Sujet Précédent Sujet Suivant

Problème Win32

Axion59 Messages postés 171 Statut Membre -  
 Utilisateur anonyme -
Bonjour,

J'essaye de télécharger "Titan poker", j'y arrive, mais je ne peux pas le lancer, il me met un message d'erreur :

C:\Documents and Settings\XXX\Bureau/Setup.Poker.exe n'est pas une application Win32 valide.

Pourriez-vous m'aider ?

51 réponses

Précédent
Réponse 21 / 51
Utilisateur anonyme
 
Re,

Fait ce qui suit alors:

---> Télécharge OTM (OldTimer) sur ton Bureau :
http://oldtimer.geekstogo.com/OTMoveIt3.exe

---> Double-clique sur OTMoveIt3.exe afin de le lancer.

---> Copie (Ctrl+C) le texte suivant en gras ci-dessous :

:processes
explorer.exe

:files
c:\windows\lsass.exe
c:\program files\ipwins\ipwins.exe
c:\documents and settings\all users\application data\flag ace stupid data\fork skip.exe

:reg
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\winlogin]

:commands
[purity]
[emptytemp]
[start explorer]
[reboot]


---> Colle (Ctrl+V) le texte précédemment copié dans le cadre Paste Instructions for Items to be Moved.

---> Clique maintenant sur le bouton MoveIt! puis ferme OTMoveIt3.

Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
Accepte en cliquant sur YES.

---> Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
Le nom du rapport correspond au moment de sa création : date_heure.log
0
Réponse 22 / 51
Axion59 Messages postés 171 Statut Membre 5
 
Voilà :
========== PROCESSES ==========
Process explorer.exe killed successfully.
========== FILES ==========
File/Folder c:\windows\lsass.exe not found.
File/Folder c:\program files\ipwins\ipwins.exe not found.
c:\documents and settings\all users\application data\flag ace stupid data\Fork skip.exe moved successfully.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\winlogin\\ deleted successfully.
========== COMMANDS ==========
C:\Documents and Settings\malika\Application Data\Αdobe moved successfully.
File delete failed. C:\DOCUME~1\malika\LOCALS~1\Temp\wrd1002c.~lk\0.mdd scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\malika\LOCALS~1\Temp\wrd1002c.~lk\1.mdd scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\malika\LOCALS~1\Temp\wrd1002c.~lk\2.mdd scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\malika\LOCALS~1\Temp\wrd1002c.~lk\3.mdd scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\malika\LOCALS~1\Temp\wrd1002c.~lk\4.mdd scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\malika\LOCALS~1\Temp\wrd1002c.~lk\5.mdd scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\malika\LOCALS~1\Temp\wrd1002c.~lk\6.mdd scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\malika\LOCALS~1\Temp\wrd1002c.~lk\7.mdd scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\malika\LOCALS~1\Temp\WCESLog.log scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Internet Explorer cache folder emptied.
File delete failed. C:\Documents and Settings\malika\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
User's Temporary Internet Files folder emptied.
Local Service Temp folder emptied.
Local Service Temporary Internet Files folder emptied.
Network Service Temp folder emptied.
File delete failed. C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
Network Service Temporary Internet Files folder emptied.
File delete failed. C:\WINDOWS\temp\_avast4_\Webshlock.txt scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_7f0.dat scheduled to be deleted on reboot.
Windows Temp folder emptied.
Java cache emptied.
File delete failed. C:\Documents and Settings\malika\Local Settings\Application Data\Mozilla\Firefox\Profiles\mfc4idnl.default\Cache\_CACHE_001_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\malika\Local Settings\Application Data\Mozilla\Firefox\Profiles\mfc4idnl.default\Cache\_CACHE_002_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\malika\Local Settings\Application Data\Mozilla\Firefox\Profiles\mfc4idnl.default\Cache\_CACHE_003_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\malika\Local Settings\Application Data\Mozilla\Firefox\Profiles\mfc4idnl.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\malika\Local Settings\Application Data\Mozilla\Firefox\Profiles\mfc4idnl.default\XUL.mfl scheduled to be deleted on reboot.
FireFox cache emptied.
Temp folders emptied.
Explorer started successfully

OTMoveIt3 by OldTimer - Version 1.0.11.0 log created on 05242009_134808

Files moved on Reboot...
C:\DOCUME~1\malika\LOCALS~1\Temp\wrd1002c.~lk\0.mdd moved successfully.
C:\DOCUME~1\malika\LOCALS~1\Temp\wrd1002c.~lk\1.mdd moved successfully.
C:\DOCUME~1\malika\LOCALS~1\Temp\wrd1002c.~lk\2.mdd moved successfully.
C:\DOCUME~1\malika\LOCALS~1\Temp\wrd1002c.~lk\3.mdd moved successfully.
C:\DOCUME~1\malika\LOCALS~1\Temp\wrd1002c.~lk\4.mdd moved successfully.
C:\DOCUME~1\malika\LOCALS~1\Temp\wrd1002c.~lk\5.mdd moved successfully.
C:\DOCUME~1\malika\LOCALS~1\Temp\wrd1002c.~lk\6.mdd moved successfully.
C:\DOCUME~1\malika\LOCALS~1\Temp\wrd1002c.~lk\7.mdd moved successfully.
C:\DOCUME~1\malika\LOCALS~1\Temp\WCESLog.log moved successfully.
File C:\WINDOWS\temp\_avast4_\Webshlock.txt not found!
File move failed. C:\WINDOWS\temp\Perflib_Perfdata_7f0.dat scheduled to be moved on reboot.
C:\Documents and Settings\malika\Local Settings\Application Data\Mozilla\Firefox\Profiles\mfc4idnl.default\Cache\_CACHE_001_ moved successfully.
C:\Documents and Settings\malika\Local Settings\Application Data\Mozilla\Firefox\Profiles\mfc4idnl.default\Cache\_CACHE_002_ moved successfully.
C:\Documents and Settings\malika\Local Settings\Application Data\Mozilla\Firefox\Profiles\mfc4idnl.default\Cache\_CACHE_003_ moved successfully.
C:\Documents and Settings\malika\Local Settings\Application Data\Mozilla\Firefox\Profiles\mfc4idnl.default\Cache\_CACHE_MAP_ moved successfully.
C:\Documents and Settings\malika\Local Settings\Application Data\Mozilla\Firefox\Profiles\mfc4idnl.default\XUL.mfl moved successfully.
0
Réponse 23 / 51
Utilisateur anonyme
 
Re,

fait sdfix en mode sans échec.

merci
0
Réponse 24 / 51
Axion59 Messages postés 171 Statut Membre 5
 
Je n'arrive pas à lancer SDIFs en mode sans echec...
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 25 / 51
Utilisateur anonyme
 
Re,

Refait moi un log avec RSIT.

