Help trojan vundo
trint
-
trint -
trint -
Bonjour, j'ai mon pc qui plante dès que je me connecte à internet depuis ce matin où j'ai cliqué sur un lien sur une page web, firefox à planter d'abord puis le pc, j'ai rebooter il redémare normalement puis au bout de 1min ou 2 le pc qui ce fige de nouveau souris bloqué clavier qui répond plus et ça fait ça à chaque fois que mon pc est connecté à internet; mais si je redèmare mon pc avec le câble ethernet débranché plus de problème. J'ai scaner avec avast rien trouver, par contre Malwarebytes a trouvé un virus (trojan vundo), il a suprimé tous les fichier contaminer. spybot m'a également trouver ce virus sous le nom de virtumonde. Pensez vous que mon problème provienne de ce virus?
log hijackthis :
Logfile of HijackThis v1.99.1
Scan saved at 22:33:23, on 10/07/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16850)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\dllhost.exe
C:\PVSW\Bin\WGE_SRV.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\PVSW\BIN\W3dbsmgr.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\VIA\RAID\raid_tool.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\vsnp2std.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposol08.exe
C:\Documents and Settings\PC\Application Data\Microsoft\Live Search\Notification-LiveSearch.exe
C:\Documents and Settings\PC\Application Data\Microsoft\Live Search\Mise-a-jour-LiveSearch.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpoSTS08.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\SiSoftware\SiSoftware Sandra Professional Affaires 2009.SP1\RpcAgentSrv.exe
C:\Documents and Settings\PC\Application Data\U3\0000184CF471EE8E\LaunchPad.exe
C:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://moteur.chat-land.org/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: (no name) - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - (no file)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [RaidTool] C:\Program Files\VIA\RAID\raid_tool.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [snp2std] C:\WINDOWS\vsnp2std.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - Startup: Outil de notification Live Search.lnk = C:\Documents and Settings\PC\Application Data\Microsoft\Live Search\Notification-LiveSearch.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: hpoddt01.exe.lnk = ?
O4 - Global Startup: officejet 6100.lnk = ?
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/eng/partner/71365/kavwebscan_unicode.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/default.aspx
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: dimsntfy - %SystemRoot%\System32\dimsntfy.dll (file missing)
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: EBP Pervasive.SQL - Unknown owner - C:\PVSW\Bin\WGE_SRV.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Unknown owner - C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: SiSoftware Deployment Agent Service (SandraAgentSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Professional Affaires 2009.SP1\RpcAgentSrv.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
Configuration: Windows XP
Firefox 2.0.0.20
Configuration: Windows XP
Firefox 2.0.0.20
log hijackthis :
Logfile of HijackThis v1.99.1
Scan saved at 22:33:23, on 10/07/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16850)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\dllhost.exe
C:\PVSW\Bin\WGE_SRV.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\PVSW\BIN\W3dbsmgr.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\VIA\RAID\raid_tool.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\vsnp2std.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposol08.exe
C:\Documents and Settings\PC\Application Data\Microsoft\Live Search\Notification-LiveSearch.exe
C:\Documents and Settings\PC\Application Data\Microsoft\Live Search\Mise-a-jour-LiveSearch.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpoSTS08.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\SiSoftware\SiSoftware Sandra Professional Affaires 2009.SP1\RpcAgentSrv.exe
C:\Documents and Settings\PC\Application Data\U3\0000184CF471EE8E\LaunchPad.exe
C:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://moteur.chat-land.org/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: (no name) - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - (no file)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [RaidTool] C:\Program Files\VIA\RAID\raid_tool.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [snp2std] C:\WINDOWS\vsnp2std.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - Startup: Outil de notification Live Search.lnk = C:\Documents and Settings\PC\Application Data\Microsoft\Live Search\Notification-LiveSearch.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: hpoddt01.exe.lnk = ?
O4 - Global Startup: officejet 6100.lnk = ?
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/eng/partner/71365/kavwebscan_unicode.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/default.aspx
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: dimsntfy - %SystemRoot%\System32\dimsntfy.dll (file missing)
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: EBP Pervasive.SQL - Unknown owner - C:\PVSW\Bin\WGE_SRV.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Unknown owner - C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: SiSoftware Deployment Agent Service (SandraAgentSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Professional Affaires 2009.SP1\RpcAgentSrv.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
Configuration: Windows XP
Firefox 2.0.0.20
Configuration: Windows XP
Firefox 2.0.0.20
A voir également:
- Help trojan vundo
- Trojan remover - Télécharger - Antivirus & Antimalwares
- Anti trojan - Télécharger - Antivirus & Antimalwares
- Csrss.exe trojan fr ✓ - Forum Virus
- Trojan b901 system32 win config 34 ✓ - Forum Virus
- Virus trojan al11 ✓ - Forum Virus
11 réponses
télécharge GenProc http://www.genproc.com/GenProc.exe
double-clique sur GenProc.exe et poste le contenu du rapport qui s'ouvre
double-clique sur GenProc.exe et poste le contenu du rapport qui s'ouvre
trint
j'arrive pas à télécharger genproc
Tu peux tenter la restauration du système.
Cependant je ne suis pas sur qu'elle supprimera ton virus.
Cependant il y a de forte chance !
Pour cela rend toi :
Démarrer --> Tous les programmes --> accessoires --> Outil Système --> Restauration du système --> Restaurer mon ordinateur à une heure antérieure.
Ensuite sur la calendrier choisi une date ou tu n'avais pas ce virus :)
Dylan
Cependant je ne suis pas sur qu'elle supprimera ton virus.
Cependant il y a de forte chance !
Pour cela rend toi :
Démarrer --> Tous les programmes --> accessoires --> Outil Système --> Restauration du système --> Restaurer mon ordinateur à une heure antérieure.
Ensuite sur la calendrier choisi une date ou tu n'avais pas ce virus :)
Dylan
Je ne te conseil pas ce logiciel il vient de m'être bloqué par kaspersky cheval de troie !
Edit surement une fausse alerte.
Rend toi sur :
www.genproc.com
et choisi ta version de windows xp/vista ensuite poste le rapport ici è
Edit surement une fausse alerte.
Rend toi sur :
www.genproc.com
et choisi ta version de windows xp/vista ensuite poste le rapport ici è
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Je ne te conseil pas ce logiciel il vient de m'être bloqué par kaspersky cheval de troie !
ah bon
pourquoi ?
Pour getversion..exe ?
tu ne voit pas, qu'a l'heure actuel les antivirus ne savent même pas
getversion..exe n 'est pas un cheval de 3, un faut positif ;)
ah bon
pourquoi ?
Pour getversion..exe ?
tu ne voit pas, qu'a l'heure actuel les antivirus ne savent même pas
getversion..exe n 'est pas un cheval de 3, un faut positif ;)
Trint commence par la restauration du système ensuite dit nous quoi !
rapport genproc:
Rapport GenProc 2.602 [4] - 11/07/2009 à 0:03:35
@ Windows XP Service Pack 3 - Mode normal
@ Mozilla Firefox (3.5) [Navigateur par défaut]
~~ ECHEC DU TELECHARGEMENT DE MBR.EXE ~~
# Etape 1/ Télécharge :
- Lop S&D https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2 (Eric 71 & Angeldark) sur ton Bureau.
- Toolbar-S&D https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/ToolBarSD.exe?attachauth=ANoY7cqJWPphpudyTqv7TRo5RQ3nm_Sx8JluVMO59X5E9cyE3j3LqKlmStIqiDqJdIgMJLi7MXn2nKVajQfoWuVvZZ2wIx_vkqO4k4P0K9jh-ra9jaKPXdZcoaVF2UqJZNH8ubL_42uIwh6f35xJ2GJMuzddVj2Qth1DgZ839lxEIFGkgWz3TdfvNMy-YtxfA3gqBUrj4U4LFeAPiWr3ClmjIP0t_Xs5PQ%3D%3D&attredirects=2 (Team IDN) sur ton Bureau.
- MSNFix http://sosvirus.changelog.fr/MSNFix.zip (!aur3n7) et décompresse-le sur le Bureau.
Redémarre en mode sans échec comme indiqué ici https://www.wekyo.com/demarrer-le-pc-en-mode-sans-echec-windows-7-et-8/ ; Choisis ta session courante *** PC *** (pour retrouver le rapport, clique sur le raccourci "Rapport GenProc[4]" sur ton bureau).
# Etape 2/
Lance Toolbar-S&D situé sur le Bureau.
Tape sur "2" puis valide en appuyant sur "Entrée". Ne ferme pas la fenêtre lors de la suppression.
# Etape 3/
Lance le fichier MSNFix.bat qui se trouve dans le dossier MSNfix, sur le bureau.
- Exécute l'option R.
- Si l'infection est détectée, exécute l'option N.
- Sauvegarde ce rapport sur ton bureau.
# Etape 4/
Double-clique sur Lop S&D pour lancer l'installation, séléctionne la langue souhaitée, puis choisis l'Option 2 - Suppression - et patiente jusqu'à ce qu'il ait terminé.
# Etape 5/
Lance CCleaner : "Nettoyeur"/"lancer le nettoyage" et c'est tout.
