Virus
Résolu
Anonyme
-
^^Marie^^ Messages postés 41884 Date d'inscription Statut Membre Dernière intervention -
^^Marie^^ Messages postés 41884 Date d'inscription Statut Membre Dernière intervention -
Bonjour,donc voilà mon problème ^^
J'ai depuis quelque temps une publicité qui s'affiche sans arret "RON ads by snappyads".
J'ai d'abord essayer de le supprimer avec Avast mais rien, j'ai lu les réponse déjà postée et j'ai télécharger SDFix, mais au moment où le nettoyage commence, il y a le message "Nom de commande ou de fichier incorrect Impossible de charger le support IPX/SPX VDM" .
Je voulais aussi savoir si c'est normal que le fichier RunThis.bat, se nomme "RunThis"... pas très français je sais mais je me demandais si sa pouvais être à cause de ça. ^^
J'ai essayer de le réinstaller mais toujours la même chose
Et pour finir voilà le rapport
Logfile of random's system information tool 1.06 (written by random/random)
Run by Mimmo at 2009-04-04 12:25:51
Microsoft Windows XP Professionnel Service Pack 2
System drive C: has 48 GB (63%) free of 76 GB
Total RAM: 959 MB (63% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:25:58, on 04/04/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\WgaTray.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\VTTimer.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\monitor.exe
C:\WINDOWS\VM_STI.EXE
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\WINDOWS\System32\regsvr32.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Lexmark X1100 Series\lxbkbmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Mimmo\Bureau\RSIT.exe
C:\Program Files\trend micro\Mimmo.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: snappyads - {302dd204-68f1-af37-6a7d-92c0b4f9ae32} - C:\WINDOWS\system32\nsz2C.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: snappyads browser enhancer - {6FBCD6C7-4A05-7C19-63FC-42262944F378} - C:\WINDOWS\system32\mstlugeeugatjv.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: XBTBPos00 Class - {E552EEFC-DE97-45D4-BA1A-F534A1B4A579} - C:\PROGRA~1\MORPHE~1\tbuA\MORPHE~1.DLL (file missing)
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" /icon
O4 - HKLM\..\Run: [Lexmark X1100 Series] "C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [Ulead AutoDetector v2] C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\monitor.exe
O4 - HKLM\..\Run: [BigDogPath] C:\WINDOWS\VM_STI.EXE Vimicro USB PC Camera (ZC0301PL)
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [jycgfppblh] C:\WINDOWS\System32\regsvr32.exe /s "C:\WINDOWS\system32\mstlugeeugatjv.dll"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Exitless] C:\DOCUME~1\Mimmo\APPLIC~1\SPAMRU~1\FlawAce.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: LG SyncManager.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://housecall65.trendmicro.com/housecall/applet/html/native/x86/win32/activex/hcImpl.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-BE/a-UNO1/GAME_UNO1.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {8C165CC2-E50D-4D99-9D32-DAF6AB15AA32} (MnetHelper6 Control) - http://patch.mnet.com/Ver2/App/totalApp/mnethelper/MnetHelper2_20090224.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\Sptisrv.exe
--
End of file - 9097 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\Maintenance en 1 clic.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx [2001-03-02 37808]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{302dd204-68f1-af37-6a7d-92c0b4f9ae32}]
snappyads - C:\WINDOWS\system32\nsz2C.dll [2009-02-27 645120]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll [2009-03-13 312928]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6FBCD6C7-4A05-7C19-63FC-42262944F378}]
snappyads browser enhancer - C:\WINDOWS\system32\mstlugeeugatjv.dll [2009-03-17 394240]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2009-03-09 320920]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2006-08-31 322368]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-03-09 34816]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E552EEFC-DE97-45D4-BA1A-F534A1B4A579}]
XBTBPos00 Class - C:\PROGRA~1\MORPHE~1\tbuA\MORPHE~1.DLL []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-03-09 73728]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"VTTimer"=C:\WINDOWS\system32\VTTimer.exe [2004-10-01 53248]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2007-09-06 79224]
"SpeedTouch USB Diagnostics"=C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe [2004-01-26 866816]
"Lexmark X1100 Series"=C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe [2003-08-19 57344]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-03-09 136600]
"Ulead AutoDetector v2"=C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\monitor.exe [2005-05-23 90112]
"BigDogPath"=C:\WINDOWS\VM_STI.EXE [2004-12-15 40960]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2007-10-19 286720]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2007-11-02 267048]
"TkBellExe"=C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [2009-03-13 198160]
"jycgfppblh"=C:\WINDOWS\System32\regsvr32.exe [2004-08-20 12288]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2004-08-20 15360]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2004-10-13 1694208]
"Exitless"=C:\DOCUME~1\Mimmo\APPLIC~1\SPAMRU~1\FlawAce.exe []
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2007-02-09 25388584]
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
Adobe Gamma Loader.lnk - C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
LG SyncManager.lnk - C:\Program Files\LG PC Suite\LG PC Sync\LGSyncManager.exe
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE
C:\Documents and Settings\Mimmo\Menu Démarrer\Programmes\Démarrage
Adobe Gamma.lnk - C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2008-09-06 267304]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\MSN Messenger\msncall.exe"="C:\Program Files\MSN Messenger\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"
"C:\Program Files\Morpheus\Morpheus.exe"="C:\Program Files\Morpheus\Morpheus.exe:*:Enabled:M5Shell"
"C:\WINDOWS\system32\LEXPPS.EXE"="C:\WINDOWS\system32\LEXPPS.EXE:*:Enabled:LEXPPS.EXE"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox"
"C:\Program Files\Internet Explorer\iexplore.exe"="C:\Program Files\Internet Explorer\iexplore.exe:*:Enabled:Internet Explorer"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\Program Files\eMule\eMule.exe"="C:\Program Files\eMule\eMule.exe:*:Disabled:eMule Plus"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\WINDOWS\system32\mnetasvr.exe"="C:\WINDOWS\system32\mnetasvr.exe:*:Enabled:MNet AoD Server"
"C:\Program Files\messenger\msmsgs.exe"="C:\Program Files\messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype. The whole world can talk for free."
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\MSN Messenger\msncall.exe"="C:\Program Files\MSN Messenger\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
======List of files/folders created in the last 1 months======
2009-04-04 12:15:19 ----D---- C:\SDFix
2009-04-04 11:27:19 ----D---- C:\WINDOWS\ERUNT
2009-04-04 11:25:12 ----A---- C:\WINDOWS\ntbtlog.txt
2009-04-04 11:07:39 ----D---- C:\Program Files\trend micro
2009-04-04 11:07:38 ----D---- C:\rsit
2009-03-25 15:14:16 ----A---- C:\WINDOWS\system32\c96aea66-1849-e82c-20d2-4356cb3778f3.exe
2009-03-25 15:14:04 ----A---- C:\WINDOWS\system32\mqrgtrinkcbpidzc.exe
2009-03-19 00:12:36 ----D---- C:\Documents and Settings\All Users\Application Data\Fugazo
2009-03-19 00:11:33 ----D---- C:\Program Files\M6 Jeux
2009-03-19 00:11:33 ----D---- C:\Program Files\Fichiers communs\Oberon Media
2009-03-18 19:24:18 ----D---- C:\WINDOWS\Downloaded Installations
2009-03-17 12:42:20 ----A---- C:\WINDOWS\system32\mstlugeeugatjv.dll
2009-03-14 18:23:14 ----D---- C:\Program Files\GIMP-2.0
2009-03-13 18:10:33 ----D---- C:\Program Files\Fichiers communs\xing shared
2009-03-13 18:10:16 ----A---- C:\WINDOWS\system32\rmoc3260.dll
2009-03-13 18:09:20 ----A---- C:\WINDOWS\system32\pndx5032.dll
2009-03-13 18:09:20 ----A---- C:\WINDOWS\system32\pndx5016.dll
2009-03-12 02:49:51 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
2009-03-12 02:49:19 ----HDC---- C:\WINDOWS\$NtUninstallKB958690$
2009-03-09 17:13:16 ----A---- C:\WINDOWS\system32\javaws.exe
2009-03-09 17:13:16 ----A---- C:\WINDOWS\system32\javaw.exe
2009-03-09 17:13:16 ----A---- C:\WINDOWS\system32\java.exe
2009-03-09 17:13:16 ----A---- C:\WINDOWS\system32\deploytk.dll
2009-03-05 21:36:48 ----D---- C:\Program Files\Turner Entertainment Networks Asia, Inc
======List of files/folders modified in the last 1 months======
2009-04-04 12:25:14 ----D---- C:\Documents and Settings\Mimmo\Application Data\Skype
2009-04-04 12:24:15 ----D---- C:\WINDOWS\Temp
2009-04-04 12:16:32 ----D---- C:\Program Files\Mozilla Firefox
2009-04-04 12:06:32 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-04-04 11:25:12 ----D---- C:\WINDOWS
2009-04-04 11:07:39 ----D---- C:\Program Files
2009-04-03 05:41:13 ----SD---- C:\Documents and Settings\Mimmo\Application Data\Microsoft
2009-04-02 16:46:50 ----D---- C:\WINDOWS\system32\CatRoot2
2009-03-30 17:46:08 ----A---- C:\WINDOWS\lexstat.ini
2009-03-30 17:43:15 ----D---- C:\Program Files\Lexmark X1100 Series
2009-03-29 23:01:05 ----D---- C:\Documents and Settings\Mimmo\Application Data\gtk-2.0
2009-03-29 23:00:01 ----D---- C:\WINDOWS\Prefetch
2009-03-29 11:07:16 ----D---- C:\WINDOWS\system32
2009-03-29 11:07:15 ----AC---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-03-27 21:10:44 ----D---- C:\Program Files\Internet Explorer
2009-03-27 21:10:39 ----D---- C:\WINDOWS\system32\drivers
2009-03-27 21:07:39 ----D---- C:\WINDOWS\system32\Bifrost
2009-03-27 19:00:17 ----D---- C:\Documents and Settings\Mimmo\Application Data\spam rule
2009-03-27 18:31:57 ----D---- C:\Documents and Settings\All Users\Application Data\aim htm license else
2009-03-27 17:24:07 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-03-25 15:22:45 ----D---- C:\Program Files\Yahoo!