++
0
Réponse 26 / 51
Axion59 Messages postés 171 Statut Membre 5
 
Logfile of random's system information tool 1.06 (written by random/random)
Run by malika at 2009-05-24 13:56:43
Microsoft Windows XP Professionnel Service Pack 2
System drive C: has 152 MB (2%) free of 7 GB
Total RAM: 511 MB (45% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:56:53, on 24/05/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
E:\Jeux vidéo\aswUpdSv.exe
E:\Jeux vidéo\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
E:\Jeux vidéo\ashMaiSv.exe
E:\Jeux vidéo\ashWebSv.exe
C:\WINDOWS\system32\taskswitch.exe
C:\Fichier\Nero\NEROTO~1\DRIVES~1.EXE
C:\Program Files\Lexmark 6200 Series\lxbumon.exe
C:\Program Files\Lexmark 6200 Series\ezprint.exe
E:\iTunesHelper.exe
E:\JEUXVI~1\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\lclock.exe
C:\PROGRA~1\MICROS~2\wcescomm.exe
C:\Program Files\SFRWidget\WidgetSFR.exe
C:\PROGRA~1\MICROS~2\rapimgr.exe
C:\WINDOWS\system32\lxbucoms.exe
C:\Program Files\iPod\bin\iPodService.exe
E:\Mes documents\firefox.exe
C:\Documents and Settings\malika\Bureau\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\malika.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.bing.com/spresults.aspx
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://home.sweetim.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Systeme\SPYBOT~1\SDHelper.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - (no file)
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - (no file)
O4 - HKLM\..\Run: [CoolSwitch] C:\WINDOWS\system32\taskswitch.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [Nero DriveSpeed] C:\Fichier\Nero\NEROTO~1\DRIVES~1.EXE
O4 - HKLM\..\Run: [LXBUCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXBUtime.dll,_RunDLLEntry@16
O4 - HKLM\..\Run: [lxbumon.exe] "C:\Program Files\Lexmark 6200 Series\lxbumon.exe"
O4 - HKLM\..\Run: [FaxCenterServer] "C:\Program Files\Lexmark Fax Solutions\fm3032.exe" /s
O4 - HKLM\..\Run: [EzPrint] "C:\Program Files\Lexmark 6200 Series\ezprint.exe"
O4 - HKLM\..\Run: [OSSelectorReinstall] C:\Program Files\Fichiers communs\Acronis\Acronis Disk Director\oss_reinstall.exe
O4 - HKLM\..\Run: [iTunesHelper] "E:\iTunesHelper.exe"
O4 - HKLM\..\Run: [avast!] E:\JEUXVI~1\ashDisp.exe
O4 - HKLM\..\RunOnce: [WIAWizardMenu] RUNDLL32.EXE C:\WINDOWS\system32\sti_ci.dll,WiaCreateWizardMenu
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LClock] lclock.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\PROGRA~1\MICROS~2\wcescomm.exe"
O4 - HKCU\..\Policies\Explorer\Run: [{B21A6099-0960-1036-0625-030624030021}] "C:\Program Files\Fichiers communs\{B21A6099-0960-1036-0625-030624030021}\Update.exe" mc-110-12-0001411
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [LSD_III] %systemroot%\LSD\end.cmd (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-20\..\RunOnce: [LSD_III] %systemroot%\LSD\end.cmd (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [LSD_III] %systemroot%\LSD\end.cmd (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [LSD_III] %systemroot%\LSD\end.cmd (User 'Default user')
O4 - Startup: Anja in Paris
O4 - Startup: Widget SFR.lnk = C:\Program Files\SFRWidget\WidgetSFR.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\BUREAU~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?bd217005329d4ac8a2cbe2187dfa1cc6
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?bd217005329d4ac8a2cbe2187dfa1cc6
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~2\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~2\INetRepl.dll
O9 - Extra 'Tools' menuitem: Mobilen Favoriten erstellen... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~2\INetRepl.dll
O9 - Extra button: Titan Poker - {49783ED4-258D-4f9f-BE11-137C18D3E543} - C:\Poker\Titan Poker\casino.exe
O9 - Extra 'Tools' menuitem: Titan Poker - {49783ED4-258D-4f9f-BE11-137C18D3E543} - C:\Poker\Titan Poker\casino.exe
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: PartyPoker.net - {F4430FE8-2638-42e5-B849-800749B94EED} - C:\Program Files\PartyGaming.Net\PartyPokerNet\RunPF.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyPoker.net - {F4430FE8-2638-42e5-B849-800749B94EED} - C:\Program Files\PartyGaming.Net\PartyPokerNet\RunPF.exe (file missing)
O9 - Extra button: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O15 - Trusted Zone: https://login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=0&client-request-id=e423e5b7-9237-45e1-87b0-e23b7e684eee&protectedtoken=true&domain_hint=movitex.com&nonce=637165974542077127.db8327aa-66dd-49d4-9dfb-d5b235b9cf73&state=DctNCoAgEEBhrYO0a2f-O7mQzjI2BUEiRFTHz8X3do8zxvqma7hqYRAs6OAjOO-MAtAGJsqzNYAoQiASLpITkfYsyGdjfY7rDpa3d5D1RblcG54llfoc9_ZNay3jQ6ngcf4
O15 - Trusted Zone: http://carrefour.neolane.net
O21 - SSODL: hksrv.dll - {EC169E47-DC38-486D-8940-F62C5AB3FBDD} - hksrv.dll (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - E:\Jeux vidéo\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - E:\Jeux vidéo\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - E:\Jeux vidéo\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - E:\Jeux vidéo\ashWebSv.exe
O23 - Service: C-DillaSrv - C-Dilla Ltd - C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - Unknown owner - C:\Program Files\MAGIX\Common\Database\bin\fbserver.exe (file missing)
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: lxbu_device - Lexmark International, Inc. - C:\WINDOWS\system32\lxbucoms.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Systeme\TuneUp Utilities\WinStylerThemeSvc.exe
O23 - Service: UPnPService - Magix AG - C:\Program Files\Fichiers communs\MAGIX Shared\UPnPService\UPnPService.exe
0
Réponse 27 / 51
Utilisateur anonyme
 