# Etape 6/
Redémarre normalement et poste, dans la même réponse :
- Le contenu du rapport msnfix.txt situé dans C:\WINDOWS ;
- Le contenu du rapport TB.txt situé dans C:\ ;
- Le contenu du rapport lopR.txt situé dans C:\ ;
- Un nouveau rapport HijackThis http://forum.telecharger.01net.com/forum/high-tech/PRODUITS/Questions-techniques/hijackthis-version-install-sujet_199100_1.htm ;
- Un nouveau rapport GenProc ;
Précise les difficultés que tu as eu (ce que tu n'as pas pu faire...) ainsi que l'évolution de la situation.
~~ Arguments de la procédure ~~
# Détections [4] GenProc 2.602 11/07/2009 à 0:03:39
Lop:le 11/07/2009 à 0:03:50 "C:\Program Files\Circle Developement"
Toolbar:le 11/07/2009 à 0:03:53 "C:\Program Files\BitLord"
MSNFix:le 11/07/2009 à 0:04:07 "C:\WINDOWS\regedit.com"
----------------------------------------------------------------------
Sites officiels GenProc : www.alt-shift-return.org et www.genproc.com
----------------------------------------------------------------------
~~ Fin à 0:04:21 ~~
Rapport GenProc 2.602 [4] - 11/07/2009 à 0:03:35
@ Windows XP Service Pack 3 - Mode normal
@ Mozilla Firefox (3.5) [Navigateur par défaut]
~~ ECHEC DU TELECHARGEMENT DE MBR.EXE ~~
# Etape 1/ Télécharge :
- Lop S&D https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2 (Eric 71 & Angeldark) sur ton Bureau.
- Toolbar-S&D https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/ToolBarSD.exe?attachauth=ANoY7cqJWPphpudyTqv7TRo5RQ3nm_Sx8JluVMO59X5E9cyE3j3LqKlmStIqiDqJdIgMJLi7MXn2nKVajQfoWuVvZZ2wIx_vkqO4k4P0K9jh-ra9jaKPXdZcoaVF2UqJZNH8ubL_42uIwh6f35xJ2GJMuzddVj2Qth1DgZ839lxEIFGkgWz3TdfvNMy-YtxfA3gqBUrj4U4LFeAPiWr3ClmjIP0t_Xs5PQ%3D%3D&attredirects=2 (Team IDN) sur ton Bureau.
- MSNFix http://sosvirus.changelog.fr/MSNFix.zip (!aur3n7) et décompresse-le sur le Bureau.
Redémarre en mode sans échec comme indiqué ici https://www.wekyo.com/demarrer-le-pc-en-mode-sans-echec-windows-7-et-8/ ; Choisis ta session courante *** PC *** (pour retrouver le rapport, clique sur le raccourci "Rapport GenProc[4]" sur ton bureau).
# Etape 2/
Lance Toolbar-S&D situé sur le Bureau.
Tape sur "2" puis valide en appuyant sur "Entrée". Ne ferme pas la fenêtre lors de la suppression.
# Etape 3/
Lance le fichier MSNFix.bat qui se trouve dans le dossier MSNfix, sur le bureau.
- Exécute l'option R.
- Si l'infection est détectée, exécute l'option N.
- Sauvegarde ce rapport sur ton bureau.
# Etape 4/
Double-clique sur Lop S&D pour lancer l'installation, séléctionne la langue souhaitée, puis choisis l'Option 2 - Suppression - et patiente jusqu'à ce qu'il ait terminé.
# Etape 5/
Lance CCleaner : "Nettoyeur"/"lancer le nettoyage" et c'est tout.
# Etape 6/
Redémarre normalement et poste, dans la même réponse :
- Le contenu du rapport msnfix.txt situé dans C:\WINDOWS ;
- Le contenu du rapport TB.txt situé dans C:\ ;
- Le contenu du rapport lopR.txt situé dans C:\ ;
- Un nouveau rapport HijackThis http://forum.telecharger.01net.com/forum/high-tech/PRODUITS/Questions-techniques/hijackthis-version-install-sujet_199100_1.htm ;
- Un nouveau rapport GenProc ;
Précise les difficultés que tu as eu (ce que tu n'as pas pu faire...) ainsi que l'évolution de la situation.
~~ Arguments de la procédure ~~
# Détections [4] GenProc 2.602 11/07/2009 à 0:03:39
Lop:le 11/07/2009 à 0:03:50 "C:\Program Files\Circle Developement"
Toolbar:le 11/07/2009 à 0:03:53 "C:\Program Files\BitLord"
MSNFix:le 11/07/2009 à 0:04:07 "C:\WINDOWS\regedit.com"
----------------------------------------------------------------------
Sites officiels GenProc : www.alt-shift-return.org et www.genproc.com
----------------------------------------------------------------------
~~ Fin à 0:04:21 ~~
les rapports:
--------------------\\ Lop S&D 4.2.5-0 XP/Vista
Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) 64 Processor 3000+ )
BIOS : Version 07.00T
USER : PC ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1335 [VPS 090709-0] 4.8.1335 (Activated)
Firewall : ZoneAlarm Firewall 7.0.483.000 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:58 Go (Free:20 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)
F:\ (Local Disk) - NTFS - Total:90 Go (Free:11 Go)
G:\ (Local Disk) - NTFS - Total:17 Go (Free:4 Go)
H:\ (Local Disk) - NTFS - Total:9 Go (Free:9 Go)
I:\ (Local Disk) - NTFS - Total:48 Go (Free:1 Go)
J:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)
M:\ (USB) - FAT32 - Total:3890 Mo (Free:1 Go)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 11/07/2009| 0:27 )
--------------------\\ Listing des dossiers dans APPLIC~1
[09/09/2007|12:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{B33CBE2B-A739-401D-A5E0-041195C4A17B}
[09/09/2007|12:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{DFAB194F-9585-4C44-8299-0338F0BF379E}
[09/07/2009|11:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[02/02/2007|15:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
[02/02/2007|15:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[16/05/2007|18:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Aventail
[23/05/2007|13:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink
[09/09/2007|12:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\EBP
[14/07/2008|21:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
[20/08/2007|19:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab
[03/06/2009|19:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
[10/03/2007|16:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
[15/07/2008|12:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MailFrontier
[10/07/2009|16:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[04/01/2008|16:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[21/07/2008|02:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[02/02/2007|15:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Real
[23/12/2007|17:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony
[10/07/2009|16:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[04/06/2009|19:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems
[02/02/2007|13:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[16/04/2008|13:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WinZip
[02/02/2007|20:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion
[02/02/2007|12:43] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[20/02/2007|13:34] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[02/02/2007|12:43] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[09/07/2009|11:47] C:\DOCUME~1\PC\APPLIC~1\Adobe