2009-03-25 15:16:14 ----D---- C:\Program Files\Morpheus
2009-03-25 12:42:47 ----D---- C:\Program Files\MSN Messenger
2009-03-22 20:28:40 ----D---- C:\Program Files\Mnet P3Modules
2009-03-22 20:27:27 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2009-03-19 00:11:33 ----D---- C:\Program Files\Fichiers communs
2009-03-18 19:25:50 ----HD---- C:\WINDOWS\inf
2009-03-18 19:24:18 ----SHD---- C:\WINDOWS\Installer
2009-03-14 13:24:52 ----RSD---- C:\WINDOWS\Fonts
2009-03-13 20:44:28 ----A---- C:\WINDOWS\win.ini
2009-03-13 18:12:41 ----D---- C:\Documents and Settings\Mimmo\Application Data\Real
2009-03-13 18:10:23 ----D---- C:\Program Files\Fichiers communs\Real
2009-03-13 18:09:16 ----D---- C:\Program Files\Real
2009-03-13 18:09:15 ----A---- C:\WINDOWS\system32\pncrt.dll
2009-03-12 02:49:53 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-03-12 02:49:47 ----A---- C:\WINDOWS\imsins.BAK
2009-03-11 12:30:09 ----HD---- C:\WINDOWS\$hf_mig$
2009-03-10 23:14:46 ----A---- C:\WINDOWS\Thps3.INI
2009-03-10 23:09:49 ----HD---- C:\Program Files\InstallShield Installation Information
2009-03-10 23:07:15 ----D---- C:\Program Files\LG PC Suite
2009-03-10 23:05:58 ----D---- C:\Program Files\Adobe
2009-03-10 23:05:53 ----D---- C:\Program Files\Fichiers communs\Adobe
2009-03-10 22:57:36 ----D---- C:\Documents and Settings\Mimmo\Application Data\Adobe
2009-03-09 17:12:54 ----D---- C:\Program Files\Java
2009-03-07 14:56:12 ----D---- C:\WINDOWS\system32\CatRoot_bak
2009-03-07 14:56:12 ----D---- C:\WINDOWS\system32\CatRoot
2009-03-07 14:42:15 ----D---- C:\WINDOWS\system32\Macromed
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2007-09-06 26624]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2007-09-06 42912]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2007-09-06 94416]
R2 tmcomm;tmcomm; \??\C:\WINDOWS\system32\drivers\tmcomm.sys []
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2007-09-06 23152]
R3 FETNDIS;Pilote NT de carte VIA PCI 10/100Mo Fast Ethernet; C:\WINDOWS\System32\DRIVERS\fetnd5.sys [2001-08-17 27165]
R3 GEARAspiWDM;GEARAspiWDM; C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys [2006-09-19 15664]
R3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\System32\DRIVERS\hidusb.sys [2001-08-17 9600]
R3 mouhid;Pilote HID de souris; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-08-23 12288]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\System32\DRIVERS\usbehci.sys [2004-08-04 26624]
R3 usbhub;Pilote de concentrateur standard USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2004-08-04 57600]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2004-08-04 20480]
R3 viagfx;viagfx; C:\WINDOWS\System32\DRIVERS\vtmini.sys [2004-10-07 174592]
R3 VIAudio;Vinyl AC'97 Audio Controller (WDM); C:\WINDOWS\system32\drivers\vinyl97.sys [2004-09-06 161536]
R3 WpdUsb;WpdUsb; C:\WINDOWS\System32\Drivers\wpdusb.sys [2005-01-28 18944]
S3 adxapie;adxapie; \??\C:\DOCUME~1\Mimmo\LOCALS~1\Temp\adxapie.sys []
S3 AIDA32Driver;AIDA32Driver; \??\C:\Program Files\AIDA32 - Enterprise System Information\aida32.sys []
S3 alcan5wn;SpeedTouch USB ADSL PPP Networking Driver (NDISWAN); C:\WINDOWS\System32\DRIVERS\alcan5wn.sys [2003-12-08 53600]
S3 alcaudsl;SpeedTouch ADSL Modem ATM Transport; C:\WINDOWS\System32\DRIVERS\alcaudsl.sys [2003-12-08 70688]
S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [2004-08-04 17024]
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 LVUSBSta;Logitech USB Monitor Filter; C:\WINDOWS\System32\DRIVERS\LVUSBSta.sys [2004-10-11 22016]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-04 5504]
S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\System32\DRIVERS\NABTSFEC.sys [2004-08-04 85376]
S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [2004-08-04 10880]
S3 PID_0928;Labtec WebCam(PID_0928); C:\WINDOWS\System32\DRIVERS\LV561AV.SYS [2004-10-11 211712]
S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\System32\DRIVERS\SLIP.sys [2004-08-04 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\System32\DRIVERS\StreamIP.sys [2004-08-04 15360]
S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2007-10-31 30464]
S3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2004-08-04 59264]
S3 usbbus;LGE Mobile Composite USB Device; C:\WINDOWS\system32\DRIVERS\lgusbbus.sys [2005-05-26 21344]
S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbccgp.sys [2004-08-04 31616]
S3 USBModem;LGE Mobile USB Modem; C:\WINDOWS\system32\DRIVERS\lgusbmodem.sys [2005-06-24 39036]
S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbprint.sys [2004-08-04 25856]
S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\System32\DRIVERS\usbscan.sys [2004-08-04 15104]
S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2004-08-04 26496]
S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\System32\DRIVERS\WSTCODEC.SYS [2004-08-04 19328]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S3 ZSMC301b;Vimicro USB PC Camera (ZC0301PL); C:\WINDOWS\System32\Drivers\usbVM31b.sys [2006-03-10 194933]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2007-10-31 110592]
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2007-09-06 16248]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2007-09-06 132472]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-03-09 152984]
R2 LexBceS;LexBce Server; C:\WINDOWS\system32\LEXBCES.EXE [2003-08-18 303104]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\System32\wdfmgr.exe [2005-01-28 38912]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2007-09-06 243064]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2007-09-06 345464]
R3 iPod Service;Service de l'iPod; C:\Program Files\iPod\bin\iPodService.exe [2007-11-02 504104]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe [2007-05-31 72704]
S3 SPTISRV;Sony SPTI Service; C:\Program Files\Fichiers communs\Sony Shared\AVLib\Sptisrv.exe [2003-07-28 65536]
S3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2004-08-20 14336]
-----------------EOF-----------------
Merci pour votre aide ^^
J'ai depuis quelque temps une publicité qui s'affiche sans arret "RON ads by snappyads".
J'ai d'abord essayer de le supprimer avec Avast mais rien, j'ai lu les réponse déjà postée et j'ai télécharger SDFix, mais au moment où le nettoyage commence, il y a le message "Nom de commande ou de fichier incorrect Impossible de charger le support IPX/SPX VDM" .
