Sujet Précédent Sujet Suivant

Virus facebook Wow video

Résolu
audrey7338 -  
 audrey7338 -
Bonjour,
j'ai un enorme probléme :
J'ai recu un message sur facebook d'une amie ou il y avait écrit: Wow Video ceci suivi d'un lien qui me dirigeait soit disant sur you tube ..et curiosité oblige, j'ai cliqué dessus , du coup ça me demande d'installer une mise à jour pour pouvoir lire la video ..
arf je sais , ça sent le piege , et bien moi je l'ai installé ...:-(
Resultat : un virus , je pense.. vu que je diffuse maintenant le même message à tout mes contacts, et que j'ai des pages internets qui s'ouvre toute seule ...
J'ai un peu cherché sur internet et j'ai l'impression que c'est ce qu'ils appelle "Un Koobface"
MAis je sais pas comment l'éradiquer , si quelqu'un^pouvait me donner un coup de main , ce serait merveilleux...
Merci d'avance:

Voici un rapport HijackThis, si ça peut servir.. (moi j'y comprend rien..)

Logfile of random's system information tool 1.06 (written by random/random)
Run by HP_Propriétaire at 2009-09-01 19:10:37
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 44 GB (30%) free of 146 GB
Total RAM: 446 MB (23% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:10:58, on 01/09/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16876)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\vVX3000.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Panasonic\PHOTOfunSTUDIO\PhAutoRun.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Microsoft LifeCam\MSCamS32.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\MSN Messenger\usnsvc.exe
c:\windows\mstre21.exe
c:\windows\nl15.exe
c:\windows\pp11.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Live Toolbar\msn_sl.exe
C:\Documents and Settings\HP_Propriétaire\Local Settings\Temporary Internet Files\Content.IE5\O7554VGC\RSIT[1].exe
C:\Program Files\trend micro\HP_Propriétaire.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/webhp?sourceid=navclient&hl=fr&ie=UTF-8&gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = wmplayer.exe //ICWLaunch
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = SOS Connexion - Le web en toute simplicité
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - (no file)
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [LifeCam] "C:\Program Files\Microsoft LifeCam\LifeExp.exe"
O4 - HKLM\..\Run: [VX3000] C:\WINDOWS\vVX3000.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [sysldtray] c:\windows\ld14.exe
O4 - HKLM\..\Run: [Sysmstray] c:\windows\mstre21.exe
O4 - HKLM\..\Run: [sysnltray2] c:\windows\nl15.exe
O4 - HKLM\..\Run: [sysfbtray] c:\windows\freddy61.exe
O4 - HKLM\..\Run: [pp] c:\windows\pp11.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_9 -reboot 1
O4 - HKCU\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: PHOTOfunSTUDIO.lnk = C:\Program Files\Panasonic\PHOTOfunSTUDIO\PhAutoRun.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredits/menusearch.jhtml?p=ZNxmk879YYFR
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: Titan Poker - {49783ED4-258D-4f9f-BE11-137C18D3E543} - C:\Poker\Titan Poker\casino.exe
O9 - Extra 'Tools' menuitem: Titan Poker - {49783ED4-258D-4f9f-BE11-137C18D3E543} - C:\Poker\Titan Poker\casino.exe
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Ghost Navigator - {ECC5777A-6E88-BFCE-13CE-81F134789E7B} - C:\Program Files\Ghost Navigator2_8_1\Ghost (file missing)
O9 - Extra 'Tools' menuitem: Ghost Navigator - {ECC5777A-6E88-BFCE-13CE-81F134789E7B} - C:\Program Files\Ghost Navigator2_8_1\Ghost (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: WeatherBug - {AF6CABAB-61F9-4f12-A198-B7D41EF1CB52} - C:\Program Files\AWS\WeatherBug\Weather.exe (file missing) (HKCU)
O16 - DPF: {029FDBA6-3547-11D7-AA4C-0050BF051A00} (Rawflow ICD Client) - http://s.tf1.fr/mmdia/static/rawflow/clients/5.3.1.0/Rawflow.cab
O16 - DPF: {09CC593B-E8A9-4491-927D-A3E33534DDD4} - http://mm.tf1.fr/superdistribution/installer2.cab
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.exe.imgfarm.com/images/nocache/funwebproducts/ei/SmileyCentralFWBInitialSetup1.0.0.15.cab
O16 - DPF: {34DC6011-88B5-4EA9-BA7A-DC7B4F4437FE} (JordanUploader Class) - http://photoservice.fujicolor.de/ips-opdata/objects/jordan.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.mail.live.com/mail/w1/resources/MSNPUpld.cab
O16 - DPF: {55027008-315F-4F45-BBC3-8BE119764741} (Slide Image Uploader Control) - http://static.slide.com/uploader/SlideImageUploader.cab
O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} (Image Uploader Control) - http://copainsdavant.linternaute.com/...
O16 - DPF: {63DF43C2-469A-41F3-B119-17B1ACE8BB50} (Sony SNC-CS3 Image Viewer) - http://82.127.17.206/home/SonySncCs3View.cab
O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://copainsdavant.linternaute.com/html_include_bibliotheque/objimageuploader/ImageUploader4.cab
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - https://audrey7338.wordpress.com/
O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} (Get_ActiveX Control) - https://h17000.www1.hp.com/ewfrf-JAVA/Secure/HPGetDownloadManager.ocx
O16 - DPF: {CAC677B6-4963-4305-9066-0BD135CD9233} (IPSUploader4 Control) - https://asp.photoprintit.de/microsite/3462/defaults/activex/ips/IPSUploader4.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe

80 réponses

Précédent
Réponse 21 / 80
audrey7338
 
Rapport GenProc 2.617 [1] - 02/09/2009 à 10:47:14
@ Windows XP Service Pack 3 - Mode normal
@ Mozilla Firefox (2.0.0.20) [Navigateur par défaut]

Dans CCleaner, clique sur "Options", "Avancé" et décoche la case "Effacer uniquement les fichiers, du dossier Temp de Windows, plus vieux que 48 heures" ; par la suite, laisse-le avec ses réglages par défaut. C'est tout.

# Etape 1/ Télécharge :

- Lop S&D https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2 (Eric 71 & Angeldark) sur ton Bureau.

- Navilog1 http://il.mafioso.pagesperso-orange.fr/Navifix/Navilog1.exe (IL-MAFIOSO) sur ton Bureau.

- Brute Force Uninstaller http://merijn.geekstogo.com/files/bfu.zip (Merijn) et décompresse-le sur ton bureau.
Fais un clic droit de souris sur ce lien : http://www.alt-shift-return.org/Info/Fichiers/Winsoftware.bfu et choisis "Enregistrer la cible (du lien) sous" afin de télécharger le script WinSoftware.bfu, que tu placeras à côté de l'icône en forme de boule noire dentée bfu.exe.

- Toolbar-S&D https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/ToolBarSD.exe?attachauth=ANoY7cqJWPphpudyTqv7TRo5RQ3nm_Sx8JluVMO59X5E9cyE3j3LqKlmStIqiDqJdIgMJLi7MXn2nKVajQfoWuVvZZ2wIx_vkqO4k4P0K9jh-ra9jaKPXdZcoaVF2UqJZNH8ubL_42uIwh6f35xJ2GJMuzddVj2Qth1DgZ839lxEIFGkgWz3TdfvNMy-YtxfA3gqBUrj4U4LFeAPiWr3ClmjIP0t_Xs5PQ%3D%3D&attredirects=2 (Team IDN) sur ton Bureau.

Redémarre en mode sans échec comme indiqué ici https://www.wekyo.com/demarrer-le-pc-en-mode-sans-echec-windows-7-et-8/ ; Choisis ta session courante *** HP_Propriétaire *** (pour retrouver le rapport, clique sur le raccourci "Rapport GenProc[1]" sur ton bureau).
0
Réponse 22 / 80
nico987 Messages postés 783 Statut Membre 93
 
fais alors la première étape : Télécharge :

https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2 (Eric 71 & Angeldark) sur ton Bureau.

Tu le lances et fais l'option 1, oublie combofix. poste le rapport
0
Réponse 23 / 80
audrey7338
 
ok je le fais
0
Réponse 24 / 80
audrey7338
 
--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) 64 Processor 3200+ )
BIOS : Phoenix - Award BIOS v6.00PG
USER : HP_Propriétaire ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 090901-0] 4.8.1229 (Activated)
C:\ (Local Disk) - NTFS - Total:143 Go (Free:43 Go)
D:\ (Local Disk) - FAT32 - Total:5 Go (Free:1 Go)
E:\ (CD or DVD)
G:\ (USB)
H:\ (USB)
I:\ (USB)
J:\ (USB)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 02/09/2009|11:02 )

--------------------\\ Listing des dossiers dans APPLIC~1

[10/11/2008|19:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ACD Systems
[26/02/2007|23:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[25/05/2006|01:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
[23/02/2007|18:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[24/07/2008|18:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BVRP Software
[22/01/2006|17:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink
[27/01/2009|21:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[03/01/2005|04:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[03/01/2005|04:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[15/12/2005|21:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InterVideo
[02/01/2007|23:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[12/03/2008|15:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[14/12/2005|22:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\muvee Technologies
[25/02/2006|16:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle
[08/04/2006|16:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[03/01/2005|04:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[25/02/2006|19:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SmartSound Software Inc
[09/08/2006|17:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
[24/05/2006|19:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[12/02/2006|12:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Trymedia
[30/07/2006|12:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[07/12/2006|00:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[29/03/2006|20:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion

[03/01/2005|04:47] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Apple Computer
[25/11/2004|05:26] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[03/01/2005|04:44] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Intervideo
[03/01/2005|05:13] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[03/01/2005|04:51] C:\DOCUME~1\DEFAUL~1\APPLIC~1\SampleView
[03/01/2005|05:02] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec

[11/06/2007|22:23] C:\DOCUME~1\HP_PRO~3\APPLIC~1\SecondLife

[22/05/2006|19:39] C:\DOCUME~1\HP_PRO~1\APPLIC~1\.bittorrent
[10/06/2007|10:22] C:\DOCUME~1\HP_PRO~1\APPLIC~1\{B2A6EEBC-1184-4D6D-AC68-F354C811A6F9}
[05/01/2008|21:03] C:\DOCUME~1\HP_PRO~1\APPLIC~1\ACD Systems
[25/08/2008|15:24] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Adobe
[17/05/2008|11:46] C:\DOCUME~1\HP_PRO~1\APPLIC~1\AdobeUM
[09/04/2006|19:49] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Ahead
[18/06/2006|10:55] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Apple Computer
[20/06/2006|22:50] C:\DOCUME~1\HP_PRO~1\APPLIC~1\DeepBurner Pro
[24/07/2008|17:56] C:\DOCUME~1\HP_PRO~1\APPLIC~1\GlarySoft
[22/09/2006|10:27] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Google
[20/12/2005|22:48] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Help
[13/12/2005|22:53] C:\DOCUME~1\HP_PRO~1\APPLIC~1\HP
[14/12/2005|22:31] C:\DOCUME~1\HP_PRO~1\APPLIC~1\HPQ
[25/11/2004|05:26] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Identities
[23/06/2009|21:45] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Image Zone Express
[16/08/2009|13:45] C:\DOCUME~1\HP_PRO~1\APPLIC~1\InstallShield
[22/05/2006|18:04] C:\DOCUME~1\HP_PRO~1\APPLIC~1\InterTrust
[14/12/2005|14:31] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Intervideo
[01/04/2006|22:01] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Lavasoft
[14/12/2005|22:52] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Leadertech
[24/06/2006|12:54] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Lionhead Studios
[29/03/2006|20:51] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Macromedia
[26/08/2008|16:19] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Microsoft
[30/08/2006|23:52] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Mozilla
[29/05/2006|12:03] C:\DOCUME~1\HP_PRO~1\APPLIC~1\MozillaControl
[01/04/2006|16:33] C:\DOCUME~1\HP_PRO~1\APPLIC~1\MSNInstaller
[14/12/2005|22:55] C:\DOCUME~1\HP_PRO~1\APPLIC~1\muvee Technologies
[16/08/2009|13:59] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Panasonic
[03/01/2005|04:51] C:\DOCUME~1\HP_PRO~1\APPLIC~1\SampleView
[01/04/2007|03:58] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Screenshot Sender
[11/06/2007|22:23] C:\DOCUME~1\HP_PRO~1\APPLIC~1\SecondLife
[20/12/2005|22:37] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Serif
[14/12/2005|22:53] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Sonic
[20/01/2007|18:42] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Sports Interactive
[28/03/2006|11:27] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Sun
[11/01/2006|22:24] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Symantec
[11/08/2006|17:42] C:\DOCUME~1\HP_PRO~1\APPLIC~1\SystemDoctor 2006 Free
[30/08/2006|23:53] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Talkback
[13/06/2006|22:17] C:\DOCUME~1\HP_PRO~1\APPLIC~1\TaoUSign
[15/12/2005|23:08] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Template
[02/07/2009|19:23] C:\DOCUME~1\HP_PRO~1\APPLIC~1\U3
[22/01/2006|16:10] C:\DOCUME~1\HP_PRO~1\APPLIC~1\vlc
[19/08/2006|09:33] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Vso

[01/02/2007|08:52] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[09/08/2006|18:02] C:\DOCUME~1\LOCALS~1\APPLIC~1\Roxio

[12/07/2007|02:20] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[02/09/2009 09:27][--a------] C:\WINDOWS\tasks\GlaryInitialize.job
[02/09/2009 10:24][--ah-----] C:\WINDOWS\tasks\User_Feed_Synchronization-{2B2D8291-1BF7-485A-A30D-767A89A1106B}.job
[19/08/2007 06:17][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[02/09/2009 10:33][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[02/09/2009 09:27][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 20:00][-rah-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[24/07/2008|17:16] C:\Program Files\Absolute Uninstaller
[10/11/2008|19:29] C:\Program Files\ACD Systems
[21/03/2008|14:56] C:\Program Files\Ad-Aware
[22/05/2006|18:04] C:\Program Files\Adobe
[25/02/2006|17:14] C:\Program Files\AdorageI-GfxDatas
[25/02/2006|17:12] C:\Program Files\AdorageI-SAL
[02/09/2009|10:00] C:\Program Files\Ad-remover
[25/08/2006|18:57] C:\Program Files\Ahead
[24/05/2006|19:08] C:\Program Files\Alwil Software
[23/02/2007|18:21] C:\Program Files\Apple Software Update
[21/12/2007|17:17] C:\Program Files\Art Plus
[20/06/2006|22:52] C:\Program Files\Astonsoft
[03/01/2005|04:24] C:\Program Files\ATI Technologies
[09/09/2006|22:28] C:\Program Files\AVIcodec
[17/05/2006|22:48] C:\Program Files\AWS
[19/06/2006|21:38] C:\Program Files\BaseDVDivX
[26/04/2006|18:53] C:\Program Files\BoontyGames
[12/02/2006|14:35] C:\Program Files\BoxRun2
[19/06/2006|21:27] C:\Program Files\Catalencoder
[19/05/2008|18:05] C:\Program Files\CCleaner
[12/02/2006|14:19] C:\Program Files\Charlie II
[22/01/2009|00:50] C:\Program Files\Circle Developement
[03/08/2007|11:54] C:\Program Files\COL7429
[26/03/2006|15:34] C:\Program Files\Common Files
[24/11/2004|03:37] C:\Program Files\ComPlus Applications
[01/11/2006|11:40] C:\Program Files\Cyanide
[22/03/2006|00:09] C:\Program Files\directx
[10/09/2006|00:23] C:\Program Files\DivX
[19/06/2006|21:15] C:\Program Files\DivXMachine II
[22/01/2006|16:39] C:\Program Files\DVD Decrypter
[22/01/2006|16:39] C:\Program Files\DVD Shrink
[22/06/2006|17:25] C:\Program Files\Easy Internet signup
[28/04/2006|00:11] C:\Program Files\eChanblard
[01/09/2009|14:25] C:\Program Files\eMule
[16/05/2006|23:18] C:\Program Files\Enlight
[17/11/2008|19:35] C:\Program Files\Fichiers communs
[25/08/2006|19:56] C:\Program Files\Free Audio Pack
[17/05/2006|22:48] C:\Program Files\GameSpy Arcade
[23/11/2008|12:57] C:\Program Files\Geant
[29/05/2007|23:01] C:\Program Files\Ghost Navigator2_8_1
[24/07/2008|17:52] C:\Program Files\Glary Utilities
[08/03/2009|18:44] C:\Program Files\Google
[08/10/2006|18:12] C:\Program Files\Grisoft
[19/02/2008|21:33] C:\Program Files\Hercules
[29/12/2005|18:20] C:\Program Files\Hewlett-Packard
[18/06/2006|13:12] C:\Program Files\honestech
[21/05/2007|10:38] C:\Program Files\HP
[24/07/2008|17:27] C:\Program Files\inKline Global
[16/08/2009|13:47] C:\Program Files\InstallShield Installation Information
[29/07/2009|21:33] C:\Program Files\Internet Explorer
[03/01/2005|04:43] C:\Program Files\InterVideo
[18/08/2006|19:49] C:\Program Files\IZArc
[23/01/2007|17:59] C:\Program Files\Java
[12/02/2006|13:52] C:\Program Files\Jollygood Games
[17/04/2006|13:48] C:\Program Files\JoWood
[17/11/2008|19:35] C:\Program Files\Logitech
[03/01/2005|04:44] C:\Program Files\Macrovision Corp
[06/08/2006|13:02] C:\Program Files\MailSkinner
[16/02/2008|21:48] C:\Program Files\MaxiCompte
[02/01/2006|22:05] C:\Program Files\Maxis
[12/02/2006|13:23] C:\Program Files\Melin Software WinOL
[05/09/2008|18:20] C:\Program Files\Messenger
[23/08/2009|12:29] C:\Program Files\Messenger Plus! Live
[10/11/2008|19:20] C:\Program Files\Micro Application
[03/01/2007|21:44] C:\Program Files\Microsoft ActiveSync
[10/05/2007|11:13] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[25/11/2004|05:27] C:\Program Files\microsoft frontpage
[16/11/2008|13:50] C:\Program Files\Microsoft LifeCam
[06/01/2007|15:32] C:\Program Files\Microsoft Office
[03/01/2007|21:42] C:\Program Files\Microsoft Visual Studio
[03/01/2007|21:42] C:\Program Files\Microsoft Works
[03/01/2007|21:41] C:\Program Files\Microsoft.NET
[17/05/2006|22:25] C:\Program Files\Monte Cristo
[01/06/2007|01:00] C:\Program Files\Montorgueil
[05/09/2008|18:16] C:\Program Files\Movie Maker
[29/05/2006|12:02] C:\Program Files\Mozilla ActiveX Control v1.7.12
[01/09/2009|20:10] C:\Program Files\Mozilla Firefox
[04/03/2009|03:25] C:\Program Files\MSBuild
[03/08/2007|11:38] C:\Program Files\MSECACHE
[01/04/2006|16:33] C:\Program Files\MSN
[25/11/2004|05:27] C:\Program Files\MSN Gaming Zone
[02/09/2009|09:58] C:\Program Files\MSN Messenger
[18/11/2006|04:02] C:\Program Files\MSXML 4.0
[22/05/2006|18:06] C:\Program Files\Musicalis
[03/01/2005|04:50] C:\Program Files\muvee Technologies
[25/08/2006|19:58] C:\Program Files\Nero
[05/09/2008|18:13] C:\Program Files\NetMeeting
[21/12/2007|16:55] C:\Program Files\N-Gine Innovation
[29/05/2006|11:57] C:\Program Files\NuxBox
[25/11/2004|05:27] C:\Program Files\Online Services
[15/08/2009|22:18] C:\Program Files\Outlook Express
[24/05/2006|21:53] C:\Program Files\Oxilog
[16/08/2009|13:47] C:\Program Files\Panasonic
[25/10/2006|19:15] C:\Program Files\Photo Story 3 for Windows
[31/01/2008|10:33] C:\Program Files\PhotoMix
[25/02/2006|18:30] C:\Program Files\Pinnacle
[22/11/2008|15:48] C:\Program Files\Pixiphot
[12/01/2009|20:48] C:\Program Files\Pochette Express 2
[04/03/2009|03:36] C:\Program Files\Poker Grapher
[06/08/2009|14:15] C:\Program Files\PokerStars
[06/08/2009|11:33] C:\Program Files\PokerStars.NET
[10/05/2009|20:02] C:\Program Files\PokerStrategy
[24/07/2008|18:51] C:\Program Files\proDAD
[23/02/2007|18:27] C:\Program Files\QuickTime
[12/02/2006|13:59] C:\Program Files\Quotix Software
[04/03/2009|03:21] C:\Program Files\Reference Assemblies
[12/02/2006|12:40] C:\Program Files\ReflexiveArcade
[19/05/2008|18:01] C:\Program Files\RegCleaner
[12/02/2006|12:58] C:\Program Files\Robby
[20/01/2007|15:34] C:\Program Files\Roxio
[03/01/2005|04:59] C:\Program Files\Services en ligne
[02/03/2009|01:45] C:\Program Files\SharkScope
[25/02/2006|16:34] C:\Program Files\SmartSound Software
[26/10/2006|17:54] C:\Program Files\SoftChris
[19/02/2008|20:28] C:\Program Files\Sonic
[12/02/2006|14:32] C:\Program Files\STG
[25/07/2008|18:08] C:\Program Files\Symantec
[12/02/2006|12:52] C:\Program Files\TikGames
[01/09/2009|19:10] C:\Program Files\trend micro
[21/12/2007|16:45] C:\Program Files\Uninstall Information
[10/06/2007|10:23] C:\Program Files\VIRTUELSOFT
[22/01/2006|16:10] C:\Program Files\VLC
[30/12/2006|16:01] C:\Program Files\WiFiConnector
[25/08/2006|19:34] C:\Program Files\Winamp
[03/08/2007|11:38] C:\Program Files\Windows Installer Clean Up
[20/06/2007|00:15] C:\Program Files\Windows Live
[30/11/2007|11:31] C:\Program Files\Windows Live Favorites
[27/08/2009|10:40] C:\Program Files\Windows Live Safety Center
[07/12/2008|12:14] C:\Program Files\Windows Live SkyDrive
[30/11/2007|11:31] C:\Program Files\Windows Live Toolbar
[28/12/2006|18:43] C:\Program Files\Windows Media Connect 2
[05/09/2008|18:13] C:\Program Files\Windows Media Player
[05/09/2008|18:13] C:\Program Files\Windows NT
[24/11/2004|03:37] C:\Program Files\WindowsUpdate
[31/05/2006|14:57] C:\Program Files\Wingen
[08/01/2006|15:55] C:\Program Files\WinZip
[25/11/2004|05:28] C:\Program Files\xerox
[29/03/2006|20:51] C:\Program Files\Yahoo!

