Trojan Horse impossible à supprimer!

Faanny -  
moment de grace Messages postés 30049 Statut Contributeur sécurité -
Bonjour,
mon antivirus Norton a détecter ce cheval de troie ( Trojan Horse ) Cependant je suis incapable de le supprimer...que faire?
A voir également:

85 réponses

Précédent
Réponse 21 / 85
Faanny
 
Malwarebytes' Anti-Malware 1.42
Version de la base de données: 3314
Windows 5.1.2600 Service Pack 3
Internet Explorer 7.0.5730.13

2009-12-08 07:08:55
mbam-log-2009-12-08 (07-08-55).txt

Type de recherche: Examen complet (C:\|D:\|F:\|)
Eléments examinés: 228502
Temps écoulé: 1 hour(s), 53 minute(s), 0 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 14
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 1
Fichier(s) infecté(s): 2

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\visualtool.pornpro_bho (Adware.PLayMP3z) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\visualtool.pornpro_bho.1 (Adware.PLayMP3z) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{624f9012-d73b-11dd-95af-61c156d89593} (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{f3a54897-9e68-b11e-a37a-4d1422ce9caa} (Adware.PLayMP3z) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{52cde0e4-d73b-11dd-9b90-fcc056d89593} (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{f3a54897-9e68-b11e-a37a-4d1422ce9caa} (Adware.PLayMP3z) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{2502bbd0-d73b-11dd-b4ec-cebf56d89593} (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{f3a54897-9e68-b11e-a37a-4d1422ce9caa} (Adware.PLayMP3z) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2502bbd0-d73b-11dd-b4ec-cebf56d89593} (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\aquaplay (Trojan.DNSChanger) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\{NSINAME} (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\fcn (Rogue.Residue) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\VB and VBA Program Settings\tm (Trojan.Downloader) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\TDSSserv.sys (Rootkit.TDSS) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
C:\Program Files\Angle Interactive\RD Platinum v5.0 (Rogue.RegistryDefender) -> Quarantined and deleted successfully.

Fichier(s) infecté(s):
C:\Program Files\Navilog1\gnc.exe (Trojan.Dropper) -> Quarantined and deleted successfully.
C:\Program Files\Angle Interactive\RD Platinum v5.0\report.csv (Rogue.RegistryDefender) -> Quarantined and deleted successfully.
0
Réponse 22 / 85
moment de grace Messages postés 30049 Statut Contributeur sécurité 2 274
 
ok

1) comment va le pc ?

2) il me manque toujours ca

rapport suppression ToolBar S&D

3) refais un nouveau RSITstp
0
Réponse 23 / 85
Faanny
 
-----------\\ ToolBar S&D 1.1.5 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) 4 CPU 3.00GHz )
BIOS : BIOS Date: 06/06/07 20:53:52 Ver: 08.00.10
USER : Roger ( Administrator )
BOOT : Normal boot
Antivirus : Norton Internet Security 16.0.0.125 (Activated)
Firewall : Norton Internet Security 16.0.0.125 (Activated)

"C:\ToolBar SD" ( MAJ : 26-08-2008|22:40 )
Option : [2] ( 2009-12-08| 7:11 )

-----------\\ Recherche de Fichiers / Dossiers ...


-----------\\ Extensions

(Roger) - {20a82645-c095-46ed-80e3-08825760534b} => chrome_user


-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\windows\\system32\\blank.htm"
"Start Page"="https://www.google.com/?gws_rd=ssl"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Default_Search_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
"Default_Search_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Local Page"="C:\\windows\\system32\\blank.htm"
"Start Page"="https://www.msn.com/fr-fr/"


--------------------\\ Recherche d'autres infections

--------------------\\ Cracks & Keygens ..

C:\DOCUME~1\Roger\Local Settings\Application Data\Microsoft\Messenger\fanny.desrochers@hotmail.com\Sharing Folders\coco.crack@hotmail.com
C:\DOCUME~1\Roger\Local Settings\Application Data\Microsoft\Messenger\fanny.desrochers@hotmail.com\Sharing Folders\coco.crack@hotmail.com\Thumbs.db
C:\DOCUME~1\Roger\Local Settings\Application Data\Microsoft\Messenger\fanny.desrochers@hotmail.com\SharingMetadata\coco.crack@hotmail.com
C:\DOCUME~1\Roger\Local Settings\Application Data\Microsoft\Messenger\fanny.desrochers@hotmail.com\SharingMetadata\coco.crack@hotmail.com\DFSR
C:\DOCUME~1\Roger\Local Settings\Application Data\Microsoft\Messenger\fanny.desrochers@hotmail.com\SharingMetadata\coco.crack@hotmail.com\_thumb.png
C:\DOCUME~1\Roger\Local Settings\Application Data\Microsoft\Messenger\fanny.desrochers@hotmail.com\SharingMetadata\coco.crack@hotmail.com\DFSR\ConflictDelete
C:\DOCUME~1\Roger\Local Settings\Application Data\Microsoft\Messenger\fanny.desrochers@hotmail.com\SharingMetadata\coco.crack@hotmail.com\DFSR\Deleted
C:\DOCUME~1\Roger\Local Settings\Application Data\Microsoft\Messenger\fanny.desrochers@hotmail.com\SharingMetadata\coco.crack@hotmail.com\DFSR\Installing
C:\DOCUME~1\Roger\Local Settings\Application Data\Microsoft\Messenger\fanny.desrochers@hotmail.com\SharingMetadata\coco.crack@hotmail.com\DFSR\Staging
C:\DOCUME~1\Roger\Local Settings\Application Data\Microsoft\Messenger\fanny.desrochers@hotmail.com\SharingMetadata\coco.crack@hotmail.com\DFSR\Staging\CS{16D33CAA-9279-1AD8-105A-3AAD98D67E99}


-----------\\ Fin du rapport a 7:12:31,10
0
Réponse 24 / 85
Faanny
 
1) Pas mal, j'ai encore le message de norton m'annonçant que Trojan Horse est sur mon PC. =S

2) C'est fait ! :)

3)

Logfile of random's system information tool 1.06 (written by random/random)
Run by Roger at 2009-12-08 07:33:00
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 5 GB (11%) free of 50 GB
Total RAM: 2039 MB (57% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 07:33:14, on 2009-12-08
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16915)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Norton Internet Security\Engine\16.7.2.11\ccSvcHst.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Norton Internet Security\Engine\16.5.0.135\ccSvcHst.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Fichiers communs\Logishrd\LQCVFX\COCIManager.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\CyberLink DVD Solution\Multimedia Launcher\PowerBar.exe
C:\Program Files\Logitech\Logitech Vid\vid.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\alaplaya\launcher\AlaplayaLauncher.exe
C:\Program Files\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatcher.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\System32\NOTEPAD.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\DOCUME~1\Roger\Bureau\RSIT.exe
C:\Program Files\trend micro\Roger.exe

