Bonjour, Bonjour, j'ai télécharger un vieux spam par megarde et a présent à chaque fois que j'ouvre firefox j'ai d'autre splendide fenetre qui s'ouvrent. j'ai remarqué également un logiciel "bonjour" dans mes program et programmes files que je pense avoir désinstaller. j'ai passé ad-aware + spybot rien à faire comment se débarrasé de tout ça ??

Fenetre intempestive + "bonjour"

Réponse 1 / 6

flo-91 Messages postés 5646 Date d'inscription mardi 19 mai 2009 Statut Contributeur sécurité Dernière intervention 31 octobre 2019 1 118
4 déc. 2009 à 22:20

Oups, quelques secondes de retard, je laisse la main à Xplode, bonne continuation ;)

a+

Réponse 2 / 6

Xplode Messages postés 8820 Date d'inscription vendredi 21 août 2009 Statut Contributeur sécurité Dernière intervention 2 juillet 2015 726
4 déc. 2009 à 22:16

Salut,

-+-+-+-> ZHPDiag <-+-+-+-

[x] Télécharge ZHPDiag ( de Nicolas coolman ).

[x] Double clique sur le fichier d'installation, puis installe le avec les paramètres par défaut ( N'oublie pas de cocher " Créer une icône sur le bureau " )

[x] Lance ZHPDiag en double cliquant sur l'icône présente sur ton bureau

[x] Clique sur l'icône en forme de loupe ( en haut à gauche ), puis laisse l'outil scanner.

[x] Une fois le scan terminé, clique sur l'icône en forme de disquette et enregistre le fichier sur ton bureau.

[x] Rend toi sur Cijoint

[x] Clique sur " Parcourir " dans la partie " Joindre un fichier[...] "

[x] Séléctionne le rapport ZHPdiag.txt qui se trouve sur ton bureau

[x] Clique ensuite sur " Créer le lien cjoint " et copie/colle le dans ton prochain message

pomdamour22 Messages postés 9 Date d'inscription vendredi 4 décembre 2009 Statut Membre Dernière intervention 5 décembre 2009
4 déc. 2009 à 22:21

http://www.cijoint.fr/cjlink.php?file=cj200912/cijT3qCUZD.txt

merci

Réponse 3 / 6

flo-91 Messages postés 5646 Date d'inscription mardi 19 mai 2009 Statut Contributeur sécurité Dernière intervention 31 octobre 2019 1 118
4 déc. 2009 à 22:16

Bonsoir,

Fait ceci :

>Telecharge RSIT ici et enregistre-le sur ton bureau :

http://images.malwareremoval.com/random/RSIT.exe

>Double-clique sur RSIT.exe qui se trouve sur le bureau

>Le programme se lance, choisi "1month" et clique sur "continue"

>Laisse faire l'outil et poste le rapport qui s'affiche.

pomdamour22 Messages postés 9 Date d'inscription vendredi 4 décembre 2009 Statut Membre Dernière intervention 5 décembre 2009
4 déc. 2009 à 22:18

Logfile of random's system information tool 1.06 (written by random/random)
Run by Administrateur at 2009-12-04 22:17:31
Microsoft Windows XP Professionnel Service Pack 2
System drive C: has 3 GB (14%) free of 25 GB
Total RAM: 3071 MB (71% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:17:46, on 04/12/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\WIDCOMM\Logiciel Bluetooth\bin\btwdins.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\RealVNC\VNC4\WinVNC4.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\WgaTray.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\DAEMON Tools\daemon.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\ASUS\Ai Suite\AiNap\AiNap.exe
C:\Program Files\ASUS\Ai Suite\AiGear3\CpuPowerMonitor.exe
C:\Program Files\ASUS\Ai Suite\EnergySaving\PwSave.exe
C:\Program Files\ASUS\AASP\1.00.59\aaCenter.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\HomePlayer\HomePlayer.exe
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Update\1.2.183.13\GoogleCrashHandler.exe
C:\Program Files\e-Carte Bleue Banque Populaire\ecbl-nxbp.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\WiFiConnector\NintendoWFCReg.exe
C:\Program Files\3M\PSNLite\PsnLite.exe
C:\WINDOWS\VPro500.exe
C:\PROGRA~1\3M\PSNLite\PSNGive.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\System32\wbem\wmiapsrv.exe
C:\Program Files\Windows Live\Mail\wlmail.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Administrateur\Bureau\RSIT.exe
C:\Program Files\trend micro\Administrateur.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?client=firefox-a&rls=org.mozilla:fr:official&gws_rd=ssl
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Download Manager Browser Helper Object - {19C8E43B-07B3-49CB-BFFC-6777B593E6F8} - C:\PROGRA~1\FICHIE~1\fluxDVD\DOWNLO~1\XEBDLH~1.DLL
O2 - BHO: Automated Content Enhancer - {1D74E9DD-8987-448b-B2CB-67FFF2B8A932} - C:\Program Files\Automated Content Enhancer\4.1.0.5190\ACEIEAddOn.dll
O2 - BHO: e-Carte Bleue Browser Helper Object - {2E03C0FD-4C48-43A7-9A54-00240C70FF16} - C:\WINDOWS\system32\BhoECart.dll
O2 - BHO: (no name) - {42C7C39F-3128-4a17-BDB7-91C46032B5B9} - (no file)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
O2 - BHO: Content Management Wizard - {B72681C0-A222-4b21-A0E2-53A5A5CA3D41} - C:\Program Files\Content Management Wizard\1.1.0.1870\CMWIE.dll
O2 - BHO: TCP - {CAC89FF9-34A9-4431-8CFE-292A47F843BC} - C:\Program Files\Textual Content Provider\1.1.0.1610\TCPIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: (no name) - {EB4A577D-BCAD-4b1c-8AF2-9A74B8DD3431} - (no file)
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] "rundll32.exe" bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [CanalPlayerHelper] C:\Program Files\Lecteur CANALPLAY\CanalPlayerHelper.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [WinSys2] C:\WINDOWS\system32\winsys2.exe
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Ai Nap] "C:\Program Files\ASUS\Ai Suite\AiNap\AiNap.exe"
O4 - HKLM\..\Run: [CPU Power Monitor] "C:\Program Files\ASUS\Ai Suite\AiGear3\CpuPowerMonitor.exe"
O4 - HKLM\..\Run: [Cpu Level Up help] C:\Program Files\ASUS\Ai Suite\CpuLevelUpHelp.exe
O4 - HKLM\..\Run: [ASUS Energy Saving] "C:\Program Files\ASUS\Ai Suite\EnergySaving\PwSave.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Ad-Watch] C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files\Fichiers communs\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [HomePlayer] C:\Program Files\HomePlayer\HomePlayer.exe -autostart
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_7 -reboot 1
O4 - HKCU\..\Run: [shkwciuily] c:\documents and settings\administrateur\local settings\application data\shkwciuily.exe shkwciuily
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Administrateur\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: e-Carte Bleue Banque Populaire.lnk = C:\Program Files\e-Carte Bleue Banque Populaire\ecbl-nxbp.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Lancer l'utilitaire d'enregistrement.lnk = C:\Program Files\WiFiConnector\NintendoWFCReg.exe
O4 - Global Startup: Post-it® Software Notes Lite.lnk = C:\Program Files\3M\PSNLite\PsnLite.exe
O4 - Global Startup: VPro500.lnk = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: Recherche sur eBay - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html
O9 - Extra button: (no name) - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - (no file)
O9 - Extra button: Unibet Poker - {C53BFCFC-7A54-4627-AEBA-2CD4871FCA97} - C:\Microgaming\Poker\UnibetpokerMPP\MPPoker.exe
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O15 - Trusted Zone: *.canalplay.com (HKLM)
O15 - Trusted Zone: *.canalplusactive.com (HKLM)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/...
O17 - HKLM\System\CCS\Services\Tcpip\..\{1DDDBC18-40FA-47C6-8E77-12DD1FBA1153}: NameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{6FCCAB84-C419-4179-8EE7-7704C91F924B}: NameServer = 89.2.0.2
O17 - HKLM\System\CCS\Services\Tcpip\..\{F33AC2ED-F18A-42F8-884E-DBD256F36521}: NameServer = 89.2.0.2
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Bluetooth Service (btwdins) - WIDCOMM, Inc. - C:\Program Files\WIDCOMM\Logiciel Bluetooth\bin\btwdins.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Service Google Update (gupdate1ca24f999657420) (gupdate1ca24f999657420) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: QuestService Service - Unknown owner - C:\Documents and Settings\All Users.WINDOWS\Application Data\QuestService\questservice127.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe
O23 - Service: VNC Server Version 4 (WinVNC4) - RealVNC Ltd. - C:\Program Files\RealVNC\VNC4\WinVNC4.exe

Réponse 4 / 6

Xplode Messages postés 8820 Date d'inscription vendredi 21 août 2009 Statut Contributeur sécurité Dernière intervention 2 juillet 2015 726
4 déc. 2009 à 22:24

Beaucoup d'infections, ( LOP / Navipromo / DoubleD )

On va commencer par ceci :

-+-+-+-> Lop S&D <-+-+-+-

[x] Télécharge Lop S&D ( de Eric_71 & Angeldark )

/!\ Désactive tes protections résidentes : Antivirus, antispywares, Pare-Feu /!\

[x] Double clique sur " LopSD.exe " ( Vista : Clique droit -> Executer en tant qu'administrateur )

[x] Choisis l'option F pour français

[x] Ensuite, Choisis l'option n°2 ( Suppression )

[x] Laisse l'outil travailler.

[x] Copie/Colle le contenu du rapport qui s'ouvrira et poste le dans ton prochain message.

