Fenetres cid
yomar04
Messages postés
54
Statut
Membre
-
yomar04 Messages postés 54 Statut Membre -
yomar04 Messages postés 54 Statut Membre -
Bonjour,
Je vous poste un rapport hijackthis, pc infesté de pub!!!!! Merci d'avance pour votre aide
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:59:01, on 29/08/2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18943)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\System32\ServoApp.exe
C:\Program Files\MFP Server\App\Common\MFPAgent.exe
C:\Program Files\EoRezo\eorezo.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Windows\ehome\ehtray.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Lecteur CANALPLAY\CanalPlayer.exe
C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\SpiderMessenger\SpiderMessenger.exe
C:\Users\Admin\AppData\Local\fstfqrew.exe
C:\Windows\RaUI.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Windows\system32\conime.exe
C:\Windows\system32\Macromed\Flash\FlashUtil10e.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe
C:\Program Files\Windows Live\Toolbar\wltuser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MP7BT5B7\HiJackThis[1].exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://mywwwsites.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://y.lo.st
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://mywwwsites.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://mywwwsites.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://mywwwsites.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wiiqi.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: mywebsites.pro-FR Toolbar - {33727f97-486d-4d19-97c3-23f432ef93fc} - C:\Program Files\mywebsites.pro-FR\tbmywe.dll
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: mywebsites.pro-FR Toolbar - {33727f97-486d-4d19-97c3-23f432ef93fc} - C:\Program Files\mywebsites.pro-FR\tbmywe.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (file missing)
O2 - BHO: Windows Live Family Safety Browser Helper - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SpiderMessenger_BHO - {ADE49752-DBBC-43A3-9498-379A82F574BF} - C:\Program Files\SpiderMessenger\SpiderMessenger.BHO.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll
O2 - BHO: EOBHO - {C10DC1F4-CCDF-4224-A24D-B23AFC3573C8} - C:\Program Files\EoRezo\EoRezoBHO.dll
O2 - BHO: EoBHO - {C7B76B90-3455-4AE6-A752-EAC4D19689E5} - C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: mywebsites.pro-FR Toolbar - {33727f97-486d-4d19-97c3-23f432ef93fc} - C:\Program Files\mywebsites.pro-FR\tbmywe.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [MFP Manager] C:\Program Files\MFP Server\MFPAgent.exe -CheckAutoRun
O4 - HKLM\..\Run: [Server Application] C:\Windows\system32\ServoApp.exe
O4 - HKLM\..\Run: [GDI Manager] "C:\Program Files\MFP Server\App\Common\MFPAgent.exe"
O4 - HKLM\..\Run: [eorezo] "C:\Program Files\EoRezo\eorezo.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKLM\..\RunOnce: [SoftwareHelper] C:\Users\Admin\AppData\Roaming\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe -runonce
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [CanalPlayer] C:\Program Files\Lecteur CANALPLAY\CanalPlayer.exe
O4 - HKCU\..\Run: [EPSON Stylus SX400 Series] C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIEGE.EXE /FU "C:\Windows\TEMP\E_S2829.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe" /systray /nologon
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [SpiderMessenger] "C:\Program Files\SpiderMessenger\SpiderMessenger.exe" -startrun
O4 - HKCU\..\Run: [fstfqrew] "c:\users\admin\appdata\local\fstfqrew.exe" fstfqrew
O4 - HKCU\..\RunOnce: [Shockwave Updater] C:\Windows\System32\Adobe\SHOCKW~1\SWHELP~1.EXE -Update -1100465 -"Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; GTB6; SLCC1; .NET CLR 2.0.50727; Media Center PC 5.0; InfoPath.1; OfficeLiveConnector.1.3; OfficeLivePatch.0.0; .NET CLR 3.5.30729; .NET CLR 3.0.30618)" -"http://ww12.gamevial.com"
O4 - Startup: Notification de cadeaux MSN.lnk = C:\Users\Admin\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe
O4 - Global Startup: Ralink Wireless Utility.lnk = C:\Windows\RaUI.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O13 - Gopher Prefix:
O15 - Trusted Zone: *.canalplay.com
O15 - Trusted Zone: *.canalplusactive.com
O15 - Trusted Zone: *.canalplay.com (HKLM)
O15 - Trusted Zone: *.canalplusactive.com (HKLM)