[20/08/2007|04:46] C:\DOCUME~1\PC\APPLIC~1\Ahead
[16/02/2008|20:29] C:\DOCUME~1\PC\APPLIC~1\ALLCapture
[16/05/2007|18:59] C:\DOCUME~1\PC\APPLIC~1\Aventail
[27/06/2009|21:53] C:\DOCUME~1\PC\APPLIC~1\dvdcss
[09/09/2007|12:26] C:\DOCUME~1\PC\APPLIC~1\EBP
[26/04/2007|13:00] C:\DOCUME~1\PC\APPLIC~1\Google
[03/03/2007|22:20] C:\DOCUME~1\PC\APPLIC~1\Help
[04/02/2007|14:34] C:\DOCUME~1\PC\APPLIC~1\Hewlett-Packard
[02/02/2007|13:25] C:\DOCUME~1\PC\APPLIC~1\Identities
[09/02/2007|17:27] C:\DOCUME~1\PC\APPLIC~1\InterTrust
[21/06/2008|20:06] C:\DOCUME~1\PC\APPLIC~1\JLC's Software
[03/06/2009|18:59] C:\DOCUME~1\PC\APPLIC~1\Lavasoft
[23/09/2008|20:47] C:\DOCUME~1\PC\APPLIC~1\LuckyTender
[14/09/2008|21:49] C:\DOCUME~1\PC\APPLIC~1\Macromedia
[10/07/2009|16:03] C:\DOCUME~1\PC\APPLIC~1\Malwarebytes
[02/02/2007|23:25] C:\DOCUME~1\PC\APPLIC~1\Media Player Classic
[04/06/2009|19:03] C:\DOCUME~1\PC\APPLIC~1\Microsoft
[15/07/2008|02:56] C:\DOCUME~1\PC\APPLIC~1\Mozilla
[18/08/2007|11:50] C:\DOCUME~1\PC\APPLIC~1\OLYMPUS
[22/12/2007|16:53] C:\DOCUME~1\PC\APPLIC~1\Publish Providers
[02/02/2007|23:25] C:\DOCUME~1\PC\APPLIC~1\Real
[31/12/2007|19:01] C:\DOCUME~1\PC\APPLIC~1\SecuROM
[19/08/2007|14:13] C:\DOCUME~1\PC\APPLIC~1\SlySoft
[22/12/2007|16:52] C:\DOCUME~1\PC\APPLIC~1\Sony
[10/04/2008|18:52] C:\DOCUME~1\PC\APPLIC~1\Steinberg
[10/02/2007|19:08] C:\DOCUME~1\PC\APPLIC~1\Sun
[03/02/2007|12:12] C:\DOCUME~1\PC\APPLIC~1\Talkback
[11/07/2009|00:25] C:\DOCUME~1\PC\APPLIC~1\U3
[06/04/2007|01:23] C:\DOCUME~1\PC\APPLIC~1\Ulead Systems
[15/02/2007|22:12] C:\DOCUME~1\PC\APPLIC~1\vlc
[08/03/2008|13:25] C:\DOCUME~1\PC\APPLIC~1\Winamp
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[10/07/2009 21:11][--a------] C:\WINDOWS\tasks\WGASetup.job
[04/05/2007 13:54][--a------] C:\WINDOWS\tasks\FRU Task #Hewlett-Packard#hp officejet 6100 series#1170592315.job
[10/07/2009 21:11][--ah-----] C:\WINDOWS\tasks\SA.DAT
[28/09/2001 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ Listing des dossiers dans C:\Program Files
[04/06/2009|18:58] C:\Program Files\Adobe
[17/02/2007|12:22] C:\Program Files\Ahead
[02/02/2007|14:29] C:\Program Files\AIDA32 - Enterprise System Information
[22/12/2007|05:37] C:\Program Files\AIST
[02/02/2007|15:08] C:\Program Files\Alwil Software
[14/07/2008|18:26] C:\Program Files\Anti Trojan Elite
[09/06/2009|21:38] C:\Program Files\a-squared Free
[03/03/2007|19:38] C:\Program Files\ATI Technologies
[15/02/2007|23:08] C:\Program Files\AviSynth 2.5
[04/06/2009|19:04] C:\Program Files\AVSMedia
[03/02/2007|12:19] C:\Program Files\BitLord
[02/02/2007|20:29] C:\Program Files\CCleaner
[17/10/2008|22:19] C:\Program Files\Circle Developement
[02/02/2007|12:40] C:\Program Files\ComPlus Applications
[16/02/2008|13:04] C:\Program Files\DalianCD
[04/07/2007|02:29] C:\Program Files\Dial-Messenger
[31/12/2007|18:41] C:\Program Files\EA GAMES
[09/09/2007|12:26] C:\Program Files\EBP
[18/05/2009|04:36] C:\Program Files\eChanblard
[09/07/2009|00:57] C:\Program Files\eMule
[30/11/2007|17:36] C:\Program Files\Evariste
[14/07/2008|18:44] C:\Program Files\ewido anti-malware
[04/06/2009|19:02] C:\Program Files\Fichiers communs
[14/07/2008|18:48] C:\Program Files\Free.fr
[19/01/2009|20:21] C:\Program Files\Geoplan-Geospace
[04/02/2007|14:26] C:\Program Files\Hewlett-Packard
[10/07/2009|22:33] C:\Program Files\Hijackthis Version Fran‡aise
[09/06/2009|21:40] C:\Program Files\InstallShield Installation Information
[10/06/2009|23:10] C:\Program Files\Internet Explorer
[21/06/2009|11:44] C:\Program Files\Java
[02/02/2007|15:08] C:\Program Files\K-Lite Codec Pack
[04/06/2009|18:11] C:\Program Files\Lavasoft
[10/07/2009|16:03] C:\Program Files\Malwarebytes' Anti-Malware
[24/08/2008|20:29] C:\Program Files\Messenger
[17/10/2008|22:19] C:\Program Files\Messenger Plus! Live
[31/03/2007|01:03] C:\Program Files\MessengerPlus! 3
[02/02/2007|12:43] C:\Program Files\microsoft frontpage
[02/02/2007|15:05] C:\Program Files\Microsoft Office
[22/12/2007|00:20] C:\Program Files\Microsoft SQL Server
[02/02/2007|15:04] C:\Program Files\Microsoft.NET
[24/08/2008|20:22] C:\Program Files\Movie Maker
[11/07/2009|00:03] C:\Program Files\Mozilla Firefox
[02/02/2007|14:06] C:\Program Files\MSBuild
[06/07/2008|12:33] C:\Program Files\MSI
[14/11/2008|19:19] C:\Program Files\MSN
[02/02/2007|12:39] C:\Program Files\MSN Gaming Zone
[04/06/2009|18:51] C:\Program Files\MSN Messenger
[15/08/2007|19:30] C:\Program Files\MSXML 6.0
[24/08/2008|20:19] C:\Program Files\NetMeeting
[02/02/2007|12:40] C:\Program Files\Online Services
[24/08/2008|20:19] C:\Program Files\Outlook Express
[23/02/2008|15:54] C:\Program Files\PDF Editeur 2
[06/04/2008|13:52] C:\Program Files\PowerISO
[09/06/2009|21:47] C:\Program Files\RamBoost XP
[02/02/2007|14:40] C:\Program Files\Realtek AC97
[02/02/2007|14:04] C:\Program Files\Reference Assemblies
[10/02/2007|01:18] C:\Program Files\ReflexiveArcade
[09/06/2009|21:39] C:\Program Files\Ripp-it_AM
[02/02/2007|12:42] C:\Program Files\Services en ligne
[06/07/2008|12:28] C:\Program Files\Setup Files
[10/07/2009|19:30] C:\Program Files\SiSoftware
[19/08/2007|14:14] C:\Program Files\SlySoft
[23/12/2007|17:03] C:\Program Files\Sony
[22/12/2007|00:18] C:\Program Files\Sony Setup
[10/07/2009|15:07] C:\Program Files\Spybot - Search & Destroy
[18/08/2007|12:47] C:\Program Files\Storyboard Tools
[10/08/2008|21:25] C:\Program Files\Sun
[10/04/2008|18:48] C:\Program Files\Syncrosoft
[14/07/2008|20:55] C:\Program Files\ToniArts
[03/07/2008|23:42] C:\Program Files\Trust
[22/12/2007|00:20] C:\Program Files\Uninstall Information
[02/02/2007|14:45] C:\Program Files\VIA
[02/02/2007|15:08] C:\Program Files\VideoLAN
[04/09/2007|21:13] C:\Program Files\Virtools
[06/04/2008|14:57] C:\Program Files\VoptXP v7
[02/02/2007|20:36] C:\Program Files\Webteh
[26/08/2008|11:47] C:\Program Files\Winamp
[14/09/2007|12:17] C:\Program Files\Windows Live
[04/07/2008|03:44] C:\Program Files\Windows Live Safety Center
[02/02/2007|14:00] C:\Program Files\Windows Media Connect 2
[24/08/2008|20:19] C:\Program Files\Windows Media Player
[24/08/2008|20:19] C:\Program Files\Windows NT
[02/02/2007|12:42] C:\Program Files\WindowsUpdate
[17/04/2008|01:10] C:\Program Files\WinRAR
[16/04/2008|13:32] C:\Program Files\WinZip
[02/02/2007|12:43] C:\Program Files\xerox
[02/02/2007|20:29] C:\Program Files\Yahoo!