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {0a452a47-c5a8-4854-a237-4b9b06b376f0} - (no file)
R3 - URLSearchHook: Free Lunch Design Toolbar - {57cc715d-37ca-44e4-9ec2-8c2cbddb25ec} - C:\Program Files\Free_Lunch_Design\tbFre1.dll
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: HP Print Clips - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (file missing)
O2 - BHO: Free Lunch Design Toolbar - {57cc715d-37ca-44e4-9ec2-8c2cbddb25ec} - C:\Program Files\Free_Lunch_Design\tbFre1.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Internet Security\Engine\16.5.0.135\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton Internet Security\Engine\16.5.0.135\IPSBHO.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\16.5.0.135\coIEPlg.dll
O3 - Toolbar: (no name) - {0a452a47-c5a8-4854-a237-4b9b06b376f0} - (no file)
O3 - Toolbar: Free Lunch Design Toolbar - {57cc715d-37ca-44e4-9ec2-8c2cbddb25ec} - C:\Program Files\Free_Lunch_Design\tbFre1.dll
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe" /hide
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [TrojanScanner] C:\Program Files\Trojan Remover\Trjscan.exe /boot
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Disk Cleaner] "C:\Program Files\Disk Cleaner\LaunchDiskCleaner.Exe" "C:\Program Files\Disk Cleaner\DiskCleaner.Exe" /boot
O4 - HKCU\..\Run: [Uniblue RegistryBooster 2009] C:\Program Files\Uniblue\RegistryBooster\RegistryBooster.exe /S
O4 - HKCU\..\Run: [PowerBar] "C:\Program Files\CyberLink DVD Solution\Multimedia Launcher\PowerBar.exe" /AtBootTime
O4 - HKCU\..\Run: [BitComet] C:\Program Files\BitComet\BitComet.exe /tray
O4 - HKCU\..\Run: [Logitech Vid] "C:\Program Files\Logitech\Logitech Vid\vid.exe" -bootmode
O4 - HKLM\..\Policies\Explorer\Run: [] 
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [] (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-20\..\RunOnce: [] (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [] (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [] (User 'Default user')
O4 - Startup: Alaplaya Launcher.lnk = C:\Program Files\alaplaya\launcher\AlaplayaLauncher.exe
O4 - Startup: Outil de détection de support Picture Motion Browser.lnk = C:\Program Files\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatcher.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Livre de reliures HP - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: Sélection intelligente HP - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w3/pr01/resources/MSNPUpld.cab
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - https://www.touslesdrivers.com/index.php?v_page=29
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://dl8-cdn-01.sun.com/s/ESD44/JSCDL/jdk/6u7/jinstall-6u7-windows-i586-jc.cab?e=1219616183961&h=e9a96b33d00a85a3dbf0d0c9729f9872/&filename=jinstall-6u7-windows-i586-jc.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O18 - Protocol: alaplaya - {60E6FD61-FA26-4706-BF07-C55B3A49E66C} - C:\WINDOWS\system32\alading.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: symres - {AA1061FE-6C41-421F-9344-69640C9732AB} - C:\Program Files\Norton Internet Security\Engine\16.5.0.135\coIEPlg.dll
O20 - Winlogon Notify: cfeddcfbaebfbdecb - C:\WINDOWS\system32\cfeddcfbaebfbdecb.dll (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Symantec IS Password Validation (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\isPwdSvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: Norton Internet Security - Symantec Corporation - C:\Program Files\Norton Internet Security\Engine\16.7.2.11\ccSvcHst.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 25 / 85
moment de grace Messages postés 30049 Statut Contributeur sécurité 2 274
 
effectivement, je le vois

{0a452a47-c5a8-4854-a237-4b9b06b376f0}
{57cc715d-37ca-44e4-9ec2-8c2cbddb25ec} - Free Lunch Design Toolbar - C:\Program Files\Free_Lunch_Design\tbFre1.dll [2009-07-07 2215960]


Téléchargez USBFIX de Chiquitine29, C_xx

http://pagesperso-orange.fr/NosTools/Chiquitine29/UsbFix.exe
ou
https://www.ionos.fr/?affiliate_id=77097

/!\ Utilisateur de vista et windows 7 :
ne pas oublier de désactiver Le contrôle des comptes utilisateurs
https://www.commentcamarche.net/faq/8343-vista-desactiver-l-uac

/!\ Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) susceptible d'avoir été infectées sans les ouvrir

• Double clic sur le raccourci UsbFix présent sur le bureau .

• Choisir l'option 1 (Recherche)
(d’autres options disponibles, voir le tutoriel).
• Laissez travailler l'outil.

• Ensuite postez le rapport UsbFix.txt qui apparaîtra.

• Note : Le rapport UsbFix.txt est sauvegardé a la racine du disque. ( C:\UsbFix.txt )

( CTRL+A Pour tout sélectionner , CTRL+C pour copier et CTRL+V pour coller )

• Note : "Process.exe", une composante de l'outil, est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.


• Tuto : http://pagesperso-orange.fr/NosTools/usbfix.html


0
Réponse 26 / 85
Faanny
 
############################## | UsbFix V6.059 |

User : Roger (Administrateurs) # ROGER-1C7DDBD06
Update on 01/12/2009 by Chiquitine29, C_XX & Chimay8
Start at: 08:03:10 | 2009-12-08
Website : http://pagesperso-orange.fr/NosTools/index.html
Contact : FindyKill.Contact@gmail.com

Intel(R) Pentium(R) 4 CPU 3.00GHz
Microsoft Windows XP Édition familiale (5.1.2600 32-bit) # Service Pack 3
Internet Explorer 7.0.5730.13
Windows Firewall Status : Enabled
AV : Norton Internet Security 16.0.0.125 [ Enabled | (!) Outdated ]
FW : Norton AntiVirus[ (!) Disabled ]2007
FW : Norton Internet Security[ Enabled ]16.0.0.125

A:\ -> Lecteur de disquettes 3 ½ pouces
C:\ -> Disque fixe local # 48,83 Go (5,11 Go free) # NTFS
D:\ -> Disque fixe local # 137,47 Go (112,39 Go free) # NTFS
E:\ -> Disque CD-ROM
F:\ -> Disque amovible
I:\ -> Disque CD-ROM
J:\ -> Disque CD-ROM

############################## | Processus actifs |

C:\WINDOWS\System32\smss.exe 964
C:\WINDOWS\system32\csrss.exe 1028
C:\WINDOWS\system32\winlogon.exe 1056
C:\WINDOWS\system32\services.exe 1104
C:\WINDOWS\system32\lsass.exe 1116
C:\WINDOWS\system32\svchost.exe 1280
C:\WINDOWS\system32\svchost.exe 1340
C:\WINDOWS\System32\svchost.exe 1488
C:\WINDOWS\system32\svchost.exe 1580
C:\WINDOWS\system32\svchost.exe 1776
C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe 1840
C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe 1924
C:\WINDOWS\system32\spoolsv.exe 2012
C:\WINDOWS\system32\svchost.exe 1004
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe 1244
C:\Program Files\Bonjour\mDNSResponder.exe 1288
C:\WINDOWS\system32\drivers\CDAC11BA.EXE 1412
C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe 1436
C:\WINDOWS\system32\svchost.exe 1604
C:\WINDOWS\system32\svchost.exe 1644
C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe 1808
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE 220
C:\WINDOWS\System32\svchost.exe 336
C:\Program Files\Norton Internet Security\Engine\16.7.2.11\ccSvcHst.exe 360
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe 920
C:\WINDOWS\System32\svchost.exe 1444
C:\WINDOWS\system32\svchost.exe 1704
C:\Program Files\Norton Internet Security\Engine\16.5.0.135\ccSvcHst.exe 2608
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe 3304
C:\Program Files\DAEMON Tools\daemon.exe 3312
C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe 3588
C:\Program Files\iTunes\iTunesHelper.exe 3656
C:\Program Files\Fichiers communs\Logishrd\LQCVFX\COCIManager.exe 3816
C:\WINDOWS\system32\ctfmon.exe 3832
C:\Program Files\CyberLink DVD Solution\Multimedia Launcher\PowerBar.exe 3840
C:\Program Files\Logitech\Logitech Vid\vid.exe 4032
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe 680
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe 304
C:\Program Files\alaplaya\launcher\AlaplayaLauncher.exe 708
C:\Program Files\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatcher.exe 772
C:\Program Files\iPod\bin\iPodService.exe 3344
C:\WINDOWS\System32\alg.exe 196
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe 884
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe 3332
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe 1832
C:\Program Files\Windows Live\Messenger\msnmsgr.exe 1768
C:\WINDOWS\explorer.exe 348
C:\Program Files\Mozilla Firefox\firefox.exe 3828
C:\WINDOWS\system32\wbem\wmiprvse.exe 2096

################## | Fichiers # Dossiers infectieux |

C:\WINDOWS\System32\autorun.inf
C:\DOCUME~1\Roger\LOCALS~1\Temp\VP6.reg

################## | Spyware.OnlineGames |


################## | Registre # Clés infectieuses |


################## | Registre # Mountpoints2 |


################## | Cracks / Keygens / Serials |


################## | ! Fin du rapport # UsbFix V6.059 ! |
0
Réponse 27 / 85
moment de grace Messages postés 30049 Statut Contributeur sécurité 2 274
 
● Relance UsbFix

● Dans le menu principale cette fois choisit l'option2

Le menu démarrer et les icônes vont à nouveau disparaître.. c'est normal.

