A voir également:
- Pub cid !!! encore et toujours !!!!
- Supprimer pub youtube - Accueil - Streaming
- Stop pub gratuit - Télécharger - Divers Utilitaires
- Supprimer la pub - Guide
- Trouver nom acteur pub ✓ - Forum Cinéma / Télé
- Pub par sms - Guide
12 réponses
Salut,
▶ Télécharge hijackthis
▶ Enregistre la cible sous .... "le bureau"
▶ Fais un double-clic sur "HJTInstall.exe" afin de lancer l'installation
▶ Clique sur Install ensuite sur "I Accept"
▶ Clique sur" Do a scan system and save log file"
▶ Le bloc-notes s'ouvrira, fais un copier-coller de tout son contenu ici dans ta prochaine réponse
▶ Tuto hijackthis(Merci à Balltrap34)
Si un rapport ne passe pas faire une alerte à la conciergerie avec le /!\ jaune.
▶ Télécharge hijackthis
▶ Enregistre la cible sous .... "le bureau"
▶ Fais un double-clic sur "HJTInstall.exe" afin de lancer l'installation
▶ Clique sur Install ensuite sur "I Accept"
▶ Clique sur" Do a scan system and save log file"
▶ Le bloc-notes s'ouvrira, fais un copier-coller de tout son contenu ici dans ta prochaine réponse
▶ Tuto hijackthis(Merci à Balltrap34)
Si un rapport ne passe pas faire une alerte à la conciergerie avec le /!\ jaune.
Re,
Télécharge Lop S&D
▶ Double-clique dessus pour lancer l'installation
▶ Puis double-clique sur le raccourci Lop S&D présent sur ton bureau
▶ Séléctionne la langue souhaitée
▶ Puis choisis l'Option 1 ( Recherche )
▶ Patiente jusqu'à la fin du scan
▶ Poste le rapport généré ( C:lopR.txt )
Tutoriel
Si un rapport ne passe pas faire une alerte à la conciergerie avec le /!\ jaune.
Télécharge Lop S&D
▶ Double-clique dessus pour lancer l'installation
▶ Puis double-clique sur le raccourci Lop S&D présent sur ton bureau
▶ Séléctionne la langue souhaitée
▶ Puis choisis l'Option 1 ( Recherche )
▶ Patiente jusqu'à la fin du scan
▶ Poste le rapport généré ( C:lopR.txt )
Tutoriel
Si un rapport ne passe pas faire une alerte à la conciergerie avec le /!\ jaune.
--------------------\\ Lop S&D 4.2.5-0 XP/Vista
Microsoft Windows XP Home Edition ( v5.1.2600 ) Service Pack 2
X86-based PC ( Multiprocessor Free : Genuine Intel(R) CPU T2300 @ 1.66GHz )
BIOS : Phoenix ROM BIOS PLUS Version 1.10 A03
USER : LARGE ERIC ( Administrator )
BOOT : Normal boot
Antivirus : Trend Micro Internet Security 12.00 (Not Activated)
Firewall : ƒEƒCƒ‹ƒXƒoƒXƒ^[12 (ƒp[ƒ\ƒiƒ‹ƒtƒ@ƒCƒAƒEƒH[ƒ‹) 12 (Activated)
C:\ (Local Disk) - NTFS - Total:88 Go (Free:27 Go)
D:\ (CD or DVD) - UDF - Total:5 Go (Free:0 Go)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( Fri 05/01/2009|16:17 )
--------------------\\ Listing des dossiers dans APPLIC~1
[04/07/2006|07:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Adobe
[04/30/2006|10:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Brother
[04/07/2006|07:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> InstallShield
[04/07/2006|07:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Intel
[05/05/2006|05:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Microsoft
[04/30/2006|07:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Motive
[04/30/2006|07:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> MotiveSysIDs
[08/17/2004|07:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> SBSI
[04/30/2006|08:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Windows Genuine Advantage
[01/05/2009|01:18] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Adobe
[05/06/2008|07:23] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> AntiVir PersonalEdition Classic
[05/22/2007|12:03] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Apple Computer
[05/28/2006|08:21] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Brother
[12/28/2006|10:18] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> eXPert PDF
[12/28/2006|10:19] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> eXPert PDF 4
[12/28/2006|10:18] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> eXPert PDF Jobs
[01/19/2009|08:05] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Google
[05/28/2006|07:50] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Intel
[04/29/2009|07:27] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> live 64 math does
[02/11/2009|06:42] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Malwarebytes
[10/28/2008|08:50] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Messenger Plus!
[02/21/2009|10:43] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Microsoft
[08/04/2006|10:38] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> MSN Search Toolbar
[05/06/2008|03:55] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> program extra intra type
[03/26/2008|11:26] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Skype
[07/30/2007|11:41] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Sony Corporation
[01/30/2007|06:39] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Windows Genuine Advantage
[01/30/2007|08:38] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Windows Live Toolbar
[01/23/2009|10:23] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> WindowsLiveInstaller
[03/22/2008|03:46] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> WLInstaller
[11/10/2008|11:16] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Yahoo! Companion
[08/17/2004|07:31] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> Identities
[04/07/2006|07:24] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> Intel
[04/07/2006|07:23] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> Microsoft
[04/07/2006|07:22] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> Sun
[05/28/2006|07:29] C:\DOCUME~1\DEFAUL~1.WIN\APPLIC~1\<DIR> Microsoft
[03/12/2008|02:21] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Adobe
[06/09/2006|01:26] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> AdobeAUM
[12/16/2007|12:38] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> AdobeUM
[09/22/2007|06:19] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> AlertInfo
[05/22/2007|12:14] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Apple Computer
[02/05/2009|09:02] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Blender Foundation
[05/28/2006|09:18] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Brother
[05/01/2009|01:41] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> dvdcss
[12/28/2006|10:19] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> eXPert PDF Editor
[12/25/2006|11:19] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Google
[04/29/2009|07:27] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> gridbasedog
[12/07/2007|01:30] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> gtk-2.0
[06/04/2006|09:57] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Help
[10/29/2007|07:10] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Identities
[03/10/2009|10:36] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> InstallShield
[05/28/2006|07:51] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Intel
[06/09/2006|02:17] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Leadertech
[02/14/2007|08:12] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Macromedia
[02/11/2009|06:42] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Malwarebytes
[02/21/2009|11:08] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Microsoft
[08/04/2006|10:40] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> MSN Search Toolbar
[05/28/2006|12:18] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> MSNInstaller
[05/22/2007|01:32] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> MusicIP
[04/30/2009|09:28] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> OpenOffice.org2
[04/16/2009|02:26] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Skype
[05/21/2008|09:06] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> skypePM
[07/30/2007|11:46] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Sony Corporation
[05/29/2006|12:51] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Sun
[07/05/2008|09:04] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> U3
[05/31/2006|08:39] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> vlc
[10/29/2007|07:23] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Windows Desktop Search
[11/04/2008|09:17] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Windows Live Writer
[11/10/2008|11:14] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Yahoo!
[04/30/2006|12:22] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Adobe
[04/30/2006|01:42] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> CyberLink
[04/30/2006|08:19] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Google
[08/17/2004|07:31] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Identities
[04/07/2006|07:24] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Intel
[04/30/2006|07:30] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Macromedia
[05/01/2006|04:40] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Microsoft
[04/30/2006|09:56] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Netscape
[05/24/2006|12:52] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Real
[04/07/2006|07:22] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Sun
[08/17/2006|01:49] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Adobe
[10/01/2006|07:18] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Google
[05/28/2006|09:38] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Identities
[05/28/2006|09:38] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Intel
[06/28/2006|04:19] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Macromedia
[01/26/2008|01:07] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Microsoft
[08/17/2006|01:46] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> MSN Search Toolbar
[08/17/2006|01:50] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Sun
[01/26/2008|01:05] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Windows Desktop Search
[08/17/2004|07:31] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> Microsoft
[10/29/2007|09:34] C:\DOCUME~1\LOCALS~1.NTA\APPLIC~1\<DIR> Adobe
[10/29/2007|09:36] C:\DOCUME~1\LOCALS~1.NTA\APPLIC~1\<DIR> Microsoft
[05/20/2006|02:11] C:\DOCUME~1\NETWOR~1\APPLIC~1\<DIR> Intel
[08/17/2004|07:31] C:\DOCUME~1\NETWOR~1\APPLIC~1\<DIR> Microsoft
[05/28/2006|08:42] C:\DOCUME~1\NETWOR~1.NTA\APPLIC~1\<DIR> Intel
[05/28/2006|07:29] C:\DOCUME~1\NETWOR~1.NTA\APPLIC~1\<DIR> Microsoft
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[05/01/2009 04:00 PM][--ah-----] C:\WINDOWS\tasks\A42593D0906E0788.job
[04/10/2009 08:30 AM][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[05/01/2009 09:26 AM][--ah-----] C:\WINDOWS\tasks\SA.DAT
[08/04/2004 02:00 PM][-r-h-c---] C:\WINDOWS\tasks\desktop.ini
( A42593D0906E0788.job )=( c:\docume~1\largee~1\applic~1\gridba~1\CopyCamp01.exe )
--------------------\\ Listing des dossiers dans C:\Program Files
[09/15/2008|11:47] C:\Program Files\<DIR> A L'AISE BREIZH
[01/05/2009|01:17] C:\Program Files\<DIR> Adobe
[08/22/2006|11:08] C:\Program Files\<DIR> Ahead
[09/22/2007|05:17] C:\Program Files\<DIR> AlertInfo
[06/22/2007|12:40] C:\Program Files\<DIR> Apple Software Update
[07/25/2007|11:43] C:\Program Files\<DIR> Audacity
[04/30/2006|07:56] C:\Program Files\<DIR> BB Security
[02/05/2009|09:02] C:\Program Files\<DIR> Blender Foundation
[05/28/2006|07:49] C:\Program Files\<DIR> Broadcom
[05/28/2006|08:58] C:\Program Files\<DIR> Brother
[06/11/2006|10:51] C:\Program Files\<DIR> bsb
[03/26/2008|11:00] C:\Program Files\<DIR> BUFFALO
[11/10/2008|11:20] C:\Program Files\<DIR> CA Yahoo! Anti-Spy
[05/22/2007|03:14] C:\Program Files\<DIR> CCleaner
[01/14/2009|08:34] C:\Program Files\<DIR> Common Files
[08/17/2004|07:25] C:\Program Files\<DIR> ComPlus Applications
[04/07/2006|07:25] C:\Program Files\<DIR> CONEXANT
[03/10/2009|10:36] C:\Program Files\<DIR> Corel
[04/07/2006|07:28] C:\Program Files\<DIR> CyberLink
[04/07/2006|07:29] C:\Program Files\<DIR> Dell
[05/28/2006|07:47] C:\Program Files\<DIR> DIFX
[04/07/2006|07:28] C:\Program Files\<DIR> Digital Line Detect
[05/01/2009|09:27] C:\Program Files\<DIR> eMule
[05/30/2006|12:53] C:\Program Files\<DIR> fohlen
[01/18/2009|11:24] C:\Program Files\<DIR> Fun Web Products
[03/07/2009|12:25] C:\Program Files\<DIR> Google
[04/29/2009|07:26] C:\Program Files\<DIR> gridbasedog
[07/30/2007|11:43] C:\Program Files\<DIR> InstallShield Installation Information
[04/07/2006|07:24] C:\Program Files\<DIR> Intel
[04/07/2006|07:24] C:\Program Files\<DIR> Intel, Inc
[04/19/2009|03:32] C:\Program Files\<DIR> Internet Explorer
[06/22/2007|12:49] C:\Program Files\<DIR> iPod
[06/22/2007|12:50] C:\Program Files\<DIR> iTunes
[02/11/2009|09:25] C:\Program Files\<DIR> Java
[01/12/2009|12:26] C:\Program Files\<DIR> JCA2000
[12/26/2007|11:07] C:\Program Files\<DIR> JRA
[11/15/2008|12:35] C:\Program Files\<DIR> listac
[09/10/2007|03:06] C:\Program Files\<DIR> Logitech
[03/28/2009|10:11] C:\Program Files\<DIR> Malwarebytes' Anti-Malware
[08/24/2008|03:05] C:\Program Files\<DIR> Messenger
[11/09/2008|07:19] C:\Program Files\<DIR> Messenger Plus! Live
[01/23/2009|10:24] C:\Program Files\<DIR> Microsoft
[05/10/2007|09:35] C:\Program Files\<DIR> Microsoft CAPICOM 2.1.0.2
[08/17/2004|07:27] C:\Program Files\<DIR> microsoft frontpage
[11/27/2006|09:34] C:\Program Files\<DIR> Microsoft Office
[03/05/2009|12:53] C:\Program Files\<DIR> Microsoft Silverlight
[10/29/2007|07:06] C:\Program Files\<DIR> Microsoft SQL Server Compact Edition
[02/21/2009|10:43] C:\Program Files\<DIR> Microsoft Sync Framework
[05/22/2006|05:28] C:\Program Files\<DIR> Modem Helper
[05/28/2006|07:26] C:\Program Files\<DIR> Movie Maker
[05/28/2006|08:01] C:\Program Files\<DIR> MSN
[08/17/2004|07:24] C:\Program Files\<DIR> MSN Gaming Zone
[02/20/2008|08:18] C:\Program Files\<DIR> MSN Messenger
[01/30/2007|08:37] C:\Program Files\<DIR> MSN Toolbar Suite
[11/17/2006|08:02] C:\Program Files\<DIR> MSXML 4.0
[02/11/2009|06:27] C:\Program Files\<DIR> Navilog1
[05/28/2006|07:27] C:\Program Files\<DIR> NetMeeting
[04/14/2009|04:53] C:\Program Files\<DIR> NetPumper
[04/30/2006|09:53] C:\Program Files\<DIR> Netscape
[04/07/2006|07:28] C:\Program Files\<DIR> NetWaiting
[08/24/2008|07:56] C:\Program Files\<DIR> Neuf
[05/28/2006|07:28] C:\Program Files\<DIR> Online Services
[04/15/2007|10:26] C:\Program Files\<DIR> OpenOffice.org 2.2
[06/13/2007|08:04] C:\Program Files\<DIR> Outlook Express
[11/23/2006|03:26] C:\Program Files\<DIR> PhotoFiltre
[05/22/2007|12:03] C:\Program Files\<DIR> QuickTime
[08/03/2007|11:49] C:\Program Files\<DIR> RawFlow
[04/07/2006|07:25] C:\Program Files\<DIR> Sigmatel
[05/20/2008|02:31] C:\Program Files\<DIR> Skype
[04/07/2006|07:31] C:\Program Files\<DIR> Sonic
[07/30/2007|11:42] C:\Program Files\<DIR> Sony
[05/28/2006|07:02] C:\Program Files\<DIR> SpySpotter3
[02/05/2009|09:08] C:\Program Files\<DIR> Sweet Home 3D
[04/07/2006|07:28] C:\Program Files\<DIR> Synaptics
[03/11/2009|11:37] C:\Program Files\<DIR> Trend Micro
[08/17/2004|07:31] C:\Program Files\<DIR> Uninstall Information
[02/11/2009|08:11] C:\Program Files\<DIR> UsbFix
[05/31/2006|08:38] C:\Program Files\<DIR> VideoLAN
[08/23/2008|07:46] C:\Program Files\<DIR> Virtualis
[12/28/2006|10:18] C:\Program Files\<DIR> Visagesoft
[06/11/2006|11:01] C:\Program Files\<DIR> website
[10/29/2007|07:08] C:\Program Files\<DIR> Windows Desktop Search
[02/21/2009|10:44] C:\Program Files\<DIR> Windows Live
[11/09/2007|04:57] C:\Program Files\<DIR> Windows Live Favorites
[01/23/2009|10:22] C:\Program Files\<DIR> Windows Live SkyDrive
[02/21/2009|10:43] C:\Program Files\<DIR> Windows Live Toolbar
[05/22/2007|01:31] C:\Program Files\<DIR> Windows Media Player
[05/28/2006|07:24] C:\Program Files\<DIR> Windows NT
[08/17/2004|07:25] C:\Program Files\<DIR> WindowsUpdate
[07/30/2007|02:27] C:\Program Files\<DIR> WinZip
[08/17/2004|07:27] C:\Program Files\<DIR> xerox
[11/10/2008|11:14] C:\Program Files\<DIR> Yahoo!
