Sujet Précédent Sujet Suivant

Rapport hijack this

Utilisateur anonyme -  
Destrio5 Messages postés 99820 Date d'inscription   Statut Modérateur Dernière intervention   -
Bonjour,

mon ordi ne fait que buger, je vous poste le rapport de hijack this .

Logfile of Trend Micro HijackThis v2.0.3 (BETA)
Scan saved at 22:51:06, on 20/01/2010
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18349)
Boot mode: Normal

Running processes:
C:\Windows\System32\smss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe
C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\Ati2evxx.exe
C:\Windows\System32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\Ati2evxx.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Program Files\Toshiba TEMPRO\TempoSVC.exe
C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe
C:\Windows\system32\TODDSrv.exe
C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe
C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\DRIVERS\xaudio.exe
C:\Program Files\Common Files\Softwin\BitDefender Communicator\xcommsvr.exe
C:\Program Files\Common Files\Softwin\BitDefender Update Service\livesrv.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Toshiba\SmartFaceV\SmartFaceVWatchSrv.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Toshiba\ConfigFree\NDSTray.exe
C:\Program Files\Toshiba TEMPRO\Toshiba.Tempo.UI.TrayApplication.exe
C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe
C:\Program Files\Toshiba\Power Saver\TPwrMain.exe
C:\Program Files\Toshiba\SmoothView\SmoothView.exe
C:\Program Files\Toshiba\FlashCards\TCrdMain.exe
C:\Program Files\Toshiba\HDMICtrlMan\HDMICtrlMan.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Softwin\BitDefender10\bdmcon.exe
C:\Program Files\Softwin\BitDefender10\bdagent.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Toshiba\TOSCDSPD\TOSCDSPD.exe
C:\Program Files\Ares\Ares.exe
C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\system32\WerCon.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Camera Assistant Software for Toshiba\CEC_MAIN.exe
C:\Program Files\Toshiba\ConfigFree\CFSwMgr.exe
C:\Program Files\Toshiba\HDMICtrlMan\HCMSoundChanger.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Common Files\Softwin\BitDefender Scan Server\bdss.exe
C:\Program Files\Softwin\BitDefender10\vsserv.exe
C:\Windows\System32\svchost.exe
C:\Windows\System32\mobsync.exe
C:\Windows\system32\conime.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Avira\AntiVir Desktop\update.exe
C:\Users\Nàzlii\Desktop\ccsetup227\CCleaner.exe
C:\Windows\system32\DllHost.exe
C:\Users\Nàzlii\AppData\Local\Temp\Temp1_ODN_v3.zip\ODN v3.exe
C:\Users\NZLII~1\AppData\Local\Temp\ODN\ODN.exe
C:\Users\NZLII~1\AppData\Local\Temp\ODN\data\RegSeeker\RegSeeker.exe
C:\Windows\system32\taskmgr.exe
C:\Users\NZLII~1\AppData\Local\Temp\ODN\data\HiJackThis.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://fr.gdark.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://fr.gdark.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.ask.com?o=15015&l=dis
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://recherche.neuf.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://fr.gdark.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.gdark.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://fr.gdark.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://fr.gdark.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://fr.gdark.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: DealioBHO Class - {6A87B991-A31F-4130-AE72-6D0C294BF082} - C:\Program Files\Dealio\kb127\Dealio.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: (no name) - {90B8B761-DF2B-48AC-BBE0-BCC03A819B3B} - (no file)
O3 - Toolbar: Dealio - {E67C74F4-A00A-4F2C-9FEC-FD9DC004A67F} - C:\Program Files\Dealio\kb127\Dealio.dll
O3 - Toolbar: (no name) - {66886C4D-B307-4ECA-A228-52CA9B9851A4} - (no file)
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [ITSecMng] %ProgramFiles%\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe /START
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [cfFncEnabler.exe] cfFncEnabler.exe
O4 - HKLM\..\Run: [Google EULA Launcher] c:\Program Files\Google\Google EULA\GoogleEULALauncher.exe IE PA
O4 - HKLM\..\Run: [Toshiba TEMPO] C:\Program Files\Toshiba TEMPRO\Toshiba.Tempo.UI.TrayApplication.exe
O4 - HKLM\..\Run: [topi] C:\Program Files\TOSHIBA\Toshiba Online Product Information\topi.exe -startup
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKLM\..\Run: [Camera Assistant Software] "C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe" /start
O4 - HKLM\..\Run: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
O4 - HKLM\..\Run: [HSON] %ProgramFiles%\TOSHIBA\TBS\HSON.exe
O4 - HKLM\..\Run: [SmoothView] %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
O4 - HKLM\..\Run: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
O4 - HKLM\..\Run: [HDMICtrlMan] C:\Program Files\TOSHIBA\HDMICtrlMan\HDMICtrlMan.exe
O4 - HKLM\..\Run: [Toshiba Registration] C:\Program Files\Toshiba\Registration\ToshibaRegistration.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [au] C:\Program Files\Dealio\DealioAU.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [BDMCon] "C:\Program Files\Softwin\BitDefender10\bdmcon.exe" /reg
O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\Softwin\BitDefender10\bdagent.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [WeatherDPA] "C:\Program Files\Zango\bin\10.3.75.0\Weather.exe" -auto
O4 - HKCU\..\Run: [Gadu-Gadu] "C:\Program Files\Gadu-Gadu\gg.exe" /tray
O4 - HKCU\..\Run: [Fork live trust pop] "C:\ProgramData\Logo Dash Meta.fa7t5"
O4 - HKCU\..\Run: [Move meet] "C:\ProgramData\thunk plan plan.eto5s"
O4 - HKCU\..\Run: [idwato] "c:\users\nàzlii\appdata\local\idwato.exe" idwato
O4 - HKCU\..\Run: [ares] "C:\Program Files\Ares\Ares.exe" -h
O4 - HKCU\..\Run: [ijlno] "c:\users\nàzlii\appdata\local\ijlno.exe" ijlno
O4 - HKCU\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe" /systray /nologon
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - .DEFAULT User Startup: TRDCReminder.lnk = C:\Program Files\Toshiba\TRDCReminder\TRDCReminder.exe (User 'Default user')
O4 - Startup: OneNote 2007 - Capture d'écran et lancement.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: Compare Prices with &Dealio - C:\Users\Nàzlii\AppData\LocalLow\Dealio\kb127\res\DealioSearch.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~2.0_0\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~2.0_0\bin\ssv.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: eBay - Achetez, Vendez - {76577871-04EC-495E-A12B-91F7C3600AFA} - http://rover.ebay.com/rover/1/709-44555-9400-3/4 (file missing)
O9 - Extra button: Amazon.fr - {8A918C1D-E123-4E36-B562-5C1519E434CE} - http://www.amazon.fr/exec/obidos/redirect-home?tag=Toshibafrbholink-21&site=home (file missing)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: Dealio - {E908B145-C847-4e85-B315-07E2E70DECF8} - C:\Program Files\Dealio\kb127\Dealio.dll
O9 - Extra 'Tools' menuitem: Dealio - {E908B145-C847-4e85-B315-07E2E70DECF8} - C:\Program Files\Dealio\kb127\Dealio.dll
O13 - Gopher Prefix:
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe
O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (Audiosrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Common Files\Softwin\BitDefender Scan Server\bdss.exe
O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: ConfigFree Service - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe
O23 - Service: @%SystemRoot%\system32\dhcpcsvc.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe
O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe
O23 - Service: @%SystemRoot%\ehome\ehstart.dll,-101 (ehstart) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\emdmgmt.dll,-1000 (EMDMgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (Eventlog) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: hpqcxs08 - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Service HP CUE DeviceDiscovery (hpqddsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-200 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe
O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - SOFTWIN S.R.L. - C:\Program Files\Common Files\Softwin\BitDefender Update Service\livesrv.exe
O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe
O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Net Driver HPZ12 - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe
O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netprof.dll,-246 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: O2Micro Flash Memory Card Service (o2flash) - O2Micro International - C:\Program Files\O2Micro Flash Memory Card Driver\o2flash.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Pml Driver HPZ12 - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @regsvc.dll,-1 (RemoteRegistry) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe
O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe
O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe
O23 - Service: @%SystemRoot%\system32\SLUINotify.dll,-103 (SLUINotify) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: SmartFaceVWatchSrv - Toshiba - C:\Program Files\Toshiba\SmartFaceV\SmartFaceVWatchSrv.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe
O23 - Service: Spouleur d'impression (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe
O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Notebook Performance Tuning Service (TempoMonitoringService) - Toshiba Europe GmbH - C:\Program Files\Toshiba TEMPRO\TempoSVC.exe
O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: TOSHIBA Navi Support Service (TNaviSrv) - TOSHIBA Corporation - C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA Bluetooth Service - Unknown owner - c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe (file missing)
O23 - Service: TOSHIBA SMART Log Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe
O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - SOFTWIN S.R.L. - C:\Program Files\Softwin\BitDefender10\vsserv.exe
O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe
O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\wmpnetwk.exe
O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\SearchIndexer.exe,-103 (WSearch) - Unknown owner - C:\Windows\system32\SearchIndexer.exe
O23 - Service: @%systemroot%\system32\wuaueng.dll,-105 (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe
O23 - Service: BitDefender Communicator (XCOMM) - SOFTWIN S.R.L - C:\Program Files\Common Files\Softwin\BitDefender Communicator\xcommsvr.exe