-+-+-+-> Navilog <-+-+-+-

Ton PC est infecté par l'ad-aware Navipromo/Magic Control qui affiche des publicités intempestives.
Il s'installe via certains programmes, dont ceux-ci :

● Funky Emoticons
● go-astro
● GoRecord
● HotTVPlayer / HotTVPlayer & Paris Hilton
● Live-Player
● MailSkinner
● Messenger Skinner
● Instant Access
● InternetGameBox
● Officiale Emule (Version d'Emule modifiée)
● Original Solitaire
● SuperSexPlayer
● Speed Downloading
● Sudoplanet
● Webmediaplayer

/!\ Fais attention de ne pas faire la même erreur, donc évite ces programmes /!\

[x] Télécharge Navilog ( de IL-MAFIOSO)

[x] Lance le en double cliquant dessus. ( Clic droit -> "Executer en tant qu'administrateur" sous vista )

[x] Laisse-toi guider par l'utilitaire. Choisis l'option n°1 puis valide.

[x] A l'écran principal, choisis l'option n°1 puis laisse l'outil scanner.

[x] Patiente jusqu'à l'apparition de ce message :

"*** Analyse Termine le ..... ***"

[x] Appuie sur une touche comme demandé. Le Bloc-notes va s'ouvrir. Poste son contenu dans ton prochain message.

Nb : Le rapport se trouve également ici : C:\cleannavi.txt

-+-+-+-> Malwarebyte's Anti-Malware <-+-+-+-

[x] Télécharge Malwarebyte's anti-malware

[x] Installe le en prenant soin de le mettre à jour à la fin de l'installation.

[x] Lance un scan complet.

[x] Coche bien tout les éléments trouvés et supprime les.

[x] A la fin du scan, copie/colle le contenu du rapport qui s'ouvrira. S'il ne s'ouvre pas, il se trouve dans la partie " Rapports/Logs " de malwarebyte's.

[x] N'oublie pas de vider la quarantaine de malwarebyte's.

Nb : Un tutoriel pour son utilisation est disponible à cette adresse

pomdamour22 Messages postés 9 Date d'inscription vendredi 4 décembre 2009 Statut Membre Dernière intervention 5 décembre 2009
4 déc. 2009 à 22:41

rapport lopR :

--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
X86-based PC ( Multiprocessor Free : Processeur Intel Pentium III Xeon )
BIOS : BIOS Date: 06/19/08 17:02:36 Ver: 08.00.12
USER : Administrateur ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1368 [VPS 091204-0] 4.8.1368 (Not Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:24 Go (Free:3 Go)
D:\ (CD or DVD)
E:\ (Local Disk) - NTFS - Total:44 Go (Free:17 Go)
F:\ (Local Disk) - NTFS - Total:45 Go (Free:1 Go)
G:\ (Local Disk) - NTFS - Total:48 Go (Free:31 Go)
H:\ (Local Disk) - NTFS - Total:184 Go (Free:127 Go)
M:\ (CD or DVD)
N:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [2] ( 04/12/2009|22:36 )

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

--------------------\\ Listing des dossiers dans APPLIC~1

[04/10/2007|20:42] C:\DOCUME~1\ADMINI~1\APPLIC~1\3M
[23/10/2005|00:15] C:\DOCUME~1\ADMINI~1\APPLIC~1\ACAMPREF
[27/05/2009|19:10] C:\DOCUME~1\ADMINI~1\APPLIC~1\Adobe
[25/06/2006|19:36] C:\DOCUME~1\ADMINI~1\APPLIC~1\AdobeUM
[23/07/2006|18:56] C:\DOCUME~1\ADMINI~1\APPLIC~1\Ahead
[21/05/2009|19:12] C:\DOCUME~1\ADMINI~1\APPLIC~1\Anuman Interactive
[10/10/2009|23:21] C:\DOCUME~1\ADMINI~1\APPLIC~1\Apple Computer
[31/08/2007|18:17] C:\DOCUME~1\ADMINI~1\APPLIC~1\ArcSoft
[15/08/2005|14:12] C:\DOCUME~1\ADMINI~1\APPLIC~1\Atari
[05/05/2009|21:07] C:\DOCUME~1\ADMINI~1\APPLIC~1\Azureus
[28/01/2005|17:18] C:\DOCUME~1\ADMINI~1\APPLIC~1\CoreCodec
[16/05/2005|16:15] C:\DOCUME~1\ADMINI~1\APPLIC~1\Creative
[11/09/2007|19:59] C:\DOCUME~1\ADMINI~1\APPLIC~1\DivX
[01/12/2009|22:02] C:\DOCUME~1\ADMINI~1\APPLIC~1\dvdcss
[03/11/2007|10:59] C:\DOCUME~1\ADMINI~1\APPLIC~1\eBay
[29/12/2007|16:50] C:\DOCUME~1\ADMINI~1\APPLIC~1\EBP
[30/04/2009|20:38] C:\DOCUME~1\ADMINI~1\APPLIC~1\eMule
[26/10/2008|19:23] C:\DOCUME~1\ADMINI~1\APPLIC~1\Facebook
[07/05/2008|18:36] C:\DOCUME~1\ADMINI~1\APPLIC~1\funkitron
[30/04/2009|21:04] C:\DOCUME~1\ADMINI~1\APPLIC~1\GetRightToGo
[05/07/2006|23:36] C:\DOCUME~1\ADMINI~1\APPLIC~1\Google
[24/05/2009|21:57] C:\DOCUME~1\ADMINI~1\APPLIC~1\gtk-2.0
[27/01/2005|19:40] C:\DOCUME~1\ADMINI~1\APPLIC~1\Help
[08/05/2007|22:11] C:\DOCUME~1\ADMINI~1\APPLIC~1\HP
[28/07/2008|21:58] C:\DOCUME~1\ADMINI~1\APPLIC~1\ICQ
[24/01/2009|15:09] C:\DOCUME~1\ADMINI~1\APPLIC~1\id Software
[27/01/2005|07:56] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[24/05/2009|21:41] C:\DOCUME~1\ADMINI~1\APPLIC~1\Image Zone Express
[26/12/2007|15:42] C:\DOCUME~1\ADMINI~1\APPLIC~1\ImgBurn
[16/02/2008|14:15] C:\DOCUME~1\ADMINI~1\APPLIC~1\Inventivio
[05/01/2008|12:34] C:\DOCUME~1\ADMINI~1\APPLIC~1\Lavasoft
[17/08/2006|16:25] C:\DOCUME~1\ADMINI~1\APPLIC~1\Leadertech
[06/02/2005|15:12] C:\DOCUME~1\ADMINI~1\APPLIC~1\Macromedia
[29/07/2008|12:48] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microgaming
[07/05/2008|18:32] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[17/06/2008|21:59] C:\DOCUME~1\ADMINI~1\APPLIC~1\Mozilla
[18/05/2007|20:10] C:\DOCUME~1\ADMINI~1\APPLIC~1\MSN6
[05/05/2007|17:34] C:\DOCUME~1\ADMINI~1\APPLIC~1\MusicIP
[20/03/2006|20:14] C:\DOCUME~1\ADMINI~1\APPLIC~1\NCH Swift Sound
[12/05/2009|20:17] C:\DOCUME~1\ADMINI~1\APPLIC~1\OpenOffice.org
[07/05/2009|20:48] C:\DOCUME~1\ADMINI~1\APPLIC~1\OpenOffice.org2
[07/01/2008|17:21] C:\DOCUME~1\ADMINI~1\APPLIC~1\PC Tools
[21/01/2009|21:12] C:\DOCUME~1\ADMINI~1\APPLIC~1\PIFreePC
[29/09/2007|18:20] C:\DOCUME~1\ADMINI~1\APPLIC~1\Printer Info Cache
[07/02/2005|19:53] C:\DOCUME~1\ADMINI~1\APPLIC~1\Real
[11/02/2007|21:19] C:\DOCUME~1\ADMINI~1\APPLIC~1\SecondLife
[01/10/2009|21:13] C:\DOCUME~1\ADMINI~1\APPLIC~1\Skype
[27/12/2006|23:32] C:\DOCUME~1\ADMINI~1\APPLIC~1\Snapfish
[24/02/2005|18:38] C:\DOCUME~1\ADMINI~1\APPLIC~1\Sun
[31/10/2005|11:17] C:\DOCUME~1\ADMINI~1\APPLIC~1\Talkback
[02/03/2009|21:19] C:\DOCUME~1\ADMINI~1\APPLIC~1\teamspeak2
[27/01/2005|19:56] C:\DOCUME~1\ADMINI~1\APPLIC~1\Thunderbird
[11/10/2008|10:19] C:\DOCUME~1\ADMINI~1\APPLIC~1\TMP
[02/12/2009|19:30] C:\DOCUME~1\ADMINI~1\APPLIC~1\uTorrent
[01/12/2009|22:04] C:\DOCUME~1\ADMINI~1\APPLIC~1\vlc
[11/11/2007|18:57] C:\DOCUME~1\ADMINI~1\APPLIC~1\WholeSecurity
[06/04/2008|16:48] C:\DOCUME~1\ADMINI~1\APPLIC~1\Xfire

[23/01/2005|18:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[26/01/2005|08:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AVG7
[26/01/2005|21:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BVRP Software
[05/12/2004|18:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink
[16/12/2004|07:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
[01/11/2004|14:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
[26/11/2004|14:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[15/12/2004|22:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN Messenger 7.0.0425
[03/11/2004|15:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN6
[25/12/2004|20:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[26/11/2004|16:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy

[10/10/2009|15:07] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[10/05/2009|20:22] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\{7972B2E5-3E09-4E5E-81B7-FE5819D6772F}
[27/05/2009|19:09] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Adobe
[14/01/2006|11:45] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Ahead
[10/10/2009|23:19] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Apple
[10/10/2009|15:05] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Apple Computer
[23/06/2008|20:30] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Avg8
[12/05/2007|19:25] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\BOONTY
[25/05/2009|21:49] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\BVRP Software
[23/02/2005|20:01] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\CyberLink
[03/11/2007|10:59] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\eBay
[29/12/2007|16:58] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\EBP
[25/05/2009|22:01] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\FLEXnet
[31/03/2007|11:21] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Google
[24/08/2009|21:29] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Google Updater
[08/05/2007|17:26] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\HP
[27/11/2008|13:18] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\HP Product Assistant
[01/10/2009|21:24] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\id Software
[13/07/2008|21:28] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Lavasoft
[29/01/2005|21:17] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Macrovision
[26/03/2009|21:07] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Microsoft
[29/12/2006|11:26] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\mpDRM
[18/05/2007|20:09] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\MSN6
[26/11/2008|19:06] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\MumboJumbo
[30/12/2006|16:22] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\pdf995
[31/03/2007|22:42] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\pixelStorm
[07/01/2008|17:13] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Prevx
[30/11/2009|22:21] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\QuestService
[29/01/2005|18:54] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\SecTaskMan
[16/05/2007|18:38] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Skype
[18/02/2009|21:43] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Spybot - Search & Destroy
[27/03/2009|22:19] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\TEMP
[26/11/2008|19:06] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Trymedia
[28/06/2006|19:41] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Windows Genuine Advantage
[14/11/2007|15:12] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\WLInstaller