[04/30/2006|07:52] C:\Program Files\<DIR> Yahoo_BB
--------------------\\ Listing des dossiers dans C:\Program Files\Common Files
[01/05/2009|01:17] C:\Program Files\Common Files\<DIR> Adobe
[08/22/2006|11:08] C:\Program Files\Common Files\<DIR> Ahead
[07/30/2007|11:40] C:\Program Files\Common Files\<DIR> InstallShield
[04/07/2006|07:21] C:\Program Files\Common Files\<DIR> Java
[07/25/2007|01:23] C:\Program Files\Common Files\<DIR> Logitech
[02/21/2009|10:40] C:\Program Files\Common Files\<DIR> Microsoft Shared
[04/30/2006|07:43] C:\Program Files\Common Files\<DIR> Motive
[08/17/2004|07:25] C:\Program Files\Common Files\<DIR> MSSoap
[04/20/2008|03:58] C:\Program Files\Common Files\<DIR> Nullsoft
[08/17/2004|07:21] C:\Program Files\Common Files\<DIR> ODBC
[04/30/2006|09:58] C:\Program Files\Common Files\<DIR> Scanner
[08/17/2004|07:25] C:\Program Files\Common Files\<DIR> Services
[03/26/2008|11:26] C:\Program Files\Common Files\<DIR> Skype
[04/07/2006|07:31] C:\Program Files\Common Files\<DIR> Sonic Shared
[07/30/2007|11:42] C:\Program Files\Common Files\<DIR> Sony Shared
[08/17/2004|07:21] C:\Program Files\Common Files\<DIR> SpeechEngines
[06/13/2007|08:04] C:\Program Files\Common Files\<DIR> System
[04/07/2006|07:30] C:\Program Files\Common Files\<DIR> TiVo Shared
[01/14/2009|08:34] C:\Program Files\Common Files\<DIR> Windows Live
[11/08/2007|05:26] C:\Program Files\Common Files\<DIR> WindowsLiveInstaller
--------------------\\ Process
( 53 Processes )
IEXPLORE.EXE ~ [PID:2424]
IEXPLORE.EXE ~ [PID:3304]
IEXPLORE.EXE ~ [PID:3312]
IEXPLORE.EXE ~ [PID:2448]
IEXPLORE.EXE ~ [PID:460]
--------------------\\ Recherche avec S_Lop
C:\DOCUME~1\LARGEE~1\LOCALS~1\Temp\bis7A.exe
C:\DOCUME~1\LARGEE~1\APPLIC~1\GRIDBA~1
C:\DOCUME~1\LARGEE~1\APPLIC~1\GRIDBA~1\CopyCamp01.exe
C:\DOCUME~1\LARGEE~1\APPLIC~1\GRIDBA~1\dlftmzkh.exe
C:\DOCUME~1\LARGEE~1\APPLIC~1\GRIDBA~1\gfrvhiwj.exe
C:\DOCUME~1\LARGEE~1\APPLIC~1\GRIDBA~1\sendbuild.exe
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\live 64 math does
C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\live 64 math does\kind bits.dat
C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\live 64 math does\kind bits.exe
C:\DOCUME~1\LARGEE~1\APPLIC~1\gridba~1
C:\DOCUME~1\LARGEE~1\APPLIC~1\gridba~1\CopyCamp01.exe
C:\DOCUME~1\LARGEE~1\APPLIC~1\gridba~1\dlftmzkh.exe
C:\DOCUME~1\LARGEE~1\APPLIC~1\gridba~1\gfrvhiwj.exe
C:\DOCUME~1\LARGEE~1\APPLIC~1\gridba~1\sendbuild.exe
C:\Program Files\gridba~1
C:\DOCUME~1\LARGEE~1\LOCALS~1\Temp\nsq79.tmp
C:\DOCUME~1\LARGEE~1\LOCALS~1\Temp\sta31.exe
C:\Program Files\NetPumper
C:\DOCUME~1\LARGEE~1\Cookies\large_eric@advertstream[1].txt
C:\DOCUME~1\LARGEE~1\Cookies\large_eric@advertising[1].txt
C:\DOCUME~1\LARGEE~1\Cookies\large_eric@ero-advertising[2].txt
C:\DOCUME~1\LARGEE~1\Cookies\large_eric@banner.cotedazurpalace[2].txt
C:\DOCUME~1\LARGEE~1\Cookies\large_eric@cotedazurpalace[1].txt
C:\DOCUME~1\LARGEE~1\Cookies\large_eric@www.cotedazurpalace[1].txt
C:\DOCUME~1\LARGEE~1\Cookies\large_eric@adopt.euroclick[2].txt
C:\DOCUME~1\LARGEE~1\Cookies\large_eric@euroclick[2].txt
C:\DOCUME~1\LARGEE~1\Cookies\large_eric@pacificpoker[1].txt
C:\DOCUME~1\LARGEE~1\Cookies\large_eric@partypoker[1].txt
C:\WINDOWS\Tasks\A42593D0906E0788.job
--------------------\\ Verification du Registre
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\noun joy error]
"DisplayName"="CiD Help"
"UninstallString"="C:\\DOCUME~1\\LARGEE~1\\APPLIC~1\\GRIDBA~1\\sendbuild.exe -uninstall"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Plus Hold"="C:\\DOCUME~1\\LARGEE~1\\APPLIC~1\\GRIDBA~1\\sendbuild.exe"
"Plus Hold"="C:\\DOCUME~1\\LARGEE~1\\APPLIC~1\\GRIDBA~1\\sendbuild.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MATH DOES FIRST MODE"="C:\\Documents and Settings\\All Users.WINDOWS\\Application Data\\live 64 math does\\kind bits.exe"
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-05-01 16:18:10
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 86
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:299][D:18]-> C:\DOCUME~1\LARGEE~1\LOCALS~1\Temp
[F:871][D:0]-> C:\DOCUME~1\LARGEE~1\Cookies
[F:26406][D:59]-> C:\DOCUME~1\LARGEE~1\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - Wed 02/11/2009| 9:00 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - Wed 02/11/2009|15:42 - Option : [2]
3 - "C:\Lop SD\LopR_3.txt" - Wed 03/11/2009| 9:34 - Option : [1]
4 - "C:\Lop SD\LopR_4.txt" - Wed 03/11/2009| 9:42 - Option : [2]
5 - "C:\Lop SD\LopR_5.txt" - Fri 05/01/2009|16:21 - Option : [1]
--------------------\\ Fin du rapport a 16:21:47
Microsoft Windows XP Home Edition ( v5.1.2600 ) Service Pack 2
X86-based PC ( Multiprocessor Free : Genuine Intel(R) CPU T2300 @ 1.66GHz )
BIOS : Phoenix ROM BIOS PLUS Version 1.10 A03
USER : LARGE ERIC ( Administrator )
BOOT : Normal boot
Antivirus : Trend Micro Internet Security 12.00 (Not Activated)
Firewall : ƒEƒCƒ‹ƒXƒoƒXƒ^[12 (ƒp[ƒ\ƒiƒ‹ƒtƒ@ƒCƒAƒEƒH[ƒ‹) 12 (Activated)
C:\ (Local Disk) - NTFS - Total:88 Go (Free:27 Go)
D:\ (CD or DVD) - UDF - Total:5 Go (Free:0 Go)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( Fri 05/01/2009|16:17 )
--------------------\\ Listing des dossiers dans APPLIC~1
[04/07/2006|07:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Adobe
[04/30/2006|10:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Brother
[04/07/2006|07:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> InstallShield
[04/07/2006|07:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Intel
[05/05/2006|05:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Microsoft
[04/30/2006|07:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Motive
[04/30/2006|07:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> MotiveSysIDs
[08/17/2004|07:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> SBSI
[04/30/2006|08:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Windows Genuine Advantage
[01/05/2009|01:18] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Adobe
[05/06/2008|07:23] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> AntiVir PersonalEdition Classic
[05/22/2007|12:03] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Apple Computer
[05/28/2006|08:21] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Brother
[12/28/2006|10:18] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> eXPert PDF
[12/28/2006|10:19] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> eXPert PDF 4
[12/28/2006|10:18] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> eXPert PDF Jobs
[01/19/2009|08:05] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Google
[05/28/2006|07:50] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Intel
[04/29/2009|07:27] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> live 64 math does
[02/11/2009|06:42] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Malwarebytes
[10/28/2008|08:50] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Messenger Plus!
[02/21/2009|10:43] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Microsoft
[08/04/2006|10:38] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> MSN Search Toolbar
[05/06/2008|03:55] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> program extra intra type
[03/26/2008|11:26] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Skype
[07/30/2007|11:41] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Sony Corporation
[01/30/2007|06:39] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Windows Genuine Advantage
[01/30/2007|08:38] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Windows Live Toolbar
[01/23/2009|10:23] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> WindowsLiveInstaller
[03/22/2008|03:46] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> WLInstaller
[11/10/2008|11:16] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Yahoo! Companion
[08/17/2004|07:31] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> Identities
[04/07/2006|07:24] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> Intel
[04/07/2006|07:23] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> Microsoft
[04/07/2006|07:22] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> Sun
[05/28/2006|07:29] C:\DOCUME~1\DEFAUL~1.WIN\APPLIC~1\<DIR> Microsoft
[03/12/2008|02:21] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Adobe
[06/09/2006|01:26] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> AdobeAUM
[12/16/2007|12:38] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> AdobeUM
[09/22/2007|06:19] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> AlertInfo
[05/22/2007|12:14] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Apple Computer
[02/05/2009|09:02] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Blender Foundation
[05/28/2006|09:18] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Brother
[05/01/2009|01:41] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> dvdcss
[12/28/2006|10:19] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> eXPert PDF Editor
[12/25/2006|11:19] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Google
[04/29/2009|07:27] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> gridbasedog
[12/07/2007|01:30] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> gtk-2.0
[06/04/2006|09:57] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Help
[10/29/2007|07:10] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Identities
[03/10/2009|10:36] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> InstallShield
[05/28/2006|07:51] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Intel
[06/09/2006|02:17] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Leadertech
[02/14/2007|08:12] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Macromedia
[02/11/2009|06:42] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Malwarebytes
[02/21/2009|11:08] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Microsoft
[08/04/2006|10:40] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> MSN Search Toolbar
[05/28/2006|12:18] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> MSNInstaller
[05/22/2007|01:32] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> MusicIP
[04/30/2009|09:28] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> OpenOffice.org2
[04/16/2009|02:26] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Skype
[05/21/2008|09:06] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> skypePM
[07/30/2007|11:46] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Sony Corporation
[05/29/2006|12:51] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Sun
[07/05/2008|09:04] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> U3
[05/31/2006|08:39] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> vlc
[10/29/2007|07:23] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Windows Desktop Search
[11/04/2008|09:17] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Windows Live Writer
[11/10/2008|11:14] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Yahoo!
[04/30/2006|12:22] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Adobe
[04/30/2006|01:42] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> CyberLink
[04/30/2006|08:19] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Google
[08/17/2004|07:31] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Identities
[04/07/2006|07:24] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Intel
[04/30/2006|07:30] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Macromedia
[05/01/2006|04:40] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Microsoft
[04/30/2006|09:56] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Netscape
[05/24/2006|12:52] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Real
[04/07/2006|07:22] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Sun
[08/17/2006|01:49] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Adobe
[10/01/2006|07:18] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Google
[05/28/2006|09:38] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Identities
[05/28/2006|09:38] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Intel
[06/28/2006|04:19] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Macromedia
[01/26/2008|01:07] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Microsoft
[08/17/2006|01:46] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> MSN Search Toolbar
[08/17/2006|01:50] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Sun
[01/26/2008|01:05] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Windows Desktop Search
[08/17/2004|07:31] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> Microsoft
[10/29/2007|09:34] C:\DOCUME~1\LOCALS~1.NTA\APPLIC~1\<DIR> Adobe
[10/29/2007|09:36] C:\DOCUME~1\LOCALS~1.NTA\APPLIC~1\<DIR> Microsoft
[05/20/2006|02:11] C:\DOCUME~1\NETWOR~1\APPLIC~1\<DIR> Intel
[08/17/2004|07:31] C:\DOCUME~1\NETWOR~1\APPLIC~1\<DIR> Microsoft
[05/28/2006|08:42] C:\DOCUME~1\NETWOR~1.NTA\APPLIC~1\<DIR> Intel
[05/28/2006|07:29] C:\DOCUME~1\NETWOR~1.NTA\APPLIC~1\<DIR> Microsoft
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[05/01/2009 04:00 PM][--ah-----] C:\WINDOWS\tasks\A42593D0906E0788.job
[04/10/2009 08:30 AM][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[05/01/2009 09:26 AM][--ah-----] C:\WINDOWS\tasks\SA.DAT
[08/04/2004 02:00 PM][-r-h-c---] C:\WINDOWS\tasks\desktop.ini
( A42593D0906E0788.job )=( c:\docume~1\largee~1\applic~1\gridba~1\CopyCamp01.exe )
--------------------\\ Listing des dossiers dans C:\Program Files
[09/15/2008|11:47] C:\Program Files\<DIR> A L'AISE BREIZH
[01/05/2009|01:17] C:\Program Files\<DIR> Adobe
[08/22/2006|11:08] C:\Program Files\<DIR> Ahead
[09/22/2007|05:17] C:\Program Files\<DIR> AlertInfo
[06/22/2007|12:40] C:\Program Files\<DIR> Apple Software Update
[07/25/2007|11:43] C:\Program Files\<DIR> Audacity
[04/30/2006|07:56] C:\Program Files\<DIR> BB Security
[02/05/2009|09:02] C:\Program Files\<DIR> Blender Foundation
[05/28/2006|07:49] C:\Program Files\<DIR> Broadcom
[05/28/2006|08:58] C:\Program Files\<DIR> Brother
[06/11/2006|10:51] C:\Program Files\<DIR> bsb
[03/26/2008|11:00] C:\Program Files\<DIR> BUFFALO
[11/10/2008|11:20] C:\Program Files\<DIR> CA Yahoo! Anti-Spy
[05/22/2007|03:14] C:\Program Files\<DIR> CCleaner
[01/14/2009|08:34] C:\Program Files\<DIR> Common Files
[08/17/2004|07:25] C:\Program Files\<DIR> ComPlus Applications
[04/07/2006|07:25] C:\Program Files\<DIR> CONEXANT
[03/10/2009|10:36] C:\Program Files\<DIR> Corel
[04/07/2006|07:28] C:\Program Files\<DIR> CyberLink
[04/07/2006|07:29] C:\Program Files\<DIR> Dell
[05/28/2006|07:47] C:\Program Files\<DIR> DIFX
[04/07/2006|07:28] C:\Program Files\<DIR> Digital Line Detect
[05/01/2009|09:27] C:\Program Files\<DIR> eMule
[05/30/2006|12:53] C:\Program Files\<DIR> fohlen
[01/18/2009|11:24] C:\Program Files\<DIR> Fun Web Products
[03/07/2009|12:25] C:\Program Files\<DIR> Google
[04/29/2009|07:26] C:\Program Files\<DIR> gridbasedog
[07/30/2007|11:43] C:\Program Files\<DIR> InstallShield Installation Information
[04/07/2006|07:24] C:\Program Files\<DIR> Intel
[04/07/2006|07:24] C:\Program Files\<DIR> Intel, Inc
[04/19/2009|03:32] C:\Program Files\<DIR> Internet Explorer
[06/22/2007|12:49] C:\Program Files\<DIR> iPod
[06/22/2007|12:50] C:\Program Files\<DIR> iTunes
[02/11/2009|09:25] C:\Program Files\<DIR> Java
[01/12/2009|12:26] C:\Program Files\<DIR> JCA2000
[12/26/2007|11:07] C:\Program Files\<DIR> JRA
[11/15/2008|12:35] C:\Program Files\<DIR> listac
[09/10/2007|03:06] C:\Program Files\<DIR> Logitech
[03/28/2009|10:11] C:\Program Files\<DIR> Malwarebytes' Anti-Malware
[08/24/2008|03:05] C:\Program Files\<DIR> Messenger
[11/09/2008|07:19] C:\Program Files\<DIR> Messenger Plus! Live
[01/23/2009|10:24] C:\Program Files\<DIR> Microsoft
[05/10/2007|09:35] C:\Program Files\<DIR> Microsoft CAPICOM 2.1.0.2
[08/17/2004|07:27] C:\Program Files\<DIR> microsoft frontpage
[11/27/2006|09:34] C:\Program Files\<DIR> Microsoft Office
[03/05/2009|12:53] C:\Program Files\<DIR> Microsoft Silverlight
[10/29/2007|07:06] C:\Program Files\<DIR> Microsoft SQL Server Compact Edition
[02/21/2009|10:43] C:\Program Files\<DIR> Microsoft Sync Framework
[05/22/2006|05:28] C:\Program Files\<DIR> Modem Helper
[05/28/2006|07:26] C:\Program Files\<DIR> Movie Maker
[05/28/2006|08:01] C:\Program Files\<DIR> MSN
[08/17/2004|07:24] C:\Program Files\<DIR> MSN Gaming Zone
[02/20/2008|08:18] C:\Program Files\<DIR> MSN Messenger
[01/30/2007|08:37] C:\Program Files\<DIR> MSN Toolbar Suite
[11/17/2006|08:02] C:\Program Files\<DIR> MSXML 4.0
[02/11/2009|06:27] C:\Program Files\<DIR> Navilog1
[05/28/2006|07:27] C:\Program Files\<DIR> NetMeeting
[04/14/2009|04:53] C:\Program Files\<DIR> NetPumper
[04/30/2006|09:53] C:\Program Files\<DIR> Netscape
[04/07/2006|07:28] C:\Program Files\<DIR> NetWaiting
[08/24/2008|07:56] C:\Program Files\<DIR> Neuf
[05/28/2006|07:28] C:\Program Files\<DIR> Online Services
[04/15/2007|10:26] C:\Program Files\<DIR> OpenOffice.org 2.2
[06/13/2007|08:04] C:\Program Files\<DIR> Outlook Express
[11/23/2006|03:26] C:\Program Files\<DIR> PhotoFiltre
[05/22/2007|12:03] C:\Program Files\<DIR> QuickTime
[08/03/2007|11:49] C:\Program Files\<DIR> RawFlow
[04/07/2006|07:25] C:\Program Files\<DIR> Sigmatel
[05/20/2008|02:31] C:\Program Files\<DIR> Skype
[04/07/2006|07:31] C:\Program Files\<DIR> Sonic
[07/30/2007|11:42] C:\Program Files\<DIR> Sony
[05/28/2006|07:02] C:\Program Files\<DIR> SpySpotter3
[02/05/2009|09:08] C:\Program Files\<DIR> Sweet Home 3D
[04/07/2006|07:28] C:\Program Files\<DIR> Synaptics
[03/11/2009|11:37] C:\Program Files\<DIR> Trend Micro
[08/17/2004|07:31] C:\Program Files\<DIR> Uninstall Information
[02/11/2009|08:11] C:\Program Files\<DIR> UsbFix
[05/31/2006|08:38] C:\Program Files\<DIR> VideoLAN
[08/23/2008|07:46] C:\Program Files\<DIR> Virtualis
[12/28/2006|10:18] C:\Program Files\<DIR> Visagesoft
[06/11/2006|11:01] C:\Program Files\<DIR> website
[10/29/2007|07:08] C:\Program Files\<DIR> Windows Desktop Search
[02/21/2009|10:44] C:\Program Files\<DIR> Windows Live
[11/09/2007|04:57] C:\Program Files\<DIR> Windows Live Favorites
[01/23/2009|10:22] C:\Program Files\<DIR> Windows Live SkyDrive
[02/21/2009|10:43] C:\Program Files\<DIR> Windows Live Toolbar
[05/22/2007|01:31] C:\Program Files\<DIR> Windows Media Player
[05/28/2006|07:24] C:\Program Files\<DIR> Windows NT
[08/17/2004|07:25] C:\Program Files\<DIR> WindowsUpdate
[07/30/2007|02:27] C:\Program Files\<DIR> WinZip
[08/17/2004|07:27] C:\Program Files\<DIR> xerox
[11/10/2008|11:14] C:\Program Files\<DIR> Yahoo!