Je voulais aussi savoir si c'est normal que le fichier RunThis.bat, se nomme "RunThis"... pas très français je sais mais je me demandais si sa pouvais être à cause de ça. ^^
J'ai essayer de le réinstaller mais toujours la même chose
Et pour finir voilà le rapport
Logfile of random's system information tool 1.06 (written by random/random)
Run by Mimmo at 2009-04-04 12:25:51
Microsoft Windows XP Professionnel Service Pack 2
System drive C: has 48 GB (63%) free of 76 GB
Total RAM: 959 MB (63% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:25:58, on 04/04/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\WgaTray.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\VTTimer.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\monitor.exe
C:\WINDOWS\VM_STI.EXE
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\WINDOWS\System32\regsvr32.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Lexmark X1100 Series\lxbkbmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Mimmo\Bureau\RSIT.exe
C:\Program Files\trend micro\Mimmo.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: snappyads - {302dd204-68f1-af37-6a7d-92c0b4f9ae32} - C:\WINDOWS\system32\nsz2C.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: snappyads browser enhancer - {6FBCD6C7-4A05-7C19-63FC-42262944F378} - C:\WINDOWS\system32\mstlugeeugatjv.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: XBTBPos00 Class - {E552EEFC-DE97-45D4-BA1A-F534A1B4A579} - C:\PROGRA~1\MORPHE~1\tbuA\MORPHE~1.DLL (file missing)
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" /icon
O4 - HKLM\..\Run: [Lexmark X1100 Series] "C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [Ulead AutoDetector v2] C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\monitor.exe
O4 - HKLM\..\Run: [BigDogPath] C:\WINDOWS\VM_STI.EXE Vimicro USB PC Camera (ZC0301PL)
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [jycgfppblh] C:\WINDOWS\System32\regsvr32.exe /s "C:\WINDOWS\system32\mstlugeeugatjv.dll"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Exitless] C:\DOCUME~1\Mimmo\APPLIC~1\SPAMRU~1\FlawAce.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: LG SyncManager.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://housecall65.trendmicro.com/housecall/applet/html/native/x86/win32/activex/hcImpl.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-BE/a-UNO1/GAME_UNO1.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {8C165CC2-E50D-4D99-9D32-DAF6AB15AA32} (MnetHelper6 Control) - http://patch.mnet.com/Ver2/App/totalApp/mnethelper/MnetHelper2_20090224.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\Sptisrv.exe
--
End of file - 9097 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\Maintenance en 1 clic.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx [2001-03-02 37808]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{302dd204-68f1-af37-6a7d-92c0b4f9ae32}]
snappyads - C:\WINDOWS\system32\nsz2C.dll [2009-02-27 645120]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll [2009-03-13 312928]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6FBCD6C7-4A05-7C19-63FC-42262944F378}]
snappyads browser enhancer - C:\WINDOWS\system32\mstlugeeugatjv.dll [2009-03-17 394240]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2009-03-09 320920]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2006-08-31 322368]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-03-09 34816]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E552EEFC-DE97-45D4-BA1A-F534A1B4A579}]
XBTBPos00 Class - C:\PROGRA~1\MORPHE~1\tbuA\MORPHE~1.DLL []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-03-09 73728]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"VTTimer"=C:\WINDOWS\system32\VTTimer.exe [2004-10-01 53248]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2007-09-06 79224]
"SpeedTouch USB Diagnostics"=C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe [2004-01-26 866816]
"Lexmark X1100 Series"=C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe [2003-08-19 57344]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-03-09 136600]
"Ulead AutoDetector v2"=C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\monitor.exe [2005-05-23 90112]
"BigDogPath"=C:\WINDOWS\VM_STI.EXE [2004-12-15 40960]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2007-10-19 286720]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2007-11-02 267048]
"TkBellExe"=C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [2009-03-13 198160]
"jycgfppblh"=C:\WINDOWS\System32\regsvr32.exe [2004-08-20 12288]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2004-08-20 15360]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2004-10-13 1694208]
"Exitless"=C:\DOCUME~1\Mimmo\APPLIC~1\SPAMRU~1\FlawAce.exe []
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2007-02-09 25388584]
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
Adobe Gamma Loader.lnk - C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
LG SyncManager.lnk - C:\Program Files\LG PC Suite\LG PC Sync\LGSyncManager.exe
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE
C:\Documents and Settings\Mimmo\Menu Démarrer\Programmes\Démarrage
Adobe Gamma.lnk - C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2008-09-06 267304]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\MSN Messenger\msncall.exe"="C:\Program Files\MSN Messenger\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"
"C:\Program Files\Morpheus\Morpheus.exe"="C:\Program Files\Morpheus\Morpheus.exe:*:Enabled:M5Shell"
"C:\WINDOWS\system32\LEXPPS.EXE"="C:\WINDOWS\system32\LEXPPS.EXE:*:Enabled:LEXPPS.EXE"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox"
"C:\Program Files\Internet Explorer\iexplore.exe"="C:\Program Files\Internet Explorer\iexplore.exe:*:Enabled:Internet Explorer"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\Program Files\eMule\eMule.exe"="C:\Program Files\eMule\eMule.exe:*:Disabled:eMule Plus"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\WINDOWS\system32\mnetasvr.exe"="C:\WINDOWS\system32\mnetasvr.exe:*:Enabled:MNet AoD Server"
"C:\Program Files\messenger\msmsgs.exe"="C:\Program Files\messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype. The whole world can talk for free."
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\MSN Messenger\msncall.exe"="C:\Program Files\MSN Messenger\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
======List of files/folders created in the last 1 months======
2009-04-04 12:15:19 ----D---- C:\SDFix
2009-04-04 11:27:19 ----D---- C:\WINDOWS\ERUNT
2009-04-04 11:25:12 ----A---- C:\WINDOWS\ntbtlog.txt
2009-04-04 11:07:39 ----D---- C:\Program Files\trend micro
2009-04-04 11:07:38 ----D---- C:\rsit
2009-03-25 15:14:16 ----A---- C:\WINDOWS\system32\c96aea66-1849-e82c-20d2-4356cb3778f3.exe
2009-03-25 15:14:04 ----A---- C:\WINDOWS\system32\mqrgtrinkcbpidzc.exe
2009-03-19 00:12:36 ----D---- C:\Documents and Settings\All Users\Application Data\Fugazo
2009-03-19 00:11:33 ----D---- C:\Program Files\M6 Jeux
2009-03-19 00:11:33 ----D---- C:\Program Files\Fichiers communs\Oberon Media
2009-03-18 19:24:18 ----D---- C:\WINDOWS\Downloaded Installations
2009-03-17 12:42:20 ----A---- C:\WINDOWS\system32\mstlugeeugatjv.dll
2009-03-14 18:23:14 ----D---- C:\Program Files\GIMP-2.0
2009-03-13 18:10:33 ----D---- C:\Program Files\Fichiers communs\xing shared
2009-03-13 18:10:16 ----A---- C:\WINDOWS\system32\rmoc3260.dll
2009-03-13 18:09:20 ----A---- C:\WINDOWS\system32\pndx5032.dll
2009-03-13 18:09:20 ----A---- C:\WINDOWS\system32\pndx5016.dll
2009-03-12 02:49:51 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
2009-03-12 02:49:19 ----HDC---- C:\WINDOWS\$NtUninstallKB958690$
2009-03-09 17:13:16 ----A---- C:\WINDOWS\system32\javaws.exe
2009-03-09 17:13:16 ----A---- C:\WINDOWS\system32\javaw.exe
2009-03-09 17:13:16 ----A---- C:\WINDOWS\system32\java.exe
2009-03-09 17:13:16 ----A---- C:\WINDOWS\system32\deploytk.dll
2009-03-05 21:36:48 ----D---- C:\Program Files\Turner Entertainment Networks Asia, Inc
======List of files/folders modified in the last 1 months======
2009-04-04 12:25:14 ----D---- C:\Documents and Settings\Mimmo\Application Data\Skype
2009-04-04 12:24:15 ----D---- C:\WINDOWS\Temp
2009-04-04 12:16:32 ----D---- C:\Program Files\Mozilla Firefox
2009-04-04 12:06:32 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-04-04 11:25:12 ----D---- C:\WINDOWS
2009-04-04 11:07:39 ----D---- C:\Program Files
2009-04-03 05:41:13 ----SD---- C:\Documents and Settings\Mimmo\Application Data\Microsoft
2009-04-02 16:46:50 ----D---- C:\WINDOWS\system32\CatRoot2
2009-03-30 17:46:08 ----A---- C:\WINDOWS\lexstat.ini
2009-03-30 17:43:15 ----D---- C:\Program Files\Lexmark X1100 Series
2009-03-29 23:01:05 ----D---- C:\Documents and Settings\Mimmo\Application Data\gtk-2.0
2009-03-29 23:00:01 ----D---- C:\WINDOWS\Prefetch
2009-03-29 11:07:16 ----D---- C:\WINDOWS\system32
2009-03-29 11:07:15 ----AC---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-03-27 21:10:44 ----D---- C:\Program Files\Internet Explorer
2009-03-27 21:10:39 ----D---- C:\WINDOWS\system32\drivers
2009-03-27 21:07:39 ----D---- C:\WINDOWS\system32\Bifrost
2009-03-27 19:00:17 ----D---- C:\Documents and Settings\Mimmo\Application Data\spam rule
2009-03-27 18:31:57 ----D---- C:\Documents and Settings\All Users\Application Data\aim htm license else
2009-03-27 17:24:07 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-03-25 15:22:45 ----D---- C:\Program Files\Yahoo!