Re,

Télécharge Lop S&D

▶ Double-clique dessus pour lancer l'installation

▶ Puis double-clique sur le raccourci Lop S&D présent sur ton bureau

▶ Séléctionne la langue souhaitée

▶ Puis choisis l'Option 1 ( Recherche )

▶ Patiente jusqu'à la fin du scan

▶ Poste le rapport généré ( C:lopR.txt )

Tutoriel

Si un rapport ne passe pas faire une alerte à la conciergerie avec le /!\ jaune.
0
Réponse 28 / 51
Axion59 Messages postés 171 Statut Membre 5
 
Le truc que j'ai lancer s'arrête à : "Recherche de fichiers avec Catchme ..."
0
Réponse 29 / 51
Utilisateur anonyme
 
Re,

Bon fait sa avant:

Télécharge et installe MalwareByte's Anti-Malware
Malwarebyte

Mets le à jour

▶ Double clique sur le raccourci de MalwareByte's Anti-Malware qui est sur le bureau.

▶ Sélectionne Exécuter un examen COMPLET si ce n'est pas déjà fait

▶ clique sur Rechercher

▶ Une fois le scan terminé, une fenêtre s'ouvre, clique sur sur Ok

Si MalwareByte's n'a rien détecté, clique sur Ok Un rapport va apparaître ferme-le.

Si MalwareByte's a détecté des infections, clique sur Afficher les résultats ensuite sur Supprimer la sélection

Enregistre le rapport sur ton Bureau comme cela il sera plus facile à retrouver, poste ensuite ce rapport.

Note : Si MalwareByte's a besoin de redémarrer pour terminer la suppression, accepte en cliquant sur Ok

Tutoriel pour MalwareByte's

Si un rapport ne passe pas faire une alerte à la conciergerie avec le /!\ jaune.
0
Réponse 30 / 51
Axion59 Messages postés 171 Statut Membre 5
 
Ah, c'est bon pour le "truc" :p :

--------------------\\ Lop S&D 4.2.5-0 XP/Vista

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 24/05/2009|14:01 )

--------------------\\ Listing des dossiers dans APPLIC~1

[28/03/2009|21:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{00D89592-F643-4D8D-8F0F-AFAE0F14D4C3}
[17/03/2006|18:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ACD Systems
[18/03/2008|23:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[18/02/2009|23:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[28/03/2009|21:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[14/02/2009|20:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Blizzard
[29/06/2008|13:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Emjysoft
[30/05/2006|21:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FaxCtr
[24/05/2009|13:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\flag ace stupid data
[08/08/2007|18:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[17/03/2006|14:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Anti-Virus Personal Pro
[07/12/2006|00:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab
[13/02/2007|08:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kodak
[17/11/2007|00:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MAGIX
[17/03/2006|01:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Micro Application
[11/04/2009|14:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[18/03/2006|15:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NVIDIA Corporation
[17/03/2006|03:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
[09/09/2007|12:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Real
[07/12/2006|20:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[11/01/2009|13:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SweetIM
[14/12/2006|14:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[17/03/2006|12:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TuneUp Software
[30/05/2006|21:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\UniversalisV11
[17/03/2006|11:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[05/09/2006|23:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[31/10/2008|15:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WinZip

[17/03/2006|01:12] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[17/03/2006|01:12] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[17/03/2006|18:55] C:\DOCUME~1\malika\APPLIC~1\ACD Systems
[11/06/2008|18:57] C:\DOCUME~1\malika\APPLIC~1\Adobe
[14/03/2007|19:43] C:\DOCUME~1\malika\APPLIC~1\Ahead
[28/03/2009|21:42] C:\DOCUME~1\malika\APPLIC~1\Apple Computer
[11/12/2007|15:14] C:\DOCUME~1\malika\APPLIC~1\dvdcss
[30/05/2006|21:44] C:\DOCUME~1\malika\APPLIC~1\FaxCtr
[26/10/2008|00:46] C:\DOCUME~1\malika\APPLIC~1\Google
[09/09/2007|11:27] C:\DOCUME~1\malika\APPLIC~1\GrabIt
[17/03/2006|01:20] C:\DOCUME~1\malika\APPLIC~1\Identities
[18/03/2006|16:32] C:\DOCUME~1\malika\APPLIC~1\InterVideo
[05/03/2009|11:33] C:\DOCUME~1\malika\APPLIC~1\JAM Software
[05/11/2008|01:48] C:\DOCUME~1\malika\APPLIC~1\Kodak
[03/12/2006|14:51] C:\DOCUME~1\malika\APPLIC~1\Lavasoft
[17/03/2006|02:15] C:\DOCUME~1\malika\APPLIC~1\Leadertech
[17/03/2006|02:09] C:\DOCUME~1\malika\APPLIC~1\Macromedia
[18/03/2006|16:26] C:\DOCUME~1\malika\APPLIC~1\Media Player Classic
[11/04/2009|14:57] C:\DOCUME~1\malika\APPLIC~1\Microsoft
[21/08/2006|22:08] C:\DOCUME~1\malika\APPLIC~1\Mozilla
[09/09/2007|12:08] C:\DOCUME~1\malika\APPLIC~1\NewsLeecher
[17/03/2006|01:45] C:\DOCUME~1\malika\APPLIC~1\Opera
[30/09/2007|01:37] C:\DOCUME~1\malika\APPLIC~1\Real
[15/11/2006|18:56] C:\DOCUME~1\malika\APPLIC~1\RTPlayer
[11/12/2006|22:46] C:\DOCUME~1\malika\APPLIC~1\Simply Super Software
[17/03/2006|18:18] C:\DOCUME~1\malika\APPLIC~1\SmartFTP
[13/05/2009|18:50] C:\DOCUME~1\malika\APPLIC~1\Snapfish
[17/03/2006|03:48] C:\DOCUME~1\malika\APPLIC~1\SpeedProject
[19/06/2006|21:36] C:\DOCUME~1\malika\APPLIC~1\Sun
[10/09/2006|00:37] C:\DOCUME~1\malika\APPLIC~1\Talkback
[25/04/2009|02:14] C:\DOCUME~1\malika\APPLIC~1\teamspeak2
[17/03/2006|12:41] C:\DOCUME~1\malika\APPLIC~1\TuneUp Software
[30/05/2006|21:50] C:\DOCUME~1\malika\APPLIC~1\Universalis V11
[05/03/2009|11:05] C:\DOCUME~1\malika\APPLIC~1\uTorrent
[27/12/2008|11:12] C:\DOCUME~1\malika\APPLIC~1\vlc
[02/06/2006|00:38] C:\DOCUME~1\malika\APPLIC~1\WebRenderer