[04/30/2006|07:52] C:\Program Files\<DIR> Yahoo_BB
--------------------\\ Listing des dossiers dans C:\Program Files\Common Files
[01/05/2009|01:17] C:\Program Files\Common Files\<DIR> Adobe
[08/22/2006|11:08] C:\Program Files\Common Files\<DIR> Ahead
[07/30/2007|11:40] C:\Program Files\Common Files\<DIR> InstallShield
[04/07/2006|07:21] C:\Program Files\Common Files\<DIR> Java
[07/25/2007|01:23] C:\Program Files\Common Files\<DIR> Logitech
[02/21/2009|10:40] C:\Program Files\Common Files\<DIR> Microsoft Shared
[04/30/2006|07:43] C:\Program Files\Common Files\<DIR> Motive
[08/17/2004|07:25] C:\Program Files\Common Files\<DIR> MSSoap
[04/20/2008|03:58] C:\Program Files\Common Files\<DIR> Nullsoft
[08/17/2004|07:21] C:\Program Files\Common Files\<DIR> ODBC
[04/30/2006|09:58] C:\Program Files\Common Files\<DIR> Scanner
[08/17/2004|07:25] C:\Program Files\Common Files\<DIR> Services
[03/26/2008|11:26] C:\Program Files\Common Files\<DIR> Skype
[04/07/2006|07:31] C:\Program Files\Common Files\<DIR> Sonic Shared
[07/30/2007|11:42] C:\Program Files\Common Files\<DIR> Sony Shared
[08/17/2004|07:21] C:\Program Files\Common Files\<DIR> SpeechEngines
[06/13/2007|08:04] C:\Program Files\Common Files\<DIR> System
[04/07/2006|07:30] C:\Program Files\Common Files\<DIR> TiVo Shared
[01/14/2009|08:34] C:\Program Files\Common Files\<DIR> Windows Live
[11/08/2007|05:26] C:\Program Files\Common Files\<DIR> WindowsLiveInstaller
--------------------\\ Process
( 53 Processes )
IEXPLORE.EXE ~ [PID:2424]
IEXPLORE.EXE ~ [PID:3304]
IEXPLORE.EXE ~ [PID:3312]
IEXPLORE.EXE ~ [PID:2448]
IEXPLORE.EXE ~ [PID:460]
--------------------\\ Recherche avec S_Lop
C:\DOCUME~1\LARGEE~1\LOCALS~1\Temp\bis7A.exe
C:\DOCUME~1\LARGEE~1\APPLIC~1\GRIDBA~1
C:\DOCUME~1\LARGEE~1\APPLIC~1\GRIDBA~1\CopyCamp01.exe
C:\DOCUME~1\LARGEE~1\APPLIC~1\GRIDBA~1\dlftmzkh.exe
C:\DOCUME~1\LARGEE~1\APPLIC~1\GRIDBA~1\gfrvhiwj.exe
C:\DOCUME~1\LARGEE~1\APPLIC~1\GRIDBA~1\sendbuild.exe
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\live 64 math does
C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\live 64 math does\kind bits.dat
C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\live 64 math does\kind bits.exe
C:\DOCUME~1\LARGEE~1\APPLIC~1\gridba~1
C:\DOCUME~1\LARGEE~1\APPLIC~1\gridba~1\CopyCamp01.exe
C:\DOCUME~1\LARGEE~1\APPLIC~1\gridba~1\dlftmzkh.exe
C:\DOCUME~1\LARGEE~1\APPLIC~1\gridba~1\gfrvhiwj.exe
C:\DOCUME~1\LARGEE~1\APPLIC~1\gridba~1\sendbuild.exe
C:\Program Files\gridba~1
C:\DOCUME~1\LARGEE~1\LOCALS~1\Temp\nsq79.tmp
C:\DOCUME~1\LARGEE~1\LOCALS~1\Temp\sta31.exe
C:\Program Files\NetPumper
C:\DOCUME~1\LARGEE~1\Cookies\large_eric@advertstream[1].txt
C:\DOCUME~1\LARGEE~1\Cookies\large_eric@advertising[1].txt
C:\DOCUME~1\LARGEE~1\Cookies\large_eric@ero-advertising[2].txt
C:\DOCUME~1\LARGEE~1\Cookies\large_eric@banner.cotedazurpalace[2].txt
C:\DOCUME~1\LARGEE~1\Cookies\large_eric@cotedazurpalace[1].txt
C:\DOCUME~1\LARGEE~1\Cookies\large_eric@www.cotedazurpalace[1].txt
C:\DOCUME~1\LARGEE~1\Cookies\large_eric@adopt.euroclick[2].txt
C:\DOCUME~1\LARGEE~1\Cookies\large_eric@euroclick[2].txt
C:\DOCUME~1\LARGEE~1\Cookies\large_eric@pacificpoker[1].txt
C:\DOCUME~1\LARGEE~1\Cookies\large_eric@partypoker[1].txt
C:\WINDOWS\Tasks\A42593D0906E0788.job
--------------------\\ Verification du Registre
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\noun joy error]
"DisplayName"="CiD Help"
"UninstallString"="C:\\DOCUME~1\\LARGEE~1\\APPLIC~1\\GRIDBA~1\\sendbuild.exe -uninstall"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Plus Hold"="C:\\DOCUME~1\\LARGEE~1\\APPLIC~1\\GRIDBA~1\\sendbuild.exe"
"Plus Hold"="C:\\DOCUME~1\\LARGEE~1\\APPLIC~1\\GRIDBA~1\\sendbuild.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MATH DOES FIRST MODE"="C:\\Documents and Settings\\All Users.WINDOWS\\Application Data\\live 64 math does\\kind bits.exe"
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-05-01 16:18:10
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 86
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:299][D:18]-> C:\DOCUME~1\LARGEE~1\LOCALS~1\Temp
[F:871][D:0]-> C:\DOCUME~1\LARGEE~1\Cookies
[F:26406][D:59]-> C:\DOCUME~1\LARGEE~1\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - Wed 02/11/2009| 9:00 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - Wed 02/11/2009|15:42 - Option : [2]
3 - "C:\Lop SD\LopR_3.txt" - Wed 03/11/2009| 9:34 - Option : [1]
4 - "C:\Lop SD\LopR_4.txt" - Wed 03/11/2009| 9:42 - Option : [2]
5 - "C:\Lop SD\LopR_5.txt" - Fri 05/01/2009|16:21 - Option : [1]
--------------------\\ Fin du rapport a 16:21:47
Re,
Tu as appuyer sur le bouton "REPEAT" ?
Refait un log avec Hijackthis,et poste moi le rapport de l'option 2 celui la => 2 - "C:\Lop SD\LopR_2.txt" - Wed 02/11/2009|15:42 - Option : [2]
Tu as appuyer sur le bouton "REPEAT" ?
1 - "C:\Lop SD\LopR_1.txt" - Wed 02/11/2009| 9:00 - Option : [1] 2 - "C:\Lop SD\LopR_2.txt" - Wed 02/11/2009|15:42 - Option : [2] 3 - "C:\Lop SD\LopR_3.txt" - Wed 03/11/2009| 9:34 - Option : [1] 4 - "C:\Lop SD\LopR_4.txt" - Wed 03/11/2009| 9:42 - Option : [2] 5 - "C:\Lop SD\LopR_5.txt" - Fri 05/01/2009|16:21 - Option : [1]
Refait un log avec Hijackthis,et poste moi le rapport de l'option 2 celui la => 2 - "C:\Lop SD\LopR_2.txt" - Wed 02/11/2009|15:42 - Option : [2]
ile of Trend Micro HijackThis v2.0.2
Scan saved at 6:01:13 PM, on 5/1/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16827)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
C:\WINDOWS\system32\brsvc01a.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\brss01a.exe
c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
C:\WINDOWS\system32\Brmfrmps.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Trend Micro\Virus Buster 12\TMAS_OE\TMAS_OEMon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Neuf\Media Center\MediaCenter.exe
C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\eMule\emule.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\iTunes\iTunes.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Windows Live\Toolbar\wltuser.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://actus.sfr.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://actus.sfr.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/?p=us
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://actus.sfr.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://actus.sfr.fr
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKLM\..\Run: [MATH DOES FIRST MODE] C:\Documents and Settings\All Users.WINDOWS\Application Data\live 64 math does\kind bits.exe
O4 - HKCU\..\Run: [OE_OEM] "C:\Program Files\Trend Micro\Virus Buster 12\TMAS_OE\TMAS_OEMon.exe"
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_8 -reboot 1
O4 - HKCU\..\Run: [Neuf Media Center] "C:\Program Files\Neuf\Media Center\MediaCenter.exe"
O4 - HKCU\..\Run: [Search Protection] C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Plus Hold] C:\DOCUME~1\LARGEE~1\APPLIC~1\GRIDBA~1\sendbuild.exe
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] "c:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [DWQueuedReporting] "c:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'Default user')
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: &MSN Search - res://C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O9 - Extra button: Stop Pub - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - C:\Program Files\JCA2000\StopPub\StopPub.exe
O9 - Extra 'Tools' menuitem: Stop Pub - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - C:\Program Files\JCA2000\StopPub\StopPub.exe
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/20070501/qtinstall.info.apple.com/qtactivex/qtplugin.cab
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {48DF87EE-F2DE-11D8-BE7F-302050C10815} (FlyLoader Class) - http://www.flygimp.com/loadergimp_fr.cab
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://dl8-cdn-01.sun.com/s/ESD7/JSCDL/jdk/6u12-b04/jinstall-6u12-windows-i586-jc.cab?e=1234377169315&h=20d55af4f3fa498023a3771557eb86b6/&filename=jinstall-6u12-windows-i586-jc.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{2C303317-4915-4F27-A266-0F4837F61744}: NameServer = 192.168.2.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{2C303317-4915-4F27-A266-0F4837F61744}: NameServer = 192.168.2.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{2C303317-4915-4F27-A266-0F4837F61744}: NameServer = 192.168.2.1
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O23 - Service: Brother Popup Suspend service for Resource manager (brmfrmps) - Brother Industries, Ltd. - C:\WINDOWS\system32\Brmfrmps.exe
O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\system32\brsvc01a.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: PACSPTISVR - Unknown owner - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Trend Micro Central Control Component (PcCtlCom) - Unknown owner - C:\PROGRA~1\TRENDM~1\VIRUSB~1\PcCtlCom.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: SonicStage Back-End Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SsBeSvc.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: Trend Micro Real-time Service (Tmntsrv) - Trend Micro Incorporated. - C:\PROGRA~1\TRENDM~1\VIRUSB~1\Tmntsrv.exe
O23 - Service: Trend Micro Personal Firewall (TmPfw) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\VIRUSB~1\TmPfw.exe
O23 - Service: Trend Micro Proxy Service (tmproxy) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\VIRUSB~1\tmproxy.exe
O23 - Service: Intel(R) PROSet/Wireless SSO Service (WLANKEEPER) - Intel(R) Corporation - C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
Scan saved at 6:01:13 PM, on 5/1/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16827)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
C:\WINDOWS\system32\brsvc01a.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\brss01a.exe
c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
C:\WINDOWS\system32\Brmfrmps.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Trend Micro\Virus Buster 12\TMAS_OE\TMAS_OEMon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Neuf\Media Center\MediaCenter.exe
C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\eMule\emule.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\iTunes\iTunes.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Windows Live\Toolbar\wltuser.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://actus.sfr.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://actus.sfr.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/?p=us
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://actus.sfr.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://actus.sfr.fr
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKLM\..\Run: [MATH DOES FIRST MODE] C:\Documents and Settings\All Users.WINDOWS\Application Data\live 64 math does\kind bits.exe
O4 - HKCU\..\Run: [OE_OEM] "C:\Program Files\Trend Micro\Virus Buster 12\TMAS_OE\TMAS_OEMon.exe"
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_8 -reboot 1
O4 - HKCU\..\Run: [Neuf Media Center] "C:\Program Files\Neuf\Media Center\MediaCenter.exe"
O4 - HKCU\..\Run: [Search Protection] C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Plus Hold] C:\DOCUME~1\LARGEE~1\APPLIC~1\GRIDBA~1\sendbuild.exe
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] "c:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [DWQueuedReporting] "c:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'Default user')
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: &MSN Search - res://C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O9 - Extra button: Stop Pub - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - C:\Program Files\JCA2000\StopPub\StopPub.exe
O9 - Extra 'Tools' menuitem: Stop Pub - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - C:\Program Files\JCA2000\StopPub\StopPub.exe
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/20070501/qtinstall.info.apple.com/qtactivex/qtplugin.cab
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {48DF87EE-F2DE-11D8-BE7F-302050C10815} (FlyLoader Class) - http://www.flygimp.com/loadergimp_fr.cab
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://dl8-cdn-01.sun.com/s/ESD7/JSCDL/jdk/6u12-b04/jinstall-6u12-windows-i586-jc.cab?e=1234377169315&h=20d55af4f3fa498023a3771557eb86b6/&filename=jinstall-6u12-windows-i586-jc.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{2C303317-4915-4F27-A266-0F4837F61744}: NameServer = 192.168.2.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{2C303317-4915-4F27-A266-0F4837F61744}: NameServer = 192.168.2.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{2C303317-4915-4F27-A266-0F4837F61744}: NameServer = 192.168.2.1
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O23 - Service: Brother Popup Suspend service for Resource manager (brmfrmps) - Brother Industries, Ltd. - C:\WINDOWS\system32\Brmfrmps.exe
O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\system32\brsvc01a.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: PACSPTISVR - Unknown owner - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Trend Micro Central Control Component (PcCtlCom) - Unknown owner - C:\PROGRA~1\TRENDM~1\VIRUSB~1\PcCtlCom.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: SonicStage Back-End Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SsBeSvc.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: Trend Micro Real-time Service (Tmntsrv) - Trend Micro Incorporated. - C:\PROGRA~1\TRENDM~1\VIRUSB~1\Tmntsrv.exe
O23 - Service: Trend Micro Personal Firewall (TmPfw) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\VIRUSB~1\TmPfw.exe
O23 - Service: Trend Micro Proxy Service (tmproxy) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\VIRUSB~1\tmproxy.exe
O23 - Service: Intel(R) PROSet/Wireless SSO Service (WLANKEEPER) - Intel(R) Corporation - C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Re,
Télécharge toolscleaner sur ton Bureau :
toolscleaner
* Double-clique sur ToolsCleaner2.exe et laisse le travailler
* Clique sur Recherche et laisse le scan se terminer.
* Clique sur Suppression pour finaliser.
* Tu peux, si tu le souhaites, te servir des Options facultatives.
* Clique sur Quitter, pour que le rapport puisse se créer.
* Le rapport (TCleaner.txt) se trouve à la racine de votre disque dur (C:\)...colle le dans ta réponse
Télécharge toolscleaner sur ton Bureau :
toolscleaner
* Double-clique sur ToolsCleaner2.exe et laisse le travailler
* Clique sur Recherche et laisse le scan se terminer.
* Clique sur Suppression pour finaliser.
* Tu peux, si tu le souhaites, te servir des Options facultatives.
* Clique sur Quitter, pour que le rapport puisse se créer.
* Le rapport (TCleaner.txt) se trouve à la racine de votre disque dur (C:\)...colle le dans ta réponse
pport ToolsCleaner version 2.3.5 (par A.Rothstein & dj QUIOU) ]
--> Recherche:
C:\fixnavi.txt: trouvé !
C:\cleannavi.txt: trouvé !
C:\lopR.txt: trouvé !
C:\UsbFix.txt: trouvé !
C:\Lop SD: trouvé !
C:\_OtMoveIt: trouvé !
C:\Rsit: trouvé !
C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\HijackThis: trouvé !
C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Navilog1: trouvé !
C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\HijackThis\HijackThis.lnk: trouvé !
C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Navilog1\Navilog1.lnk: trouvé !
C:\Documents and Settings\LARGE ERIC\Desktop\HijackThis.lnk: trouvé !
C:\Documents and Settings\LARGE ERIC\Recent\UsbFix.lnk: trouvé !
C:\Program Files\Navilog1: trouvé !
C:\Program Files\UsbFix: trouvé !
C:\Program Files\Navilog1\Navilog1.bat: trouvé !
C:\Program Files\Trend Micro\HijackThis: trouvé !
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe: trouvé !
C:\Program Files\Trend Micro\HijackThis\hijackthis.log: trouvé !
---------------------------------
--> Suppression:
C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\HijackThis\HijackThis.lnk: supprimé !
C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Navilog1\Navilog1.lnk: supprimé !
C:\Documents and Settings\LARGE ERIC\Desktop\HijackThis.lnk: supprimé !
C:\Program Files\Navilog1\Navilog1.bat: supprimé !
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe: supprimé !
C:\fixnavi.txt: supprimé !
C:\cleannavi.txt: supprimé !
C:\lopR.txt: supprimé !
C:\UsbFix.txt: supprimé !
C:\Documents and Settings\LARGE ERIC\Recent\UsbFix.lnk: supprimé !
C:\Program Files\Trend Micro\HijackThis\hijackthis.log: supprimé !
C:\Lop SD: supprimé !
C:\_OtMoveIt: supprimé !
C:\Rsit: supprimé !
C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\HijackThis: supprimé !
C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Navilog1: supprimé !
C:\Program Files\Navilog1: supprimé !
C:\Program Files\UsbFix: supprimé !
C:\Program Files\Trend Micro\HijackThis: supprimé !
--> Recherche:
C:\fixnavi.txt: trouvé !
C:\cleannavi.txt: trouvé !
C:\lopR.txt: trouvé !
C:\UsbFix.txt: trouvé !
C:\Lop SD: trouvé !
C:\_OtMoveIt: trouvé !
C:\Rsit: trouvé !
C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\HijackThis: trouvé !
C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Navilog1: trouvé !
C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\HijackThis\HijackThis.lnk: trouvé !
C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Navilog1\Navilog1.lnk: trouvé !
C:\Documents and Settings\LARGE ERIC\Desktop\HijackThis.lnk: trouvé !
C:\Documents and Settings\LARGE ERIC\Recent\UsbFix.lnk: trouvé !
C:\Program Files\Navilog1: trouvé !
C:\Program Files\UsbFix: trouvé !
C:\Program Files\Navilog1\Navilog1.bat: trouvé !
C:\Program Files\Trend Micro\HijackThis: trouvé !
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe: trouvé !
C:\Program Files\Trend Micro\HijackThis\hijackthis.log: trouvé !
---------------------------------
--> Suppression:
C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\HijackThis\HijackThis.lnk: supprimé !
C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Navilog1\Navilog1.lnk: supprimé !
C:\Documents and Settings\LARGE ERIC\Desktop\HijackThis.lnk: supprimé !
C:\Program Files\Navilog1\Navilog1.bat: supprimé !
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe: supprimé !
C:\fixnavi.txt: supprimé !
C:\cleannavi.txt: supprimé !
C:\lopR.txt: supprimé !
C:\UsbFix.txt: supprimé !
C:\Documents and Settings\LARGE ERIC\Recent\UsbFix.lnk: supprimé !
C:\Program Files\Trend Micro\HijackThis\hijackthis.log: supprimé !
C:\Lop SD: supprimé !
C:\_OtMoveIt: supprimé !
C:\Rsit: supprimé !
C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\HijackThis: supprimé !
C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Navilog1: supprimé !
C:\Program Files\Navilog1: supprimé !
C:\Program Files\UsbFix: supprimé !
C:\Program Files\Trend Micro\HijackThis: supprimé !
Re,
Et ben tu en as utiliser des programmes sans avis préalable =>Pas bien......
Bon je te redonne le canned de LOP S&D et ne fait que l'OPTION 1
Poste moi le rapport et je te donne la suite.
OKI ou pas ?
Télécharge Lop S&D
▶ Double-clique dessus pour lancer l'installation
▶ Puis double-clique sur le raccourci Lop S&D présent sur ton bureau
▶ Séléctionne la langue souhaitée
▶ Puis choisis l'Option 1 ( Recherche )
▶ Patiente jusqu'à la fin du scan
▶ Poste le rapport généré ( C:lopR.txt )
Tutoriel
Si un rapport ne passe pas faire une alerte à la conciergerie avec le /!\ jaune.
Et ben tu en as utiliser des programmes sans avis préalable =>Pas bien......
Bon je te redonne le canned de LOP S&D et ne fait que l'OPTION 1
Poste moi le rapport et je te donne la suite.
OKI ou pas ?
Télécharge Lop S&D
▶ Double-clique dessus pour lancer l'installation
▶ Puis double-clique sur le raccourci Lop S&D présent sur ton bureau
▶ Séléctionne la langue souhaitée
▶ Puis choisis l'Option 1 ( Recherche )
▶ Patiente jusqu'à la fin du scan
▶ Poste le rapport généré ( C:lopR.txt )
Tutoriel
Si un rapport ne passe pas faire une alerte à la conciergerie avec le /!\ jaune.