10 réponses

Réponse 1 / 10
Destrio5 Messages postés 99820 Date d'inscription   Statut Modérateur Dernière intervention   10 305
 
Bonjour,

● Désactive l'UAC le temps de la désinfection.

● Télécharge Ad-Remover (de Cyrildu17 / C_XX) sur ton Bureau.

/!\ Déconnecte-toi d'Internet et ferme toutes applications en cours. /!\

● Double-clique sur le programme AD-R situé sur ton Bureau.
(Sous Vista, il faut cliquer droit sur AD-R et choisir Exécuter en tant qu'administrateur)
● Au menu principal, choisis l'option L.
● Poste le rapport généré (C:\Ad-Report-CLEAN.log).

(CTRL+A pour tout sélectionner, CTRL+C pour copier et CTRL+V pour coller)

Note : "Process.exe", une composante de l'outil, est détectée par certains antivirus (AntiVir, Kaspersky, etc.) comme étant un RiskTool.
0
Réponse 2 / 10
Utilisateur anonyme
 
.
======= RAPPORT D'AD-REMOVER 1.1.4.6_I | UNIQUEMENT XP/VISTA/7 =======
.
Mis à jour par C_XX le 21.01.2010 à 9:13
Contact: AdRemover.contact@gmail.com
Site web: http://pagesperso-orange.fr/NosTools/ad_remover.html
.
Lancé à: 15:03:37, 21/01/2010 | Mode Normal | Option: CLEAN
Exécuté de: C:\Ad-Remover\
Système d'exploitation: Microsoft® Windows Vista™ HomePremium Service Pack 2 v6.0.6001
Nom du PC: PC-DE-N·ZLII | Utilisateur actuel: N…zlii
.
============== ÉLÉMENT(S) NEUTRALISÉ(S) ==============
.

C:\Users\NZLII~1\AppData\Roaming\Mozilla\FireFox\Profiles\ga2iwg4t.default\extensions\toolbar@ask.com
C:\Users\NZLII~1\AppData\Roaming\Mozilla\FireFox\Profiles\ga2iwg4t.default\searchplugins\askcom.xml
C:\Windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
C:\Program Files\Mozilla FireFox\Components\AskHPRFF.js
C:\Program Files\Mozilla FireFox\Components\AskSearch.js
C:\Windows\System32\Tasks\Scheduled Update for Ask Toolbar
C:\PROGRA~2\MICROS~1\Windows\STARTM~1\Programs\Dealio
C:\PROGRA~2\MICROS~1\Windows\STARTM~1\Programs\Zango
C:\Program Files\Ask.com
C:\Program Files\Dealio
C:\Users\NZLII~1\AppData\Roaming\WeatherDPA
C:\Users\NZLII~1\AppData\Roaming\Zango
C:\Users\N…zlii\AppData\LocalLow\AskToolbar
C:\Users\N…zlii\AppData\LocalLow\Dealio
C:\ProgramData\2ACA5CC3-0F83-453D-A079-1076FE1A8B65
C:\ProgramData\ZangoSA
C:\Windows\Installer\be67a4.msi
C:\Users\N…zlii\AppData\Local\idwato.bat
C:\Users\N…zlii\AppData\Local\idwato.dat
C:\Users\N…zlii\AppData\Local\idwato_nav.dat
C:\Users\N…zlii\AppData\Local\idwato_navps.dat
C:\Users\N…zlii\AppData\Local\ijlno.bat
C:\Users\N…zlii\AppData\Local\ijlno.dat
C:\Users\N…zlii\AppData\Local\ijlno_nav.dat
C:\Users\N…zlii\AppData\Local\ijlno_navps.dat

(!) -- Fichiers temporaires supprimés.