[17/03/2006|01:12] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[18/02/2009 23:33][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[13/09/2008 10:56][--a------] C:\WINDOWS\tasks\EasyShare Registration Task.job
[13/01/2008 19:11][--ah-----] C:\WINDOWS\tasks\A5EDB51E939E2376.job
[17/03/2006 12:52][--a------] C:\WINDOWS\tasks\1-Click Maintenance.job
[17/03/2006 15:07][--ah-----] C:\WINDOWS\tasks\SA.DAT
[28/08/2001 18:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

( A5EDB51E939E2376.job )=( c:\docume~1\malika\applic~1\loveda~1\gpljugsphone.exe )

--------------------\\ Listing des dossiers dans C:\Program Files

[05/03/2009|10:42] C:\Program Files\Adobe
[11/04/2009|14:44] C:\Program Files\Fichiers communs
[26/10/2008|00:45] C:\Program Files\Google
[13/05/2009|18:26] C:\Program Files\InstallShield Installation Information
[28/03/2009|21:41] C:\Program Files\iPod
[09/11/2008|13:44] C:\Program Files\Java
[05/11/2008|01:40] C:\Program Files\Kodak
[03/12/2006|14:51] C:\Program Files\Lavasoft
[30/05/2006|21:46] C:\Program Files\Lexmark 6200 Series
[30/05/2006|21:17] C:\Program Files\Lexmark Fax Solutions
[11/04/2009|14:50] C:\Program Files\Microsoft
[05/03/2009|11:12] C:\Program Files\Microsoft ActiveSync
[11/04/2009|14:50] C:\Program Files\Microsoft Sync Framework
[20/04/2009|21:55] C:\Program Files\Mozilla Firefox
[17/03/2006|17:10] C:\Program Files\OfficeUpdate11
[12/04/2009|09:36] C:\Program Files\QuickTime
[15/11/2006|19:22] C:\Program Files\Radiograbber
[30/11/2007|09:11] C:\Program Files\SchahoSoft
[19/03/2009|23:43] C:\Program Files\SFRWidget
[09/11/2008|13:45] C:\Program Files\Sun
[05/03/2009|03:11] C:\Program Files\SweetIM
[24/05/2009|08:42] C:\Program Files\Trend Micro
[23/05/2009|18:58] C:\Program Files\Uninstall Information
[11/04/2009|14:49] C:\Program Files\Windows Live SkyDrive

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[17/03/2006|18:53] C:\Program Files\Fichiers communs\ACD Systems
[05/03/2009|11:52] C:\Program Files\Fichiers communs\Acronis
[25/03/2008|23:46] C:\Program Files\Fichiers communs\Adobe
[17/03/2006|13:26] C:\Program Files\Fichiers communs\Ahead
[01/03/2009|10:02] C:\Program Files\Fichiers communs\Apple
[30/04/2009|00:20] C:\Program Files\Fichiers communs\Blizzard Entertainment
[10/09/2006|23:45] C:\Program Files\Fichiers communs\Click2Learn
[17/03/2006|16:10] C:\Program Files\Fichiers communs\DESIGNER
[30/05/2006|21:17] C:\Program Files\Fichiers communs\InstallShield
[18/03/2006|15:34] C:\Program Files\Fichiers communs\InterVideo
[17/03/2006|13:21] C:\Program Files\Fichiers communs\Java
[17/11/2007|00:37] C:\Program Files\Fichiers communs\MAGIX Shared
[17/03/2006|01:50] C:\Program Files\Fichiers communs\Micro Application
[11/04/2009|14:49] C:\Program Files\Fichiers communs\Microsoft Shared
[17/03/2006|02:05] C:\Program Files\Fichiers communs\ODBC
[17/03/2006|01:10] C:\Program Files\Fichiers communs\Services
[17/03/2006|02:05] C:\Program Files\Fichiers communs\SpeechEngines
[01/09/2006|21:42] C:\Program Files\Fichiers communs\SWF Studio
[17/03/2006|16:10] C:\Program Files\Fichiers communs\System
[11/04/2009|14:44] C:\Program Files\Fichiers communs\Windows Live

--------------------\\ Process

( 35 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\DOCUME~1\ALLUSE~1\APPLIC~1\flag ace stupid data
C:\WINDOWS\Tasks\A5EDB51E939E2376.job

--------------------\\ Verification du Registre

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE

--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-05-24 14:01:56
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 11

--------------------\\ Recherche d'autres infections

Aucune autre infection trouvée !