--------------------\\ Lop S&D 4.2.5-0 XP/Vista
Microsoft Windows XP Home Edition ( v5.1.2600 ) Service Pack 2
X86-based PC ( Multiprocessor Free : Genuine Intel(R) CPU T2300 @ 1.66GHz )
BIOS : Phoenix ROM BIOS PLUS Version 1.10 A03
USER : LARGE ERIC ( Administrator )
BOOT : Normal boot
Antivirus : Trend Micro Internet Security 12.00 (Not Activated)
Firewall : ƒEƒCƒ‹ƒXƒoƒXƒ^[12 (ƒp[ƒ\ƒiƒ‹ƒtƒ@ƒCƒAƒEƒH[ƒ‹) 12 (Activated)
C:\ (Local Disk) - NTFS - Total:88 Go (Free:27 Go)
D:\ (CD or DVD) - UDF - Total:5 Go (Free:0 Go)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( Fri 05/01/2009|18:17 )
--------------------\\ Listing des dossiers dans APPLIC~1
[04/07/2006|07:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Adobe
[04/30/2006|10:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Brother
[04/07/2006|07:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> InstallShield
[04/07/2006|07:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Intel
[05/05/2006|05:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Microsoft
[04/30/2006|07:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Motive
[04/30/2006|07:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> MotiveSysIDs
[08/17/2004|07:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> SBSI
[04/30/2006|08:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Windows Genuine Advantage
[01/05/2009|01:18] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Adobe
[05/06/2008|07:23] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> AntiVir PersonalEdition Classic
[05/22/2007|12:03] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Apple Computer
[05/28/2006|08:21] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Brother
[12/28/2006|10:18] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> eXPert PDF
[12/28/2006|10:19] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> eXPert PDF 4
[12/28/2006|10:18] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> eXPert PDF Jobs
[01/19/2009|08:05] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Google
[05/28/2006|07:50] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Intel
[04/29/2009|07:27] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> live 64 math does
[02/11/2009|06:42] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Malwarebytes
[10/28/2008|08:50] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Messenger Plus!
[02/21/2009|10:43] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Microsoft
[08/04/2006|10:38] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> MSN Search Toolbar
[05/06/2008|03:55] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> program extra intra type
[03/26/2008|11:26] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Skype
[07/30/2007|11:41] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Sony Corporation
[01/30/2007|06:39] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Windows Genuine Advantage
[01/30/2007|08:38] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Windows Live Toolbar
[01/23/2009|10:23] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> WindowsLiveInstaller
[03/22/2008|03:46] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> WLInstaller
[11/10/2008|11:16] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Yahoo! Companion
[08/17/2004|07:31] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> Identities
[04/07/2006|07:24] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> Intel
[04/07/2006|07:23] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> Microsoft
[04/07/2006|07:22] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> Sun
[05/28/2006|07:29] C:\DOCUME~1\DEFAUL~1.WIN\APPLIC~1\<DIR> Microsoft
[03/12/2008|02:21] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Adobe
[06/09/2006|01:26] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> AdobeAUM
[12/16/2007|12:38] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> AdobeUM
[09/22/2007|06:19] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> AlertInfo
[05/22/2007|12:14] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Apple Computer
[02/05/2009|09:02] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Blender Foundation
[05/28/2006|09:18] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Brother
[05/01/2009|01:41] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> dvdcss
[12/28/2006|10:19] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> eXPert PDF Editor
[12/25/2006|11:19] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Google
[04/29/2009|07:27] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> gridbasedog
[12/07/2007|01:30] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> gtk-2.0
[06/04/2006|09:57] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Help
[10/29/2007|07:10] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Identities
[03/10/2009|10:36] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> InstallShield
[05/28/2006|07:51] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Intel
[06/09/2006|02:17] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Leadertech
[02/14/2007|08:12] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Macromedia
[02/11/2009|06:42] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Malwarebytes
[02/21/2009|11:08] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Microsoft
[08/04/2006|10:40] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> MSN Search Toolbar
[05/28/2006|12:18] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> MSNInstaller
[05/22/2007|01:32] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> MusicIP
[04/30/2009|09:28] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> OpenOffice.org2
[04/16/2009|02:26] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Skype
[05/21/2008|09:06] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> skypePM
[07/30/2007|11:46] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Sony Corporation
[05/29/2006|12:51] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Sun
[07/05/2008|09:04] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> U3
[05/31/2006|08:39] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> vlc
[10/29/2007|07:23] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Windows Desktop Search
[11/04/2008|09:17] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Windows Live Writer
[11/10/2008|11:14] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Yahoo!
[04/30/2006|12:22] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Adobe
[04/30/2006|01:42] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> CyberLink
[04/30/2006|08:19] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Google
[08/17/2004|07:31] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Identities
[04/07/2006|07:24] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Intel
[04/30/2006|07:30] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Macromedia
[05/01/2006|04:40] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Microsoft
[04/30/2006|09:56] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Netscape
[05/24/2006|12:52] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Real
[04/07/2006|07:22] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Sun
[08/17/2006|01:49] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Adobe
[10/01/2006|07:18] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Google
[05/28/2006|09:38] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Identities
[05/28/2006|09:38] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Intel
[06/28/2006|04:19] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Macromedia
[01/26/2008|01:07] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Microsoft
[08/17/2006|01:46] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> MSN Search Toolbar
[08/17/2006|01:50] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Sun
[01/26/2008|01:05] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Windows Desktop Search
[08/17/2004|07:31] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> Microsoft
[10/29/2007|09:34] C:\DOCUME~1\LOCALS~1.NTA\APPLIC~1\<DIR> Adobe
[10/29/2007|09:36] C:\DOCUME~1\LOCALS~1.NTA\APPLIC~1\<DIR> Microsoft
[05/20/2006|02:11] C:\DOCUME~1\NETWOR~1\APPLIC~1\<DIR> Intel
[08/17/2004|07:31] C:\DOCUME~1\NETWOR~1\APPLIC~1\<DIR> Microsoft
[05/28/2006|08:42] C:\DOCUME~1\NETWOR~1.NTA\APPLIC~1\<DIR> Intel
[05/28/2006|07:29] C:\DOCUME~1\NETWOR~1.NTA\APPLIC~1\<DIR> Microsoft
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[05/01/2009 06:00 PM][--ah-----] C:\WINDOWS\tasks\A42593D0906E0788.job
[04/10/2009 08:30 AM][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[05/01/2009 09:26 AM][--ah-----] C:\WINDOWS\tasks\SA.DAT
[08/04/2004 02:00 PM][-r-h-c---] C:\WINDOWS\tasks\desktop.ini
( A42593D0906E0788.job )=( c:\docume~1\largee~1\applic~1\gridba~1\CopyCamp01.exe )
--------------------\\ Listing des dossiers dans C:\Program Files
[09/15/2008|11:47] C:\Program Files\<DIR> A L'AISE BREIZH
[01/05/2009|01:17] C:\Program Files\<DIR> Adobe
[08/22/2006|11:08] C:\Program Files\<DIR> Ahead
[09/22/2007|05:17] C:\Program Files\<DIR> AlertInfo
[06/22/2007|12:40] C:\Program Files\<DIR> Apple Software Update
[07/25/2007|11:43] C:\Program Files\<DIR> Audacity
[04/30/2006|07:56] C:\Program Files\<DIR> BB Security
[02/05/2009|09:02] C:\Program Files\<DIR> Blender Foundation
[05/28/2006|07:49] C:\Program Files\<DIR> Broadcom
[05/28/2006|08:58] C:\Program Files\<DIR> Brother
[06/11/2006|10:51] C:\Program Files\<DIR> bsb
[03/26/2008|11:00] C:\Program Files\<DIR> BUFFALO
[11/10/2008|11:20] C:\Program Files\<DIR> CA Yahoo! Anti-Spy
[05/22/2007|03:14] C:\Program Files\<DIR> CCleaner
[01/14/2009|08:34] C:\Program Files\<DIR> Common Files
[08/17/2004|07:25] C:\Program Files\<DIR> ComPlus Applications
[04/07/2006|07:25] C:\Program Files\<DIR> CONEXANT
[03/10/2009|10:36] C:\Program Files\<DIR> Corel
[04/07/2006|07:28] C:\Program Files\<DIR> CyberLink
[04/07/2006|07:29] C:\Program Files\<DIR> Dell
[05/28/2006|07:47] C:\Program Files\<DIR> DIFX
[04/07/2006|07:28] C:\Program Files\<DIR> Digital Line Detect
[05/01/2009|09:27] C:\Program Files\<DIR> eMule
[05/30/2006|12:53] C:\Program Files\<DIR> fohlen
[01/18/2009|11:24] C:\Program Files\<DIR> Fun Web Products
[03/07/2009|12:25] C:\Program Files\<DIR> Google
[04/29/2009|07:26] C:\Program Files\<DIR> gridbasedog
[07/30/2007|11:43] C:\Program Files\<DIR> InstallShield Installation Information
[04/07/2006|07:24] C:\Program Files\<DIR> Intel
[04/07/2006|07:24] C:\Program Files\<DIR> Intel, Inc
[04/19/2009|03:32] C:\Program Files\<DIR> Internet Explorer
[06/22/2007|12:49] C:\Program Files\<DIR> iPod
[06/22/2007|12:50] C:\Program Files\<DIR> iTunes
[02/11/2009|09:25] C:\Program Files\<DIR> Java
[01/12/2009|12:26] C:\Program Files\<DIR> JCA2000
[12/26/2007|11:07] C:\Program Files\<DIR> JRA
[11/15/2008|12:35] C:\Program Files\<DIR> listac
[09/10/2007|03:06] C:\Program Files\<DIR> Logitech
[03/28/2009|10:11] C:\Program Files\<DIR> Malwarebytes' Anti-Malware
[08/24/2008|03:05] C:\Program Files\<DIR> Messenger
[11/09/2008|07:19] C:\Program Files\<DIR> Messenger Plus! Live
[01/23/2009|10:24] C:\Program Files\<DIR> Microsoft
[05/10/2007|09:35] C:\Program Files\<DIR> Microsoft CAPICOM 2.1.0.2
[08/17/2004|07:27] C:\Program Files\<DIR> microsoft frontpage
[11/27/2006|09:34] C:\Program Files\<DIR> Microsoft Office
[03/05/2009|12:53] C:\Program Files\<DIR> Microsoft Silverlight
[10/29/2007|07:06] C:\Program Files\<DIR> Microsoft SQL Server Compact Edition
[02/21/2009|10:43] C:\Program Files\<DIR> Microsoft Sync Framework
[05/22/2006|05:28] C:\Program Files\<DIR> Modem Helper
[05/28/2006|07:26] C:\Program Files\<DIR> Movie Maker
[05/28/2006|08:01] C:\Program Files\<DIR> MSN
[08/17/2004|07:24] C:\Program Files\<DIR> MSN Gaming Zone
[02/20/2008|08:18] C:\Program Files\<DIR> MSN Messenger
[01/30/2007|08:37] C:\Program Files\<DIR> MSN Toolbar Suite
[11/17/2006|08:02] C:\Program Files\<DIR> MSXML 4.0
[05/28/2006|07:27] C:\Program Files\<DIR> NetMeeting
[04/14/2009|04:53] C:\Program Files\<DIR> NetPumper
[04/30/2006|09:53] C:\Program Files\<DIR> Netscape
[04/07/2006|07:28] C:\Program Files\<DIR> NetWaiting
[08/24/2008|07:56] C:\Program Files\<DIR> Neuf
[05/28/2006|07:28] C:\Program Files\<DIR> Online Services
[04/15/2007|10:26] C:\Program Files\<DIR> OpenOffice.org 2.2
[06/13/2007|08:04] C:\Program Files\<DIR> Outlook Express
[11/23/2006|03:26] C:\Program Files\<DIR> PhotoFiltre
[05/22/2007|12:03] C:\Program Files\<DIR> QuickTime
[08/03/2007|11:49] C:\Program Files\<DIR> RawFlow
[04/07/2006|07:25] C:\Program Files\<DIR> Sigmatel
[05/20/2008|02:31] C:\Program Files\<DIR> Skype
[04/07/2006|07:31] C:\Program Files\<DIR> Sonic
[07/30/2007|11:42] C:\Program Files\<DIR> Sony
[05/28/2006|07:02] C:\Program Files\<DIR> SpySpotter3
[02/05/2009|09:08] C:\Program Files\<DIR> Sweet Home 3D
[04/07/2006|07:28] C:\Program Files\<DIR> Synaptics
[05/01/2009|06:12] C:\Program Files\<DIR> Trend Micro
[08/17/2004|07:31] C:\Program Files\<DIR> Uninstall Information
[05/31/2006|08:38] C:\Program Files\<DIR> VideoLAN
[08/23/2008|07:46] C:\Program Files\<DIR> Virtualis
[12/28/2006|10:18] C:\Program Files\<DIR> Visagesoft
[06/11/2006|11:01] C:\Program Files\<DIR> website
[10/29/2007|07:08] C:\Program Files\<DIR> Windows Desktop Search
[02/21/2009|10:44] C:\Program Files\<DIR> Windows Live
[11/09/2007|04:57] C:\Program Files\<DIR> Windows Live Favorites
[01/23/2009|10:22] C:\Program Files\<DIR> Windows Live SkyDrive
[02/21/2009|10:43] C:\Program Files\<DIR> Windows Live Toolbar
[05/22/2007|01:31] C:\Program Files\<DIR> Windows Media Player
[05/28/2006|07:24] C:\Program Files\<DIR> Windows NT
[08/17/2004|07:25] C:\Program Files\<DIR> WindowsUpdate
[07/30/2007|02:27] C:\Program Files\<DIR> WinZip
[08/17/2004|07:27] C:\Program Files\<DIR> xerox
[11/10/2008|11:14] C:\Program Files\<DIR> Yahoo!
[04/30/2006|07:52] C:\Program Files\<DIR> Yahoo_BB
--------------------\\ Listing des dossiers dans C:\Program Files\Common Files
[01/05/2009|01:17] C:\Program Files\Common Files\<DIR> Adobe
[08/22/2006|11:08] C:\Program Files\Common Files\<DIR> Ahead
[07/30/2007|11:40] C:\Program Files\Common Files\<DIR> InstallShield
[04/07/2006|07:21] C:\Program Files\Common Files\<DIR> Java
[07/25/2007|01:23] C:\Program Files\Common Files\<DIR> Logitech
[02/21/2009|10:40] C:\Program Files\Common Files\<DIR> Microsoft Shared
[04/30/2006|07:43] C:\Program Files\Common Files\<DIR> Motive
[08/17/2004|07:25] C:\Program Files\Common Files\<DIR> MSSoap
[04/20/2008|03:58] C:\Program Files\Common Files\<DIR> Nullsoft
[08/17/2004|07:21] C:\Program Files\Common Files\<DIR> ODBC
[04/30/2006|09:58] C:\Program Files\Common Files\<DIR> Scanner
[08/17/2004|07:25] C:\Program Files\Common Files\<DIR> Services
[03/26/2008|11:26] C:\Program Files\Common Files\<DIR> Skype
[04/07/2006|07:31] C:\Program Files\Common Files\<DIR> Sonic Shared
[07/30/2007|11:42] C:\Program Files\Common Files\<DIR> Sony Shared
[08/17/2004|07:21] C:\Program Files\Common Files\<DIR> SpeechEngines
[06/13/2007|08:04] C:\Program Files\Common Files\<DIR> System
[04/07/2006|07:30] C:\Program Files\Common Files\<DIR> TiVo Shared
[01/14/2009|08:34] C:\Program Files\Common Files\<DIR> Windows Live
[11/08/2007|05:26] C:\Program Files\Common Files\<DIR> WindowsLiveInstaller
--------------------\\ Process
( 52 Processes )
IEXPLORE.EXE ~ [PID:2424]
IEXPLORE.EXE ~ [PID:3304]
IEXPLORE.EXE ~ [PID:3312]
IEXPLORE.EXE ~ [PID:2448]
IEXPLORE.EXE ~ [PID:15084]
--------------------\\ Recherche avec S_Lop
C:\DOCUME~1\LARGEE~1\LOCALS~1\Temp\bis7A.exe
C:\DOCUME~1\LARGEE~1\APPLIC~1\GRIDBA~1
C:\DOCUME~1\LARGEE~1\APPLIC~1\GRIDBA~1\CopyCamp01.exe
C:\DOCUME~1\LARGEE~1\APPLIC~1\GRIDBA~1\dlftmzkh.exe
C:\DOCUME~1\LARGEE~1\APPLIC~1\GRIDBA~1\gfrvhiwj.exe
C:\DOCUME~1\LARGEE~1\APPLIC~1\GRIDBA~1\sendbuild.exe
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\live 64 math does
C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\live 64 math does\kind bits.dat
C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\live 64 math does\kind bits.exe
C:\DOCUME~1\LARGEE~1\APPLIC~1\gridba~1
C:\DOCUME~1\LARGEE~1\APPLIC~1\gridba~1\CopyCamp01.exe
C:\DOCUME~1\LARGEE~1\APPLIC~1\gridba~1\dlftmzkh.exe
C:\DOCUME~1\LARGEE~1\APPLIC~1\gridba~1\gfrvhiwj.exe
C:\DOCUME~1\LARGEE~1\APPLIC~1\gridba~1\sendbuild.exe
C:\Program Files\gridba~1
C:\DOCUME~1\LARGEE~1\LOCALS~1\Temp\nsq79.tmp
C:\DOCUME~1\LARGEE~1\LOCALS~1\Temp\sta31.exe
C:\Program Files\NetPumper
C:\DOCUME~1\LARGEE~1\Cookies\large_eric@advertstream[1].txt
C:\DOCUME~1\LARGEE~1\Cookies\large_eric@advertising[1].txt
C:\DOCUME~1\LARGEE~1\Cookies\large_eric@ero-advertising[2].txt
C:\DOCUME~1\LARGEE~1\Cookies\large_eric@banner.cotedazurpalace[2].txt
C:\DOCUME~1\LARGEE~1\Cookies\large_eric@cotedazurpalace[1].txt
C:\DOCUME~1\LARGEE~1\Cookies\large_eric@www.cotedazurpalace[1].txt
C:\DOCUME~1\LARGEE~1\Cookies\large_eric@adopt.euroclick[2].txt
C:\DOCUME~1\LARGEE~1\Cookies\large_eric@euroclick[2].txt
C:\DOCUME~1\LARGEE~1\Cookies\large_eric@pacificpoker[1].txt
C:\DOCUME~1\LARGEE~1\Cookies\large_eric@partypoker[2].txt
C:\WINDOWS\Tasks\A42593D0906E0788.job
--------------------\\ Verification du Registre
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\noun joy error]
"DisplayName"="CiD Help"
"UninstallString"="C:\\DOCUME~1\\LARGEE~1\\APPLIC~1\\GRIDBA~1\\sendbuild.exe -uninstall"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Plus Hold"="C:\\DOCUME~1\\LARGEE~1\\APPLIC~1\\GRIDBA~1\\sendbuild.exe"
"Plus Hold"="C:\\DOCUME~1\\LARGEE~1\\APPLIC~1\\GRIDBA~1\\sendbuild.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MATH DOES FIRST MODE"="C:\\Documents and Settings\\All Users.WINDOWS\\Application Data\\live 64 math does\\kind bits.exe"
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-05-01 18:18:31
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 86
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:302][D:18]-> C:\DOCUME~1\LARGEE~1\LOCALS~1\Temp
[F:878][D:0]-> C:\DOCUME~1\LARGEE~1\Cookies
[F:25786][D:59]-> C:\DOCUME~1\LARGEE~1\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - Fri 05/01/2009|18:21 - Option : [1]
--------------------\\ Fin du rapport a 18:21:42
Microsoft Windows XP Home Edition ( v5.1.2600 ) Service Pack 2
X86-based PC ( Multiprocessor Free : Genuine Intel(R) CPU T2300 @ 1.66GHz )
BIOS : Phoenix ROM BIOS PLUS Version 1.10 A03
USER : LARGE ERIC ( Administrator )
BOOT : Normal boot
Antivirus : Trend Micro Internet Security 12.00 (Not Activated)
Firewall : ƒEƒCƒ‹ƒXƒoƒXƒ^[12 (ƒp[ƒ\ƒiƒ‹ƒtƒ@ƒCƒAƒEƒH[ƒ‹) 12 (Activated)
C:\ (Local Disk) - NTFS - Total:88 Go (Free:27 Go)
D:\ (CD or DVD) - UDF - Total:5 Go (Free:0 Go)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( Fri 05/01/2009|18:17 )
--------------------\\ Listing des dossiers dans APPLIC~1
[04/07/2006|07:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Adobe
[04/30/2006|10:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Brother
[04/07/2006|07:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> InstallShield
[04/07/2006|07:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Intel
[05/05/2006|05:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Microsoft
[04/30/2006|07:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Motive
[04/30/2006|07:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> MotiveSysIDs
[08/17/2004|07:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> SBSI
[04/30/2006|08:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Windows Genuine Advantage
[01/05/2009|01:18] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Adobe
[05/06/2008|07:23] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> AntiVir PersonalEdition Classic
[05/22/2007|12:03] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Apple Computer
[05/28/2006|08:21] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Brother
[12/28/2006|10:18] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> eXPert PDF
[12/28/2006|10:19] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> eXPert PDF 4
[12/28/2006|10:18] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> eXPert PDF Jobs
[01/19/2009|08:05] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Google
[05/28/2006|07:50] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Intel
[04/29/2009|07:27] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> live 64 math does
[02/11/2009|06:42] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Malwarebytes
[10/28/2008|08:50] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Messenger Plus!
