Pub CID
Résolu
blondie336
Messages postés
20
Statut
Membre
-
blondie336 Messages postés 20 Statut Membre -
blondie336 Messages postés 20 Statut Membre -
Bonjour.
J'ai un petit soucis, j'espère que vous aurez une solution.
De nombreux messages sur le forum parle de ces publicités "CID".
Cependant, j'ai accompli la procédure habituelle, c'est à dire supprimer messenger plus (et donc par conséquent les sponsors), mais les publicités restent. Comment puis-je faire pour les enlever ?
Car ca devient très embettant.
Merci d'avance !
J'ai un petit soucis, j'espère que vous aurez une solution.
De nombreux messages sur le forum parle de ces publicités "CID".
Cependant, j'ai accompli la procédure habituelle, c'est à dire supprimer messenger plus (et donc par conséquent les sponsors), mais les publicités restent. Comment puis-je faire pour les enlever ?
Car ca devient très embettant.
Merci d'avance !
A voir également:
- Pub CID
- Supprimer pub youtube - Accueil - Streaming
- Stop pub gratuit - Télécharger - Divers Utilitaires
- Supprimer la pub - Guide
- Musique pub italienne lalala - Forum Musique / Radio / Clip
- Pub par sms - Guide
14 réponses
hello,
telecharge et installe hijackthis https://forums.cnetfrance.fr/tutoriels-securite-informatique/1549-hijackthis-comment-l-utiliser
une fois installé créer un rapport et le poster sur le forum
telecharge et installe hijackthis https://forums.cnetfrance.fr/tutoriels-securite-informatique/1549-hijackthis-comment-l-utiliser
une fois installé créer un rapport et le poster sur le forum
Bonjour
On dirait que elmer t'a abandonné....
Désactive le contrôle des comptes utilisateurs
(tu le réactiveras après ta désinfection):
* Va dans démarrer puis panneau de configuration
* Double Clique sur l'icône "Comptes d'utilisateurs"
* Clique ensuite sur désactiver et valide.
Tuto : https://forum.malekal.com/viewtopic.php?f=59&t=6517
https://forum.pcastuces.com/navilog_de_il_mafioso_pour_vista-f31s12.htm
Télécharge Lop S&D.exe sur ton Bureau.
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
* Double-clique dessus pour lancer l'installation
* Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
* Séléctionne la langue souhaitée, puis choisis l'option 1 (Recherche)
* Patiente jusqu'à la fin du scan
* Poste le rapport généré (C:\lopR.txt)
Tutorial (aide) : http://bibou0007.com/outils-specifiques-f78/tuto-lop-sd-t956.htm
On dirait que elmer t'a abandonné....
Désactive le contrôle des comptes utilisateurs
(tu le réactiveras après ta désinfection):
* Va dans démarrer puis panneau de configuration
* Double Clique sur l'icône "Comptes d'utilisateurs"
* Clique ensuite sur désactiver et valide.
Tuto : https://forum.malekal.com/viewtopic.php?f=59&t=6517
https://forum.pcastuces.com/navilog_de_il_mafioso_pour_vista-f31s12.htm
Télécharge Lop S&D.exe sur ton Bureau.
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
* Double-clique dessus pour lancer l'installation
* Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
* Séléctionne la langue souhaitée, puis choisis l'option 1 (Recherche)
* Patiente jusqu'à la fin du scan
* Poste le rapport généré (C:\lopR.txt)
Tutorial (aide) : http://bibou0007.com/outils-specifiques-f78/tuto-lop-sd-t956.htm
Merci d'avance.
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:50:51, on 05/08/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v8.00 (8.00.6001.18813)
Boot mode: Normal
Running processes:
C:\Program Files\DigitalPersona\Bin\DpAgent.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Hp\QuickPlay\QPService.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
C:\Program Files\Hewlett-Packard\HP QuickTouch\HPKBDAPP.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Orange HSS\Systray\SystrayApp.exe
C:\Program Files\Hp\HP Software Update\hpwuSchd2.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Hp\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Panasonic\VideoCam Suite 2\VideoCamSuiteAutoStart.exe
C:\Windows\ehome\ehmsas.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Orange HSS\Launcher\Launcher.exe
C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Orange HSS\Deskboard\deskboard.exe
C:\Program Files\Orange HSS\connectivity\connectivitymanager.exe
C:\Program Files\Orange HSS\connectivity\CoreCom\CoreCom.exe
C:\Program Files\Orange HSS\connectivity\CoreCom\OraConfigRecover.exe
C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTCOMModule\0\FTCOMModule.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Windows\system32\Macromed\Flash\FlashUtil10c.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\MICHEL\AppData\Local\Temp\Temp1_hijackthis.zip\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr?cobrand=hp-notebook.msn.com&ocid=HPDHP&pc=HPNTDF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr?cobrand=hp-notebook.msn.com&ocid=HPDHP&pc=HPNTDF
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: NCO 2.0 IE BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.6\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\PROGRA~1\COMMON~1\SYMANT~1\IDS\IPSBHO.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Show Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.6\CoIEPlg.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe"
O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [OnScreenDisplay] C:\Program Files\Hewlett-Packard\HP QuickTouch\HPKBDAPP.exe
O4 - HKLM\..\Run: [UCam_Menu] "C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\YouCam" update "Software\CyberLink\YouCam\1.0"
O4 - HKLM\..\Run: [DpAgent] C:\Program Files\DigitalPersona\Bin\dpagent.exe
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [HP Health Check Scheduler] [ProgramFilesFolder]Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [WAWifiMessage] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [SystrayORAHSS] "C:\Program Files\Orange HSS\Systray\SystrayApp.exe"
O4 - HKLM\..\Run: [ORAHSSSessionManager] C:\Program Files\Orange HSS\SessionManager\SessionManager.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton 360\osCheck.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\Money Express.exe"
O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe"
O4 - HKCU\..\Run: [Poll Bias] "C:\ProgramData\move readme readme.7kolbhj"
O4 - HKCU\..\Run: [view load up cast] "C:\ProgramData\Web Dvd Site.l45yxac"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-18\..\Run: [Nokia.PCSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Nokia.PCSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog (User 'Default user')
O4 - Startup: DeezRip.lnk = C:\Program Files\DeezRip\DeezRip.exe
O4 - Global Startup: BTTray.lnk = ?
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\Hp\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: VideoCam Suite 2.0.lnk = ?
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O13 - Gopher Prefix:
O15 - Trusted Zone: https://www.orange.fr/portail
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Planificateur LiveUpdate automatique (Automatic LiveUpdate Scheduler) - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
O23 - Service: B's Recorder GOLD Library General Service (bgsvcgen) - B.H.A Corporation - C:\Windows\System32\bgsvcgen.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Com4Qlb - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: DeezRip service (DeezRipSvc) - Unknown owner - C:\Program Files\DeezRip\DeezRipSvc.exe
O23 - Service: Biometric Authentication Service (DpHost) - DigitalPersona, Inc. - C:\Program Files\DigitalPersona\Bin\DpHostW.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE
O23 - Service: LiveUpdate Notice - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: QuickPlay Background Capture Service (QBCS) (QPCapSvc) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\QPCapSvc.exe
O23 - Service: QuickPlay Task Scheduler (QTS) (QPSched) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\QPSched.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\system32\STacSV.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\PROGRA~1\COMMON~1\SYMANT~1\CCPD-LC\symlcsvc.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:50:51, on 05/08/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v8.00 (8.00.6001.18813)
Boot mode: Normal
Running processes:
C:\Program Files\DigitalPersona\Bin\DpAgent.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Hp\QuickPlay\QPService.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
C:\Program Files\Hewlett-Packard\HP QuickTouch\HPKBDAPP.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Orange HSS\Systray\SystrayApp.exe
C:\Program Files\Hp\HP Software Update\hpwuSchd2.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Hp\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Panasonic\VideoCam Suite 2\VideoCamSuiteAutoStart.exe
C:\Windows\ehome\ehmsas.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Orange HSS\Launcher\Launcher.exe
C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Orange HSS\Deskboard\deskboard.exe
C:\Program Files\Orange HSS\connectivity\connectivitymanager.exe
C:\Program Files\Orange HSS\connectivity\CoreCom\CoreCom.exe
C:\Program Files\Orange HSS\connectivity\CoreCom\OraConfigRecover.exe
C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTCOMModule\0\FTCOMModule.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Windows\system32\Macromed\Flash\FlashUtil10c.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\MICHEL\AppData\Local\Temp\Temp1_hijackthis.zip\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr?cobrand=hp-notebook.msn.com&ocid=HPDHP&pc=HPNTDF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr?cobrand=hp-notebook.msn.com&ocid=HPDHP&pc=HPNTDF
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: NCO 2.0 IE BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.6\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\PROGRA~1\COMMON~1\SYMANT~1\IDS\IPSBHO.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Show Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.6\CoIEPlg.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe"
O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [OnScreenDisplay] C:\Program Files\Hewlett-Packard\HP QuickTouch\HPKBDAPP.exe
O4 - HKLM\..\Run: [UCam_Menu] "C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\YouCam" update "Software\CyberLink\YouCam\1.0"
O4 - HKLM\..\Run: [DpAgent] C:\Program Files\DigitalPersona\Bin\dpagent.exe
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [HP Health Check Scheduler] [ProgramFilesFolder]Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [WAWifiMessage] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [SystrayORAHSS] "C:\Program Files\Orange HSS\Systray\SystrayApp.exe"
O4 - HKLM\..\Run: [ORAHSSSessionManager] C:\Program Files\Orange HSS\SessionManager\SessionManager.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton 360\osCheck.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\Money Express.exe"
O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe"
O4 - HKCU\..\Run: [Poll Bias] "C:\ProgramData\move readme readme.7kolbhj"
O4 - HKCU\..\Run: [view load up cast] "C:\ProgramData\Web Dvd Site.l45yxac"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-18\..\Run: [Nokia.PCSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Nokia.PCSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog (User 'Default user')
O4 - Startup: DeezRip.lnk = C:\Program Files\DeezRip\DeezRip.exe
O4 - Global Startup: BTTray.lnk = ?