.
HKCU\software\appdatalow\AskBarDis
HKCU\software\appdatalow\AskHomepage
HKCU\software\appdatalow\software\AskToolbar
HKCU\software\appdatalow\software\Zango
HKCU\software\Ask.com
HKCU\software\fcn
HKCU\Software\Microsoft\Internet Explorer\Explorer Bars\{2AA2FBF8-9C76-4E97-A226-25C5F4AB6358}
HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
HKCU\software\microsoft\internet explorer\searchscopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}
HKCU\software\microsoft\internet explorer\searchscopes\{CF739809-1C6C-47C0-85B9-569DBB141420}
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440}
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{E67C74F4-A00A-4F2C-9FEC-FD9DC004A67F}
HKCU\software\zangosa
HKLM\Software\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
HKLM\software\classes\appid\GenericAskToolbar.DLL
HKLM\Software\Classes\CLSID\{6A87B991-A31F-4130-AE72-6D0C294BF082}
HKLM\Software\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
HKLM\software\classes\GenericAskToolbar.ToolbarWnd
HKLM\software\classes\GenericAskToolbar.ToolbarWnd.1
HKLM\software\classes\installer\Products\A28B4D68DEBAA244EB686953B7074FEF
HKLM\Software\Classes\Interface\{2893116C-A176-42B1-8794-DA8C9FC45564}
HKLM\Software\Classes\Interface\{3CEB04AB-08AF-45F4-81B4-70D13C1F7B85}
HKLM\Software\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
HKLM\Software\Classes\Interface\{A7213D71-47E1-4832-92D7-D61DFE9F231F}
HKLM\Software\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
HKLM\Software\Classes\Interface\{CF82F350-E1C4-4916-AC12-BA73DB60AFB7}
HKLM\software\classes\Srv.CoreServices
HKLM\software\classes\Srv.CoreServices.1
HKLM\Software\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
HKLM\software\Dealio
HKLM\Software\Microsoft\Internet Explorer\Extensions\{E908B145-C847-4e85-B315-07E2E70DECF8}
HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0566A191-D675-4911-9C7E-50EDBEF90F32}
HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
HKLM\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EDDBB5EE-BB64-4bfc-9DBE-E7C85941335B}
HKLM\Software\Microsoft\Internet Explorer\Toolbar\\{66886C4D-B307-4ECA-A228-52CA9B9851A4}
HKLM\Software\Microsoft\Internet Explorer\Toolbar\\{90B8B761-DF2B-48AC-BBE0-BCC03A819B3B}
HKLM\Software\Microsoft\Internet Explorer\Toolbar\\{D4027C7F-154A-4066-A1AD-4243D8127440}
HKLM\Software\Microsoft\Internet Explorer\Toolbar\\{E67C74F4-A00A-4F2C-9FEC-FD9DC004A67F}
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Scheduled Update for Ask Toolbar
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6A87B991-A31F-4130-AE72-6D0C294BF082}
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\au
HKLM\software\microsoft\windows\currentversion\uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
HKLM\software\microsoft\windows\currentversion\uninstall\ijlno
.
============== Scan additionnel ==============
.
.
* Mozilla FireFox Version 3.5.7 [fr] *
.
Nom du profil: ga2iwg4t.default (N…zlii)
.
(NZLII~1, prefs.js) Browser.download.dir, C:\Users\Nàzlii\Desktop
(NZLII~1, prefs.js) Browser.download.lastDir, C:\Users\Nàzlii\Desktop
(NZLII~1, prefs.js) Browser.search.defaultenginename, Ask.com
(NZLII~1, prefs.js) Browser.search.defaulturl, hxxp://www.bing.com/search?FORM=IEFM1&q=
(NZLII~1, prefs.js) Browser.search.selectedEngine, Google
(NZLII~1, prefs.js) Browser.startup.homepage, hxxp://fr.ask.com?o=15015&l=dis
(NZLII~1, prefs.js) Extensions.enabledItems, toolbar@ask.com:3.4.4.118,{3112ca9c-de6d-4884-a869-9855de68056c}:6.1.20091119W,{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}:6.0.07,{20a82645-c095-46ed-80e3-08825760534b}:1.1,{972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.7
(NZLII~1, prefs.js) Keyword.URL, hxxp://supertoolbar.ask.com/redirect?client=ff&src=kw&tb=DVSV5&o=15012&locale=fr_FR&q=
(NZLII~1, prefs.js) Privacy.popups.showBrowserMessage, false
.
(NZLII~1, prefs.js) EFFACE - Browser.search.defaultengine, Ask.com
(NZLII~1, prefs.js) EFFACE - Browser.search.defaultenginename, Ask.com
(NZLII~1, prefs.js) EFFACE - Browser.search.order.1, Ask.com
(NZLII~1, prefs.js) EFFACE - Browser.startup.homepage, hxxp://fr.ask.com?o=15015&l=dis
(NZLII~1, prefs.js) EFFACE - Extensions.asktb.cbid, U9
(NZLII~1, prefs.js) EFFACE - Extensions.asktb.default-channel-url-mask, hxxp://fr.ask.com/web?q={query}&qsrc={qsrc}&o={o}&l={l}
(NZLII~1, prefs.js) EFFACE - Extensions.asktb.fresh-install, false
(NZLII~1, prefs.js) EFFACE - Extensions.asktb.l, dis
(NZLII~1, prefs.js) EFFACE - Extensions.asktb.last-config-req, 1264022455867
(NZLII~1, prefs.js) EFFACE - Extensions.asktb.locale, fr_FR
(NZLII~1, prefs.js) EFFACE - Extensions.asktb.o, 15012
(NZLII~1, prefs.js) EFFACE - Extensions.asktb.overlay-reloaded-using-restart, true
(NZLII~1, prefs.js) EFFACE - Extensions.asktb.qsrc, 2871
(NZLII~1, prefs.js) EFFACE - Extensions.asktb.r, 4
(NZLII~1, prefs.js) EFFACE - Extensions.enabledItems, toolbar@ask.com:3.4.4.118,{3112ca9c-de6d-4884-a869-9855de68056c}:6.1.20091119W,{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}:6.0.07,{20a82645-c095-46ed-80e3-08825760534b}:1.1,{972ce4c6-7e08-4474-a285-3208198ce6fd}:3.5.7
(NZLII~1, prefs.js) EFFACE - Keyword.URL, hxxp://supertoolbar.ask.com/redirect?client=ff&src=kw&tb=DVSV5&o=15012&locale=fr_FR&q=
(NZLII~1, prefs.js) EFFACE - Startup.homepage_override_url, hxxp://www.ask.com/?o=13166&l=dis
.
.
* Internet Explorer Version 7.0.6001.18000 *
.
[HKEY_CURRENT_USER\..\Internet Explorer\Main]
.
Do404Search: 01000000
Show_ToolBar: yes
Start Page: hxxp://fr.msn.com/
Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Search Bar: hxxp://go.microsoft.com/fwlink/?linkid=54896
Use Search Asst: no
Use Custom Search URL: 1 (0x1)
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
.
[HKEY_LOCAL_MACHINE\..\Internet Explorer\Main]
.
Start Page: hxxp://fr.msn.com/
Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Delete_Temp_Files_On_Exit: yes
Local Page: %SystemRoot%\system32\blank.htm
Search bar: hxxp://search.msn.com/spbasic.htm
.
[HKEY_LOCAL_MACHINE\..\Internet Explorer\ABOUTURLS]
.
Tabs: res://ieframe.dll/tabswelcome.htm
.
===================================
.
10759 Octet(s) - C:\Ad-Report-CLEAN[1].log
.
5 Fichier(s) - C:\Users\NZLII~1\AppData\Local\Temp
19 Fichier(s) - C:\Windows\Temp
0 Fichier(s) - C:\Windows\Prefetch
.
20 Fichier(s) - C:\Ad-Remover\BACKUP
752 Fichier(s) - C:\Ad-Remover\QUARANTINE
.
Fin à: 15:08:16 | 21/01/2010 - CLEAN[1]
.
============== E.O.F ==============
.
0
Réponse 3 / 10
Destrio5 Messages postés 99820 Date d'inscription   Statut Modérateur Dernière intervention   10 305
 