[16/02/2008|13:04] C:\Program Files\Zero G Registry
[15/07/2008|12:25] C:\Program Files\Zone Labs
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[16/02/2008|12:48] C:\Program Files\Fichiers communs\Adobe
[10/03/2007|16:19] C:\Program Files\Fichiers communs\Adobe Systems Shared
[02/02/2007|15:03] C:\Program Files\Fichiers communs\Ahead
[04/06/2009|19:04] C:\Program Files\Fichiers communs\AVSMedia
[02/02/2007|15:05] C:\Program Files\Fichiers communs\DESIGNER
[09/09/2007|12:26] C:\Program Files\Fichiers communs\EBP
[04/02/2007|14:27] C:\Program Files\Fichiers communs\Hewlett-Packard
[02/02/2007|20:12] C:\Program Files\Fichiers communs\InstallShield
[10/02/2007|18:34] C:\Program Files\Fichiers communs\Java
[17/02/2007|12:26] C:\Program Files\Fichiers communs\LightScribe
[02/02/2007|15:06] C:\Program Files\Fichiers communs\Microsoft Shared
[02/02/2007|12:41] C:\Program Files\Fichiers communs\MSSoap
[02/02/2007|13:35] C:\Program Files\Fichiers communs\ODBC
[02/02/2007|12:41] C:\Program Files\Fichiers communs\Services
[03/07/2008|23:42] C:\Program Files\Fichiers communs\snp2std
[02/02/2007|13:35] C:\Program Files\Fichiers communs\SpeechEngines
[24/08/2008|20:19] C:\Program Files\Fichiers communs\System
[03/06/2009|19:16] C:\Program Files\Fichiers communs\Wise Installation Wizard
--------------------\\ Process
( 52 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\Program Files\Circle Developement
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-07-11 00:29:24
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\gYAPIv4hnVjKwKFJkZXM2+7mcEQ=.dt2 12742 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\vXvXhuhRwjkz9Qwz9AOfG2fyDpg=.id2 336 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\VY8V2FMnuVcJ0SeUORq1xl1Etji8=.dt2 3294 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\VY8V2FMnuVcJ0SeUORq1xl1Etji8=.id2 336 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\WWCqedWxuxdYU2Kqkc9t+SgGzhw=.dt2 7223 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\WWCqedWxuxdYU2Kqkc9t+SgGzhw=.id2 336 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\x7uO75VJgTBQ2isvH6lojwcbd+o=.dt2 13142 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\x7uO75VJgTBQ2isvH6lojwcbd+o=.id2 320 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\xAtNyM3vSRm9yJyQfiErBaxtxnc=.dt2 39308 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\xAtNyM3vSRm9yJyQfiErBaxtxnc=.id2 512 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\XClbCoQ7EWe1VZIux8F3f2FUdAA4=.dt2 51578 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\XClbCoQ7EWe1VZIux8F3f2FUdAA4=.id2 352 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\XkDW6G3ysQU0j6xvA5YwLfX4vK0=.dt2 3033 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\XkDW6G3ysQU0j6xvA5YwLfX4vK0=.id2 352 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\gYAPIv4hnVjKwKFJkZXM2+7mcEQ=.id2 400 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\H6of8Cj09JYipVmO2FSK2CFvwRRQ=.dt2 10913 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\H6of8Cj09JYipVmO2FSK2CFvwRRQ=.id2 352 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\Hoy+c7CDf6RBbioPIKjYDI2Gzjg=.dt2 45185 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\Hoy+c7CDf6RBbioPIKjYDI2Gzjg=.id2 512 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\hQiNbRD2FNjYnhnsukO9SHSfas34=.dt2 23443 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\hQiNbRD2FNjYnhnsukO9SHSfas34=.id2 496 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\T22FldMW8f3iwkkhiv0xj2p94mTk=.dt2 65833 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\T22FldMW8f3iwkkhiv0xj2p94mTk=.id2 320 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\TIVsOVLDPMct7m6on2FuPebPVxfI=.dt2 34887 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\TIVsOVLDPMct7m6on2FuPebPVxfI=.id2 464 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\uIN5MBXqLe3bSYNTDBevlHbWrBA=.dt2 2804 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\uIN5MBXqLe3bSYNTDBevlHbWrBA=.id2 320 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\uNodB+9MY9JNUlCxwyGhQOAMtwg=.dt2 26531 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\uNodB+9MY9JNUlCxwyGhQOAMtwg=.id2 496 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\UwV2FtqMKn4b34BklAtBtfJLnelo=.dt2 43136 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\UwV2FtqMKn4b34BklAtBtfJLnelo=.id2 448 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\VOqxwC8pnOGy9WTRb5ZxuqRO2q0=.dt2 7648 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\VOqxwC8pnOGy9WTRb5ZxuqRO2q0=.id2 352 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\vQFEb4cp7DZwm9SeC2F2FvqNsGv+4=.dt2 9961 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\vQFEb4cp7DZwm9SeC2F2FvqNsGv+4=.id2 320 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\1ho4+cAw492bfODPRHdI2FyylLAk=.dt2 17787 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\1ho4+cAw492bfODPRHdI2FyylLAk=.id2 528 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\3f7e6Uqm4yn2CGnyCBpDpo+u1tE=.dt2 3221 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\3f7e6Uqm4yn2CGnyCBpDpo+u1tE=.id2 352 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\3YeFt+C116gAExV8ZQPQKes2Zrk=.dt2 6420 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\3YeFt+C116gAExV8ZQPQKes2Zrk=.id2 320 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\46sZRH3KvqmFupFeFS8iKm4Fb2Fw=.dt2 5942 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\46sZRH3KvqmFupFeFS8iKm4Fb2Fw=.id2 336 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\EpAVx0GtbFDKAgw2Fncch3Sj11OA=.dt2 17814 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\M3Y6bCpEQrhjrfhKHgdHqI5XvYU=.dt2 9622 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\M3Y6bCpEQrhjrfhKHgdHqI5XvYU=.id2 352 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\mSjM2plQyQjjln0jYNvyzFYZDq4=.dt2 7854 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\mSjM2plQyQjjln0jYNvyzFYZDq4=.id2 352 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\ob8SH5grg2ayIOMkceADnpU6KeY=.dt2 72041 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\ob8SH5grg2ayIOMkceADnpU6KeY=.id2 528 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\OJk626WDdJ3F67vUUX0AxfN+iuI=.dt2 37516 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\OJk626WDdJ3F67vUUX0AxfN+iuI=.id2 544 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\OuykYDQDvEC2FhHDlQ0WlQM5lKiU=.dt2 22002 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\OuykYDQDvEC2FhHDlQ0WlQM5lKiU=.id2 400 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\EpAVx0GtbFDKAgw2Fncch3Sj11OA=.id2 384 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\if70RRjv12NZqQ9MNgjZHq9OQLA=.dt2 78802 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\if70RRjv12NZqQ9MNgjZHq9OQLA=.id2 336 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\j+kZd+AEgyxc3FHrb1WOrfomrJY=.dt2 5213 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\j+kZd+AEgyxc3FHrb1WOrfomrJY=.id2 304 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\J691utye9LcsOXREWYotKexEIF0=.dt2 7190 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\J691utye9LcsOXREWYotKexEIF0=.id2 320 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\jL6gDfhSbrttsevdR2FxOZnMyF8=.dt2 19514 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\jL6gDfhSbrttsevdR2FxOZnMyF8=.id2 512 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\JOU9fFgZKIF9GBfCEjX2FU8GwCMA=.dt2 158 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\JOU9fFgZKIF9GBfCEjX2FU8GwCMA=.id2 320 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\6KcUHNhibQ2kraJwRzE2RCAMcF4=.dt2 30782 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\6KcUHNhibQ2kraJwRzE2RCAMcF4=.id2 544 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\7nJT7vWETPmykQGA1KT1PJGccno=.dt2 32675 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\7nJT7vWETPmykQGA1KT1PJGccno=.id2 320 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\8oWHqPlGHLoZpa+1s2fKmrwK658=.dt2 976 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\8oWHqPlGHLoZpa+1s2fKmrwK658=.id2 304 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\AiOv9DRPZT2FDetPcyHNE5pywyqM=.dt2 303 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\AiOv9DRPZT2FDetPcyHNE5pywyqM=.id2 320 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\Al2FVJ9vWTAp9hsu9JQa8gVw+UbQ=.dt2 8434 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\Al2FVJ9vWTAp9hsu9JQa8gVw+UbQ=.id2 352 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\Y5H7hiw0jnY0uFrmG9T6o3dbFZY=.id2 304 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\y9KEYWvEFABB0Iqpr6mM2PqMSH8=.dt2 10170 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\y9KEYWvEFABB0Iqpr6mM2PqMSH8=.id2 336 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\YJ0lK0JMNuZGg6GI2Fccd4UyCjVU=.dt2 48866 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\YJ0lK0JMNuZGg6GI2Fccd4UyCjVU=.id2 320 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\Zy5fXJxgh4L09c9rKackm1NCL3E=.dt2 5568 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\Zy5fXJxgh4L09c9rKackm1NCL3E=.id2 304 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\DrWgMaGhOiUy1AacGLrtle2w1rE=.dt2 43049 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\DrWgMaGhOiUy1AacGLrtle2w1rE=.id2 416 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\dWfyCNZxdMF3aTcZIXz5TsnfHbM=.dt2 14856 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\dWfyCNZxdMF3aTcZIXz5TsnfHbM=.id2 528 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\EaD8UmQiCos8jkef2FLHnrekLJks=.dt2 5336 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\EaD8UmQiCos8jkef2FLHnrekLJks=.id2 320 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\eCbXMD0+6kZCyZiAeskNIPxS6hE=.dt2 8028 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\eCbXMD0+6kZCyZiAeskNIPxS6hE=.id2 352 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Windows\GameExplorer\{DFEF49D9-FC95-4301-99B9-2FB91C6ABA06}\PlayTasks\1\Les Sims™ 2 : Boit@Look.lnk 1087 bytes hidden from API
scan completed successfully
hidden processes: 0
hidden files: 94
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:30][D:6]-> C:\DOCUME~1\PC\LOCALS~1\Temp
[F:2][D:0]-> C:\DOCUME~1\PC\Cookies
[F:14][D:4]-> C:\DOCUME~1\PC\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 11/07/2009| 0:30 - Option : [1]
--------------------\\ Fin du rapport a 0:30:41
-----------\\ ToolBar S&D 1.2.8 XP/Vista
Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) 64 Processor 3000+ )
BIOS : Version 07.00T
USER : PC ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1335 [VPS 090709-0] 4.8.1335 (Activated)
Firewall : ZoneAlarm Firewall 7.0.483.000 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:58 Go (Free:20 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)
F:\ (Local Disk) - NTFS - Total:90 Go (Free:11 Go)
G:\ (Local Disk) - NTFS - Total:17 Go (Free:4 Go)
H:\ (Local Disk) - NTFS - Total:9 Go (Free:9 Go)
I:\ (Local Disk) - NTFS - Total:48 Go (Free:1 Go)
J:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)
M:\ (USB) - FAT32 - Total:3890 Mo (Free:1 Go)
"C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 )
Option : [1] ( 11/07/2009| 0:32 )
-----------\\ Recherche de Fichiers / Dossiers ...