2009-03-25 15:16:14 ----D---- C:\Program Files\Morpheus
2009-03-25 12:42:47 ----D---- C:\Program Files\MSN Messenger
2009-03-22 20:28:40 ----D---- C:\Program Files\Mnet P3Modules
2009-03-22 20:27:27 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2009-03-19 00:11:33 ----D---- C:\Program Files\Fichiers communs
2009-03-18 19:25:50 ----HD---- C:\WINDOWS\inf
2009-03-18 19:24:18 ----SHD---- C:\WINDOWS\Installer
2009-03-14 13:24:52 ----RSD---- C:\WINDOWS\Fonts
2009-03-13 20:44:28 ----A---- C:\WINDOWS\win.ini
2009-03-13 18:12:41 ----D---- C:\Documents and Settings\Mimmo\Application Data\Real
2009-03-13 18:10:23 ----D---- C:\Program Files\Fichiers communs\Real
2009-03-13 18:09:16 ----D---- C:\Program Files\Real
2009-03-13 18:09:15 ----A---- C:\WINDOWS\system32\pncrt.dll
2009-03-12 02:49:53 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-03-12 02:49:47 ----A---- C:\WINDOWS\imsins.BAK
2009-03-11 12:30:09 ----HD---- C:\WINDOWS\$hf_mig$
2009-03-10 23:14:46 ----A---- C:\WINDOWS\Thps3.INI
2009-03-10 23:09:49 ----HD---- C:\Program Files\InstallShield Installation Information
2009-03-10 23:07:15 ----D---- C:\Program Files\LG PC Suite
2009-03-10 23:05:58 ----D---- C:\Program Files\Adobe
2009-03-10 23:05:53 ----D---- C:\Program Files\Fichiers communs\Adobe
2009-03-10 22:57:36 ----D---- C:\Documents and Settings\Mimmo\Application Data\Adobe
2009-03-09 17:12:54 ----D---- C:\Program Files\Java
2009-03-07 14:56:12 ----D---- C:\WINDOWS\system32\CatRoot_bak
2009-03-07 14:56:12 ----D---- C:\WINDOWS\system32\CatRoot
2009-03-07 14:42:15 ----D---- C:\WINDOWS\system32\Macromed
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2007-09-06 26624]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2007-09-06 42912]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2007-09-06 94416]
R2 tmcomm;tmcomm; \??\C:\WINDOWS\system32\drivers\tmcomm.sys []
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2007-09-06 23152]
R3 FETNDIS;Pilote NT de carte VIA PCI 10/100Mo Fast Ethernet; C:\WINDOWS\System32\DRIVERS\fetnd5.sys [2001-08-17 27165]
R3 GEARAspiWDM;GEARAspiWDM; C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys [2006-09-19 15664]
R3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\System32\DRIVERS\hidusb.sys [2001-08-17 9600]
R3 mouhid;Pilote HID de souris; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-08-23 12288]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\System32\DRIVERS\usbehci.sys [2004-08-04 26624]
R3 usbhub;Pilote de concentrateur standard USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2004-08-04 57600]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2004-08-04 20480]
R3 viagfx;viagfx; C:\WINDOWS\System32\DRIVERS\vtmini.sys [2004-10-07 174592]
R3 VIAudio;Vinyl AC'97 Audio Controller (WDM); C:\WINDOWS\system32\drivers\vinyl97.sys [2004-09-06 161536]
R3 WpdUsb;WpdUsb; C:\WINDOWS\System32\Drivers\wpdusb.sys [2005-01-28 18944]
S3 adxapie;adxapie; \??\C:\DOCUME~1\Mimmo\LOCALS~1\Temp\adxapie.sys []
S3 AIDA32Driver;AIDA32Driver; \??\C:\Program Files\AIDA32 - Enterprise System Information\aida32.sys []
S3 alcan5wn;SpeedTouch USB ADSL PPP Networking Driver (NDISWAN); C:\WINDOWS\System32\DRIVERS\alcan5wn.sys [2003-12-08 53600]
S3 alcaudsl;SpeedTouch ADSL Modem ATM Transport; C:\WINDOWS\System32\DRIVERS\alcaudsl.sys [2003-12-08 70688]
S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [2004-08-04 17024]
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 LVUSBSta;Logitech USB Monitor Filter; C:\WINDOWS\System32\DRIVERS\LVUSBSta.sys [2004-10-11 22016]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-04 5504]
S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\System32\DRIVERS\NABTSFEC.sys [2004-08-04 85376]
S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [2004-08-04 10880]
S3 PID_0928;Labtec WebCam(PID_0928); C:\WINDOWS\System32\DRIVERS\LV561AV.SYS [2004-10-11 211712]
S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\System32\DRIVERS\SLIP.sys [2004-08-04 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\System32\DRIVERS\StreamIP.sys [2004-08-04 15360]
S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2007-10-31 30464]
S3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2004-08-04 59264]
S3 usbbus;LGE Mobile Composite USB Device; C:\WINDOWS\system32\DRIVERS\lgusbbus.sys [2005-05-26 21344]
S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbccgp.sys [2004-08-04 31616]
S3 USBModem;LGE Mobile USB Modem; C:\WINDOWS\system32\DRIVERS\lgusbmodem.sys [2005-06-24 39036]
S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbprint.sys [2004-08-04 25856]
S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\System32\DRIVERS\usbscan.sys [2004-08-04 15104]
S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2004-08-04 26496]
S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\System32\DRIVERS\WSTCODEC.SYS [2004-08-04 19328]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S3 ZSMC301b;Vimicro USB PC Camera (ZC0301PL); C:\WINDOWS\System32\Drivers\usbVM31b.sys [2006-03-10 194933]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2007-10-31 110592]
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2007-09-06 16248]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2007-09-06 132472]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-03-09 152984]
R2 LexBceS;LexBce Server; C:\WINDOWS\system32\LEXBCES.EXE [2003-08-18 303104]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\System32\wdfmgr.exe [2005-01-28 38912]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2007-09-06 243064]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2007-09-06 345464]
R3 iPod Service;Service de l'iPod; C:\Program Files\iPod\bin\iPodService.exe [2007-11-02 504104]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe [2007-05-31 72704]
S3 SPTISRV;Sony SPTI Service; C:\Program Files\Fichiers communs\Sony Shared\AVLib\Sptisrv.exe [2003-07-28 65536]
S3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2004-08-20 14336]
-----------------EOF-----------------
Merci pour votre aide ^^
Configuration: Windows XP Firefox 3.0.8
A voir également:
- Virus
- Virus mcafee - Accueil - Piratage
- Comment détruire un virus informatique - Guide
- Powershell.exe virus - Guide
- Undisclosed-recipients virus - Guide
- Impossible de terminer l'opération car le fichier contient un virus - Forum Virus
7 réponses
tu est infestée par Vundo.Telecharge malwarebytes fait la mise a jour puis l'analyse.je l'ai testé il fonctionne super.
Re
Mieux vaut passer MBAM en FIN de desinfection
Important! Désactive ton antivirus / antispyware résident / TeaTimer de Spybot (si présent et actif)
Télécharge Toolbar-S&D (Team IDN) sur ton Bureau.
( Merci à Eric_71, Angeldark, Sham_Rock et XmichouX )
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/ToolBarSD.exe?attachauth=ANoY7cqJWPphpudyTqv7TRo5RQ3nm_Sx8JluVMO59X5E9cyE3j3LqKlmStIqiDqJdIgMJLi7MXn2nKVajQfoWuVvZZ2wIx_vkqO4k4P0K9jh-ra9jaKPXdZcoaVF2UqJZNH8ubL_42uIwh6f35xJ2GJMuzddVj2Qth1DgZ839lxEIFGkgWz3TdfvNMy-YtxfA3gqBUrj4U4LFeAPiWr3ClmjIP0t_Xs5PQ%3D%3D&attredirects=2
* Lance l'installation du programme en exécutant le fichier téléchargé.