--> Désinstalle Ad-Remover.

--> Télécharge Lop S&D (par Eric_71 & Angeldark) sur ton Bureau.

--> Double-clique dessus pour lancer l'installation.

--> Puis double-clique sur Lop S&D présent sur ton Bureau.
(Sous Vista, il faut cliquer droit sur Lop S&D et choisir Exécuter en tant qu'administrateur)

--> Sélectionne la langue souhaitée, puis choisis l'option 1 (Recherche).

--> Patiente jusqu'à la fin du scan.

--> Poste le rapport généré (C:\lopR.txt).
0
Réponse 4 / 10
Utilisateur anonyme
 
Lop s&d ne veux pas se telecharger , je fais comment ?
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 10
Destrio5 Messages postés 99820 Date d'inscription   Statut Modérateur Dernière intervention   10 305
 
Comment ça ?
0
Réponse 6 / 10
Utilisateur anonyme
 
c'est bon j'ai reussi , je lance le scan
0
Réponse 7 / 10
Utilisateur anonyme
 
--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Intel(R) Core(TM)2 Duo CPU T5800 @ 2.00GHz )
BIOS : PhoenixBIOS 4.0 Release 6.1
USER : Nàzlii ( Not Administrator ! )
BOOT : Normal boot
Antivirus : Bitdefender Antivirus 8.0 (Activated)
C:\ (Local Disk) - NTFS - Total:117 Go (Free:73 Go)
E:\ (Local Disk) - NTFS - Total:113 Go (Free:108 Go)
F:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 21/01/2010|21:07 )

[ UAC => 0 ]

--------------------\\ Listing des dossiers dans Local

[22/10/2009|15:59] C:\Users\NZLII~1\AppData\Local\Adobe
[08/11/2008|18:03] C:\Users\NZLII~1\AppData\Local\Application Data
[29/07/2009|14:33] C:\Users\NZLII~1\AppData\Local\Ares
[06/11/2009|22:54] C:\Users\NZLII~1\AppData\Local\Ashampoo Antivirus
[08/11/2008|18:11] C:\Users\NZLII~1\AppData\Local\ATI
[13/12/2008|21:09] C:\Users\NZLII~1\AppData\Local\Auchan Photogenie
[06/11/2009|19:49] C:\Users\NZLII~1\AppData\Local\BVRP Software
[06/11/2009|22:55] C:\Users\NZLII~1\AppData\Local\d3d9caps.dat
[19/07/2009|00:02] C:\Users\NZLII~1\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[21/01/2010|14:46] C:\Users\NZLII~1\AppData\Local\GDIPFONTCACHEV1.DAT
[08/12/2009|21:16] C:\Users\NZLII~1\AppData\Local\Google
[08/11/2008|18:03] C:\Users\NZLII~1\AppData\Local\Historique
[21/01/2010|15:12] C:\Users\NZLII~1\AppData\Local\IconCache.db
[13/06/2009|23:29] C:\Users\NZLII~1\AppData\Local\Microsoft
[07/12/2008|02:43] C:\Users\NZLII~1\AppData\Local\Microsoft Games
[08/11/2008|23:25] C:\Users\NZLII~1\AppData\Local\Mozilla
[27/03/2009|19:28] C:\Users\NZLII~1\AppData\Local\Real
[06/11/2009|19:48] C:\Users\NZLII~1\AppData\Local\Sony Ericsson
[21/01/2010|21:04] C:\Users\NZLII~1\AppData\Local\Temp
[08/11/2008|18:03] C:\Users\NZLII~1\AppData\Local\Temporary Internet Files
[08/11/2008|18:12] C:\Users\NZLII~1\AppData\Local\Toshiba
[01/03/2009|00:13] C:\Users\NZLII~1\AppData\Local\VirtualStore

--------------------\\ Tâches planifiées dans C:\Windows\tasks

[20/01/2010 18:14][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{373A49B1-CDE7-451B-844E-AB7B30CB5268}.job
[21/01/2010 20:26][--ah-----] C:\Windows\tasks\SA.DAT
[21/01/2010 19:49][--a------] C:\Windows\tasks\SCHEDLGU.TXT