[02/21/2009|10:43] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Microsoft
[08/04/2006|10:38] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> MSN Search Toolbar
[05/06/2008|03:55] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> program extra intra type
[03/26/2008|11:26] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Skype
[07/30/2007|11:41] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Sony Corporation
[01/30/2007|06:39] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Windows Genuine Advantage
[01/30/2007|08:38] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Windows Live Toolbar
[01/23/2009|10:23] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> WindowsLiveInstaller
[03/22/2008|03:46] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> WLInstaller
[11/10/2008|11:16] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Yahoo! Companion
[08/17/2004|07:31] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> Identities
[04/07/2006|07:24] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> Intel
[04/07/2006|07:23] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> Microsoft
[04/07/2006|07:22] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> Sun
[05/28/2006|07:29] C:\DOCUME~1\DEFAUL~1.WIN\APPLIC~1\<DIR> Microsoft
[03/12/2008|02:21] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Adobe
[06/09/2006|01:26] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> AdobeAUM
[12/16/2007|12:38] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> AdobeUM
[09/22/2007|06:19] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> AlertInfo
[05/22/2007|12:14] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Apple Computer
[02/05/2009|09:02] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Blender Foundation
[05/28/2006|09:18] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Brother
[05/01/2009|01:41] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> dvdcss
[12/28/2006|10:19] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> eXPert PDF Editor
[12/25/2006|11:19] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Google
[04/29/2009|07:27] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> gridbasedog
[12/07/2007|01:30] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> gtk-2.0
[06/04/2006|09:57] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Help
[10/29/2007|07:10] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Identities
[03/10/2009|10:36] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> InstallShield
[05/28/2006|07:51] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Intel
[06/09/2006|02:17] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Leadertech
[02/14/2007|08:12] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Macromedia
[02/11/2009|06:42] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Malwarebytes
[02/21/2009|11:08] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Microsoft
[08/04/2006|10:40] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> MSN Search Toolbar
[05/28/2006|12:18] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> MSNInstaller
[05/22/2007|01:32] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> MusicIP
[04/30/2009|09:28] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> OpenOffice.org2
[04/16/2009|02:26] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Skype
[05/21/2008|09:06] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> skypePM
[07/30/2007|11:46] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Sony Corporation
[05/29/2006|12:51] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Sun
[07/05/2008|09:04] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> U3
[05/31/2006|08:39] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> vlc
[10/29/2007|07:23] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Windows Desktop Search
[11/04/2008|09:17] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Windows Live Writer
[11/10/2008|11:14] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Yahoo!
[04/30/2006|12:22] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Adobe
[04/30/2006|01:42] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> CyberLink
[04/30/2006|08:19] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Google
[08/17/2004|07:31] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Identities
[04/07/2006|07:24] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Intel
[04/30/2006|07:30] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Macromedia
[05/01/2006|04:40] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Microsoft
[04/30/2006|09:56] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Netscape
[05/24/2006|12:52] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Real
[04/07/2006|07:22] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Sun
[08/17/2006|01:49] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Adobe
[10/01/2006|07:18] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Google
[05/28/2006|09:38] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Identities
[05/28/2006|09:38] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Intel
[06/28/2006|04:19] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Macromedia
[01/26/2008|01:07] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Microsoft
[08/17/2006|01:46] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> MSN Search Toolbar
[08/17/2006|01:50] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Sun
[01/26/2008|01:05] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Windows Desktop Search
[08/17/2004|07:31] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> Microsoft
[10/29/2007|09:34] C:\DOCUME~1\LOCALS~1.NTA\APPLIC~1\<DIR> Adobe
[10/29/2007|09:36] C:\DOCUME~1\LOCALS~1.NTA\APPLIC~1\<DIR> Microsoft
[05/20/2006|02:11] C:\DOCUME~1\NETWOR~1\APPLIC~1\<DIR> Intel
[08/17/2004|07:31] C:\DOCUME~1\NETWOR~1\APPLIC~1\<DIR> Microsoft
[05/28/2006|08:42] C:\DOCUME~1\NETWOR~1.NTA\APPLIC~1\<DIR> Intel
[05/28/2006|07:29] C:\DOCUME~1\NETWOR~1.NTA\APPLIC~1\<DIR> Microsoft
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[05/01/2009 06:00 PM][--ah-----] C:\WINDOWS\tasks\A42593D0906E0788.job
[04/10/2009 08:30 AM][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[05/01/2009 09:26 AM][--ah-----] C:\WINDOWS\tasks\SA.DAT
[08/04/2004 02:00 PM][-r-h-c---] C:\WINDOWS\tasks\desktop.ini
( A42593D0906E0788.job )=( c:\docume~1\largee~1\applic~1\gridba~1\CopyCamp01.exe )
--------------------\\ Listing des dossiers dans C:\Program Files
[09/15/2008|11:47] C:\Program Files\<DIR> A L'AISE BREIZH
[01/05/2009|01:17] C:\Program Files\<DIR> Adobe
[08/22/2006|11:08] C:\Program Files\<DIR> Ahead
[09/22/2007|05:17] C:\Program Files\<DIR> AlertInfo
[06/22/2007|12:40] C:\Program Files\<DIR> Apple Software Update
[07/25/2007|11:43] C:\Program Files\<DIR> Audacity
[04/30/2006|07:56] C:\Program Files\<DIR> BB Security
[02/05/2009|09:02] C:\Program Files\<DIR> Blender Foundation
[05/28/2006|07:49] C:\Program Files\<DIR> Broadcom
[05/28/2006|08:58] C:\Program Files\<DIR> Brother
[06/11/2006|10:51] C:\Program Files\<DIR> bsb
[03/26/2008|11:00] C:\Program Files\<DIR> BUFFALO
[11/10/2008|11:20] C:\Program Files\<DIR> CA Yahoo! Anti-Spy
[05/22/2007|03:14] C:\Program Files\<DIR> CCleaner
[01/14/2009|08:34] C:\Program Files\<DIR> Common Files
[08/17/2004|07:25] C:\Program Files\<DIR> ComPlus Applications
[04/07/2006|07:25] C:\Program Files\<DIR> CONEXANT
[03/10/2009|10:36] C:\Program Files\<DIR> Corel
[04/07/2006|07:28] C:\Program Files\<DIR> CyberLink
[04/07/2006|07:29] C:\Program Files\<DIR> Dell
[05/28/2006|07:47] C:\Program Files\<DIR> DIFX
[04/07/2006|07:28] C:\Program Files\<DIR> Digital Line Detect
[05/01/2009|09:27] C:\Program Files\<DIR> eMule
[05/30/2006|12:53] C:\Program Files\<DIR> fohlen
[01/18/2009|11:24] C:\Program Files\<DIR> Fun Web Products
[03/07/2009|12:25] C:\Program Files\<DIR> Google
[04/29/2009|07:26] C:\Program Files\<DIR> gridbasedog
[07/30/2007|11:43] C:\Program Files\<DIR> InstallShield Installation Information
[04/07/2006|07:24] C:\Program Files\<DIR> Intel
[04/07/2006|07:24] C:\Program Files\<DIR> Intel, Inc
[04/19/2009|03:32] C:\Program Files\<DIR> Internet Explorer
[06/22/2007|12:49] C:\Program Files\<DIR> iPod
[06/22/2007|12:50] C:\Program Files\<DIR> iTunes
[02/11/2009|09:25] C:\Program Files\<DIR> Java
[01/12/2009|12:26] C:\Program Files\<DIR> JCA2000
[12/26/2007|11:07] C:\Program Files\<DIR> JRA
[11/15/2008|12:35] C:\Program Files\<DIR> listac
[09/10/2007|03:06] C:\Program Files\<DIR> Logitech
[03/28/2009|10:11] C:\Program Files\<DIR> Malwarebytes' Anti-Malware
[08/24/2008|03:05] C:\Program Files\<DIR> Messenger
[11/09/2008|07:19] C:\Program Files\<DIR> Messenger Plus! Live
[01/23/2009|10:24] C:\Program Files\<DIR> Microsoft
[05/10/2007|09:35] C:\Program Files\<DIR> Microsoft CAPICOM 2.1.0.2
[08/17/2004|07:27] C:\Program Files\<DIR> microsoft frontpage
[11/27/2006|09:34] C:\Program Files\<DIR> Microsoft Office
[03/05/2009|12:53] C:\Program Files\<DIR> Microsoft Silverlight
[10/29/2007|07:06] C:\Program Files\<DIR> Microsoft SQL Server Compact Edition
[02/21/2009|10:43] C:\Program Files\<DIR> Microsoft Sync Framework
[05/22/2006|05:28] C:\Program Files\<DIR> Modem Helper
[05/28/2006|07:26] C:\Program Files\<DIR> Movie Maker
[05/28/2006|08:01] C:\Program Files\<DIR> MSN
[08/17/2004|07:24] C:\Program Files\<DIR> MSN Gaming Zone
[02/20/2008|08:18] C:\Program Files\<DIR> MSN Messenger
[01/30/2007|08:37] C:\Program Files\<DIR> MSN Toolbar Suite
[11/17/2006|08:02] C:\Program Files\<DIR> MSXML 4.0
[05/28/2006|07:27] C:\Program Files\<DIR> NetMeeting
[04/14/2009|04:53] C:\Program Files\<DIR> NetPumper
[04/30/2006|09:53] C:\Program Files\<DIR> Netscape
[04/07/2006|07:28] C:\Program Files\<DIR> NetWaiting
[08/24/2008|07:56] C:\Program Files\<DIR> Neuf
[05/28/2006|07:28] C:\Program Files\<DIR> Online Services
[04/15/2007|10:26] C:\Program Files\<DIR> OpenOffice.org 2.2
[06/13/2007|08:04] C:\Program Files\<DIR> Outlook Express
[11/23/2006|03:26] C:\Program Files\<DIR> PhotoFiltre
[05/22/2007|12:03] C:\Program Files\<DIR> QuickTime
[08/03/2007|11:49] C:\Program Files\<DIR> RawFlow
[04/07/2006|07:25] C:\Program Files\<DIR> Sigmatel
[05/20/2008|02:31] C:\Program Files\<DIR> Skype
[04/07/2006|07:31] C:\Program Files\<DIR> Sonic
[07/30/2007|11:42] C:\Program Files\<DIR> Sony
[05/28/2006|07:02] C:\Program Files\<DIR> SpySpotter3
[02/05/2009|09:08] C:\Program Files\<DIR> Sweet Home 3D
[04/07/2006|07:28] C:\Program Files\<DIR> Synaptics
[05/01/2009|06:12] C:\Program Files\<DIR> Trend Micro
[08/17/2004|07:31] C:\Program Files\<DIR> Uninstall Information
[05/31/2006|08:38] C:\Program Files\<DIR> VideoLAN
[08/23/2008|07:46] C:\Program Files\<DIR> Virtualis
[12/28/2006|10:18] C:\Program Files\<DIR> Visagesoft
[06/11/2006|11:01] C:\Program Files\<DIR> website
[10/29/2007|07:08] C:\Program Files\<DIR> Windows Desktop Search
[02/21/2009|10:44] C:\Program Files\<DIR> Windows Live
[11/09/2007|04:57] C:\Program Files\<DIR> Windows Live Favorites
[01/23/2009|10:22] C:\Program Files\<DIR> Windows Live SkyDrive
[02/21/2009|10:43] C:\Program Files\<DIR> Windows Live Toolbar
[05/22/2007|01:31] C:\Program Files\<DIR> Windows Media Player
[05/28/2006|07:24] C:\Program Files\<DIR> Windows NT
[08/17/2004|07:25] C:\Program Files\<DIR> WindowsUpdate
[07/30/2007|02:27] C:\Program Files\<DIR> WinZip
[08/17/2004|07:27] C:\Program Files\<DIR> xerox
[11/10/2008|11:14] C:\Program Files\<DIR> Yahoo!
[04/30/2006|07:52] C:\Program Files\<DIR> Yahoo_BB
--------------------\\ Listing des dossiers dans C:\Program Files\Common Files
[01/05/2009|01:17] C:\Program Files\Common Files\<DIR> Adobe
[08/22/2006|11:08] C:\Program Files\Common Files\<DIR> Ahead
[07/30/2007|11:40] C:\Program Files\Common Files\<DIR> InstallShield
[04/07/2006|07:21] C:\Program Files\Common Files\<DIR> Java
[07/25/2007|01:23] C:\Program Files\Common Files\<DIR> Logitech
[02/21/2009|10:40] C:\Program Files\Common Files\<DIR> Microsoft Shared
[04/30/2006|07:43] C:\Program Files\Common Files\<DIR> Motive
[08/17/2004|07:25] C:\Program Files\Common Files\<DIR> MSSoap
[04/20/2008|03:58] C:\Program Files\Common Files\<DIR> Nullsoft
[08/17/2004|07:21] C:\Program Files\Common Files\<DIR> ODBC
[04/30/2006|09:58] C:\Program Files\Common Files\<DIR> Scanner
[08/17/2004|07:25] C:\Program Files\Common Files\<DIR> Services
[03/26/2008|11:26] C:\Program Files\Common Files\<DIR> Skype
[04/07/2006|07:31] C:\Program Files\Common Files\<DIR> Sonic Shared
[07/30/2007|11:42] C:\Program Files\Common Files\<DIR> Sony Shared
[08/17/2004|07:21] C:\Program Files\Common Files\<DIR> SpeechEngines
[06/13/2007|08:04] C:\Program Files\Common Files\<DIR> System
[04/07/2006|07:30] C:\Program Files\Common Files\<DIR> TiVo Shared
[01/14/2009|08:34] C:\Program Files\Common Files\<DIR> Windows Live
[11/08/2007|05:26] C:\Program Files\Common Files\<DIR> WindowsLiveInstaller
--------------------\\ Process
( 52 Processes )
IEXPLORE.EXE ~ [PID:2424]
IEXPLORE.EXE ~ [PID:3304]
IEXPLORE.EXE ~ [PID:3312]
IEXPLORE.EXE ~ [PID:2448]
IEXPLORE.EXE ~ [PID:15084]
--------------------\\ Recherche avec S_Lop
C:\DOCUME~1\LARGEE~1\LOCALS~1\Temp\bis7A.exe
C:\DOCUME~1\LARGEE~1\APPLIC~1\GRIDBA~1
C:\DOCUME~1\LARGEE~1\APPLIC~1\GRIDBA~1\CopyCamp01.exe
C:\DOCUME~1\LARGEE~1\APPLIC~1\GRIDBA~1\dlftmzkh.exe
C:\DOCUME~1\LARGEE~1\APPLIC~1\GRIDBA~1\gfrvhiwj.exe
C:\DOCUME~1\LARGEE~1\APPLIC~1\GRIDBA~1\sendbuild.exe
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\live 64 math does
C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\live 64 math does\kind bits.dat
C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\live 64 math does\kind bits.exe
C:\DOCUME~1\LARGEE~1\APPLIC~1\gridba~1
C:\DOCUME~1\LARGEE~1\APPLIC~1\gridba~1\CopyCamp01.exe
C:\DOCUME~1\LARGEE~1\APPLIC~1\gridba~1\dlftmzkh.exe
C:\DOCUME~1\LARGEE~1\APPLIC~1\gridba~1\gfrvhiwj.exe
C:\DOCUME~1\LARGEE~1\APPLIC~1\gridba~1\sendbuild.exe
C:\Program Files\gridba~1
C:\DOCUME~1\LARGEE~1\LOCALS~1\Temp\nsq79.tmp
C:\DOCUME~1\LARGEE~1\LOCALS~1\Temp\sta31.exe
C:\Program Files\NetPumper
C:\DOCUME~1\LARGEE~1\Cookies\large_eric@advertstream[1].txt
C:\DOCUME~1\LARGEE~1\Cookies\large_eric@advertising[1].txt
C:\DOCUME~1\LARGEE~1\Cookies\large_eric@ero-advertising[2].txt
C:\DOCUME~1\LARGEE~1\Cookies\large_eric@banner.cotedazurpalace[2].txt
C:\DOCUME~1\LARGEE~1\Cookies\large_eric@cotedazurpalace[1].txt
C:\DOCUME~1\LARGEE~1\Cookies\large_eric@www.cotedazurpalace[1].txt
C:\DOCUME~1\LARGEE~1\Cookies\large_eric@adopt.euroclick[2].txt
C:\DOCUME~1\LARGEE~1\Cookies\large_eric@euroclick[2].txt
C:\DOCUME~1\LARGEE~1\Cookies\large_eric@pacificpoker[1].txt
C:\DOCUME~1\LARGEE~1\Cookies\large_eric@partypoker[2].txt
C:\WINDOWS\Tasks\A42593D0906E0788.job
--------------------\\ Verification du Registre
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\noun joy error]
"DisplayName"="CiD Help"
"UninstallString"="C:\\DOCUME~1\\LARGEE~1\\APPLIC~1\\GRIDBA~1\\sendbuild.exe -uninstall"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Plus Hold"="C:\\DOCUME~1\\LARGEE~1\\APPLIC~1\\GRIDBA~1\\sendbuild.exe"
"Plus Hold"="C:\\DOCUME~1\\LARGEE~1\\APPLIC~1\\GRIDBA~1\\sendbuild.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MATH DOES FIRST MODE"="C:\\Documents and Settings\\All Users.WINDOWS\\Application Data\\live 64 math does\\kind bits.exe"
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-05-01 18:18:31
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 86
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:302][D:18]-> C:\DOCUME~1\LARGEE~1\LOCALS~1\Temp
[F:878][D:0]-> C:\DOCUME~1\LARGEE~1\Cookies
[F:25786][D:59]-> C:\DOCUME~1\LARGEE~1\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - Fri 05/01/2009|18:21 - Option : [1]
--------------------\\ Fin du rapport a 18:21:42
Re,
Très bien ;)
▶ Relance Lop S&D
▶ Choisis cette fois ci l'Option 2 ( Suppression )
▶ Ne ferme pas la fenêtre lors de la suppression !