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\Hp\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: VideoCam Suite 2.0.lnk = ?
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O13 - Gopher Prefix:
O15 - Trusted Zone: https://www.orange.fr/portail
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Planificateur LiveUpdate automatique (Automatic LiveUpdate Scheduler) - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
O23 - Service: B's Recorder GOLD Library General Service (bgsvcgen) - B.H.A Corporation - C:\Windows\System32\bgsvcgen.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Com4Qlb - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: DeezRip service (DeezRipSvc) - Unknown owner - C:\Program Files\DeezRip\DeezRipSvc.exe
O23 - Service: Biometric Authentication Service (DpHost) - DigitalPersona, Inc. - C:\Program Files\DigitalPersona\Bin\DpHostW.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE
O23 - Service: LiveUpdate Notice - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: QuickPlay Background Capture Service (QBCS) (QPCapSvc) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\QPCapSvc.exe
O23 - Service: QuickPlay Task Scheduler (QTS) (QPSched) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\QPSched.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\system32\STacSV.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\PROGRA~1\COMMON~1\SYMANT~1\CCPD-LC\symlcsvc.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
OOOUUUUPPPPSSSS......
DSL toptibal.....!!!!!!
==>blondie336
--> fais ce que toptibal t'as demandé.....
a+
DSL toptibal.....!!!!!!
==>blondie336
--> fais ce que toptibal t'as demandé.....
a+
Est ce normal que ca bloque à "recherche de fichiers avec Catchme" ?
Merci beaucoup de l'aide précieuse !
Merci beaucoup de l'aide précieuse !
Merci de m'expliquer à quoi tout ca correspond. =)
--------------------\\ Lop S&D 4.2.5-0 XP/Vista
Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Intel(R) Core(TM)2 Duo CPU T8100 @ 2.10GHz )
BIOS : EPP runtime BIOS - Version 1.1
USER : MICHEL ( Administrator )
BOOT : Normal boot
C:\ (Local Disk) - NTFS - Total:221 Go (Free:134 Go)
D:\ (Local Disk) - NTFS - Total:232 Go (Free:232 Go)
E:\ (Local Disk) - NTFS - Total:11 Go (Free:2 Go)
F:\ (CD or DVD)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 06/08/2009|22:01 )
[ UAC => 0 ]
--------------------\\ Listing des dossiers dans Local
[17/11/2008|22:43] C:\Users\MICHEL\AppData\Local\Adobe
[26/02/2009|01:52] C:\Users\MICHEL\AppData\Local\Apple
[27/03/2009|15:04] C:\Users\MICHEL\AppData\Local\Apple Computer
[15/11/2008|22:59] C:\Users\MICHEL\AppData\Local\Application Data
[15/11/2008|23:13] C:\Users\MICHEL\AppData\Local\AtStart.txt
[10/01/2009|23:01] C:\Users\MICHEL\AppData\Local\d3d9caps.dat
[28/07/2009|19:30] C:\Users\MICHEL\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[15/11/2008|23:13] C:\Users\MICHEL\AppData\Local\DigitalPersona
[15/11/2008|23:03] C:\Users\MICHEL\AppData\Local\Downloaded Installations
[15/11/2008|23:13] C:\Users\MICHEL\AppData\Local\DSwitch.txt
[03/08/2009|08:15] C:\Users\MICHEL\AppData\Local\GDIPFONTCACHEV1.DAT
[15/06/2009|08:20] C:\Users\MICHEL\AppData\Local\Google
[15/11/2008|22:59] C:\Users\MICHEL\AppData\Local\Historique
[06/08/2009|21:22] C:\Users\MICHEL\AppData\Local\IconCache.db
[22/06/2009|10:58] C:\Users\MICHEL\AppData\Local\Microsoft
[19/04/2009|22:39] C:\Users\MICHEL\AppData\Local\Microsoft Games
[02/08/2009|22:53] C:\Users\MICHEL\AppData\Local\Microsoft Help
[27/04/2009|22:10] C:\Users\MICHEL\AppData\Local\Mozilla
[15/11/2008|23:13] C:\Users\MICHEL\AppData\Local\QSwitch.txt
[03/05/2009|22:59] C:\Users\MICHEL\AppData\Local\QuickPlay
[06/08/2009|22:01] C:\Users\MICHEL\AppData\Local\Temp
[15/11/2008|22:59] C:\Users\MICHEL\AppData\Local\Temporary Internet Files
[14/07/2009|21:11] C:\Users\MICHEL\AppData\Local\TomTom
[22/03/2009|19:57] C:\Users\MICHEL\AppData\Local\VirtualStore
--------------------\\ Tâches planifiées dans C:\Windows\tasks
[20/07/2009 20:00][--a------] C:\Windows\tasks\Norton Internet Security - Effectuer une analyse complŠte du systŠme - MICHEL.job
[06/08/2009 21:24][--ah-----] C:\Windows\tasks\SA.DAT
[06/08/2009 21:23][--a------] C:\Windows\tasks\SCHEDLGU.TXT
--------------------\\ Listing des dossiers dans C:\ProgramData
[04/03/2008|21:34] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[10/01/2009|23:26] C:\ProgramData\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[06/04/2009|21:59] C:\ProgramData\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[04/03/2008|21:35] C:\ProgramData\Adobe
[15/04/2009|23:40] C:\ProgramData\AOL
[26/02/2009|01:48] C:\ProgramData\Apple
[28/02/2009|12:16] C:\ProgramData\Apple Computer
[02/11/2006|15:02] C:\ProgramData\Application Data
[15/11/2008|22:51] C:\ProgramData\Bureau
[25/03/2009|19:35] C:\ProgramData\CyberLink
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[15/11/2008|23:04] C:\ProgramData\Electronic Arts
[15/11/2008|22:51] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[03/01/2009|23:27] C:\ProgramData\Google
[19/07/2009|20:03] C:\ProgramData\Gpl ooze view load
[16/08/2008|18:39] C:\ProgramData\Hewlett-Packard
[29/06/2009|08:25] C:\ProgramData\HP
[02/07/2009|19:09] C:\ProgramData\HP Product Assistant
[28/06/2009|21:42] C:\ProgramData\HPSSUPPLY
[02/07/2009|19:17] C:\ProgramData\hpzinstall.log
[27/07/2009|22:36] C:\ProgramData\Installations
[03/07/2009|21:37] C:\ProgramData\LauncherAccess.dt
[16/08/2008|18:39] C:\ProgramData\Macrovision
[05/08/2009|00:46] C:\ProgramData\mapi 2 burn
[15/11/2008|22:51] C:\ProgramData\Menu D‚marrer
[20/04/2009|21:46] C:\ProgramData\Micro Application
[17/12/2008|18:30] C:\ProgramData\Microsoft
[04/08/2009|16:58] C:\ProgramData\Microsoft Help
[15/11/2008|22:51] C:\ProgramData\ModŠles
[19/07/2009|20:03] C:\ProgramData\move readme readme.7kolbhj
[19/07/2009|20:03] C:\ProgramData\move readme readme.vbu0o
[04/03/2008|21:21] C:\ProgramData\muvee Technologies
[03/08/2009|22:52] C:\ProgramData\NOS
[16/08/2008|18:41] C:\ProgramData\NVIDIA
[27/05/2009|19:07] C:\ProgramData\Panasonic
[27/07/2009|22:44] C:\ProgramData\PC Suite
[02/11/2006|15:02] C:\ProgramData\Start Menu
[28/01/2009|21:22] C:\ProgramData\Symantec