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {04CB5B64-5915-4629-B869-8945CEBADD21} (Module de délivrance de certificat MINEFI) - https://static.impots.gouv.fr/abos/static/securite/certdgi1.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: CanalPlus.VOD - Canal+ Active - C:\Program Files\Canal\Canal Widget\VOD\CanalPlus.VOD.exe
O23 - Service: Service Google Update (gupdate1ca391ec1cf89ed) (gupdate1ca391ec1cf89ed) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: Sony Ericsson OMSI download service (OMSI download service) - Unknown owner - C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\Windows\system32\PnkBstrB.exe
O23 - Service: Service CANALPLAY - Canal+ Distribution - C:\Program Files\Lecteur CANALPLAY\CanalPlayService.exe
End of file - 10355 bytes
Je
Je vous poste un rapport hijackthis, pc infesté de pub!!!!! Merci d'avance pour votre aide
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:59:01, on 29/08/2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18943)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\System32\ServoApp.exe
C:\Program Files\MFP Server\App\Common\MFPAgent.exe
C:\Program Files\EoRezo\eorezo.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Windows\ehome\ehtray.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Lecteur CANALPLAY\CanalPlayer.exe
C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\SpiderMessenger\SpiderMessenger.exe
C:\Users\Admin\AppData\Local\fstfqrew.exe
C:\Windows\RaUI.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Windows\system32\conime.exe
C:\Windows\system32\Macromed\Flash\FlashUtil10e.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe
C:\Program Files\Windows Live\Toolbar\wltuser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MP7BT5B7\HiJackThis[1].exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://mywwwsites.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://y.lo.st
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://mywwwsites.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://mywwwsites.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://mywwwsites.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wiiqi.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: mywebsites.pro-FR Toolbar - {33727f97-486d-4d19-97c3-23f432ef93fc} - C:\Program Files\mywebsites.pro-FR\tbmywe.dll
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: mywebsites.pro-FR Toolbar - {33727f97-486d-4d19-97c3-23f432ef93fc} - C:\Program Files\mywebsites.pro-FR\tbmywe.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (file missing)
O2 - BHO: Windows Live Family Safety Browser Helper - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SpiderMessenger_BHO - {ADE49752-DBBC-43A3-9498-379A82F574BF} - C:\Program Files\SpiderMessenger\SpiderMessenger.BHO.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll
O2 - BHO: EOBHO - {C10DC1F4-CCDF-4224-A24D-B23AFC3573C8} - C:\Program Files\EoRezo\EoRezoBHO.dll
O2 - BHO: EoBHO - {C7B76B90-3455-4AE6-A752-EAC4D19689E5} - C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: mywebsites.pro-FR Toolbar - {33727f97-486d-4d19-97c3-23f432ef93fc} - C:\Program Files\mywebsites.pro-FR\tbmywe.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [MFP Manager] C:\Program Files\MFP Server\MFPAgent.exe -CheckAutoRun
O4 - HKLM\..\Run: [Server Application] C:\Windows\system32\ServoApp.exe
O4 - HKLM\..\Run: [GDI Manager] "C:\Program Files\MFP Server\App\Common\MFPAgent.exe"
O4 - HKLM\..\Run: [eorezo] "C:\Program Files\EoRezo\eorezo.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKLM\..\RunOnce: [SoftwareHelper] C:\Users\Admin\AppData\Roaming\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe -runonce
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [CanalPlayer] C:\Program Files\Lecteur CANALPLAY\CanalPlayer.exe
O4 - HKCU\..\Run: [EPSON Stylus SX400 Series] C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIEGE.EXE /FU "C:\Windows\TEMP\E_S2829.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe" /systray /nologon
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [SpiderMessenger] "C:\Program Files\SpiderMessenger\SpiderMessenger.exe" -startrun
O4 - HKCU\..\Run: [fstfqrew] "c:\users\admin\appdata\local\fstfqrew.exe" fstfqrew
O4 - HKCU\..\RunOnce: [Shockwave Updater] C:\Windows\System32\Adobe\SHOCKW~1\SWHELP~1.EXE -Update -1100465 -"Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; GTB6; SLCC1; .NET CLR 2.0.50727; Media Center PC 5.0; InfoPath.1; OfficeLiveConnector.1.3; OfficeLivePatch.0.0; .NET CLR 3.5.30729; .NET CLR 3.0.30618)" -"http://ww12.gamevial.com"