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[05/01/2008|21:01] C:\Program Files\Fichiers communs\ACD Systems
[22/05/2006|18:04] C:\Program Files\Fichiers communs\Adobe
[25/08/2006|19:58] C:\Program Files\Fichiers communs\Ahead
[03/01/2007|21:42] C:\Program Files\Fichiers communs\DESIGNER
[03/01/2005|04:36] C:\Program Files\Fichiers communs\Hewlett-Packard
[21/05/2007|10:38] C:\Program Files\Fichiers communs\HP
[14/11/2006|00:15] C:\Program Files\Fichiers communs\InstallShield
[03/01/2005|04:43] C:\Program Files\Fichiers communs\InterVideo
[03/01/2005|04:17] C:\Program Files\Fichiers communs\Java
[03/01/2007|21:44] C:\Program Files\Fichiers communs\L&H
[08/04/2006|16:29] C:\Program Files\Fichiers communs\Logitech
[11/10/2007|21:28] C:\Program Files\Fichiers communs\Micro Application Shared
[16/08/2009|13:47] C:\Program Files\Fichiers communs\Microsoft Shared
[25/11/2004|05:26] C:\Program Files\Fichiers communs\MSSoap
[03/01/2005|04:50] C:\Program Files\Fichiers communs\muvee Technologies
[25/11/2004|05:26] C:\Program Files\Fichiers communs\ODBC
[20/01/2007|15:34] C:\Program Files\Fichiers communs\Roxio Shared
[01/02/2005|09:55] C:\Program Files\Fichiers communs\Services
[30/08/2006|22:15] C:\Program Files\Fichiers communs\Sonic Shared
[25/11/2004|05:26] C:\Program Files\Fichiers communs\SpeechEngines
[05/09/2008|18:13] C:\Program Files\Fichiers communs\System
[26/06/2006|18:36] C:\Program Files\Fichiers communs\Wise Installation Wizard

--------------------\\ Process

( 41 Processes )

iexplore.exe ~ [PID:3012]

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsd5E.tmp
C:\Program Files\Circle Developement
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@advertstream[1].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@d2.advertserve[1].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@advertising[2].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@ero-advertising[1].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@bigpoint[1].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@fr.thepimps.bigpoint[1].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@banner.cotedazurpalace[2].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@cotedazurpalace[1].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@adopt.euroclick[2].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@euroclick[2].txt

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE

--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-09-02 11:03:21
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 3069

--------------------\\ Recherche d'autres infections

C:\Program Files\MailSkinner
C:\WINDOWS\Pack.epk
C:\WINDOWS\System32\nvs2.inf

C:\WINDOWS\System32\sikktuuy.dat
C:\WINDOWS\System32\sikktuuy_nav.dat
C:\WINDOWS\System32\sikktuuy_navps.dat
C:\WINDOWS\System32\sikktuuy_navup.dat
[b]==> EGDACCESS <==/b

--------------------\\ ROGUES ..

C:\DOCUME~1\HP_PRO~1\APPLIC~1\SystemDoctor 2006 Free

--------------------\\ KoobFace !

C:\WINDOWS\mmsmark2.dat
C:\WINDOWS\nlmark2.dat

[F:875][D:34]-> C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp
[F:1840][D:0]-> C:\DOCUME~1\HP_PRO~1\Cookies
[F:15474][D:24]-> C:\DOCUME~1\HP_PRO~1\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 02/09/2009|11:08 - Option : [1]

--------------------\\ Fin du rapport a 11:08:06
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 25 / 80
nico987 Messages postés 783 Statut Membre 93
 
t'as bien un koobface t'avais raison. Bon maintenant tu fais pareil mais avec l'option 3, et tu me postes le rapport.
0
Réponse 26 / 80
audrey7338
 
--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) 64 Processor 3200+ )
BIOS : Phoenix - Award BIOS v6.00PG
USER : HP_Propriétaire ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 090901-0] 4.8.1229 (Activated)
C:\ (Local Disk) - NTFS - Total:143 Go (Free:43 Go)
D:\ (Local Disk) - FAT32 - Total:5 Go (Free:1 Go)
E:\ (CD or DVD)
G:\ (USB)
H:\ (USB)
I:\ (USB)
J:\ (USB)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [3] ( 02/09/2009|11:15 )

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

Supprime! - C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsd5E.tmp
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@advertstream[1].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@d2.advertserve[1].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@advertising[2].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@ero-advertising[1].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@bigpoint[1].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@fr.thepimps.bigpoint[1].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@banner.cotedazurpalace[2].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@cotedazurpalace[1].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@adopt.euroclick[2].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@euroclick[2].txt
Supprime! - C:\Program Files\Circle Developement

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

--------------------\\ Listing des dossiers dans APPLIC~1

[10/11/2008|19:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ACD Systems
[26/02/2007|23:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[25/05/2006|01:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
[23/02/2007|18:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[24/07/2008|18:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BVRP Software
[22/01/2006|17:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink
[27/01/2009|21:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[03/01/2005|04:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[03/01/2005|04:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[15/12/2005|21:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InterVideo
[02/01/2007|23:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[12/03/2008|15:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[14/12/2005|22:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\muvee Technologies
[25/02/2006|16:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle
[08/04/2006|16:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[03/01/2005|04:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[25/02/2006|19:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SmartSound Software Inc
[09/08/2006|17:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
[24/05/2006|19:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[12/02/2006|12:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Trymedia
[30/07/2006|12:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[07/12/2006|00:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[29/03/2006|20:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion

[03/01/2005|04:47] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Apple Computer
[25/11/2004|05:26] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[03/01/2005|04:44] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Intervideo
[03/01/2005|05:13] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[03/01/2005|04:51] C:\DOCUME~1\DEFAUL~1\APPLIC~1\SampleView
[03/01/2005|05:02] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec

[11/06/2007|22:23] C:\DOCUME~1\HP_PRO~3\APPLIC~1\SecondLife

[22/05/2006|19:39] C:\DOCUME~1\HP_PRO~1\APPLIC~1\.bittorrent
[10/06/2007|10:22] C:\DOCUME~1\HP_PRO~1\APPLIC~1\{B2A6EEBC-1184-4D6D-AC68-F354C811A6F9}
[05/01/2008|21:03] C:\DOCUME~1\HP_PRO~1\APPLIC~1\ACD Systems
[25/08/2008|15:24] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Adobe
[17/05/2008|11:46] C:\DOCUME~1\HP_PRO~1\APPLIC~1\AdobeUM
[09/04/2006|19:49] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Ahead
[18/06/2006|10:55] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Apple Computer
[20/06/2006|22:50] C:\DOCUME~1\HP_PRO~1\APPLIC~1\DeepBurner Pro
[24/07/2008|17:56] C:\DOCUME~1\HP_PRO~1\APPLIC~1\GlarySoft
[22/09/2006|10:27] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Google
[20/12/2005|22:48] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Help
[13/12/2005|22:53] C:\DOCUME~1\HP_PRO~1\APPLIC~1\HP
[14/12/2005|22:31] C:\DOCUME~1\HP_PRO~1\APPLIC~1\HPQ
[25/11/2004|05:26] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Identities
[23/06/2009|21:45] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Image Zone Express
[16/08/2009|13:45] C:\DOCUME~1\HP_PRO~1\APPLIC~1\InstallShield
[22/05/2006|18:04] C:\DOCUME~1\HP_PRO~1\APPLIC~1\InterTrust
[14/12/2005|14:31] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Intervideo
[01/04/2006|22:01] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Lavasoft
[14/12/2005|22:52] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Leadertech
[24/06/2006|12:54] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Lionhead Studios
[29/03/2006|20:51] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Macromedia
[26/08/2008|16:19] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Microsoft
[30/08/2006|23:52] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Mozilla
[29/05/2006|12:03] C:\DOCUME~1\HP_PRO~1\APPLIC~1\MozillaControl
[01/04/2006|16:33] C:\DOCUME~1\HP_PRO~1\APPLIC~1\MSNInstaller
[14/12/2005|22:55] C:\DOCUME~1\HP_PRO~1\APPLIC~1\muvee Technologies
[16/08/2009|13:59] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Panasonic
[03/01/2005|04:51] C:\DOCUME~1\HP_PRO~1\APPLIC~1\SampleView
[01/04/2007|03:58] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Screenshot Sender
[11/06/2007|22:23] C:\DOCUME~1\HP_PRO~1\APPLIC~1\SecondLife
[20/12/2005|22:37] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Serif
[14/12/2005|22:53] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Sonic
[20/01/2007|18:42] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Sports Interactive
[28/03/2006|11:27] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Sun
[11/01/2006|22:24] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Symantec
[11/08/2006|17:42] C:\DOCUME~1\HP_PRO~1\APPLIC~1\SystemDoctor 2006 Free
[30/08/2006|23:53] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Talkback
[13/06/2006|22:17] C:\DOCUME~1\HP_PRO~1\APPLIC~1\TaoUSign
[15/12/2005|23:08] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Template
[02/07/2009|19:23] C:\DOCUME~1\HP_PRO~1\APPLIC~1\U3
[22/01/2006|16:10] C:\DOCUME~1\HP_PRO~1\APPLIC~1\vlc
[19/08/2006|09:33] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Vso

[01/02/2007|08:52] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[09/08/2006|18:02] C:\DOCUME~1\LOCALS~1\APPLIC~1\Roxio

[12/07/2007|02:20] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[02/09/2009 09:27][--a------] C:\WINDOWS\tasks\GlaryInitialize.job
[02/09/2009 10:24][--ah-----] C:\WINDOWS\tasks\User_Feed_Synchronization-{2B2D8291-1BF7-485A-A30D-767A89A1106B}.job
[19/08/2007 06:17][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[02/09/2009 10:33][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[02/09/2009 09:27][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 20:00][-rah-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[24/07/2008|17:16] C:\Program Files\Absolute Uninstaller
[10/11/2008|19:29] C:\Program Files\ACD Systems
[21/03/2008|14:56] C:\Program Files\Ad-Aware
[22/05/2006|18:04] C:\Program Files\Adobe
[25/02/2006|17:14] C:\Program Files\AdorageI-GfxDatas
[25/02/2006|17:12] C:\Program Files\AdorageI-SAL
[02/09/2009|10:00] C:\Program Files\Ad-remover
[25/08/2006|18:57] C:\Program Files\Ahead
[24/05/2006|19:08] C:\Program Files\Alwil Software
[23/02/2007|18:21] C:\Program Files\Apple Software Update
[21/12/2007|17:17] C:\Program Files\Art Plus
[20/06/2006|22:52] C:\Program Files\Astonsoft
[03/01/2005|04:24] C:\Program Files\ATI Technologies
[09/09/2006|22:28] C:\Program Files\AVIcodec
[17/05/2006|22:48] C:\Program Files\AWS
[19/06/2006|21:38] C:\Program Files\BaseDVDivX
[26/04/2006|18:53] C:\Program Files\BoontyGames
[12/02/2006|14:35] C:\Program Files\BoxRun2
[19/06/2006|21:27] C:\Program Files\Catalencoder
[19/05/2008|18:05] C:\Program Files\CCleaner
[12/02/2006|14:19] C:\Program Files\Charlie II
[03/08/2007|11:54] C:\Program Files\COL7429
[26/03/2006|15:34] C:\Program Files\Common Files
[24/11/2004|03:37] C:\Program Files\ComPlus Applications
[01/11/2006|11:40] C:\Program Files\Cyanide
[22/03/2006|00:09] C:\Program Files\directx
[10/09/2006|00:23] C:\Program Files\DivX
[19/06/2006|21:15] C:\Program Files\DivXMachine II
[22/01/2006|16:39] C:\Program Files\DVD Decrypter
[22/01/2006|16:39] C:\Program Files\DVD Shrink
[22/06/2006|17:25] C:\Program Files\Easy Internet signup
[28/04/2006|00:11] C:\Program Files\eChanblard
[01/09/2009|14:25] C:\Program Files\eMule
[16/05/2006|23:18] C:\Program Files\Enlight
[17/11/2008|19:35] C:\Program Files\Fichiers communs
[25/08/2006|19:56] C:\Program Files\Free Audio Pack
[17/05/2006|22:48] C:\Program Files\GameSpy Arcade
[23/11/2008|12:57] C:\Program Files\Geant
[29/05/2007|23:01] C:\Program Files\Ghost Navigator2_8_1
[24/07/2008|17:52] C:\Program Files\Glary Utilities
[08/03/2009|18:44] C:\Program Files\Google
[08/10/2006|18:12] C:\Program Files\Grisoft
[19/02/2008|21:33] C:\Program Files\Hercules
[29/12/2005|18:20] C:\Program Files\Hewlett-Packard
[18/06/2006|13:12] C:\Program Files\honestech
[21/05/2007|10:38] C:\Program Files\HP
[24/07/2008|17:27] C:\Program Files\inKline Global
[16/08/2009|13:47] C:\Program Files\InstallShield Installation Information
[29/07/2009|21:33] C:\Program Files\Internet Explorer
[03/01/2005|04:43] C:\Program Files\InterVideo
[18/08/2006|19:49] C:\Program Files\IZArc
[23/01/2007|17:59] C:\Program Files\Java
[12/02/2006|13:52] C:\Program Files\Jollygood Games
[17/04/2006|13:48] C:\Program Files\JoWood
[17/11/2008|19:35] C:\Program Files\Logitech
[03/01/2005|04:44] C:\Program Files\Macrovision Corp
[06/08/2006|13:02] C:\Program Files\MailSkinner
[16/02/2008|21:48] C:\Program Files\MaxiCompte
[02/01/2006|22:05] C:\Program Files\Maxis
[12/02/2006|13:23] C:\Program Files\Melin Software WinOL
[05/09/2008|18:20] C:\Program Files\Messenger
[23/08/2009|12:29] C:\Program Files\Messenger Plus! Live
[10/11/2008|19:20] C:\Program Files\Micro Application
[03/01/2007|21:44] C:\Program Files\Microsoft ActiveSync
[10/05/2007|11:13] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[25/11/2004|05:27] C:\Program Files\microsoft frontpage
[16/11/2008|13:50] C:\Program Files\Microsoft LifeCam
[06/01/2007|15:32] C:\Program Files\Microsoft Office
[03/01/2007|21:42] C:\Program Files\Microsoft Visual Studio
[03/01/2007|21:42] C:\Program Files\Microsoft Works
[03/01/2007|21:41] C:\Program Files\Microsoft.NET
[17/05/2006|22:25] C:\Program Files\Monte Cristo
[01/06/2007|01:00] C:\Program Files\Montorgueil
[05/09/2008|18:16] C:\Program Files\Movie Maker
[29/05/2006|12:02] C:\Program Files\Mozilla ActiveX Control v1.7.12
[01/09/2009|20:10] C:\Program Files\Mozilla Firefox
[04/03/2009|03:25] C:\Program Files\MSBuild
[03/08/2007|11:38] C:\Program Files\MSECACHE
[01/04/2006|16:33] C:\Program Files\MSN
[25/11/2004|05:27] C:\Program Files\MSN Gaming Zone
[02/09/2009|09:58] C:\Program Files\MSN Messenger
[18/11/2006|04:02] C:\Program Files\MSXML 4.0
[22/05/2006|18:06] C:\Program Files\Musicalis
[03/01/2005|04:50] C:\Program Files\muvee Technologies
[25/08/2006|19:58] C:\Program Files\Nero
[05/09/2008|18:13] C:\Program Files\NetMeeting
[21/12/2007|16:55] C:\Program Files\N-Gine Innovation
[29/05/2006|11:57] C:\Program Files\NuxBox
[25/11/2004|05:27] C:\Program Files\Online Services
[15/08/2009|22:18] C:\Program Files\Outlook Express
[24/05/2006|21:53] C:\Program Files\Oxilog
[16/08/2009|13:47] C:\Program Files\Panasonic
[25/10/2006|19:15] C:\Program Files\Photo Story 3 for Windows
[31/01/2008|10:33] C:\Program Files\PhotoMix
[25/02/2006|18:30] C:\Program Files\Pinnacle
[22/11/2008|15:48] C:\Program Files\Pixiphot
[12/01/2009|20:48] C:\Program Files\Pochette Express 2
[04/03/2009|03:36] C:\Program Files\Poker Grapher
[06/08/2009|14:15] C:\Program Files\PokerStars
[06/08/2009|11:33] C:\Program Files\PokerStars.NET
[10/05/2009|20:02] C:\Program Files\PokerStrategy
[24/07/2008|18:51] C:\Program Files\proDAD
[23/02/2007|18:27] C:\Program Files\QuickTime
[12/02/2006|13:59] C:\Program Files\Quotix Software
[04/03/2009|03:21] C:\Program Files\Reference Assemblies
[12/02/2006|12:40] C:\Program Files\ReflexiveArcade
[19/05/2008|18:01] C:\Program Files\RegCleaner
[12/02/2006|12:58] C:\Program Files\Robby
[20/01/2007|15:34] C:\Program Files\Roxio
[03/01/2005|04:59] C:\Program Files\Services en ligne
[02/03/2009|01:45] C:\Program Files\SharkScope
[25/02/2006|16:34] C:\Program Files\SmartSound Software
[26/10/2006|17:54] C:\Program Files\SoftChris
[19/02/2008|20:28] C:\Program Files\Sonic
[12/02/2006|14:32] C:\Program Files\STG
[25/07/2008|18:08] C:\Program Files\Symantec
[12/02/2006|12:52] C:\Program Files\TikGames
[01/09/2009|19:10] C:\Program Files\trend micro
[21/12/2007|16:45] C:\Program Files\Uninstall Information
[10/06/2007|10:23] C:\Program Files\VIRTUELSOFT
[22/01/2006|16:10] C:\Program Files\VLC
[30/12/2006|16:01] C:\Program Files\WiFiConnector
[25/08/2006|19:34] C:\Program Files\Winamp
[03/08/2007|11:38] C:\Program Files\Windows Installer Clean Up
[20/06/2007|00:15] C:\Program Files\Windows Live
[30/11/2007|11:31] C:\Program Files\Windows Live Favorites
[27/08/2009|10:40] C:\Program Files\Windows Live Safety Center
[07/12/2008|12:14] C:\Program Files\Windows Live SkyDrive
[30/11/2007|11:31] C:\Program Files\Windows Live Toolbar
[28/12/2006|18:43] C:\Program Files\Windows Media Connect 2
[05/09/2008|18:13] C:\Program Files\Windows Media Player
[05/09/2008|18:13] C:\Program Files\Windows NT
[24/11/2004|03:37] C:\Program Files\WindowsUpdate
[31/05/2006|14:57] C:\Program Files\Wingen
[08/01/2006|15:55] C:\Program Files\WinZip
[25/11/2004|05:28] C:\Program Files\xerox
[29/03/2006|20:51] C:\Program Files\Yahoo!

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[05/01/2008|21:01] C:\Program Files\Fichiers communs\ACD Systems
[22/05/2006|18:04] C:\Program Files\Fichiers communs\Adobe
[25/08/2006|19:58] C:\Program Files\Fichiers communs\Ahead
[03/01/2007|21:42] C:\Program Files\Fichiers communs\DESIGNER
[03/01/2005|04:36] C:\Program Files\Fichiers communs\Hewlett-Packard
[21/05/2007|10:38] C:\Program Files\Fichiers communs\HP
[14/11/2006|00:15] C:\Program Files\Fichiers communs\InstallShield
[03/01/2005|04:43] C:\Program Files\Fichiers communs\InterVideo
[03/01/2005|04:17] C:\Program Files\Fichiers communs\Java
[03/01/2007|21:44] C:\Program Files\Fichiers communs\L&H
[08/04/2006|16:29] C:\Program Files\Fichiers communs\Logitech
[11/10/2007|21:28] C:\Program Files\Fichiers communs\Micro Application Shared
[16/08/2009|13:47] C:\Program Files\Fichiers communs\Microsoft Shared
[25/11/2004|05:26] C:\Program Files\Fichiers communs\MSSoap
[03/01/2005|04:50] C:\Program Files\Fichiers communs\muvee Technologies
[25/11/2004|05:26] C:\Program Files\Fichiers communs\ODBC
[20/01/2007|15:34] C:\Program Files\Fichiers communs\Roxio Shared
[01/02/2005|09:55] C:\Program Files\Fichiers communs\Services
[30/08/2006|22:15] C:\Program Files\Fichiers communs\Sonic Shared
[25/11/2004|05:26] C:\Program Files\Fichiers communs\SpeechEngines
[05/09/2008|18:13] C:\Program Files\Fichiers communs\System
[26/06/2006|18:36] C:\Program Files\Fichiers communs\Wise Installation Wizard

--------------------\\ Process

( 41 Processes )
0
Réponse 27 / 80
audrey7338
 
--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) 64 Processor 3200+ )
BIOS : Phoenix - Award BIOS v6.00PG
USER : HP_Propriétaire ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 090901-0] 4.8.1229 (Activated)
C:\ (Local Disk) - NTFS - Total:143 Go (Free:43 Go)
D:\ (Local Disk) - FAT32 - Total:5 Go (Free:1 Go)
E:\ (CD or DVD)
G:\ (USB)
H:\ (USB)
I:\ (USB)
J:\ (USB)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [3] ( 02/09/2009|11:15 )

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

Supprime! - C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsd5E.tmp
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@advertstream[1].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@d2.advertserve[1].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@advertising[2].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@ero-advertising[1].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@bigpoint[1].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@fr.thepimps.bigpoint[1].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@banner.cotedazurpalace[2].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@cotedazurpalace[1].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@adopt.euroclick[2].txt
Supprime! - C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@euroclick[2].txt
Supprime! - C:\Program Files\Circle Developement

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

--------------------\\ Listing des dossiers dans APPLIC~1

[10/11/2008|19:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ACD Systems
[26/02/2007|23:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[25/05/2006|01:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
[23/02/2007|18:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[24/07/2008|18:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BVRP Software
[22/01/2006|17:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink
[27/01/2009|21:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[03/01/2005|04:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[03/01/2005|04:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[15/12/2005|21:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InterVideo
[02/01/2007|23:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[12/03/2008|15:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[14/12/2005|22:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\muvee Technologies
[25/02/2006|16:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle
[08/04/2006|16:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[03/01/2005|04:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[25/02/2006|19:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SmartSound Software Inc
[09/08/2006|17:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
[24/05/2006|19:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[12/02/2006|12:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Trymedia
[30/07/2006|12:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[07/12/2006|00:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[29/03/2006|20:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion

[03/01/2005|04:47] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Apple Computer
[25/11/2004|05:26] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[03/01/2005|04:44] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Intervideo
[03/01/2005|05:13] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[03/01/2005|04:51] C:\DOCUME~1\DEFAUL~1\APPLIC~1\SampleView
[03/01/2005|05:02] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec

[11/06/2007|22:23] C:\DOCUME~1\HP_PRO~3\APPLIC~1\SecondLife

[22/05/2006|19:39] C:\DOCUME~1\HP_PRO~1\APPLIC~1\.bittorrent
[10/06/2007|10:22] C:\DOCUME~1\HP_PRO~1\APPLIC~1\{B2A6EEBC-1184-4D6D-AC68-F354C811A6F9}
[05/01/2008|21:03] C:\DOCUME~1\HP_PRO~1\APPLIC~1\ACD Systems
[25/08/2008|15:24] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Adobe
[17/05/2008|11:46] C:\DOCUME~1\HP_PRO~1\APPLIC~1\AdobeUM
[09/04/2006|19:49] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Ahead
[18/06/2006|10:55] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Apple Computer
[20/06/2006|22:50] C:\DOCUME~1\HP_PRO~1\APPLIC~1\DeepBurner Pro
[24/07/2008|17:56] C:\DOCUME~1\HP_PRO~1\APPLIC~1\GlarySoft
[22/09/2006|10:27] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Google
[20/12/2005|22:48] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Help
[13/12/2005|22:53] C:\DOCUME~1\HP_PRO~1\APPLIC~1\HP
[14/12/2005|22:31] C:\DOCUME~1\HP_PRO~1\APPLIC~1\HPQ
[25/11/2004|05:26] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Identities
[23/06/2009|21:45] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Image Zone Express
[16/08/2009|13:45] C:\DOCUME~1\HP_PRO~1\APPLIC~1\InstallShield
[22/05/2006|18:04] C:\DOCUME~1\HP_PRO~1\APPLIC~1\InterTrust
[14/12/2005|14:31] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Intervideo
[01/04/2006|22:01] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Lavasoft
[14/12/2005|22:52] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Leadertech
[24/06/2006|12:54] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Lionhead Studios
[29/03/2006|20:51] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Macromedia
[26/08/2008|16:19] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Microsoft
[30/08/2006|23:52] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Mozilla
[29/05/2006|12:03] C:\DOCUME~1\HP_PRO~1\APPLIC~1\MozillaControl
[01/04/2006|16:33] C:\DOCUME~1\HP_PRO~1\APPLIC~1\MSNInstaller
[14/12/2005|22:55] C:\DOCUME~1\HP_PRO~1\APPLIC~1\muvee Technologies
[16/08/2009|13:59] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Panasonic
[03/01/2005|04:51] C:\DOCUME~1\HP_PRO~1\APPLIC~1\SampleView
[01/04/2007|03:58] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Screenshot Sender
[11/06/2007|22:23] C:\DOCUME~1\HP_PRO~1\APPLIC~1\SecondLife
[20/12/2005|22:37] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Serif
[14/12/2005|22:53] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Sonic
[20/01/2007|18:42] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Sports Interactive
[28/03/2006|11:27] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Sun
[11/01/2006|22:24] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Symantec
[11/08/2006|17:42] C:\DOCUME~1\HP_PRO~1\APPLIC~1\SystemDoctor 2006 Free
[30/08/2006|23:53] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Talkback
[13/06/2006|22:17] C:\DOCUME~1\HP_PRO~1\APPLIC~1\TaoUSign
[15/12/2005|23:08] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Template
[02/07/2009|19:23] C:\DOCUME~1\HP_PRO~1\APPLIC~1\U3
[22/01/2006|16:10] C:\DOCUME~1\HP_PRO~1\APPLIC~1\vlc
[19/08/2006|09:33] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Vso

[01/02/2007|08:52] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[09/08/2006|18:02] C:\DOCUME~1\LOCALS~1\APPLIC~1\Roxio

[12/07/2007|02:20] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[02/09/2009 09:27][--a------] C:\WINDOWS\tasks\GlaryInitialize.job
[02/09/2009 10:24][--ah-----] C:\WINDOWS\tasks\User_Feed_Synchronization-{2B2D8291-1BF7-485A-A30D-767A89A1106B}.job
[19/08/2007 06:17][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[02/09/2009 10:33][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[02/09/2009 09:27][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 20:00][-rah-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[24/07/2008|17:16] C:\Program Files\Absolute Uninstaller
[10/11/2008|19:29] C:\Program Files\ACD Systems
[21/03/2008|14:56] C:\Program Files\Ad-Aware
[22/05/2006|18:04] C:\Program Files\Adobe
[25/02/2006|17:14] C:\Program Files\AdorageI-GfxDatas
[25/02/2006|17:12] C:\Program Files\AdorageI-SAL
[02/09/2009|10:00] C:\Program Files\Ad-remover
[25/08/2006|18:57] C:\Program Files\Ahead
[24/05/2006|19:08] C:\Program Files\Alwil Software
[23/02/2007|18:21] C:\Program Files\Apple Software Update
[21/12/2007|17:17] C:\Program Files\Art Plus
[20/06/2006|22:52] C:\Program Files\Astonsoft
[03/01/2005|04:24] C:\Program Files\ATI Technologies
[09/09/2006|22:28] C:\Program Files\AVIcodec
[17/05/2006|22:48] C:\Program Files\AWS
[19/06/2006|21:38] C:\Program Files\BaseDVDivX
[26/04/2006|18:53] C:\Program Files\BoontyGames
[12/02/2006|14:35] C:\Program Files\BoxRun2
[19/06/2006|21:27] C:\Program Files\Catalencoder
[19/05/2008|18:05] C:\Program Files\CCleaner
[12/02/2006|14:19] C:\Program Files\Charlie II
[03/08/2007|11:54] C:\Program Files\COL7429
[26/03/2006|15:34] C:\Program Files\Common Files
[24/11/2004|03:37] C:\Program Files\ComPlus Applications
[01/11/2006|11:40] C:\Program Files\Cyanide
[22/03/2006|00:09] C:\Program Files\directx
[10/09/2006|00:23] C:\Program Files\DivX
[19/06/2006|21:15] C:\Program Files\DivXMachine II
[22/01/2006|16:39] C:\Program Files\DVD Decrypter
[22/01/2006|16:39] C:\Program Files\DVD Shrink
[22/06/2006|17:25] C:\Program Files\Easy Internet signup
[28/04/2006|00:11] C:\Program Files\eChanblard
[01/09/2009|14:25] C:\Program Files\eMule
[16/05/2006|23:18] C:\Program Files\Enlight
[17/11/2008|19:35] C:\Program Files\Fichiers communs
[25/08/2006|19:56] C:\Program Files\Free Audio Pack
[17/05/2006|22:48] C:\Program Files\GameSpy Arcade
[23/11/2008|12:57] C:\Program Files\Geant
[29/05/2007|23:01] C:\Program Files\Ghost Navigator2_8_1
[24/07/2008|17:52] C:\Program Files\Glary Utilities
[08/03/2009|18:44] C:\Program Files\Google
[08/10/2006|18:12] C:\Program Files\Grisoft
[19/02/2008|21:33] C:\Program Files\Hercules
[29/12/2005|18:20] C:\Program Files\Hewlett-Packard
[18/06/2006|13:12] C:\Program Files\honestech
[21/05/2007|10:38] C:\Program Files\HP
[24/07/2008|17:27] C:\Program Files\inKline Global
[16/08/2009|13:47] C:\Program Files\InstallShield Installation Information
[29/07/2009|21:33] C:\Program Files\Internet Explorer
[03/01/2005|04:43] C:\Program Files\InterVideo
[18/08/2006|19:49] C:\Program Files\IZArc
[23/01/2007|17:59] C:\Program Files\Java
[12/02/2006|13:52] C:\Program Files\Jollygood Games
[17/04/2006|13:48] C:\Program Files\JoWood
[17/11/2008|19:35] C:\Program Files\Logitech
[03/01/2005|04:44] C:\Program Files\Macrovision Corp
[06/08/2006|13:02] C:\Program Files\MailSkinner
[16/02/2008|21:48] C:\Program Files\MaxiCompte
[02/01/2006|22:05] C:\Program Files\Maxis
[12/02/2006|13:23] C:\Program Files\Melin Software WinOL
[05/09/2008|18:20] C:\Program Files\Messenger
[23/08/2009|12:29] C:\Program Files\Messenger Plus! Live
[10/11/2008|19:20] C:\Program Files\Micro Application
[03/01/2007|21:44] C:\Program Files\Microsoft ActiveSync
[10/05/2007|11:13] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[25/11/2004|05:27] C:\Program Files\microsoft frontpage
[16/11/2008|13:50] C:\Program Files\Microsoft LifeCam
[06/01/2007|15:32] C:\Program Files\Microsoft Office
[03/01/2007|21:42] C:\Program Files\Microsoft Visual Studio
[03/01/2007|21:42] C:\Program Files\Microsoft Works
[03/01/2007|21:41] C:\Program Files\Microsoft.NET
[17/05/2006|22:25] C:\Program Files\Monte Cristo
[01/06/2007|01:00] C:\Program Files\Montorgueil
[05/09/2008|18:16] C:\Program Files\Movie Maker
[29/05/2006|12:02] C:\Program Files\Mozilla ActiveX Control v1.7.12
[01/09/2009|20:10] C:\Program Files\Mozilla Firefox
[04/03/2009|03:25] C:\Program Files\MSBuild
[03/08/2007|11:38] C:\Program Files\MSECACHE
[01/04/2006|16:33] C:\Program Files\MSN
[25/11/2004|05:27] C:\Program Files\MSN Gaming Zone
[02/09/2009|09:58] C:\Program Files\MSN Messenger
[18/11/2006|04:02] C:\Program Files\MSXML 4.0
[22/05/2006|18:06] C:\Program Files\Musicalis
[03/01/2005|04:50] C:\Program Files\muvee Technologies
[25/08/2006|19:58] C:\Program Files\Nero
[05/09/2008|18:13] C:\Program Files\NetMeeting
[21/12/2007|16:55] C:\Program Files\N-Gine Innovation
[29/05/2006|11:57] C:\Program Files\NuxBox
[25/11/2004|05:27] C:\Program Files\Online Services
[15/08/2009|22:18] C:\Program Files\Outlook Express
[24/05/2006|21:53] C:\Program Files\Oxilog
[16/08/2009|13:47] C:\Program Files\Panasonic
[25/10/2006|19:15] C:\Program Files\Photo Story 3 for Windows
[31/01/2008|10:33] C:\Program Files\PhotoMix
[25/02/2006|18:30] C:\Program Files\Pinnacle
[22/11/2008|15:48] C:\Program Files\Pixiphot
[12/01/2009|20:48] C:\Program Files\Pochette Express 2
[04/03/2009|03:36] C:\Program Files\Poker Grapher
[06/08/2009|14:15] C:\Program Files\PokerStars
[06/08/2009|11:33] C:\Program Files\PokerStars.NET
[10/05/2009|20:02] C:\Program Files\PokerStrategy
[24/07/2008|18:51] C:\Program Files\proDAD
[23/02/2007|18:27] C:\Program Files\QuickTime
[12/02/2006|13:59] C:\Program Files\Quotix Software
[04/03/2009|03:21] C:\Program Files\Reference Assemblies
[12/02/2006|12:40] C:\Program Files\ReflexiveArcade
[19/05/2008|18:01] C:\Program Files\RegCleaner
[12/02/2006|12:58] C:\Program Files\Robby
[20/01/2007|15:34] C:\Program Files\Roxio
[03/01/2005|04:59] C:\Program Files\Services en ligne
[02/03/2009|01:45] C:\Program Files\SharkScope
[25/02/2006|16:34] C:\Program Files\SmartSound Software
[26/10/2006|17:54] C:\Program Files\SoftChris
[19/02/2008|20:28] C:\Program Files\Sonic
[12/02/2006|14:32] C:\Program Files\STG
[25/07/2008|18:08] C:\Program Files\Symantec
[12/02/2006|12:52] C:\Program Files\TikGames
[01/09/2009|19:10] C:\Program Files\trend micro
[21/12/2007|16:45] C:\Program Files\Uninstall Information
[10/06/2007|10:23] C:\Program Files\VIRTUELSOFT
[22/01/2006|16:10] C:\Program Files\VLC
[30/12/2006|16:01] C:\Program Files\WiFiConnector
[25/08/2006|19:34] C:\Program Files\Winamp
[03/08/2007|11:38] C:\Program Files\Windows Installer Clean Up
[20/06/2007|00:15] C:\Program Files\Windows Live
[30/11/2007|11:31] C:\Program Files\Windows Live Favorites
[27/08/2009|10:40] C:\Program Files\Windows Live Safety Center
[07/12/2008|12:14] C:\Program Files\Windows Live SkyDrive
[30/11/2007|11:31] C:\Program Files\Windows Live Toolbar
[28/12/2006|18:43] C:\Program Files\Windows Media Connect 2
[05/09/2008|18:13] C:\Program Files\Windows Media Player
[05/09/2008|18:13] C:\Program Files\Windows NT
[24/11/2004|03:37] C:\Program Files\WindowsUpdate
[31/05/2006|14:57] C:\Program Files\Wingen
[08/01/2006|15:55] C:\Program Files\WinZip
[25/11/2004|05:28] C:\Program Files\xerox
[29/03/2006|20:51] C:\Program Files\Yahoo!

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[05/01/2008|21:01] C:\Program Files\Fichiers communs\ACD Systems
[22/05/2006|18:04] C:\Program Files\Fichiers communs\Adobe
[25/08/2006|19:58] C:\Program Files\Fichiers communs\Ahead
[03/01/2007|21:42] C:\Program Files\Fichiers communs\DESIGNER
[03/01/2005|04:36] C:\Program Files\Fichiers communs\Hewlett-Packard
[21/05/2007|10:38] C:\Program Files\Fichiers communs\HP
[14/11/2006|00:15] C:\Program Files\Fichiers communs\InstallShield
[03/01/2005|04:43] C:\Program Files\Fichiers communs\InterVideo
[03/01/2005|04:17] C:\Program Files\Fichiers communs\Java
[03/01/2007|21:44] C:\Program Files\Fichiers communs\L&H
[08/04/2006|16:29] C:\Program Files\Fichiers communs\Logitech
[11/10/2007|21:28] C:\Program Files\Fichiers communs\Micro Application Shared
[16/08/2009|13:47] C:\Program Files\Fichiers communs\Microsoft Shared
[25/11/2004|05:26] C:\Program Files\Fichiers communs\MSSoap
[03/01/2005|04:50] C:\Program Files\Fichiers communs\muvee Technologies
[25/11/2004|05:26] C:\Program Files\Fichiers communs\ODBC
[20/01/2007|15:34] C:\Program Files\Fichiers communs\Roxio Shared
[01/02/2005|09:55] C:\Program Files\Fichiers communs\Services
[30/08/2006|22:15] C:\Program Files\Fichiers communs\Sonic Shared
[25/11/2004|05:26] C:\Program Files\Fichiers communs\SpeechEngines
[05/09/2008|18:13] C:\Program Files\Fichiers communs\System
[26/06/2006|18:36] C:\Program Files\Fichiers communs\Wise Installation Wizard

--------------------\\ Process

( 41 Processes )
0
Réponse 28 / 80
nico987 Messages postés 783 Statut Membre 93
 
Toolbar-S&D https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/ToolBarSD.exe?attachauth=ANoY7cqJWPphpudyTqv7TRo5RQ3nm_Sx8JluVMO59X5E9cyE3j3LqKlmStIqiDqJdIgMJLi7MXn2nKVajQfoWuVvZZ2wIx_vkqO4k4P0K9jh-ra9jaKPXdZcoaVF2UqJZNH8ubL_42uIwh6f35xJ2GJMuzddVj2Qth1DgZ839lxEIFGkgWz3TdfvNMy-YtxfA3gqBUrj4U4LFeAPiWr3ClmjIP0t_Xs5PQ%3D%3D&attredirects=2 (Team IDN) sur ton Bureau.

Tu le lances, tu fais directement l'option 2
0
Réponse 29 / 80
nico987 Messages postés 783 Statut Membre 93
 
Toolbar-S&D https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/ToolBarSD.exe?attachauth=ANoY7cqJWPphpudyTqv7TRo5RQ3nm_Sx8JluVMO59X5E9cyE3j3LqKlmStIqiDqJdIgMJLi7MXn2nKVajQfoWuVvZZ2wIx_vkqO4k4P0K9jh-ra9jaKPXdZcoaVF2UqJZNH8ubL_42uIwh6f35xJ2GJMuzddVj2Qth1DgZ839lxEIFGkgWz3TdfvNMy-YtxfA3gqBUrj4U4LFeAPiWr3ClmjIP0t_Xs5PQ%3D%3D&attredirects=2 (Team IDN) sur ton Bureau.

Télécharge le et tu le lances, tu fais l'option 2
0
Réponse 30 / 80
audrey7338
 
-----------\\ ToolBar S&D 1.2.9 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) 64 Processor 3200+ )
BIOS : Phoenix - Award BIOS v6.00PG
USER : HP_Propriétaire ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 090901-0] 4.8.1229 (Activated)
C:\ (Local Disk) - NTFS - Total:143 Go (Free:43 Go)
D:\ (Local Disk) - FAT32 - Total:5 Go (Free:1 Go)
E:\ (CD or DVD)
G:\ (USB)
H:\ (USB)
I:\ (USB)
J:\ (USB)

"C:\ToolBar SD" ( MAJ : 22-08-2009|18:42 )
Option : [2] ( 02/09/2009|11:32 )
C:\WINDOWS\iun6002.exe

-----------\\ SUPPRESSION

Supprime! - C:\WINDOWS\iun6002.exe

-----------\\ Recherche de Fichiers / Dossiers ...

-----------\\ Extensions

(HP_Propri‚taire) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar
(HP_Propri‚taire) - {635abd67-4fe9-1b23-4f01-e679fa7484c1} => ytoolbar

-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Start Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
"Search Page"="https://www.google.com/?gws_rd=ssl"
"SearchMigratedDefaultURL"="https://www.google.com/webhp?gws_rd=ssl{searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8"
"Search Bar"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Default_Search_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Default_page_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
"Default_Search_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Start Page"="https://www.msn.com/fr-fr/"
"Search bar"="http://www.bing.com/spresults.aspx"

--------------------\\ Recherche d'autres infections

C:\Program Files\MailSkinner
C:\WINDOWS\Pack.epk
C:\WINDOWS\System32\nvs2.inf

C:\WINDOWS\System32\sikktuuy.dat
C:\WINDOWS\System32\sikktuuy_nav.dat
C:\WINDOWS\System32\sikktuuy_navps.dat
C:\WINDOWS\System32\sikktuuy_navup.dat
[b]==> EGDACCESS <==/b

--------------------\\ ROGUES ..

C:\DOCUME~1\HP_PRO~1\APPLIC~1\SystemDoctor 2006 Free

--------------------\\ KoobFace !

C:\WINDOWS\mmsmark2.dat
C:\WINDOWS\nlmark2.dat

1 - "C:\ToolBar SD\TB_1.txt" - 02/09/2009|11:35 - Option : [2]

-----------\\ Fin du rapport a 11:35:12,56
0
Réponse 31 / 80
nico987 Messages postés 783 Statut Membre 93
 
c'est bien maintenant on va utiliser ComboFix.exe. Rends toi sur cette page web pour obtenir les liens de téléchargement, ainsi que des instructions pour exécuter l'outil:

https://www.bleepingcomputer.com/combofix/fr/comment-utiliser-combofix

* quand on va te demander d'enregistrerle fichier, renomme-le antitruc.exe (au lieu de combofix.exe) fais ceci

* Vérifie que tu as fermé/désactivé tous les programmes anti-virus, anti-malware ou anti-spyware afin qu'ils n'interfèrent pas avec le travail de ComboFix.

(je sais tu sais pas faire mais imprime les instructions du lien, télécharge combofix) et attends ton copain, qu'il désactive tout. Puis tu suis ces instructions du lien).

Maintenant j'attends que t'ai fais cette manip, il n'y a que ça pour supprimer koobface

Arrête tous les programmes (imprime les instructions du lien).

Attention, laisse l'outil travailler, ,ne touche à rien, ni à sa fenêtre, aucun clic...
Envoie le contenu de C:\ComboFix.txt dans ta prochaine réponse

0
Réponse 32 / 80
audrey7338
 
ok merci pour tout nico !!! je m'occupe des 1eres manip et je t'enverrais le rapport de tout ca dès que tout sera fait !

encore mille merci (je sais là ça devient lourd !!) :-)

bon app'
0
Réponse 33 / 80
nico987 Messages postés 783 Statut Membre 93
 
merci j'attendrais ta réponse.
0
Réponse 34 / 80
audrey7338
 
Salut je suis le copain d'Audrey , donc j'ai fait tout ce qui était inscrit dans le lien que tu nous a donné... J'ai tout bien suivi scrupuleusement... A la fin le rapport c'est affiché , j'ai fait copier et quand j'ai cliqué pour reduire la fenêtre et bien y a plus rien sur l'écran, seulement le fond d'écran...ni barre de tache, ni rien du tout....
C'est un peu flippant...donc je peux rien faire...
0
Réponse 35 / 80
nico987 Messages postés 783 Statut Membre 93
 
tu fais ctrl + alt+suppr. tu vas dans fichier puis nouvelle tâche et tu entres "explorer.exe" ( sans les ")

après ça doit revenir.
0
Réponse 36 / 80
audrey7338
 
merci beaucoup , ça faisait vraiment flipper ;-)

voici le rapport:

ComboFix 09-09-01.07 - HP_Propriétaire 02/09/2009 16:54.1.1 - NTFSx86
Microsoft Windows XP Édition familiale 5.1.2600.3.1252.33.1036.18.446.181 [GMT 2:00]
Running from: c:\documents and settings\HP_Propriétaire\Bureau\antitruc.exe
AV: avast! antivirus 4.8.1229 [VPS 090901-0] *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\010112010146101105.te
c:\windows\0101120101464950.xe
c:\windows\0101120101464954.xe
c:\windows\0101120101465054.xe
c:\windows\0101120101465249.xe
c:\windows\0101120101465349.xe
c:\windows\freddy61.exe
c:\windows\freddy62.exe
c:\windows\ld14.exe
c:\windows\msskinner
c:\windows\msskinner\msbackup.dat
c:\windows\pack.epk
c:\windows\system32\Ijl11.dll
c:\windows\system32\nvs2.inf
c:\windows\system32\sikktuuy.dat
c:\windows\system32\sikktuuy_nav.dat
c:\windows\system32\sikktuuy_navps.dat
c:\windows\system32\sikktuuy_navup.dat
c:\windows\system32\win.ini
D:\Autorun.inf

.
((((((((((((((((((((((((( Files Created from 2009-08-02 to 2009-09-02 )))))))))))))))))))))))))))))))
.

2009-09-02 09:32 . 2009-09-02 09:35 -------- d-----w- C:\ToolBar SD
2009-09-02 09:01 . 2009-09-02 09:19 -------- d-----w- C:\Lop SD
2009-09-02 08:47 . 2009-09-02 08:47 -------- d-----w- C:\GenProc
2009-09-02 06:23 . 2009-09-02 07:43 2249 ----a-w- c:\windows\ex1234.dat
2009-09-01 18:13 . 2009-09-02 08:00 -------- d-----w- c:\program files\Ad-remover
2009-09-01 15:25 . 2009-09-01 17:10 -------- d-----w- c:\program files\trend micro
2009-09-01 15:25 . 2009-09-01 15:25 -------- d-----w- C:\rsit
2009-09-01 12:57 . 2009-09-01 12:57 1 ----a-w- c:\windows\ectbbyn.dat
2009-09-01 12:54 . 2009-09-01 12:54 1 ---h--w- c:\windows\ex23567.dat
2009-09-01 12:54 . 2009-09-01 12:54 61440 ----a-w- c:\windows\nl15.exe
2009-09-01 12:54 . 2009-09-01 12:54 18432 ----a-w- c:\windows\srpira1251809668.eXE
2009-09-01 12:54 . 2009-09-01 12:54 1 ---h--w- c:\windows\nlmark2.dat
2009-09-01 12:54 . 2009-09-01 12:54 1 ---h--w- c:\windows\mmsmark2.dat
2009-08-16 11:47 . 2008-09-25 19:07 45056 ----a-w- c:\windows\system32\PhDi2.sys
2009-08-16 11:47 . 2009-08-16 11:47 -------- d-----w- c:\program files\Panasonic
2009-08-15 16:56 . 2009-07-10 13:27 1315328 ------w- c:\windows\system32\dllcache\msoe.dll
2009-08-09 10:27 . 2009-08-09 10:27 -------- d-----w- C:\dba0622accdac9d7a5fc9321
2009-08-06 09:35 . 2009-08-06 12:15 -------- d-----w- c:\program files\PokerStars
2009-08-06 09:16 . 2009-08-06 09:33 -------- d-----w- c:\program files\PokerStars.NET
2009-08-05 09:00 . 2009-08-05 09:00 205312 ------w- c:\windows\system32\dllcache\mswebdvd.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-09-02 07:58 . 2006-04-04 20:45 -------- d-----w- c:\program files\MSN Messenger
2009-09-02 06:38 . 2007-08-02 17:13 12 ----a-w- c:\windows\bthservsdp.dat
2009-09-01 12:25 . 2006-09-10 12:21 -------- d-----w- c:\program files\eMule
2009-08-27 08:40 . 2008-05-19 15:42 -------- d-----w- c:\program files\Windows Live Safety Center
2009-08-23 10:29 . 2007-01-02 21:55 -------- d-----w- c:\program files\Messenger Plus! Live
2009-08-16 11:47 . 2005-01-03 02:24 -------- d--h--w- c:\program files\InstallShield Installation Information
2009-08-09 10:33 . 2004-11-23 21:26 86514 ----a-w- c:\windows\system32\perfc00C.dat
2009-08-09 10:33 . 2004-11-23 21:26 515048 ----a-w- c:\windows\system32\perfh00C.dat
2009-08-05 09:00 . 2004-08-05 18:00 205312 ----a-w- c:\windows\system32\mswebdvd.dll
2009-07-17 19:03 . 2004-08-05 18:00 58880 ----a-w- c:\windows\system32\atl.dll
2009-07-13 21:43 . 2004-08-05 18:00 286208 ----a-w- c:\windows\system32\wmpdxm.dll
2009-06-29 15:57 . 2004-08-05 18:00 827392 ----a-w- c:\windows\system32\wininet.dll
2009-06-29 15:57 . 2004-08-05 18:00 78336 ----a-w- c:\windows\system32\ieencode.dll
2009-06-29 15:57 . 2004-08-05 18:00 17408 ----a-w- c:\windows\system32\corpol.dll
2009-06-16 14:40 . 2004-08-05 18:00 119808 ----a-w- c:\windows\system32\t2embed.dll
2009-06-16 14:40 . 2004-08-05 12:00 81920 ----a-w- c:\windows\system32\fontsub.dll
2009-06-15 10:44 . 2004-08-05 18:00 78848 ----a-w- c:\windows\system32\telnet.exe
2009-06-10 14:14 . 2004-08-05 18:00 85504 ----a-w- c:\windows\system32\avifil32.dll
2009-06-10 07:21 . 2004-08-05 18:00 2066432 ----a-w- c:\windows\system32\mstscax.dll
2009-06-10 06:15 . 2004-08-05 18:00 132096 ----a-w- c:\windows\system32\wkssvc.dll
2006-05-02 17:16 . 2006-01-26 18:16 76 -c-ha-w- c:\program files\Alimentation et diététique 3.cfg
2002-07-26 16:02 . 2006-02-25 15:29 153088 ----a-w- c:\program files\UNWISE.EXE
2009-09-01 18:09 . 2006-12-20 18:56 67688 ----a-w- c:\program files\mozilla firefox\components\jar50.dll
2009-09-01 18:09 . 2006-12-20 18:56 54368 ----a-w- c:\program files\mozilla firefox\components\jsd3250.dll
2009-09-01 18:09 . 2006-12-20 18:56 34944 ----a-w- c:\program files\mozilla firefox\components\myspell.dll
2009-09-01 18:09 . 2006-12-20 18:56 46712 ----a-w- c:\program files\mozilla firefox\components\spellchk.dll
2009-09-01 18:09 . 2006-12-20 18:56 172136 ----a-w- c:\program files\mozilla firefox\components\xpinstal.dll
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MsnMsgr"="c:\program files\MSN Messenger\MsnMsgr.Exe" [2007-01-19 5674352]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Fichiers communs\Ahead\lib\NMBgMonitor.exe" [2006-07-31 139264]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-01-27 39408]
"updateMgr"="c:\program files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" [2006-03-30 313472]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2006-10-25 282624]
"LifeCam"="c:\program files\Microsoft LifeCam\LifeExp.exe" [2007-05-17 279912]
"VX3000"="c:\windows\vVX3000.exe" [2007-04-10 709992]
"sysnltray2"="c:\windows\nl15.exe" [2009-09-01 61440]

c:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2005-5-12 282624]
Lancement rapide d'Adobe Reader.lnk - c:\program files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2005-9-23 29696]
PHOTOfunSTUDIO.lnk - c:\program files\Panasonic\PHOTOfunSTUDIO\PhAutoRun.exe [2009-8-16 44176]
WinZip Quick Pick.lnk - c:\program files\WinZip\WZQKPICK.EXE [2006-1-8 118784]

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\eMule\\emule.exe"=
"c:\\Program Files\\Photo Story 3 for Windows\\PhotoStory3.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"=
"c:\\Program Files\\WiFiConnector\\NintendoWFCReg.exe"=
"c:\\WINDOWS\\system32\\mcoinstall.exe"=
"c:\\WINDOWS\\system32\\rtcshare.exe"=
"c:\\Program Files\\MSN Messenger\\msnmsgr.exe"=
"c:\\Program Files\\MSN Messenger\\livecall.exe"=
"c:\\Program Files\\Microsoft LifeCam\\LifeCam.exe"=
"c:\\Program Files\\Microsoft LifeCam\\LifeExp.exe"=
"c:\\Program Files\\PokerStrategy\\PokerStrategy Equilator\\Equilator.exe"=

R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [20/06/2008 16:14 78416]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [20/06/2008 16:14 20560]
R3 3xHybrid;3xHybrid service;c:\windows\system32\drivers\3xHybrid.sys [03/01/2005 04:25 2786176]

--- Other Services/Drivers In Memory ---

*NewlyCreated* - MBR
*Deregistered* - mbr
.
Contents of the 'Scheduled Tasks' folder

2007-08-19 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2006-10-10 16:13]

2009-09-02 c:\windows\Tasks\GlaryInitialize.job
- c:\program files\Glary Utilities\initialize.exe [2008-07-24 09:08]

2009-09-02 c:\windows\Tasks\User_Feed_Synchronization-{2B2D8291-1BF7-485A-A30D-767A89A1106B}.job
- c:\windows\system32\msfeedssync.exe [2006-10-17 10:58]

2009-09-02 c:\windows\Tasks\Vérifier les mises à jour de Windows Live Toolbar.job
- c:\program files\Windows Live Toolbar\MSNTBUP.EXE [2007-10-19 10:20]
.
- - - - ORPHANS REMOVED - - - -