* Double-clique maintenant sur le raccourci de Toolbar-S&D.
* Sélectionne la langue souhaitée en tapant la lettre de ton choix puis en validant avec la touche Entrée.
* Choisis maintenant l'option 1 (Recherche). Patiente jusqu'à la fin de la recherche.
* Poste le rapport généré. (C:\TB.txt)
===================
Mieux vaut passer MBAM en FIN de desinfection
Important! Désactive ton antivirus / antispyware résident / TeaTimer de Spybot (si présent et actif)
Télécharge Toolbar-S&D (Team IDN) sur ton Bureau.
( Merci à Eric_71, Angeldark, Sham_Rock et XmichouX )
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/ToolBarSD.exe?attachauth=ANoY7cqJWPphpudyTqv7TRo5RQ3nm_Sx8JluVMO59X5E9cyE3j3LqKlmStIqiDqJdIgMJLi7MXn2nKVajQfoWuVvZZ2wIx_vkqO4k4P0K9jh-ra9jaKPXdZcoaVF2UqJZNH8ubL_42uIwh6f35xJ2GJMuzddVj2Qth1DgZ839lxEIFGkgWz3TdfvNMy-YtxfA3gqBUrj4U4LFeAPiWr3ClmjIP0t_Xs5PQ%3D%3D&attredirects=2
* Lance l'installation du programme en exécutant le fichier téléchargé.
* Double-clique maintenant sur le raccourci de Toolbar-S&D.
* Sélectionne la langue souhaitée en tapant la lettre de ton choix puis en validant avec la touche Entrée.
* Choisis maintenant l'option 1 (Recherche). Patiente jusqu'à la fin de la recherche.
* Poste le rapport généré. (C:\TB.txt)
===================
Voilà c'est fait ^^
-----------\\ ToolBar S&D 1.2.8 XP/Vista
Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : AMD Sempron(tm) Processor 3000+ )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : Mimmo ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.7.1043 [VPS 071118-2] 4.7.1043 (Not Activated)
C:\ (Local Disk) - NTFS - Total:74 Go (Free:46 Go)
D:\ (CD or DVD)
"C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 )
Option : [1] ( 04/04/2009|13:30 )
-----------\\ Recherche de Fichiers / Dossiers ...
C:\Program Files\Mozilla Firefox\plugins\NPMyWebS.dll
-----------\\ Extensions
(Jess) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar
(Mimmo) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar
(Mimmo) - {B13721C7-F507-4982-B2E5-502A71474FED} => skype_ff_toolbar_win
-----------\\ [..\Internet Explorer\Main]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Search Page"="https://www.google.com/?gws_rd=ssl"
"Search Bar"="http://www.google.com/toolbar/ie8/sidebar.html"
"Start Page"="https://www.google.fr/?gws_rd=ssl"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
"Default_Search_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Start Page"="http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
1 - "C:\ToolBar SD\TB_1.txt" - 04/04/2009|13:37 - Option : [1]
-----------\\ Fin du rapport a 13:37:40,34
-----------\\ ToolBar S&D 1.2.8 XP/Vista
Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : AMD Sempron(tm) Processor 3000+ )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : Mimmo ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.7.1043 [VPS 071118-2] 4.7.1043 (Not Activated)
C:\ (Local Disk) - NTFS - Total:74 Go (Free:46 Go)
D:\ (CD or DVD)
"C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 )
Option : [1] ( 04/04/2009|13:30 )
-----------\\ Recherche de Fichiers / Dossiers ...
C:\Program Files\Mozilla Firefox\plugins\NPMyWebS.dll
-----------\\ Extensions
(Jess) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar
(Mimmo) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar
(Mimmo) - {B13721C7-F507-4982-B2E5-502A71474FED} => skype_ff_toolbar_win
-----------\\ [..\Internet Explorer\Main]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Search Page"="https://www.google.com/?gws_rd=ssl"
"Search Bar"="http://www.google.com/toolbar/ie8/sidebar.html"
"Start Page"="https://www.google.fr/?gws_rd=ssl"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
"Default_Search_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Start Page"="http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
1 - "C:\ToolBar SD\TB_1.txt" - 04/04/2009|13:37 - Option : [1]
-----------\\ Fin du rapport a 13:37:40,34
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Re
le soucis avec MBAM il va te nettoyer en surface certains fichiers mais pas en profondeur .....
'
Télécharge Lop S&D.exe sur ton Bureau.
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
* Double-clique dessus pour lancer l'installation
* Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
* Séléctionne la langue souhaitée, puis choisis l'option 1 (Recherche)
* Patiente jusqu'à la fin du scan
* Poste le rapport généré (C:\lopR.txt)
Tutorial ( aide ) : http://bibou0007.com/outils-specifiques-f78/tuto-lop-sd-t956.htm
le soucis avec MBAM il va te nettoyer en surface certains fichiers mais pas en profondeur .....
'
Télécharge Lop S&D.exe sur ton Bureau.
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
* Double-clique dessus pour lancer l'installation
* Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
* Séléctionne la langue souhaitée, puis choisis l'option 1 (Recherche)
* Patiente jusqu'à la fin du scan
* Poste le rapport généré (C:\lopR.txt)
Tutorial ( aide ) : http://bibou0007.com/outils-specifiques-f78/tuto-lop-sd-t956.htm
--------------------\\ Lop S&D 4.2.5-0 XP/Vista
Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : AMD Sempron(tm) Processor 3000+ )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : Mimmo ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.7.1043 [VPS 071118-2] 4.7.1043 (Not Activated)
C:\ (Local Disk) - NTFS - Total:74 Go (Free:46 Go)
D:\ (CD or DVD)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 04/04/2009|14:01 )
--------------------\\ Listing des dossiers dans APPLIC~1
[31/05/2007|02:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[31/05/2007|14:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe Systems
[27/03/2009|18:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\aim htm license else
[14/11/2007|15:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[14/11/2007|15:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[10/12/2005|18:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BVRP Software
[19/03/2009|00:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Fugazo
[07/07/2007|22:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[26/12/2005|05:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[04/04/2009|13:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[10/12/2005|23:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[19/02/2009|22:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[10/12/2005|02:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN6
[01/09/2007|10:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst
[24/02/2007|21:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[25/02/2007|13:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SoftCoolMeetDrv
[26/11/2007|23:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony Corporation
[22/03/2009|20:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[05/06/2006|15:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TuneUp Software
[20/02/2006|15:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems
[23/06/2006|10:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[30/08/2007|10:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom
[05/05/2006|01:36] C:\DOCUME~1\deborah\APPLIC~1\microsoft
[09/12/2005|21:59] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[10/03/2009|22:53] C:\DOCUME~1\Jess\APPLIC~1\Adobe
[16/04/2008|13:42] C:\DOCUME~1\Jess\APPLIC~1\Apple Computer
[26/12/2005|16:39] C:\DOCUME~1\Jess\APPLIC~1\Corel
[16/06/2006|22:01] C:\DOCUME~1\Jess\APPLIC~1\Google
[20/06/2006|21:23] C:\DOCUME~1\Jess\APPLIC~1\Help
[10/12/2005|02:15] C:\DOCUME~1\Jess\APPLIC~1\Identities
[20/06/2006|20:54] C:\DOCUME~1\Jess\APPLIC~1\Jasc
[10/12/2005|04:47] C:\DOCUME~1\Jess\APPLIC~1\Lavasoft
[16/12/2005|10:47] C:\DOCUME~1\Jess\APPLIC~1\LG Electronics
[10/12/2005|17:39] C:\DOCUME~1\Jess\APPLIC~1\Macromedia
[18/09/2006|19:31] C:\DOCUME~1\Jess\APPLIC~1\Microsoft
[06/07/2006|00:47] C:\DOCUME~1\Jess\APPLIC~1\Morpheus
[10/12/2005|23:45] C:\DOCUME~1\Jess\APPLIC~1\Mozilla
[17/03/2006|23:22] C:\DOCUME~1\Jess\APPLIC~1\Sun
[06/06/2006|16:36] C:\DOCUME~1\Jess\APPLIC~1\TuneUp Software
[20/01/2006|20:57] C:\DOCUME~1\Jess\APPLIC~1\Ulead Systems
[09/12/2005|21:59] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[13/06/2007|20:03] C:\DOCUME~1\Mimmo\APPLIC~1\AccurateRip
[10/03/2009|22:57] C:\DOCUME~1\Mimmo\APPLIC~1\Adobe
[26/02/2006|14:03] C:\DOCUME~1\Mimmo\APPLIC~1\AdobeUM
[14/11/2007|15:54] C:\DOCUME~1\Mimmo\APPLIC~1\Apple Computer
[16/12/2006|20:53] C:\DOCUME~1\Mimmo\APPLIC~1\Chin htm soft
[09/06/2006|18:59] C:\DOCUME~1\Mimmo\APPLIC~1\Google
[29/03/2009|23:01] C:\DOCUME~1\Mimmo\APPLIC~1\gtk-2.0
[22/12/2005|07:14] C:\DOCUME~1\Mimmo\APPLIC~1\Help
[10/12/2005|04:27] C:\DOCUME~1\Mimmo\APPLIC~1\Identities
[16/09/2007|19:44] C:\DOCUME~1\Mimmo\APPLIC~1\InterTrust
[20/06/2006|19:29] C:\DOCUME~1\Mimmo\APPLIC~1\Jasc
[14/05/2006|00:18] C:\DOCUME~1\Mimmo\APPLIC~1\Lavasoft
[17/12/2005|09:27] C:\DOCUME~1\Mimmo\APPLIC~1\LG Electronics
[25/08/2006|18:09] C:\DOCUME~1\Mimmo\APPLIC~1\Macromedia
[04/04/2009|13:04] C:\DOCUME~1\Mimmo\APPLIC~1\Malwarebytes
[03/04/2009|05:41] C:\DOCUME~1\Mimmo\APPLIC~1\Microsoft
[06/07/2006|01:46] C:\DOCUME~1\Mimmo\APPLIC~1\Morpheus
[12/03/2007|22:10] C:\DOCUME~1\Mimmo\APPLIC~1\Morpheus Software
[28/02/2009|22:13] C:\DOCUME~1\Mimmo\APPLIC~1\Mozilla
[31/05/2007|03:44] C:\DOCUME~1\Mimmo\APPLIC~1\Opera
[25/08/2006|18:09] C:\DOCUME~1\Mimmo\APPLIC~1\PlayFirst
[13/03/2009|18:12] C:\DOCUME~1\Mimmo\APPLIC~1\Real
[21/02/2009|19:48] C:\DOCUME~1\Mimmo\APPLIC~1\SecuROM
[04/04/2009|12:25] C:\DOCUME~1\Mimmo\APPLIC~1\Skype
[27/03/2009|19:00] C:\DOCUME~1\Mimmo\APPLIC~1\spam rule
[17/12/2005|14:26] C:\DOCUME~1\Mimmo\APPLIC~1\Sun
[05/06/2006|15:04] C:\DOCUME~1\Mimmo\APPLIC~1\TuneUp Software
[26/01/2006|17:06] C:\DOCUME~1\Mimmo\APPLIC~1\Ulead Systems
[28/06/2006|20:17] C:\DOCUME~1\Mimmo\APPLIC~1\Zylom
[09/12/2005|21:59] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[22/01/2008|19:13] C:\DOCUME~1\Peppy\APPLIC~1\AccurateRip
[18/03/2009|19:16] C:\DOCUME~1\Peppy\APPLIC~1\Adobe
[23/05/2008|01:11] C:\DOCUME~1\Peppy\APPLIC~1\Apple Computer
[06/06/2008|00:26] C:\DOCUME~1\Peppy\APPLIC~1\Help
[20/01/2008|16:10] C:\DOCUME~1\Peppy\APPLIC~1\Identities
[20/01/2008|16:11] C:\DOCUME~1\Peppy\APPLIC~1\LG Electronics
[21/02/2009|12:21] C:\DOCUME~1\Peppy\APPLIC~1\Macromedia
[21/02/2009|12:29] C:\DOCUME~1\Peppy\APPLIC~1\Microsoft
[21/02/2009|18:39] C:\DOCUME~1\Peppy\APPLIC~1\Morpheus
[01/03/2009|13:14] C:\DOCUME~1\Peppy\APPLIC~1\Mozilla
[18/03/2009|19:14] C:\DOCUME~1\Peppy\APPLIC~1\Real
[19/02/2009|23:18] C:\DOCUME~1\Peppy\APPLIC~1\SecuROM
[22/02/2009|23:01] C:\DOCUME~1\Peppy\APPLIC~1\Skype
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[04/04/2009 11:15][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[03/04/2009 17:15][--a------] C:\WINDOWS\tasks\Maintenance en 1 clic.job
[04/04/2009 12:23][--ah-----] C:\WINDOWS\tasks\SA.DAT
[07/09/2002 02:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ MsgPlus SPONSOR INSTALLED !
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MsgPlus! Plugin]
"DisplayName"="Messenger Plus! 3 & Sponsor"
"SponsorInstalled"=dword:00000000
--------------------\\ Listing des dossiers dans C:\Program Files
[10/03/2009|23:05] C:\Program Files\Adobe
[10/12/2005|04:06] C:\Program Files\Alwil Software
[14/11/2007|15:49] C:\Program Files\Apple Software Update
[08/06/2007|00:00] C:\Program Files\AviSynth 2.5
[28/05/2006|12:29] C:\Program Files\DIFX
[18/10/2007|10:53] C:\Program Files\DivX
[18/09/2007|17:22] C:\Program Files\DVD X Player 4.0 Professionnel
[28/02/2009|23:31] C:\Program Files\EA GAMES
[13/06/2007|18:23] C:\Program Files\eRightSoft
[22/11/2006|17:51] C:\Program Files\FaxTools
[16/09/2007|19:45] C:\Program Files\Feuvert
[19/03/2009|00:11] C:\Program Files\Fichiers communs
[22/11/2006|17:51] C:\Program Files\GameSpy Arcade
[14/03/2009|18:23] C:\Program Files\GIMP-2.0
[09/06/2006|18:59] C:\Program Files\Google
[07/06/2007|22:42] C:\Program Files\Illustrate
[10/03/2009|23:09] C:\Program Files\InstallShield Installation Information
[27/03/2009|21:10] C:\Program Files\Internet Explorer
[14/11/2007|15:53] C:\Program Files\iPod
[14/12/2007|14:37] C:\Program Files\iTunes
[20/06/2006|19:29] C:\Program Files\Jasc Software Inc
[09/03/2009|17:12] C:\Program Files\Java
[14/05/2006|00:18] C:\Program Files\Lavasoft
[30/03/2009|17:43] C:\Program Files\Lexmark X1100 Series
[27/12/2007|16:17] C:\Program Files\LG Electronics
[10/03/2009|23:07] C:\Program Files\LG PC Suite
[27/12/2007|16:17] C:\Program Files\LGGSM
[22/03/2009|20:29] C:\Program Files\M6 Jeux
[04/04/2009|13:04] C:\Program Files\Malwarebytes' Anti-Malware
[18/02/2007|16:21] C:\Program Files\MastaLine Software
[14/06/2006|16:16] C:\Program Files\Maxis
[21/02/2009|10:29] C:\Program Files\messenger
[30/05/2007|20:44] C:\Program Files\Messenger Plus! Live
[09/12/2006|18:13] C:\Program Files\MessengerPlus! 3
[09/12/2005|22:00] C:\Program Files\microsoft frontpage
[13/04/2006|15:07] C:\Program Files\Microsoft Office
[22/03/2009|20:28] C:\Program Files\Mnet P3Modules
[25/03/2009|15:16] C:\Program Files\Morpheus
[22/11/2006|17:51] C:\Program Files\Movie Maker
[04/04/2009|12:26] C:\Program Files\Mozilla Firefox
[09/12/2005|21:53] C:\Program Files\MSN Gaming Zone
[25/03/2009|12:42] C:\Program Files\MSN Messenger
[17/09/2006|18:51] C:\Program Files\NetMeeting
[13/06/2007|07:02] C:\Program Files\Outlook Express
[27/09/2007|15:18] C:\Program Files\PhotoFiltre
[14/11/2007|15:52] C:\Program Files\QuickTime
[13/03/2009|18:09] C:\Program Files\Real
[10/12/2005|16:15] C:\Program Files\Services en ligne
[24/02/2007|21:48] C:\Program Files\Skype
[26/11/2007|23:37] C:\Program Files\Sony
[10/12/2005|16:45] C:\Program Files\Thomson
[04/04/2009|12:25] C:\Program Files\trend micro
[05/03/2009|21:36] C:\Program Files\Turner Entertainment Networks Asia, Inc
[10/12/2005|04:51] C:\Program Files\Uninstall Information
[23/06/2007|13:59] C:\Program Files\Vimicro
[05/07/2007|22:53] C:\Program Files\VirtualDub
[03/03/2007|21:45] C:\Program Files\Windows Media Connect 2
[04/03/2007|06:53] C:\Program Files\Windows Media Player
[17/09/2006|18:51] C:\Program Files\Windows NT
[01/02/2006|19:01] C:\Program Files\WinRAR
[09/12/2005|22:00] C:\Program Files\xerox
[25/03/2009|15:22] C:\Program Files\Yahoo!
[28/06/2006|22:05] C:\Program Files\Zylom Games
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[10/03/2009|23:05] C:\Program Files\Fichiers communs\Adobe
[31/05/2007|02:28] C:\Program Files\Fichiers communs\Adobe Systems Shared
[14/11/2007|15:48] C:\Program Files\Fichiers communs\Apple
[10/12/2005|04:01] C:\Program Files\Fichiers communs\Designer
[26/12/2005|05:30] C:\Program Files\Fichiers communs\InstallShield
[17/12/2005|14:20] C:\Program Files\Fichiers communs\Java
[30/05/2007|20:33] C:\Program Files\Fichiers communs\Microsoft Shared
[09/12/2005|21:55] C:\Program Files\Fichiers communs\MSSoap
[19/03/2009|00:11] C:\Program Files\Fichiers communs\Oberon Media
[13/03/2009|18:10] C:\Program Files\Fichiers communs\Real
[09/12/2005|21:57] C:\Program Files\Fichiers communs\Services
[24/02/2007|21:47] C:\Program Files\Fichiers communs\Skype
[26/11/2007|23:38] C:\Program Files\Fichiers communs\Sony Shared
[09/12/2005|21:48] C:\Program Files\Fichiers communs\SpeechEngines
[13/06/2007|07:27] C:\Program Files\Fichiers communs\System
[20/02/2006|15:27] C:\Program Files\Fichiers communs\Ulead Systems
[17/01/2006|17:59] C:\Program Files\Fichiers communs\Vbox
[13/03/2009|18:10] C:\Program Files\Fichiers communs\xing shared
--------------------\\ Process
( 39 Processes )
iexplore.exe ~ [PID:2044]
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\DOCUME~1\Mimmo\LOCALS~1\Temp\msgpl_8a1b.tmp
C:\DOCUME~1\Mimmo\LOCALS~1\Temp\nsp25.tmp
C:\DOCUME~1\Mimmo\Cookies\mimmo@advertising[1].txt
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-04-04 14:02:45
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 42
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:19189][D:114]-> C:\DOCUME~1\Mimmo\LOCALS~1\Temp
[F:159][D:0]-> C:\DOCUME~1\Mimmo\Cookies
[F:673][D:14]-> C:\DOCUME~1\Mimmo\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 04/04/2009|14:05 - Option : [1]
--------------------\\ Fin du rapport a 14:05:45
Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : AMD Sempron(tm) Processor 3000+ )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : Mimmo ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.7.1043 [VPS 071118-2] 4.7.1043 (Not Activated)
C:\ (Local Disk) - NTFS - Total:74 Go (Free:46 Go)
D:\ (CD or DVD)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 04/04/2009|14:01 )
--------------------\\ Listing des dossiers dans APPLIC~1
[31/05/2007|02:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[31/05/2007|14:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe Systems
[27/03/2009|18:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\aim htm license else
[14/11/2007|15:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[14/11/2007|15:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[10/12/2005|18:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BVRP Software
[19/03/2009|00:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Fugazo
[07/07/2007|22:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[26/12/2005|05:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[04/04/2009|13:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[10/12/2005|23:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[19/02/2009|22:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[10/12/2005|02:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN6
[01/09/2007|10:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst
[24/02/2007|21:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[25/02/2007|13:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SoftCoolMeetDrv
[26/11/2007|23:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony Corporation
[22/03/2009|20:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[05/06/2006|15:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TuneUp Software
[20/02/2006|15:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems
[23/06/2006|10:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[30/08/2007|10:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom
[05/05/2006|01:36] C:\DOCUME~1\deborah\APPLIC~1\microsoft
[09/12/2005|21:59] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[10/03/2009|22:53] C:\DOCUME~1\Jess\APPLIC~1\Adobe
[16/04/2008|13:42] C:\DOCUME~1\Jess\APPLIC~1\Apple Computer
[26/12/2005|16:39] C:\DOCUME~1\Jess\APPLIC~1\Corel
[16/06/2006|22:01] C:\DOCUME~1\Jess\APPLIC~1\Google
[20/06/2006|21:23] C:\DOCUME~1\Jess\APPLIC~1\Help
[10/12/2005|02:15] C:\DOCUME~1\Jess\APPLIC~1\Identities
[20/06/2006|20:54] C:\DOCUME~1\Jess\APPLIC~1\Jasc
[10/12/2005|04:47] C:\DOCUME~1\Jess\APPLIC~1\Lavasoft
[16/12/2005|10:47] C:\DOCUME~1\Jess\APPLIC~1\LG Electronics
[10/12/2005|17:39] C:\DOCUME~1\Jess\APPLIC~1\Macromedia
[18/09/2006|19:31] C:\DOCUME~1\Jess\APPLIC~1\Microsoft
[06/07/2006|00:47] C:\DOCUME~1\Jess\APPLIC~1\Morpheus
[10/12/2005|23:45] C:\DOCUME~1\Jess\APPLIC~1\Mozilla
[17/03/2006|23:22] C:\DOCUME~1\Jess\APPLIC~1\Sun
[06/06/2006|16:36] C:\DOCUME~1\Jess\APPLIC~1\TuneUp Software
[20/01/2006|20:57] C:\DOCUME~1\Jess\APPLIC~1\Ulead Systems
[09/12/2005|21:59] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[13/06/2007|20:03] C:\DOCUME~1\Mimmo\APPLIC~1\AccurateRip
[10/03/2009|22:57] C:\DOCUME~1\Mimmo\APPLIC~1\Adobe
[26/02/2006|14:03] C:\DOCUME~1\Mimmo\APPLIC~1\AdobeUM
[14/11/2007|15:54] C:\DOCUME~1\Mimmo\APPLIC~1\Apple Computer
[16/12/2006|20:53] C:\DOCUME~1\Mimmo\APPLIC~1\Chin htm soft
[09/06/2006|18:59] C:\DOCUME~1\Mimmo\APPLIC~1\Google
[29/03/2009|23:01] C:\DOCUME~1\Mimmo\APPLIC~1\gtk-2.0
[22/12/2005|07:14] C:\DOCUME~1\Mimmo\APPLIC~1\Help
[10/12/2005|04:27] C:\DOCUME~1\Mimmo\APPLIC~1\Identities
[16/09/2007|19:44] C:\DOCUME~1\Mimmo\APPLIC~1\InterTrust
[20/06/2006|19:29] C:\DOCUME~1\Mimmo\APPLIC~1\Jasc
[14/05/2006|00:18] C:\DOCUME~1\Mimmo\APPLIC~1\Lavasoft
[17/12/2005|09:27] C:\DOCUME~1\Mimmo\APPLIC~1\LG Electronics
[25/08/2006|18:09] C:\DOCUME~1\Mimmo\APPLIC~1\Macromedia
[04/04/2009|13:04] C:\DOCUME~1\Mimmo\APPLIC~1\Malwarebytes
[03/04/2009|05:41] C:\DOCUME~1\Mimmo\APPLIC~1\Microsoft
[06/07/2006|01:46] C:\DOCUME~1\Mimmo\APPLIC~1\Morpheus
[12/03/2007|22:10] C:\DOCUME~1\Mimmo\APPLIC~1\Morpheus Software
[28/02/2009|22:13] C:\DOCUME~1\Mimmo\APPLIC~1\Mozilla
[31/05/2007|03:44] C:\DOCUME~1\Mimmo\APPLIC~1\Opera
[25/08/2006|18:09] C:\DOCUME~1\Mimmo\APPLIC~1\PlayFirst
[13/03/2009|18:12] C:\DOCUME~1\Mimmo\APPLIC~1\Real
[21/02/2009|19:48] C:\DOCUME~1\Mimmo\APPLIC~1\SecuROM
[04/04/2009|12:25] C:\DOCUME~1\Mimmo\APPLIC~1\Skype
[27/03/2009|19:00] C:\DOCUME~1\Mimmo\APPLIC~1\spam rule
[17/12/2005|14:26] C:\DOCUME~1\Mimmo\APPLIC~1\Sun
[05/06/2006|15:04] C:\DOCUME~1\Mimmo\APPLIC~1\TuneUp Software
[26/01/2006|17:06] C:\DOCUME~1\Mimmo\APPLIC~1\Ulead Systems
[28/06/2006|20:17] C:\DOCUME~1\Mimmo\APPLIC~1\Zylom
[09/12/2005|21:59] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[22/01/2008|19:13] C:\DOCUME~1\Peppy\APPLIC~1\AccurateRip
[18/03/2009|19:16] C:\DOCUME~1\Peppy\APPLIC~1\Adobe
[23/05/2008|01:11] C:\DOCUME~1\Peppy\APPLIC~1\Apple Computer
[06/06/2008|00:26] C:\DOCUME~1\Peppy\APPLIC~1\Help
[20/01/2008|16:10] C:\DOCUME~1\Peppy\APPLIC~1\Identities
[20/01/2008|16:11] C:\DOCUME~1\Peppy\APPLIC~1\LG Electronics
[21/02/2009|12:21] C:\DOCUME~1\Peppy\APPLIC~1\Macromedia
[21/02/2009|12:29] C:\DOCUME~1\Peppy\APPLIC~1\Microsoft
[21/02/2009|18:39] C:\DOCUME~1\Peppy\APPLIC~1\Morpheus
[01/03/2009|13:14] C:\DOCUME~1\Peppy\APPLIC~1\Mozilla
[18/03/2009|19:14] C:\DOCUME~1\Peppy\APPLIC~1\Real
[19/02/2009|23:18] C:\DOCUME~1\Peppy\APPLIC~1\SecuROM
[22/02/2009|23:01] C:\DOCUME~1\Peppy\APPLIC~1\Skype
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[04/04/2009 11:15][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[03/04/2009 17:15][--a------] C:\WINDOWS\tasks\Maintenance en 1 clic.job
[04/04/2009 12:23][--ah-----] C:\WINDOWS\tasks\SA.DAT
[07/09/2002 02:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ MsgPlus SPONSOR INSTALLED !