C:\Program Files\BitLord
C:\Program Files\BitLord\BitLord.exe
C:\Program Files\BitLord\BitLord.url
C:\Program Files\BitLord\BitLord.xml
C:\Program Files\BitLord\Downloads
C:\Program Files\BitLord\Downloads.xml
C:\Program Files\BitLord\lang
C:\Program Files\BitLord\License.txt
C:\Program Files\BitLord\rules
C:\Program Files\BitLord\Torrents
C:\Program Files\BitLord\uninst.exe
C:\Program Files\BitLord\lang\lang_ar_ae.xml
C:\Program Files\BitLord\lang\lang_bg_bg.xml
C:\Program Files\BitLord\lang\lang_ca_es.xml
C:\Program Files\BitLord\lang\lang_cz_cz.xml
C:\Program Files\BitLord\lang\lang_da_dk.xml
C:\Program Files\BitLord\lang\lang_de_de.xml
C:\Program Files\BitLord\lang\lang_el_gr.xml
C:\Program Files\BitLord\lang\lang_en_us.xml
C:\Program Files\BitLord\lang\lang_es_ar.xml
C:\Program Files\BitLord\lang\lang_es_es.xml
C:\Program Files\BitLord\lang\lang_et_ee.xml
C:\Program Files\BitLord\lang\lang_fi_fi.xml
C:\Program Files\BitLord\lang\lang_fr_fr.xml
C:\Program Files\BitLord\lang\lang_gl_es.xml
C:\Program Files\BitLord\lang\lang_he_il.xml
C:\Program Files\BitLord\lang\lang_hu_hu.xml
C:\Program Files\BitLord\lang\lang_it_it.xml
C:\Program Files\BitLord\lang\lang_jp_jp.xml
C:\Program Files\BitLord\lang\lang_ko_kr.xml
C:\Program Files\BitLord\lang\lang_nb_no.xml
C:\Program Files\BitLord\lang\lang_nl_nl.xml
C:\Program Files\BitLord\lang\lang_pl_pl.xml
C:\Program Files\BitLord\lang\lang_pt_br.xml
C:\Program Files\BitLord\lang\lang_pt_pt.xml
C:\Program Files\BitLord\lang\lang_ro_ro.xml
C:\Program Files\BitLord\lang\lang_ru_ru.xml
C:\Program Files\BitLord\lang\lang_sk_sk.xml
C:\Program Files\BitLord\lang\lang_sl_si.xml
C:\Program Files\BitLord\lang\lang_sr_sr.xml
C:\Program Files\BitLord\lang\lang_sv_se.xml
C:\Program Files\BitLord\lang\lang_th_th.xml
C:\Program Files\BitLord\lang\lang_tr_tr.xml
C:\Program Files\BitLord\lang\lang_va_es.xml
C:\Program Files\BitLord\lang\lang_zh_tw.xml
C:\Program Files\BitLord\rules\ipfilter.dat
C:\Program Files\BitLord\rules\tracker.dat
C:\Program Files\BitLord\Torrents\A very british gangster.dvdripfrench.WDF.avi.torrent
C:\Program Files\BitLord\Torrents\Adobe Dreamweaver CS4.torrent
C:\Program Files\BitLord\Torrents\Adobe Premiere Pro CS3 + Keygen Activator 100% working #1.torrent
C:\Program Files\BitLord\Torrents\Armee.Haute.Technologie.SECRET.DEFENSE.torrent
C:\Program Files\BitLord\Torrents\Cr4zy M4ch1n3s 2.rar.torrent
C:\Program Files\BitLord\Torrents\Crazy Machines 2.torrent
C:\Program Files\BitLord\Torrents\CRAZY MACHINES 2[0].torrent
C:\Program Files\BitLord\Torrents\Crazy Machines II.torrent
C:\Program Files\BitLord\Torrents\Crazy Machines II[0].torrent
C:\Program Files\BitLord\Torrents\Crazy Machines.rar.torrent
C:\Program Files\BitLord\Torrents\Crazy Machines.torrent
C:\Program Files\BitLord\Torrents\Crazy.Machines.2.GERMAN-SiLENTGATE.torrent
C:\Program Files\BitLord\Torrents\Crazy.Machines.2.GERMAN-SiLENTGATE[0].torrent
C:\Program Files\BitLord\Torrents\Crazy.Machines.II-ViTALiTY.torrent
C:\Program Files\BitLord\Torrents\Crazy.Machines.II.rar.torrent
C:\Program Files\BitLord\Torrents\Download.torrent
C:\Program Files\BitLord\Torrents\FM2008.torrent
C:\Program Files\BitLord\Torrents\Football Manager.torrent
C:\Program Files\BitLord\Torrents\Football.Manager.2008.CloneCD-NETSHOW.torrent
C:\Program Files\BitLord\Torrents\Football.Manager.2008.PROPER-FLT.torrent
C:\Program Files\BitLord\Torrents\Frontiere s.torrent
C:\Program Files\BitLord\Torrents\Le Scandale Des Armes A Uranium Appauvri - La Guerre Radioactive Secrete.avi.torrent
C:\Program Files\BitLord\Torrents\Le Scandale Des Armes A Uranium Appauvri - La Guerre Radioactive Secrete.avi.xml
C:\Program Files\BitLord\Torrents\Orfeu!.torrent
C:\Program Files\BitLord\Torrents\Orphée (1949).torrent
C:\Program Files\BitLord\Torrents\pack.torrent
C:\Program Files\BitLord\Torrents\pack.xml
C:\Program Files\BitLord\Torrents\Voyage.au.coeur.de.la.lune.torrent
C:\Program Files\BitLord\Torrents\Windows XP Pro SP3 FR - IE7 - WMP11.iso.torrent
C:\Program Files\BitLord\Torrents\[Tsubasa-Fansub_&_Gensoteam]_Saint_Seiya_Hades_-_Elysion-Hen_-_OAV_06_-_DVD-JAP_[BB71D21C].mp4.torrent
C:\DOCUME~1\PC\MENUDM~1\PROGRA~1\BitLord
-----------\\ [..\Internet Explorer\Main]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://moteur.chat-land.org/"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"SearchMigratedDefaultURL"="https://www.bing.com/?scope=web&mkt=fr-FR{searchTerms}&src={referrer:source?}"
"Default_Page_Url"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
"Default_Search_Url"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"CustomizeSearch"="https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchcust.htm"
"SearchAssistant"="https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchasst.htm"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="https://www.msn.com/fr-fr/?ocid=iehp"
"Default_Search_URL"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Start Page"="https://www.msn.com/fr-fr/?ocid=iehp"
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
1 - "C:\ToolBar SD\TB_1.txt" - 11/07/2009| 0:33 - Option : [1]
-----------\\ Fin du rapport a 0:33:12,09
--------------------\\ Lop S&D 4.2.5-0 XP/Vista
Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) 64 Processor 3000+ )
BIOS : Version 07.00T
USER : PC ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1335 [VPS 090709-0] 4.8.1335 (Activated)
Firewall : ZoneAlarm Firewall 7.0.483.000 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:58 Go (Free:20 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)
F:\ (Local Disk) - NTFS - Total:90 Go (Free:11 Go)
G:\ (Local Disk) - NTFS - Total:17 Go (Free:4 Go)
H:\ (Local Disk) - NTFS - Total:9 Go (Free:9 Go)
I:\ (Local Disk) - NTFS - Total:48 Go (Free:1 Go)
J:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)
M:\ (USB) - FAT32 - Total:3890 Mo (Free:1 Go)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 11/07/2009| 0:27 )
--------------------\\ Listing des dossiers dans APPLIC~1
[09/09/2007|12:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{B33CBE2B-A739-401D-A5E0-041195C4A17B}
[09/09/2007|12:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{DFAB194F-9585-4C44-8299-0338F0BF379E}
[09/07/2009|11:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[02/02/2007|15:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
[02/02/2007|15:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[16/05/2007|18:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Aventail
[23/05/2007|13:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink
[09/09/2007|12:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\EBP
[14/07/2008|21:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
[20/08/2007|19:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab
[03/06/2009|19:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
[10/03/2007|16:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
[15/07/2008|12:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MailFrontier
[10/07/2009|16:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[04/01/2008|16:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[21/07/2008|02:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[02/02/2007|15:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Real