[31/10/2004|18:58] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[27/01/2005|07:49] C:\DOCUME~1\DEFAUL~1.WIN\APPLIC~1\Microsoft

[05/01/2005|08:00] C:\DOCUME~1\LOCALS~1\APPLIC~1\AVG7
[05/01/2005|23:50] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[23/06/2008|20:28] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Microsoft

[05/01/2005|23:50] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

[23/06/2008|20:28] C:\DOCUME~1\NETWOR~1.AUT\APPLIC~1\Microsoft

[23/01/2005|18:30] C:\DOCUME~1\POMDAM~1\APPLIC~1\Adobe
[12/01/2005|22:22] C:\DOCUME~1\POMDAM~1\APPLIC~1\AVG7
[10/11/2004|19:18] C:\DOCUME~1\POMDAM~1\APPLIC~1\Azureus
[01/11/2004|13:41] C:\DOCUME~1\POMDAM~1\APPLIC~1\CoreCodec
[09/11/2004|23:16] C:\DOCUME~1\POMDAM~1\APPLIC~1\Creative
[01/11/2004|13:26] C:\DOCUME~1\POMDAM~1\APPLIC~1\CyberLink
[05/12/2004|17:56] C:\DOCUME~1\POMDAM~1\APPLIC~1\DVD Shrink
[05/12/2004|18:49] C:\DOCUME~1\POMDAM~1\APPLIC~1\dvdcss
[18/11/2004|22:36] C:\DOCUME~1\POMDAM~1\APPLIC~1\FileMaker
[04/12/2004|17:02] C:\DOCUME~1\POMDAM~1\APPLIC~1\funkitron
[31/10/2004|19:24] C:\DOCUME~1\POMDAM~1\APPLIC~1\Help
[01/11/2004|22:42] C:\DOCUME~1\POMDAM~1\APPLIC~1\ICQ
[31/10/2004|19:03] C:\DOCUME~1\POMDAM~1\APPLIC~1\Identities
[01/11/2004|11:53] C:\DOCUME~1\POMDAM~1\APPLIC~1\InterTrust
[26/11/2004|14:21] C:\DOCUME~1\POMDAM~1\APPLIC~1\Lavasoft
[01/11/2004|17:43] C:\DOCUME~1\POMDAM~1\APPLIC~1\Macromedia
[12/01/2005|20:46] C:\DOCUME~1\POMDAM~1\APPLIC~1\Microsoft
[01/11/2004|14:12] C:\DOCUME~1\POMDAM~1\APPLIC~1\Microsoft Web Folders
[03/11/2004|15:53] C:\DOCUME~1\POMDAM~1\APPLIC~1\MSN6
[24/11/2004|21:15] C:\DOCUME~1\POMDAM~1\APPLIC~1\Real
[01/11/2004|14:18] C:\DOCUME~1\POMDAM~1\APPLIC~1\Sun
[24/12/2004|14:34] C:\DOCUME~1\POMDAM~1\APPLIC~1\WholeSecurity

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[27/11/2009 12:22][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[04/12/2009 21:49][--a------] C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[04/12/2009 22:32][--a------] C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[04/12/2009 22:32][--a------] C:\WINDOWS\tasks\Google Software Updater.job
[04/12/2009 21:41][--a------] C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-343818398-1647877149-725345543-500UA.job
[02/12/2009 07:41][--a------] C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-343818398-1647877149-725345543-500Core.job
[02/12/2009 20:00][--a------] C:\WINDOWS\tasks\HPpromotions journeysoftware.job
[04/12/2009 22:31][--ah-----] C:\WINDOWS\tasks\SA.DAT
[28/08/2001 13:00][-r-h-c---] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[04/10/2007|20:40] C:\Program Files\3M
[12/10/2005|22:08] C:\Program Files\a2
[22/10/2005|12:10] C:\Program Files\a2 Free
[02/04/2005|19:37] C:\Program Files\ACE Mega CoDecS Pack
[25/05/2009|21:58] C:\Program Files\Adobe
[25/05/2009|21:54] C:\Program Files\Adobe Media Player
[07/05/2008|18:35] C:\Program Files\Ahead
[23/06/2008|22:04] C:\Program Files\Alwil Software
[10/10/2009|15:03] C:\Program Files\Apple Software Update
[11/10/2008|10:22] C:\Program Files\ASUS
[04/01/2005|22:44] C:\Program Files\ATI Technologies
[28/08/2009|12:37] C:\Program Files\Audacity
[30/11/2009|22:18] C:\Program Files\Automated Content Enhancer
[17/04/2007|19:37] C:\Program Files\AviSynth 2.5
[10/11/2004|20:46] C:\Program Files\AvRack
[26/05/2009|18:30] C:\Program Files\Azureus
[11/02/2006|13:35] C:\Program Files\Balloon Blast
[17/04/2007|19:39] C:\Program Files\BatchDPG
[05/01/2008|23:58] C:\Program Files\Bubble Ice Age
[29/04/2007|18:05] C:\Program Files\Common Files
[30/11/2009|22:18] C:\Program Files\Content Management Wizard
[16/05/2005|16:30] C:\Program Files\Creative
[20/02/2005|22:20] C:\Program Files\Cucusoft
[30/11/2009|22:18] C:\Program Files\Customized Platform Advancer
[23/02/2005|20:00] C:\Program Files\CyberLink
[24/11/2006|17:37] C:\Program Files\DAEMON Tools
[17/02/2007|23:51] C:\Program Files\Digitale Huehnerjagd
[01/11/2004|23:50] C:\Program Files\directx
[26/03/2009|21:38] C:\Program Files\DivX
[17/12/2006|20:26] C:\Program Files\DOSBox-0.65
[20/11/2005|19:12] C:\Program Files\D-Tools
[26/03/2009|21:38] C:\Program Files\e-Carte Bleue Banque Populaire
[16/06/2008|14:31] C:\Program Files\eMule
[14/11/2007|21:54] C:\Program Files\ffdshow
[25/05/2009|21:54] C:\Program Files\Fichiers communs
[26/03/2009|21:38] C:\Program Files\FlashGet
[30/11/2009|23:05] C:\Program Files\Gameztar Toolbar
[10/11/2004|19:57] C:\Program Files\Gigabyte
[24/08/2009|21:29] C:\Program Files\Google
[07/01/2008|23:06] C:\Program Files\Hitman Pro
[03/12/2009|21:24] C:\Program Files\HomePlayer
[27/11/2008|13:19] C:\Program Files\HP
[26/12/2007|14:45] C:\Program Files\ImgBurn
[06/03/2005|22:25] C:\Program Files\IMSI
[11/01/2009|21:02] C:\Program Files\InstallShield Installation Information
[11/10/2008|10:14] C:\Program Files\Intel
[12/10/2005|22:03] C:\Program Files\InterMute
[24/05/2009|21:51] C:\Program Files\Internet Explorer
[10/10/2009|15:06] C:\Program Files\iPod
[04/01/2009|12:33] C:\Program Files\IrfanView
[10/10/2009|15:07] C:\Program Files\iTunes
[19/12/2005|20:45] C:\Program Files\IZArc
[04/12/2009|21:28] C:\Program Files\Java
[30/12/2006|16:13] C:\Program Files\JawsSystems
[07/05/2009|20:51] C:\Program Files\JRE
[13/07/2008|21:27] C:\Program Files\Lavasoft
[26/05/2009|18:30] C:\Program Files\Lecteur CANALPLAY
[11/10/2008|09:54] C:\Program Files\Marvell
[15/04/2005|21:14] C:\Program Files\MatroskaProp
[11/11/2004|01:08] C:\Program Files\Meaya
[26/03/2009|21:38] C:\Program Files\Messenger
[27/05/2008|17:29] C:\Program Files\MGS FF Helper
[12/11/2009|21:43] C:\Program Files\Microsoft
[08/02/2005|19:11] C:\Program Files\microsoft frontpage
[01/11/2004|11:20] C:\Program Files\Microsoft Hardware
[01/11/2004|14:15] C:\Program Files\Microsoft Office
[01/11/2004|14:13] C:\Program Files\Microsoft Visual Studio
[08/07/2007|19:40] C:\Program Files\Montparnasse multimedia
[26/03/2009|21:38] C:\Program Files\Movie Maker
[04/12/2009|22:33] C:\Program Files\Mozilla Firefox
[07/05/2008|18:35] C:\Program Files\Mozilla Thunderbird
[24/05/2009|21:54] C:\Program Files\MSBuild
[18/05/2007|20:10] C:\Program Files\MSN
[31/10/2004|18:55] C:\Program Files\MSN Gaming Zone
[14/11/2007|15:16] C:\Program Files\MSN Messenger
[14/11/2007|21:52] C:\Program Files\MSXML 4.0
[24/05/2009|21:50] C:\Program Files\MSXML 6.0
[14/11/2007|21:55] C:\Program Files\MUSK Codec Pack v5
[04/12/2009|22:32] C:\Program Files\Navilog1
[14/11/2007|21:54] C:\Program Files\NCH Swift Sound
[26/07/2006|00:18] C:\Program Files\NetMeeting
[07/05/2008|18:35] C:\Program Files\omniformat
[14/11/2007|21:55] C:\Program Files\On2 Technologies
[15/04/2007|19:34] C:\Program Files\OpenOffice.org 2.0
[21/01/2008|19:09] C:\Program Files\OpenOffice.org 2.2
[07/05/2009|20:51] C:\Program Files\OpenOffice.org 2.3
[07/05/2009|20:51] C:\Program Files\OpenOffice.org 3
[17/12/2006|00:16] C:\Program Files\Outlook Express
[25/05/2009|21:50] C:\Program Files\Paint.NET
[20/11/2005|18:36] C:\Program Files\PartyPoker
[31/03/2007|11:22] C:\Program Files\PDF Editeur 2
[17/02/2007|23:58] C:\Program Files\pdf995
[08/05/2007|15:43] C:\Program Files\Philips
[17/02/2007|23:53] C:\Program Files\PhotoEdit995
[18/09/2009|13:30] C:\Program Files\PKR
[01/12/2009|20:06] C:\Program Files\QuestService
[10/10/2009|15:05] C:\Program Files\QuickTime
[25/05/2009|21:51] C:\Program Files\Radio Fr Solo
[06/10/2007|10:02] C:\Program Files\Radio net FR
[11/10/2008|09:59] C:\Program Files\Realtek
[17/01/2006|20:04] C:\Program Files\RealVNC
[24/05/2009|21:54] C:\Program Files\Reference Assemblies
[15/01/2006|00:00] C:\Program Files\ReflexiveArcade
[16/12/2007|18:11] C:\Program Files\Riva FLV Encoder 2.0
[31/10/2004|18:57] C:\Program Files\Services en ligne
[16/05/2007|18:38] C:\Program Files\Skype
[27/02/2005|12:33] C:\Program Files\SoftCAD
[16/02/2008|14:15] C:\Program Files\Speak-A-Message
[01/12/2009|21:57] C:\Program Files\Spybot - Search & Destroy
[07/01/2008|20:45] C:\Program Files\Spyware Doctor
[07/01/2008|17:24] C:\Program Files\SpywareBlaster
[02/03/2009|21:19] C:\Program Files\Teamspeak2_RC2
[13/05/2008|11:01] C:\Program Files\T‚l‚chargement PHOTOWAYS
[30/11/2009|22:18] C:\Program Files\Textual Content Provider
[12/10/2008|20:00] C:\Program Files\totalcmd
[04/12/2009|22:17] C:\Program Files\trend micro
[04/12/2004|17:02] C:\Program Files\Trymedia
[31/10/2004|19:02] C:\Program Files\Uninstall Information
[20/01/2009|13:36] C:\Program Files\Universal Document Converter
[10/05/2009|18:04] C:\Program Files\uTorrent
[09/02/2005|20:53] C:\Program Files\videofixer
[14/11/2007|22:05] C:\Program Files\VideoLAN
[17/08/2006|09:40] C:\Program Files\Virtools Web Player 3.5
[30/11/2009|22:18] C:\Program Files\Web Search Operator
[12/11/2004|17:09] C:\Program Files\Webteh
[12/03/2005|20:21] C:\Program Files\WIDCOMM
[15/01/2007|23:18] C:\Program Files\WiFiConnector
[20/08/2009|21:08] C:\Program Files\Winamp
[26/03/2009|21:09] C:\Program Files\Windows Live
[26/03/2009|21:09] C:\Program Files\Windows Live SkyDrive
[03/02/2007|20:33] C:\Program Files\Windows Media Connect 2
[17/02/2007|21:03] C:\Program Files\Windows Media Player
[26/07/2006|00:18] C:\Program Files\Windows NT
[28/01/2005|12:36] C:\Program Files\WindowsUpdate
[22/02/2005|22:33] C:\Program Files\WinRAR
[21/02/2009|21:59] C:\Program Files\WinSCP
[10/02/2005|19:34] C:\Program Files\WinZip
[31/10/2004|18:59] C:\Program Files\xerox
[06/04/2008|16:16] C:\Program Files\Xfire
[07/04/2007|12:53] C:\Program Files\Xing
[16/12/2007|17:32] C:\Program Files\Xvid
[04/12/2009|22:20] C:\Program Files\ZHPDiag