[10/01/2009|21:53] C:\ProgramData\Symantec Temporary Files
[02/11/2006|15:02] C:\ProgramData\Templates
[14/07/2009|21:11] C:\ProgramData\TomTom
[19/07/2009|20:03] C:\ProgramData\Web Dvd Site.l45yxac
[28/06/2009|21:49] C:\ProgramData\WEBREG
[19/04/2009|13:33] C:\ProgramData\WildTangent
[16/11/2008|00:41] C:\ProgramData\WLInstaller
--------------------\\ Listing des dossiers dans C:\Program Files
[04/03/2008|21:34] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[04/03/2008|21:35] C:\Program Files\Adobe
[26/02/2009|01:52] C:\Program Files\Apple Software Update
[16/08/2008|18:18] C:\Program Files\AVerMedia
[06/04/2009|21:57] C:\Program Files\Bonjour
[27/07/2009|22:41] C:\Program Files\Common Files
[16/08/2008|18:34] C:\Program Files\CyberLink
[28/07/2009|20:54] C:\Program Files\DeezRip
[27/07/2009|22:40] C:\Program Files\DIFX
[16/08/2008|18:39] C:\Program Files\DigitalPersona
[07/05/2009|18:45] C:\Program Files\Electronic Arts
[15/11/2008|22:51] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[16/08/2008|18:19] C:\Program Files\Fingerprint Sensor
[04/01/2009|00:45] C:\Program Files\Google
[23/11/2008|00:15] C:\Program Files\Hewlett-Packard
[28/06/2009|21:42] C:\Program Files\Hp
[16/08/2008|18:38] C:\Program Files\HP Games
[16/08/2008|18:23] C:\Program Files\IDT
[27/05/2009|18:49] C:\Program Files\InstallShield Installation Information
[16/08/2008|18:20] C:\Program Files\Intel
[03/08/2009|00:16] C:\Program Files\Internet Explorer
[25/07/2009|20:51] C:\Program Files\iPod
[25/07/2009|20:52] C:\Program Files\iTunes
[03/08/2009|00:06] C:\Program Files\Java
[16/08/2008|18:36] C:\Program Files\Marvell
[05/08/2009|17:42] C:\Program Files\Microsoft
[02/11/2006|14:37] C:\Program Files\Microsoft Games
[30/12/2008|13:54] C:\Program Files\Microsoft Money
[04/03/2008|21:33] C:\Program Files\Microsoft Office
[12/06/2009|08:37] C:\Program Files\Microsoft Works
[04/03/2008|21:33] C:\Program Files\Microsoft.NET
[05/03/2008|05:20] C:\Program Files\Movie Maker
[27/04/2009|22:10] C:\Program Files\Mozilla Firefox
[02/11/2006|14:37] C:\Program Files\MSBuild
[09/03/2009|19:03] C:\Program Files\MSECache
[16/11/2008|01:09] C:\Program Files\MSXML 4.0
[04/03/2008|21:21] C:\Program Files\muvee Technologies
[27/07/2009|22:40] C:\Program Files\Nokia
[11/04/2009|09:13] C:\Program Files\Norton 360
[03/08/2009|22:52] C:\Program Files\NOS
[15/11/2008|23:41] C:\Program Files\Orange HSS
[27/05/2009|18:49] C:\Program Files\Panasonic
[27/07/2009|22:39] C:\Program Files\PC Connectivity Solution
[03/06/2009|19:36] C:\Program Files\QuickTime
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[15/11/2008|23:33] C:\Program Files\SAGEM
[23/12/2008|22:05] C:\Program Files\Samsung
[15/11/2008|23:32] C:\Program Files\Securitoo
[16/08/2008|18:39] C:\Program Files\Services en ligne
[16/08/2008|18:19] C:\Program Files\Silicon Image
[11/01/2009|23:48] C:\Program Files\Symantec
[16/08/2008|18:16] C:\Program Files\Synaptics
[14/07/2009|21:10] C:\Program Files\TomTom HOME 2
[14/07/2009|21:11] C:\Program Files\TomTom International B.V
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[23/11/2008|22:22] C:\Program Files\VideoLAN
[16/08/2008|18:24] C:\Program Files\WIDCOMM
[05/03/2008|05:20] C:\Program Files\Windows Calendar
[05/03/2008|05:20] C:\Program Files\Windows Collaboration
[05/03/2008|05:20] C:\Program Files\Windows Defender
[05/03/2008|05:20] C:\Program Files\Windows Journal
[05/08/2009|17:42] C:\Program Files\Windows Live
[05/08/2009|17:42] C:\Program Files\Windows Live SkyDrive
[15/07/2009|08:35] C:\Program Files\Windows Mail
[12/03/2009|09:19] C:\Program Files\Windows Media Player
[15/11/2008|22:51] C:\Program Files\Windows NT
[05/03/2008|05:20] C:\Program Files\Windows Photo Gallery
[05/03/2008|05:20] C:\Program Files\Windows Sidebar
[14/07/2009|19:50] C:\Program Files\wletmin
--------------------\\ Listing des dossiers dans C:\Program Files\Common Files
[04/03/2008|21:35] C:\Program Files\Common Files\Adobe
[25/07/2009|20:51] C:\Program Files\Common Files\Apple
[04/03/2008|21:33] C:\Program Files\Common Files\DESIGNER
[15/11/2008|23:40] C:\Program Files\Common Files\France Telecom
[28/06/2009|21:38] C:\Program Files\Common Files\Hewlett-Packard
[28/06/2009|21:41] C:\Program Files\Common Files\HP
[04/03/2008|21:44] C:\Program Files\Common Files\InstallShield
[04/03/2008|21:49] C:\Program Files\Common Files\Java
[05/08/2009|17:42] C:\Program Files\Common Files\microsoft shared
[04/03/2008|21:21] C:\Program Files\Common Files\muvee Technologies
[27/07/2009|22:41] C:\Program Files\Common Files\Nokia
[27/07/2009|22:41] C:\Program Files\Common Files\PCSuite
[20/12/2008|15:33] C:\Program Files\Common Files\PX Storage Engine
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[27/02/2009|15:49] C:\Program Files\Common Files\Symantec Shared
[05/03/2008|05:20] C:\Program Files\Common Files\System
[17/12/2008|18:32] C:\Program Files\Common Files\Windows Live
[16/11/2008|00:46] C:\Program Files\Common Files\WindowsLiveInstaller
--------------------\\ Process
( 105 Processes )
iexplore.exe ~ [PID:3748]
iexplore.exe ~ [PID:3596]
iexplore.exe ~ [PID:4540]
iexplore.exe ~ [PID:3876]
iexplore.exe ~ [PID:4664]
iexplore.exe ~ [PID:1468]
iexplore.exe ~ [PID:2848]
iexplore.exe ~ [PID:3440]
--------------------\\ Recherche avec S_Lop
C:\ProgramData\move readme readme.vbu0o
C:\ProgramData\move readme readme.7kolbhj
C:\ProgramData\Web Dvd Site.l45yxac
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\ProgramData\Gpl ooze view load
C:\ProgramData\Gpl ooze view load\Roam barb.dat
C:\ProgramData\Gpl ooze view load\Roam barb.exe
C:\Users\MICHEL\AppData\Local\Temp\msgpl_da76.tmp
--------------------\\ Verification du Registre
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Poll Bias"="\"C:\\ProgramData\\move readme readme.7kolbhj\""
"view load up cast"="\"C:\\ProgramData\\Web Dvd Site.l45yxac\""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-08-06 21:31:00
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-08-06 22:01:50
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 121
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:65699][D:46]-> C:\Users\MICHEL\AppData\Local\Temp