--------------------\\ Listing des dossiers dans C:\ProgramData

[03/07/2008|16:42] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[20/01/2010|23:05] C:\ProgramData\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
[23/11/2008|13:04] C:\ProgramData\2 32 dumb.kmppr6c
[16/12/2008|19:54] C:\ProgramData\850BC61881.sys
[15/07/2009|22:45] C:\ProgramData\Adobe
[02/11/2006|14:02] C:\ProgramData\Application Data
[08/11/2008|18:11] C:\ProgramData\ATI
[20/01/2010|22:37] C:\ProgramData\Avira
[19/07/2009|23:26] C:\ProgramData\BitDefender
[08/11/2008|18:00] C:\ProgramData\Bureau
[06/11/2009|19:48] C:\ProgramData\BVRP Software
[02/11/2006|14:02] C:\ProgramData\Desktop
[02/11/2006|14:02] C:\ProgramData\Documents
[08/11/2008|19:48] C:\ProgramData\each for grid.lrq3ddw
[22/01/2009|21:03] C:\ProgramData\Eq Anti Fork Live
[08/11/2008|18:00] C:\ProgramData\Favoris
[02/11/2006|14:02] C:\ProgramData\Favorites
[08/12/2009|21:16] C:\ProgramData\Google
[14/11/2008|21:15] C:\ProgramData\Hewlett-Packard
[14/11/2008|21:27] C:\ProgramData\HP
[02/01/2009|15:32] C:\ProgramData\HP Product Assistant
[20/01/2010|22:27] C:\ProgramData\hpzinstall.log
[02/02/2009|18:27] C:\ProgramData\IsolatedStorage
[16/12/2008|20:33] C:\ProgramData\KGyGaAvL.sys
[02/01/2009|21:09] C:\ProgramData\Logo Dash Meta.fa7t5
[12/12/2009|21:35] C:\ProgramData\McAfee
[10/12/2009|21:35] C:\ProgramData\McAfee Security Scan
[08/11/2008|18:00] C:\ProgramData\Menu D‚marrer
[02/04/2009|20:02] C:\ProgramData\Messenger Plus!
[06/11/2009|23:03] C:\ProgramData\Microsoft
[12/12/2009|14:14] C:\ProgramData\Microsoft Help
[08/11/2008|18:00] C:\ProgramData\ModŠles
[20/01/2010|22:32] C:\ProgramData\Norton
[09/09/2009|17:00] C:\ProgramData\NortonInstaller
[06/02/2009|11:19] C:\ProgramData\ProgramSlow
[04/10/2009|18:14] C:\ProgramData\Sony Ericsson
[20/01/2010|23:23] C:\ProgramData\Spybot - Search & Destroy
[02/11/2006|14:02] C:\ProgramData\Start Menu
[20/01/2010|22:32] C:\ProgramData\Symantec
[20/01/2010|21:01] C:\ProgramData\TEMP
[02/11/2006|14:02] C:\ProgramData\Templates
[23/11/2008|13:03] C:\ProgramData\thunk plan plan.7y8kmh
[02/01/2009|21:08] C:\ProgramData\thunk plan plan.eto5s
[02/01/2009|21:08] C:\ProgramData\thunk plan plan.fnataqf
[08/11/2008|19:48] C:\ProgramData\thunk plan plan.pit4bpb
[08/11/2008|19:49] C:\ProgramData\thunk plan plan.ss19c
[08/11/2008|17:02] C:\ProgramData\Toshiba
[08/11/2008|18:04] C:\ProgramData\ToshibaEurope
[20/01/2010|23:07] C:\ProgramData\TuneUp Software
[28/07/2009|16:13] C:\ProgramData\Ulead Systems
[14/11/2008|21:22] C:\ProgramData\WEBREG
[17/03/2009|19:49] C:\ProgramData\WLInstaller

--------------------\\ Listing des dossiers dans C:\Program Files

[03/07/2008|16:42] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[20/04/2009|15:08] C:\Program Files\Alwil Software
[28/07/2009|22:04] C:\Program Files\Ares
[08/11/2008|16:52] C:\Program Files\ATI
[08/11/2008|16:53] C:\Program Files\ATI Technologies
[08/11/2008|22:47] C:\Program Files\Audacity
[20/01/2010|22:37] C:\Program Files\Avira
[06/11/2009|23:56] C:\Program Files\AxBx
[08/11/2008|16:59] C:\Program Files\Camera Assistant Software for Toshiba
[17/03/2009|19:56] C:\Program Files\Circle Development
[21/01/2010|14:43] C:\Program Files\Common Files
[27/07/2009|16:18] C:\Program Files\Conduit
[08/11/2008|16:55] C:\Program Files\CONEXANT
[28/07/2009|16:27] C:\Program Files\Corel
[29/07/2009|10:08] C:\Program Files\DivX
[12/11/2009|19:59] C:\Program Files\DVDVideoSoft
[08/11/2008|18:00] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[06/11/2009|19:46] C:\Program Files\FP
[04/01/2009|16:28] C:\Program Files\Free Easy Burner
[17/11/2008|18:29] C:\Program Files\Gadu-Gadu
[29/07/2009|10:08] C:\Program Files\Google
[14/11/2008|21:17] C:\Program Files\Hewlett-Packard
[20/01/2010|22:27] C:\Program Files\HP
[20/01/2010|22:28] C:\Program Files\InstallShield Installation Information
[08/11/2008|16:52] C:\Program Files\Intel
[11/12/2009|18:15] C:\Program Files\Internet Explorer
[03/07/2008|16:23] C:\Program Files\InterVideo
[12/02/2009|19:19] C:\Program Files\Java
[11/11/2009|12:24] C:\Program Files\Messenger Plus! Live
[06/11/2009|21:47] C:\Program Files\Microsoft
[02/11/2006|13:37] C:\Program Files\Microsoft Games
[03/07/2008|16:41] C:\Program Files\Microsoft Office
[20/01/2010|20:32] C:\Program Files\Microsoft Silverlight
[12/06/2009|06:53] C:\Program Files\Microsoft Works
[03/07/2008|16:41] C:\Program Files\Microsoft.NET
[21/01/2008|03:35] C:\Program Files\Movie Maker
[21/01/2010|20:44] C:\Program Files\Mozilla Firefox
[02/11/2006|13:37] C:\Program Files\MSBuild
[03/07/2008|15:18] C:\Program Files\MSXML 4.0
[03/07/2008|15:56] C:\Program Files\NetWaiting
[08/11/2008|19:13] C:\Program Files\Neuf
[20/01/2010|22:32] C:\Program Files\Norton Security Scan
[03/07/2008|15:56] C:\Program Files\O2Micro Flash Memory Card Driver
[06/11/2009|19:52] C:\Program Files\OpenOffice.org 3
[21/01/2010|14:43] C:\Program Files\PC Tools AntiVirus
[08/11/2008|22:56] C:\Program Files\PhotoFiltre
[08/11/2008|23:21] C:\Program Files\Real
[02/11/2006|13:37] C:\Program Files\Reference Assemblies
[19/07/2009|23:24] C:\Program Files\Softwin
[04/10/2009|18:14] C:\Program Files\Sony Ericsson
[20/01/2010|22:59] C:\Program Files\Spybot - Search & Destroy
[20/01/2010|22:28] C:\Program Files\Toshiba
[03/07/2008|16:34] C:\Program Files\Toshiba TEMPRO
[20/01/2010|23:09] C:\Program Files\TuneUp Utilities 2010
[06/11/2009|19:48] C:\Program Files\Ulead Systems
[02/11/2006|14:01] C:\Program Files\Uninstall Information
[21/01/2008|03:35] C:\Program Files\Windows Calendar
[21/01/2008|03:35] C:\Program Files\Windows Collaboration
[21/01/2008|03:35] C:\Program Files\Windows Defender
[21/01/2008|03:35] C:\Program Files\Windows Journal
[06/11/2009|21:46] C:\Program Files\Windows Live
[28/03/2009|14:08] C:\Program Files\Windows Live Safety Center
[14/01/2010|18:07] C:\Program Files\Windows Mail
[30/10/2009|12:38] C:\Program Files\Windows Media Player
[08/11/2008|18:00] C:\Program Files\Windows NT
[21/01/2008|03:35] C:\Program Files\Windows Photo Gallery
[21/01/2008|03:35] C:\Program Files\Windows Sidebar
[06/03/2009|06:15] C:\Program Files\WinRAR