[F:10][D:3]-> C:\DOCUME~1\malika\LOCALS~1\Temp
[F:2][D:0]-> C:\DOCUME~1\malika\Cookies
[F:9][D:4]-> C:\DOCUME~1\malika\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 24/05/2009|14:05 - Option : [1]

--------------------\\ Fin du rapport a 14:05:02
0
Réponse 31 / 51
Utilisateur anonyme
 
Re,

▶ Relance Lop S&D

▶ Choisis cette fois ci l'Option 2 ( Suppression )

▶ Ne ferme pas la fenêtre lors de la suppression !

▶ Poste le rapport généré ( C:\lopR.txt )

( Si le Bureau ne réapparaît pas presse Ctrl + Alt + Suppr, Onglet Fichier,

Nouvelle tâche, tape explorer.exe et valide )

Si un rapport ne passe pas faire une alerte à la conciergerie avec le /!\ jaune.
0
Réponse 32 / 51
Axion59 Messages postés 171 Statut Membre 5
 
Rapport :

--------------------\\ Lop S&D 4.2.5-0 XP/Vista

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [2] ( 24/05/2009|14:08 )

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

Supprime! - C:\WINDOWS\Tasks\A5EDB51E939E2376.job
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\flag ace stupid data

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

--------------------\\ Listing des dossiers dans APPLIC~1

[28/03/2009|21:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{00D89592-F643-4D8D-8F0F-AFAE0F14D4C3}
[17/03/2006|18:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ACD Systems
[18/03/2008|23:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[18/02/2009|23:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[28/03/2009|21:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[14/02/2009|20:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Blizzard
[29/06/2008|13:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Emjysoft
[30/05/2006|21:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FaxCtr
[08/08/2007|18:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[17/03/2006|14:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Anti-Virus Personal Pro
[07/12/2006|00:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab
[13/02/2007|08:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kodak
[17/11/2007|00:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MAGIX
[17/03/2006|01:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Micro Application
[11/04/2009|14:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[18/03/2006|15:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NVIDIA Corporation
[17/03/2006|03:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
[09/09/2007|12:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Real
[07/12/2006|20:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[11/01/2009|13:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SweetIM
[14/12/2006|14:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[17/03/2006|12:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TuneUp Software
[30/05/2006|21:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\UniversalisV11
[17/03/2006|11:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[05/09/2006|23:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[31/10/2008|15:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WinZip

[17/03/2006|01:12] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[17/03/2006|01:12] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[17/03/2006|18:55] C:\DOCUME~1\malika\APPLIC~1\ACD Systems
[11/06/2008|18:57] C:\DOCUME~1\malika\APPLIC~1\Adobe
[14/03/2007|19:43] C:\DOCUME~1\malika\APPLIC~1\Ahead
[28/03/2009|21:42] C:\DOCUME~1\malika\APPLIC~1\Apple Computer
[11/12/2007|15:14] C:\DOCUME~1\malika\APPLIC~1\dvdcss
[30/05/2006|21:44] C:\DOCUME~1\malika\APPLIC~1\FaxCtr
[26/10/2008|00:46] C:\DOCUME~1\malika\APPLIC~1\Google
[09/09/2007|11:27] C:\DOCUME~1\malika\APPLIC~1\GrabIt
[17/03/2006|01:20] C:\DOCUME~1\malika\APPLIC~1\Identities
[18/03/2006|16:32] C:\DOCUME~1\malika\APPLIC~1\InterVideo
[05/03/2009|11:33] C:\DOCUME~1\malika\APPLIC~1\JAM Software
[05/11/2008|01:48] C:\DOCUME~1\malika\APPLIC~1\Kodak
[03/12/2006|14:51] C:\DOCUME~1\malika\APPLIC~1\Lavasoft
[17/03/2006|02:15] C:\DOCUME~1\malika\APPLIC~1\Leadertech
[17/03/2006|02:09] C:\DOCUME~1\malika\APPLIC~1\Macromedia
[18/03/2006|16:26] C:\DOCUME~1\malika\APPLIC~1\Media Player Classic
[11/04/2009|14:57] C:\DOCUME~1\malika\APPLIC~1\Microsoft
[21/08/2006|22:08] C:\DOCUME~1\malika\APPLIC~1\Mozilla
[09/09/2007|12:08] C:\DOCUME~1\malika\APPLIC~1\NewsLeecher
[17/03/2006|01:45] C:\DOCUME~1\malika\APPLIC~1\Opera
[30/09/2007|01:37] C:\DOCUME~1\malika\APPLIC~1\Real
[15/11/2006|18:56] C:\DOCUME~1\malika\APPLIC~1\RTPlayer
[11/12/2006|22:46] C:\DOCUME~1\malika\APPLIC~1\Simply Super Software
[17/03/2006|18:18] C:\DOCUME~1\malika\APPLIC~1\SmartFTP
[13/05/2009|18:50] C:\DOCUME~1\malika\APPLIC~1\Snapfish
[17/03/2006|03:48] C:\DOCUME~1\malika\APPLIC~1\SpeedProject
[19/06/2006|21:36] C:\DOCUME~1\malika\APPLIC~1\Sun
[10/09/2006|00:37] C:\DOCUME~1\malika\APPLIC~1\Talkback
[25/04/2009|02:14] C:\DOCUME~1\malika\APPLIC~1\teamspeak2
[17/03/2006|12:41] C:\DOCUME~1\malika\APPLIC~1\TuneUp Software
[30/05/2006|21:50] C:\DOCUME~1\malika\APPLIC~1\Universalis V11
[05/03/2009|11:05] C:\DOCUME~1\malika\APPLIC~1\uTorrent
[27/12/2008|11:12] C:\DOCUME~1\malika\APPLIC~1\vlc
[02/06/2006|00:38] C:\DOCUME~1\malika\APPLIC~1\WebRenderer