[23/12/2007|17:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony
[10/07/2009|16:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[04/06/2009|19:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems
[02/02/2007|13:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[16/04/2008|13:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WinZip
[02/02/2007|20:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion
[02/02/2007|12:43] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[20/02/2007|13:34] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[02/02/2007|12:43] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[09/07/2009|11:47] C:\DOCUME~1\PC\APPLIC~1\Adobe
[20/08/2007|04:46] C:\DOCUME~1\PC\APPLIC~1\Ahead
[16/02/2008|20:29] C:\DOCUME~1\PC\APPLIC~1\ALLCapture
[16/05/2007|18:59] C:\DOCUME~1\PC\APPLIC~1\Aventail
[27/06/2009|21:53] C:\DOCUME~1\PC\APPLIC~1\dvdcss
[09/09/2007|12:26] C:\DOCUME~1\PC\APPLIC~1\EBP
[26/04/2007|13:00] C:\DOCUME~1\PC\APPLIC~1\Google
[03/03/2007|22:20] C:\DOCUME~1\PC\APPLIC~1\Help
[04/02/2007|14:34] C:\DOCUME~1\PC\APPLIC~1\Hewlett-Packard
[02/02/2007|13:25] C:\DOCUME~1\PC\APPLIC~1\Identities
[09/02/2007|17:27] C:\DOCUME~1\PC\APPLIC~1\InterTrust
[21/06/2008|20:06] C:\DOCUME~1\PC\APPLIC~1\JLC's Software
[03/06/2009|18:59] C:\DOCUME~1\PC\APPLIC~1\Lavasoft
[23/09/2008|20:47] C:\DOCUME~1\PC\APPLIC~1\LuckyTender
[14/09/2008|21:49] C:\DOCUME~1\PC\APPLIC~1\Macromedia
[10/07/2009|16:03] C:\DOCUME~1\PC\APPLIC~1\Malwarebytes
[02/02/2007|23:25] C:\DOCUME~1\PC\APPLIC~1\Media Player Classic
[04/06/2009|19:03] C:\DOCUME~1\PC\APPLIC~1\Microsoft
[15/07/2008|02:56] C:\DOCUME~1\PC\APPLIC~1\Mozilla
[18/08/2007|11:50] C:\DOCUME~1\PC\APPLIC~1\OLYMPUS
[22/12/2007|16:53] C:\DOCUME~1\PC\APPLIC~1\Publish Providers
[02/02/2007|23:25] C:\DOCUME~1\PC\APPLIC~1\Real
[31/12/2007|19:01] C:\DOCUME~1\PC\APPLIC~1\SecuROM
[19/08/2007|14:13] C:\DOCUME~1\PC\APPLIC~1\SlySoft
[22/12/2007|16:52] C:\DOCUME~1\PC\APPLIC~1\Sony
[10/04/2008|18:52] C:\DOCUME~1\PC\APPLIC~1\Steinberg
[10/02/2007|19:08] C:\DOCUME~1\PC\APPLIC~1\Sun
[03/02/2007|12:12] C:\DOCUME~1\PC\APPLIC~1\Talkback
[11/07/2009|00:25] C:\DOCUME~1\PC\APPLIC~1\U3
[06/04/2007|01:23] C:\DOCUME~1\PC\APPLIC~1\Ulead Systems
[15/02/2007|22:12] C:\DOCUME~1\PC\APPLIC~1\vlc
[08/03/2008|13:25] C:\DOCUME~1\PC\APPLIC~1\Winamp
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[10/07/2009 21:11][--a------] C:\WINDOWS\tasks\WGASetup.job
[04/05/2007 13:54][--a------] C:\WINDOWS\tasks\FRU Task #Hewlett-Packard#hp officejet 6100 series#1170592315.job
[10/07/2009 21:11][--ah-----] C:\WINDOWS\tasks\SA.DAT
[28/09/2001 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ Listing des dossiers dans C:\Program Files
[04/06/2009|18:58] C:\Program Files\Adobe
[17/02/2007|12:22] C:\Program Files\Ahead
[02/02/2007|14:29] C:\Program Files\AIDA32 - Enterprise System Information
[22/12/2007|05:37] C:\Program Files\AIST
[02/02/2007|15:08] C:\Program Files\Alwil Software
[14/07/2008|18:26] C:\Program Files\Anti Trojan Elite
[09/06/2009|21:38] C:\Program Files\a-squared Free
[03/03/2007|19:38] C:\Program Files\ATI Technologies
[15/02/2007|23:08] C:\Program Files\AviSynth 2.5
[04/06/2009|19:04] C:\Program Files\AVSMedia
[03/02/2007|12:19] C:\Program Files\BitLord
[02/02/2007|20:29] C:\Program Files\CCleaner
[17/10/2008|22:19] C:\Program Files\Circle Developement
[02/02/2007|12:40] C:\Program Files\ComPlus Applications
[16/02/2008|13:04] C:\Program Files\DalianCD
[04/07/2007|02:29] C:\Program Files\Dial-Messenger
[31/12/2007|18:41] C:\Program Files\EA GAMES
[09/09/2007|12:26] C:\Program Files\EBP
[18/05/2009|04:36] C:\Program Files\eChanblard
[09/07/2009|00:57] C:\Program Files\eMule
[30/11/2007|17:36] C:\Program Files\Evariste
[14/07/2008|18:44] C:\Program Files\ewido anti-malware
[04/06/2009|19:02] C:\Program Files\Fichiers communs
[14/07/2008|18:48] C:\Program Files\Free.fr
[19/01/2009|20:21] C:\Program Files\Geoplan-Geospace
[04/02/2007|14:26] C:\Program Files\Hewlett-Packard
[10/07/2009|22:33] C:\Program Files\Hijackthis Version Fran‡aise
[09/06/2009|21:40] C:\Program Files\InstallShield Installation Information
[10/06/2009|23:10] C:\Program Files\Internet Explorer
[21/06/2009|11:44] C:\Program Files\Java
[02/02/2007|15:08] C:\Program Files\K-Lite Codec Pack
[04/06/2009|18:11] C:\Program Files\Lavasoft
[10/07/2009|16:03] C:\Program Files\Malwarebytes' Anti-Malware
[24/08/2008|20:29] C:\Program Files\Messenger
[17/10/2008|22:19] C:\Program Files\Messenger Plus! Live
[31/03/2007|01:03] C:\Program Files\MessengerPlus! 3
[02/02/2007|12:43] C:\Program Files\microsoft frontpage
[02/02/2007|15:05] C:\Program Files\Microsoft Office
[22/12/2007|00:20] C:\Program Files\Microsoft SQL Server
[02/02/2007|15:04] C:\Program Files\Microsoft.NET
[24/08/2008|20:22] C:\Program Files\Movie Maker
[11/07/2009|00:03] C:\Program Files\Mozilla Firefox
[02/02/2007|14:06] C:\Program Files\MSBuild
[06/07/2008|12:33] C:\Program Files\MSI
[14/11/2008|19:19] C:\Program Files\MSN
[02/02/2007|12:39] C:\Program Files\MSN Gaming Zone
[04/06/2009|18:51] C:\Program Files\MSN Messenger
[15/08/2007|19:30] C:\Program Files\MSXML 6.0
[24/08/2008|20:19] C:\Program Files\NetMeeting
[02/02/2007|12:40] C:\Program Files\Online Services
[24/08/2008|20:19] C:\Program Files\Outlook Express
[23/02/2008|15:54] C:\Program Files\PDF Editeur 2
[06/04/2008|13:52] C:\Program Files\PowerISO
[09/06/2009|21:47] C:\Program Files\RamBoost XP
[02/02/2007|14:40] C:\Program Files\Realtek AC97
[02/02/2007|14:04] C:\Program Files\Reference Assemblies
[10/02/2007|01:18] C:\Program Files\ReflexiveArcade
[09/06/2009|21:39] C:\Program Files\Ripp-it_AM
[02/02/2007|12:42] C:\Program Files\Services en ligne
[06/07/2008|12:28] C:\Program Files\Setup Files
[10/07/2009|19:30] C:\Program Files\SiSoftware
[19/08/2007|14:14] C:\Program Files\SlySoft
[23/12/2007|17:03] C:\Program Files\Sony
[22/12/2007|00:18] C:\Program Files\Sony Setup
[10/07/2009|15:07] C:\Program Files\Spybot - Search & Destroy
[18/08/2007|12:47] C:\Program Files\Storyboard Tools
[10/08/2008|21:25] C:\Program Files\Sun
[10/04/2008|18:48] C:\Program Files\Syncrosoft
[14/07/2008|20:55] C:\Program Files\ToniArts
[03/07/2008|23:42] C:\Program Files\Trust
[22/12/2007|00:20] C:\Program Files\Uninstall Information
[02/02/2007|14:45] C:\Program Files\VIA
[02/02/2007|15:08] C:\Program Files\VideoLAN
[04/09/2007|21:13] C:\Program Files\Virtools
[06/04/2008|14:57] C:\Program Files\VoptXP v7
[02/02/2007|20:36] C:\Program Files\Webteh
[26/08/2008|11:47] C:\Program Files\Winamp
[14/09/2007|12:17] C:\Program Files\Windows Live
[04/07/2008|03:44] C:\Program Files\Windows Live Safety Center
[02/02/2007|14:00] C:\Program Files\Windows Media Connect 2
[24/08/2008|20:19] C:\Program Files\Windows Media Player
[24/08/2008|20:19] C:\Program Files\Windows NT
[02/02/2007|12:42] C:\Program Files\WindowsUpdate
[17/04/2008|01:10] C:\Program Files\WinRAR
[16/04/2008|13:32] C:\Program Files\WinZip
[02/02/2007|12:43] C:\Program Files\xerox
[02/02/2007|20:29] C:\Program Files\Yahoo!