▶ Poste le rapport généré ( C:\lopR.txt )
( Si le Bureau ne réapparaît pas presse Ctrl + Alt + Suppr, Onglet Fichier,
Nouvelle tâche, tape explorer.exe et valide )
Si un rapport ne passe pas faire une alerte à la conciergerie avec le /!\ jaune.
Très bien ;)
▶ Relance Lop S&D
▶ Choisis cette fois ci l'Option 2 ( Suppression )
▶ Ne ferme pas la fenêtre lors de la suppression !
▶ Poste le rapport généré ( C:\lopR.txt )
( Si le Bureau ne réapparaît pas presse Ctrl + Alt + Suppr, Onglet Fichier,
Nouvelle tâche, tape explorer.exe et valide )
Si un rapport ne passe pas faire une alerte à la conciergerie avec le /!\ jaune.
--------------------\\ Lop S&D 4.2.5-0 XP/Vista
Microsoft Windows XP Home Edition ( v5.1.2600 ) Service Pack 2
X86-based PC ( Multiprocessor Free : Genuine Intel(R) CPU T2300 @ 1.66GHz )
BIOS : Phoenix ROM BIOS PLUS Version 1.10 A03
USER : LARGE ERIC ( Administrator )
BOOT : Normal boot
Antivirus : Trend Micro Internet Security 12.00 (Not Activated)
Firewall : ƒEƒCƒ‹ƒXƒoƒXƒ^[12 (ƒp[ƒ\ƒiƒ‹ƒtƒ@ƒCƒAƒEƒH[ƒ‹) 12 (Activated)
C:\ (Local Disk) - NTFS - Total:88 Go (Free:27 Go)
D:\ (CD or DVD) - UDF - Total:5 Go (Free:0 Go)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [2] ( Fri 05/01/2009|18:26 )
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION
Supprime! - C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\live 64 math does\kind bits.dat
Supprime! - C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\live 64 math does\kind bits.exe
Supprime! - C:\DOCUME~1\LARGEE~1\APPLIC~1\gridba~1\CopyCamp01.exe
Supprime! - C:\DOCUME~1\LARGEE~1\APPLIC~1\gridba~1\dlftmzkh.exe
Supprime! - C:\DOCUME~1\LARGEE~1\APPLIC~1\gridba~1\gfrvhiwj.exe
Supprime! - C:\DOCUME~1\LARGEE~1\APPLIC~1\gridba~1\sendbuild.exe
Supprime! - C:\DOCUME~1\LARGEE~1\LOCALS~1\Temp\nsq79.tmp
Supprime! - C:\DOCUME~1\LARGEE~1\LOCALS~1\Temp\sta31.exe
Supprime! - C:\DOCUME~1\LARGEE~1\Cookies\large_eric@advertstream[1].txt
Supprime! - C:\DOCUME~1\LARGEE~1\Cookies\large_eric@advertising[1].txt
Supprime! - C:\DOCUME~1\LARGEE~1\Cookies\large_eric@ero-advertising[2].txt
Supprime! - C:\DOCUME~1\LARGEE~1\Cookies\large_eric@banner.cotedazurpalace[2].txt
Supprime! - C:\DOCUME~1\LARGEE~1\Cookies\large_eric@cotedazurpalace[1].txt
Supprime! - C:\DOCUME~1\LARGEE~1\Cookies\large_eric@www.cotedazurpalace[1].txt
Supprime! - C:\DOCUME~1\LARGEE~1\Cookies\large_eric@adopt.euroclick[2].txt
Supprime! - C:\DOCUME~1\LARGEE~1\Cookies\large_eric@euroclick[2].txt
Supprime! - C:\DOCUME~1\LARGEE~1\Cookies\large_eric@pacificpoker[1].txt
Supprime! - C:\DOCUME~1\LARGEE~1\Cookies\large_eric@partypoker[2].txt
Supprime! - C:\WINDOWS\Tasks\A42593D0906E0788.job
Supprime! - C:\DOCUME~1\LARGEE~1\LOCALS~1\Temp\bis7A.exe
Supprime! - C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\live 64 math does
Supprime! - C:\DOCUME~1\LARGEE~1\APPLIC~1\gridba~1
Supprime! - C:\Program Files\gridba~1
Supprime! - C:\Program Files\NetPumper
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing des dossiers dans APPLIC~1
[04/07/2006|07:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Adobe
[04/30/2006|10:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Brother
[04/07/2006|07:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> InstallShield
[04/07/2006|07:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Intel
[05/05/2006|05:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Microsoft
[04/30/2006|07:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Motive
[04/30/2006|07:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> MotiveSysIDs
[08/17/2004|07:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> SBSI
[04/30/2006|08:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Windows Genuine Advantage
[01/05/2009|01:18] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Adobe
[05/06/2008|07:23] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> AntiVir PersonalEdition Classic
[05/22/2007|12:03] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Apple Computer
[05/28/2006|08:21] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Brother
[12/28/2006|10:18] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> eXPert PDF
[12/28/2006|10:19] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> eXPert PDF 4
[12/28/2006|10:18] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> eXPert PDF Jobs
[01/19/2009|08:05] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Google
[05/28/2006|07:50] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Intel
[02/11/2009|06:42] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Malwarebytes
[10/28/2008|08:50] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Messenger Plus!
[02/21/2009|10:43] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Microsoft
[08/04/2006|10:38] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> MSN Search Toolbar
[05/06/2008|03:55] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> program extra intra type
[03/26/2008|11:26] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Skype
[07/30/2007|11:41] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Sony Corporation
[01/30/2007|06:39] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Windows Genuine Advantage
[01/30/2007|08:38] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Windows Live Toolbar
[01/23/2009|10:23] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> WindowsLiveInstaller
[03/22/2008|03:46] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> WLInstaller
[11/10/2008|11:16] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Yahoo! Companion
[08/17/2004|07:31] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> Identities
[04/07/2006|07:24] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> Intel
[04/07/2006|07:23] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> Microsoft
[04/07/2006|07:22] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> Sun
[05/28/2006|07:29] C:\DOCUME~1\DEFAUL~1.WIN\APPLIC~1\<DIR> Microsoft
[03/12/2008|02:21] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Adobe
[06/09/2006|01:26] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> AdobeAUM
[12/16/2007|12:38] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> AdobeUM
[09/22/2007|06:19] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> AlertInfo
[05/22/2007|12:14] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Apple Computer
[02/05/2009|09:02] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Blender Foundation
[05/28/2006|09:18] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Brother
[05/01/2009|01:41] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> dvdcss
[12/28/2006|10:19] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> eXPert PDF Editor
[12/25/2006|11:19] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Google
[12/07/2007|01:30] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> gtk-2.0
[06/04/2006|09:57] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Help
[10/29/2007|07:10] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Identities
[03/10/2009|10:36] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> InstallShield
[05/28/2006|07:51] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Intel
[06/09/2006|02:17] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Leadertech
[02/14/2007|08:12] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Macromedia
[02/11/2009|06:42] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Malwarebytes
[02/21/2009|11:08] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Microsoft
[08/04/2006|10:40] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> MSN Search Toolbar
[05/28/2006|12:18] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> MSNInstaller
[05/22/2007|01:32] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> MusicIP
[04/30/2009|09:28] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> OpenOffice.org2
[04/16/2009|02:26] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Skype
[05/21/2008|09:06] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> skypePM
[07/30/2007|11:46] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Sony Corporation
[05/29/2006|12:51] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Sun
[07/05/2008|09:04] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> U3
[05/31/2006|08:39] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> vlc
[10/29/2007|07:23] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Windows Desktop Search
[11/04/2008|09:17] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Windows Live Writer
[11/10/2008|11:14] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Yahoo!
[04/30/2006|12:22] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Adobe
[04/30/2006|01:42] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> CyberLink
[04/30/2006|08:19] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Google
[08/17/2004|07:31] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Identities
[04/07/2006|07:24] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Intel
[04/30/2006|07:30] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Macromedia
[05/01/2006|04:40] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Microsoft
[04/30/2006|09:56] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Netscape
[05/24/2006|12:52] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Real
[04/07/2006|07:22] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Sun
[08/17/2006|01:49] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Adobe
[10/01/2006|07:18] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Google
[05/28/2006|09:38] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Identities
[05/28/2006|09:38] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Intel
[06/28/2006|04:19] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Macromedia
[01/26/2008|01:07] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Microsoft
[08/17/2006|01:46] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> MSN Search Toolbar
[08/17/2006|01:50] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Sun
[01/26/2008|01:05] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Windows Desktop Search
[08/17/2004|07:31] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> Microsoft
[10/29/2007|09:34] C:\DOCUME~1\LOCALS~1.NTA\APPLIC~1\<DIR> Adobe
[10/29/2007|09:36] C:\DOCUME~1\LOCALS~1.NTA\APPLIC~1\<DIR> Microsoft
[05/20/2006|02:11] C:\DOCUME~1\NETWOR~1\APPLIC~1\<DIR> Intel
[08/17/2004|07:31] C:\DOCUME~1\NETWOR~1\APPLIC~1\<DIR> Microsoft
[05/28/2006|08:42] C:\DOCUME~1\NETWOR~1.NTA\APPLIC~1\<DIR> Intel
[05/28/2006|07:29] C:\DOCUME~1\NETWOR~1.NTA\APPLIC~1\<DIR> Microsoft
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[04/10/2009 08:30 AM][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[05/01/2009 09:26 AM][--ah-----] C:\WINDOWS\tasks\SA.DAT
[08/04/2004 02:00 PM][-r-h-c---] C:\WINDOWS\tasks\desktop.ini
--------------------\\ Listing des dossiers dans C:\Program Files
[09/15/2008|11:47] C:\Program Files\<DIR> A L'AISE BREIZH
[01/05/2009|01:17] C:\Program Files\<DIR> Adobe
[08/22/2006|11:08] C:\Program Files\<DIR> Ahead
[09/22/2007|05:17] C:\Program Files\<DIR> AlertInfo
[06/22/2007|12:40] C:\Program Files\<DIR> Apple Software Update
[07/25/2007|11:43] C:\Program Files\<DIR> Audacity
[04/30/2006|07:56] C:\Program Files\<DIR> BB Security
[02/05/2009|09:02] C:\Program Files\<DIR> Blender Foundation
[05/28/2006|07:49] C:\Program Files\<DIR> Broadcom
[05/28/2006|08:58] C:\Program Files\<DIR> Brother
[06/11/2006|10:51] C:\Program Files\<DIR> bsb
[03/26/2008|11:00] C:\Program Files\<DIR> BUFFALO
[11/10/2008|11:20] C:\Program Files\<DIR> CA Yahoo! Anti-Spy
[05/22/2007|03:14] C:\Program Files\<DIR> CCleaner
[01/14/2009|08:34] C:\Program Files\<DIR> Common Files
[08/17/2004|07:25] C:\Program Files\<DIR> ComPlus Applications
[04/07/2006|07:25] C:\Program Files\<DIR> CONEXANT
[03/10/2009|10:36] C:\Program Files\<DIR> Corel
[04/07/2006|07:28] C:\Program Files\<DIR> CyberLink
[04/07/2006|07:29] C:\Program Files\<DIR> Dell
[05/28/2006|07:47] C:\Program Files\<DIR> DIFX
[04/07/2006|07:28] C:\Program Files\<DIR> Digital Line Detect
[05/01/2009|09:27] C:\Program Files\<DIR> eMule
[05/30/2006|12:53] C:\Program Files\<DIR> fohlen
[01/18/2009|11:24] C:\Program Files\<DIR> Fun Web Products
[03/07/2009|12:25] C:\Program Files\<DIR> Google
[07/30/2007|11:43] C:\Program Files\<DIR> InstallShield Installation Information
[04/07/2006|07:24] C:\Program Files\<DIR> Intel
[04/07/2006|07:24] C:\Program Files\<DIR> Intel, Inc
[04/19/2009|03:32] C:\Program Files\<DIR> Internet Explorer
[06/22/2007|12:49] C:\Program Files\<DIR> iPod
[06/22/2007|12:50] C:\Program Files\<DIR> iTunes
[02/11/2009|09:25] C:\Program Files\<DIR> Java
[01/12/2009|12:26] C:\Program Files\<DIR> JCA2000
[12/26/2007|11:07] C:\Program Files\<DIR> JRA
[11/15/2008|12:35] C:\Program Files\<DIR> listac
[09/10/2007|03:06] C:\Program Files\<DIR> Logitech
[03/28/2009|10:11] C:\Program Files\<DIR> Malwarebytes' Anti-Malware
[08/24/2008|03:05] C:\Program Files\<DIR> Messenger
[11/09/2008|07:19] C:\Program Files\<DIR> Messenger Plus! Live
[01/23/2009|10:24] C:\Program Files\<DIR> Microsoft
[05/10/2007|09:35] C:\Program Files\<DIR> Microsoft CAPICOM 2.1.0.2
[08/17/2004|07:27] C:\Program Files\<DIR> microsoft frontpage
[11/27/2006|09:34] C:\Program Files\<DIR> Microsoft Office
[03/05/2009|12:53] C:\Program Files\<DIR> Microsoft Silverlight
[10/29/2007|07:06] C:\Program Files\<DIR> Microsoft SQL Server Compact Edition
[02/21/2009|10:43] C:\Program Files\<DIR> Microsoft Sync Framework
[05/22/2006|05:28] C:\Program Files\<DIR> Modem Helper
[05/28/2006|07:26] C:\Program Files\<DIR> Movie Maker
[05/28/2006|08:01] C:\Program Files\<DIR> MSN
[08/17/2004|07:24] C:\Program Files\<DIR> MSN Gaming Zone
[02/20/2008|08:18] C:\Program Files\<DIR> MSN Messenger
[01/30/2007|08:37] C:\Program Files\<DIR> MSN Toolbar Suite
[11/17/2006|08:02] C:\Program Files\<DIR> MSXML 4.0
[05/28/2006|07:27] C:\Program Files\<DIR> NetMeeting
[04/30/2006|09:53] C:\Program Files\<DIR> Netscape
[04/07/2006|07:28] C:\Program Files\<DIR> NetWaiting
[08/24/2008|07:56] C:\Program Files\<DIR> Neuf
[05/28/2006|07:28] C:\Program Files\<DIR> Online Services
[04/15/2007|10:26] C:\Program Files\<DIR> OpenOffice.org 2.2
[06/13/2007|08:04] C:\Program Files\<DIR> Outlook Express
[11/23/2006|03:26] C:\Program Files\<DIR> PhotoFiltre
[05/22/2007|12:03] C:\Program Files\<DIR> QuickTime
[08/03/2007|11:49] C:\Program Files\<DIR> RawFlow
[04/07/2006|07:25] C:\Program Files\<DIR> Sigmatel
[05/20/2008|02:31] C:\Program Files\<DIR> Skype
[04/07/2006|07:31] C:\Program Files\<DIR> Sonic
[07/30/2007|11:42] C:\Program Files\<DIR> Sony
[05/28/2006|07:02] C:\Program Files\<DIR> SpySpotter3
[02/05/2009|09:08] C:\Program Files\<DIR> Sweet Home 3D
[04/07/2006|07:28] C:\Program Files\<DIR> Synaptics
[05/01/2009|06:12] C:\Program Files\<DIR> Trend Micro
[08/17/2004|07:31] C:\Program Files\<DIR> Uninstall Information
[05/31/2006|08:38] C:\Program Files\<DIR> VideoLAN
[08/23/2008|07:46] C:\Program Files\<DIR> Virtualis
[12/28/2006|10:18] C:\Program Files\<DIR> Visagesoft
[06/11/2006|11:01] C:\Program Files\<DIR> website
[10/29/2007|07:08] C:\Program Files\<DIR> Windows Desktop Search
[02/21/2009|10:44] C:\Program Files\<DIR> Windows Live
[11/09/2007|04:57] C:\Program Files\<DIR> Windows Live Favorites
[01/23/2009|10:22] C:\Program Files\<DIR> Windows Live SkyDrive
[02/21/2009|10:43] C:\Program Files\<DIR> Windows Live Toolbar
[05/22/2007|01:31] C:\Program Files\<DIR> Windows Media Player
[05/28/2006|07:24] C:\Program Files\<DIR> Windows NT
[08/17/2004|07:25] C:\Program Files\<DIR> WindowsUpdate
[07/30/2007|02:27] C:\Program Files\<DIR> WinZip
[08/17/2004|07:27] C:\Program Files\<DIR> xerox
[11/10/2008|11:14] C:\Program Files\<DIR> Yahoo!