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[26/05/2009|20:11] C:\Program Files\Fichiers communs\Adobe
[25/05/2009|21:54] C:\Program Files\Fichiers communs\Adobe AIR
[31/10/2006|08:25] C:\Program Files\Fichiers communs\Ahead
[10/10/2009|15:06] C:\Program Files\Fichiers communs\Apple
[08/05/2007|15:44] C:\Program Files\Fichiers communs\ArcSoft
[12/05/2007|19:25] C:\Program Files\Fichiers communs\BOONTY Shared
[29/12/2006|11:26] C:\Program Files\Fichiers communs\fluxDVD
[08/05/2007|17:21] C:\Program Files\Fichiers communs\Hewlett-Packard
[22/09/2007|09:12] C:\Program Files\Fichiers communs\HP
[10/12/2006|12:36] C:\Program Files\Fichiers communs\InstallShield
[16/11/2006|20:36] C:\Program Files\Fichiers communs\Java
[25/05/2009|21:42] C:\Program Files\Fichiers communs\Macrovision Shared
[26/03/2009|21:10] C:\Program Files\Fichiers communs\Microsoft Shared
[29/04/2007|18:05] C:\Program Files\Fichiers communs\Motorola Shared
[29/12/2006|11:26] C:\Program Files\Fichiers communs\mpDRM
[31/10/2004|18:56] C:\Program Files\Fichiers communs\MSSoap
[18/02/2007|19:44] C:\Program Files\Fichiers communs\Real
[30/08/2007|20:06] C:\Program Files\Fichiers communs\Skype
[08/05/2007|15:44] C:\Program Files\Fichiers communs\SPC500NC
[31/10/2004|18:50] C:\Program Files\Fichiers communs\SpeechEngines
[16/12/2007|17:51] C:\Program Files\Fichiers communs\SWF Studio
[17/12/2006|00:16] C:\Program Files\Fichiers communs\System
[26/03/2009|21:07] C:\Program Files\Fichiers communs\Windows Live
[14/11/2007|15:14] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[18/02/2007|19:44] C:\Program Files\Fichiers communs\xing shared

--------------------\\ Process

( 52 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE

--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-12-04 22:28:16
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-12-04 22:37:17
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 1845

--------------------\\ Recherche d'autres infections

--------------------\\ Cracks & Keygens ..

C:\DOCUME~1\ADMINI~1\Favoris\Favoris\Crack
C:\DOCUME~1\ADMINI~1\Favoris\Favoris\Crack\.AppleSyncInfo
C:\DOCUME~1\ADMINI~1\Favoris\Favoris\Crack\F R E E L I N E.url
C:\DOCUME~1\ADMINI~1\Favoris\Favoris\Crack\GameCopyWorld Mirrors.url
C:\DOCUME~1\ADMINI~1\Favoris\Favoris\Crack\Really Cracks.url
C:\DOCUME~1\ADMINI~1\Favoris\Favoris\Crack\REFERAT.COM.url

[F:33][D:3]-> C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp
[F:351][D:0]-> C:\DOCUME~1\ADMINI~1\Cookies
[F:3091][D:4]-> C:\DOCUME~1\ADMINI~1\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 04/12/2009|22:40 - Option : [2]

--------------------\\ Fin du rapport a 22:40:46

pomdamour22 Messages postés 9 Date d'inscription vendredi 4 décembre 2009 Statut Membre Dernière intervention 5 décembre 2009
4 déc. 2009 à 22:42

rapport navilog :

Fix Navipromo version 4.0.5 commencé le 04/12/2009 22:28:13,62

!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!

Outil exécuté depuis C:\Program Files\navilog1

Mise à jour le 10.11.2009 à 18h00 par IL-MAFIOSO

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
X86-based PC ( Multiprocessor Free : Processeur Intel Pentium III Xeon )
BIOS : BIOS Date: 06/19/08 17:02:36 Ver: 08.00.12
USER : Administrateur ( Administrator )
BOOT : Normal boot

Antivirus : avast! antivirus 4.8.1368 [VPS 091204-0] 4.8.1368 (Not Activated)

A:\ (USB)
C:\ (Local Disk) - NTFS - Total:24 Go (Free:3 Go)
D:\ (CD or DVD)
E:\ (Local Disk) - NTFS - Total:44 Go (Free:17 Go)
F:\ (Local Disk) - NTFS - Total:45 Go (Free:1 Go)
G:\ (Local Disk) - NTFS - Total:48 Go (Free:31 Go)
H:\ (Local Disk) - NTFS - Total:184 Go (Free:127 Go)
M:\ (CD or DVD)
N:\ (CD or DVD)

Recherche executée en mode normal

Nettoyage exécuté au redémarrage de l'ordinateur

C:\WINDOWS\pack.epk supprimé !
c:\docume~1\admini~1\locals~1\applic~1\shkwciuily.dat supprimé !
c:\docume~1\admini~1\locals~1\applic~1\shkwciuily_nav.dat supprimé !
c:\docume~1\admini~1\locals~1\applic~1\shkwciuily_navps.dat supprimé !

Nettoyage contenu C:\WINDOWS\Temp effectué !
Nettoyage contenu C:\Documents and Settings\Administrateur\locals~1\Temp effectué !

*** Sauvegarde du Registre vers dossier Safebackup ***

sauvegarde du Registre réalisée avec succès !

*** Nettoyage Registre ***

Nettoyage Registre Ok

Certificat Egroup supprimé !
Certificat OOO-Favorit supprimé !