[16/02/2008|13:04] C:\Program Files\Zero G Registry
[15/07/2008|12:25] C:\Program Files\Zone Labs
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[16/02/2008|12:48] C:\Program Files\Fichiers communs\Adobe
[10/03/2007|16:19] C:\Program Files\Fichiers communs\Adobe Systems Shared
[02/02/2007|15:03] C:\Program Files\Fichiers communs\Ahead
[04/06/2009|19:04] C:\Program Files\Fichiers communs\AVSMedia
[02/02/2007|15:05] C:\Program Files\Fichiers communs\DESIGNER
[09/09/2007|12:26] C:\Program Files\Fichiers communs\EBP
[04/02/2007|14:27] C:\Program Files\Fichiers communs\Hewlett-Packard
[02/02/2007|20:12] C:\Program Files\Fichiers communs\InstallShield
[10/02/2007|18:34] C:\Program Files\Fichiers communs\Java
[17/02/2007|12:26] C:\Program Files\Fichiers communs\LightScribe
[02/02/2007|15:06] C:\Program Files\Fichiers communs\Microsoft Shared
[02/02/2007|12:41] C:\Program Files\Fichiers communs\MSSoap
[02/02/2007|13:35] C:\Program Files\Fichiers communs\ODBC
[02/02/2007|12:41] C:\Program Files\Fichiers communs\Services
[03/07/2008|23:42] C:\Program Files\Fichiers communs\snp2std
[02/02/2007|13:35] C:\Program Files\Fichiers communs\SpeechEngines
[24/08/2008|20:19] C:\Program Files\Fichiers communs\System
[03/06/2009|19:16] C:\Program Files\Fichiers communs\Wise Installation Wizard
--------------------\\ Process
( 52 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\Program Files\Circle Developement
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-07-11 00:29:24
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\gYAPIv4hnVjKwKFJkZXM2+7mcEQ=.dt2 12742 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\vXvXhuhRwjkz9Qwz9AOfG2fyDpg=.id2 336 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\VY8V2FMnuVcJ0SeUORq1xl1Etji8=.dt2 3294 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\VY8V2FMnuVcJ0SeUORq1xl1Etji8=.id2 336 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\WWCqedWxuxdYU2Kqkc9t+SgGzhw=.dt2 7223 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\WWCqedWxuxdYU2Kqkc9t+SgGzhw=.id2 336 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\x7uO75VJgTBQ2isvH6lojwcbd+o=.dt2 13142 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\x7uO75VJgTBQ2isvH6lojwcbd+o=.id2 320 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\xAtNyM3vSRm9yJyQfiErBaxtxnc=.dt2 39308 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\xAtNyM3vSRm9yJyQfiErBaxtxnc=.id2 512 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\XClbCoQ7EWe1VZIux8F3f2FUdAA4=.dt2 51578 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\XClbCoQ7EWe1VZIux8F3f2FUdAA4=.id2 352 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\XkDW6G3ysQU0j6xvA5YwLfX4vK0=.dt2 3033 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\XkDW6G3ysQU0j6xvA5YwLfX4vK0=.id2 352 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\gYAPIv4hnVjKwKFJkZXM2+7mcEQ=.id2 400 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\H6of8Cj09JYipVmO2FSK2CFvwRRQ=.dt2 10913 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\H6of8Cj09JYipVmO2FSK2CFvwRRQ=.id2 352 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\Hoy+c7CDf6RBbioPIKjYDI2Gzjg=.dt2 45185 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\Hoy+c7CDf6RBbioPIKjYDI2Gzjg=.id2 512 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\hQiNbRD2FNjYnhnsukO9SHSfas34=.dt2 23443 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\hQiNbRD2FNjYnhnsukO9SHSfas34=.id2 496 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\T22FldMW8f3iwkkhiv0xj2p94mTk=.dt2 65833 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\T22FldMW8f3iwkkhiv0xj2p94mTk=.id2 320 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\TIVsOVLDPMct7m6on2FuPebPVxfI=.dt2 34887 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\TIVsOVLDPMct7m6on2FuPebPVxfI=.id2 464 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\uIN5MBXqLe3bSYNTDBevlHbWrBA=.dt2 2804 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\uIN5MBXqLe3bSYNTDBevlHbWrBA=.id2 320 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\uNodB+9MY9JNUlCxwyGhQOAMtwg=.dt2 26531 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\uNodB+9MY9JNUlCxwyGhQOAMtwg=.id2 496 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\UwV2FtqMKn4b34BklAtBtfJLnelo=.dt2 43136 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\UwV2FtqMKn4b34BklAtBtfJLnelo=.id2 448 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\VOqxwC8pnOGy9WTRb5ZxuqRO2q0=.dt2 7648 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\VOqxwC8pnOGy9WTRb5ZxuqRO2q0=.id2 352 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\vQFEb4cp7DZwm9SeC2F2FvqNsGv+4=.dt2 9961 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\vQFEb4cp7DZwm9SeC2F2FvqNsGv+4=.id2 320 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\1ho4+cAw492bfODPRHdI2FyylLAk=.dt2 17787 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\1ho4+cAw492bfODPRHdI2FyylLAk=.id2 528 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\3f7e6Uqm4yn2CGnyCBpDpo+u1tE=.dt2 3221 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\3f7e6Uqm4yn2CGnyCBpDpo+u1tE=.id2 352 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\3YeFt+C116gAExV8ZQPQKes2Zrk=.dt2 6420 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\3YeFt+C116gAExV8ZQPQKes2Zrk=.id2 320 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\46sZRH3KvqmFupFeFS8iKm4Fb2Fw=.dt2 5942 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\46sZRH3KvqmFupFeFS8iKm4Fb2Fw=.id2 336 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\EpAVx0GtbFDKAgw2Fncch3Sj11OA=.dt2 17814 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\M3Y6bCpEQrhjrfhKHgdHqI5XvYU=.dt2 9622 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\M3Y6bCpEQrhjrfhKHgdHqI5XvYU=.id2 352 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\mSjM2plQyQjjln0jYNvyzFYZDq4=.dt2 7854 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\mSjM2plQyQjjln0jYNvyzFYZDq4=.id2 352 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\ob8SH5grg2ayIOMkceADnpU6KeY=.dt2 72041 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\ob8SH5grg2ayIOMkceADnpU6KeY=.id2 528 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\OJk626WDdJ3F67vUUX0AxfN+iuI=.dt2 37516 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\OJk626WDdJ3F67vUUX0AxfN+iuI=.id2 544 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\OuykYDQDvEC2FhHDlQ0WlQM5lKiU=.dt2 22002 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\OuykYDQDvEC2FhHDlQ0WlQM5lKiU=.id2 400 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\EpAVx0GtbFDKAgw2Fncch3Sj11OA=.id2 384 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\if70RRjv12NZqQ9MNgjZHq9OQLA=.dt2 78802 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\if70RRjv12NZqQ9MNgjZHq9OQLA=.id2 336 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\j+kZd+AEgyxc3FHrb1WOrfomrJY=.dt2 5213 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\j+kZd+AEgyxc3FHrb1WOrfomrJY=.id2 304 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\J691utye9LcsOXREWYotKexEIF0=.dt2 7190 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\J691utye9LcsOXREWYotKexEIF0=.id2 320 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\jL6gDfhSbrttsevdR2FxOZnMyF8=.dt2 19514 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\jL6gDfhSbrttsevdR2FxOZnMyF8=.id2 512 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\JOU9fFgZKIF9GBfCEjX2FU8GwCMA=.dt2 158 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\JOU9fFgZKIF9GBfCEjX2FU8GwCMA=.id2 320 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\6KcUHNhibQ2kraJwRzE2RCAMcF4=.dt2 30782 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\6KcUHNhibQ2kraJwRzE2RCAMcF4=.id2 544 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\7nJT7vWETPmykQGA1KT1PJGccno=.dt2 32675 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\7nJT7vWETPmykQGA1KT1PJGccno=.id2 320 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\8oWHqPlGHLoZpa+1s2fKmrwK658=.dt2 976 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\8oWHqPlGHLoZpa+1s2fKmrwK658=.id2 304 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\AiOv9DRPZT2FDetPcyHNE5pywyqM=.dt2 303 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\AiOv9DRPZT2FDetPcyHNE5pywyqM=.id2 320 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\Al2FVJ9vWTAp9hsu9JQa8gVw+UbQ=.dt2 8434 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\Al2FVJ9vWTAp9hsu9JQa8gVw+UbQ=.id2 352 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\Y5H7hiw0jnY0uFrmG9T6o3dbFZY=.id2 304 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\y9KEYWvEFABB0Iqpr6mM2PqMSH8=.dt2 10170 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\y9KEYWvEFABB0Iqpr6mM2PqMSH8=.id2 336 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\YJ0lK0JMNuZGg6GI2Fccd4UyCjVU=.dt2 48866 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\YJ0lK0JMNuZGg6GI2Fccd4UyCjVU=.id2 320 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\Zy5fXJxgh4L09c9rKackm1NCL3E=.dt2 5568 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\Zy5fXJxgh4L09c9rKackm1NCL3E=.id2 304 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\DrWgMaGhOiUy1AacGLrtle2w1rE=.dt2 43049 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\DrWgMaGhOiUy1AacGLrtle2w1rE=.id2 416 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\dWfyCNZxdMF3aTcZIXz5TsnfHbM=.dt2 14856 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\dWfyCNZxdMF3aTcZIXz5TsnfHbM=.id2 528 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\EaD8UmQiCos8jkef2FLHnrekLJks=.dt2 5336 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\EaD8UmQiCos8jkef2FLHnrekLJks=.id2 320 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\eCbXMD0+6kZCyZiAeskNIPxS6hE=.dt2 8028 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Messenger\camille_8891@hotmail.fr\ObjectStore\CustomEmoticons\eCbXMD0+6kZCyZiAeskNIPxS6hE=.id2 352 bytes
C:\DOCUME~1\PC\LOCALS~1\APPLIC~1\Microsoft\Windows\GameExplorer\{DFEF49D9-FC95-4301-99B9-2FB91C6ABA06}\PlayTasks\1\Les Sims™ 2 : Boit@Look.lnk 1087 bytes hidden from API
scan completed successfully
hidden processes: 0
hidden files: 94
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:30][D:6]-> C:\DOCUME~1\PC\LOCALS~1\Temp
[F:2][D:0]-> C:\DOCUME~1\PC\Cookies
[F:14][D:4]-> C:\DOCUME~1\PC\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 11/07/2009| 0:30 - Option : [1]
--------------------\\ Fin du rapport a 0:30:41
-----------\\ ToolBar S&D 1.2.8 XP/Vista
Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) 64 Processor 3000+ )
BIOS : Version 07.00T
USER : PC ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1335 [VPS 090709-0] 4.8.1335 (Activated)
Firewall : ZoneAlarm Firewall 7.0.483.000 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:58 Go (Free:20 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)
F:\ (Local Disk) - NTFS - Total:90 Go (Free:11 Go)
G:\ (Local Disk) - NTFS - Total:17 Go (Free:4 Go)
H:\ (Local Disk) - NTFS - Total:9 Go (Free:9 Go)
I:\ (Local Disk) - NTFS - Total:48 Go (Free:1 Go)
J:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)
M:\ (USB) - FAT32 - Total:3890 Mo (Free:1 Go)
"C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 )
Option : [1] ( 11/07/2009| 0:32 )
-----------\\ Recherche de Fichiers / Dossiers ...