[17/03/2006|01:12] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[18/02/2009 23:33][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[13/09/2008 10:56][--a------] C:\WINDOWS\tasks\EasyShare Registration Task.job
[17/03/2006 12:52][--a------] C:\WINDOWS\tasks\1-Click Maintenance.job
[17/03/2006 15:07][--ah-----] C:\WINDOWS\tasks\SA.DAT
[28/08/2001 18:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[05/03/2009|10:42] C:\Program Files\Adobe
[11/04/2009|14:44] C:\Program Files\Fichiers communs
[26/10/2008|00:45] C:\Program Files\Google
[13/05/2009|18:26] C:\Program Files\InstallShield Installation Information
[28/03/2009|21:41] C:\Program Files\iPod
[09/11/2008|13:44] C:\Program Files\Java
[05/11/2008|01:40] C:\Program Files\Kodak
[03/12/2006|14:51] C:\Program Files\Lavasoft
[30/05/2006|21:46] C:\Program Files\Lexmark 6200 Series
[30/05/2006|21:17] C:\Program Files\Lexmark Fax Solutions
[11/04/2009|14:50] C:\Program Files\Microsoft
[05/03/2009|11:12] C:\Program Files\Microsoft ActiveSync
[11/04/2009|14:50] C:\Program Files\Microsoft Sync Framework
[20/04/2009|21:55] C:\Program Files\Mozilla Firefox
[17/03/2006|17:10] C:\Program Files\OfficeUpdate11
[12/04/2009|09:36] C:\Program Files\QuickTime
[15/11/2006|19:22] C:\Program Files\Radiograbber
[30/11/2007|09:11] C:\Program Files\SchahoSoft
[19/03/2009|23:43] C:\Program Files\SFRWidget
[09/11/2008|13:45] C:\Program Files\Sun
[05/03/2009|03:11] C:\Program Files\SweetIM
[24/05/2009|08:42] C:\Program Files\Trend Micro
[23/05/2009|18:58] C:\Program Files\Uninstall Information
[11/04/2009|14:49] C:\Program Files\Windows Live SkyDrive

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[17/03/2006|18:53] C:\Program Files\Fichiers communs\ACD Systems
[05/03/2009|11:52] C:\Program Files\Fichiers communs\Acronis
[25/03/2008|23:46] C:\Program Files\Fichiers communs\Adobe
[17/03/2006|13:26] C:\Program Files\Fichiers communs\Ahead
[01/03/2009|10:02] C:\Program Files\Fichiers communs\Apple
[30/04/2009|00:20] C:\Program Files\Fichiers communs\Blizzard Entertainment
[10/09/2006|23:45] C:\Program Files\Fichiers communs\Click2Learn
[17/03/2006|16:10] C:\Program Files\Fichiers communs\DESIGNER
[30/05/2006|21:17] C:\Program Files\Fichiers communs\InstallShield
[18/03/2006|15:34] C:\Program Files\Fichiers communs\InterVideo
[17/03/2006|13:21] C:\Program Files\Fichiers communs\Java
[17/11/2007|00:37] C:\Program Files\Fichiers communs\MAGIX Shared
[17/03/2006|01:50] C:\Program Files\Fichiers communs\Micro Application
[11/04/2009|14:49] C:\Program Files\Fichiers communs\Microsoft Shared
[17/03/2006|02:05] C:\Program Files\Fichiers communs\ODBC
[17/03/2006|01:10] C:\Program Files\Fichiers communs\Services
[17/03/2006|02:05] C:\Program Files\Fichiers communs\SpeechEngines
[01/09/2006|21:42] C:\Program Files\Fichiers communs\SWF Studio
[17/03/2006|16:10] C:\Program Files\Fichiers communs\System
[11/04/2009|14:44] C:\Program Files\Fichiers communs\Windows Live

--------------------\\ Process

( 35 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE

--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-05-24 14:09:24
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 11

--------------------\\ Recherche d'autres infections

Aucune autre infection trouvée !

[F:10][D:3]-> C:\DOCUME~1\malika\LOCALS~1\Temp
[F:2][D:0]-> C:\DOCUME~1\malika\Cookies
[F:9][D:4]-> C:\DOCUME~1\malika\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 24/05/2009|14:05 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 24/05/2009|14:12 - Option : [2]

--------------------\\ Fin du rapport a 14:12:07
0
Réponse 33 / 51
Utilisateur anonyme
 
Re,

fait malwarebyte donner au post 29
0
Réponse 34 / 51
Axion59 Messages postés 171 Statut Membre 5
 
Voilà, 2heures... :s :

Malwarebytes' Anti-Malware 1.36
Version de la base de données: 2174
Windows 5.1.2600 Service Pack 2

24/05/2009 16:12:16
mbam-log-2009-05-24 (16-12-16).txt

Type de recherche: Examen complet (C:\|D:\|E:\|)
Eléments examinés: 146720
Temps écoulé: 1 hour(s), 52 minute(s), 21 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 3
Valeur(s) du Registre infectée(s): 6
Elément(s) de données du Registre infecté(s): 2
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\AppID\ToolbarInst.DLL (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ntio256 (Rootkit.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NWCWorkstation (Backdoor.Agent) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\{b21a6099-0960-1036-0625-030624030021} (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow\host-domain-lookup.com (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow\mysearchnow.com (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow\www.host-domain-lookup.com (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow\www.mysearchnow.com (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\ForceClassicControlPanel (Hijack.ControlPanelStyle) -> Quarantined and deleted successfully.

Elément(s) de données du Registre infecté(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoSMHelp (Hijack.Help) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoSMHelp (Hijack.Help) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)
0
Réponse 35 / 51
Utilisateur anonyme
 
Re,

Clic sur l'onglet "quarantaine de malwarebyte" et supprime ce qu"elle contient.