[F:528][D:1]-> C:\Users\MICHEL\AppData\Roaming\MICROS~1\Windows\Cookies
[F:1536][D:4]-> C:\Users\MICHEL\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:8][D:3]-> C:\$Recycle.Bin
1 - "C:\Lop SD\LopR_1.txt" - 06/08/2009|22:36 - Option : [1]
--------------------\\ Fin du rapport a 22:36:00
[ UAC => 1 ]
--------------------\\ Lop S&D 4.2.5-0 XP/Vista
Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Intel(R) Core(TM)2 Duo CPU T8100 @ 2.10GHz )
BIOS : EPP runtime BIOS - Version 1.1
USER : MICHEL ( Administrator )
BOOT : Normal boot
C:\ (Local Disk) - NTFS - Total:221 Go (Free:134 Go)
D:\ (Local Disk) - NTFS - Total:232 Go (Free:232 Go)
E:\ (Local Disk) - NTFS - Total:11 Go (Free:2 Go)
F:\ (CD or DVD)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 06/08/2009|22:01 )
[ UAC => 0 ]
--------------------\\ Listing des dossiers dans Local
[17/11/2008|22:43] C:\Users\MICHEL\AppData\Local\Adobe
[26/02/2009|01:52] C:\Users\MICHEL\AppData\Local\Apple
[27/03/2009|15:04] C:\Users\MICHEL\AppData\Local\Apple Computer
[15/11/2008|22:59] C:\Users\MICHEL\AppData\Local\Application Data
[15/11/2008|23:13] C:\Users\MICHEL\AppData\Local\AtStart.txt
[10/01/2009|23:01] C:\Users\MICHEL\AppData\Local\d3d9caps.dat
[28/07/2009|19:30] C:\Users\MICHEL\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[15/11/2008|23:13] C:\Users\MICHEL\AppData\Local\DigitalPersona
[15/11/2008|23:03] C:\Users\MICHEL\AppData\Local\Downloaded Installations
[15/11/2008|23:13] C:\Users\MICHEL\AppData\Local\DSwitch.txt
[03/08/2009|08:15] C:\Users\MICHEL\AppData\Local\GDIPFONTCACHEV1.DAT
[15/06/2009|08:20] C:\Users\MICHEL\AppData\Local\Google
[15/11/2008|22:59] C:\Users\MICHEL\AppData\Local\Historique
[06/08/2009|21:22] C:\Users\MICHEL\AppData\Local\IconCache.db
[22/06/2009|10:58] C:\Users\MICHEL\AppData\Local\Microsoft
[19/04/2009|22:39] C:\Users\MICHEL\AppData\Local\Microsoft Games
[02/08/2009|22:53] C:\Users\MICHEL\AppData\Local\Microsoft Help
[27/04/2009|22:10] C:\Users\MICHEL\AppData\Local\Mozilla
[15/11/2008|23:13] C:\Users\MICHEL\AppData\Local\QSwitch.txt
[03/05/2009|22:59] C:\Users\MICHEL\AppData\Local\QuickPlay
[06/08/2009|22:01] C:\Users\MICHEL\AppData\Local\Temp
[15/11/2008|22:59] C:\Users\MICHEL\AppData\Local\Temporary Internet Files
[14/07/2009|21:11] C:\Users\MICHEL\AppData\Local\TomTom
[22/03/2009|19:57] C:\Users\MICHEL\AppData\Local\VirtualStore
--------------------\\ Tâches planifiées dans C:\Windows\tasks
[20/07/2009 20:00][--a------] C:\Windows\tasks\Norton Internet Security - Effectuer une analyse complŠte du systŠme - MICHEL.job
[06/08/2009 21:24][--ah-----] C:\Windows\tasks\SA.DAT
[06/08/2009 21:23][--a------] C:\Windows\tasks\SCHEDLGU.TXT
--------------------\\ Listing des dossiers dans C:\ProgramData
[04/03/2008|21:34] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[10/01/2009|23:26] C:\ProgramData\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[06/04/2009|21:59] C:\ProgramData\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[04/03/2008|21:35] C:\ProgramData\Adobe
[15/04/2009|23:40] C:\ProgramData\AOL
[26/02/2009|01:48] C:\ProgramData\Apple
[28/02/2009|12:16] C:\ProgramData\Apple Computer
[02/11/2006|15:02] C:\ProgramData\Application Data
[15/11/2008|22:51] C:\ProgramData\Bureau
[25/03/2009|19:35] C:\ProgramData\CyberLink
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[15/11/2008|23:04] C:\ProgramData\Electronic Arts
[15/11/2008|22:51] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[03/01/2009|23:27] C:\ProgramData\Google
[19/07/2009|20:03] C:\ProgramData\Gpl ooze view load
[16/08/2008|18:39] C:\ProgramData\Hewlett-Packard
[29/06/2009|08:25] C:\ProgramData\HP
[02/07/2009|19:09] C:\ProgramData\HP Product Assistant
[28/06/2009|21:42] C:\ProgramData\HPSSUPPLY
[02/07/2009|19:17] C:\ProgramData\hpzinstall.log
[27/07/2009|22:36] C:\ProgramData\Installations
[03/07/2009|21:37] C:\ProgramData\LauncherAccess.dt
[16/08/2008|18:39] C:\ProgramData\Macrovision
[05/08/2009|00:46] C:\ProgramData\mapi 2 burn
[15/11/2008|22:51] C:\ProgramData\Menu D‚marrer
[20/04/2009|21:46] C:\ProgramData\Micro Application
[17/12/2008|18:30] C:\ProgramData\Microsoft
[04/08/2009|16:58] C:\ProgramData\Microsoft Help
[15/11/2008|22:51] C:\ProgramData\ModŠles
[19/07/2009|20:03] C:\ProgramData\move readme readme.7kolbhj
[19/07/2009|20:03] C:\ProgramData\move readme readme.vbu0o
[04/03/2008|21:21] C:\ProgramData\muvee Technologies
[03/08/2009|22:52] C:\ProgramData\NOS
[16/08/2008|18:41] C:\ProgramData\NVIDIA
[27/05/2009|19:07] C:\ProgramData\Panasonic
[27/07/2009|22:44] C:\ProgramData\PC Suite
[02/11/2006|15:02] C:\ProgramData\Start Menu
[28/01/2009|21:22] C:\ProgramData\Symantec
[10/01/2009|21:53] C:\ProgramData\Symantec Temporary Files
[02/11/2006|15:02] C:\ProgramData\Templates
[14/07/2009|21:11] C:\ProgramData\TomTom
[19/07/2009|20:03] C:\ProgramData\Web Dvd Site.l45yxac
[28/06/2009|21:49] C:\ProgramData\WEBREG
[19/04/2009|13:33] C:\ProgramData\WildTangent
[16/11/2008|00:41] C:\ProgramData\WLInstaller
--------------------\\ Listing des dossiers dans C:\Program Files
[04/03/2008|21:34] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[04/03/2008|21:35] C:\Program Files\Adobe
[26/02/2009|01:52] C:\Program Files\Apple Software Update
[16/08/2008|18:18] C:\Program Files\AVerMedia
[06/04/2009|21:57] C:\Program Files\Bonjour
[27/07/2009|22:41] C:\Program Files\Common Files
[16/08/2008|18:34] C:\Program Files\CyberLink
[28/07/2009|20:54] C:\Program Files\DeezRip
[27/07/2009|22:40] C:\Program Files\DIFX
[16/08/2008|18:39] C:\Program Files\DigitalPersona
[07/05/2009|18:45] C:\Program Files\Electronic Arts
[15/11/2008|22:51] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[16/08/2008|18:19] C:\Program Files\Fingerprint Sensor
[04/01/2009|00:45] C:\Program Files\Google
[23/11/2008|00:15] C:\Program Files\Hewlett-Packard
[28/06/2009|21:42] C:\Program Files\Hp
[16/08/2008|18:38] C:\Program Files\HP Games
[16/08/2008|18:23] C:\Program Files\IDT
[27/05/2009|18:49] C:\Program Files\InstallShield Installation Information
[16/08/2008|18:20] C:\Program Files\Intel
[03/08/2009|00:16] C:\Program Files\Internet Explorer
[25/07/2009|20:51] C:\Program Files\iPod
[25/07/2009|20:52] C:\Program Files\iTunes
[03/08/2009|00:06] C:\Program Files\Java
[16/08/2008|18:36] C:\Program Files\Marvell
[05/08/2009|17:42] C:\Program Files\Microsoft
[02/11/2006|14:37] C:\Program Files\Microsoft Games
[30/12/2008|13:54] C:\Program Files\Microsoft Money
[04/03/2008|21:33] C:\Program Files\Microsoft Office
[12/06/2009|08:37] C:\Program Files\Microsoft Works
[04/03/2008|21:33] C:\Program Files\Microsoft.NET
[05/03/2008|05:20] C:\Program Files\Movie Maker
[27/04/2009|22:10] C:\Program Files\Mozilla Firefox
[02/11/2006|14:37] C:\Program Files\MSBuild
[09/03/2009|19:03] C:\Program Files\MSECache
[16/11/2008|01:09] C:\Program Files\MSXML 4.0
[04/03/2008|21:21] C:\Program Files\muvee Technologies
[27/07/2009|22:40] C:\Program Files\Nokia
[11/04/2009|09:13] C:\Program Files\Norton 360
[03/08/2009|22:52] C:\Program Files\NOS
[15/11/2008|23:41] C:\Program Files\Orange HSS
[27/05/2009|18:49] C:\Program Files\Panasonic
[27/07/2009|22:39] C:\Program Files\PC Connectivity Solution
[03/06/2009|19:36] C:\Program Files\QuickTime
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[15/11/2008|23:33] C:\Program Files\SAGEM
[23/12/2008|22:05] C:\Program Files\Samsung
[15/11/2008|23:32] C:\Program Files\Securitoo
[16/08/2008|18:39] C:\Program Files\Services en ligne
[16/08/2008|18:19] C:\Program Files\Silicon Image
[11/01/2009|23:48] C:\Program Files\Symantec
[16/08/2008|18:16] C:\Program Files\Synaptics
[14/07/2009|21:10] C:\Program Files\TomTom HOME 2
[14/07/2009|21:11] C:\Program Files\TomTom International B.V
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[23/11/2008|22:22] C:\Program Files\VideoLAN
[16/08/2008|18:24] C:\Program Files\WIDCOMM
[05/03/2008|05:20] C:\Program Files\Windows Calendar
[05/03/2008|05:20] C:\Program Files\Windows Collaboration
[05/03/2008|05:20] C:\Program Files\Windows Defender
[05/03/2008|05:20] C:\Program Files\Windows Journal
[05/08/2009|17:42] C:\Program Files\Windows Live
[05/08/2009|17:42] C:\Program Files\Windows Live SkyDrive
[15/07/2009|08:35] C:\Program Files\Windows Mail
[12/03/2009|09:19] C:\Program Files\Windows Media Player
[15/11/2008|22:51] C:\Program Files\Windows NT
[05/03/2008|05:20] C:\Program Files\Windows Photo Gallery
[05/03/2008|05:20] C:\Program Files\Windows Sidebar
[14/07/2009|19:50] C:\Program Files\wletmin
--------------------\\ Listing des dossiers dans C:\Program Files\Common Files
[04/03/2008|21:35] C:\Program Files\Common Files\Adobe
[25/07/2009|20:51] C:\Program Files\Common Files\Apple
[04/03/2008|21:33] C:\Program Files\Common Files\DESIGNER
[15/11/2008|23:40] C:\Program Files\Common Files\France Telecom
[28/06/2009|21:38] C:\Program Files\Common Files\Hewlett-Packard
[28/06/2009|21:41] C:\Program Files\Common Files\HP
[04/03/2008|21:44] C:\Program Files\Common Files\InstallShield
[04/03/2008|21:49] C:\Program Files\Common Files\Java
[05/08/2009|17:42] C:\Program Files\Common Files\microsoft shared
[04/03/2008|21:21] C:\Program Files\Common Files\muvee Technologies
[27/07/2009|22:41] C:\Program Files\Common Files\Nokia
[27/07/2009|22:41] C:\Program Files\Common Files\PCSuite
[20/12/2008|15:33] C:\Program Files\Common Files\PX Storage Engine
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[27/02/2009|15:49] C:\Program Files\Common Files\Symantec Shared
[05/03/2008|05:20] C:\Program Files\Common Files\System
[17/12/2008|18:32] C:\Program Files\Common Files\Windows Live
[16/11/2008|00:46] C:\Program Files\Common Files\WindowsLiveInstaller
--------------------\\ Process
( 105 Processes )
iexplore.exe ~ [PID:3748]
iexplore.exe ~ [PID:3596]
iexplore.exe ~ [PID:4540]
iexplore.exe ~ [PID:3876]
iexplore.exe ~ [PID:4664]
iexplore.exe ~ [PID:1468]
iexplore.exe ~ [PID:2848]
iexplore.exe ~ [PID:3440]
--------------------\\ Recherche avec S_Lop
C:\ProgramData\move readme readme.vbu0o
C:\ProgramData\move readme readme.7kolbhj
C:\ProgramData\Web Dvd Site.l45yxac
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\ProgramData\Gpl ooze view load
C:\ProgramData\Gpl ooze view load\Roam barb.dat
C:\ProgramData\Gpl ooze view load\Roam barb.exe
C:\Users\MICHEL\AppData\Local\Temp\msgpl_da76.tmp
--------------------\\ Verification du Registre
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Poll Bias"="\"C:\\ProgramData\\move readme readme.7kolbhj\""
"view load up cast"="\"C:\\ProgramData\\Web Dvd Site.l45yxac\""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-08-06 21:31:00
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-08-06 22:01:50
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 121
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:65699][D:46]-> C:\Users\MICHEL\AppData\Local\Temp
[F:528][D:1]-> C:\Users\MICHEL\AppData\Roaming\MICROS~1\Windows\Cookies
[F:1536][D:4]-> C:\Users\MICHEL\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:8][D:3]-> C:\$Recycle.Bin
1 - "C:\Lop SD\LopR_1.txt" - 06/08/2009|22:36 - Option : [1]
--------------------\\ Fin du rapport a 22:36:00
[ UAC => 1 ]
On nettoie et je t'expliquerai tout à la fin :
Relance Lop S&D
* Choisis cette fois ci l'Option 2 (Suppression)
* Ne ferme pas la fenêtre lors de la suppression !
* Poste le rapport généré (C:\lopR.txt)
Relance Lop S&D
* Choisis cette fois ci l'Option 2 (Suppression)
* Ne ferme pas la fenêtre lors de la suppression !
* Poste le rapport généré (C:\lopR.txt)
--------------------\\ Lop S&D 4.2.5-0 XP/Vista
Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Intel(R) Core(TM)2 Duo CPU T8100 @ 2.10GHz )
BIOS : EPP runtime BIOS - Version 1.1
USER : MICHEL ( Administrator )
BOOT : Normal boot
C:\ (Local Disk) - NTFS - Total:221 Go (Free:134 Go)
D:\ (Local Disk) - NTFS - Total:232 Go (Free:232 Go)
E:\ (Local Disk) - NTFS - Total:11 Go (Free:2 Go)
F:\ (CD or DVD)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [2] ( 06/08/2009|22:49 )
[ UAC => 1 ]
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION
Supprime! - C:\ProgramData\Gpl ooze view load\Roam barb.dat
Supprime! - C:\ProgramData\Gpl ooze view load\Roam barb.exe
Supprime! - C:\Users\MICHEL\AppData\Local\Temp\msgpl_da76.tmp
Supprime! - C:\ProgramData\move readme readme.vbu0o
Supprime! - C:\ProgramData\move readme readme.7kolbhj
Supprime! - C:\ProgramData\Web Dvd Site.l45yxac
Supprime! - C:\ProgramData\Gpl ooze view load
-
[ Fichier Hosts ] .. Restaure!