Si un message te demande de redémarrer l'ordinateur fais le ...

● Au redémarrage, le fix se relance... laisses l'opération s'effectuer.

● Le bloc note s'ouvre avec un rapport, envoies le dans la prochaine réponse


puis refais un nouveau RSIT juste le log


0
Réponse 28 / 85
Faanny
 
############################## | UsbFix V6.059 |

User : Roger (Administrateurs) # ROGER-1C7DDBD06
Update on 01/12/2009 by Chiquitine29, C_XX & Chimay8
Start at: 08:22:18 | 2009-12-08
Website : http://pagesperso-orange.fr/NosTools/index.html
Contact : FindyKill.Contact@gmail.com

Intel(R) Pentium(R) 4 CPU 3.00GHz
Microsoft Windows XP Édition familiale (5.1.2600 32-bit) # Service Pack 3
Internet Explorer 7.0.5730.13
Windows Firewall Status : Enabled
AV : Norton Internet Security 16.0.0.125 [ Enabled | (!) Outdated ]
FW : Norton AntiVirus[ (!) Disabled ]2007
FW : Norton Internet Security[ Enabled ]16.0.0.125

A:\ -> Lecteur de disquettes 3 ½ pouces
C:\ -> Disque fixe local # 48,83 Go (5,14 Go free) # NTFS
D:\ -> Disque fixe local # 137,47 Go (112,39 Go free) # NTFS
E:\ -> Disque CD-ROM
F:\ -> Disque amovible
I:\ -> Disque CD-ROM
J:\ -> Disque CD-ROM

############################## | Processus actifs |

C:\WINDOWS\System32\smss.exe 968
C:\WINDOWS\system32\csrss.exe 1032
C:\WINDOWS\system32\winlogon.exe 1056
C:\WINDOWS\system32\services.exe 1112
C:\WINDOWS\system32\lsass.exe 1124
C:\WINDOWS\system32\svchost.exe 1296
C:\WINDOWS\system32\svchost.exe 1340
C:\WINDOWS\System32\svchost.exe 1464
C:\WINDOWS\system32\logonui.exe 1472
C:\WINDOWS\system32\svchost.exe 1548
C:\WINDOWS\system32\svchost.exe 1700
C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe 1812
C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe 1880
C:\WINDOWS\system32\spoolsv.exe 1976
C:\WINDOWS\system32\svchost.exe 928
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe 988
C:\Program Files\Bonjour\mDNSResponder.exe 1016
C:\WINDOWS\system32\drivers\CDAC11BA.EXE 1028
C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe 1172
C:\WINDOWS\system32\svchost.exe 1412
C:\WINDOWS\system32\svchost.exe 1452
C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe 1620
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE 1916
C:\WINDOWS\System32\svchost.exe 2044
C:\Program Files\Norton Internet Security\Engine\16.7.2.11\ccSvcHst.exe 216
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe 888
C:\WINDOWS\System32\svchost.exe 1560
C:\WINDOWS\system32\svchost.exe 1684
C:\WINDOWS\Explorer.EXE 2208
C:\Program Files\Norton Internet Security\Engine\16.5.0.135\ccSvcHst.exe 2684
C:\WINDOWS\system32\wuauclt.exe 3368
C:\WINDOWS\system32\wbem\wmiprvse.exe 3484

################## | Fichiers # Dossiers infectieux |

Supprimé ! C:\WINDOWS\System32\autorun.inf
Supprimé ! C:\DOCUME~1\Roger\LOCALS~1\Temp\VP6.reg

################## | Spyware.OnlineGames |


################## | Registre # Clés infectieuses |


################## | Registre # Mountpoints2 |


################## | Listing des fichiers présent |

[2009-04-11 09:58|--a------|0] C:\AILog.txt
[2008-06-28 15:08|--a------|0] C:\AUTOEXEC.BAT
[2008-10-18 22:05|--a------|172] C:\bar.emf
[2009-04-11 20:11|---hs----|216] C:\boot.ini
[2004-08-05 07:00|-rahs----|4952] C:\Bootfont.bin
[2009-12-07 20:58|--a------|1022] C:\cleannavi.txt
[2008-06-28 15:08|--a------|0] C:\CONFIG.SYS
[2008-11-23 19:04|--a------|0] C:\DBS.TXT
[2008-10-05 21:35|--a------|4658] C:\DrvInst.log
[2008-06-28 15:08|-rahs----|0] C:\IO.SYS
[2008-12-21 10:11|--a------|1274] C:\log.udt
[2008-11-09 17:58|--a------|12867] C:\lopR.txt
[2008-06-28 15:08|-rahs----|0] C:\MSDOS.SYS
[2008-11-09 17:43|--a------|571060] C:\Navilog1.exe
[2008-11-09 17:44|--a------|630] C:\Navilog1.lnk
[2004-08-05 07:00|-rahs----|47564] C:\NTDETECT.COM
[2008-06-28 08:39|-rahs----|252240] C:\ntldr
[?|?|?] C:\pagefile.sys
[2009-01-19 07:33|--a------|3019] C:\rapport.txt
[2008-06-28 15:20|--a------|499] C:\RHDSetup.log
[2008-07-01 07:25|--a------|31864] C:\symlcsv1.exe
[2009-12-08 07:12|--a------|3232] C:\TB.txt
[2009-03-15 21:18|--ahs----|62464] C:\Thumbs.db
[2009-03-02 10:59|--a------|594] C:\updatedatfix.log
[2009-12-08 08:29|--a------|4042] C:\UsbFix.txt
[2008-10-28 16:18|--a------|2778] C:\WACKY.CFG
[2008-10-28 16:18|--a------|96] C:\WACKY.DTT
[2008-10-28 16:19|--a------|6624] C:\WACKY2.HI
[2008-10-28 16:19|--a------|3600] C:\WACKY2.TIM
[2009-05-07 21:21|--a------|63476] D:\3226_83445196258_613191258_2863852_2301514_n.jpg
[2009-05-10 19:31|--a------|30770] D:\angel_batista.jpg
[2009-03-16 13:36|--a------|1347346] D:\Apr2005_d3dx9_25_x64.cab
[2009-03-16 13:36|--a------|1078954] D:\Apr2005_d3dx9_25_x86.cab
[2009-03-16 13:36|--a------|1397830] D:\Apr2006_d3dx9_30_x64.cab
[2009-03-16 13:36|--a------|1115221] D:\Apr2006_d3dx9_30_x86.cab
[2009-03-16 13:36|--a------|916422] D:\Apr2006_MDX1_x86.cab
[2009-03-16 13:36|--a------|4162622] D:\Apr2006_MDX1_x86_Archive.cab
[2009-03-16 13:36|--a------|179125] D:\Apr2006_XACT_x64.cab
[2009-03-16 13:36|--a------|133095] D:\Apr2006_XACT_x86.cab
[2009-03-16 13:36|--a------|87093] D:\Apr2006_xinput_x64.cab
[2009-03-16 13:36|--a------|46002] D:\Apr2006_xinput_x86.cab
[2009-03-16 13:36|--a------|698612] D:\APR2007_d3dx10_33_x64.cab
[2009-03-16 13:36|--a------|695857] D:\APR2007_d3dx10_33_x86.cab
[2009-03-16 13:36|--a------|1607358] D:\APR2007_d3dx9_33_x64.cab
[2009-03-16 13:36|--a------|1606039] D:\APR2007_d3dx9_33_x86.cab
[2009-03-16 13:36|--a------|195758] D:\APR2007_XACT_x64.cab
[2009-03-16 13:36|--a------|151225] D:\APR2007_XACT_x86.cab
[2009-03-16 13:36|--a------|96817] D:\APR2007_xinput_x64.cab
[2009-03-16 13:36|--a------|53302] D:\APR2007_xinput_x86.cab
[2009-03-16 13:36|--a------|1350534] D:\Aug2005_d3dx9_27_x64.cab
[2009-03-16 13:36|--a------|1077644] D:\Aug2005_d3dx9_27_x86.cab
[2009-03-16 13:36|--a------|182895] D:\AUG2006_XACT_x64.cab
[2009-03-16 13:36|--a------|137227] D:\AUG2006_XACT_x86.cab
[2009-03-16 13:36|--a------|87134] D:\AUG2006_xinput_x64.cab
[2009-03-16 13:36|--a------|46050] D:\AUG2006_xinput_x86.cab
[2009-03-16 13:36|--a------|852278] D:\AUG2007_d3dx10_35_x64.cab
[2009-03-16 13:36|--a------|796859] D:\AUG2007_d3dx10_35_x86.cab
[2009-03-16 13:36|--a------|1800152] D:\AUG2007_d3dx9_35_x64.cab
[2009-03-16 13:36|--a------|1708144] D:\AUG2007_d3dx9_35_x86.cab
[2009-03-16 13:36|--a------|198088] D:\AUG2007_XACT_x64.cab
[2009-03-16 13:36|--a------|153004] D:\AUG2007_XACT_x86.cab
[2009-03-16 13:36|--a------|867604] D:\Aug2008_d3dx10_39_x64.cab
[2009-03-16 13:36|--a------|849159] D:\Aug2008_d3dx10_39_x86.cab
[2009-03-16 13:36|--a------|1794076] D:\Aug2008_d3dx9_39_x64.cab
[2009-03-16 13:36|--a------|1464664] D:\Aug2008_d3dx9_39_x86.cab
[2009-03-16 13:36|--a------|121824] D:\Aug2008_XACT_x64.cab
[2009-03-16 13:36|--a------|93004] D:\Aug2008_XACT_x86.cab
[2009-03-16 13:36|--a------|271360] D:\Aug2008_XAudio_x64.cab
[2009-03-16 13:36|--a------|269842] D:\Aug2008_XAudio_x86.cab
[2009-03-16 13:36|--a------|1155483] D:\BDANT.cab
[2009-03-16 13:36|--a------|975148] D:\BDAXP.cab
[2009-04-04 16:09|--a------|1925664] D:\BitTorrent-6.1.2.exe
[2009-05-10 19:26|--a------|26668] D:\debra_morgan.jpg
[2009-03-16 13:36|--a------|1357976] D:\Dec2005_d3dx9_28_x64.cab
[2009-03-16 13:36|--a------|1079456] D:\Dec2005_d3dx9_28_x86.cab
[2009-03-16 13:36|--a------|212799] D:\DEC2006_d3dx10_00_x64.cab
[2009-03-16 13:36|--a------|191720] D:\DEC2006_d3dx10_00_x86.cab
[2009-03-16 13:36|--a------|1571154] D:\DEC2006_d3dx9_32_x64.cab
[2009-03-16 13:36|--a------|1574376] D:\DEC2006_d3dx9_32_x86.cab
[2009-03-16 13:36|--a------|192475] D:\DEC2006_XACT_x64.cab
[2009-03-16 13:36|--a------|145591] D:\DEC2006_XACT_x86.cab
[2009-05-10 19:23|--a------|20620] D:\dexter.jpg
[2009-05-10 19:22|--a------|29844] D:\dexter1.jpg
[2009-04-04 16:13|--a------|575] D:\DivX Converter.lnk
[2009-04-04 16:12|--a------|633] D:\DivX Movies.lnk
[2009-04-04 16:12|--a------|19389512] D:\DivXInstaller.exe
[2009-03-16 13:36|--a------|1691464] D:\dsetup32.dll
[2009-03-16 13:36|--a------|44444] D:\dxdllreg_x86.cab
[2009-03-16 13:36|--a------|13264160] D:\dxnt.cab
[2009-03-16 13:35|--a------|525128] D:\DXSETUP.exe
[2009-03-16 13:36|--a------|95296] D:\dxupdate.cab
[2007-11-07 07:00|--a------|17734] D:\eula.1028.txt
[2007-11-07 07:00|--a------|17734] D:\eula.1031.txt
[2007-11-07 07:00|--a------|10134] D:\eula.1033.txt
[2007-11-07 07:00|--a------|17734] D:\eula.1036.txt
[2007-11-07 07:00|--a------|17734] D:\eula.1040.txt
[2007-11-07 07:00|--a------|118] D:\eula.1041.txt
[2007-11-07 07:00|--a------|17734] D:\eula.1042.txt
[2007-11-07 07:00|--a------|17734] D:\eula.2052.txt
[2007-11-07 07:00|--a------|17734] D:\eula.3082.txt
[2009-03-16 13:36|--a------|1247499] D:\Feb2005_d3dx9_24_x64.cab
[2009-03-16 13:36|--a------|1013217] D:\Feb2005_d3dx9_24_x86.cab
[2009-03-16 13:36|--a------|1362788] D:\Feb2006_d3dx9_29_x64.cab
[2009-03-16 13:36|--a------|1084712] D:\Feb2006_d3dx9_29_x86.cab
[2009-03-16 13:36|--a------|178351] D:\Feb2006_XACT_x64.cab
[2009-03-16 13:36|--a------|132409] D:\Feb2006_XACT_x86.cab
[2009-03-16 13:36|--a------|194675] D:\FEB2007_XACT_x64.cab
[2009-03-16 13:36|--a------|147975] D:\FEB2007_XACT_x86.cab
[2009-12-05 15:19|--a------|639875979] D:\FlyffFR_Acte5_FullClient_JeuxVideo.com_13344.exe
[2007-11-07 07:00|--a------|1110] D:\globdata.ini
[2009-04-04 16:15|--a------|1773] D:\Google Chrome.lnk
[2009-05-08 22:00|--a------|23346] D:\hiver-langue-collee-sur-poteau.gif
[2007-11-07 07:03|--a------|562688] D:\install.exe
[2007-11-07 07:00|--a------|843] D:\install.ini
[2007-11-07 07:03|--a------|76304] D:\install.res.1028.dll
[2007-11-07 07:03|--a------|96272] D:\install.res.1031.dll
[2007-11-07 07:03|--a------|91152] D:\install.res.1033.dll
[2007-11-07 07:03|--a------|97296] D:\install.res.1036.dll
[2007-11-07 07:03|--a------|95248] D:\install.res.1040.dll
[2007-11-07 07:03|--a------|81424] D:\install.res.1041.dll
[2007-11-07 07:03|--a------|79888] D:\install.res.1042.dll
[2007-11-07 07:03|--a------|75792] D:\install.res.2052.dll
[2007-11-07 07:03|--a------|96272] D:\install.res.3082.dll
[2009-03-16 13:36|--a------|1335994] D:\Jun2005_d3dx9_26_x64.cab
[2009-03-16 13:36|--a------|1064917] D:\Jun2005_d3dx9_26_x86.cab
[2009-03-16 13:36|--a------|180777] D:\JUN2006_XACT_x64.cab
[2009-03-16 13:36|--a------|133663] D:\JUN2006_XACT_x86.cab
[2009-03-16 13:36|--a------|699036] D:\JUN2007_d3dx10_34_x64.cab
[2009-03-16 13:36|--a------|698472] D:\JUN2007_d3dx10_34_x86.cab
[2009-03-16 13:36|--a------|1607766] D:\JUN2007_d3dx9_34_x64.cab
[2009-03-16 13:36|--a------|1607286] D:\JUN2007_d3dx9_34_x86.cab
[2009-03-16 13:36|--a------|197122] D:\JUN2007_XACT_x64.cab
[2009-03-16 13:36|--a------|152909] D:\JUN2007_XACT_x86.cab
[2009-03-16 13:36|--a------|867828] D:\JUN2008_d3dx10_38_x64.cab
[2009-03-16 13:36|--a------|849919] D:\JUN2008_d3dx10_38_x86.cab
[2009-03-16 13:36|--a------|1792600] D:\JUN2008_d3dx9_38_x64.cab
[2009-03-16 13:36|--a------|1463878] D:\JUN2008_d3dx9_38_x86.cab
[2009-03-16 13:36|--a------|55154] D:\JUN2008_X3DAudio_x64.cab
[2009-03-16 13:36|--a------|21897] D:\JUN2008_X3DAudio_x86.cab
[2009-03-16 13:36|--a------|121046] D:\JUN2008_XACT_x64.cab
[2009-03-16 13:36|--a------|93120] D:\JUN2008_XACT_x86.cab
[2009-03-16 13:36|--a------|269620] D:\JUN2008_XAudio_x64.cab
[2009-03-16 13:36|--a------|269016] D:\JUN2008_XAudio_x86.cab
[2009-12-07 18:49|--a------|73543224] D:\kis2010_9.0.0.736en.exe
[2009-05-10 19:29|--a------|25730] D:\lt_maria_laguerta.jpg
[2009-03-16 13:36|--a------|844884] D:\Mar2008_d3dx10_37_x64.cab
[2009-03-16 13:36|--a------|818252] D:\Mar2008_d3dx10_37_x86.cab
[2009-03-16 13:36|--a------|1769854] D:\Mar2008_d3dx9_37_x64.cab
[2009-03-16 13:36|--a------|1443282] D:\Mar2008_d3dx9_37_x86.cab
[2009-03-16 13:36|--a------|55058] D:\Mar2008_X3DAudio_x64.cab
[2009-03-16 13:36|--a------|21867] D:\Mar2008_X3DAudio_x86.cab
[2009-03-16 13:36|--a------|122328] D:\Mar2008_XACT_x64.cab
[2009-03-16 13:36|--a------|93726] D:\Mar2008_XACT_x86.cab
[2009-03-16 13:36|--a------|251194] D:\Mar2008_XAudio_x64.cab
[2009-03-16 13:36|--a------|226242] D:\Mar2008_XAudio_x86.cab
[2009-03-16 13:36|--a------|1067160] D:\Mar2009_d3dx10_41_x64.cab
[2009-03-16 13:36|--a------|1040745] D:\Mar2009_d3dx10_41_x86.cab
[2009-03-16 13:36|--a------|1973694] D:\Mar2009_d3dx9_41_x64.cab
[2009-03-16 13:36|--a------|1612446] D:\Mar2009_d3dx9_41_x86.cab
[2009-03-16 13:36|--a------|54592] D:\Mar2009_X3DAudio_x64.cab
[2009-03-16 13:36|--a------|21298] D:\Mar2009_X3DAudio_x86.cab
[2009-03-16 13:36|--a------|121498] D:\Mar2009_XACT_x64.cab
[2009-03-16 13:36|--a------|92732] D:\Mar2009_XACT_x86.cab
[2009-03-16 13:36|--a------|275036] D:\Mar2009_XAudio_x64.cab
[2009-03-16 13:36|--a------|273010] D:\Mar2009_XAudio_x86.cab
[2009-03-16 13:36|--a------|864592] D:\Nov2007_d3dx10_36_x64.cab
[2009-03-16 13:36|--a------|803884] D:\Nov2007_d3dx10_36_x86.cab
[2009-03-16 13:36|--a------|1802050] D:\Nov2007_d3dx9_36_x64.cab
[2009-03-16 13:36|--a------|1709352] D:\Nov2007_d3dx9_36_x86.cab
[2009-03-16 13:36|--a------|46144] D:\NOV2007_X3DAudio_x64.cab
[2009-03-16 13:36|--a------|18488] D:\NOV2007_X3DAudio_x86.cab
[2009-03-16 13:36|--a------|196754] D:\NOV2007_XACT_x64.cab
[2009-03-16 13:36|--a------|148264] D:\NOV2007_XACT_x86.cab
[2009-03-16 13:36|--a------|994146] D:\Nov2008_d3dx10_40_x64.cab
[2009-03-16 13:36|--a------|965413] D:\Nov2008_d3dx10_40_x86.cab
[2009-03-16 13:36|--a------|1906870] D:\Nov2008_d3dx9_40_x64.cab
[2009-03-16 13:36|--a------|1550796] D:\Nov2008_d3dx9_40_x86.cab
[2009-03-16 13:36|--a------|55110] D:\Nov2008_X3DAudio_x64.cab
[2009-03-16 13:36|--a------|21836] D:\Nov2008_X3DAudio_x86.cab
[2009-03-16 13:36|--a------|121746] D:\Nov2008_XACT_x64.cab
[2009-03-16 13:36|--a------|92688] D:\Nov2008_XACT_x86.cab
[2009-03-16 13:36|--a------|273990] D:\Nov2008_XAudio_x64.cab
[2009-03-16 13:36|--a------|273203] D:\Nov2008_XAudio_x86.cab
[2009-03-16 13:36|--a------|86029] D:\Oct2005_xinput_x64.cab
[2009-03-16 13:36|--a------|45359] D:\Oct2005_xinput_x86.cab
[2009-03-16 13:36|--a------|1412894] D:\OCT2006_d3dx9_31_x64.cab
[2009-03-16 13:36|--a------|1127209] D:\OCT2006_d3dx9_31_x86.cab
[2009-03-16 13:36|--a------|182361] D:\OCT2006_XACT_x64.cab
[2009-03-16 13:36|--a------|138017] D:\OCT2006_XACT_x86.cab
[2009-05-08 22:00|--a------|1098] D:\pas-content-0005.png
[2008-08-27 01:18|--a------|4726] D:\reloaded.nfo
[2009-05-10 19:27|--a------|26532] D:\rita_bennett.jpg
[2009-12-07 18:13|--a------|41958336] D:\setupfre.exe
[2009-04-10 12:59|-ra------|13343003] D:\SIMS.2.AL.V1.0.EURO.RELOADED.NOCD.ZIP
[2008-08-26 15:58|--a------|45811352] D:\Sims2EP8.exe
[2009-05-08 21:58|--a------|1120] D:\Smiley-msn.com-Coleres-20214.gif
[2009-05-08 21:57|--a------|1114] D:\Smiley-msn.com-Coleres-20221.gif
[2009-05-10 19:42|--ahs----|41472] D:\Thumbs.db
[2009-12-07 18:11|--a------|8784560] D:\trjsetup681.exe
[2009-07-07 13:26|--a------|1281] D:\Uninstall.ini
[2007-11-07 07:00|--a------|5686] D:\vcredist.bmp
[2007-11-07 07:09|--a------|1442522] D:\VC_RED.cab
[2007-11-07 07:12|--a------|232960] D:\VC_RED.MSI
[2009-05-04 17:52|--a------|52694] D:\videotron.htm

################## | Vaccination |

# C:\autorun.inf -> Dossier créé par UsbFix.
# D:\autorun.inf -> Dossier créé par UsbFix.

################## | Cracks / Keygens / Serials |


################## | Upload |

Veuillez envoyer le fichier : C:\DOCUME~1\Roger\Bureau\UsbFix_Upload_Me_ROGER-1C7DDBD06.zip : https://www.ionos.fr/?affiliate_id=77097
Merci pour votre contribution .

################## | ! Fin du rapport # UsbFix V6.059 ! |
0
Réponse 29 / 85
Faanny
 
Logfile of random's system information tool 1.06 (written by random/random)
Run by Roger at 2009-12-08 20:16:38
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 5 GB (10%) free of 50 GB
Total RAM: 2039 MB (65% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:16:39, on 2009-12-08
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16915)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Norton Internet Security\Engine\16.7.2.11\ccSvcHst.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Norton Internet Security\Engine\16.5.0.135\ccSvcHst.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Microsoft\Office Live\OfficeLiveSignIn.exe
C:\Documents and Settings\Roger\Bureau\RSIT.exe
C:\Program Files\trend micro\Roger.exe

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {0a452a47-c5a8-4854-a237-4b9b06b376f0} - (no file)
R3 - URLSearchHook: Free Lunch Design Toolbar - {57cc715d-37ca-44e4-9ec2-8c2cbddb25ec} - C:\Program Files\Free_Lunch_Design\tbFre0.dll
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: HP Print Clips - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (file missing)
O2 - BHO: Free Lunch Design Toolbar - {57cc715d-37ca-44e4-9ec2-8c2cbddb25ec} - C:\Program Files\Free_Lunch_Design\tbFre0.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Internet Security\Engine\16.5.0.135\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton Internet Security\Engine\16.5.0.135\IPSBHO.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\16.5.0.135\coIEPlg.dll
O3 - Toolbar: (no name) - {0a452a47-c5a8-4854-a237-4b9b06b376f0} - (no file)
O3 - Toolbar: Free Lunch Design Toolbar - {57cc715d-37ca-44e4-9ec2-8c2cbddb25ec} - C:\Program Files\Free_Lunch_Design\tbFre0.dll
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe" /hide
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [TrojanScanner] C:\Program Files\Trojan Remover\Trjscan.exe /boot
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Disk Cleaner] "C:\Program Files\Disk Cleaner\LaunchDiskCleaner.Exe" "C:\Program Files\Disk Cleaner\DiskCleaner.Exe" /boot
O4 - HKCU\..\Run: [Uniblue RegistryBooster 2009] C:\Program Files\Uniblue\RegistryBooster\RegistryBooster.exe /S
O4 - HKCU\..\Run: [PowerBar] "C:\Program Files\CyberLink DVD Solution\Multimedia Launcher\PowerBar.exe" /AtBootTime
O4 - HKCU\..\Run: [BitComet] C:\Program Files\BitComet\BitComet.exe /tray
O4 - HKCU\..\Run: [Logitech Vid] "C:\Program Files\Logitech\Logitech Vid\vid.exe" -bootmode
O4 - HKLM\..\Policies\Explorer\Run: [] 
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [] (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-20\..\RunOnce: [] (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [] (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [] (User 'Default user')
O4 - Startup: Alaplaya Launcher.lnk = C:\Program Files\alaplaya\launcher\AlaplayaLauncher.exe
O4 - Startup: Outil de détection de support Picture Motion Browser.lnk = C:\Program Files\Sony\Sony Picture Utility\PMBCore\SPUVolumeWatcher.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Livre de reliures HP - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: Sélection intelligente HP - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w3/pr01/resources/MSNPUpld.cab
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - https://www.touslesdrivers.com/index.php?v_page=29
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://dl8-cdn-01.sun.com/s/ESD44/JSCDL/jdk/6u7/jinstall-6u7-windows-i586-jc.cab?e=1219616183961&h=e9a96b33d00a85a3dbf0d0c9729f9872/&filename=jinstall-6u7-windows-i586-jc.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O18 - Protocol: alaplaya - {60E6FD61-FA26-4706-BF07-C55B3A49E66C} - C:\WINDOWS\system32\alading.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: symres - {AA1061FE-6C41-421F-9344-69640C9732AB} - C:\Program Files\Norton Internet Security\Engine\16.5.0.135\coIEPlg.dll
O20 - Winlogon Notify: cfeddcfbaebfbdecb - C:\WINDOWS\system32\cfeddcfbaebfbdecb.dll (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Symantec IS Password Validation (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\isPwdSvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: Norton Internet Security - Symantec Corporation - C:\Program Files\Norton Internet Security\Engine\16.7.2.11\ccSvcHst.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppSvc32.exe
0
Réponse 30 / 85
moment de grace Messages postés 30049 Statut Contributeur sécurité 2 274
 
1) Veuillez envoyer le fichier : C:\DOCUME~1\Roger\Bureau\UsbFix_Upload_Me_ROGER-1C7DDBD06.zip : https://www.ionos.fr/?affiliate_id=77097
Merci pour votre contribution

2) on a un soucis avec une toolbar
relances Toolbar-S&D option 1 mais avant coupes internet, norton et pare feu

0
Réponse 31 / 85
Faanny
 
1) c'est déjà fait.
2) OK. :)
0
Réponse 32 / 85
Faanny
 
-----------\\ ToolBar S&D 1.1.5 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) 4 CPU 3.00GHz )
BIOS : BIOS Date: 06/06/07 20:53:52 Ver: 08.00.10
USER : Roger ( Administrator )
BOOT : Normal boot
Antivirus : Norton Internet Security 16.0.0.125 (Not Activated)
Firewall : Norton Internet Security 16.0.0.125 (Not Activated)

"C:\ToolBar SD" ( MAJ : 26-08-2008|22:40 )
Option : [2] ( 2009-12-09| 7:44 )

-----------\\ Recherche de Fichiers / Dossiers ...


-----------\\ Extensions

(Roger) - {20a82645-c095-46ed-80e3-08825760534b} => chrome_user


-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\windows\\system32\\blank.htm"
"Start Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Default_Search_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
"Default_Search_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Local Page"="C:\\windows\\system32\\blank.htm"
"Start Page"="https://www.msn.com/fr-fr/"


--------------------\\ Recherche d'autres infections

--------------------\\ Cracks & Keygens ..

C:\DOCUME~1\Roger\Local Settings\Application Data\Microsoft\Messenger\fanny.desrochers@hotmail.com\Sharing Folders\coco.crack@hotmail.com
C:\DOCUME~1\Roger\Local Settings\Application Data\Microsoft\Messenger\fanny.desrochers@hotmail.com\Sharing Folders\coco.crack@hotmail.com\Thumbs.db
C:\DOCUME~1\Roger\Local Settings\Application Data\Microsoft\Messenger\fanny.desrochers@hotmail.com\SharingMetadata\coco.crack@hotmail.com
C:\DOCUME~1\Roger\Local Settings\Application Data\Microsoft\Messenger\fanny.desrochers@hotmail.com\SharingMetadata\coco.crack@hotmail.com\DFSR
C:\DOCUME~1\Roger\Local Settings\Application Data\Microsoft\Messenger\fanny.desrochers@hotmail.com\SharingMetadata\coco.crack@hotmail.com\_thumb.png
C:\DOCUME~1\Roger\Local Settings\Application Data\Microsoft\Messenger\fanny.desrochers@hotmail.com\SharingMetadata\coco.crack@hotmail.com\DFSR\ConflictDelete
C:\DOCUME~1\Roger\Local Settings\Application Data\Microsoft\Messenger\fanny.desrochers@hotmail.com\SharingMetadata\coco.crack@hotmail.com\DFSR\Deleted
C:\DOCUME~1\Roger\Local Settings\Application Data\Microsoft\Messenger\fanny.desrochers@hotmail.com\SharingMetadata\coco.crack@hotmail.com\DFSR\Installing
C:\DOCUME~1\Roger\Local Settings\Application Data\Microsoft\Messenger\fanny.desrochers@hotmail.com\SharingMetadata\coco.crack@hotmail.com\DFSR\Staging
C:\DOCUME~1\Roger\Local Settings\Application Data\Microsoft\Messenger\fanny.desrochers@hotmail.com\SharingMetadata\coco.crack@hotmail.com\DFSR\Staging\CS{16D33CAA-9279-1AD8-105A-3AAD98D67E99}


-----------\\ Fin du rapport a 7:45:40,84
0
Réponse 33 / 85
Faanny
 
oups cétait option 1...je recommence.
0
Réponse 34 / 85
Faanny
 
-----------\\ ToolBar S&D 1.1.5 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) 4 CPU 3.00GHz )
BIOS : BIOS Date: 06/06/07 20:53:52 Ver: 08.00.10
USER : Roger ( Administrator )
BOOT : Normal boot
Antivirus : Norton Internet Security 16.0.0.125 (Not Activated)
Firewall : Norton Internet Security 16.0.0.125 (Not Activated)

"C:\ToolBar SD" ( MAJ : 26-08-2008|22:40 )
Option : [1] ( 2009-12-09| 7:47 )

-----------\\ Recherche de Fichiers / Dossiers ...


-----------\\ Extensions

(Roger) - {20a82645-c095-46ed-80e3-08825760534b} => chrome_user


-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\windows\\system32\\blank.htm"
"Start Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Default_Search_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"
"Default_Search_URL"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Local Page"="C:\\windows\\system32\\blank.htm"
"Start Page"="https://www.msn.com/fr-fr/"


--------------------\\ Recherche d'autres infections

--------------------\\ Cracks & Keygens ..

C:\DOCUME~1\Roger\Local Settings\Application Data\Microsoft\Messenger\fanny.desrochers@hotmail.com\Sharing Folders\coco.crack@hotmail.com
C:\DOCUME~1\Roger\Local Settings\Application Data\Microsoft\Messenger\fanny.desrochers@hotmail.com\Sharing Folders\coco.crack@hotmail.com\Thumbs.db
C:\DOCUME~1\Roger\Local Settings\Application Data\Microsoft\Messenger\fanny.desrochers@hotmail.com\SharingMetadata\coco.crack@hotmail.com
C:\DOCUME~1\Roger\Local Settings\Application Data\Microsoft\Messenger\fanny.desrochers@hotmail.com\SharingMetadata\coco.crack@hotmail.com\DFSR
C:\DOCUME~1\Roger\Local Settings\Application Data\Microsoft\Messenger\fanny.desrochers@hotmail.com\SharingMetadata\coco.crack@hotmail.com\_thumb.png
C:\DOCUME~1\Roger\Local Settings\Application Data\Microsoft\Messenger\fanny.desrochers@hotmail.com\SharingMetadata\coco.crack@hotmail.com\DFSR\ConflictDelete
C:\DOCUME~1\Roger\Local Settings\Application Data\Microsoft\Messenger\fanny.desrochers@hotmail.com\SharingMetadata\coco.crack@hotmail.com\DFSR\Deleted
C:\DOCUME~1\Roger\Local Settings\Application Data\Microsoft\Messenger\fanny.desrochers@hotmail.com\SharingMetadata\coco.crack@hotmail.com\DFSR\Installing
C:\DOCUME~1\Roger\Local Settings\Application Data\Microsoft\Messenger\fanny.desrochers@hotmail.com\SharingMetadata\coco.crack@hotmail.com\DFSR\Staging
C:\DOCUME~1\Roger\Local Settings\Application Data\Microsoft\Messenger\fanny.desrochers@hotmail.com\SharingMetadata\coco.crack@hotmail.com\DFSR\Staging\CS{16D33CAA-9279-1AD8-105A-3AAD98D67E99}


-----------\\ Fin du rapport a 7:48:14,12
0
Réponse 35 / 85
moment de grace Messages postés 30049 Statut Contributeur sécurité 2 274
 
non laisses tomber...

il faut que je me renseigne....c'est dommage, c'était de dernier

je te tiens au courant
0
Réponse 36 / 85
Faanny
 
C'est très très gentil, <Merci beaucoup pour tout . :)
0
Réponse 37 / 85
moment de grace Messages postés 30049 Statut Contributeur sécurité 2 274
 
bon on va essayer ainsi


Téléchargez et enregistrez le fichier d installation sur le bureau
http://pagesperso-orange.fr/NosTools/C_XX/AD-R.exe


Double cliquez sur le fichier d'installation de AD-Remover, le programme s'installera automatiquement.
Sous Vista : clic droit sur AD-Remover et sélectionner "Exécuter en tant qu'administrateur"
Au menu principal choisir l'option "s" et tapez sur [entrée] .
Laissez travailler l'outil et ne touchez à rien ...
Postez le rapport qui apparait à la fin.

( le rapport est sauvegardé aussi sous C:\Ad-report.log )

(CTRL+A Pour tout selectionner , CTRL+C pour copier et CTRL+V pour coller )

Note :Process.exe est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.
0
Réponse 38 / 85
Faanny
 
.
======= RAPPORT D'AD-REMOVER 1.1.4.6_E | UNIQUEMENT XP/VISTA/7 =======
.
Mit à jour par C_XX le 07.12.2009 à 21:14
Contact: AdRemover.contact@gmail.com
Site web: http://pagesperso-orange.fr/NosTools/ad_remover.html
.
Lancé à: 10:34:50, 2009-12-09 | Mode Normal | Option: SCAN
Exécuté de: C:\Program Files\Ad-Remover\
Système d'exploitation: Microsoft® Windows XP™ Service Pack 3 v5.1.2600
Nom du PC: ROGER-1C7DDBD06 | Utilisateur actuel: Roger
.
============== ÉLÉMENT(S) TROUVÉ(S) ==============
.

C:\DOCUME~1\Roger\APPLIC~1\Mozilla\Firefox\Profiles\1uhapj86.default\searchplugins\ask.xml
C:\Program Files\Mozilla FireFox\Components\AskSearch.js
.
HKCU\software\microsoft\internet explorer\searchscopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
HKCU\software\microsoft\internet explorer\searchscopes\{CF739809-1C6C-47C0-85B9-569DBB141420}
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{FE063DB9-4EC0-403E-8DD8-394C54984B2C}
HKLM\software\AskBarDis
HKLM\Software\Classes\CLSID\{9CB65201-89C4-402c-BA80-02D8C59F9B1D}
HKLM\Software\Classes\CLSID\{FE063DB1-4EC0-403e-8DD8-394C54984B2C}
HKLM\Software\Classes\CLSID\{FE063DB9-4EC0-403e-8DD8-394C54984B2C}
HKLM\Software\Classes\CLSID\{FE063DBB-4EC0-403e-8DD8-394C54984B2C}
.
HKLM\..\Toolbar\\{0a452a47-c5a8-4854-a237-4b9b06b376f0} (Clé de registre orpheline)
HKCU\..\Toolbar\WebBrowser\\{0a452a47-c5a8-4854-a237-4b9b06b376f0} (Clé de registre orpheline)
HKCU\..\Toolbar\ShellBrowser\\{C4069E3A-68F1-403E-B40E-20066696354B} (Clé de registre orpheline)
HKCU\..\Toolbar\WebBrowser\\{A057A204-BACC-4D26-9990-79A187E2698E} (Clé de registre orpheline)
HKLM\..\Toolbar\\{0A452A47-C5A8-4854-A237-4B9B06B376F0} (Clé de registre orpheline)
HKCU\..\Toolbar\WebBrowser\\{0A452A47-C5A8-4854-A237-4B9B06B376F0} (Clé de registre orpheline)
HKCU\..\Toolbar\WebBrowser\\{71B6ACF7-4F0F-4FD8-BB69-6D1A4D271CB7} (Clé de registre orpheline)
HKCU\..\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} (Clé de registre orpheline)
HKCU\..\Toolbar\WebBrowser\\{FE063DB9-4EC0-403E-8DD8-394C54984B2C} (Clé de registre orpheline)
HKCU\..\Toolbar\WebBrowser\\{FF2DE21E-652B-469C-83BC-61C87DB6D41B} (Clé de registre orpheline)
HKLM\..\Toolbar\\{0a452a47-c5a8-4854-a237-4b9b06b376f0} (Clé de registre orpheline)
HKCU\..\Toolbar\WebBrowser\\{0a452a47-c5a8-4854-a237-4b9b06b376f0} (Clé de registre orpheline)
HKCU\..\Toolbar\ShellBrowser\\{C4069E3A-68F1-403E-B40E-20066696354B} (Clé de registre orpheline)
HKCU\..\Toolbar\WebBrowser\\{A057A204-BACC-4D26-9990-79A187E2698E} (Clé de registre orpheline)
HKLM\..\Toolbar\\{0A452A47-C5A8-4854-A237-4B9B06B376F0} (Clé de registre orpheline)
HKCU\..\Toolbar\WebBrowser\\{0A452A47-C5A8-4854-A237-4B9B06B376F0} (Clé de registre orpheline)
HKCU\..\Toolbar\WebBrowser\\{71B6ACF7-4F0F-4FD8-BB69-6D1A4D271CB7} (Clé de registre orpheline)
HKCU\..\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} (Clé de registre orpheline)
HKCU\..\Toolbar\WebBrowser\\{FE063DB9-4EC0-403E-8DD8-394C54984B2C} (Clé de registre orpheline)
HKCU\..\Toolbar\WebBrowser\\{FF2DE21E-652B-469C-83BC-61C87DB6D41B} (Clé de registre orpheline)
.
============== Scan additionnel ==============
.
.
* Mozilla FireFox Version 3.5.5 [fr] *
.
Nom du profil: 1uhapj86.default (Roger)
.
(Roger, prefs.js) Browser.download.lastDir, C:\DOCUME~1\Roger\Bureau
(Roger, prefs.js) Browser.search.defaultenginename, Ask
(Roger, prefs.js) Browser.search.defaulturl, hxxp://search.live.com/results.aspx?FORM=IEFM1&q=
(Roger, prefs.js) Browser.search.selectedEngine, Ask
(Roger, prefs.js) Browser.startup.homepage, google.ca
.
(Roger, prefs.js) TROUVE - Extensions.snipit.chromeURL, hxxp://toolbar.ask.com/toolbarv/askRedirect?o=101757&gct=&gc=1&q={searchTerms}&crm=1
(Roger, prefs.js) TROUVE - Keyword.URL, hxxp://toolbar.ask.com/toolbarv/askRedirect?o=101757&gct=&gc=1&q=
.
.
* Internet Explorer Version 7.0.5730.13 *
.
[HKEY_CURRENT_USER\..\Internet Explorer\Main]
.
Do404Search: 01000000
Local Page: C:\windows\system32\blank.htm
Show_ToolBar: yes
Start Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Enable Browser Extensions: yes
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Use Custom Search URL: 0 (0x0)
Use Search Asst: no
.
[HKEY_LOCAL_MACHINE\..\Internet Explorer\Main]
.
Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Delete_Temp_Files_On_Exit: yes
Local Page: C:\windows\system32\blank.htm
Start Page: hxxp://www.msn.com/
Use Custom Search URL: 0 (0x0)
.
[HKEY_LOCAL_MACHINE\..\Internet Explorer\ABOUTURLS]
.
Tabs: res://ieframe.dll/tabswelcome.htm
.
===================================
.
4979 Octet(s) - C:\Ad-Report-SCAN[1].log
.
204 Fichier(s) - C:\DOCUME~1\Roger\LOCALS~1\Temp
13 Fichier(s) - C:\WINDOWS\Temp
.
2 Fichier(s) - C:\Program Files\Ad-Remover\BACKUP
0 Fichier(s) - C:\Program Files\Ad-Remover\QUARANTINE
.
Fin à: 10:42:51 | 2009-12-09 - SCAN[1]
.
============== E.O.F ==============
.
0
Réponse 39 / 85
moment de grace Messages postés 30049 Statut Contributeur sécurité 2 274
 
relances Ad Remover en mode sans echec

mode sans échec
https://www.micro-astuce.com/depannage/demarrer-mode-sans-echec.php

Option L Lancer le nettoyage

0
Réponse 40 / 85
Faanny
 
.
======= RAPPORT D'AD-REMOVER 1.1.4.6_E | UNIQUEMENT XP/VISTA/7 =======
.
Mit à jour par C_XX le 07.12.2009 à 21:14
Contact: AdRemover.contact@gmail.com
Site web: http://pagesperso-orange.fr/NosTools/ad_remover.html
.
Lancé à: 12:17:04, 2009-12-09 | Mode sans echec | Option: CLEAN
Exécuté de: C:\Program Files\Ad-Remover\
Système d'exploitation: Microsoft® Windows XP™ Service Pack 3 v5.1.2600
Nom du PC: ROGER-1C7DDBD06 | Utilisateur actuel: Roger
.
============== ÉLÉMENT(S) NEUTRALISÉ(S) ==============
.

C:\DOCUME~1\Roger\APPLIC~1\Mozilla\Firefox\Profiles\1uhapj86.default\searchplugins\ask.xml
C:\Program Files\Mozilla FireFox\Components\AskSearch.js

(!) -- Fichiers temporaires supprimés.

.
HKCU\software\microsoft\internet explorer\searchscopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
HKCU\software\microsoft\internet explorer\searchscopes\{CF739809-1C6C-47C0-85B9-569DBB141420}
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{FE063DB9-4EC0-403E-8DD8-394C54984B2C}
HKLM\software\AskBarDis
HKLM\Software\Classes\CLSID\{9CB65201-89C4-402c-BA80-02D8C59F9B1D}
HKLM\Software\Classes\CLSID\{FE063DB1-4EC0-403e-8DD8-394C54984B2C}
HKLM\Software\Classes\CLSID\{FE063DB9-4EC0-403e-8DD8-394C54984B2C}
HKLM\Software\Classes\CLSID\{FE063DBB-4EC0-403e-8DD8-394C54984B2C}
.
HKLM\..\Toolbar\\{0a452a47-c5a8-4854-a237-4b9b06b376f0} (Clé de registre orpheline)
HKCU\..\Toolbar\WebBrowser\\{0a452a47-c5a8-4854-a237-4b9b06b376f0} (Clé de registre orpheline)
HKCU\..\Toolbar\ShellBrowser\\{C4069E3A-68F1-403E-B40E-20066696354B} (Clé de registre orpheline)
HKCU\..\Toolbar\WebBrowser\\{A057A204-BACC-4D26-9990-79A187E2698E} (Clé de registre orpheline)
HKCU\..\Toolbar\WebBrowser\\{71B6ACF7-4F0F-4FD8-BB69-6D1A4D271CB7} (Clé de registre orpheline)
HKCU\..\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} (Clé de registre orpheline)
HKCU\..\Toolbar\WebBrowser\\{FF2DE21E-652B-469C-83BC-61C87DB6D41B} (Clé de registre orpheline)
.
============== Scan additionnel ==============
.
.
* Mozilla FireFox Version 3.5.5 [fr] *
.
Nom du profil: 1uhapj86.default (Roger)
.
(Roger, prefs.js) Browser.download.lastDir, C:\Documents and Settings\Roger\Bureau
(Roger, prefs.js) Browser.search.defaultenginename, Ask
(Roger, prefs.js) Browser.search.defaulturl, hxxp://search.live.com/results.aspx?FORM=IEFM1&q=
(Roger, prefs.js) Browser.search.selectedEngine, Ask
(Roger, prefs.js) Browser.startup.homepage, google.ca
.
(Roger, prefs.js) EFFACE - Extensions.snipit.chromeURL, hxxp://toolbar.ask.com/toolbarv/askRedirect?o=101757&gct=&gc=1&q={searchTerms}&crm=1
(Roger, prefs.js) EFFACE - Keyword.URL, hxxp://toolbar.ask.com/toolbarv/askRedirect?o=101757&gct=&gc=1&q=
.
.
* Internet Explorer Version 7.0.5730.13 *
.
[HKEY_CURRENT_USER\..\Internet Explorer\Main]
.
Do404Search: 01000000
Local Page: C:\windows\system32\blank.htm
Show_ToolBar: yes
Start Page: hxxp://fr.msn.com/
Enable Browser Extensions: yes
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Use Custom Search URL: 0 (0x0)
Use Search Asst: no
Default_page_url: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Search bar: hxxp://go.microsoft.com/fwlink/?linkid=54896
.
[HKEY_LOCAL_MACHINE\..\Internet Explorer\Main]
.
Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Delete_Temp_Files_On_Exit: yes
Local Page: C:\windows\system32\blank.htm
Start Page: hxxp://fr.msn.com/
Use Custom Search URL: 0 (0x0)
Search bar: hxxp://search.msn.com/spbasic.htm
.
[HKEY_LOCAL_MACHINE\..\Internet Explorer\ABOUTURLS]
.
Tabs: res://ieframe.dll/tabswelcome.htm
.
===================================
.
3884 Octet(s) - C:\Ad-Report-CLEAN[1].log
5306 Octet(s) - C:\Ad-Report-SCAN[1].log
.
0 Fichier(s) - C:\DOCUME~1\Roger\LOCALS~1\Temp
0 Fichier(s) - C:\WINDOWS\Temp
.
19 Fichier(s) - C:\Program Files\Ad-Remover\BACKUP
2 Fichier(s) - C:\Program Files\Ad-Remover\QUARANTINE
.
Fin à: 12:24:25 | 2009-12-09 - CLEAN[1]
.
============== E.O.F ==============
.
0

Discussions similaires

Supprimer compte Tendermeets.com
anonyme -
anonyme -

1 réponse