Puis tu redémarre ton pc normalement , fait un nettoyage avec ccleaner et ensuite tu me refait un log avec rsit.

merci
0
Réponse 36 / 51
Axion59 Messages postés 171 Statut Membre 5
 
Re,

Voilà :

Logfile of random's system information tool 1.06 (written by random/random)
Run by malika at 2009-05-24 16:32:40
Microsoft Windows XP Professionnel Service Pack 2
System drive C: has 148 MB (2%) free of 7 GB
Total RAM: 511 MB (32% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:32:50, on 24/05/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
E:\Jeux vidéo\aswUpdSv.exe
E:\Jeux vidéo\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\taskswitch.exe
C:\Fichier\Nero\NEROTO~1\DRIVES~1.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Lexmark 6200 Series\lxbumon.exe
C:\Program Files\Lexmark 6200 Series\ezprint.exe
E:\iTunesHelper.exe
E:\JEUXVI~1\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\lclock.exe
C:\PROGRA~1\MICROS~2\wcescomm.exe
C:\PROGRA~1\MICROS~2\rapimgr.exe
C:\Program Files\SFRWidget\WidgetSFR.exe
E:\Jeux vidéo\ashMaiSv.exe
E:\Jeux vidéo\ashWebSv.exe
C:\WINDOWS\system32\lxbucoms.exe
E:\Mes documents\firefox.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\malika\Bureau\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\malika.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.sympatico.msn.ca/spbasic.htm?FORM=MIMWA1&mkt=en-CA&setlang=en-CA
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Systeme\SPYBOT~1\SDHelper.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - (no file)
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - (no file)
O4 - HKLM\..\Run: [CoolSwitch] C:\WINDOWS\system32\taskswitch.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [Nero DriveSpeed] C:\Fichier\Nero\NEROTO~1\DRIVES~1.EXE
O4 - HKLM\..\Run: [LXBUCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\LXBUtime.dll,_RunDLLEntry@16
O4 - HKLM\..\Run: [lxbumon.exe] "C:\Program Files\Lexmark 6200 Series\lxbumon.exe"
O4 - HKLM\..\Run: [FaxCenterServer] "C:\Program Files\Lexmark Fax Solutions\fm3032.exe" /s
O4 - HKLM\..\Run: [EzPrint] "C:\Program Files\Lexmark 6200 Series\ezprint.exe"
O4 - HKLM\..\Run: [OSSelectorReinstall] C:\Program Files\Fichiers communs\Acronis\Acronis Disk Director\oss_reinstall.exe
O4 - HKLM\..\Run: [iTunesHelper] "E:\iTunesHelper.exe"
O4 - HKLM\..\Run: [avast!] E:\JEUXVI~1\ashDisp.exe
O4 - HKLM\..\RunOnce: [WIAWizardMenu] RUNDLL32.EXE C:\WINDOWS\system32\sti_ci.dll,WiaCreateWizardMenu
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LClock] lclock.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\PROGRA~1\MICROS~2\wcescomm.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [LSD_III] %systemroot%\LSD\end.cmd (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-20\..\RunOnce: [LSD_III] %systemroot%\LSD\end.cmd (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [LSD_III] %systemroot%\LSD\end.cmd (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [LSD_III] %systemroot%\LSD\end.cmd (User 'Default user')
O4 - Startup: Anja in Paris
O4 - Startup: Widget SFR.lnk = C:\Program Files\SFRWidget\WidgetSFR.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\BUREAU~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?bd217005329d4ac8a2cbe2187dfa1cc6
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?bd217005329d4ac8a2cbe2187dfa1cc6
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~2\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~2\INetRepl.dll
O9 - Extra 'Tools' menuitem: Mobilen Favoriten erstellen... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~2\INetRepl.dll
O9 - Extra button: Titan Poker - {49783ED4-258D-4f9f-BE11-137C18D3E543} - C:\Poker\Titan Poker\casino.exe
O9 - Extra 'Tools' menuitem: Titan Poker - {49783ED4-258D-4f9f-BE11-137C18D3E543} - C:\Poker\Titan Poker\casino.exe
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: PartyPoker.net - {F4430FE8-2638-42e5-B849-800749B94EED} - C:\Program Files\PartyGaming.Net\PartyPokerNet\RunPF.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyPoker.net - {F4430FE8-2638-42e5-B849-800749B94EED} - C:\Program Files\PartyGaming.Net\PartyPokerNet\RunPF.exe (file missing)
O9 - Extra button: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: @C:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O15 - Trusted Zone: https://login.microsoftonline.com/common/oauth2/authorize?client_id=00000002-0000-0ff1-ce00-000000000000&redirect_uri=https%3a%2f%2foutlook.office365.com%2fowa%2f&resource=00000002-0000-0ff1-ce00-000000000000&response_mode=form_post&response_type=code+id_token&scope=openid&msafed=0&client-request-id=e423e5b7-9237-45e1-87b0-e23b7e684eee&protectedtoken=true&domain_hint=movitex.com&nonce=637165974542077127.db8327aa-66dd-49d4-9dfb-d5b235b9cf73&state=DctNCoAgEEBhrYO0a2f-O7mQzjI2BUEiRFTHz8X3do8zxvqma7hqYRAs6OAjOO-MAtAGJsqzNYAoQiASLpITkfYsyGdjfY7rDpa3d5D1RblcG54llfoc9_ZNay3jQ6ngcf4
O15 - Trusted Zone: http://carrefour.neolane.net
O21 - SSODL: hksrv.dll - {EC169E47-DC38-486D-8940-F62C5AB3FBDD} - hksrv.dll (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - E:\Jeux vidéo\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - E:\Jeux vidéo\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - E:\Jeux vidéo\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - E:\Jeux vidéo\ashWebSv.exe
O23 - Service: C-DillaSrv - C-Dilla Ltd - C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - Unknown owner - C:\Program Files\MAGIX\Common\Database\bin\fbserver.exe (file missing)
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: lxbu_device - Lexmark International, Inc. - C:\WINDOWS\system32\lxbucoms.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Systeme\TuneUp Utilities\WinStylerThemeSvc.exe
O23 - Service: UPnPService - Magix AG - C:\Program Files\Fichiers communs\MAGIX Shared\UPnPService\UPnPService.exe
0
Réponse 37 / 51
Utilisateur anonyme
 
Re,

---> Télécharge OTM (OldTimer) sur ton Bureau :
http://oldtimer.geekstogo.com/OTMoveIt3.exe

---> Double-clique sur OTMoveIt3.exe afin de le lancer.