[04/30/2006|07:52] C:\Program Files\<DIR> Yahoo_BB
--------------------\\ Listing des dossiers dans C:\Program Files\Common Files
[01/05/2009|01:17] C:\Program Files\Common Files\<DIR> Adobe
[08/22/2006|11:08] C:\Program Files\Common Files\<DIR> Ahead
[07/30/2007|11:40] C:\Program Files\Common Files\<DIR> InstallShield
[04/07/2006|07:21] C:\Program Files\Common Files\<DIR> Java
[07/25/2007|01:23] C:\Program Files\Common Files\<DIR> Logitech
[02/21/2009|10:40] C:\Program Files\Common Files\<DIR> Microsoft Shared
[04/30/2006|07:43] C:\Program Files\Common Files\<DIR> Motive
[08/17/2004|07:25] C:\Program Files\Common Files\<DIR> MSSoap
[04/20/2008|03:58] C:\Program Files\Common Files\<DIR> Nullsoft
[08/17/2004|07:21] C:\Program Files\Common Files\<DIR> ODBC
[04/30/2006|09:58] C:\Program Files\Common Files\<DIR> Scanner
[08/17/2004|07:25] C:\Program Files\Common Files\<DIR> Services
[03/26/2008|11:26] C:\Program Files\Common Files\<DIR> Skype
[04/07/2006|07:31] C:\Program Files\Common Files\<DIR> Sonic Shared
[07/30/2007|11:42] C:\Program Files\Common Files\<DIR> Sony Shared
[08/17/2004|07:21] C:\Program Files\Common Files\<DIR> SpeechEngines
[06/13/2007|08:04] C:\Program Files\Common Files\<DIR> System
[04/07/2006|07:30] C:\Program Files\Common Files\<DIR> TiVo Shared
[01/14/2009|08:34] C:\Program Files\Common Files\<DIR> Windows Live
[11/08/2007|05:26] C:\Program Files\Common Files\<DIR> WindowsLiveInstaller
--------------------\\ Process
( 47 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-05-01 18:27:13
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 86
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:299][D:17]-> C:\DOCUME~1\LARGEE~1\LOCALS~1\Temp
[F:868][D:0]-> C:\DOCUME~1\LARGEE~1\Cookies
[F:25840][D:59]-> C:\DOCUME~1\LARGEE~1\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - Fri 05/01/2009|18:21 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - Fri 05/01/2009|18:29 - Option : [2]
--------------------\\ Fin du rapport a 18:29:41
Microsoft Windows XP Home Edition ( v5.1.2600 ) Service Pack 2
X86-based PC ( Multiprocessor Free : Genuine Intel(R) CPU T2300 @ 1.66GHz )
BIOS : Phoenix ROM BIOS PLUS Version 1.10 A03
USER : LARGE ERIC ( Administrator )
BOOT : Normal boot
Antivirus : Trend Micro Internet Security 12.00 (Not Activated)
Firewall : ƒEƒCƒ‹ƒXƒoƒXƒ^[12 (ƒp[ƒ\ƒiƒ‹ƒtƒ@ƒCƒAƒEƒH[ƒ‹) 12 (Activated)
C:\ (Local Disk) - NTFS - Total:88 Go (Free:27 Go)
D:\ (CD or DVD) - UDF - Total:5 Go (Free:0 Go)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [2] ( Fri 05/01/2009|18:26 )
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION
Supprime! - C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\live 64 math does\kind bits.dat
Supprime! - C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\live 64 math does\kind bits.exe
Supprime! - C:\DOCUME~1\LARGEE~1\APPLIC~1\gridba~1\CopyCamp01.exe
Supprime! - C:\DOCUME~1\LARGEE~1\APPLIC~1\gridba~1\dlftmzkh.exe
Supprime! - C:\DOCUME~1\LARGEE~1\APPLIC~1\gridba~1\gfrvhiwj.exe
Supprime! - C:\DOCUME~1\LARGEE~1\APPLIC~1\gridba~1\sendbuild.exe
Supprime! - C:\DOCUME~1\LARGEE~1\LOCALS~1\Temp\nsq79.tmp
Supprime! - C:\DOCUME~1\LARGEE~1\LOCALS~1\Temp\sta31.exe
Supprime! - C:\DOCUME~1\LARGEE~1\Cookies\large_eric@advertstream[1].txt
Supprime! - C:\DOCUME~1\LARGEE~1\Cookies\large_eric@advertising[1].txt
Supprime! - C:\DOCUME~1\LARGEE~1\Cookies\large_eric@ero-advertising[2].txt
Supprime! - C:\DOCUME~1\LARGEE~1\Cookies\large_eric@banner.cotedazurpalace[2].txt
Supprime! - C:\DOCUME~1\LARGEE~1\Cookies\large_eric@cotedazurpalace[1].txt
Supprime! - C:\DOCUME~1\LARGEE~1\Cookies\large_eric@www.cotedazurpalace[1].txt
Supprime! - C:\DOCUME~1\LARGEE~1\Cookies\large_eric@adopt.euroclick[2].txt
Supprime! - C:\DOCUME~1\LARGEE~1\Cookies\large_eric@euroclick[2].txt
Supprime! - C:\DOCUME~1\LARGEE~1\Cookies\large_eric@pacificpoker[1].txt
Supprime! - C:\DOCUME~1\LARGEE~1\Cookies\large_eric@partypoker[2].txt
Supprime! - C:\WINDOWS\Tasks\A42593D0906E0788.job
Supprime! - C:\DOCUME~1\LARGEE~1\LOCALS~1\Temp\bis7A.exe
Supprime! - C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\live 64 math does
Supprime! - C:\DOCUME~1\LARGEE~1\APPLIC~1\gridba~1
Supprime! - C:\Program Files\gridba~1
Supprime! - C:\Program Files\NetPumper
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing des dossiers dans APPLIC~1
[04/07/2006|07:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Adobe
[04/30/2006|10:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Brother
[04/07/2006|07:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> InstallShield
[04/07/2006|07:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Intel
[05/05/2006|05:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Microsoft
[04/30/2006|07:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Motive
[04/30/2006|07:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> MotiveSysIDs
[08/17/2004|07:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> SBSI
[04/30/2006|08:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\<DIR> Windows Genuine Advantage
[01/05/2009|01:18] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Adobe
[05/06/2008|07:23] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> AntiVir PersonalEdition Classic
[05/22/2007|12:03] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Apple Computer
[05/28/2006|08:21] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Brother
[12/28/2006|10:18] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> eXPert PDF
[12/28/2006|10:19] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> eXPert PDF 4
[12/28/2006|10:18] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> eXPert PDF Jobs
[01/19/2009|08:05] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Google
[05/28/2006|07:50] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Intel
[02/11/2009|06:42] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Malwarebytes
[10/28/2008|08:50] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Messenger Plus!
[02/21/2009|10:43] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Microsoft
[08/04/2006|10:38] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> MSN Search Toolbar
[05/06/2008|03:55] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> program extra intra type
[03/26/2008|11:26] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Skype
[07/30/2007|11:41] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Sony Corporation
[01/30/2007|06:39] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Windows Genuine Advantage
[01/30/2007|08:38] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Windows Live Toolbar
[01/23/2009|10:23] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> WindowsLiveInstaller
[03/22/2008|03:46] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> WLInstaller
[11/10/2008|11:16] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\<DIR> Yahoo! Companion
[08/17/2004|07:31] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> Identities
[04/07/2006|07:24] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> Intel
[04/07/2006|07:23] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> Microsoft
[04/07/2006|07:22] C:\DOCUME~1\DEFAUL~1\APPLIC~1\<DIR> Sun
[05/28/2006|07:29] C:\DOCUME~1\DEFAUL~1.WIN\APPLIC~1\<DIR> Microsoft
[03/12/2008|02:21] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Adobe
[06/09/2006|01:26] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> AdobeAUM
[12/16/2007|12:38] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> AdobeUM
[09/22/2007|06:19] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> AlertInfo
[05/22/2007|12:14] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Apple Computer
[02/05/2009|09:02] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Blender Foundation
[05/28/2006|09:18] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Brother
[05/01/2009|01:41] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> dvdcss
[12/28/2006|10:19] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> eXPert PDF Editor
[12/25/2006|11:19] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Google
[12/07/2007|01:30] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> gtk-2.0
[06/04/2006|09:57] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Help
[10/29/2007|07:10] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Identities
[03/10/2009|10:36] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> InstallShield
[05/28/2006|07:51] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Intel
[06/09/2006|02:17] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Leadertech
[02/14/2007|08:12] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Macromedia
[02/11/2009|06:42] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Malwarebytes
[02/21/2009|11:08] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Microsoft
[08/04/2006|10:40] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> MSN Search Toolbar
[05/28/2006|12:18] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> MSNInstaller
[05/22/2007|01:32] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> MusicIP
[04/30/2009|09:28] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> OpenOffice.org2
[04/16/2009|02:26] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Skype
[05/21/2008|09:06] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> skypePM
[07/30/2007|11:46] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Sony Corporation
[05/29/2006|12:51] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Sun
[07/05/2008|09:04] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> U3
[05/31/2006|08:39] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> vlc
[10/29/2007|07:23] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Windows Desktop Search
[11/04/2008|09:17] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Windows Live Writer
[11/10/2008|11:14] C:\DOCUME~1\LARGEE~1\APPLIC~1\<DIR> Yahoo!
[04/30/2006|12:22] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Adobe
[04/30/2006|01:42] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> CyberLink
[04/30/2006|08:19] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Google
[08/17/2004|07:31] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Identities
[04/07/2006|07:24] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Intel
[04/30/2006|07:30] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Macromedia
[05/01/2006|04:40] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Microsoft
[04/30/2006|09:56] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Netscape
[05/24/2006|12:52] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Real
[04/07/2006|07:22] C:\DOCUME~1\LARGE_~1\APPLIC~1\<DIR> Sun
[08/17/2006|01:49] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Adobe
[10/01/2006|07:18] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Google
[05/28/2006|09:38] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Identities
[05/28/2006|09:38] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Intel
[06/28/2006|04:19] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Macromedia
[01/26/2008|01:07] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Microsoft
[08/17/2006|01:46] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> MSN Search Toolbar
[08/17/2006|01:50] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Sun
[01/26/2008|01:05] C:\DOCUME~1\LISIAN~1\APPLIC~1\<DIR> Windows Desktop Search
[08/17/2004|07:31] C:\DOCUME~1\LOCALS~1\APPLIC~1\<DIR> Microsoft
[10/29/2007|09:34] C:\DOCUME~1\LOCALS~1.NTA\APPLIC~1\<DIR> Adobe
[10/29/2007|09:36] C:\DOCUME~1\LOCALS~1.NTA\APPLIC~1\<DIR> Microsoft
[05/20/2006|02:11] C:\DOCUME~1\NETWOR~1\APPLIC~1\<DIR> Intel
[08/17/2004|07:31] C:\DOCUME~1\NETWOR~1\APPLIC~1\<DIR> Microsoft
[05/28/2006|08:42] C:\DOCUME~1\NETWOR~1.NTA\APPLIC~1\<DIR> Intel
[05/28/2006|07:29] C:\DOCUME~1\NETWOR~1.NTA\APPLIC~1\<DIR> Microsoft
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[04/10/2009 08:30 AM][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[05/01/2009 09:26 AM][--ah-----] C:\WINDOWS\tasks\SA.DAT
[08/04/2004 02:00 PM][-r-h-c---] C:\WINDOWS\tasks\desktop.ini
--------------------\\ Listing des dossiers dans C:\Program Files
[09/15/2008|11:47] C:\Program Files\<DIR> A L'AISE BREIZH
[01/05/2009|01:17] C:\Program Files\<DIR> Adobe
[08/22/2006|11:08] C:\Program Files\<DIR> Ahead
[09/22/2007|05:17] C:\Program Files\<DIR> AlertInfo
[06/22/2007|12:40] C:\Program Files\<DIR> Apple Software Update
[07/25/2007|11:43] C:\Program Files\<DIR> Audacity
[04/30/2006|07:56] C:\Program Files\<DIR> BB Security
[02/05/2009|09:02] C:\Program Files\<DIR> Blender Foundation
[05/28/2006|07:49] C:\Program Files\<DIR> Broadcom
[05/28/2006|08:58] C:\Program Files\<DIR> Brother
[06/11/2006|10:51] C:\Program Files\<DIR> bsb
[03/26/2008|11:00] C:\Program Files\<DIR> BUFFALO
[11/10/2008|11:20] C:\Program Files\<DIR> CA Yahoo! Anti-Spy
[05/22/2007|03:14] C:\Program Files\<DIR> CCleaner
[01/14/2009|08:34] C:\Program Files\<DIR> Common Files
[08/17/2004|07:25] C:\Program Files\<DIR> ComPlus Applications
[04/07/2006|07:25] C:\Program Files\<DIR> CONEXANT
[03/10/2009|10:36] C:\Program Files\<DIR> Corel
[04/07/2006|07:28] C:\Program Files\<DIR> CyberLink
[04/07/2006|07:29] C:\Program Files\<DIR> Dell
[05/28/2006|07:47] C:\Program Files\<DIR> DIFX
[04/07/2006|07:28] C:\Program Files\<DIR> Digital Line Detect
[05/01/2009|09:27] C:\Program Files\<DIR> eMule
[05/30/2006|12:53] C:\Program Files\<DIR> fohlen
[01/18/2009|11:24] C:\Program Files\<DIR> Fun Web Products
[03/07/2009|12:25] C:\Program Files\<DIR> Google
[07/30/2007|11:43] C:\Program Files\<DIR> InstallShield Installation Information
[04/07/2006|07:24] C:\Program Files\<DIR> Intel
[04/07/2006|07:24] C:\Program Files\<DIR> Intel, Inc
[04/19/2009|03:32] C:\Program Files\<DIR> Internet Explorer
[06/22/2007|12:49] C:\Program Files\<DIR> iPod
[06/22/2007|12:50] C:\Program Files\<DIR> iTunes
[02/11/2009|09:25] C:\Program Files\<DIR> Java
[01/12/2009|12:26] C:\Program Files\<DIR> JCA2000
[12/26/2007|11:07] C:\Program Files\<DIR> JRA
[11/15/2008|12:35] C:\Program Files\<DIR> listac
[09/10/2007|03:06] C:\Program Files\<DIR> Logitech
[03/28/2009|10:11] C:\Program Files\<DIR> Malwarebytes' Anti-Malware
[08/24/2008|03:05] C:\Program Files\<DIR> Messenger
[11/09/2008|07:19] C:\Program Files\<DIR> Messenger Plus! Live
[01/23/2009|10:24] C:\Program Files\<DIR> Microsoft
[05/10/2007|09:35] C:\Program Files\<DIR> Microsoft CAPICOM 2.1.0.2
[08/17/2004|07:27] C:\Program Files\<DIR> microsoft frontpage
[11/27/2006|09:34] C:\Program Files\<DIR> Microsoft Office
[03/05/2009|12:53] C:\Program Files\<DIR> Microsoft Silverlight
[10/29/2007|07:06] C:\Program Files\<DIR> Microsoft SQL Server Compact Edition
[02/21/2009|10:43] C:\Program Files\<DIR> Microsoft Sync Framework
[05/22/2006|05:28] C:\Program Files\<DIR> Modem Helper
[05/28/2006|07:26] C:\Program Files\<DIR> Movie Maker
[05/28/2006|08:01] C:\Program Files\<DIR> MSN
[08/17/2004|07:24] C:\Program Files\<DIR> MSN Gaming Zone
[02/20/2008|08:18] C:\Program Files\<DIR> MSN Messenger
[01/30/2007|08:37] C:\Program Files\<DIR> MSN Toolbar Suite
[11/17/2006|08:02] C:\Program Files\<DIR> MSXML 4.0
[05/28/2006|07:27] C:\Program Files\<DIR> NetMeeting
[04/30/2006|09:53] C:\Program Files\<DIR> Netscape
[04/07/2006|07:28] C:\Program Files\<DIR> NetWaiting
[08/24/2008|07:56] C:\Program Files\<DIR> Neuf
[05/28/2006|07:28] C:\Program Files\<DIR> Online Services
[04/15/2007|10:26] C:\Program Files\<DIR> OpenOffice.org 2.2
[06/13/2007|08:04] C:\Program Files\<DIR> Outlook Express
[11/23/2006|03:26] C:\Program Files\<DIR> PhotoFiltre
[05/22/2007|12:03] C:\Program Files\<DIR> QuickTime
[08/03/2007|11:49] C:\Program Files\<DIR> RawFlow
[04/07/2006|07:25] C:\Program Files\<DIR> Sigmatel
[05/20/2008|02:31] C:\Program Files\<DIR> Skype
[04/07/2006|07:31] C:\Program Files\<DIR> Sonic
[07/30/2007|11:42] C:\Program Files\<DIR> Sony
[05/28/2006|07:02] C:\Program Files\<DIR> SpySpotter3
[02/05/2009|09:08] C:\Program Files\<DIR> Sweet Home 3D
[04/07/2006|07:28] C:\Program Files\<DIR> Synaptics
[05/01/2009|06:12] C:\Program Files\<DIR> Trend Micro
[08/17/2004|07:31] C:\Program Files\<DIR> Uninstall Information
[05/31/2006|08:38] C:\Program Files\<DIR> VideoLAN
[08/23/2008|07:46] C:\Program Files\<DIR> Virtualis
[12/28/2006|10:18] C:\Program Files\<DIR> Visagesoft
[06/11/2006|11:01] C:\Program Files\<DIR> website
[10/29/2007|07:08] C:\Program Files\<DIR> Windows Desktop Search
[02/21/2009|10:44] C:\Program Files\<DIR> Windows Live
[11/09/2007|04:57] C:\Program Files\<DIR> Windows Live Favorites
[01/23/2009|10:22] C:\Program Files\<DIR> Windows Live SkyDrive
[02/21/2009|10:43] C:\Program Files\<DIR> Windows Live Toolbar
[05/22/2007|01:31] C:\Program Files\<DIR> Windows Media Player
[05/28/2006|07:24] C:\Program Files\<DIR> Windows NT
[08/17/2004|07:25] C:\Program Files\<DIR> WindowsUpdate
[07/30/2007|02:27] C:\Program Files\<DIR> WinZip
[08/17/2004|07:27] C:\Program Files\<DIR> xerox
[11/10/2008|11:14] C:\Program Files\<DIR> Yahoo!
[04/30/2006|07:52] C:\Program Files\<DIR> Yahoo_BB
--------------------\\ Listing des dossiers dans C:\Program Files\Common Files
[01/05/2009|01:17] C:\Program Files\Common Files\<DIR> Adobe
[08/22/2006|11:08] C:\Program Files\Common Files\<DIR> Ahead
[07/30/2007|11:40] C:\Program Files\Common Files\<DIR> InstallShield
[04/07/2006|07:21] C:\Program Files\Common Files\<DIR> Java
[07/25/2007|01:23] C:\Program Files\Common Files\<DIR> Logitech
[02/21/2009|10:40] C:\Program Files\Common Files\<DIR> Microsoft Shared
[04/30/2006|07:43] C:\Program Files\Common Files\<DIR> Motive
[08/17/2004|07:25] C:\Program Files\Common Files\<DIR> MSSoap
[04/20/2008|03:58] C:\Program Files\Common Files\<DIR> Nullsoft
[08/17/2004|07:21] C:\Program Files\Common Files\<DIR> ODBC
[04/30/2006|09:58] C:\Program Files\Common Files\<DIR> Scanner
[08/17/2004|07:25] C:\Program Files\Common Files\<DIR> Services
[03/26/2008|11:26] C:\Program Files\Common Files\<DIR> Skype
[04/07/2006|07:31] C:\Program Files\Common Files\<DIR> Sonic Shared
[07/30/2007|11:42] C:\Program Files\Common Files\<DIR> Sony Shared
[08/17/2004|07:21] C:\Program Files\Common Files\<DIR> SpeechEngines
[06/13/2007|08:04] C:\Program Files\Common Files\<DIR> System
[04/07/2006|07:30] C:\Program Files\Common Files\<DIR> TiVo Shared
[01/14/2009|08:34] C:\Program Files\Common Files\<DIR> Windows Live
[11/08/2007|05:26] C:\Program Files\Common Files\<DIR> WindowsLiveInstaller
--------------------\\ Process
( 47 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-05-01 18:27:13
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 86
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:299][D:17]-> C:\DOCUME~1\LARGEE~1\LOCALS~1\Temp
[F:868][D:0]-> C:\DOCUME~1\LARGEE~1\Cookies
[F:25840][D:59]-> C:\DOCUME~1\LARGEE~1\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - Fri 05/01/2009|18:21 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - Fri 05/01/2009|18:29 - Option : [2]
--------------------\\ Fin du rapport a 18:29:41
Re,
Très bien ;)
▶ Télécharge random's system information tool (RSIT) et enregistre le sur ton bureau.