HKCU-Run-Picasa Media Detector - c:\program files\Picasa2\PicasaMediaDetector.exe
HKLM-Run-sysfbtray - c:\windows\freddy62.exe

.
------- Supplementary Scan -------
.
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
mWindow Title =
uInternet Connection Wizard,ShellNext = wmplayer.exe //ICWLaunch
uInternet Settings,ProxyOverride = localhost
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: &Windows Live Search - c:\program files\Windows Live Toolbar\msntb.dll/search.htm
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
IE: {{ECC5777A-6E88-BFCE-13CE-81F134789E7B} - c:\program files\Ghost Navigator2_8_1\Ghost
DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab
DPF: {09CC593B-E8A9-4491-927D-A3E33534DDD4} - hxxp://mm.tf1.fr/superdistribution/installer2.cab
DPF: {34DC6011-88B5-4EA9-BA7A-DC7B4F4437FE} - hxxp://photoservice.fujicolor.de/ips-opdata/objects/jordan.cab
DPF: {63DF43C2-469A-41F3-B119-17B1ACE8BB50} - hxxp://82.127.17.206/home/SonySncCs3View.cab
FF - ProfilePath - c:\documents and settings\HP_Propriétaire\Application Data\Mozilla\Firefox\Profiles\qipz8t3g.default\
FF - component: c:\progra~1\MOZILL~1\extensions\talkback@mozilla.org\components\qfaservices.dll
FF - component: c:\program files\Mozilla Firefox\components\xpinstal.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-09-02 17:07
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{47629D4B-2AD3-4e50-B716-A66C15C63153}\InprocServer32*]
"ThreadingModel"="Apartment"
@="c:\\WINDOWS\\system32\\OLE32.DLL"
"cd042efbbd7f7af1647644e76e06692b"=hex:e2,63,26,f1,3f,c8,ff,68,fc,d5,5e,53,3e,
27,d2,a4,2e,e8,e1,00,eb,16,2b,de,ad,b8,2e,73,e0,2b,04,c8,e2,63,26,f1,3f,c8,\

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{604BB98A-A94F-4a5c-A67C-D8D3582C741C}\InprocServer32*]
"ThreadingModel"="Apartment"
@="c:\\WINDOWS\\system32\\OLE32.DLL"
"bca643cdc5c2726b20d2ecedcc62c59b"=hex:71,3b,04,66,8b,46,0d,96,aa,ad,58,c3,87,
d2,5a,de,46,47,15,b0,92,4b,c7,ef,5a,2a,c1,c7,7f,97,c4,21,6a,9c,d6,61,af,45,\

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{684373FB-9CD8-4e47-B990-5A4466C16034}\InprocServer32*]
"ThreadingModel"="Apartment"
@="c:\\WINDOWS\\system32\\OLE32.DLL"
"2c81e34222e8052573023a60d06dd016"=hex:25,da,ec,7e,55,20,c9,26,22,d2,19,87,8e,
e5,5a,75,7a,45,05,fd,91,e8,6f,31,0d,15,24,7d,5e,fa,7b,51,ff,7c,85,e0,43,d4,\

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{74554CCD-F60F-4708-AD98-D0152D08C8B9}\InprocServer32*]
"ThreadingModel"="Apartment"
@="c:\\WINDOWS\\system32\\OLE32.DLL"
"2582ae41fb52324423be06337561aa48"=hex:3e,1e,9e,e0,57,5a,93,61,1c,2a,0f,1b,e7,
12,b4,ba,6b,65,49,6a,7e,99,74,f7,73,3a,8d,c5,bc,89,4a,f5,86,8c,21,01,be,91,\

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{7EB537F9-A916-4339-B91B-DED8E83632C0}\InprocServer32*]
"ThreadingModel"="Apartment"
@="c:\\WINDOWS\\system32\\OLE32.DLL"
"caaeda5fd7a9ed7697d9686d4b818472"=hex:cd,44,cd,b9,a6,33,6c,cd,68,4f,74,5b,cb,
ba,a1,72,e9,02,6c,fa,fb,1d,47,57,2f,70,97,58,64,5c,9e,57,f5,1d,4d,73,a8,13,\

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{948395E8-7A56-4fb1-843B-3E52D94DB145}\InprocServer32*]
"ThreadingModel"="Apartment"
@="c:\\WINDOWS\\system32\\OLE32.DLL"
"a4a1bcf2cc2b8bc3716b74b2b4522f5d"=hex:df,20,58,62,78,6b,cf,c8,97,df,59,95,b6,
50,e8,ac,50,93,e5,ab,ec,6a,4e,ab,59,02,42,35,86,c6,09,93,df,20,58,62,78,6b,\

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{AC3ED30B-6F1A-4bfc-A4F6-2EBDCCD34C19}\InprocServer32*]
"ThreadingModel"="Apartment"
@="c:\\WINDOWS\\system32\\OLE32.DLL"
"4d370831d2c43cd13623e232fed27b7b"=hex:fb,a7,78,e6,12,2f,9a,ea,31,89,54,92,5c,
54,44,61,97,20,4e,9a,c7,f1,35,ee,a1,6f,1a,31,e8,9f,81,40,fb,a7,78,e6,12,2f,\

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{DE5654CA-EB84-4df9-915B-37E957082D6D}\InprocServer32*]
"ThreadingModel"="Apartment"
@="c:\\WINDOWS\\system32\\OLE32.DLL"
"1d68fe701cdea33e477eb204b76f993d"=hex:83,6c,56,8b,a0,85,96,ab,ae,d2,70,10,40,
97,63,af,aa,52,c6,00,84,3c,26,64,26,cf,bd,39,98,f1,91,f7,01,3a,48,fc,e8,04,\

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{E39C35E8-7488-4926-92B2-2F94619AC1A5}\InprocServer32*]
"ThreadingModel"="Apartment"
@="c:\\WINDOWS\\system32\\OLE32.DLL"
"1fac81b91d8e3c5aa4b0a51804d844a3"=hex:51,fa,6e,91,28,9e,14,cc,eb,95,fc,00,d2,
ee,ad,11,b2,46,9a,e2,1b,fe,1b,94,4e,91,f0,f2,ec,10,f5,38,f6,0f,4e,58,98,5b,\

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{EACAFCE5-B0E2-4288-8073-C02FF9619B6F}\InprocServer32*]
"ThreadingModel"="Apartment"
@="c:\\WINDOWS\\system32\\OLE32.DLL"
"f5f62a6129303efb32fbe080bb27835b"=hex:3d,ce,ea,26,2d,45,aa,78,80,77,f6,6a,6a,
ee,2a,69,37,a4,aa,c3,a6,15,56,0a,e2,8c,03,97,c7,bc,90,77,3d,ce,ea,26,2d,45,\

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{F8F02ADD-7366-4186-9488-C21CB8B3DCEC}\InprocServer32*]
"ThreadingModel"="Apartment"
@="c:\\WINDOWS\\system32\\OLE32.DLL"
"fd4e2e1a3940b94dceb5a6a021f2e3c6"=hex:e3,0e,66,d5,eb,bc,2f,6b,0e,2e,06,0d,5f,
81,b3,87,f8,31,0f,a9,5f,a0,ec,fb,a8,17,ba,a4,72,59,dc,d6,2a,b7,cc,b5,b9,7f,\

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{FEE45DE2-A467-4bf9-BF2D-1411304BCD84}\InprocServer32*]
"ThreadingModel"="Apartment"
@="c:\\WINDOWS\\system32\\OLE32.DLL"
"8a8aec57dd6508a385616fbc86791ec2"=hex:6c,43,2d,1e,aa,22,2f,9c,9e,b3,8e,70,07,
70,34,dc,05,73,21,dd,54,d8,4a,c5,0e,6d,c0,7f,4e,45,b3,71,6c,43,2d,1e,aa,22,\

[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\Installer\UserData\LocalSystem\Components\Ø•€|ÿÿÿÿ•€|ù•9~*]
"C040110900063D11C8EF10054038389C"="C?\\WINDOWS\\system32\\FM20ENU.DLL"
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(1056)
c:\windows\system32\Ati2evxx.dll
.
Completion time: 2009-09-02 17:14
ComboFix-quarantined-files.txt 2009-09-02 15:13

Pre-Run: 46 535 757 824 octets libres
Post-Run: 46 930 907 136 octets libres

Current=3 Default=3 Failed=1 LastKnownGood=4 Sets=,1,2,3,4
270 --- E O F --- 2009-09-01 22:38
0
Réponse 37 / 80
nico987 Messages postés 783 Statut Membre 93
 
bon tu remets l'antivirus, les antispyware (tout quoi)
peux-tu me refaire un rapport genproc.
Merci
0
Réponse 38 / 80
audrey7338
 
Rapport GenProc 2.617 [2] - 02/09/2009 à 17:52:49
@ Windows XP Service Pack 3 - Mode normal
@ Internet Explorer (7.0.5730.11) [Navigateur par défaut]

~~ "C:\WINDOWS\sed.exe" a été renommé sed.exe_RenameGenProc ~~
~~ "C:\WINDOWS\grep.exe" a été renommé grep.exe_RenameGenProc ~~

# Etape 1/ Télécharge :

- Brute Force Uninstaller http://merijn.geekstogo.com/files/bfu.zip (Merijn) et décompresse-le sur ton bureau.
Fais un clic droit de souris sur ce lien : http://www.alt-shift-return.org/Info/Fichiers/Winsoftware.bfu et choisis "Enregistrer la cible (du lien) sous" afin de télécharger le script WinSoftware.bfu, que tu placeras à côté de l'icône en forme de boule noire dentée bfu.exe.

Redémarre en mode sans échec comme indiqué ici https://www.wekyo.com/demarrer-le-pc-en-mode-sans-echec-windows-7-et-8/ ; Choisis ta session courante *** HP_Propriétaire *** (pour retrouver le rapport, clique sur le raccourci "Rapport GenProc[2]" sur ton bureau).

# Etape 2/

Double-clique sur le fichier BFU.exe en forme de boule noire dentée, sur ton bureau. Clique sur le petit dossier jaune, à la droite de la boîte "Scriptfile to execute", et double-clique sur le fichier Winsoftware.bfu qui devrait apparaître. Dans la boîte "Script to execute", tu devrais maintenant voir le chemin complet du fichier Winsoftware.bfu : clique sur "Execute" et laisse-le faire son travail. La réussite de l'opération sera obligatoirement sanctionnée par un message final "Complete script execution", si ce n'est pas le cas, il faudra le signaler. Clique sur OK, puis exit pour fermer le programme BFU. Recommence encore une fois.

# Etape 3/

Lance CCleaner : "Nettoyeur"/"lancer le nettoyage" et c'est tout.
0
Réponse 39 / 80
nico987 Messages postés 783 Statut Membre 93
 
bon t'utilises brutus ? c'est toi qui voit si tu veux le garder ou pas.

Envoie moi un rapport hijackthis juste pour vérifier...
0
Réponse 40 / 80
audrey7338
 
Brutus??? je ne sais pas du tout ce que c'est ....
0

Discussions similaires

TokyVideo, est-ce un site fiable ? Vos avis
timinie -
Elvis -

5 réponses