*** Scan terminé 04/12/2009 22:32:44,75 ***

pomdamour22 Messages postés 9 Date d'inscription vendredi 4 décembre 2009 Statut Membre Dernière intervention 5 décembre 2009
4 déc. 2009 à 23:23

le scan de Malwarebyte's nest toujours pas fini
ça fait 38 minutes qu'il tourne mais jimagine que ça prends au moins une heure,
je pourrais tenvoyer le rapport demain ?
Merci beaucoup pour ton aide

Réponse 5 / 6

Xplode Messages postés 8820 Date d'inscription vendredi 21 août 2009 Statut Contributeur sécurité Dernière intervention 2 juillet 2015 726
5 déc. 2009 à 06:44

Pas de soucis, j'attend tes deux rapports ( Lop S&D et Malwarebyte's )

pomdamour22 Messages postés 9 Date d'inscription vendredi 4 décembre 2009 Statut Membre Dernière intervention 5 décembre 2009
5 déc. 2009 à 10:19

et voici le rapport malwarebyte's

Malwarebytes' Anti-Malware 1.42
Version de la base de données: 3296
Windows 5.1.2600 Service Pack 2
Internet Explorer 6.0.2900.2180

05/12/2009 10:14:50
mbam-log-2009-12-05 (10-14-50).txt

Type de recherche: Examen complet (C:\|E:\|F:\|G:\|H:\|)
Eléments examinés: 306148
Temps écoulé: 1 hour(s), 26 minute(s), 5 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 6
Clé(s) du Registre infectée(s): 47
Valeur(s) du Registre infectée(s): 4
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 44
Fichier(s) infecté(s): 169

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
C:\Program Files\Web Search Operator\3.1.0.1840\WSOCommon.dll (Adware.Agent) -> Delete on reboot.
C:\Program Files\Web Search Operator\3.1.0.1840\FF\components\WSOFFAddOn.dll (Adware.Agent) -> Delete on reboot.
C:\Program Files\Automated Content Enhancer\4.1.0.5190\ACECommon.dll (Adware.Agent) -> Delete on reboot.
C:\Program Files\Automated Content Enhancer\4.1.0.5190\FF\components\ACEFFAddOn.dll (Adware.Agent) -> Delete on reboot.
C:\Program Files\Customized Platform Advancer\3.1.0.1630\CPACommon.dll (Adware.Agent) -> Delete on reboot.
C:\Program Files\Customized Platform Advancer\3.1.0.1630\FF\components\CPAFFAddOn.dll (Adware.Agent) -> Delete on reboot.

Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\explorerbar.cmw (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{f5b8c69c-9b45-4a6a-9380-df225c546ae7} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{629cd6c2-e4c5-4554-aeb8-12e4e2cd40ff} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{b72681c0-a222-4b21-a0e2-53a5a5ca3d41} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{b72681c0-a222-4b21-a0e2-53a5a5ca3d41} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b72681c0-a222-4b21-a0e2-53a5a5ca3d41} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\explorerbar.cmw.1 (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\explorerbar.tcp (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{2a743834-05f4-4ed4-8a1c-41332b10ac0c} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{1081d532-7de4-40bd-b912-388fa6b27c78} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{cac89ff9-34a9-4431-8cfe-292a47f843bc} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Explorer\Bars\{cac89ff9-34a9-4431-8cfe-292a47f843bc} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{cac89ff9-34a9-4431-8cfe-292a47f843bc} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{cac89ff9-34a9-4431-8cfe-292a47f843bc} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\explorerbar.tcp.1 (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{6160f76a-1992-4b17-a32d-0c706d159105} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{1d74e9dd-8987-448b-b2cb-67fff2b8a932} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{565dd573-549e-4da9-8cd7-6ae3df25339a} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1d74e9dd-8987-448b-b2cb-67fff2b8a932} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1d74e9dd-8987-448b-b2cb-67fff2b8a932} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3de88beb-f271-484a-ba71-01d30f439f0c} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{50ad41d2-b1f0-47cc-9ea7-395355eaeebd} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{8ceb185e-81a5-46d3-bc20-c555d605afbd} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a72522ba-9ff3-4c83-abc6-9b476728a396} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c5762628-ae15-4ca6-96c4-b00dd17f3419} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{d062e03e-65ca-49e4-9b15-31938ba98922} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{ac5ab953-ed25-4f9c-87f0-b086b0178ffa} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Explorer\Bars\{b72681c0-a222-4b21-a0e2-53a5a5ca3d411} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{42c7c39f-3128-4a17-bdb7-91c46032b5b9} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{eb4a577d-bcad-4b1c-8af2-9a74b8dd3431} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{86227d9c-0efe-4f8a-aa55-30386a3f5686} (Adware.ISTBar) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{d45817b8-3ead-4d1d-8fca-ec63a8e35de2} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{42c7c39f-3128-4a17-bdb7-91c46032b5b9} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{eb4a577d-bcad-4b1c-8af2-9a74b8dd3431} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\questservice (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Setup.exe (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Web Search Operator (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\AppDataLow\SOFTWARE\Internet Today (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Automated Content Enhancer (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Customized Platform Advancer (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\QuestService (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Web Search Operator (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\QuestService Service (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Automated Content Enhancer (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Customized Platform Advancer (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Trymedia Systems (Adware.TryMedia) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{d45817b8-3ead-4d1d-8fca-ec63a8e35de2} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Firefox\Extensions\{8141440e-08f0-4339-9959-5c31c6a69f23} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Firefox\Extensions\{e63605fc-d583-4c81-867f-9457bdb3ea1b} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Firefox\Extensions\{e889f097-b0be-471b-89ad-b86b6f04b506} (Adware.DoubleD) -> Quarantined and deleted successfully.

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2} (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\Data (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Data (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Skins (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator\3.1.0.1840 (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator\3.1.0.1840\FF (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator\3.1.0.1840\FF\chrome (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator\3.1.0.1840\FF\components (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Textual Content Provider (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Textual Content Provider\1.1.0.1610 (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Textual Content Provider\1.1.0.1610\data (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Textual Content Provider\1.1.0.1610\for_anti_av (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Textual Content Provider\1.1.0.1610\for_anti_av\1.1.0.1610 (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5190 (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5190\Data (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5190\FF (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5190\FF\chrome (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5190\FF\chrome\content (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5190\FF\components (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1630 (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1630\Data (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1630\FF (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1630\FF\chrome (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1630\FF\chrome\content (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1630\FF\components (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Content Management Wizard (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Content Management Wizard\1.1.0.1870 (Adware.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users.WINDOWS\Application Data\QuestService (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Program Files\QuestService (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Automated Content Enhancer (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5190 (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Customized Platform Advancer (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1630 (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Internet Today (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Textual Content Provider (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Textual Content Provider\1.1.0.1610 (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Textual Content Provider\1.1.0.1610\Data (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Web Search Operator (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Web Search Operator\3.1.0.1840 (Adware.DoubleD) -> Quarantined and deleted successfully.

Fichier(s) infecté(s):
C:\Program Files\Content Management Wizard\1.1.0.1870\CMWIE.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Textual Content Provider\1.1.0.1610\TCPIE.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5190\ACEIEAddOn.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1630\CPAIEAddOn.dll (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\masm32\examples\dialogs\SIMPLE\SIMPLE.EXE (Malware.Packer) -> Quarantined and deleted successfully.
C:\Program Files\QuestService\questservice.exe (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Program Files\QuestService\uninstall.exe (Adware.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Mozilla\Firefox\Profiles\2j6kgvn6.pomdamour\Cache\55B4B867d01 (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\C9AB0HEF\itsetup[1].exe (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\C9ABSHIV\wsosetup[1].exe (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\C9ABSHIV\productinfo[1].dll (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\KP234XUN\acesetup[1].exe (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\S16V4DAF\cpasetup[1].exe (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\Content.IE5\S16V4DAF\Qstserv[1].exe (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\productinfo.dll (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users.WINDOWS\Application Data\QuestService\questservice127.exe (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{30A8CB13-29B3-4A2F-B4C0-2DCAE3F3CC01}\RP1550\A0187201.exe (Adware.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{30A8CB13-29B3-4A2F-B4C0-2DCAE3F3CC01}\RP1550\A0187204.rbf (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{30A8CB13-29B3-4A2F-B4C0-2DCAE3F3CC01}\RP1550\A0187218.exe (Adware.DoubleD) -> Quarantined and deleted successfully.
G:\Application\virus\Navilog1.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\bg.jpg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\CurrentVersion.xml (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\ExtractZipFile.zip (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\icon.ico (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\Setup.exe (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\tdf.dat (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\tdf.zip (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\Data\ProductInfo.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Data\Module_Logo.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Data\Module_Option.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Data\Module_RSS.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Data\Module_Search.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Data\Module_Smiley_Config.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Data\Module_WebDropdown_01.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Data\Module_WebDropdown_02.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Data\Module_WebDropdown_03.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Data\Module_WebDropdown_04.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Data\Module_WebDropdown_05.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Data\Module_WebDropdown_06.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Data\pixel.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Data\ProductInfo.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Data\profile.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Data\SearchEngineList.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Data\tbcore.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Data\ToolbarLayout.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Data\UpdateCentre.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Data\UpdateCentreBk.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\About.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\Component_ComboBox.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\Module_Logo.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\Module_Option.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\Module_Option_Menu.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\Module_RSS.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\Module_RSS.png (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\Module_RSS_Menu.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\Module_RSS_Menu.png (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\Module_Search.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\Module_WebDropdown_01.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\Module_WebDropdown_01.png (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\Module_WebDropdown_02.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\Module_WebDropdown_02.png (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\Module_WebDropdown_03.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\Module_WebDropdown_03.png (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\Module_WebDropdown_04.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\Module_WebDropdown_04.png (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\Module_WebDropdown_05.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\Module_WebDropdown_05.png (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\Module_WebDropdown_06.mg (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Icons\Module_WebDropdown_06.png (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Skins\myskin1.skf (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Skins\myskin2.skf (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Skins\myskin3.skf (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Temporary Internet Files\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2}\TDF\Skins\myskin4.skf (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator\3.1.0.1840\unins000.dat (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator\3.1.0.1840\unins000.exe (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator\3.1.0.1840\WSO.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator\3.1.0.1840\WSOCommon.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator\3.1.0.1840\FF\chrome.manifest (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator\3.1.0.1840\FF\install.rdf (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator\3.1.0.1840\FF\chrome\WSOAddOn.jar (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator\3.1.0.1840\FF\components\WSOFFAddOn.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator\3.1.0.1840\FF\components\WSOFFAddOn.xpt (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator\3.1.0.1840\FF\components\WSOFFHelperComponent.js (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Textual Content Provider\1.1.0.1610\unins000.dat (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Textual Content Provider\1.1.0.1610\unins000.exe (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Textual Content Provider\1.1.0.1610\data\pxtmpdata.mx (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Textual Content Provider\1.1.0.1610\data\TP_Config.mx (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Textual Content Provider\1.1.0.1610\data\TP_Data.mx (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Textual Content Provider\1.1.0.1610\data\TP_DomainExcludeList.mx (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Textual Content Provider\1.1.0.1610\for_anti_av\1.1.0.1610\TCPIE.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5190\ACECommon.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5190\ACEIEAddOnSub.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5190\ACEIEAddOnSubL.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5190\unins000.dat (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5190\unins000.exe (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5190\Data\config.md (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5190\FF\chrome.manifest (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5190\FF\install.rdf (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5190\FF\chrome\ACEAddOn.jar (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5190\FF\chrome\content\ACEAddOn.js (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5190\FF\chrome\content\ACEAddOn.xul (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5190\FF\components\ACEFFAddOn.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5190\FF\components\ACEFFAddOn.xpt (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5190\FF\components\ACEFFHelperComponent.js (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1630\CPACommon.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1630\CPAIEAddOnSub.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1630\CPAIEAddOnSubL.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1630\unins000.dat (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1630\unins000.exe (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1630\Data\config.md (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1630\FF\chrome.manifest (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1630\FF\install.rdf (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1630\FF\chrome\CPAAddOn.jar (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1630\FF\chrome\content\CPAAddOn.js (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1630\FF\chrome\content\CPAAddOn.xul (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1630\FF\components\CPAFFAddOn.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1630\FF\components\CPAFFAddOn.xpt (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1630\FF\components\CPAFFHelperComponent.js (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Content Management Wizard\1.1.0.1870\cmwsh.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Content Management Wizard\1.1.0.1870\config.mx (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Content Management Wizard\1.1.0.1870\data.mx (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Content Management Wizard\1.1.0.1870\exclude.mx (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Content Management Wizard\1.1.0.1870\MatchingData.zd5 (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Content Management Wizard\1.1.0.1870\pxtmpdata.mx (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Content Management Wizard\1.1.0.1870\unins000.dat (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Content Management Wizard\1.1.0.1870\unins000.exe (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\QuestService\questservice.dll (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5190\config.md (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5190\ipdata.md (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5190\NP_20091130-221806.078.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5190\NP_20091130-221903.468.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5190\NP_20091201-214702.265.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5190\NP_20091201-220004.906.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5190\NP_20091201-220525.781.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5190\NP_20091202-195124.578.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5190\NP_20091203-212537.781.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5190\NP_20091204-213056.296.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5190\NP_20091204-213059.812.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5190\NP_20091204-214527.718.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5190\NP_20091204-214625.796.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5190\NP_20091204-215140.296.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5190\NP_20091204-220243.750.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5190\NP_20091204-221506.093.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5190\NP_20091204-223328.109.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5190\rstatus.md (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1630\config.md (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1630\HJHP_20091130-221810.390.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1630\HJHP_20091130-221903.703.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1630\HJHP_20091201-214703.734.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1630\HJHP_20091201-220004.937.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1630\HJHP_20091201-220525.796.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1630\HJHP_20091202-195124.718.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1630\HJHP_20091203-212537.906.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1630\HJHP_20091204-213056.312.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1630\HJHP_20091204-213059.812.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1630\HJHP_20091204-214527.750.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1630\HJHP_20091204-214625.812.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1630\HJHP_20091204-215140.343.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1630\HJHP_20091204-220243.765.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1630\HJHP_20091204-221506.125.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1630\HJHP_20091204-223328.187.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1630\ipdata.md (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1630\rstatus.md (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Textual Content Provider\1.1.0.1610\Data\TP_Config.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Textual Content Provider\1.1.0.1610\Data\TP_Data.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Textual Content Provider\1.1.0.1610\Data\TP_DomainExcludeList.mx (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Web Search Operator\3.1.0.1840\config.md (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Program Files\Mozilla Firefox\searchPlugins\questservice127.xml (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Program Files\SETUP.EXE (Rogue.Installer) -> Quarantined and deleted successfully.

pomdamour22 Messages postés 9 Date d'inscription vendredi 4 décembre 2009 Statut Membre Dernière intervention 5 décembre 2009
5 déc. 2009 à 10:20

et maintenant je redemarre le pc comme demander par Malwarebyte's

Réponse 6 / 6

Xplode Messages postés 8820 Date d'inscription vendredi 21 août 2009 Statut Contributeur sécurité Dernière intervention 2 juillet 2015 726
5 déc. 2009 à 11:34

Bien, passe maintenant à Lop S&D

pomdamour22 Messages postés 9 Date d'inscription vendredi 4 décembre 2009 Statut Membre Dernière intervention 5 décembre 2009
5 déc. 2009 à 20:20

--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
X86-based PC ( Multiprocessor Free : Processeur Intel Pentium III Xeon )
BIOS : BIOS Date: 06/19/08 17:02:36 Ver: 08.00.12
USER : Administrateur ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1368 [VPS 091205-0] 4.8.1368 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:24 Go (Free:3 Go)
D:\ (CD or DVD)
E:\ (Local Disk) - NTFS - Total:44 Go (Free:17 Go)
F:\ (Local Disk) - NTFS - Total:45 Go (Free:1 Go)
G:\ (Local Disk) - NTFS - Total:48 Go (Free:31 Go)
H:\ (Local Disk) - NTFS - Total:184 Go (Free:127 Go)
M:\ (CD or DVD)
N:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [2] ( 05/12/2009|19:25 )

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

--------------------\\ Listing des dossiers dans APPLIC~1

[04/10/2007|20:42] C:\DOCUME~1\ADMINI~1\APPLIC~1\3M
[23/10/2005|00:15] C:\DOCUME~1\ADMINI~1\APPLIC~1\ACAMPREF
[27/05/2009|19:10] C:\DOCUME~1\ADMINI~1\APPLIC~1\Adobe
[25/06/2006|19:36] C:\DOCUME~1\ADMINI~1\APPLIC~1\AdobeUM
[23/07/2006|18:56] C:\DOCUME~1\ADMINI~1\APPLIC~1\Ahead
[21/05/2009|19:12] C:\DOCUME~1\ADMINI~1\APPLIC~1\Anuman Interactive
[10/10/2009|23:21] C:\DOCUME~1\ADMINI~1\APPLIC~1\Apple Computer
[31/08/2007|18:17] C:\DOCUME~1\ADMINI~1\APPLIC~1\ArcSoft
[15/08/2005|14:12] C:\DOCUME~1\ADMINI~1\APPLIC~1\Atari
[05/05/2009|21:07] C:\DOCUME~1\ADMINI~1\APPLIC~1\Azureus
[28/01/2005|17:18] C:\DOCUME~1\ADMINI~1\APPLIC~1\CoreCodec
[16/05/2005|16:15] C:\DOCUME~1\ADMINI~1\APPLIC~1\Creative
[11/09/2007|19:59] C:\DOCUME~1\ADMINI~1\APPLIC~1\DivX
[01/12/2009|22:02] C:\DOCUME~1\ADMINI~1\APPLIC~1\dvdcss
[03/11/2007|10:59] C:\DOCUME~1\ADMINI~1\APPLIC~1\eBay
[29/12/2007|16:50] C:\DOCUME~1\ADMINI~1\APPLIC~1\EBP
[30/04/2009|20:38] C:\DOCUME~1\ADMINI~1\APPLIC~1\eMule
[26/10/2008|19:23] C:\DOCUME~1\ADMINI~1\APPLIC~1\Facebook
[07/05/2008|18:36] C:\DOCUME~1\ADMINI~1\APPLIC~1\funkitron
[30/04/2009|21:04] C:\DOCUME~1\ADMINI~1\APPLIC~1\GetRightToGo
[05/07/2006|23:36] C:\DOCUME~1\ADMINI~1\APPLIC~1\Google
[24/05/2009|21:57] C:\DOCUME~1\ADMINI~1\APPLIC~1\gtk-2.0
[27/01/2005|19:40] C:\DOCUME~1\ADMINI~1\APPLIC~1\Help
[08/05/2007|22:11] C:\DOCUME~1\ADMINI~1\APPLIC~1\HP
[28/07/2008|21:58] C:\DOCUME~1\ADMINI~1\APPLIC~1\ICQ
[24/01/2009|15:09] C:\DOCUME~1\ADMINI~1\APPLIC~1\id Software
[27/01/2005|07:56] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[24/05/2009|21:41] C:\DOCUME~1\ADMINI~1\APPLIC~1\Image Zone Express
[26/12/2007|15:42] C:\DOCUME~1\ADMINI~1\APPLIC~1\ImgBurn
[16/02/2008|14:15] C:\DOCUME~1\ADMINI~1\APPLIC~1\Inventivio
[05/01/2008|12:34] C:\DOCUME~1\ADMINI~1\APPLIC~1\Lavasoft
[17/08/2006|16:25] C:\DOCUME~1\ADMINI~1\APPLIC~1\Leadertech
[06/02/2005|15:12] C:\DOCUME~1\ADMINI~1\APPLIC~1\Macromedia
[04/12/2009|22:43] C:\DOCUME~1\ADMINI~1\APPLIC~1\Malwarebytes
[29/07/2008|12:48] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microgaming
[07/05/2008|18:32] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[17/06/2008|21:59] C:\DOCUME~1\ADMINI~1\APPLIC~1\Mozilla
[18/05/2007|20:10] C:\DOCUME~1\ADMINI~1\APPLIC~1\MSN6
[05/05/2007|17:34] C:\DOCUME~1\ADMINI~1\APPLIC~1\MusicIP
[20/03/2006|20:14] C:\DOCUME~1\ADMINI~1\APPLIC~1\NCH Swift Sound
[12/05/2009|20:17] C:\DOCUME~1\ADMINI~1\APPLIC~1\OpenOffice.org
[07/05/2009|20:48] C:\DOCUME~1\ADMINI~1\APPLIC~1\OpenOffice.org2
[07/01/2008|17:21] C:\DOCUME~1\ADMINI~1\APPLIC~1\PC Tools
[21/01/2009|21:12] C:\DOCUME~1\ADMINI~1\APPLIC~1\PIFreePC
[29/09/2007|18:20] C:\DOCUME~1\ADMINI~1\APPLIC~1\Printer Info Cache
[07/02/2005|19:53] C:\DOCUME~1\ADMINI~1\APPLIC~1\Real
[11/02/2007|21:19] C:\DOCUME~1\ADMINI~1\APPLIC~1\SecondLife
[01/10/2009|21:13] C:\DOCUME~1\ADMINI~1\APPLIC~1\Skype
[27/12/2006|23:32] C:\DOCUME~1\ADMINI~1\APPLIC~1\Snapfish
[24/02/2005|18:38] C:\DOCUME~1\ADMINI~1\APPLIC~1\Sun
[31/10/2005|11:17] C:\DOCUME~1\ADMINI~1\APPLIC~1\Talkback
[02/03/2009|21:19] C:\DOCUME~1\ADMINI~1\APPLIC~1\teamspeak2
[27/01/2005|19:56] C:\DOCUME~1\ADMINI~1\APPLIC~1\Thunderbird
[11/10/2008|10:19] C:\DOCUME~1\ADMINI~1\APPLIC~1\TMP
[02/12/2009|19:30] C:\DOCUME~1\ADMINI~1\APPLIC~1\uTorrent
[01/12/2009|22:04] C:\DOCUME~1\ADMINI~1\APPLIC~1\vlc
[11/11/2007|18:57] C:\DOCUME~1\ADMINI~1\APPLIC~1\WholeSecurity
[06/04/2008|16:48] C:\DOCUME~1\ADMINI~1\APPLIC~1\Xfire