---> Copie (Ctrl+C) le texte suivant en gras ci-dessous :

:processes
explorer.exe

:files
c:\program files\ipwins\ipwins.exe
c:\documents and settings\all users\application data\flag ace stupid data\fork skip.exe

:reg
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Stupid Data Dart Wave]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IpWins]

:commands
[purity]
[emptytemp]
[start explorer]



---> Colle (Ctrl+V) le texte précédemment copié dans le cadre Paste Instructions for Items to be Moved.

---> Clique maintenant sur le bouton MoveIt! puis ferme OTMoveIt3.

Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
Accepte en cliquant sur YES.

---> Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
Le nom du rapport correspond au moment de sa création : date_heure.log
0
Réponse 38 / 51
Axion59 Messages postés 171 Statut Membre 5
 
Voilà :

========== PROCESSES ==========
Process explorer.exe killed successfully.
========== FILES ==========
File/Folder c:\program files\ipwins\ipwins.exe not found.
File/Folder c:\documents and settings\all users\application data\flag ace stupid data\fork skip.exe not found.
========== REGISTRY ==========
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Stupid Data Dart Wave\\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IpWins\\ deleted successfully.
========== COMMANDS ==========
File delete failed. C:\DOCUME~1\malika\LOCALS~1\Temp\WCESLog.log scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Internet Explorer cache folder emptied.
File delete failed. C:\Documents and Settings\malika\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
User's Temporary Internet Files folder emptied.
Local Service Temp folder emptied.
Local Service Temporary Internet Files folder emptied.
Network Service Temp folder emptied.
File delete failed. C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
Network Service Temporary Internet Files folder emptied.
File delete failed. C:\WINDOWS\temp\_avast4_\Webshlock.txt scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_18c.dat scheduled to be deleted on reboot.
Windows Temp folder emptied.
Java cache emptied.
File delete failed. C:\Documents and Settings\malika\Local Settings\Application Data\Mozilla\Firefox\Profiles\mfc4idnl.default\Cache\_CACHE_001_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\malika\Local Settings\Application Data\Mozilla\Firefox\Profiles\mfc4idnl.default\Cache\_CACHE_002_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\malika\Local Settings\Application Data\Mozilla\Firefox\Profiles\mfc4idnl.default\Cache\_CACHE_003_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\malika\Local Settings\Application Data\Mozilla\Firefox\Profiles\mfc4idnl.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot.
File delete failed. C:\Documents and Settings\malika\Local Settings\Application Data\Mozilla\Firefox\Profiles\mfc4idnl.default\XUL.mfl scheduled to be deleted on reboot.
FireFox cache emptied.
Temp folders emptied.
Explorer started successfully

OTMoveIt3 by OldTimer - Version 1.0.11.0 log created on 05242009_170111

Files moved on Reboot...
C:\DOCUME~1\malika\LOCALS~1\Temp\WCESLog.log moved successfully.
File C:\WINDOWS\temp\_avast4_\Webshlock.txt not found!
C:\WINDOWS\temp\Perflib_Perfdata_18c.dat moved successfully.
C:\Documents and Settings\malika\Local Settings\Application Data\Mozilla\Firefox\Profiles\mfc4idnl.default\Cache\_CACHE_001_ moved successfully.
C:\Documents and Settings\malika\Local Settings\Application Data\Mozilla\Firefox\Profiles\mfc4idnl.default\Cache\_CACHE_002_ moved successfully.
C:\Documents and Settings\malika\Local Settings\Application Data\Mozilla\Firefox\Profiles\mfc4idnl.default\Cache\_CACHE_003_ moved successfully.
C:\Documents and Settings\malika\Local Settings\Application Data\Mozilla\Firefox\Profiles\mfc4idnl.default\Cache\_CACHE_MAP_ moved successfully.
C:\Documents and Settings\malika\Local Settings\Application Data\Mozilla\Firefox\Profiles\mfc4idnl.default\XUL.mfl moved successfully.
0
Réponse 39 / 51
Utilisateur anonyme
 
Re,

Afficher les fichiers et dossiers cachés sous Windows Xp

▶ Double clic sur Poste de Travail,

▶ Sur le menu du haut vous cliquez sur "Outils"

▶ Cliquer sur "Options des dossiers"

▶ Cliquez sur l'onglet "Affichage"

▶ Dans les options

▶ Sélectionnez " Afficher les dossiers et fichiers cachés"

▶ Cliquer ensuite sur "Appliquer"

▶ validez par "Ok"

Puis tu cherche et supprime ce fichier dans => c:\program files
c:\program files\ipwins

Puis tu cherche et supprime ce fichier dans => c:\documents and settings\all users\application data\
c:\documents and settings\all users\application data\flag ace stupid data

Puis tu vide ta corbeille si présent .Tu redémarre ton pc normalement et tu refait un log avec RSIT.

merci
0
Réponse 40 / 51
Axion59 Messages postés 171 Statut Membre 5
 
Re,

Je ne trouve pas "c:\program files
c:\program files\ipwins "...

Et quand je tape "documents and settings\all users\application data\flag ace stupid data "
Il va sur IE O_O
0

Discussions similaires

Problème avec "PUADIManager:Win32/OfferCore
Knaki -
bazfile -

3 réponses
PUADlManager:Win32/OfferCore
tenmalade -
tenmalade -

2 réponses
win32:malware-gen bloqué par avast
ikkual -
Utilisateur anonyme -

69 réponses
PUABundler:Win32/CandyOpen : dangereux ?
joubine -
bazfile -

2 réponses
Pb Windows 7, .EXE n'est pas app win32 valide
Witeric -
Lio -

15 réponses