▶ Double clique sur RSIT.exe pour lancer l'outil.
▶ Clique sur ' continue ' à l'écran Disclaimer.
▶ Si l'outil HIjackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera et tu devras accepter la licence.
▶ Une fois le scan fini , 2 rapports vont apparaitre. Poste le contenu des 2 rapports séparément.
( log.txt & info.txt )
(CTRL+A Pour tout selectionner , CTRL+C pour copier et CTRL+V pour coller )
Si un rapport ne passe pas faire une alerte à la conciergerie avec le /!\ jaune.
Très bien ;)
▶ Télécharge random's system information tool (RSIT) et enregistre le sur ton bureau.
▶ Double clique sur RSIT.exe pour lancer l'outil.
▶ Clique sur ' continue ' à l'écran Disclaimer.
▶ Si l'outil HIjackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera et tu devras accepter la licence.
▶ Une fois le scan fini , 2 rapports vont apparaitre. Poste le contenu des 2 rapports séparément.
( log.txt & info.txt )
(CTRL+A Pour tout selectionner , CTRL+C pour copier et CTRL+V pour coller )
Si un rapport ne passe pas faire une alerte à la conciergerie avec le /!\ jaune.
Logfile of random's system information tool 1.06 (written by random/random)
Run by LARGE ERIC at 2009-05-01 23:45:13
Microsoft Windows XP Home Edition Service Pack 2
System drive C: has 28 GB (31%) free of 91 GB
Total RAM: 502 MB (23% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:45:48 PM, on 5/1/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16827)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
C:\WINDOWS\system32\brsvc01a.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\brss01a.exe
c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
C:\WINDOWS\system32\Brmfrmps.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Trend Micro\Virus Buster 12\TMAS_OE\TMAS_OEMon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Neuf\Media Center\MediaCenter.exe
C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\eMule\emule.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\iTunes\iTunes.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Windows Live\Toolbar\wltuser.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Documents and Settings\LARGE ERIC\Local Settings\Temporary Internet Files\Content.IE5\4K9V4DV1\RSIT[2].exe
C:\Program Files\trend micro\LARGE ERIC.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://actus.sfr.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://actus.sfr.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/?p=us
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://actus.sfr.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://actus.sfr.fr
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKCU\..\Run: [OE_OEM] "C:\Program Files\Trend Micro\Virus Buster 12\TMAS_OE\TMAS_OEMon.exe"
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_8 -reboot 1
O4 - HKCU\..\Run: [Neuf Media Center] "C:\Program Files\Neuf\Media Center\MediaCenter.exe"
O4 - HKCU\..\Run: [Search Protection] C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] "c:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [DWQueuedReporting] "c:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'Default user')
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: &MSN Search - res://C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O9 - Extra button: Stop Pub - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - C:\Program Files\JCA2000\StopPub\StopPub.exe
O9 - Extra 'Tools' menuitem: Stop Pub - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - C:\Program Files\JCA2000\StopPub\StopPub.exe
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/20070501/qtinstall.info.apple.com/qtactivex/qtplugin.cab
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {48DF87EE-F2DE-11D8-BE7F-302050C10815} (FlyLoader Class) - http://www.flygimp.com/loadergimp_fr.cab
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://dl8-cdn-01.sun.com/s/ESD7/JSCDL/jdk/6u12-b04/jinstall-6u12-windows-i586-jc.cab?e=1234377169315&h=20d55af4f3fa498023a3771557eb86b6/&filename=jinstall-6u12-windows-i586-jc.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{2C303317-4915-4F27-A266-0F4837F61744}: NameServer = 192.168.2.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{2C303317-4915-4F27-A266-0F4837F61744}: NameServer = 192.168.2.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{2C303317-4915-4F27-A266-0F4837F61744}: NameServer = 192.168.2.1
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O23 - Service: Brother Popup Suspend service for Resource manager (brmfrmps) - Brother Industries, Ltd. - C:\WINDOWS\system32\Brmfrmps.exe
O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\system32\brsvc01a.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: PACSPTISVR - Unknown owner - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Trend Micro Central Control Component (PcCtlCom) - Unknown owner - C:\PROGRA~1\TRENDM~1\VIRUSB~1\PcCtlCom.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: SonicStage Back-End Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SsBeSvc.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: Trend Micro Real-time Service (Tmntsrv) - Trend Micro Incorporated. - C:\PROGRA~1\TRENDM~1\VIRUSB~1\Tmntsrv.exe
O23 - Service: Trend Micro Personal Firewall (TmPfw) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\VIRUSB~1\TmPfw.exe
O23 - Service: Trend Micro Proxy Service (tmproxy) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\VIRUSB~1\tmproxy.exe
O23 - Service: Intel(R) PROSet/Wireless SSO Service (WLANKEEPER) - Intel(R) Corporation - C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
Run by LARGE ERIC at 2009-05-01 23:45:13
Microsoft Windows XP Home Edition Service Pack 2
System drive C: has 28 GB (31%) free of 91 GB
Total RAM: 502 MB (23% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:45:48 PM, on 5/1/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16827)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
C:\WINDOWS\system32\brsvc01a.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\brss01a.exe
c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
C:\WINDOWS\system32\Brmfrmps.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Trend Micro\Virus Buster 12\TMAS_OE\TMAS_OEMon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Neuf\Media Center\MediaCenter.exe
C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\eMule\emule.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\iTunes\iTunes.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Windows Live\Toolbar\wltuser.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Documents and Settings\LARGE ERIC\Local Settings\Temporary Internet Files\Content.IE5\4K9V4DV1\RSIT[2].exe
C:\Program Files\trend micro\LARGE ERIC.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://actus.sfr.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://actus.sfr.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/?p=us
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://actus.sfr.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://actus.sfr.fr
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKCU\..\Run: [OE_OEM] "C:\Program Files\Trend Micro\Virus Buster 12\TMAS_OE\TMAS_OEMon.exe"
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_8 -reboot 1
O4 - HKCU\..\Run: [Neuf Media Center] "C:\Program Files\Neuf\Media Center\MediaCenter.exe"
O4 - HKCU\..\Run: [Search Protection] C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] "c:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [DWQueuedReporting] "c:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'Default user')
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: &MSN Search - res://C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O9 - Extra button: Stop Pub - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - C:\Program Files\JCA2000\StopPub\StopPub.exe
O9 - Extra 'Tools' menuitem: Stop Pub - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - C:\Program Files\JCA2000\StopPub\StopPub.exe
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/20070501/qtinstall.info.apple.com/qtactivex/qtplugin.cab
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {48DF87EE-F2DE-11D8-BE7F-302050C10815} (FlyLoader Class) - http://www.flygimp.com/loadergimp_fr.cab
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://dl8-cdn-01.sun.com/s/ESD7/JSCDL/jdk/6u12-b04/jinstall-6u12-windows-i586-jc.cab?e=1234377169315&h=20d55af4f3fa498023a3771557eb86b6/&filename=jinstall-6u12-windows-i586-jc.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{2C303317-4915-4F27-A266-0F4837F61744}: NameServer = 192.168.2.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{2C303317-4915-4F27-A266-0F4837F61744}: NameServer = 192.168.2.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{2C303317-4915-4F27-A266-0F4837F61744}: NameServer = 192.168.2.1
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O23 - Service: Brother Popup Suspend service for Resource manager (brmfrmps) - Brother Industries, Ltd. - C:\WINDOWS\system32\Brmfrmps.exe
O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\system32\brsvc01a.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: PACSPTISVR - Unknown owner - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Trend Micro Central Control Component (PcCtlCom) - Unknown owner - C:\PROGRA~1\TRENDM~1\VIRUSB~1\PcCtlCom.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: SonicStage Back-End Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SsBeSvc.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: Trend Micro Real-time Service (Tmntsrv) - Trend Micro Incorporated. - C:\PROGRA~1\TRENDM~1\VIRUSB~1\Tmntsrv.exe
O23 - Service: Trend Micro Personal Firewall (TmPfw) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\VIRUSB~1\TmPfw.exe
O23 - Service: Trend Micro Proxy Service (tmproxy) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\VIRUSB~1\tmproxy.exe
O23 - Service: Intel(R) PROSet/Wireless SSO Service (WLANKEEPER) - Intel(R) Corporation - C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
Re,
▶ Télécharge et installe MalwareByte's Anti-Malware
Malwarebyte
▶ Mets le à jour
▶ Double clique sur le raccourci de MalwareByte's Anti-Malware qui est sur le bureau.
▶ Sélectionne Exécuter un examen COMPLET si ce n'est pas déjà fait
▶ clique sur Rechercher
▶ Une fois le scan terminé, une fenêtre s'ouvre, clique sur sur Ok
▶ Si MalwareByte's n'a rien détecté, clique sur Ok Un rapport va apparaître ferme-le.
▶ Si MalwareByte's a détecté des infections, clique sur Afficher les résultats ensuite sur Supprimer la sélection
▶ Enregistre le rapport sur ton Bureau comme cela il sera plus facile à retrouver, poste ensuite ce rapport.
Note : Si MalwareByte's a besoin de redémarrer pour terminer la suppression, accepte en cliquant sur Ok
Tutoriel pour MalwareByte's
Si un rapport ne passe pas faire une alerte à la conciergerie avec le /!\ jaune.
▶ Télécharge et installe MalwareByte's Anti-Malware
Malwarebyte
▶ Mets le à jour
▶ Double clique sur le raccourci de MalwareByte's Anti-Malware qui est sur le bureau.
▶ Sélectionne Exécuter un examen COMPLET si ce n'est pas déjà fait
▶ clique sur Rechercher
▶ Une fois le scan terminé, une fenêtre s'ouvre, clique sur sur Ok
▶ Si MalwareByte's n'a rien détecté, clique sur Ok Un rapport va apparaître ferme-le.
▶ Si MalwareByte's a détecté des infections, clique sur Afficher les résultats ensuite sur Supprimer la sélection
▶ Enregistre le rapport sur ton Bureau comme cela il sera plus facile à retrouver, poste ensuite ce rapport.
Note : Si MalwareByte's a besoin de redémarrer pour terminer la suppression, accepte en cliquant sur Ok
Tutoriel pour MalwareByte's
Si un rapport ne passe pas faire une alerte à la conciergerie avec le /!\ jaune.
Malwarebytes' Anti-Malware 1.36
Version de la base de données: 2067
Windows 5.1.2600 Service Pack 2
5/2/2009 9:52:22 PM
mbam-log-2009-05-02 (21-52-22).txt
Type de recherche: Examen complet (C:\|)
Eléments examinés: 200111
Temps écoulé: 1 hour(s), 1 minute(s), 42 second(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
(Aucun élément nuisible détecté)
Version de la base de données: 2067
Windows 5.1.2600 Service Pack 2
5/2/2009 9:52:22 PM
mbam-log-2009-05-02 (21-52-22).txt
Type de recherche: Examen complet (C:\|)
Eléments examinés: 200111
Temps écoulé: 1 hour(s), 1 minute(s), 42 second(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
(Aucun élément nuisible détecté)
Re,
Télécharge OTCleanIt de OldTimer sur ton Bureau
Lance OTCleanIt avec un double-clic (sous Vista, lance-le en cliquant droit sur OTCleanIt.exe et en sélectionnant "exécuter en tant qu'administrateur")
Appuie sur le bouton "CleanUp!"
A la question "begin cleanup process?", réponds "YES"
A la fin de l'opération, si OTCleanIt demande de redémarrer ("Do you want to reboot now?"), ferme ce que tu es en train de faire (internet, documents divers...) et clique sur "YES":
Au redémarrage, OTCleanIt aura supprimé les outils de désinfection, et se sera même auto-détruit!
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
> Fais un scan en ligne avec Kaspersky : Kaspersky
N.B. : Le scan ne marche que sous Internet Explorer.
- Commence par connecter tout ton matériel de stockage à ton PC (clés USB, DD amovible...). Allume les si necessaire.
- Sous Démonstration en ligne, on t'explique la marche à suivre, et pour lancer le scan il faut sélectionner < Exécuter l'analyse en ligne >.
- On va te demander de télécharger un contrôle active x, accepte .
- Dans le menu < Choisissez la cible de l'analyse >, sélectionne < Poste de travail >. Le scan va commencer.
- Poste le rapport qui sera généré stp. (clique sur <enregistrer le rapport> puis sauvegarde-le sur ton bureau en choisissant "fichier texte (*.txt)" pour l'extension).
S'il y a un problème, assure toi que les contrôles active x sont bien configurés dans les options internet comme décrit sur ce lien : clic ici
Rappel : le scan est à faire sous Internet Explorer
Tuto ici si problème
NOTE : Si tu reçois le message "La licence de Kaspersky On-line Scanner est périmée", va dans Ajout/Suppression de programmes puis désinstalle On-Line Scanner, reconnecte toi sur le site de Kaspersky pour retenter le scan en ligne.
Pour le rapport Kaspersky il faut que tu choisisses "Afficher le rapport" puis que tu l'enregistres sur ton bureau sous forme de fichier texte (type de fichier "tous les fichiers").
Télécharge OTCleanIt de OldTimer sur ton Bureau
Lance OTCleanIt avec un double-clic (sous Vista, lance-le en cliquant droit sur OTCleanIt.exe et en sélectionnant "exécuter en tant qu'administrateur")
Appuie sur le bouton "CleanUp!"
A la question "begin cleanup process?", réponds "YES"
A la fin de l'opération, si OTCleanIt demande de redémarrer ("Do you want to reboot now?"), ferme ce que tu es en train de faire (internet, documents divers...) et clique sur "YES":
Au redémarrage, OTCleanIt aura supprimé les outils de désinfection, et se sera même auto-détruit!
xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
> Fais un scan en ligne avec Kaspersky : Kaspersky
N.B. : Le scan ne marche que sous Internet Explorer.
- Commence par connecter tout ton matériel de stockage à ton PC (clés USB, DD amovible...). Allume les si necessaire.
- Sous Démonstration en ligne, on t'explique la marche à suivre, et pour lancer le scan il faut sélectionner < Exécuter l'analyse en ligne >.
- On va te demander de télécharger un contrôle active x, accepte .
- Dans le menu < Choisissez la cible de l'analyse >, sélectionne < Poste de travail >. Le scan va commencer.
- Poste le rapport qui sera généré stp. (clique sur <enregistrer le rapport> puis sauvegarde-le sur ton bureau en choisissant "fichier texte (*.txt)" pour l'extension).
S'il y a un problème, assure toi que les contrôles active x sont bien configurés dans les options internet comme décrit sur ce lien : clic ici
Rappel : le scan est à faire sous Internet Explorer
Tuto ici si problème
NOTE : Si tu reçois le message "La licence de Kaspersky On-line Scanner est périmée", va dans Ajout/Suppression de programmes puis désinstalle On-Line Scanner, reconnecte toi sur le site de Kaspersky pour retenter le scan en ligne.
Pour le rapport Kaspersky il faut que tu choisisses "Afficher le rapport" puis que tu l'enregistres sur ton bureau sous forme de fichier texte (type de fichier "tous les fichiers").
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 3:58:57 PM, on 5/1/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16827)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
C:\WINDOWS\system32\brsvc01a.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\brss01a.exe
c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
C:\WINDOWS\system32\Brmfrmps.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Trend Micro\Virus Buster 12\TMAS_OE\TMAS_OEMon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Neuf\Media Center\MediaCenter.exe
C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\eMule\emule.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\iTunes\iTunes.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Windows Live\Toolbar\wltuser.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://actus.sfr.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://actus.sfr.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/?p=us
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://actus.sfr.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://actus.sfr.fr
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKLM\..\Run: [MATH DOES FIRST MODE] C:\Documents and Settings\All Users.WINDOWS\Application Data\live 64 math does\kind bits.exe
O4 - HKCU\..\Run: [OE_OEM] "C:\Program Files\Trend Micro\Virus Buster 12\TMAS_OE\TMAS_OEMon.exe"
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_8 -reboot 1
O4 - HKCU\..\Run: [Neuf Media Center] "C:\Program Files\Neuf\Media Center\MediaCenter.exe"
O4 - HKCU\..\Run: [Search Protection] C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Plus Hold] C:\DOCUME~1\LARGEE~1\APPLIC~1\GRIDBA~1\sendbuild.exe
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] "c:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [DWQueuedReporting] "c:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'Default user')
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: &MSN Search - res://C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O9 - Extra button: Stop Pub - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - C:\Program Files\JCA2000\StopPub\StopPub.exe
O9 - Extra 'Tools' menuitem: Stop Pub - {10954C80-4F0F-11d3-B17C-00C0DFE39736} - C:\Program Files\JCA2000\StopPub\StopPub.exe
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/20070501/qtinstall.info.apple.com/qtactivex/qtplugin.cab
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {48DF87EE-F2DE-11D8-BE7F-302050C10815} (FlyLoader Class) - http://www.flygimp.com/loadergimp_fr.cab
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://dl8-cdn-01.sun.com/s/ESD7/JSCDL/jdk/6u12-b04/jinstall-6u12-windows-i586-jc.cab?e=1234377169315&h=20d55af4f3fa498023a3771557eb86b6/&filename=jinstall-6u12-windows-i586-jc.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{2C303317-4915-4F27-A266-0F4837F61744}: NameServer = 192.168.2.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{2C303317-4915-4F27-A266-0F4837F61744}: NameServer = 192.168.2.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{2C303317-4915-4F27-A266-0F4837F61744}: NameServer = 192.168.2.1
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O23 - Service: Brother Popup Suspend service for Resource manager (brmfrmps) - Brother Industries, Ltd. - C:\WINDOWS\system32\Brmfrmps.exe
O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\system32\brsvc01a.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: PACSPTISVR - Unknown owner - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Trend Micro Central Control Component (PcCtlCom) - Unknown owner - C:\PROGRA~1\TRENDM~1\VIRUSB~1\PcCtlCom.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: SonicStage Back-End Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SsBeSvc.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: Trend Micro Real-time Service (Tmntsrv) - Trend Micro Incorporated. - C:\PROGRA~1\TRENDM~1\VIRUSB~1\Tmntsrv.exe
O23 - Service: Trend Micro Personal Firewall (TmPfw) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\VIRUSB~1\TmPfw.exe
O23 - Service: Trend Micro Proxy Service (tmproxy) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\VIRUSB~1\tmproxy.exe
O23 - Service: Intel(R) PROSet/Wireless SSO Service (WLANKEEPER) - Intel(R) Corporation - C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe