Prb d'ouverture de fenetre de pub
gran_alan
-
gran_alan -
gran_alan -
Bonjour,
j'ai des ouverture intempestive de fenetre de pub :j'ai fiat un scan hijackthis ,pourriez vous y jeter un coup d'oeil :je n'ai pas reussi a decouvrir ce qui le lancer
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:09:57, on 06/08/2009
Platform: Windows XP SP3, v.5512 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.20772)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\WINDOWS\system32\FsUsbExService.Exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\oodag.exe
C:\Program Files\PC Tools AntiVirus\PCTAVSvc.exe
C:\PROGRA~1\TECHCI~1\AOLSAV\AOLAgent.exe
C:\WINDOWS\vsnpstd2.exe
C:\Program Files\Lexmark 1200 Series\lxczbmgr.exe
C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Lexmark 1200 Series\lxczbmon.exe
C:\WINDOWS\wanmpsvc.exe
C:\Program Files\Fichiers communs\AOL\1213278487\ee\AOLSoftware.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\documents and settings\administrateur\local settings\application data\saakkke.exe
C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\AOL 9.0\aoltray.exe
C:\Program Files\AOL Compagnon\companion.exe
c:\program files\fichiers communs\aol\1213278487\ee\services\antiSpywareApp\ver2_0_28_1\AOLSP Scheduler.exe
c:\program files\fichiers communs\aol\1213278487\ee\aolsoftware.exe
C:\Program Files\Fichiers communs\Teleca Shared\Generic.exe
C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
C:\Documents and Settings\Administrateur\Mes documents\HiJackThis.exe
C:\Program Files\AOL 9.0\waol.exe
C:\Program Files\AOL 9.0\shellmon.exe
C:\Program Files\Fichiers communs\Aol\aoltpspd.exe
C:\WINDOWS\system32\taskmgr.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?cc=fr&toHttps=1&redig=D4322FEE7CF74A348CB9CE970F098EF5
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.plusnetwork.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,First Home Page = C:\Program Files\AOL Toolbar\welcome.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Favoris
R3 - URLSearchHook: AOLTBSearch Class - {EA756889-2338-43DB-8F07-D1CA6FB9C90D} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O2 - BHO: AOL Toolbar Launcher - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKLM\..\Run: [Vistadrv] C:\Program Files\VistaDriveStatus\vsdrv.exe
O4 - HKLM\..\Run: [AOLSAV] C:\PROGRA~1\TECHCI~1\AOLSAV\AOLAgent.exe
O4 - HKLM\..\Run: [AOLDialer] C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SNPSTD2] C:\WINDOWS\vsnpstd2.exe
O4 - HKLM\..\Run: [OODefragTray] C:\WINDOWS\system32\oodtray.exe
O4 - HKLM\..\Run: [Lexmark 1200 Series] "C:\Program Files\Lexmark 1200 Series\lxczbmgr.exe"
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [HostManager] C:\Program Files\Fichiers communs\AOL\1213278487\ee\AOLSoftware.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [The locks settings ante] C:\Documents and Settings\All Users\Application Data\Cool Eggs The Locks\inter mapi.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [gramflap] C:\DOCUME~1\ADMINI~1\APPLIC~1\MANAGE~1\newaxis.exe
O4 - HKCU\..\Run: [saakkke] "c:\documents and settings\administrateur\local settings\application data\saakkke.exe" saakkke
O4 - HKCU\..\Run: [AutoStartNPSAgent] C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
O4 - HKUS\S-1-5-18\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (User 'Default user')
O4 - Global Startup: AOL 9.0 Icône AOL.lnk = C:\Program Files\AOL 9.0\aoltray.exe
O4 - Global Startup: AOL Compagnon.lnk = C:\Program Files\AOL Compagnon\companion.exe
O8 - Extra context menu item: &Recherche AOL Toolbar - c:\program files\aol\aol toolbar 5.0\resources\fr-fr\local\search.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra button: AOL Toolbar - {3369AF0D-62E9-4bda-8103-B4C75499B578} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: FsUsbExService - Teruten - C:\WINDOWS\system32\FsUsbExService.Exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
O23 - Service: PC Tools AntiVirus Engine (PCTAVSvc) - PC Tools Research Pty Ltd - C:\Program Files\PC Tools AntiVirus\PCTAVSvc.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
j'ai des ouverture intempestive de fenetre de pub :j'ai fiat un scan hijackthis ,pourriez vous y jeter un coup d'oeil :je n'ai pas reussi a decouvrir ce qui le lancer
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:09:57, on 06/08/2009
Platform: Windows XP SP3, v.5512 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.20772)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\WINDOWS\system32\FsUsbExService.Exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\oodag.exe
C:\Program Files\PC Tools AntiVirus\PCTAVSvc.exe
C:\PROGRA~1\TECHCI~1\AOLSAV\AOLAgent.exe
C:\WINDOWS\vsnpstd2.exe
C:\Program Files\Lexmark 1200 Series\lxczbmgr.exe
C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Lexmark 1200 Series\lxczbmon.exe
C:\WINDOWS\wanmpsvc.exe
C:\Program Files\Fichiers communs\AOL\1213278487\ee\AOLSoftware.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\documents and settings\administrateur\local settings\application data\saakkke.exe
C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\AOL 9.0\aoltray.exe
C:\Program Files\AOL Compagnon\companion.exe
c:\program files\fichiers communs\aol\1213278487\ee\services\antiSpywareApp\ver2_0_28_1\AOLSP Scheduler.exe
c:\program files\fichiers communs\aol\1213278487\ee\aolsoftware.exe
C:\Program Files\Fichiers communs\Teleca Shared\Generic.exe
C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
C:\Documents and Settings\Administrateur\Mes documents\HiJackThis.exe
C:\Program Files\AOL 9.0\waol.exe
C:\Program Files\AOL 9.0\shellmon.exe
C:\Program Files\Fichiers communs\Aol\aoltpspd.exe
C:\WINDOWS\system32\taskmgr.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?cc=fr&toHttps=1&redig=D4322FEE7CF74A348CB9CE970F098EF5
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.plusnetwork.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,First Home Page = C:\Program Files\AOL Toolbar\welcome.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Favoris
R3 - URLSearchHook: AOLTBSearch Class - {EA756889-2338-43DB-8F07-D1CA6FB9C90D} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O2 - BHO: AOL Toolbar Launcher - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKLM\..\Run: [Vistadrv] C:\Program Files\VistaDriveStatus\vsdrv.exe
O4 - HKLM\..\Run: [AOLSAV] C:\PROGRA~1\TECHCI~1\AOLSAV\AOLAgent.exe
O4 - HKLM\..\Run: [AOLDialer] C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SNPSTD2] C:\WINDOWS\vsnpstd2.exe
O4 - HKLM\..\Run: [OODefragTray] C:\WINDOWS\system32\oodtray.exe
O4 - HKLM\..\Run: [Lexmark 1200 Series] "C:\Program Files\Lexmark 1200 Series\lxczbmgr.exe"
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [HostManager] C:\Program Files\Fichiers communs\AOL\1213278487\ee\AOLSoftware.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [The locks settings ante] C:\Documents and Settings\All Users\Application Data\Cool Eggs The Locks\inter mapi.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [gramflap] C:\DOCUME~1\ADMINI~1\APPLIC~1\MANAGE~1\newaxis.exe
O4 - HKCU\..\Run: [saakkke] "c:\documents and settings\administrateur\local settings\application data\saakkke.exe" saakkke
O4 - HKCU\..\Run: [AutoStartNPSAgent] C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
O4 - HKUS\S-1-5-18\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (User 'Default user')
O4 - Global Startup: AOL 9.0 Icône AOL.lnk = C:\Program Files\AOL 9.0\aoltray.exe
O4 - Global Startup: AOL Compagnon.lnk = C:\Program Files\AOL Compagnon\companion.exe
O8 - Extra context menu item: &Recherche AOL Toolbar - c:\program files\aol\aol toolbar 5.0\resources\fr-fr\local\search.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra button: AOL Toolbar - {3369AF0D-62E9-4bda-8103-B4C75499B578} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: FsUsbExService - Teruten - C:\WINDOWS\system32\FsUsbExService.Exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
O23 - Service: PC Tools AntiVirus Engine (PCTAVSvc) - PC Tools Research Pty Ltd - C:\Program Files\PC Tools AntiVirus\PCTAVSvc.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
A voir également:
- Prb d'ouverture de fenetre de pub
- Bloqueur de pub youtube - Accueil - Streaming
- Fenetre de navigation privée - Guide
- Stop pub gratuit - Télécharger - Divers Utilitaires
- Fenetre windows - Guide
- Fenêtre hors écran windows 11 - Guide
10 réponses
Bonjour
Télécharge Navilog1 (par IL-MAFIOSO) sur ton bureau
http://perso.orange.fr/il.mafioso/Navifix/Navilog1.exe
Enregistre la cible (du lien) sous... et enregistre-le sur ton bureau.
Ensuite double clique sur navilog1.exe pour lancer l'installation.
Une fois l'installation terminée, double clique sur le raccourci Navilog1 présent sur le bureau.
Laisse-toi guider. Appuie sur une touche quand on te le demande.
Au menu principal, choisis 1 et valide.
< Ne fais pas le choix 2 >
Patiente le temps du scan. Il te sera peut-être demandé de redémarrer ton PC.
Laisse l'outil le faire automatiquement, sinon redémarre ton PC normalement s'il te le demande.
Patiente jusqu'au message "Scan terminé le......"
Appuie sur une touche comme demandé ; le bloc-notes va s'ouvrir.
Copie-colle l'intégralité dans ta réponse. Referme le bloc-notes.
PS : le rapport est, aussi, sauvegardé à la racine du disque dur C:\cleannavi.txt
Télécharge Navilog1 (par IL-MAFIOSO) sur ton bureau
http://perso.orange.fr/il.mafioso/Navifix/Navilog1.exe
Enregistre la cible (du lien) sous... et enregistre-le sur ton bureau.
Ensuite double clique sur navilog1.exe pour lancer l'installation.
Une fois l'installation terminée, double clique sur le raccourci Navilog1 présent sur le bureau.
Laisse-toi guider. Appuie sur une touche quand on te le demande.
Au menu principal, choisis 1 et valide.
< Ne fais pas le choix 2 >
Patiente le temps du scan. Il te sera peut-être demandé de redémarrer ton PC.
Laisse l'outil le faire automatiquement, sinon redémarre ton PC normalement s'il te le demande.
Patiente jusqu'au message "Scan terminé le......"
Appuie sur une touche comme demandé ; le bloc-notes va s'ouvrir.
Copie-colle l'intégralité dans ta réponse. Referme le bloc-notes.
PS : le rapport est, aussi, sauvegardé à la racine du disque dur C:\cleannavi.txt
merci
je l'ai fait et avant la fin des 10 minutes ça plante l'ordi (ecran bleu ,fatalerreur ,vidage memoire :je suis sur aol c'est peut etre a cause de çà ?
sinon cela a creer neamoins un fichier
Fix Navipromo version 4.0.1 commencé le 06/08/2009 14:32:41,04
!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!
Outil exécuté depuis C:\Program Files\navilog1
Mise à jour le 18.07.2009 à 11h00 par IL-MAFIOSO
Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3, v.5512
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) XP 2000+ )
BIOS : v1.0 ~
USER : Administrateur ( Administrator )
BOOT : Normal boot
C:\ (Local Disk) - NTFS - Total:63 Go (Free:52 Go)
D:\ (Local Disk) - NTFS - Total:10 Go (Free:10 Go)
E:\ (CD or DVD)
Recherche executée en mode normal
je l'ai fait et avant la fin des 10 minutes ça plante l'ordi (ecran bleu ,fatalerreur ,vidage memoire :je suis sur aol c'est peut etre a cause de çà ?
sinon cela a creer neamoins un fichier
Fix Navipromo version 4.0.1 commencé le 06/08/2009 14:32:41,04
!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!
Outil exécuté depuis C:\Program Files\navilog1
Mise à jour le 18.07.2009 à 11h00 par IL-MAFIOSO
Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3, v.5512
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) XP 2000+ )
BIOS : v1.0 ~
USER : Administrateur ( Administrator )
BOOT : Normal boot
C:\ (Local Disk) - NTFS - Total:63 Go (Free:52 Go)
D:\ (Local Disk) - NTFS - Total:10 Go (Free:10 Go)
E:\ (CD or DVD)
Recherche executée en mode normal
navilog n'a pas fonctionné.
On va traiter l'autre infection et y revenir après :
Télécharge Lop S&D.exe sur ton Bureau.
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
* Double-clique dessus pour lancer l'installation
* Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
* Séléctionne la langue souhaitée, puis choisis l'option 1 (Recherche)
* Patiente jusqu'à la fin du scan
* Poste le rapport généré (C:\lopR.txt)
Tutorial (aide) : http://bibou0007.com/outils-specifiques-f78/tuto-lop-sd-t956.htm
On va traiter l'autre infection et y revenir après :
Télécharge Lop S&D.exe sur ton Bureau.
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
* Double-clique dessus pour lancer l'installation
* Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
* Séléctionne la langue souhaitée, puis choisis l'option 1 (Recherche)
* Patiente jusqu'à la fin du scan
* Poste le rapport généré (C:\lopR.txt)
Tutorial (aide) : http://bibou0007.com/outils-specifiques-f78/tuto-lop-sd-t956.htm
--------------------\\ Lop S&D 4.2.5-0 XP/Vista
Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3, v.5512
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) XP 2000+ )
BIOS : v1.0 ~
USER : Administrateur ( Administrator )
BOOT : Normal boot
C:\ (Local Disk) - NTFS - Total:63 Go (Free:52 Go)
D:\ (Local Disk) - NTFS - Total:10 Go (Free:10 Go)
E:\ (CD or DVD)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 06/08/2009|15:57 )
--------------------\\ Listing des dossiers dans APPLIC~1
[17/06/2008|19:24] C:\DOCUME~1\ADMINI~1\APPLIC~1\Adobe
[24/06/2008|22:37] C:\DOCUME~1\ADMINI~1\APPLIC~1\AdobeUM
[10/06/2008|14:24] C:\DOCUME~1\ADMINI~1\APPLIC~1\AOL
[12/06/2008|14:02] C:\DOCUME~1\ADMINI~1\APPLIC~1\Google
[06/08/2009|13:59] C:\DOCUME~1\ADMINI~1\APPLIC~1\HouseCall 6.6
[11/06/2008|14:08] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[10/06/2008|14:27] C:\DOCUME~1\ADMINI~1\APPLIC~1\Macromedia
[22/07/2009|09:37] C:\DOCUME~1\ADMINI~1\APPLIC~1\Manager Road Skip
[04/04/2009|23:56] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[10/06/2008|14:02] C:\DOCUME~1\ADMINI~1\APPLIC~1\Notepad++
[02/08/2009|18:42] C:\DOCUME~1\ADMINI~1\APPLIC~1\PC Suite
[10/06/2008|14:18] C:\DOCUME~1\ADMINI~1\APPLIC~1\PC Tools
[02/08/2009|18:36] C:\DOCUME~1\ADMINI~1\APPLIC~1\Samsung
[12/06/2008|11:39] C:\DOCUME~1\ADMINI~1\APPLIC~1\Sony Ericsson
[10/06/2008|13:55] C:\DOCUME~1\ADMINI~1\APPLIC~1\Sun
[12/06/2008|11:55] C:\DOCUME~1\ADMINI~1\APPLIC~1\Teleca
[10/06/2008|14:01] C:\DOCUME~1\ADMINI~1\APPLIC~1\URSoft
[10/06/2008|13:55] C:\DOCUME~1\ADMINI~1\APPLIC~1\WinRAR
[10/06/2008|14:23] C:\DOCUME~1\ADMINI~1\APPLIC~1\You've Got Pictures Screensaver
[11/06/2008|14:08] C:\DOCUME~1\ADMINI~1\APPLIC~1\Zylom
[13/06/2008|11:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[12/11/2008|20:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL
[17/06/2008|15:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL Downloads
[06/10/2008|16:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL OCP
[10/06/2008|15:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BVRP Software
[22/07/2009|09:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cool Eggs The Locks
[12/07/2008|10:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Downloaded Installations
[16/02/2009|11:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[12/08/2008|19:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[09/10/2008|20:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MGS
[09/10/2008|20:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microgaming
[02/08/2009|19:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[24/12/2008|14:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Help
[02/08/2009|18:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PC Suite
[10/06/2008|14:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PC Tools
[10/06/2008|15:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[12/06/2008|11:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony Ericsson
[12/06/2008|11:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Teleca
[22/07/2009|09:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[10/06/2008|14:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Viewpoint
[11/06/2008|14:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom
[10/06/2008|13:49] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[10/06/2008|13:49] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[10/06/2008|13:49] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[10/06/2008 13:57][--ah-----] C:\WINDOWS\tasks\SA.DAT
[14/04/2008 12:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ Listing des dossiers dans C:\Program Files
[10/06/2008|15:26] C:\Program Files\ABBYY FineReader 5.0 Sprint
[10/06/2008|15:26] C:\Program Files\ABBYY FineReader 6.0
[17/06/2008|21:12] C:\Program Files\Active GIF Creator 3.1
[13/06/2008|11:42] C:\Program Files\Adobe
[17/06/2008|15:28] C:\Program Files\AOL
[16/11/2008|23:14] C:\Program Files\AOL 9.0
[10/06/2008|14:27] C:\Program Files\AOL Compagnon
[10/06/2008|15:10] C:\Program Files\ArcSoft
[19/05/2009|17:44] C:\Program Files\Ask Search Assistant
[11/08/2008|10:51] C:\Program Files\CCleaner
[21/07/2009|18:08] C:\Program Files\Circle Develoement
[10/06/2008|13:47] C:\Program Files\ComPlus Applications
[10/06/2008|14:45] C:\Program Files\Creative
[02/08/2009|18:40] C:\Program Files\DIFX
[10/06/2008|15:25] C:\Program Files\FaxTools
[19/04/2009|14:06] C:\Program Files\Fichiers communs
[17/10/2008|12:56] C:\Program Files\Gimp-2.0
[16/02/2009|11:48] C:\Program Files\Google
[10/06/2008|13:45] C:\Program Files\HiJackThis
[10/06/2008|15:37] C:\Program Files\inKline Global
[02/08/2009|19:02] C:\Program Files\InstallShield Installation Information
[10/06/2008|14:23] C:\Program Files\Internet Explorer
[10/06/2008|13:55] C:\Program Files\IrfanView
[10/06/2008|13:56] C:\Program Files\Java
[10/06/2008|14:23] C:\Program Files\Learn2.com
[10/06/2008|15:23] C:\Program Files\Lexmark 1200 Series
[22/07/2009|09:36] C:\Program Files\Manager Road Skip
[02/08/2009|18:34] C:\Program Files\MarkAny
[21/07/2009|18:08] C:\Program Files\Messenger Plus! Live
[19/06/2008|13:51] C:\Program Files\Micro Application
[19/04/2009|14:18] C:\Program Files\Microsoft
[10/06/2008|15:54] C:\Program Files\Microsoft Office
[19/04/2009|14:18] C:\Program Files\Microsoft Silverlight
[19/04/2009|14:16] C:\Program Files\Microsoft SQL Server Compact Edition
[10/06/2008|15:54] C:\Program Files\Microsoft Visual Studio
[10/06/2008|15:51] C:\Program Files\Microsoft Visual Studio 8
[10/06/2008|15:55] C:\Program Files\Microsoft Works
[10/06/2008|15:53] C:\Program Files\Microsoft.NET
[10/06/2008|15:55] C:\Program Files\MSBuild
[06/08/2009|14:32] C:\Program Files\Navilog1
[10/06/2008|14:02] C:\Program Files\Notepad++
[10/06/2008|15:12] C:\Program Files\OO Software
[10/06/2008|13:48] C:\Program Files\Outlook Express
[10/06/2008|13:45] C:\Program Files\Paint.NET
[02/08/2009|18:40] C:\Program Files\PC Connectivity Solution
[06/08/2009|14:44] C:\Program Files\PC Tools AntiVirus
[04/07/2008|15:02] C:\Program Files\PhotoFiltre
[07/09/2008|12:18] C:\Program Files\Picasa2
[10/06/2008|14:23] C:\Program Files\QuickTime
[10/06/2008|14:22] C:\Program Files\Real
[02/08/2009|18:40] C:\Program Files\Samsung
[12/03/2009|18:42] C:\Program Files\SFR
[18/03/2009|17:44] C:\Program Files\Sony Ericsson
[10/06/2008|14:21] C:\Program Files\TechCity Solutions
[19/06/2009|16:07] C:\Program Files\Tetris
[10/06/2008|15:08] C:\Program Files\Trust
[10/06/2008|13:53] C:\Program Files\Uninstall Information
[10/06/2008|13:46] C:\Program Files\Unlocker
[10/06/2008|15:32] C:\Program Files\VIA
[10/06/2008|14:23] C:\Program Files\Viewpoint
[12/07/2008|10:59] C:\Program Files\VirginMega
[10/06/2008|13:55] C:\Program Files\VistaDriveStatus
[19/04/2009|14:18] C:\Program Files\Windows Live
[19/04/2009|14:14] C:\Program Files\Windows Live SkyDrive
[10/06/2008|13:49] C:\Program Files\Windows Media Player
[10/06/2008|13:46] C:\Program Files\Windows Trust
[10/06/2008|13:55] C:\Program Files\WinRAR
[10/06/2008|13:54] C:\Program Files\WTInstaller
[10/06/2008|14:02] C:\Program Files\Your Uninstaller 2008
[26/10/2008|15:18] C:\Program Files\Zylom Games
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[17/06/2008|19:24] C:\Program Files\Fichiers communs\Adobe
[12/11/2008|21:22] C:\Program Files\Fichiers communs\AOL
[10/06/2008|14:24] C:\Program Files\Fichiers communs\aolback
[12/11/2008|21:22] C:\Program Files\Fichiers communs\aolshare
[10/06/2008|15:10] C:\Program Files\Fichiers communs\ArcSoft
[10/06/2008|15:54] C:\Program Files\Fichiers communs\DESIGNER
[10/06/2008|15:32] C:\Program Files\Fichiers communs\InstallShield
[10/06/2008|13:56] C:\Program Files\Fichiers communs\Java
[19/04/2009|14:14] C:\Program Files\Fichiers communs\Microsoft Shared
[10/06/2008|13:48] C:\Program Files\Fichiers communs\MSSoap
[10/06/2008|14:23] C:\Program Files\Fichiers communs\Nullsoft
[10/06/2008|15:33] C:\Program Files\Fichiers communs\ODBC
[10/06/2008|14:18] C:\Program Files\Fichiers communs\PC Tools
[10/06/2008|14:23] C:\Program Files\Fichiers communs\Real
[18/10/2008|12:08] C:\Program Files\Fichiers communs\Scanner
[10/06/2008|13:48] C:\Program Files\Fichiers communs\Services
[12/06/2008|11:39] C:\Program Files\Fichiers communs\Sony Ericsson Shared
[10/06/2008|13:48] C:\Program Files\Fichiers communs\System
[12/06/2008|11:41] C:\Program Files\Fichiers communs\Teleca Shared
[19/04/2009|14:06] C:\Program Files\Fichiers communs\Windows Live
--------------------\\ Process
( 43 Processes )
iexplore.exe ~ [PID:1968]
iexplore.exe ~ [PID:176]
--------------------\\ Recherche avec S_Lop
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\bis2A4.exe
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cool Eggs The Locks
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cool Eggs The Locks\inter mapi.dat
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cool Eggs The Locks\inter mapi.exe
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\msgpl_5c0b.tmp
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\sta8.exe
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@advertstream[1].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@www.adserver5[1].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@adultfriendfinder[2].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@advertising[1].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@bigpoint[2].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@fr.darkorbit.bigpoint[2].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@fr.seafight.bigpoint[1].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@banner.casinoking[2].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@banner.cotedazurpalace[2].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@cotedazurpalace[1].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@serve.cotedazurpalace[1].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@www.cotedazurpalace[1].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@euroclick[1].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@sr2.livemediasrv[1].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@fr.seafight.bigpoint[1].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@32vegas[1].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@banner.32vegas[2].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@dirtyvegas-31.skyrock[2].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@serve.32vegas[2].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@www.32vegas[2].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@2xmoinscher[2].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@cc.2xmoinscher[1].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@www.2xmoinscher[2].txt
--------------------\\ Verification du Registre
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"The locks settings ante"="C:\\Documents and Settings\\All Users\\Application Data\\Cool Eggs The Locks\\inter mapi.exe"
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-08-06 15:58:57
Windows 5.1.2600 Service Pack 3, v.5512 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------\\ Recherche d'autres infections
C:\DOCUME~1\ADMINI~1\LOCALS~1\APPLIC~1\saakkke.dat
C:\DOCUME~1\ADMINI~1\LOCALS~1\APPLIC~1\saakkke.exe
C:\DOCUME~1\ADMINI~1\LOCALS~1\APPLIC~1\saakkke_nav.dat
C:\DOCUME~1\ADMINI~1\LOCALS~1\APPLIC~1\saakkke_navps.dat
[b]==> EGDACCESS <==/b
[F:1272][D:34]-> C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp
[F:2255][D:0]-> C:\DOCUME~1\ADMINI~1\Cookies
[F:5066][D:30]-> C:\DOCUME~1\ADMINI~1\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 06/08/2009|16:00 - Option : [1]
--------------------\\ Fin du rapport a 16:00:24
Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3, v.5512
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) XP 2000+ )
BIOS : v1.0 ~
USER : Administrateur ( Administrator )
BOOT : Normal boot
C:\ (Local Disk) - NTFS - Total:63 Go (Free:52 Go)
D:\ (Local Disk) - NTFS - Total:10 Go (Free:10 Go)
E:\ (CD or DVD)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 06/08/2009|15:57 )
--------------------\\ Listing des dossiers dans APPLIC~1
[17/06/2008|19:24] C:\DOCUME~1\ADMINI~1\APPLIC~1\Adobe
[24/06/2008|22:37] C:\DOCUME~1\ADMINI~1\APPLIC~1\AdobeUM
[10/06/2008|14:24] C:\DOCUME~1\ADMINI~1\APPLIC~1\AOL
[12/06/2008|14:02] C:\DOCUME~1\ADMINI~1\APPLIC~1\Google
[06/08/2009|13:59] C:\DOCUME~1\ADMINI~1\APPLIC~1\HouseCall 6.6
[11/06/2008|14:08] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[10/06/2008|14:27] C:\DOCUME~1\ADMINI~1\APPLIC~1\Macromedia
[22/07/2009|09:37] C:\DOCUME~1\ADMINI~1\APPLIC~1\Manager Road Skip
[04/04/2009|23:56] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[10/06/2008|14:02] C:\DOCUME~1\ADMINI~1\APPLIC~1\Notepad++
[02/08/2009|18:42] C:\DOCUME~1\ADMINI~1\APPLIC~1\PC Suite
[10/06/2008|14:18] C:\DOCUME~1\ADMINI~1\APPLIC~1\PC Tools
[02/08/2009|18:36] C:\DOCUME~1\ADMINI~1\APPLIC~1\Samsung
[12/06/2008|11:39] C:\DOCUME~1\ADMINI~1\APPLIC~1\Sony Ericsson
[10/06/2008|13:55] C:\DOCUME~1\ADMINI~1\APPLIC~1\Sun
[12/06/2008|11:55] C:\DOCUME~1\ADMINI~1\APPLIC~1\Teleca
[10/06/2008|14:01] C:\DOCUME~1\ADMINI~1\APPLIC~1\URSoft
[10/06/2008|13:55] C:\DOCUME~1\ADMINI~1\APPLIC~1\WinRAR
[10/06/2008|14:23] C:\DOCUME~1\ADMINI~1\APPLIC~1\You've Got Pictures Screensaver
[11/06/2008|14:08] C:\DOCUME~1\ADMINI~1\APPLIC~1\Zylom
[13/06/2008|11:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[12/11/2008|20:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL
[17/06/2008|15:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL Downloads
[06/10/2008|16:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL OCP
[10/06/2008|15:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BVRP Software
[22/07/2009|09:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cool Eggs The Locks
[12/07/2008|10:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Downloaded Installations
[16/02/2009|11:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[12/08/2008|19:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[09/10/2008|20:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MGS
[09/10/2008|20:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microgaming
[02/08/2009|19:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[24/12/2008|14:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Help
[02/08/2009|18:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PC Suite
[10/06/2008|14:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PC Tools
[10/06/2008|15:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[12/06/2008|11:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony Ericsson
[12/06/2008|11:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Teleca
[22/07/2009|09:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[10/06/2008|14:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Viewpoint
[11/06/2008|14:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom
[10/06/2008|13:49] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[10/06/2008|13:49] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[10/06/2008|13:49] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[10/06/2008 13:57][--ah-----] C:\WINDOWS\tasks\SA.DAT
[14/04/2008 12:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ Listing des dossiers dans C:\Program Files
[10/06/2008|15:26] C:\Program Files\ABBYY FineReader 5.0 Sprint
[10/06/2008|15:26] C:\Program Files\ABBYY FineReader 6.0
[17/06/2008|21:12] C:\Program Files\Active GIF Creator 3.1
[13/06/2008|11:42] C:\Program Files\Adobe
[17/06/2008|15:28] C:\Program Files\AOL
[16/11/2008|23:14] C:\Program Files\AOL 9.0
[10/06/2008|14:27] C:\Program Files\AOL Compagnon
[10/06/2008|15:10] C:\Program Files\ArcSoft
[19/05/2009|17:44] C:\Program Files\Ask Search Assistant
[11/08/2008|10:51] C:\Program Files\CCleaner
[21/07/2009|18:08] C:\Program Files\Circle Develoement
[10/06/2008|13:47] C:\Program Files\ComPlus Applications
[10/06/2008|14:45] C:\Program Files\Creative
[02/08/2009|18:40] C:\Program Files\DIFX
[10/06/2008|15:25] C:\Program Files\FaxTools
[19/04/2009|14:06] C:\Program Files\Fichiers communs
[17/10/2008|12:56] C:\Program Files\Gimp-2.0
[16/02/2009|11:48] C:\Program Files\Google
[10/06/2008|13:45] C:\Program Files\HiJackThis
[10/06/2008|15:37] C:\Program Files\inKline Global
[02/08/2009|19:02] C:\Program Files\InstallShield Installation Information
[10/06/2008|14:23] C:\Program Files\Internet Explorer
[10/06/2008|13:55] C:\Program Files\IrfanView
[10/06/2008|13:56] C:\Program Files\Java
[10/06/2008|14:23] C:\Program Files\Learn2.com
[10/06/2008|15:23] C:\Program Files\Lexmark 1200 Series
[22/07/2009|09:36] C:\Program Files\Manager Road Skip
[02/08/2009|18:34] C:\Program Files\MarkAny
[21/07/2009|18:08] C:\Program Files\Messenger Plus! Live
[19/06/2008|13:51] C:\Program Files\Micro Application
[19/04/2009|14:18] C:\Program Files\Microsoft
[10/06/2008|15:54] C:\Program Files\Microsoft Office
[19/04/2009|14:18] C:\Program Files\Microsoft Silverlight
[19/04/2009|14:16] C:\Program Files\Microsoft SQL Server Compact Edition
[10/06/2008|15:54] C:\Program Files\Microsoft Visual Studio
[10/06/2008|15:51] C:\Program Files\Microsoft Visual Studio 8
[10/06/2008|15:55] C:\Program Files\Microsoft Works
[10/06/2008|15:53] C:\Program Files\Microsoft.NET
[10/06/2008|15:55] C:\Program Files\MSBuild
[06/08/2009|14:32] C:\Program Files\Navilog1
[10/06/2008|14:02] C:\Program Files\Notepad++
[10/06/2008|15:12] C:\Program Files\OO Software
[10/06/2008|13:48] C:\Program Files\Outlook Express
[10/06/2008|13:45] C:\Program Files\Paint.NET
[02/08/2009|18:40] C:\Program Files\PC Connectivity Solution
[06/08/2009|14:44] C:\Program Files\PC Tools AntiVirus
[04/07/2008|15:02] C:\Program Files\PhotoFiltre
[07/09/2008|12:18] C:\Program Files\Picasa2
[10/06/2008|14:23] C:\Program Files\QuickTime
[10/06/2008|14:22] C:\Program Files\Real
[02/08/2009|18:40] C:\Program Files\Samsung
[12/03/2009|18:42] C:\Program Files\SFR
[18/03/2009|17:44] C:\Program Files\Sony Ericsson
[10/06/2008|14:21] C:\Program Files\TechCity Solutions
[19/06/2009|16:07] C:\Program Files\Tetris
[10/06/2008|15:08] C:\Program Files\Trust
[10/06/2008|13:53] C:\Program Files\Uninstall Information
[10/06/2008|13:46] C:\Program Files\Unlocker
[10/06/2008|15:32] C:\Program Files\VIA
[10/06/2008|14:23] C:\Program Files\Viewpoint
[12/07/2008|10:59] C:\Program Files\VirginMega
[10/06/2008|13:55] C:\Program Files\VistaDriveStatus
[19/04/2009|14:18] C:\Program Files\Windows Live
[19/04/2009|14:14] C:\Program Files\Windows Live SkyDrive
[10/06/2008|13:49] C:\Program Files\Windows Media Player
[10/06/2008|13:46] C:\Program Files\Windows Trust
[10/06/2008|13:55] C:\Program Files\WinRAR
[10/06/2008|13:54] C:\Program Files\WTInstaller
[10/06/2008|14:02] C:\Program Files\Your Uninstaller 2008
[26/10/2008|15:18] C:\Program Files\Zylom Games
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[17/06/2008|19:24] C:\Program Files\Fichiers communs\Adobe
[12/11/2008|21:22] C:\Program Files\Fichiers communs\AOL
[10/06/2008|14:24] C:\Program Files\Fichiers communs\aolback
[12/11/2008|21:22] C:\Program Files\Fichiers communs\aolshare
[10/06/2008|15:10] C:\Program Files\Fichiers communs\ArcSoft
[10/06/2008|15:54] C:\Program Files\Fichiers communs\DESIGNER
[10/06/2008|15:32] C:\Program Files\Fichiers communs\InstallShield
[10/06/2008|13:56] C:\Program Files\Fichiers communs\Java
[19/04/2009|14:14] C:\Program Files\Fichiers communs\Microsoft Shared
[10/06/2008|13:48] C:\Program Files\Fichiers communs\MSSoap
[10/06/2008|14:23] C:\Program Files\Fichiers communs\Nullsoft
[10/06/2008|15:33] C:\Program Files\Fichiers communs\ODBC
[10/06/2008|14:18] C:\Program Files\Fichiers communs\PC Tools
[10/06/2008|14:23] C:\Program Files\Fichiers communs\Real
[18/10/2008|12:08] C:\Program Files\Fichiers communs\Scanner
[10/06/2008|13:48] C:\Program Files\Fichiers communs\Services
[12/06/2008|11:39] C:\Program Files\Fichiers communs\Sony Ericsson Shared
[10/06/2008|13:48] C:\Program Files\Fichiers communs\System
[12/06/2008|11:41] C:\Program Files\Fichiers communs\Teleca Shared
[19/04/2009|14:06] C:\Program Files\Fichiers communs\Windows Live
--------------------\\ Process
( 43 Processes )
iexplore.exe ~ [PID:1968]
iexplore.exe ~ [PID:176]
--------------------\\ Recherche avec S_Lop
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\bis2A4.exe
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cool Eggs The Locks
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cool Eggs The Locks\inter mapi.dat
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cool Eggs The Locks\inter mapi.exe
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\msgpl_5c0b.tmp
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\sta8.exe
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@advertstream[1].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@www.adserver5[1].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@adultfriendfinder[2].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@advertising[1].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@bigpoint[2].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@fr.darkorbit.bigpoint[2].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@fr.seafight.bigpoint[1].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@banner.casinoking[2].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@banner.cotedazurpalace[2].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@cotedazurpalace[1].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@serve.cotedazurpalace[1].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@www.cotedazurpalace[1].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@euroclick[1].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@sr2.livemediasrv[1].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@fr.seafight.bigpoint[1].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@32vegas[1].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@banner.32vegas[2].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@dirtyvegas-31.skyrock[2].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@serve.32vegas[2].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@www.32vegas[2].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@2xmoinscher[2].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@cc.2xmoinscher[1].txt
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@www.2xmoinscher[2].txt
--------------------\\ Verification du Registre
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"The locks settings ante"="C:\\Documents and Settings\\All Users\\Application Data\\Cool Eggs The Locks\\inter mapi.exe"
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-08-06 15:58:57
Windows 5.1.2600 Service Pack 3, v.5512 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------\\ Recherche d'autres infections
C:\DOCUME~1\ADMINI~1\LOCALS~1\APPLIC~1\saakkke.dat
C:\DOCUME~1\ADMINI~1\LOCALS~1\APPLIC~1\saakkke.exe
C:\DOCUME~1\ADMINI~1\LOCALS~1\APPLIC~1\saakkke_nav.dat
C:\DOCUME~1\ADMINI~1\LOCALS~1\APPLIC~1\saakkke_navps.dat
[b]==> EGDACCESS <==/b
[F:1272][D:34]-> C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp
[F:2255][D:0]-> C:\DOCUME~1\ADMINI~1\Cookies
[F:5066][D:30]-> C:\DOCUME~1\ADMINI~1\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 06/08/2009|16:00 - Option : [1]
--------------------\\ Fin du rapport a 16:00:24
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Relance Lop S&D
* Choisis cette fois ci l'Option 2 (Suppression)
* Ne ferme pas la fenêtre lors de la suppression !
* Poste le rapport généré (C:\lopR.txt)
* Choisis cette fois ci l'Option 2 (Suppression)
* Ne ferme pas la fenêtre lors de la suppression !
* Poste le rapport généré (C:\lopR.txt)
--------------------\\ Lop S&D 4.2.5-0 XP/Vista
Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3, v.5512
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) XP 2000+ )
BIOS : v1.0 ~
USER : Administrateur ( Administrator )
BOOT : Normal boot
C:\ (Local Disk) - NTFS - Total:63 Go (Free:52 Go)
D:\ (Local Disk) - NTFS - Total:10 Go (Free:10 Go)
E:\ (CD or DVD)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [2] ( 06/08/2009|16:17 )
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cool Eggs The Locks\inter mapi.dat
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cool Eggs The Locks\inter mapi.exe
Supprime! - C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\msgpl_5c0b.tmp
Supprime! - C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\sta8.exe
Supprime! - C:\DOCUME~1\ADMINI~1\Cookies\administrateur@advertstream[1].txt
Supprime! - C:\DOCUME~1\ADMINI~1\Cookies\administrateur@www.adserver5[1].txt
Supprime! - C:\DOCUME~1\ADMINI~1\Cookies\administrateur@adultfriendfinder[2].txt
Supprime! - C:\DOCUME~1\ADMINI~1\Cookies\administrateur@bigpoint[2].txt
Supprime! - C:\DOCUME~1\ADMINI~1\Cookies\administrateur@fr.darkorbit.bigpoint[2].txt
Supprime! - C:\DOCUME~1\ADMINI~1\Cookies\administrateur@fr.seafight.bigpoint[1].txt
Supprime! - C:\DOCUME~1\ADMINI~1\Cookies\administrateur@banner.casinoking[2].txt
Supprime! - C:\DOCUME~1\ADMINI~1\Cookies\administrateur@banner.cotedazurpalace[2].txt
Supprime! - C:\DOCUME~1\ADMINI~1\Cookies\administrateur@cotedazurpalace[1].txt
Supprime! - C:\DOCUME~1\ADMINI~1\Cookies\administrateur@serve.cotedazurpalace[1].txt
Supprime! - C:\DOCUME~1\ADMINI~1\Cookies\administrateur@www.cotedazurpalace[1].txt
Supprime! - C:\DOCUME~1\ADMINI~1\Cookies\administrateur@euroclick[1].txt
Supprime! - C:\DOCUME~1\ADMINI~1\Cookies\administrateur@sr2.livemediasrv[1].txt
Supprime! - C:\DOCUME~1\ADMINI~1\Cookies\administrateur@32vegas[1].txt
Supprime! - C:\DOCUME~1\ADMINI~1\Cookies\administrateur@banner.32vegas[2].txt
Supprime! - C:\DOCUME~1\ADMINI~1\Cookies\administrateur@dirtyvegas-31.skyrock[2].txt
Supprime! - C:\DOCUME~1\ADMINI~1\Cookies\administrateur@serve.32vegas[2].txt
Supprime! - C:\DOCUME~1\ADMINI~1\Cookies\administrateur@www.32vegas[2].txt
Supprime! - C:\DOCUME~1\ADMINI~1\Cookies\administrateur@2xmoinscher[2].txt
Supprime! - C:\DOCUME~1\ADMINI~1\Cookies\administrateur@cc.2xmoinscher[1].txt
Supprime! - C:\DOCUME~1\ADMINI~1\Cookies\administrateur@www.2xmoinscher[2].txt
Supprime! - C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\bis2A4.exe
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cool Eggs The Locks
-
[ Fichier Hosts ] .. Restaure!
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
Supprime! - C:\Program Files\Viewpoint
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Viewpoint
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing des dossiers dans APPLIC~1
[17/06/2008|19:24] C:\DOCUME~1\ADMINI~1\APPLIC~1\Adobe
[24/06/2008|22:37] C:\DOCUME~1\ADMINI~1\APPLIC~1\AdobeUM
[10/06/2008|14:24] C:\DOCUME~1\ADMINI~1\APPLIC~1\AOL
[12/06/2008|14:02] C:\DOCUME~1\ADMINI~1\APPLIC~1\Google
[06/08/2009|13:59] C:\DOCUME~1\ADMINI~1\APPLIC~1\HouseCall 6.6
[11/06/2008|14:08] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[10/06/2008|14:27] C:\DOCUME~1\ADMINI~1\APPLIC~1\Macromedia
[22/07/2009|09:37] C:\DOCUME~1\ADMINI~1\APPLIC~1\Manager Road Skip
[04/04/2009|23:56] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[10/06/2008|14:02] C:\DOCUME~1\ADMINI~1\APPLIC~1\Notepad++
[02/08/2009|18:42] C:\DOCUME~1\ADMINI~1\APPLIC~1\PC Suite
[10/06/2008|14:18] C:\DOCUME~1\ADMINI~1\APPLIC~1\PC Tools
[02/08/2009|18:36] C:\DOCUME~1\ADMINI~1\APPLIC~1\Samsung
[12/06/2008|11:39] C:\DOCUME~1\ADMINI~1\APPLIC~1\Sony Ericsson
[10/06/2008|13:55] C:\DOCUME~1\ADMINI~1\APPLIC~1\Sun
[12/06/2008|11:55] C:\DOCUME~1\ADMINI~1\APPLIC~1\Teleca
[10/06/2008|14:01] C:\DOCUME~1\ADMINI~1\APPLIC~1\URSoft
[10/06/2008|13:55] C:\DOCUME~1\ADMINI~1\APPLIC~1\WinRAR
[10/06/2008|14:23] C:\DOCUME~1\ADMINI~1\APPLIC~1\You've Got Pictures Screensaver
[11/06/2008|14:08] C:\DOCUME~1\ADMINI~1\APPLIC~1\Zylom
[13/06/2008|11:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[12/11/2008|20:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL
[17/06/2008|15:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL Downloads
[06/10/2008|16:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL OCP
[10/06/2008|15:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BVRP Software
[12/07/2008|10:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Downloaded Installations
[16/02/2009|11:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[12/08/2008|19:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[09/10/2008|20:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MGS
[09/10/2008|20:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microgaming
[02/08/2009|19:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[24/12/2008|14:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Help
[02/08/2009|18:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PC Suite
[10/06/2008|14:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PC Tools
[10/06/2008|15:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[12/06/2008|11:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony Ericsson
[12/06/2008|11:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Teleca
[22/07/2009|09:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[11/06/2008|14:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom
[10/06/2008|13:49] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[10/06/2008|13:49] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[10/06/2008|13:49] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[10/06/2008 13:57][--ah-----] C:\WINDOWS\tasks\SA.DAT
[14/04/2008 12:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ Listing des dossiers dans C:\Program Files
[10/06/2008|15:26] C:\Program Files\ABBYY FineReader 5.0 Sprint
[10/06/2008|15:26] C:\Program Files\ABBYY FineReader 6.0
[17/06/2008|21:12] C:\Program Files\Active GIF Creator 3.1
[13/06/2008|11:42] C:\Program Files\Adobe
[17/06/2008|15:28] C:\Program Files\AOL
[16/11/2008|23:14] C:\Program Files\AOL 9.0
[10/06/2008|14:27] C:\Program Files\AOL Compagnon
[10/06/2008|15:10] C:\Program Files\ArcSoft
[19/05/2009|17:44] C:\Program Files\Ask Search Assistant
[11/08/2008|10:51] C:\Program Files\CCleaner
[21/07/2009|18:08] C:\Program Files\Circle Develoement
[10/06/2008|13:47] C:\Program Files\ComPlus Applications
[10/06/2008|14:45] C:\Program Files\Creative
[02/08/2009|18:40] C:\Program Files\DIFX
[10/06/2008|15:25] C:\Program Files\FaxTools
[19/04/2009|14:06] C:\Program Files\Fichiers communs
[17/10/2008|12:56] C:\Program Files\Gimp-2.0
[16/02/2009|11:48] C:\Program Files\Google
[10/06/2008|13:45] C:\Program Files\HiJackThis
[10/06/2008|15:37] C:\Program Files\inKline Global
[02/08/2009|19:02] C:\Program Files\InstallShield Installation Information
[10/06/2008|14:23] C:\Program Files\Internet Explorer
[10/06/2008|13:55] C:\Program Files\IrfanView
[10/06/2008|13:56] C:\Program Files\Java
[10/06/2008|14:23] C:\Program Files\Learn2.com
[10/06/2008|15:23] C:\Program Files\Lexmark 1200 Series
[22/07/2009|09:36] C:\Program Files\Manager Road Skip
[02/08/2009|18:34] C:\Program Files\MarkAny
[21/07/2009|18:08] C:\Program Files\Messenger Plus! Live
[19/06/2008|13:51] C:\Program Files\Micro Application
[19/04/2009|14:18] C:\Program Files\Microsoft
[10/06/2008|15:54] C:\Program Files\Microsoft Office
[19/04/2009|14:18] C:\Program Files\Microsoft Silverlight
[19/04/2009|14:16] C:\Program Files\Microsoft SQL Server Compact Edition
[10/06/2008|15:54] C:\Program Files\Microsoft Visual Studio
[10/06/2008|15:51] C:\Program Files\Microsoft Visual Studio 8
[10/06/2008|15:55] C:\Program Files\Microsoft Works
[10/06/2008|15:53] C:\Program Files\Microsoft.NET
[10/06/2008|15:55] C:\Program Files\MSBuild
[06/08/2009|14:32] C:\Program Files\Navilog1
[10/06/2008|14:02] C:\Program Files\Notepad++
[10/06/2008|15:12] C:\Program Files\OO Software
[10/06/2008|13:48] C:\Program Files\Outlook Express
[10/06/2008|13:45] C:\Program Files\Paint.NET
[02/08/2009|18:40] C:\Program Files\PC Connectivity Solution
[06/08/2009|14:44] C:\Program Files\PC Tools AntiVirus
[04/07/2008|15:02] C:\Program Files\PhotoFiltre
[07/09/2008|12:18] C:\Program Files\Picasa2
[10/06/2008|14:23] C:\Program Files\QuickTime
[10/06/2008|14:22] C:\Program Files\Real
[02/08/2009|18:40] C:\Program Files\Samsung
[12/03/2009|18:42] C:\Program Files\SFR
[18/03/2009|17:44] C:\Program Files\Sony Ericsson
[10/06/2008|14:21] C:\Program Files\TechCity Solutions
[19/06/2009|16:07] C:\Program Files\Tetris
[10/06/2008|15:08] C:\Program Files\Trust
[10/06/2008|13:53] C:\Program Files\Uninstall Information
[10/06/2008|13:46] C:\Program Files\Unlocker
[10/06/2008|15:32] C:\Program Files\VIA
[12/07/2008|10:59] C:\Program Files\VirginMega
[10/06/2008|13:55] C:\Program Files\VistaDriveStatus
[19/04/2009|14:18] C:\Program Files\Windows Live
[19/04/2009|14:14] C:\Program Files\Windows Live SkyDrive
[10/06/2008|13:49] C:\Program Files\Windows Media Player
[10/06/2008|13:46] C:\Program Files\Windows Trust
[10/06/2008|13:55] C:\Program Files\WinRAR
[10/06/2008|13:54] C:\Program Files\WTInstaller
[10/06/2008|14:02] C:\Program Files\Your Uninstaller 2008
[26/10/2008|15:18] C:\Program Files\Zylom Games
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[17/06/2008|19:24] C:\Program Files\Fichiers communs\Adobe
[12/11/2008|21:22] C:\Program Files\Fichiers communs\AOL
[10/06/2008|14:24] C:\Program Files\Fichiers communs\aolback
[12/11/2008|21:22] C:\Program Files\Fichiers communs\aolshare
[10/06/2008|15:10] C:\Program Files\Fichiers communs\ArcSoft
[10/06/2008|15:54] C:\Program Files\Fichiers communs\DESIGNER
[10/06/2008|15:32] C:\Program Files\Fichiers communs\InstallShield
[10/06/2008|13:56] C:\Program Files\Fichiers communs\Java
[19/04/2009|14:14] C:\Program Files\Fichiers communs\Microsoft Shared
[10/06/2008|13:48] C:\Program Files\Fichiers communs\MSSoap
[10/06/2008|14:23] C:\Program Files\Fichiers communs\Nullsoft
[10/06/2008|15:33] C:\Program Files\Fichiers communs\ODBC
[10/06/2008|14:18] C:\Program Files\Fichiers communs\PC Tools
[10/06/2008|14:23] C:\Program Files\Fichiers communs\Real
[18/10/2008|12:08] C:\Program Files\Fichiers communs\Scanner
[10/06/2008|13:48] C:\Program Files\Fichiers communs\Services
[12/06/2008|11:39] C:\Program Files\Fichiers communs\Sony Ericsson Shared
[10/06/2008|13:48] C:\Program Files\Fichiers communs\System
[12/06/2008|11:41] C:\Program Files\Fichiers communs\Teleca Shared
[19/04/2009|14:06] C:\Program Files\Fichiers communs\Windows Live
--------------------\\ Process
( 40 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@advertising[2].txt
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-08-06 16:18:25
Windows 5.1.2600 Service Pack 3, v.5512 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------\\ Recherche d'autres infections
C:\DOCUME~1\ADMINI~1\LOCALS~1\APPLIC~1\saakkke.dat
C:\DOCUME~1\ADMINI~1\LOCALS~1\APPLIC~1\saakkke.exe
C:\DOCUME~1\ADMINI~1\LOCALS~1\APPLIC~1\saakkke_nav.dat
C:\DOCUME~1\ADMINI~1\LOCALS~1\APPLIC~1\saakkke_navps.dat
[b]==> EGDACCESS <==/b
[F:1269][D:34]-> C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp
[F:2234][D:0]-> C:\DOCUME~1\ADMINI~1\Cookies
[F:5169][D:30]-> C:\DOCUME~1\ADMINI~1\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 06/08/2009|16:00 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 06/08/2009|16:19 - Option : [2]
--------------------\\ Fin du rapport a 16:19:32
Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3, v.5512
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) XP 2000+ )
BIOS : v1.0 ~
USER : Administrateur ( Administrator )
BOOT : Normal boot
C:\ (Local Disk) - NTFS - Total:63 Go (Free:52 Go)
D:\ (Local Disk) - NTFS - Total:10 Go (Free:10 Go)
E:\ (CD or DVD)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [2] ( 06/08/2009|16:17 )
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cool Eggs The Locks\inter mapi.dat
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cool Eggs The Locks\inter mapi.exe
Supprime! - C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\msgpl_5c0b.tmp
Supprime! - C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\sta8.exe
Supprime! - C:\DOCUME~1\ADMINI~1\Cookies\administrateur@advertstream[1].txt
Supprime! - C:\DOCUME~1\ADMINI~1\Cookies\administrateur@www.adserver5[1].txt
Supprime! - C:\DOCUME~1\ADMINI~1\Cookies\administrateur@adultfriendfinder[2].txt
Supprime! - C:\DOCUME~1\ADMINI~1\Cookies\administrateur@bigpoint[2].txt
Supprime! - C:\DOCUME~1\ADMINI~1\Cookies\administrateur@fr.darkorbit.bigpoint[2].txt
Supprime! - C:\DOCUME~1\ADMINI~1\Cookies\administrateur@fr.seafight.bigpoint[1].txt
Supprime! - C:\DOCUME~1\ADMINI~1\Cookies\administrateur@banner.casinoking[2].txt
Supprime! - C:\DOCUME~1\ADMINI~1\Cookies\administrateur@banner.cotedazurpalace[2].txt
Supprime! - C:\DOCUME~1\ADMINI~1\Cookies\administrateur@cotedazurpalace[1].txt
Supprime! - C:\DOCUME~1\ADMINI~1\Cookies\administrateur@serve.cotedazurpalace[1].txt
Supprime! - C:\DOCUME~1\ADMINI~1\Cookies\administrateur@www.cotedazurpalace[1].txt
Supprime! - C:\DOCUME~1\ADMINI~1\Cookies\administrateur@euroclick[1].txt
Supprime! - C:\DOCUME~1\ADMINI~1\Cookies\administrateur@sr2.livemediasrv[1].txt
Supprime! - C:\DOCUME~1\ADMINI~1\Cookies\administrateur@32vegas[1].txt
Supprime! - C:\DOCUME~1\ADMINI~1\Cookies\administrateur@banner.32vegas[2].txt
Supprime! - C:\DOCUME~1\ADMINI~1\Cookies\administrateur@dirtyvegas-31.skyrock[2].txt
Supprime! - C:\DOCUME~1\ADMINI~1\Cookies\administrateur@serve.32vegas[2].txt
Supprime! - C:\DOCUME~1\ADMINI~1\Cookies\administrateur@www.32vegas[2].txt
Supprime! - C:\DOCUME~1\ADMINI~1\Cookies\administrateur@2xmoinscher[2].txt
Supprime! - C:\DOCUME~1\ADMINI~1\Cookies\administrateur@cc.2xmoinscher[1].txt
Supprime! - C:\DOCUME~1\ADMINI~1\Cookies\administrateur@www.2xmoinscher[2].txt
Supprime! - C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\bis2A4.exe
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cool Eggs The Locks
-
[ Fichier Hosts ] .. Restaure!
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
Supprime! - C:\Program Files\Viewpoint
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Viewpoint
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing des dossiers dans APPLIC~1
[17/06/2008|19:24] C:\DOCUME~1\ADMINI~1\APPLIC~1\Adobe
[24/06/2008|22:37] C:\DOCUME~1\ADMINI~1\APPLIC~1\AdobeUM
[10/06/2008|14:24] C:\DOCUME~1\ADMINI~1\APPLIC~1\AOL
[12/06/2008|14:02] C:\DOCUME~1\ADMINI~1\APPLIC~1\Google
[06/08/2009|13:59] C:\DOCUME~1\ADMINI~1\APPLIC~1\HouseCall 6.6
[11/06/2008|14:08] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[10/06/2008|14:27] C:\DOCUME~1\ADMINI~1\APPLIC~1\Macromedia
[22/07/2009|09:37] C:\DOCUME~1\ADMINI~1\APPLIC~1\Manager Road Skip
[04/04/2009|23:56] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[10/06/2008|14:02] C:\DOCUME~1\ADMINI~1\APPLIC~1\Notepad++
[02/08/2009|18:42] C:\DOCUME~1\ADMINI~1\APPLIC~1\PC Suite
[10/06/2008|14:18] C:\DOCUME~1\ADMINI~1\APPLIC~1\PC Tools
[02/08/2009|18:36] C:\DOCUME~1\ADMINI~1\APPLIC~1\Samsung
[12/06/2008|11:39] C:\DOCUME~1\ADMINI~1\APPLIC~1\Sony Ericsson
[10/06/2008|13:55] C:\DOCUME~1\ADMINI~1\APPLIC~1\Sun
[12/06/2008|11:55] C:\DOCUME~1\ADMINI~1\APPLIC~1\Teleca
[10/06/2008|14:01] C:\DOCUME~1\ADMINI~1\APPLIC~1\URSoft
[10/06/2008|13:55] C:\DOCUME~1\ADMINI~1\APPLIC~1\WinRAR
[10/06/2008|14:23] C:\DOCUME~1\ADMINI~1\APPLIC~1\You've Got Pictures Screensaver
[11/06/2008|14:08] C:\DOCUME~1\ADMINI~1\APPLIC~1\Zylom
[13/06/2008|11:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[12/11/2008|20:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL
[17/06/2008|15:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL Downloads
[06/10/2008|16:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL OCP
[10/06/2008|15:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BVRP Software
[12/07/2008|10:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Downloaded Installations
[16/02/2009|11:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[12/08/2008|19:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[09/10/2008|20:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MGS
[09/10/2008|20:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microgaming
[02/08/2009|19:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[24/12/2008|14:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Help
[02/08/2009|18:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PC Suite
[10/06/2008|14:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PC Tools
[10/06/2008|15:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[12/06/2008|11:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony Ericsson
[12/06/2008|11:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Teleca
[22/07/2009|09:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[11/06/2008|14:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom
[10/06/2008|13:49] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[10/06/2008|13:49] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[10/06/2008|13:49] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[10/06/2008 13:57][--ah-----] C:\WINDOWS\tasks\SA.DAT
[14/04/2008 12:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ Listing des dossiers dans C:\Program Files
[10/06/2008|15:26] C:\Program Files\ABBYY FineReader 5.0 Sprint
[10/06/2008|15:26] C:\Program Files\ABBYY FineReader 6.0
[17/06/2008|21:12] C:\Program Files\Active GIF Creator 3.1
[13/06/2008|11:42] C:\Program Files\Adobe
[17/06/2008|15:28] C:\Program Files\AOL
[16/11/2008|23:14] C:\Program Files\AOL 9.0
[10/06/2008|14:27] C:\Program Files\AOL Compagnon
[10/06/2008|15:10] C:\Program Files\ArcSoft
[19/05/2009|17:44] C:\Program Files\Ask Search Assistant
[11/08/2008|10:51] C:\Program Files\CCleaner
[21/07/2009|18:08] C:\Program Files\Circle Develoement
[10/06/2008|13:47] C:\Program Files\ComPlus Applications
[10/06/2008|14:45] C:\Program Files\Creative
[02/08/2009|18:40] C:\Program Files\DIFX
[10/06/2008|15:25] C:\Program Files\FaxTools
[19/04/2009|14:06] C:\Program Files\Fichiers communs
[17/10/2008|12:56] C:\Program Files\Gimp-2.0
[16/02/2009|11:48] C:\Program Files\Google
[10/06/2008|13:45] C:\Program Files\HiJackThis
[10/06/2008|15:37] C:\Program Files\inKline Global
[02/08/2009|19:02] C:\Program Files\InstallShield Installation Information
[10/06/2008|14:23] C:\Program Files\Internet Explorer
[10/06/2008|13:55] C:\Program Files\IrfanView
[10/06/2008|13:56] C:\Program Files\Java
[10/06/2008|14:23] C:\Program Files\Learn2.com
[10/06/2008|15:23] C:\Program Files\Lexmark 1200 Series
[22/07/2009|09:36] C:\Program Files\Manager Road Skip
[02/08/2009|18:34] C:\Program Files\MarkAny
[21/07/2009|18:08] C:\Program Files\Messenger Plus! Live
[19/06/2008|13:51] C:\Program Files\Micro Application
[19/04/2009|14:18] C:\Program Files\Microsoft
[10/06/2008|15:54] C:\Program Files\Microsoft Office
[19/04/2009|14:18] C:\Program Files\Microsoft Silverlight
[19/04/2009|14:16] C:\Program Files\Microsoft SQL Server Compact Edition
[10/06/2008|15:54] C:\Program Files\Microsoft Visual Studio
[10/06/2008|15:51] C:\Program Files\Microsoft Visual Studio 8
[10/06/2008|15:55] C:\Program Files\Microsoft Works
[10/06/2008|15:53] C:\Program Files\Microsoft.NET
[10/06/2008|15:55] C:\Program Files\MSBuild
[06/08/2009|14:32] C:\Program Files\Navilog1
[10/06/2008|14:02] C:\Program Files\Notepad++
[10/06/2008|15:12] C:\Program Files\OO Software
[10/06/2008|13:48] C:\Program Files\Outlook Express
[10/06/2008|13:45] C:\Program Files\Paint.NET
[02/08/2009|18:40] C:\Program Files\PC Connectivity Solution
[06/08/2009|14:44] C:\Program Files\PC Tools AntiVirus
[04/07/2008|15:02] C:\Program Files\PhotoFiltre
[07/09/2008|12:18] C:\Program Files\Picasa2
[10/06/2008|14:23] C:\Program Files\QuickTime
[10/06/2008|14:22] C:\Program Files\Real
[02/08/2009|18:40] C:\Program Files\Samsung
[12/03/2009|18:42] C:\Program Files\SFR
[18/03/2009|17:44] C:\Program Files\Sony Ericsson
[10/06/2008|14:21] C:\Program Files\TechCity Solutions
[19/06/2009|16:07] C:\Program Files\Tetris
[10/06/2008|15:08] C:\Program Files\Trust
[10/06/2008|13:53] C:\Program Files\Uninstall Information
[10/06/2008|13:46] C:\Program Files\Unlocker
[10/06/2008|15:32] C:\Program Files\VIA
[12/07/2008|10:59] C:\Program Files\VirginMega
[10/06/2008|13:55] C:\Program Files\VistaDriveStatus
[19/04/2009|14:18] C:\Program Files\Windows Live
[19/04/2009|14:14] C:\Program Files\Windows Live SkyDrive
[10/06/2008|13:49] C:\Program Files\Windows Media Player
[10/06/2008|13:46] C:\Program Files\Windows Trust
[10/06/2008|13:55] C:\Program Files\WinRAR
[10/06/2008|13:54] C:\Program Files\WTInstaller
[10/06/2008|14:02] C:\Program Files\Your Uninstaller 2008
[26/10/2008|15:18] C:\Program Files\Zylom Games
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[17/06/2008|19:24] C:\Program Files\Fichiers communs\Adobe
[12/11/2008|21:22] C:\Program Files\Fichiers communs\AOL
[10/06/2008|14:24] C:\Program Files\Fichiers communs\aolback
[12/11/2008|21:22] C:\Program Files\Fichiers communs\aolshare
[10/06/2008|15:10] C:\Program Files\Fichiers communs\ArcSoft
[10/06/2008|15:54] C:\Program Files\Fichiers communs\DESIGNER
[10/06/2008|15:32] C:\Program Files\Fichiers communs\InstallShield
[10/06/2008|13:56] C:\Program Files\Fichiers communs\Java
[19/04/2009|14:14] C:\Program Files\Fichiers communs\Microsoft Shared
[10/06/2008|13:48] C:\Program Files\Fichiers communs\MSSoap
[10/06/2008|14:23] C:\Program Files\Fichiers communs\Nullsoft
[10/06/2008|15:33] C:\Program Files\Fichiers communs\ODBC
[10/06/2008|14:18] C:\Program Files\Fichiers communs\PC Tools
[10/06/2008|14:23] C:\Program Files\Fichiers communs\Real
[18/10/2008|12:08] C:\Program Files\Fichiers communs\Scanner
[10/06/2008|13:48] C:\Program Files\Fichiers communs\Services
[12/06/2008|11:39] C:\Program Files\Fichiers communs\Sony Ericsson Shared
[10/06/2008|13:48] C:\Program Files\Fichiers communs\System
[12/06/2008|11:41] C:\Program Files\Fichiers communs\Teleca Shared
[19/04/2009|14:06] C:\Program Files\Fichiers communs\Windows Live
--------------------\\ Process
( 40 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\DOCUME~1\ADMINI~1\Cookies\administrateur@advertising[2].txt
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-08-06 16:18:25
Windows 5.1.2600 Service Pack 3, v.5512 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------\\ Recherche d'autres infections
C:\DOCUME~1\ADMINI~1\LOCALS~1\APPLIC~1\saakkke.dat
C:\DOCUME~1\ADMINI~1\LOCALS~1\APPLIC~1\saakkke.exe
C:\DOCUME~1\ADMINI~1\LOCALS~1\APPLIC~1\saakkke_nav.dat
C:\DOCUME~1\ADMINI~1\LOCALS~1\APPLIC~1\saakkke_navps.dat
[b]==> EGDACCESS <==/b
[F:1269][D:34]-> C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp
[F:2234][D:0]-> C:\DOCUME~1\ADMINI~1\Cookies
[F:5169][D:30]-> C:\DOCUME~1\ADMINI~1\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 06/08/2009|16:00 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 06/08/2009|16:19 - Option : [2]
--------------------\\ Fin du rapport a 16:19:32
Bien.
Il va falloir essayer de refaire navilog....
Ferme toutes tes applications en cours, désactive ton antivirus et antispywares résident, déconnecte-toi d'internet et relance-le.
Il va falloir essayer de refaire navilog....
Ferme toutes tes applications en cours, désactive ton antivirus et antispywares résident, déconnecte-toi d'internet et relance-le.
Fais un nouvel Hijackthis stp.
On va faire une suppression manuelle.
On va faire une suppression manuelle.
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:35:33, on 26/08/2009
Platform: Windows XP SP3, v.5512 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.20772)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\WINDOWS\system32\FsUsbExService.Exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\oodag.exe
C:\Program Files\PC Tools AntiVirus\PCTAVSvc.exe
C:\PROGRA~1\TECHCI~1\AOLSAV\AOLAgent.exe
C:\WINDOWS\vsnpstd2.exe
C:\Program Files\Lexmark 1200 Series\lxczbmgr.exe
C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
C:\Program Files\Lexmark 1200 Series\lxczbmon.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\Program Files\Fichiers communs\AOL\1213278487\ee\aolsoftware.exe
C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
C:\documents and settings\administrateur\local settings\application data\wxxaiqss.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\AOL 9.0\aoltray.exe
C:\Program Files\AOL Compagnon\companion.exe
c:\program files\fichiers communs\aol\1213278487\ee\services\antiSpywareApp\ver2_0_28_1\AOLSP Scheduler.exe
c:\program files\fichiers communs\aol\1213278487\ee\aolsoftware.exe
C:\Program Files\Fichiers communs\Teleca Shared\Generic.exe
C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
C:\Program Files\AOL 9.0\waol.exe
C:\Program Files\AOL 9.0\shellmon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Fichiers communs\Aol\aoltpspd.exe
C:\Documents and Settings\Administrateur\Mes documents\HiJackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?cc=fr&toHttps=1&redig=D4322FEE7CF74A348CB9CE970F098EF5
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,First Home Page = C:\Program Files\AOL Toolbar\welcome.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Favoris
R3 - URLSearchHook: AOLTBSearch Class - {EA756889-2338-43DB-8F07-D1CA6FB9C90D} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O2 - BHO: AOL Toolbar Launcher - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKLM\..\Run: [Vistadrv] C:\Program Files\VistaDriveStatus\vsdrv.exe
O4 - HKLM\..\Run: [AOLSAV] C:\PROGRA~1\TECHCI~1\AOLSAV\AOLAgent.exe
O4 - HKLM\..\Run: [AOLDialer] C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SNPSTD2] C:\WINDOWS\vsnpstd2.exe
O4 - HKLM\..\Run: [OODefragTray] C:\WINDOWS\system32\oodtray.exe
O4 - HKLM\..\Run: [Lexmark 1200 Series] "C:\Program Files\Lexmark 1200 Series\lxczbmgr.exe"
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [HostManager] C:\Program Files\Fichiers communs\AOL\1213278487\ee\AOLSoftware.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [The locks settings ante] C:\Documents and Settings\All Users\Application Data\Cool Eggs The Locks\Play Audio.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [gramflap] C:\DOCUME~1\ADMINI~1\APPLIC~1\MANAGE~1\newaxis.exe
O4 - HKCU\..\Run: [AutoStartNPSAgent] C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
O4 - HKCU\..\Run: [wxxaiqss] "c:\documents and settings\administrateur\local settings\application data\wxxaiqss.exe" wxxaiqss
O4 - HKUS\S-1-5-18\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (User 'Default user')
O4 - Global Startup: AOL 9.0 Icône AOL.lnk = C:\Program Files\AOL 9.0\aoltray.exe
O4 - Global Startup: AOL Compagnon.lnk = C:\Program Files\AOL Compagnon\companion.exe
O8 - Extra context menu item: &Recherche AOL Toolbar - c:\program files\aol\aol toolbar 5.0\resources\fr-fr\local\search.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra button: AOL Toolbar - {3369AF0D-62E9-4bda-8103-B4C75499B578} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://ushousecall02.trendmicro.com/housecall/applet/html/native/x86/win32/activex/hcImpl.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{AA83A5DB-507B-460C-B5AC-16CC1648DAB8}: NameServer = 205.188.146.145
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: FsUsbExService - Teruten - C:\WINDOWS\system32\FsUsbExService.Exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
O23 - Service: PC Tools AntiVirus Engine (PCTAVSvc) - PC Tools Research Pty Ltd - C:\Program Files\PC Tools AntiVirus\PCTAVSvc.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
Scan saved at 19:35:33, on 26/08/2009
Platform: Windows XP SP3, v.5512 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.20772)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\WINDOWS\system32\FsUsbExService.Exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\oodag.exe
C:\Program Files\PC Tools AntiVirus\PCTAVSvc.exe
C:\PROGRA~1\TECHCI~1\AOLSAV\AOLAgent.exe
C:\WINDOWS\vsnpstd2.exe
C:\Program Files\Lexmark 1200 Series\lxczbmgr.exe
C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
C:\Program Files\Lexmark 1200 Series\lxczbmon.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\Program Files\Fichiers communs\AOL\1213278487\ee\aolsoftware.exe
C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
C:\documents and settings\administrateur\local settings\application data\wxxaiqss.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\AOL 9.0\aoltray.exe
C:\Program Files\AOL Compagnon\companion.exe
c:\program files\fichiers communs\aol\1213278487\ee\services\antiSpywareApp\ver2_0_28_1\AOLSP Scheduler.exe
c:\program files\fichiers communs\aol\1213278487\ee\aolsoftware.exe
C:\Program Files\Fichiers communs\Teleca Shared\Generic.exe
C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
C:\Program Files\AOL 9.0\waol.exe
C:\Program Files\AOL 9.0\shellmon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Fichiers communs\Aol\aoltpspd.exe
C:\Documents and Settings\Administrateur\Mes documents\HiJackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?cc=fr&toHttps=1&redig=D4322FEE7CF74A348CB9CE970F098EF5
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,First Home Page = C:\Program Files\AOL Toolbar\welcome.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Favoris
R3 - URLSearchHook: AOLTBSearch Class - {EA756889-2338-43DB-8F07-D1CA6FB9C90D} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O2 - BHO: AOL Toolbar Launcher - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKLM\..\Run: [Vistadrv] C:\Program Files\VistaDriveStatus\vsdrv.exe
O4 - HKLM\..\Run: [AOLSAV] C:\PROGRA~1\TECHCI~1\AOLSAV\AOLAgent.exe
O4 - HKLM\..\Run: [AOLDialer] C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SNPSTD2] C:\WINDOWS\vsnpstd2.exe
O4 - HKLM\..\Run: [OODefragTray] C:\WINDOWS\system32\oodtray.exe
O4 - HKLM\..\Run: [Lexmark 1200 Series] "C:\Program Files\Lexmark 1200 Series\lxczbmgr.exe"
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [HostManager] C:\Program Files\Fichiers communs\AOL\1213278487\ee\AOLSoftware.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [The locks settings ante] C:\Documents and Settings\All Users\Application Data\Cool Eggs The Locks\Play Audio.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [gramflap] C:\DOCUME~1\ADMINI~1\APPLIC~1\MANAGE~1\newaxis.exe
O4 - HKCU\..\Run: [AutoStartNPSAgent] C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
O4 - HKCU\..\Run: [wxxaiqss] "c:\documents and settings\administrateur\local settings\application data\wxxaiqss.exe" wxxaiqss
O4 - HKUS\S-1-5-18\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (User 'Default user')
O4 - Global Startup: AOL 9.0 Icône AOL.lnk = C:\Program Files\AOL 9.0\aoltray.exe
O4 - Global Startup: AOL Compagnon.lnk = C:\Program Files\AOL Compagnon\companion.exe
O8 - Extra context menu item: &Recherche AOL Toolbar - c:\program files\aol\aol toolbar 5.0\resources\fr-fr\local\search.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra button: AOL Toolbar - {3369AF0D-62E9-4bda-8103-B4C75499B578} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://ushousecall02.trendmicro.com/housecall/applet/html/native/x86/win32/activex/hcImpl.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{AA83A5DB-507B-460C-B5AC-16CC1648DAB8}: NameServer = 205.188.146.145
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: FsUsbExService - Teruten - C:\WINDOWS\system32\FsUsbExService.Exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
O23 - Service: PC Tools AntiVirus Engine (PCTAVSvc) - PC Tools Research Pty Ltd - C:\Program Files\PC Tools AntiVirus\PCTAVSvc.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:35:33, on 26/08/2009
Platform: Windows XP SP3, v.5512 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.20772)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\WINDOWS\system32\FsUsbExService.Exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\oodag.exe
C:\Program Files\PC Tools AntiVirus\PCTAVSvc.exe
C:\PROGRA~1\TECHCI~1\AOLSAV\AOLAgent.exe
C:\WINDOWS\vsnpstd2.exe
C:\Program Files\Lexmark 1200 Series\lxczbmgr.exe
C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
C:\Program Files\Lexmark 1200 Series\lxczbmon.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\Program Files\Fichiers communs\AOL\1213278487\ee\aolsoftware.exe
C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
C:\documents and settings\administrateur\local settings\application data\wxxaiqss.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\AOL 9.0\aoltray.exe
C:\Program Files\AOL Compagnon\companion.exe
c:\program files\fichiers communs\aol\1213278487\ee\services\antiSpywareApp\ver2_0_28_1\AOLSP Scheduler.exe
c:\program files\fichiers communs\aol\1213278487\ee\aolsoftware.exe
C:\Program Files\Fichiers communs\Teleca Shared\Generic.exe
C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
C:\Program Files\AOL 9.0\waol.exe
C:\Program Files\AOL 9.0\shellmon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Fichiers communs\Aol\aoltpspd.exe
C:\Documents and Settings\Administrateur\Mes documents\HiJackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?cc=fr&toHttps=1&redig=D4322FEE7CF74A348CB9CE970F098EF5
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,First Home Page = C:\Program Files\AOL Toolbar\welcome.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Favoris
R3 - URLSearchHook: AOLTBSearch Class - {EA756889-2338-43DB-8F07-D1CA6FB9C90D} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O2 - BHO: AOL Toolbar Launcher - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKLM\..\Run: [Vistadrv] C:\Program Files\VistaDriveStatus\vsdrv.exe
O4 - HKLM\..\Run: [AOLSAV] C:\PROGRA~1\TECHCI~1\AOLSAV\AOLAgent.exe
O4 - HKLM\..\Run: [AOLDialer] C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SNPSTD2] C:\WINDOWS\vsnpstd2.exe
O4 - HKLM\..\Run: [OODefragTray] C:\WINDOWS\system32\oodtray.exe
O4 - HKLM\..\Run: [Lexmark 1200 Series] "C:\Program Files\Lexmark 1200 Series\lxczbmgr.exe"
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [HostManager] C:\Program Files\Fichiers communs\AOL\1213278487\ee\AOLSoftware.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [The locks settings ante] C:\Documents and Settings\All Users\Application Data\Cool Eggs The Locks\Play Audio.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [gramflap] C:\DOCUME~1\ADMINI~1\APPLIC~1\MANAGE~1\newaxis.exe
O4 - HKCU\..\Run: [AutoStartNPSAgent] C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
O4 - HKCU\..\Run: [wxxaiqss] "c:\documents and settings\administrateur\local settings\application data\wxxaiqss.exe" wxxaiqss
O4 - HKUS\S-1-5-18\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (User 'Default user')
O4 - Global Startup: AOL 9.0 Icône AOL.lnk = C:\Program Files\AOL 9.0\aoltray.exe
O4 - Global Startup: AOL Compagnon.lnk = C:\Program Files\AOL Compagnon\companion.exe
O8 - Extra context menu item: &Recherche AOL Toolbar - c:\program files\aol\aol toolbar 5.0\resources\fr-fr\local\search.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra button: AOL Toolbar - {3369AF0D-62E9-4bda-8103-B4C75499B578} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://ushousecall02.trendmicro.com/housecall/applet/html/native/x86/win32/activex/hcImpl.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{AA83A5DB-507B-460C-B5AC-16CC1648DAB8}: NameServer = 205.188.146.145
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: FsUsbExService - Teruten - C:\WINDOWS\system32\FsUsbExService.Exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
O23 - Service: PC Tools AntiVirus Engine (PCTAVSvc) - PC Tools Research Pty Ltd - C:\Program Files\PC Tools AntiVirus\PCTAVSvc.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
Scan saved at 19:35:33, on 26/08/2009
Platform: Windows XP SP3, v.5512 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.20772)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\WINDOWS\system32\FsUsbExService.Exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\oodag.exe
C:\Program Files\PC Tools AntiVirus\PCTAVSvc.exe
C:\PROGRA~1\TECHCI~1\AOLSAV\AOLAgent.exe
C:\WINDOWS\vsnpstd2.exe
C:\Program Files\Lexmark 1200 Series\lxczbmgr.exe
C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
C:\Program Files\Lexmark 1200 Series\lxczbmon.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\Program Files\Fichiers communs\AOL\1213278487\ee\aolsoftware.exe
C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
C:\documents and settings\administrateur\local settings\application data\wxxaiqss.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\AOL 9.0\aoltray.exe
C:\Program Files\AOL Compagnon\companion.exe
c:\program files\fichiers communs\aol\1213278487\ee\services\antiSpywareApp\ver2_0_28_1\AOLSP Scheduler.exe
c:\program files\fichiers communs\aol\1213278487\ee\aolsoftware.exe
C:\Program Files\Fichiers communs\Teleca Shared\Generic.exe
C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
C:\Program Files\AOL 9.0\waol.exe
C:\Program Files\AOL 9.0\shellmon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Fichiers communs\Aol\aoltpspd.exe
C:\Documents and Settings\Administrateur\Mes documents\HiJackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.bing.com/?cc=fr&toHttps=1&redig=D4322FEE7CF74A348CB9CE970F098EF5
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,First Home Page = C:\Program Files\AOL Toolbar\welcome.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Favoris
R3 - URLSearchHook: AOLTBSearch Class - {EA756889-2338-43DB-8F07-D1CA6FB9C90D} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O2 - BHO: AOL Toolbar Launcher - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKLM\..\Run: [Vistadrv] C:\Program Files\VistaDriveStatus\vsdrv.exe
O4 - HKLM\..\Run: [AOLSAV] C:\PROGRA~1\TECHCI~1\AOLSAV\AOLAgent.exe
O4 - HKLM\..\Run: [AOLDialer] C:\Program Files\Fichiers communs\AOL\ACS\AOLDial.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SNPSTD2] C:\WINDOWS\vsnpstd2.exe
O4 - HKLM\..\Run: [OODefragTray] C:\WINDOWS\system32\oodtray.exe
O4 - HKLM\..\Run: [Lexmark 1200 Series] "C:\Program Files\Lexmark 1200 Series\lxczbmgr.exe"
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [HostManager] C:\Program Files\Fichiers communs\AOL\1213278487\ee\AOLSoftware.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [The locks settings ante] C:\Documents and Settings\All Users\Application Data\Cool Eggs The Locks\Play Audio.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [gramflap] C:\DOCUME~1\ADMINI~1\APPLIC~1\MANAGE~1\newaxis.exe
O4 - HKCU\..\Run: [AutoStartNPSAgent] C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe
O4 - HKCU\..\Run: [wxxaiqss] "c:\documents and settings\administrateur\local settings\application data\wxxaiqss.exe" wxxaiqss
O4 - HKUS\S-1-5-18\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (User 'Default user')
O4 - Global Startup: AOL 9.0 Icône AOL.lnk = C:\Program Files\AOL 9.0\aoltray.exe
O4 - Global Startup: AOL Compagnon.lnk = C:\Program Files\AOL Compagnon\companion.exe
O8 - Extra context menu item: &Recherche AOL Toolbar - c:\program files\aol\aol toolbar 5.0\resources\fr-fr\local\search.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra button: AOL Toolbar - {3369AF0D-62E9-4bda-8103-B4C75499B578} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://ushousecall02.trendmicro.com/housecall/applet/html/native/x86/win32/activex/hcImpl.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{AA83A5DB-507B-460C-B5AC-16CC1648DAB8}: NameServer = 205.188.146.145
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: FsUsbExService - Teruten - C:\WINDOWS\system32\FsUsbExService.Exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
O23 - Service: PC Tools AntiVirus Engine (PCTAVSvc) - PC Tools Research Pty Ltd - C:\Program Files\PC Tools AntiVirus\PCTAVSvc.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