[23/01/2005|18:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[26/01/2005|08:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AVG7
[26/01/2005|21:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BVRP Software
[05/12/2004|18:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink
[16/12/2004|07:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
[01/11/2004|14:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
[26/11/2004|14:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[15/12/2004|22:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN Messenger 7.0.0425
[03/11/2004|15:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN6
[25/12/2004|20:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[26/11/2004|16:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy

[10/10/2009|15:07] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[10/05/2009|20:22] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\{7972B2E5-3E09-4E5E-81B7-FE5819D6772F}
[27/05/2009|19:09] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Adobe
[14/01/2006|11:45] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Ahead
[10/10/2009|23:19] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Apple
[10/10/2009|15:05] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Apple Computer
[23/06/2008|20:30] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Avg8
[12/05/2007|19:25] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\BOONTY
[25/05/2009|21:49] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\BVRP Software
[23/02/2005|20:01] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\CyberLink
[03/11/2007|10:59] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\eBay
[29/12/2007|16:58] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\EBP
[25/05/2009|22:01] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\FLEXnet
[31/03/2007|11:21] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Google
[24/08/2009|21:29] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Google Updater
[08/05/2007|17:26] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\HP
[27/11/2008|13:18] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\HP Product Assistant
[01/10/2009|21:24] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\id Software
[13/07/2008|21:28] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Lavasoft
[29/01/2005|21:17] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Macrovision
[04/12/2009|22:43] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Malwarebytes
[26/03/2009|21:07] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Microsoft
[29/12/2006|11:26] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\mpDRM
[18/05/2007|20:09] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\MSN6
[26/11/2008|19:06] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\MumboJumbo
[30/12/2006|16:22] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\pdf995
[31/03/2007|22:42] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\pixelStorm
[07/01/2008|17:13] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Prevx
[29/01/2005|18:54] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\SecTaskMan
[16/05/2007|18:38] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Skype
[18/02/2009|21:43] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Spybot - Search & Destroy
[27/03/2009|22:19] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\TEMP
[26/11/2008|19:06] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Trymedia
[28/06/2006|19:41] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Windows Genuine Advantage
[14/11/2007|15:12] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\WLInstaller

[31/10/2004|18:58] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[05/12/2009|16:50] C:\DOCUME~1\DEFAUL~1.WIN\APPLIC~1\Macromedia
[27/01/2005|07:49] C:\DOCUME~1\DEFAUL~1.WIN\APPLIC~1\Microsoft

[05/01/2005|08:00] C:\DOCUME~1\LOCALS~1\APPLIC~1\AVG7
[05/01/2005|23:50] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[23/06/2008|20:28] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Microsoft

[05/01/2005|23:50] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

[23/06/2008|20:28] C:\DOCUME~1\NETWOR~1.AUT\APPLIC~1\Microsoft

[23/01/2005|18:30] C:\DOCUME~1\POMDAM~1\APPLIC~1\Adobe
[12/01/2005|22:22] C:\DOCUME~1\POMDAM~1\APPLIC~1\AVG7
[10/11/2004|19:18] C:\DOCUME~1\POMDAM~1\APPLIC~1\Azureus
[01/11/2004|13:41] C:\DOCUME~1\POMDAM~1\APPLIC~1\CoreCodec
[09/11/2004|23:16] C:\DOCUME~1\POMDAM~1\APPLIC~1\Creative
[01/11/2004|13:26] C:\DOCUME~1\POMDAM~1\APPLIC~1\CyberLink
[05/12/2004|17:56] C:\DOCUME~1\POMDAM~1\APPLIC~1\DVD Shrink
[05/12/2004|18:49] C:\DOCUME~1\POMDAM~1\APPLIC~1\dvdcss
[18/11/2004|22:36] C:\DOCUME~1\POMDAM~1\APPLIC~1\FileMaker
[04/12/2004|17:02] C:\DOCUME~1\POMDAM~1\APPLIC~1\funkitron
[31/10/2004|19:24] C:\DOCUME~1\POMDAM~1\APPLIC~1\Help
[01/11/2004|22:42] C:\DOCUME~1\POMDAM~1\APPLIC~1\ICQ
[31/10/2004|19:03] C:\DOCUME~1\POMDAM~1\APPLIC~1\Identities
[01/11/2004|11:53] C:\DOCUME~1\POMDAM~1\APPLIC~1\InterTrust
[26/11/2004|14:21] C:\DOCUME~1\POMDAM~1\APPLIC~1\Lavasoft
[01/11/2004|17:43] C:\DOCUME~1\POMDAM~1\APPLIC~1\Macromedia
[12/01/2005|20:46] C:\DOCUME~1\POMDAM~1\APPLIC~1\Microsoft
[01/11/2004|14:12] C:\DOCUME~1\POMDAM~1\APPLIC~1\Microsoft Web Folders
[03/11/2004|15:53] C:\DOCUME~1\POMDAM~1\APPLIC~1\MSN6
[24/11/2004|21:15] C:\DOCUME~1\POMDAM~1\APPLIC~1\Real
[01/11/2004|14:18] C:\DOCUME~1\POMDAM~1\APPLIC~1\Sun
[24/12/2004|14:34] C:\DOCUME~1\POMDAM~1\APPLIC~1\WholeSecurity

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[27/11/2009 12:22][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[05/12/2009 18:49][--a------] C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[05/12/2009 10:23][--a------] C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[05/12/2009 12:20][--a------] C:\WINDOWS\tasks\Google Software Updater.job
[05/12/2009 18:41][--a------] C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-343818398-1647877149-725345543-500UA.job
[05/12/2009 07:41][--a------] C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-343818398-1647877149-725345543-500Core.job
[05/12/2009 16:00][--a------] C:\WINDOWS\tasks\HPpromotions journeysoftware.job
[05/12/2009 10:22][--ah-----] C:\WINDOWS\tasks\SA.DAT
[28/08/2001 13:00][-r-h-c---] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[04/10/2007|20:40] C:\Program Files\3M
[12/10/2005|22:08] C:\Program Files\a2
[22/10/2005|12:10] C:\Program Files\a2 Free
[02/04/2005|19:37] C:\Program Files\ACE Mega CoDecS Pack
[25/05/2009|21:58] C:\Program Files\Adobe
[25/05/2009|21:54] C:\Program Files\Adobe Media Player
[07/05/2008|18:35] C:\Program Files\Ahead
[23/06/2008|22:04] C:\Program Files\Alwil Software
[10/10/2009|15:03] C:\Program Files\Apple Software Update
[11/10/2008|10:22] C:\Program Files\ASUS
[04/01/2005|22:44] C:\Program Files\ATI Technologies
[28/08/2009|12:37] C:\Program Files\Audacity
[17/04/2007|19:37] C:\Program Files\AviSynth 2.5
[10/11/2004|20:46] C:\Program Files\AvRack
[26/05/2009|18:30] C:\Program Files\Azureus
[11/02/2006|13:35] C:\Program Files\Balloon Blast
[17/04/2007|19:39] C:\Program Files\BatchDPG
[05/01/2008|23:58] C:\Program Files\Bubble Ice Age
[29/04/2007|18:05] C:\Program Files\Common Files
[16/05/2005|16:30] C:\Program Files\Creative
[20/02/2005|22:20] C:\Program Files\Cucusoft
[23/02/2005|20:00] C:\Program Files\CyberLink
[24/11/2006|17:37] C:\Program Files\DAEMON Tools
[17/02/2007|23:51] C:\Program Files\Digitale Huehnerjagd
[01/11/2004|23:50] C:\Program Files\directx
[26/03/2009|21:38] C:\Program Files\DivX
[17/12/2006|20:26] C:\Program Files\DOSBox-0.65
[20/11/2005|19:12] C:\Program Files\D-Tools
[26/03/2009|21:38] C:\Program Files\e-Carte Bleue Banque Populaire
[16/06/2008|14:31] C:\Program Files\eMule
[14/11/2007|21:54] C:\Program Files\ffdshow
[25/05/2009|21:54] C:\Program Files\Fichiers communs
[26/03/2009|21:38] C:\Program Files\FlashGet
[30/11/2009|23:05] C:\Program Files\Gameztar Toolbar
[10/11/2004|19:57] C:\Program Files\Gigabyte
[05/12/2009|16:50] C:\Program Files\Google
[07/01/2008|23:06] C:\Program Files\Hitman Pro
[03/12/2009|21:24] C:\Program Files\HomePlayer
[27/11/2008|13:19] C:\Program Files\HP
[26/12/2007|14:45] C:\Program Files\ImgBurn
[06/03/2005|22:25] C:\Program Files\IMSI
[11/01/2009|21:02] C:\Program Files\InstallShield Installation Information
[11/10/2008|10:14] C:\Program Files\Intel
[12/10/2005|22:03] C:\Program Files\InterMute
[24/05/2009|21:51] C:\Program Files\Internet Explorer
[10/10/2009|15:06] C:\Program Files\iPod
[04/01/2009|12:33] C:\Program Files\IrfanView
[10/10/2009|15:07] C:\Program Files\iTunes
[19/12/2005|20:45] C:\Program Files\IZArc
[04/12/2009|21:28] C:\Program Files\Java
[30/12/2006|16:13] C:\Program Files\JawsSystems
[07/05/2009|20:51] C:\Program Files\JRE
[13/07/2008|21:27] C:\Program Files\Lavasoft
[26/05/2009|18:30] C:\Program Files\Lecteur CANALPLAY
[04/12/2009|22:43] C:\Program Files\Malwarebytes' Anti-Malware
[11/10/2008|09:54] C:\Program Files\Marvell
[15/04/2005|21:14] C:\Program Files\MatroskaProp
[11/11/2004|01:08] C:\Program Files\Meaya
[26/03/2009|21:38] C:\Program Files\Messenger
[27/05/2008|17:29] C:\Program Files\MGS FF Helper
[12/11/2009|21:43] C:\Program Files\Microsoft
[08/02/2005|19:11] C:\Program Files\microsoft frontpage
[01/11/2004|11:20] C:\Program Files\Microsoft Hardware
[01/11/2004|14:15] C:\Program Files\Microsoft Office
[01/11/2004|14:13] C:\Program Files\Microsoft Visual Studio
[08/07/2007|19:40] C:\Program Files\Montparnasse multimedia
[26/03/2009|21:38] C:\Program Files\Movie Maker
[05/12/2009|19:24] C:\Program Files\Mozilla Firefox
[07/05/2008|18:35] C:\Program Files\Mozilla Thunderbird
[24/05/2009|21:54] C:\Program Files\MSBuild
[18/05/2007|20:10] C:\Program Files\MSN
[31/10/2004|18:55] C:\Program Files\MSN Gaming Zone
[14/11/2007|15:16] C:\Program Files\MSN Messenger
[14/11/2007|21:52] C:\Program Files\MSXML 4.0
[24/05/2009|21:50] C:\Program Files\MSXML 6.0
[14/11/2007|21:55] C:\Program Files\MUSK Codec Pack v5
[04/12/2009|22:32] C:\Program Files\Navilog1
[14/11/2007|21:54] C:\Program Files\NCH Swift Sound
[26/07/2006|00:18] C:\Program Files\NetMeeting
[07/05/2008|18:35] C:\Program Files\omniformat
[14/11/2007|21:55] C:\Program Files\On2 Technologies
[15/04/2007|19:34] C:\Program Files\OpenOffice.org 2.0
[21/01/2008|19:09] C:\Program Files\OpenOffice.org 2.2
[07/05/2009|20:51] C:\Program Files\OpenOffice.org 2.3
[07/05/2009|20:51] C:\Program Files\OpenOffice.org 3
[17/12/2006|00:16] C:\Program Files\Outlook Express
[25/05/2009|21:50] C:\Program Files\Paint.NET
[20/11/2005|18:36] C:\Program Files\PartyPoker
[31/03/2007|11:22] C:\Program Files\PDF Editeur 2
[17/02/2007|23:58] C:\Program Files\pdf995
[08/05/2007|15:43] C:\Program Files\Philips
[17/02/2007|23:53] C:\Program Files\PhotoEdit995
[18/09/2009|13:30] C:\Program Files\PKR
[10/10/2009|15:05] C:\Program Files\QuickTime
[25/05/2009|21:51] C:\Program Files\Radio Fr Solo
[06/10/2007|10:02] C:\Program Files\Radio net FR
[11/10/2008|09:59] C:\Program Files\Realtek
[17/01/2006|20:04] C:\Program Files\RealVNC
[24/05/2009|21:54] C:\Program Files\Reference Assemblies
[15/01/2006|00:00] C:\Program Files\ReflexiveArcade
[16/12/2007|18:11] C:\Program Files\Riva FLV Encoder 2.0
[31/10/2004|18:57] C:\Program Files\Services en ligne
[16/05/2007|18:38] C:\Program Files\Skype
[27/02/2005|12:33] C:\Program Files\SoftCAD
[16/02/2008|14:15] C:\Program Files\Speak-A-Message
[01/12/2009|21:57] C:\Program Files\Spybot - Search & Destroy
[07/01/2008|20:45] C:\Program Files\Spyware Doctor
[07/01/2008|17:24] C:\Program Files\SpywareBlaster
[02/03/2009|21:19] C:\Program Files\Teamspeak2_RC2
[13/05/2008|11:01] C:\Program Files\T‚l‚chargement PHOTOWAYS
[12/10/2008|20:00] C:\Program Files\totalcmd
[04/12/2009|22:17] C:\Program Files\trend micro
[04/12/2004|17:02] C:\Program Files\Trymedia
[31/10/2004|19:02] C:\Program Files\Uninstall Information
[20/01/2009|13:36] C:\Program Files\Universal Document Converter
[10/05/2009|18:04] C:\Program Files\uTorrent
[09/02/2005|20:53] C:\Program Files\videofixer
[14/11/2007|22:05] C:\Program Files\VideoLAN
[17/08/2006|09:40] C:\Program Files\Virtools Web Player 3.5
[12/11/2004|17:09] C:\Program Files\Webteh
[12/03/2005|20:21] C:\Program Files\WIDCOMM
[15/01/2007|23:18] C:\Program Files\WiFiConnector
[20/08/2009|21:08] C:\Program Files\Winamp
[26/03/2009|21:09] C:\Program Files\Windows Live
[26/03/2009|21:09] C:\Program Files\Windows Live SkyDrive
[03/02/2007|20:33] C:\Program Files\Windows Media Connect 2
[17/02/2007|21:03] C:\Program Files\Windows Media Player
[26/07/2006|00:18] C:\Program Files\Windows NT
[28/01/2005|12:36] C:\Program Files\WindowsUpdate
[22/02/2005|22:33] C:\Program Files\WinRAR
[21/02/2009|21:59] C:\Program Files\WinSCP
[10/02/2005|19:34] C:\Program Files\WinZip
[31/10/2004|18:59] C:\Program Files\xerox
[06/04/2008|16:16] C:\Program Files\Xfire
[07/04/2007|12:53] C:\Program Files\Xing
[16/12/2007|17:32] C:\Program Files\Xvid
[04/12/2009|22:20] C:\Program Files\ZHPDiag

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[26/05/2009|20:11] C:\Program Files\Fichiers communs\Adobe
[25/05/2009|21:54] C:\Program Files\Fichiers communs\Adobe AIR
[31/10/2006|08:25] C:\Program Files\Fichiers communs\Ahead
[10/10/2009|15:06] C:\Program Files\Fichiers communs\Apple
[08/05/2007|15:44] C:\Program Files\Fichiers communs\ArcSoft
[12/05/2007|19:25] C:\Program Files\Fichiers communs\BOONTY Shared
[29/12/2006|11:26] C:\Program Files\Fichiers communs\fluxDVD
[08/05/2007|17:21] C:\Program Files\Fichiers communs\Hewlett-Packard
[22/09/2007|09:12] C:\Program Files\Fichiers communs\HP
[10/12/2006|12:36] C:\Program Files\Fichiers communs\InstallShield
[16/11/2006|20:36] C:\Program Files\Fichiers communs\Java
[25/05/2009|21:42] C:\Program Files\Fichiers communs\Macrovision Shared
[26/03/2009|21:10] C:\Program Files\Fichiers communs\Microsoft Shared
[29/04/2007|18:05] C:\Program Files\Fichiers communs\Motorola Shared
[29/12/2006|11:26] C:\Program Files\Fichiers communs\mpDRM
[31/10/2004|18:56] C:\Program Files\Fichiers communs\MSSoap
[18/02/2007|19:44] C:\Program Files\Fichiers communs\Real
[30/08/2007|20:06] C:\Program Files\Fichiers communs\Skype
[08/05/2007|15:44] C:\Program Files\Fichiers communs\SPC500NC
[31/10/2004|18:50] C:\Program Files\Fichiers communs\SpeechEngines
[16/12/2007|17:51] C:\Program Files\Fichiers communs\SWF Studio
[17/12/2006|00:16] C:\Program Files\Fichiers communs\System
[26/03/2009|21:07] C:\Program Files\Fichiers communs\Windows Live
[14/11/2007|15:14] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[18/02/2007|19:44] C:\Program Files\Fichiers communs\xing shared

--------------------\\ Process

( 53 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE

--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-12-05 19:26:56
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 1845

--------------------\\ Recherche d'autres infections

--------------------\\ Cracks & Keygens ..

C:\DOCUME~1\ADMINI~1\Favoris\Favoris\Crack
C:\DOCUME~1\ADMINI~1\Favoris\Favoris\Crack\.AppleSyncInfo
C:\DOCUME~1\ADMINI~1\Favoris\Favoris\Crack\F R E E L I N E.url
C:\DOCUME~1\ADMINI~1\Favoris\Favoris\Crack\GameCopyWorld Mirrors.url
C:\DOCUME~1\ADMINI~1\Favoris\Favoris\Crack\Really Cracks.url
C:\DOCUME~1\ADMINI~1\Favoris\Favoris\Crack\REFERAT.COM.url

[F:37][D:3]-> C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp
[F:351][D:0]-> C:\DOCUME~1\ADMINI~1\Cookies
[F:3090][D:4]-> C:\DOCUME~1\ADMINI~1\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 04/12/2009|22:40 - Option : [2]
2 - "C:\Lop SD\LopR_2.txt" - 05/12/2009|19:30 - Option : [2]

--------------------\\ Fin du rapport a 19:30:14

Fenetre intempestive + "bonjour"

6 réponses

Discussions similaires