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MsgPlus! Plugin]
"DisplayName"="Messenger Plus! 3 & Sponsor"
"SponsorInstalled"=dword:00000000
--------------------\\ Listing des dossiers dans C:\Program Files
[10/03/2009|23:05] C:\Program Files\Adobe
[10/12/2005|04:06] C:\Program Files\Alwil Software
[14/11/2007|15:49] C:\Program Files\Apple Software Update
[08/06/2007|00:00] C:\Program Files\AviSynth 2.5
[28/05/2006|12:29] C:\Program Files\DIFX
[18/10/2007|10:53] C:\Program Files\DivX
[18/09/2007|17:22] C:\Program Files\DVD X Player 4.0 Professionnel
[28/02/2009|23:31] C:\Program Files\EA GAMES
[13/06/2007|18:23] C:\Program Files\eRightSoft
[22/11/2006|17:51] C:\Program Files\FaxTools
[16/09/2007|19:45] C:\Program Files\Feuvert
[19/03/2009|00:11] C:\Program Files\Fichiers communs
[22/11/2006|17:51] C:\Program Files\GameSpy Arcade
[14/03/2009|18:23] C:\Program Files\GIMP-2.0
[09/06/2006|18:59] C:\Program Files\Google
[07/06/2007|22:42] C:\Program Files\Illustrate
[10/03/2009|23:09] C:\Program Files\InstallShield Installation Information
[27/03/2009|21:10] C:\Program Files\Internet Explorer
[14/11/2007|15:53] C:\Program Files\iPod
[14/12/2007|14:37] C:\Program Files\iTunes
[20/06/2006|19:29] C:\Program Files\Jasc Software Inc
[09/03/2009|17:12] C:\Program Files\Java
[14/05/2006|00:18] C:\Program Files\Lavasoft
[30/03/2009|17:43] C:\Program Files\Lexmark X1100 Series
[27/12/2007|16:17] C:\Program Files\LG Electronics
[10/03/2009|23:07] C:\Program Files\LG PC Suite
[27/12/2007|16:17] C:\Program Files\LGGSM
[22/03/2009|20:29] C:\Program Files\M6 Jeux
[04/04/2009|13:04] C:\Program Files\Malwarebytes' Anti-Malware
[18/02/2007|16:21] C:\Program Files\MastaLine Software
[14/06/2006|16:16] C:\Program Files\Maxis
[21/02/2009|10:29] C:\Program Files\messenger
[30/05/2007|20:44] C:\Program Files\Messenger Plus! Live
[09/12/2006|18:13] C:\Program Files\MessengerPlus! 3
[09/12/2005|22:00] C:\Program Files\microsoft frontpage
[13/04/2006|15:07] C:\Program Files\Microsoft Office
[22/03/2009|20:28] C:\Program Files\Mnet P3Modules
[25/03/2009|15:16] C:\Program Files\Morpheus
[22/11/2006|17:51] C:\Program Files\Movie Maker
[04/04/2009|12:26] C:\Program Files\Mozilla Firefox
[09/12/2005|21:53] C:\Program Files\MSN Gaming Zone
[25/03/2009|12:42] C:\Program Files\MSN Messenger
[17/09/2006|18:51] C:\Program Files\NetMeeting
[13/06/2007|07:02] C:\Program Files\Outlook Express
[27/09/2007|15:18] C:\Program Files\PhotoFiltre
[14/11/2007|15:52] C:\Program Files\QuickTime
[13/03/2009|18:09] C:\Program Files\Real
[10/12/2005|16:15] C:\Program Files\Services en ligne
[24/02/2007|21:48] C:\Program Files\Skype
[26/11/2007|23:37] C:\Program Files\Sony
[10/12/2005|16:45] C:\Program Files\Thomson
[04/04/2009|12:25] C:\Program Files\trend micro
[05/03/2009|21:36] C:\Program Files\Turner Entertainment Networks Asia, Inc
[10/12/2005|04:51] C:\Program Files\Uninstall Information
[23/06/2007|13:59] C:\Program Files\Vimicro
[05/07/2007|22:53] C:\Program Files\VirtualDub
[03/03/2007|21:45] C:\Program Files\Windows Media Connect 2
[04/03/2007|06:53] C:\Program Files\Windows Media Player
[17/09/2006|18:51] C:\Program Files\Windows NT
[01/02/2006|19:01] C:\Program Files\WinRAR
[09/12/2005|22:00] C:\Program Files\xerox
[25/03/2009|15:22] C:\Program Files\Yahoo!
[28/06/2006|22:05] C:\Program Files\Zylom Games
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[10/03/2009|23:05] C:\Program Files\Fichiers communs\Adobe
[31/05/2007|02:28] C:\Program Files\Fichiers communs\Adobe Systems Shared
[14/11/2007|15:48] C:\Program Files\Fichiers communs\Apple
[10/12/2005|04:01] C:\Program Files\Fichiers communs\Designer
[26/12/2005|05:30] C:\Program Files\Fichiers communs\InstallShield
[17/12/2005|14:20] C:\Program Files\Fichiers communs\Java
[30/05/2007|20:33] C:\Program Files\Fichiers communs\Microsoft Shared
[09/12/2005|21:55] C:\Program Files\Fichiers communs\MSSoap
[19/03/2009|00:11] C:\Program Files\Fichiers communs\Oberon Media
[13/03/2009|18:10] C:\Program Files\Fichiers communs\Real
[09/12/2005|21:57] C:\Program Files\Fichiers communs\Services
[24/02/2007|21:47] C:\Program Files\Fichiers communs\Skype
[26/11/2007|23:38] C:\Program Files\Fichiers communs\Sony Shared
[09/12/2005|21:48] C:\Program Files\Fichiers communs\SpeechEngines
[13/06/2007|07:27] C:\Program Files\Fichiers communs\System
[20/02/2006|15:27] C:\Program Files\Fichiers communs\Ulead Systems
[17/01/2006|17:59] C:\Program Files\Fichiers communs\Vbox
[13/03/2009|18:10] C:\Program Files\Fichiers communs\xing shared
--------------------\\ Process
( 39 Processes )
iexplore.exe ~ [PID:2044]
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\DOCUME~1\Mimmo\LOCALS~1\Temp\msgpl_8a1b.tmp
C:\DOCUME~1\Mimmo\LOCALS~1\Temp\nsp25.tmp
C:\DOCUME~1\Mimmo\Cookies\mimmo@advertising[1].txt
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-04-04 14:02:45
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 42
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:19189][D:114]-> C:\DOCUME~1\Mimmo\LOCALS~1\Temp
[F:159][D:0]-> C:\DOCUME~1\Mimmo\Cookies
[F:673][D:14]-> C:\DOCUME~1\Mimmo\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 04/04/2009|14:05 - Option : [1]
--------------------\\ Fin du rapport a 14:05:45
