] C:\Program Files\Common Files\Apple
[30/12/2007|01:04] C:\Program Files\Common Files\DESIGNER
[30/11/2007|01:15] C:\Program Files\Common Files\Hewlett-Packard
[30/11/2007|01:16] C:\Program Files\Common Files\HP
[07/12/2006|05:48] C:\Program Files\Common Files\InstallShield
[11/12/2007|14:29] C:\Program Files\Common Files\Java
[07/12/2006|05:29] C:\Program Files\Common Files\LightScribe
[23/06/2008|16:17] C:\Program Files\Common Files\Logishrd
[23/06/2008|16:17] C:\Program Files\Common Files\Logitech
[07/12/2006|05:29] C:\Program Files\Common Files\LS Getting Started
[19/12/2008|19:46] C:\Program Files\Common Files\microsoft shared
[09/12/2007|00:08] C:\Program Files\Common Files\NSV
[01/02/2008|01:42] C:\Program Files\Common Files\Real
[07/12/2006|05:28] C:\Program Files\Common Files\Roxio Shared
[02/11/2006|12:18] C:\Program Files\Common Files\Services
[08/02/2009|17:50] C:\Program Files\Common Files\Skype
[07/12/2006|05:28] C:\Program Files\Common Files\Sonic Shared
[02/11/2006|12:18] C:\Program Files\Common Files\SpeechEngines
[07/12/2006|05:29] C:\Program Files\Common Files\SureThing Shared
[30/11/2007|01:10] C:\Program Files\Common Files\Symantec Shared
[19/12/2008|19:53] C:\Program Files\Common Files\System
[11/03/2008|20:06] C:\Program Files\Common Files\Teleca Shared
[18/10/2008|13:18] C:\Program Files\Common Files\Windows Live
[07/12/2007|19:08] C:\Program Files\Common Files\WindowsLiveInstaller
[01/02/2008|01:42] C:\Program Files\Common Files\xing shared
--------------------\\ Process
( 84 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-02-12 11:44:48
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
C:\Users\ali\AppData\Local\Microsoft\Windows Live Mail\Sentinel\WLMailSearchSentinel.eml:OECustomProperty 143 bytes hidden from API
scan completed successfully
hidden processes: 0
hidden files: 462
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:263][D:12]-> C:\Users\ali\AppData\Local\Temp
[F:67][D:1]-> C:\Users\ali\AppData\Roaming\MICROS~1\Windows\Cookies
[F:188][D:5]-> C:\Users\ali\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:62][D:10]-> C:\$Recycle.Bin
1 - "C:\Lop SD\LopR_1.txt" - 12/02/2009| 0:44 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 12/02/2009|11:50 - Option : [2]
--------------------\\ Fin du rapport a 11:50:11
[ UAC => 1 ]