--------------------\\ Listing des dossiers dans C:\Program Files\Common Files

[15/07/2009|22:45] C:\Program Files\Common Files\Adobe
[03/07/2008|16:41] C:\Program Files\Common Files\DESIGNER
[12/11/2009|19:59] C:\Program Files\Common Files\DVDVideoSoft
[14/11/2008|21:17] C:\Program Files\Common Files\Hewlett-Packard
[14/11/2008|21:21] C:\Program Files\Common Files\HP
[28/07/2009|18:51] C:\Program Files\Common Files\InstallShield
[03/07/2008|15:35] C:\Program Files\Common Files\Java
[20/01/2010|22:35] C:\Program Files\Common Files\microsoft shared
[28/07/2009|21:16] C:\Program Files\Common Files\PX Storage Engine
[06/11/2009|19:47] C:\Program Files\Common Files\Real
[02/11/2006|12:18] C:\Program Files\Common Files\Services
[19/07/2009|23:25] C:\Program Files\Common Files\Softwin
[02/11/2006|12:18] C:\Program Files\Common Files\SpeechEngines
[10/01/2010|18:08] C:\Program Files\Common Files\Symantec Shared
[21/01/2008|03:35] C:\Program Files\Common Files\System
[08/11/2008|17:02] C:\Program Files\Common Files\Toshiba Shared
[28/07/2009|16:27] C:\Program Files\Common Files\Ulead Systems
[02/03/2009|20:13] C:\Program Files\Common Files\Windows Live
[08/11/2008|19:46] C:\Program Files\Common Files\WindowsLiveInstaller
[03/07/2008|16:34] C:\Program Files\Common Files\Wise Installation Wizard

--------------------\\ Process

( 91 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

C:\ProgramData\Logo Dash Meta.fa7t5
C:\ProgramData\thunk plan plan.eto5s
C:\ProgramData\thunk plan plan.ss19c
C:\ProgramData\thunk plan plan.7y8kmh
C:\ProgramData\2 32 dumb.kmppr6c
C:\ProgramData\each for grid.lrq3ddw
C:\ProgramData\thunk plan plan.fnataqf
C:\ProgramData\thunk plan plan.pit4bpb

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Fork live trust pop"="\"C:\\ProgramData\\Logo Dash Meta.fa7t5\""
"Move meet"="\"C:\\ProgramData\\thunk plan plan.eto5s\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE

--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-01-21 21:07:47
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 92

--------------------\\ Recherche d'autres infections

Aucune autre infection trouvée !

[F:17][D:5]-> C:\Users\NZLII~1\AppData\Local\Temp
[F:14][D:1]-> C:\Users\NZLII~1\AppData\Roaming\MICROS~1\Windows\Cookies
[F:85][D:4]-> C:\Users\NZLII~1\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:305][D:20]-> C:\$Recycle.Bin

1 - "C:\Lop SD\LopR_1.txt" - 21/01/2010|21:09 - Option : [1]

--------------------\\ Fin du rapport a 21:09:46
[ UAC => 1 ]
0
Réponse 8 / 10
Destrio5 Messages postés 99820 Date d'inscription   Statut Modérateur Dernière intervention   10 305
 
--> Double-clique sur Lop S&D pour le lancer.
(Sous Vista, il faut cliquer droit sur Lop S&D et choisir Exécuter en tant qu'administrateur)

--> Choisis cette fois-ci l'option 2 (Suppression).

--> Ne ferme pas la fenêtre lors de la suppression !

--> Poste le rapport généré (C:\lopR.txt).

(Si le Bureau ne réapparaît pas, presse Ctrl+Alt+Suppr, Onglet Fichier, Nouvelle tâche, tape explorer.exe et valide)
0
Réponse 9 / 10
Utilisateur anonyme
 
--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Intel(R) Core(TM)2 Duo CPU T5800 @ 2.00GHz )
BIOS : PhoenixBIOS 4.0 Release 6.1
USER : Nàzlii ( Not Administrator ! )
BOOT : Normal boot
Antivirus : Bitdefender Antivirus 8.0 (Activated)
C:\ (Local Disk) - NTFS - Total:117 Go (Free:73 Go)
E:\ (Local Disk) - NTFS - Total:113 Go (Free:108 Go)
F:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [2] ( 21/01/2010|21:18 )

[ UAC => 1 ]

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

Supprime! - C:\ProgramData\Logo Dash Meta.fa7t5
Supprime! - C:\ProgramData\thunk plan plan.eto5s
Supprime! - C:\ProgramData\thunk plan plan.ss19c
Supprime! - C:\ProgramData\thunk plan plan.7y8kmh
Supprime! - C:\ProgramData\2 32 dumb.kmppr6c
Supprime! - C:\ProgramData\each for grid.lrq3ddw
Supprime! - C:\ProgramData\thunk plan plan.fnataqf
Supprime! - C:\ProgramData\thunk plan plan.pit4bpb
-
[ Fichier Hosts ] .. Restaure!

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

--------------------\\ Listing des dossiers dans Local

[22/10/2009|15:59] C:\Users\NZLII~1\AppData\Local\Adobe
[08/11/2008|18:03] C:\Users\NZLII~1\AppData\Local\Application Data
[29/07/2009|14:33] C:\Users\NZLII~1\AppData\Local\Ares
[06/11/2009|22:54] C:\Users\NZLII~1\AppData\Local\Ashampoo Antivirus
[08/11/2008|18:11] C:\Users\NZLII~1\AppData\Local\ATI
[13/12/2008|21:09] C:\Users\NZLII~1\AppData\Local\Auchan Photogenie
[06/11/2009|19:49] C:\Users\NZLII~1\AppData\Local\BVRP Software
[06/11/2009|22:55] C:\Users\NZLII~1\AppData\Local\d3d9caps.dat
[19/07/2009|00:02] C:\Users\NZLII~1\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[21/01/2010|14:46] C:\Users\NZLII~1\AppData\Local\GDIPFONTCACHEV1.DAT
[08/12/2009|21:16] C:\Users\NZLII~1\AppData\Local\Google
[08/11/2008|18:03] C:\Users\NZLII~1\AppData\Local\Historique
[21/01/2010|15:12] C:\Users\NZLII~1\AppData\Local\IconCache.db
[13/06/2009|23:29] C:\Users\NZLII~1\AppData\Local\Microsoft
[07/12/2008|02:43] C:\Users\NZLII~1\AppData\Local\Microsoft Games
[08/11/2008|23:25] C:\Users\NZLII~1\AppData\Local\Mozilla
[27/03/2009|19:28] C:\Users\NZLII~1\AppData\Local\Real
[06/11/2009|19:48] C:\Users\NZLII~1\AppData\Local\Sony Ericsson
[21/01/2010|21:18] C:\Users\NZLII~1\AppData\Local\Temp
[08/11/2008|18:03] C:\Users\NZLII~1\AppData\Local\Temporary Internet Files
[08/11/2008|18:12] C:\Users\NZLII~1\AppData\Local\Toshiba
[01/03/2009|00:13] C:\Users\NZLII~1\AppData\Local\VirtualStore

--------------------\\ Tâches planifiées dans C:\Windows\tasks

[20/01/2010 18:14][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{373A49B1-CDE7-451B-844E-AB7B30CB5268}.job
[21/01/2010 20:26][--ah-----] C:\Windows\tasks\SA.DAT
[21/01/2010 19:49][--a------] C:\Windows\tasks\SCHEDLGU.TXT

--------------------\\ Listing des dossiers dans C:\ProgramData

[03/07/2008|16:42] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[20/01/2010|23:05] C:\ProgramData\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
[16/12/2008|19:54] C:\ProgramData\850BC61881.sys
[15/07/2009|22:45] C:\ProgramData\Adobe
[02/11/2006|14:02] C:\ProgramData\Application Data
[08/11/2008|18:11] C:\ProgramData\ATI
[20/01/2010|22:37] C:\ProgramData\Avira
[19/07/2009|23:26] C:\ProgramData\BitDefender
[08/11/2008|18:00] C:\ProgramData\Bureau
[06/11/2009|19:48] C:\ProgramData\BVRP Software
[02/11/2006|14:02] C:\ProgramData\Desktop
[02/11/2006|14:02] C:\ProgramData\Documents
[22/01/2009|21:03] C:\ProgramData\Eq Anti Fork Live
[08/11/2008|18:00] C:\ProgramData\Favoris
[02/11/2006|14:02] C:\ProgramData\Favorites
[08/12/2009|21:16] C:\ProgramData\Google
[14/11/2008|21:15] C:\ProgramData\Hewlett-Packard
[14/11/2008|21:27] C:\ProgramData\HP
[02/01/2009|15:32] C:\ProgramData\HP Product Assistant
[20/01/2010|22:27] C:\ProgramData\hpzinstall.log
[02/02/2009|18:27] C:\ProgramData\IsolatedStorage
[16/12/2008|20:33] C:\ProgramData\KGyGaAvL.sys
[12/12/2009|21:35] C:\ProgramData\McAfee
[10/12/2009|21:35] C:\ProgramData\McAfee Security Scan
[08/11/2008|18:00] C:\ProgramData\Menu D‚marrer
[02/04/2009|20:02] C:\ProgramData\Messenger Plus!
[06/11/2009|23:03] C:\ProgramData\Microsoft
[12/12/2009|14:14] C:\ProgramData\Microsoft Help
[08/11/2008|18:00] C:\ProgramData\ModŠles
[20/01/2010|22:32] C:\ProgramData\Norton
[09/09/2009|17:00] C:\ProgramData\NortonInstaller
[06/02/2009|11:19] C:\ProgramData\ProgramSlow
[04/10/2009|18:14] C:\ProgramData\Sony Ericsson
[20/01/2010|23:23] C:\ProgramData\Spybot - Search & Destroy
[02/11/2006|14:02] C:\ProgramData\Start Menu
[20/01/2010|22:32] C:\ProgramData\Symantec
[20/01/2010|21:01] C:\ProgramData\TEMP
[02/11/2006|14:02] C:\ProgramData\Templates
[08/11/2008|17:02] C:\ProgramData\Toshiba
[08/11/2008|18:04] C:\ProgramData\ToshibaEurope
[20/01/2010|23:07] C:\ProgramData\TuneUp Software
[28/07/2009|16:13] C:\ProgramData\Ulead Systems
[14/11/2008|21:22] C:\ProgramData\WEBREG
[17/03/2009|19:49] C:\ProgramData\WLInstaller

--------------------\\ Listing des dossiers dans C:\Program Files

[03/07/2008|16:42] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[20/04/2009|15:08] C:\Program Files\Alwil Software
[28/07/2009|22:04] C:\Program Files\Ares
[08/11/2008|16:52] C:\Program Files\ATI
[08/11/2008|16:53] C:\Program Files\ATI Technologies
[08/11/2008|22:47] C:\Program Files\Audacity
[20/01/2010|22:37] C:\Program Files\Avira
[06/11/2009|23:56] C:\Program Files\AxBx
[08/11/2008|16:59] C:\Program Files\Camera Assistant Software for Toshiba
[17/03/2009|19:56] C:\Program Files\Circle Development
[21/01/2010|14:43] C:\Program Files\Common Files
[27/07/2009|16:18] C:\Program Files\Conduit
[08/11/2008|16:55] C:\Program Files\CONEXANT
[28/07/2009|16:27] C:\Program Files\Corel
[29/07/2009|10:08] C:\Program Files\DivX
[12/11/2009|19:59] C:\Program Files\DVDVideoSoft
[08/11/2008|18:00] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[06/11/2009|19:46] C:\Program Files\FP
[04/01/2009|16:28] C:\Program Files\Free Easy Burner
[17/11/2008|18:29] C:\Program Files\Gadu-Gadu
[29/07/2009|10:08] C:\Program Files\Google
[14/11/2008|21:17] C:\Program Files\Hewlett-Packard
[20/01/2010|22:27] C:\Program Files\HP
[20/01/2010|22:28] C:\Program Files\InstallShield Installation Information
[08/11/2008|16:52] C:\Program Files\Intel
[11/12/2009|18:15] C:\Program Files\Internet Explorer
[03/07/2008|16:23] C:\Program Files\InterVideo
[12/02/2009|19:19] C:\Program Files\Java
[11/11/2009|12:24] C:\Program Files\Messenger Plus! Live
[06/11/2009|21:47] C:\Program Files\Microsoft
[02/11/2006|13:37] C:\Program Files\Microsoft Games
[03/07/2008|16:41] C:\Program Files\Microsoft Office
[20/01/2010|20:32] C:\Program Files\Microsoft Silverlight
[12/06/2009|06:53] C:\Program Files\Microsoft Works
[03/07/2008|16:41] C:\Program Files\Microsoft.NET
[21/01/2008|03:35] C:\Program Files\Movie Maker
[21/01/2010|20:44] C:\Program Files\Mozilla Firefox
[02/11/2006|13:37] C:\Program Files\MSBuild
[03/07/2008|15:18] C:\Program Files\MSXML 4.0
[03/07/2008|15:56] C:\Program Files\NetWaiting
[08/11/2008|19:13] C:\Program Files\Neuf
[20/01/2010|22:32] C:\Program Files\Norton Security Scan
[03/07/2008|15:56] C:\Program Files\O2Micro Flash Memory Card Driver
[06/11/2009|19:52] C:\Program Files\OpenOffice.org 3
[21/01/2010|14:43] C:\Program Files\PC Tools AntiVirus
[08/11/2008|22:56] C:\Program Files\PhotoFiltre
[08/11/2008|23:21] C:\Program Files\Real
[02/11/2006|13:37] C:\Program Files\Reference Assemblies
[19/07/2009|23:24] C:\Program Files\Softwin
[04/10/2009|18:14] C:\Program Files\Sony Ericsson
[20/01/2010|22:59] C:\Program Files\Spybot - Search & Destroy
[20/01/2010|22:28] C:\Program Files\Toshiba
[03/07/2008|16:34] C:\Program Files\Toshiba TEMPRO
[20/01/2010|23:09] C:\Program Files\TuneUp Utilities 2010
[06/11/2009|19:48] C:\Program Files\Ulead Systems
[02/11/2006|14:01] C:\Program Files\Uninstall Information
[21/01/2008|03:35] C:\Program Files\Windows Calendar
[21/01/2008|03:35] C:\Program Files\Windows Collaboration
[21/01/2008|03:35] C:\Program Files\Windows Defender
[21/01/2008|03:35] C:\Program Files\Windows Journal
[06/11/2009|21:46] C:\Program Files\Windows Live
[28/03/2009|14:08] C:\Program Files\Windows Live Safety Center
[14/01/2010|18:07] C:\Program Files\Windows Mail
[30/10/2009|12:38] C:\Program Files\Windows Media Player
[08/11/2008|18:00] C:\Program Files\Windows NT
[21/01/2008|03:35] C:\Program Files\Windows Photo Gallery
[21/01/2008|03:35] C:\Program Files\Windows Sidebar
[06/03/2009|06:15] C:\Program Files\WinRAR

--------------------\\ Listing des dossiers dans C:\Program Files\Common Files

[15/07/2009|22:45] C:\Program Files\Common Files\Adobe
[03/07/2008|16:41] C:\Program Files\Common Files\DESIGNER
[12/11/2009|19:59] C:\Program Files\Common Files\DVDVideoSoft
[14/11/2008|21:17] C:\Program Files\Common Files\Hewlett-Packard
[14/11/2008|21:21] C:\Program Files\Common Files\HP
[28/07/2009|18:51] C:\Program Files\Common Files\InstallShield
[03/07/2008|15:35] C:\Program Files\Common Files\Java
[20/01/2010|22:35] C:\Program Files\Common Files\microsoft shared
[28/07/2009|21:16] C:\Program Files\Common Files\PX Storage Engine
[06/11/2009|19:47] C:\Program Files\Common Files\Real
[02/11/2006|12:18] C:\Program Files\Common Files\Services
[19/07/2009|23:25] C:\Program Files\Common Files\Softwin
[02/11/2006|12:18] C:\Program Files\Common Files\SpeechEngines
[10/01/2010|18:08] C:\Program Files\Common Files\Symantec Shared
[21/01/2008|03:35] C:\Program Files\Common Files\System
[08/11/2008|17:02] C:\Program Files\Common Files\Toshiba Shared
[28/07/2009|16:27] C:\Program Files\Common Files\Ulead Systems
[02/03/2009|20:13] C:\Program Files\Common Files\Windows Live
[08/11/2008|19:46] C:\Program Files\Common Files\WindowsLiveInstaller
[03/07/2008|16:34] C:\Program Files\Common Files\Wise Installation Wizard

--------------------\\ Process

( 91 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE

--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-01-21 21:19:23
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 92

--------------------\\ Recherche d'autres infections

Aucune autre infection trouvée !

[F:17][D:5]-> C:\Users\NZLII~1\AppData\Local\Temp
[F:14][D:1]-> C:\Users\NZLII~1\AppData\Roaming\MICROS~1\Windows\Cookies
[F:91][D:4]-> C:\Users\NZLII~1\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:305][D:20]-> C:\$Recycle.Bin

1 - "C:\Lop SD\LopR_1.txt" - 21/01/2010|21:09 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 21/01/2010|21:21 - Option : [2]

--------------------\\ Fin du rapport a 21:21:15
[ UAC => 1 ]
0
Réponse 10 / 10
Destrio5 Messages postés 99820 Date d'inscription   Statut Modérateur Dernière intervention   10 305
 
--> Télécharge Random's System Information Tool (RSIT) (par random/random) sur ton Bureau.

--> Double-clique sur RSIT.exe afin de lancer le programme.
(Sous Vista, il faut cliquer droit sur RSIT.exe et choisir Exécuter en tant qu'administrateur)

--> Clique sur Continue à l'écran Disclaimer.

--> Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.

--> Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt (c'est celui qui apparaît à l'écran) ainsi que de info.txt (que tu verras dans la barre des tâches).

Note : les rapports sont sauvegardés dans le dossier C:\Rsit.
0

Discussions similaires

Impossible d'afficher le rapport de tableau croisé dynamique sur un rapport
Utilisateur anonyme -
TomH. -

13 réponses
écrire un rapport de travail
asi -
REGINALD -

3 réponses
impossible d'afficher le tableau dynamique sur un rapport existant
Pierre -
Adrien71 -

3 réponses
Problém affichage du tableau croisé dynamique
BK -
Raymond PENTIER -

2 réponses
Theme de rapport de stage option comptabilité
sana saydou -
Raymond PENTIER -

2 réponses