C:\Program Files\BitLord
C:\Program Files\BitLord\BitLord.exe
C:\Program Files\BitLord\BitLord.url
C:\Program Files\BitLord\BitLord.xml
C:\Program Files\BitLord\Downloads
C:\Program Files\BitLord\Downloads.xml
C:\Program Files\BitLord\lang
C:\Program Files\BitLord\License.txt
C:\Program Files\BitLord\rules
C:\Program Files\BitLord\Torrents
C:\Program Files\BitLord\uninst.exe
C:\Program Files\BitLord\lang\lang_ar_ae.xml
C:\Program Files\BitLord\lang\lang_bg_bg.xml
C:\Program Files\BitLord\lang\lang_ca_es.xml
C:\Program Files\BitLord\lang\lang_cz_cz.xml
C:\Program Files\BitLord\lang\lang_da_dk.xml
C:\Program Files\BitLord\lang\lang_de_de.xml
C:\Program Files\BitLord\lang\lang_el_gr.xml
C:\Program Files\BitLord\lang\lang_en_us.xml
C:\Program Files\BitLord\lang\lang_es_ar.xml
C:\Program Files\BitLord\lang\lang_es_es.xml
C:\Program Files\BitLord\lang\lang_et_ee.xml
C:\Program Files\BitLord\lang\lang_fi_fi.xml
C:\Program Files\BitLord\lang\lang_fr_fr.xml
C:\Program Files\BitLord\lang\lang_gl_es.xml
C:\Program Files\BitLord\lang\lang_he_il.xml
C:\Program Files\BitLord\lang\lang_hu_hu.xml
C:\Program Files\BitLord\lang\lang_it_it.xml
C:\Program Files\BitLord\lang\lang_jp_jp.xml
C:\Program Files\BitLord\lang\lang_ko_kr.xml
C:\Program Files\BitLord\lang\lang_nb_no.xml
C:\Program Files\BitLord\lang\lang_nl_nl.xml
C:\Program Files\BitLord\lang\lang_pl_pl.xml
C:\Program Files\BitLord\lang\lang_pt_br.xml
C:\Program Files\BitLord\lang\lang_pt_pt.xml
C:\Program Files\BitLord\lang\lang_ro_ro.xml
C:\Program Files\BitLord\lang\lang_ru_ru.xml
C:\Program Files\BitLord\lang\lang_sk_sk.xml
C:\Program Files\BitLord\lang\lang_sl_si.xml
C:\Program Files\BitLord\lang\lang_sr_sr.xml
C:\Program Files\BitLord\lang\lang_sv_se.xml
C:\Program Files\BitLord\lang\lang_th_th.xml
C:\Program Files\BitLord\lang\lang_tr_tr.xml
C:\Program Files\BitLord\lang\lang_va_es.xml
C:\Program Files\BitLord\lang\lang_zh_tw.xml
C:\Program Files\BitLord\rules\ipfilter.dat
C:\Program Files\BitLord\rules\tracker.dat
C:\Program Files\BitLord\Torrents\A very british gangster.dvdripfrench.WDF.avi.torrent
C:\Program Files\BitLord\Torrents\Adobe Dreamweaver CS4.torrent
C:\Program Files\BitLord\Torrents\Adobe Premiere Pro CS3 + Keygen Activator 100% working #1.torrent
C:\Program Files\BitLord\Torrents\Armee.Haute.Technologie.SECRET.DEFENSE.torrent
C:\Program Files\BitLord\Torrents\Cr4zy M4ch1n3s 2.rar.torrent
C:\Program Files\BitLord\Torrents\Crazy Machines 2.torrent
C:\Program Files\BitLord\Torrents\CRAZY MACHINES 2[0].torrent
C:\Program Files\BitLord\Torrents\Crazy Machines II.torrent
C:\Program Files\BitLord\Torrents\Crazy Machines II[0].torrent
C:\Program Files\BitLord\Torrents\Crazy Machines.rar.torrent
C:\Program Files\BitLord\Torrents\Crazy Machines.torrent
C:\Program Files\BitLord\Torrents\Crazy.Machines.2.GERMAN-SiLENTGATE.torrent
C:\Program Files\BitLord\Torrents\Crazy.Machines.2.GERMAN-SiLENTGATE[0].torrent
C:\Program Files\BitLord\Torrents\Crazy.Machines.II-ViTALiTY.torrent
C:\Program Files\BitLord\Torrents\Crazy.Machines.II.rar.torrent
C:\Program Files\BitLord\Torrents\Download.torrent
C:\Program Files\BitLord\Torrents\FM2008.torrent
C:\Program Files\BitLord\Torrents\Football Manager.torrent
C:\Program Files\BitLord\Torrents\Football.Manager.2008.CloneCD-NETSHOW.torrent
C:\Program Files\BitLord\Torrents\Football.Manager.2008.PROPER-FLT.torrent
C:\Program Files\BitLord\Torrents\Frontiere s.torrent
C:\Program Files\BitLord\Torrents\Le Scandale Des Armes A Uranium Appauvri - La Guerre Radioactive Secrete.avi.torrent
C:\Program Files\BitLord\Torrents\Le Scandale Des Armes A Uranium Appauvri - La Guerre Radioactive Secrete.avi.xml
C:\Program Files\BitLord\Torrents\Orfeu!.torrent
C:\Program Files\BitLord\Torrents\Orphée (1949).torrent
C:\Program Files\BitLord\Torrents\pack.torrent
C:\Program Files\BitLord\Torrents\pack.xml
C:\Program Files\BitLord\Torrents\Voyage.au.coeur.de.la.lune.torrent
C:\Program Files\BitLord\Torrents\Windows XP Pro SP3 FR - IE7 - WMP11.iso.torrent
C:\Program Files\BitLord\Torrents\[Tsubasa-Fansub_&_Gensoteam]_Saint_Seiya_Hades_-_Elysion-Hen_-_OAV_06_-_DVD-JAP_[BB71D21C].mp4.torrent
C:\DOCUME~1\PC\MENUDM~1\PROGRA~1\BitLord
-----------\\ [..\Internet Explorer\Main]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://moteur.chat-land.org/"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"SearchMigratedDefaultURL"="https://www.bing.com/?scope=web&mkt=fr-FR{searchTerms}&src={referrer:source?}"
"Default_Page_Url"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
"Default_Search_Url"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"CustomizeSearch"="https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchcust.htm"
"SearchAssistant"="https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchasst.htm"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="https://www.msn.com/fr-fr/?ocid=iehp"
"Default_Search_URL"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Start Page"="https://www.msn.com/fr-fr/?ocid=iehp"
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
1 - "C:\ToolBar SD\TB_1.txt" - 11/07/2009| 0:33 - Option : [1]
-----------\\ Fin du rapport a 0:33:12,09
Pouquoi n'a pas tu simplement restauré ton ordinateur.
Quand tu viens ici ait au moin l'obligance de faire ce que l'on te dit c'est parceque l'on a tout de même une expérience et qu'on te conseil ce qui nous semble le mieux !
J'ai déjà du reformaté mon ordinateur suite à ce problème la fois suivante j'avais simplement restauré et le problème était résolu !
Cordialement Dylan
Quand tu viens ici ait au moin l'obligance de faire ce que l'on te dit c'est parceque l'on a tout de même une expérience et qu'on te conseil ce qui nous semble le mieux !
J'ai déjà du reformaté mon ordinateur suite à ce problème la fois suivante j'avais simplement restauré et le problème était résolu !
Cordialement Dylan