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing des dossiers dans Local
[17/11/2008|22:43] C:\Users\MICHEL\AppData\Local\Adobe
[26/02/2009|01:52] C:\Users\MICHEL\AppData\Local\Apple
[27/03/2009|15:04] C:\Users\MICHEL\AppData\Local\Apple Computer
[15/11/2008|22:59] C:\Users\MICHEL\AppData\Local\Application Data
[15/11/2008|23:13] C:\Users\MICHEL\AppData\Local\AtStart.txt
[10/01/2009|23:01] C:\Users\MICHEL\AppData\Local\d3d9caps.dat
[28/07/2009|19:30] C:\Users\MICHEL\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[15/11/2008|23:13] C:\Users\MICHEL\AppData\Local\DigitalPersona
[15/11/2008|23:03] C:\Users\MICHEL\AppData\Local\Downloaded Installations
[15/11/2008|23:13] C:\Users\MICHEL\AppData\Local\DSwitch.txt
[03/08/2009|08:15] C:\Users\MICHEL\AppData\Local\GDIPFONTCACHEV1.DAT
[15/06/2009|08:20] C:\Users\MICHEL\AppData\Local\Google
[15/11/2008|22:59] C:\Users\MICHEL\AppData\Local\Historique
[06/08/2009|21:22] C:\Users\MICHEL\AppData\Local\IconCache.db
[22/06/2009|10:58] C:\Users\MICHEL\AppData\Local\Microsoft
[19/04/2009|22:39] C:\Users\MICHEL\AppData\Local\Microsoft Games
[02/08/2009|22:53] C:\Users\MICHEL\AppData\Local\Microsoft Help
[27/04/2009|22:10] C:\Users\MICHEL\AppData\Local\Mozilla
[15/11/2008|23:13] C:\Users\MICHEL\AppData\Local\QSwitch.txt
[03/05/2009|22:59] C:\Users\MICHEL\AppData\Local\QuickPlay
[06/08/2009|22:49] C:\Users\MICHEL\AppData\Local\Temp
[15/11/2008|22:59] C:\Users\MICHEL\AppData\Local\Temporary Internet Files
[14/07/2009|21:11] C:\Users\MICHEL\AppData\Local\TomTom
[22/03/2009|19:57] C:\Users\MICHEL\AppData\Local\VirtualStore
--------------------\\ Tâches planifiées dans C:\Windows\tasks
[20/07/2009 20:00][--a------] C:\Windows\tasks\Norton Internet Security - Effectuer une analyse complŠte du systŠme - MICHEL.job
[06/08/2009 21:24][--ah-----] C:\Windows\tasks\SA.DAT
[06/08/2009 21:23][--a------] C:\Windows\tasks\SCHEDLGU.TXT
--------------------\\ Listing des dossiers dans C:\ProgramData
[04/03/2008|21:34] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[10/01/2009|23:26] C:\ProgramData\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[06/04/2009|21:59] C:\ProgramData\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[04/03/2008|21:35] C:\ProgramData\Adobe
[15/04/2009|23:40] C:\ProgramData\AOL
[26/02/2009|01:48] C:\ProgramData\Apple
[28/02/2009|12:16] C:\ProgramData\Apple Computer
[02/11/2006|15:02] C:\ProgramData\Application Data
[15/11/2008|22:51] C:\ProgramData\Bureau
[25/03/2009|19:35] C:\ProgramData\CyberLink
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[15/11/2008|23:04] C:\ProgramData\Electronic Arts
[15/11/2008|22:51] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[03/01/2009|23:27] C:\ProgramData\Google
[16/08/2008|18:39] C:\ProgramData\Hewlett-Packard
[29/06/2009|08:25] C:\ProgramData\HP
[02/07/2009|19:09] C:\ProgramData\HP Product Assistant
[28/06/2009|21:42] C:\ProgramData\HPSSUPPLY
[02/07/2009|19:17] C:\ProgramData\hpzinstall.log
[27/07/2009|22:36] C:\ProgramData\Installations
[03/07/2009|21:37] C:\ProgramData\LauncherAccess.dt
[16/08/2008|18:39] C:\ProgramData\Macrovision
[05/08/2009|00:46] C:\ProgramData\mapi 2 burn
[15/11/2008|22:51] C:\ProgramData\Menu D‚marrer
[20/04/2009|21:46] C:\ProgramData\Micro Application
[17/12/2008|18:30] C:\ProgramData\Microsoft
[04/08/2009|16:58] C:\ProgramData\Microsoft Help
[15/11/2008|22:51] C:\ProgramData\ModŠles
[04/03/2008|21:21] C:\ProgramData\muvee Technologies
[03/08/2009|22:52] C:\ProgramData\NOS
[16/08/2008|18:41] C:\ProgramData\NVIDIA
[27/05/2009|19:07] C:\ProgramData\Panasonic
[27/07/2009|22:44] C:\ProgramData\PC Suite
[02/11/2006|15:02] C:\ProgramData\Start Menu
[28/01/2009|21:22] C:\ProgramData\Symantec
[10/01/2009|21:53] C:\ProgramData\Symantec Temporary Files
[02/11/2006|15:02] C:\ProgramData\Templates
[14/07/2009|21:11] C:\ProgramData\TomTom
[28/06/2009|21:49] C:\ProgramData\WEBREG
[19/04/2009|13:33] C:\ProgramData\WildTangent
[16/11/2008|00:41] C:\ProgramData\WLInstaller
--------------------\\ Listing des dossiers dans C:\Program Files
[04/03/2008|21:34] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[04/03/2008|21:35] C:\Program Files\Adobe
[26/02/2009|01:52] C:\Program Files\Apple Software Update
[16/08/2008|18:18] C:\Program Files\AVerMedia
[06/04/2009|21:57] C:\Program Files\Bonjour
[27/07/2009|22:41] C:\Program Files\Common Files
[16/08/2008|18:34] C:\Program Files\CyberLink
[28/07/2009|20:54] C:\Program Files\DeezRip
[27/07/2009|22:40] C:\Program Files\DIFX
[16/08/2008|18:39] C:\Program Files\DigitalPersona
[07/05/2009|18:45] C:\Program Files\Electronic Arts
[15/11/2008|22:51] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[16/08/2008|18:19] C:\Program Files\Fingerprint Sensor
[04/01/2009|00:45] C:\Program Files\Google
[23/11/2008|00:15] C:\Program Files\Hewlett-Packard
[28/06/2009|21:42] C:\Program Files\Hp
[16/08/2008|18:38] C:\Program Files\HP Games
[16/08/2008|18:23] C:\Program Files\IDT
[27/05/2009|18:49] C:\Program Files\InstallShield Installation Information
[16/08/2008|18:20] C:\Program Files\Intel
[03/08/2009|00:16] C:\Program Files\Internet Explorer
[25/07/2009|20:51] C:\Program Files\iPod
[25/07/2009|20:52] C:\Program Files\iTunes
[03/08/2009|00:06] C:\Program Files\Java
[16/08/2008|18:36] C:\Program Files\Marvell
[05/08/2009|17:42] C:\Program Files\Microsoft
[02/11/2006|14:37] C:\Program Files\Microsoft Games
[30/12/2008|13:54] C:\Program Files\Microsoft Money
[04/03/2008|21:33] C:\Program Files\Microsoft Office
[12/06/2009|08:37] C:\Program Files\Microsoft Works
[04/03/2008|21:33] C:\Program Files\Microsoft.NET
[05/03/2008|05:20] C:\Program Files\Movie Maker
[27/04/2009|22:10] C:\Program Files\Mozilla Firefox
[02/11/2006|14:37] C:\Program Files\MSBuild
[09/03/2009|19:03] C:\Program Files\MSECache
[16/11/2008|01:09] C:\Program Files\MSXML 4.0
[04/03/2008|21:21] C:\Program Files\muvee Technologies
[27/07/2009|22:40] C:\Program Files\Nokia
[11/04/2009|09:13] C:\Program Files\Norton 360
[03/08/2009|22:52] C:\Program Files\NOS
[15/11/2008|23:41] C:\Program Files\Orange HSS
[27/05/2009|18:49] C:\Program Files\Panasonic
[27/07/2009|22:39] C:\Program Files\PC Connectivity Solution
[03/06/2009|19:36] C:\Program Files\QuickTime
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[15/11/2008|23:33] C:\Program Files\SAGEM
[23/12/2008|22:05] C:\Program Files\Samsung
[15/11/2008|23:32] C:\Program Files\Securitoo
[16/08/2008|18:39] C:\Program Files\Services en ligne
[16/08/2008|18:19] C:\Program Files\Silicon Image
[11/01/2009|23:48] C:\Program Files\Symantec
[16/08/2008|18:16] C:\Program Files\Synaptics
[14/07/2009|21:10] C:\Program Files\TomTom HOME 2
[14/07/2009|21:11] C:\Program Files\TomTom International B.V
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[23/11/2008|22:22] C:\Program Files\VideoLAN
[16/08/2008|18:24] C:\Program Files\WIDCOMM
[05/03/2008|05:20] C:\Program Files\Windows Calendar
[05/03/2008|05:20] C:\Program Files\Windows Collaboration
[05/03/2008|05:20] C:\Program Files\Windows Defender
[05/03/2008|05:20] C:\Program Files\Windows Journal
[05/08/2009|17:42] C:\Program Files\Windows Live
[05/08/2009|17:42] C:\Program Files\Windows Live SkyDrive
[15/07/2009|08:35] C:\Program Files\Windows Mail
[12/03/2009|09:19] C:\Program Files\Windows Media Player
[15/11/2008|22:51] C:\Program Files\Windows NT
[05/03/2008|05:20] C:\Program Files\Windows Photo Gallery
[05/03/2008|05:20] C:\Program Files\Windows Sidebar
[14/07/2009|19:50] C:\Program Files\wletmin
--------------------\\ Listing des dossiers dans C:\Program Files\Common Files
[04/03/2008|21:35] C:\Program Files\Common Files\Adobe
[25/07/2009|20:51] C:\Program Files\Common Files\Apple
[04/03/2008|21:33] C:\Program Files\Common Files\DESIGNER
[15/11/2008|23:40] C:\Program Files\Common Files\France Telecom
[28/06/2009|21:38] C:\Program Files\Common Files\Hewlett-Packard
[28/06/2009|21:41] C:\Program Files\Common Files\HP
[04/03/2008|21:44] C:\Program Files\Common Files\InstallShield
[04/03/2008|21:49] C:\Program Files\Common Files\Java
[05/08/2009|17:42] C:\Program Files\Common Files\microsoft shared
[04/03/2008|21:21] C:\Program Files\Common Files\muvee Technologies
[27/07/2009|22:41] C:\Program Files\Common Files\Nokia
[27/07/2009|22:41] C:\Program Files\Common Files\PCSuite
[20/12/2008|15:33] C:\Program Files\Common Files\PX Storage Engine
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[27/02/2009|15:49] C:\Program Files\Common Files\Symantec Shared
[05/03/2008|05:20] C:\Program Files\Common Files\System
[17/12/2008|18:32] C:\Program Files\Common Files\Windows Live
[16/11/2008|00:46] C:\Program Files\Common Files\WindowsLiveInstaller
--------------------\\ Process
( 96 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-08-06 22:49:47
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 121
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:65690][D:46]-> C:\Users\MICHEL\AppData\Local\Temp
[F:539][D:1]-> C:\Users\MICHEL\AppData\Roaming\MICROS~1\Windows\Cookies
[F:2134][D:4]-> C:\Users\MICHEL\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:8][D:3]-> C:\$Recycle.Bin
1 - "C:\Lop SD\LopR_1.txt" - 06/08/2009|22:36 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 06/08/2009|23:20 - Option : [2]
--------------------\\ Fin du rapport a 23:20:49
[ UAC => 1 ]
Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Intel(R) Core(TM)2 Duo CPU T8100 @ 2.10GHz )
BIOS : EPP runtime BIOS - Version 1.1
USER : MICHEL ( Administrator )
BOOT : Normal boot
C:\ (Local Disk) - NTFS - Total:221 Go (Free:134 Go)
D:\ (Local Disk) - NTFS - Total:232 Go (Free:232 Go)
E:\ (Local Disk) - NTFS - Total:11 Go (Free:2 Go)
F:\ (CD or DVD)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [2] ( 06/08/2009|22:49 )
[ UAC => 1 ]
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION
Supprime! - C:\ProgramData\Gpl ooze view load\Roam barb.dat
Supprime! - C:\ProgramData\Gpl ooze view load\Roam barb.exe
Supprime! - C:\Users\MICHEL\AppData\Local\Temp\msgpl_da76.tmp
Supprime! - C:\ProgramData\move readme readme.vbu0o
Supprime! - C:\ProgramData\move readme readme.7kolbhj
Supprime! - C:\ProgramData\Web Dvd Site.l45yxac
Supprime! - C:\ProgramData\Gpl ooze view load
-
[ Fichier Hosts ] .. Restaure!
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing des dossiers dans Local
[17/11/2008|22:43] C:\Users\MICHEL\AppData\Local\Adobe
[26/02/2009|01:52] C:\Users\MICHEL\AppData\Local\Apple
[27/03/2009|15:04] C:\Users\MICHEL\AppData\Local\Apple Computer
[15/11/2008|22:59] C:\Users\MICHEL\AppData\Local\Application Data
[15/11/2008|23:13] C:\Users\MICHEL\AppData\Local\AtStart.txt
[10/01/2009|23:01] C:\Users\MICHEL\AppData\Local\d3d9caps.dat
[28/07/2009|19:30] C:\Users\MICHEL\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[15/11/2008|23:13] C:\Users\MICHEL\AppData\Local\DigitalPersona
[15/11/2008|23:03] C:\Users\MICHEL\AppData\Local\Downloaded Installations
[15/11/2008|23:13] C:\Users\MICHEL\AppData\Local\DSwitch.txt
[03/08/2009|08:15] C:\Users\MICHEL\AppData\Local\GDIPFONTCACHEV1.DAT
[15/06/2009|08:20] C:\Users\MICHEL\AppData\Local\Google
[15/11/2008|22:59] C:\Users\MICHEL\AppData\Local\Historique
[06/08/2009|21:22] C:\Users\MICHEL\AppData\Local\IconCache.db
[22/06/2009|10:58] C:\Users\MICHEL\AppData\Local\Microsoft
[19/04/2009|22:39] C:\Users\MICHEL\AppData\Local\Microsoft Games
[02/08/2009|22:53] C:\Users\MICHEL\AppData\Local\Microsoft Help
[27/04/2009|22:10] C:\Users\MICHEL\AppData\Local\Mozilla
[15/11/2008|23:13] C:\Users\MICHEL\AppData\Local\QSwitch.txt
[03/05/2009|22:59] C:\Users\MICHEL\AppData\Local\QuickPlay
[06/08/2009|22:49] C:\Users\MICHEL\AppData\Local\Temp
[15/11/2008|22:59] C:\Users\MICHEL\AppData\Local\Temporary Internet Files
[14/07/2009|21:11] C:\Users\MICHEL\AppData\Local\TomTom
[22/03/2009|19:57] C:\Users\MICHEL\AppData\Local\VirtualStore
--------------------\\ Tâches planifiées dans C:\Windows\tasks
[20/07/2009 20:00][--a------] C:\Windows\tasks\Norton Internet Security - Effectuer une analyse complŠte du systŠme - MICHEL.job
[06/08/2009 21:24][--ah-----] C:\Windows\tasks\SA.DAT
[06/08/2009 21:23][--a------] C:\Windows\tasks\SCHEDLGU.TXT
--------------------\\ Listing des dossiers dans C:\ProgramData
[04/03/2008|21:34] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[10/01/2009|23:26] C:\ProgramData\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[06/04/2009|21:59] C:\ProgramData\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[04/03/2008|21:35] C:\ProgramData\Adobe
[15/04/2009|23:40] C:\ProgramData\AOL
[26/02/2009|01:48] C:\ProgramData\Apple
[28/02/2009|12:16] C:\ProgramData\Apple Computer
[02/11/2006|15:02] C:\ProgramData\Application Data
[15/11/2008|22:51] C:\ProgramData\Bureau
[25/03/2009|19:35] C:\ProgramData\CyberLink
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[15/11/2008|23:04] C:\ProgramData\Electronic Arts
[15/11/2008|22:51] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[03/01/2009|23:27] C:\ProgramData\Google
[16/08/2008|18:39] C:\ProgramData\Hewlett-Packard
[29/06/2009|08:25] C:\ProgramData\HP
[02/07/2009|19:09] C:\ProgramData\HP Product Assistant
[28/06/2009|21:42] C:\ProgramData\HPSSUPPLY
[02/07/2009|19:17] C:\ProgramData\hpzinstall.log
[27/07/2009|22:36] C:\ProgramData\Installations
[03/07/2009|21:37] C:\ProgramData\LauncherAccess.dt
[16/08/2008|18:39] C:\ProgramData\Macrovision
[05/08/2009|00:46] C:\ProgramData\mapi 2 burn
[15/11/2008|22:51] C:\ProgramData\Menu D‚marrer
[20/04/2009|21:46] C:\ProgramData\Micro Application
[17/12/2008|18:30] C:\ProgramData\Microsoft
[04/08/2009|16:58] C:\ProgramData\Microsoft Help
[15/11/2008|22:51] C:\ProgramData\ModŠles
[04/03/2008|21:21] C:\ProgramData\muvee Technologies
[03/08/2009|22:52] C:\ProgramData\NOS
[16/08/2008|18:41] C:\ProgramData\NVIDIA
[27/05/2009|19:07] C:\ProgramData\Panasonic
[27/07/2009|22:44] C:\ProgramData\PC Suite
[02/11/2006|15:02] C:\ProgramData\Start Menu
[28/01/2009|21:22] C:\ProgramData\Symantec
[10/01/2009|21:53] C:\ProgramData\Symantec Temporary Files
[02/11/2006|15:02] C:\ProgramData\Templates
[14/07/2009|21:11] C:\ProgramData\TomTom
[28/06/2009|21:49] C:\ProgramData\WEBREG
[19/04/2009|13:33] C:\ProgramData\WildTangent
[16/11/2008|00:41] C:\ProgramData\WLInstaller
--------------------\\ Listing des dossiers dans C:\Program Files
[04/03/2008|21:34] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[04/03/2008|21:35] C:\Program Files\Adobe
[26/02/2009|01:52] C:\Program Files\Apple Software Update
[16/08/2008|18:18] C:\Program Files\AVerMedia
[06/04/2009|21:57] C:\Program Files\Bonjour
[27/07/2009|22:41] C:\Program Files\Common Files
[16/08/2008|18:34] C:\Program Files\CyberLink
[28/07/2009|20:54] C:\Program Files\DeezRip
[27/07/2009|22:40] C:\Program Files\DIFX
[16/08/2008|18:39] C:\Program Files\DigitalPersona
[07/05/2009|18:45] C:\Program Files\Electronic Arts
[15/11/2008|22:51] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[16/08/2008|18:19] C:\Program Files\Fingerprint Sensor
[04/01/2009|00:45] C:\Program Files\Google
[23/11/2008|00:15] C:\Program Files\Hewlett-Packard
[28/06/2009|21:42] C:\Program Files\Hp
[16/08/2008|18:38] C:\Program Files\HP Games
[16/08/2008|18:23] C:\Program Files\IDT
[27/05/2009|18:49] C:\Program Files\InstallShield Installation Information
[16/08/2008|18:20] C:\Program Files\Intel
[03/08/2009|00:16] C:\Program Files\Internet Explorer
[25/07/2009|20:51] C:\Program Files\iPod
[25/07/2009|20:52] C:\Program Files\iTunes
[03/08/2009|00:06] C:\Program Files\Java
[16/08/2008|18:36] C:\Program Files\Marvell
[05/08/2009|17:42] C:\Program Files\Microsoft
[02/11/2006|14:37] C:\Program Files\Microsoft Games
[30/12/2008|13:54] C:\Program Files\Microsoft Money
[04/03/2008|21:33] C:\Program Files\Microsoft Office
[12/06/2009|08:37] C:\Program Files\Microsoft Works
[04/03/2008|21:33] C:\Program Files\Microsoft.NET
[05/03/2008|05:20] C:\Program Files\Movie Maker
[27/04/2009|22:10] C:\Program Files\Mozilla Firefox
[02/11/2006|14:37] C:\Program Files\MSBuild
[09/03/2009|19:03] C:\Program Files\MSECache
[16/11/2008|01:09] C:\Program Files\MSXML 4.0
[04/03/2008|21:21] C:\Program Files\muvee Technologies
[27/07/2009|22:40] C:\Program Files\Nokia
[11/04/2009|09:13] C:\Program Files\Norton 360
[03/08/2009|22:52] C:\Program Files\NOS
[15/11/2008|23:41] C:\Program Files\Orange HSS
[27/05/2009|18:49] C:\Program Files\Panasonic
[27/07/2009|22:39] C:\Program Files\PC Connectivity Solution
[03/06/2009|19:36] C:\Program Files\QuickTime
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[15/11/2008|23:33] C:\Program Files\SAGEM
[23/12/2008|22:05] C:\Program Files\Samsung
[15/11/2008|23:32] C:\Program Files\Securitoo
[16/08/2008|18:39] C:\Program Files\Services en ligne
[16/08/2008|18:19] C:\Program Files\Silicon Image
[11/01/2009|23:48] C:\Program Files\Symantec
[16/08/2008|18:16] C:\Program Files\Synaptics
[14/07/2009|21:10] C:\Program Files\TomTom HOME 2
[14/07/2009|21:11] C:\Program Files\TomTom International B.V
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[23/11/2008|22:22] C:\Program Files\VideoLAN
[16/08/2008|18:24] C:\Program Files\WIDCOMM
[05/03/2008|05:20] C:\Program Files\Windows Calendar
[05/03/2008|05:20] C:\Program Files\Windows Collaboration
[05/03/2008|05:20] C:\Program Files\Windows Defender
[05/03/2008|05:20] C:\Program Files\Windows Journal
[05/08/2009|17:42] C:\Program Files\Windows Live
[05/08/2009|17:42] C:\Program Files\Windows Live SkyDrive
[15/07/2009|08:35] C:\Program Files\Windows Mail
[12/03/2009|09:19] C:\Program Files\Windows Media Player
[15/11/2008|22:51] C:\Program Files\Windows NT
[05/03/2008|05:20] C:\Program Files\Windows Photo Gallery
[05/03/2008|05:20] C:\Program Files\Windows Sidebar
[14/07/2009|19:50] C:\Program Files\wletmin
--------------------\\ Listing des dossiers dans C:\Program Files\Common Files
[04/03/2008|21:35] C:\Program Files\Common Files\Adobe
[25/07/2009|20:51] C:\Program Files\Common Files\Apple
[04/03/2008|21:33] C:\Program Files\Common Files\DESIGNER
[15/11/2008|23:40] C:\Program Files\Common Files\France Telecom
[28/06/2009|21:38] C:\Program Files\Common Files\Hewlett-Packard
[28/06/2009|21:41] C:\Program Files\Common Files\HP
[04/03/2008|21:44] C:\Program Files\Common Files\InstallShield
[04/03/2008|21:49] C:\Program Files\Common Files\Java
[05/08/2009|17:42] C:\Program Files\Common Files\microsoft shared
[04/03/2008|21:21] C:\Program Files\Common Files\muvee Technologies
[27/07/2009|22:41] C:\Program Files\Common Files\Nokia
[27/07/2009|22:41] C:\Program Files\Common Files\PCSuite
[20/12/2008|15:33] C:\Program Files\Common Files\PX Storage Engine
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[27/02/2009|15:49] C:\Program Files\Common Files\Symantec Shared
[05/03/2008|05:20] C:\Program Files\Common Files\System
[17/12/2008|18:32] C:\Program Files\Common Files\Windows Live
[16/11/2008|00:46] C:\Program Files\Common Files\WindowsLiveInstaller
--------------------\\ Process
( 96 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-08-06 22:49:47
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 121
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:65690][D:46]-> C:\Users\MICHEL\AppData\Local\Temp
[F:539][D:1]-> C:\Users\MICHEL\AppData\Roaming\MICROS~1\Windows\Cookies
[F:2134][D:4]-> C:\Users\MICHEL\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:8][D:3]-> C:\$Recycle.Bin
1 - "C:\Lop SD\LopR_1.txt" - 06/08/2009|22:36 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 06/08/2009|23:20 - Option : [2]
--------------------\\ Fin du rapport a 23:20:49
[ UAC => 1 ]
Bien.
Pour répondre à ta question :
Les publicités CiD sont dues à une infection Lop/Swizzor qui s'installe via les logiciels suivants :
• Le sponsor de Messenger Plus!
• Bittorent
• BitDownload
• BitGrabber
• NetPumper
• BitRoll
• TorrentQ
• Torrent101
Donc, attention à ce que tu installes :-)
Fais un nouvel Hijackthis pour vérifier que tout va bien.
Pour répondre à ta question :
Les publicités CiD sont dues à une infection Lop/Swizzor qui s'installe via les logiciels suivants :
• Le sponsor de Messenger Plus!
• Bittorent
• BitDownload
• BitGrabber
• NetPumper
• BitRoll
• TorrentQ
• Torrent101
Donc, attention à ce que tu installes :-)
Fais un nouvel Hijackthis pour vérifier que tout va bien.