O4 - Startup: Notification de cadeaux MSN.lnk = C:\Users\Admin\AppData\Roaming\Microsoft\Notification de cadeaux MSN\lsnfier.exe
O4 - Global Startup: Ralink Wireless Utility.lnk = C:\Windows\RaUI.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O13 - Gopher Prefix:
O15 - Trusted Zone: *.canalplay.com
O15 - Trusted Zone: *.canalplusactive.com
O15 - Trusted Zone: *.canalplay.com (HKLM)
O15 - Trusted Zone: *.canalplusactive.com (HKLM)
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {04CB5B64-5915-4629-B869-8945CEBADD21} (Module de délivrance de certificat MINEFI) - https://static.impots.gouv.fr/abos/static/securite/certdgi1.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: CanalPlus.VOD - Canal+ Active - C:\Program Files\Canal\Canal Widget\VOD\CanalPlus.VOD.exe
O23 - Service: Service Google Update (gupdate1ca391ec1cf89ed) (gupdate1ca391ec1cf89ed) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: Sony Ericsson OMSI download service (OMSI download service) - Unknown owner - C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\Windows\system32\PnkBstrB.exe
O23 - Service: Service CANALPLAY - Canal+ Distribution - C:\Program Files\Lecteur CANALPLAY\CanalPlayService.exe
End of file - 10355 bytes
Je
6 réponses
Salut,
Je te redirige vers le bon forum (virus-sécurité)
- Sous vista, désactive le contrôle des comptes utilisateurs (UAC) --> panneau de config --> comptes utilisateur --> désactiver le contrôle des comptes utilisateurs
Désactiver l'UAC
====
Lance l'option2 (suppression) de Lopsd et poste le rapport généré
====
* Télécharge Ad-remover ( de C_XX ) sur ton bureau :
* Déconnecte toi et ferme toutes les applications en cours !
*clique-droit (éxecuter en tant qu'admin...) sur "Ad-R.exe" pour lancer l'installation et laisse les paramètres d'installation par défaut .
* clique-droit (executer en ...) le raccourci Ad-remover qui est sur ton bureau pour lancer l'outil .
* Au menu principal choisis "option Nettoyer" et tape sur [entrée] .
* Laisse travailler l'outil et ne touche à rien ...
* Poste le rapport qui apparait à la fin , sur le forum ...
( Le rapport est sauvegardé aussi sous C:\Ad-report.log )
( CTRL+A Pour tout sélectionner , CTRL+C pour copier et CTRL+V pour coller )
* Note : "Process.exe", une composante de l'outil, est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.
=====
puis,
Télécharge ZHPDiag (de Nicolas Coolman).
https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html
* Laisse toi guider lors de l'installation, il se lancera automatiquement à la fin.
* Clique sur l'icône représentant une loupe (« Lancer le diagnostic »)
* Enregistre le rapport sur ton Bureau à l'aide de l'icône représentant une disquette
* Rend toi sur Cijoint
http://www.cijoint.fr/
et indique l'emplacement du rapport à l'aide du bouton "Parcourir..." Ensuite Clique sur "Cliquez ici pour déposer le fichier"
* Un lien sera généré, copie et colle-le dans ta prochaine réponse.
.
Je te redirige vers le bon forum (virus-sécurité)
- Sous vista, désactive le contrôle des comptes utilisateurs (UAC) --> panneau de config --> comptes utilisateur --> désactiver le contrôle des comptes utilisateurs
Désactiver l'UAC
====
Lance l'option2 (suppression) de Lopsd et poste le rapport généré
====
* Télécharge Ad-remover ( de C_XX ) sur ton bureau :
* Déconnecte toi et ferme toutes les applications en cours !
*clique-droit (éxecuter en tant qu'admin...) sur "Ad-R.exe" pour lancer l'installation et laisse les paramètres d'installation par défaut .
* clique-droit (executer en ...) le raccourci Ad-remover qui est sur ton bureau pour lancer l'outil .
* Au menu principal choisis "option Nettoyer" et tape sur [entrée] .
* Laisse travailler l'outil et ne touche à rien ...
* Poste le rapport qui apparait à la fin , sur le forum ...
( Le rapport est sauvegardé aussi sous C:\Ad-report.log )
( CTRL+A Pour tout sélectionner , CTRL+C pour copier et CTRL+V pour coller )
* Note : "Process.exe", une composante de l'outil, est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.
=====
puis,
Télécharge ZHPDiag (de Nicolas Coolman).
https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html
* Laisse toi guider lors de l'installation, il se lancera automatiquement à la fin.
* Clique sur l'icône représentant une loupe (« Lancer le diagnostic »)
* Enregistre le rapport sur ton Bureau à l'aide de l'icône représentant une disquette
* Rend toi sur Cijoint
http://www.cijoint.fr/
et indique l'emplacement du rapport à l'aide du bouton "Parcourir..." Ensuite Clique sur "Cliquez ici pour déposer le fichier"
* Un lien sera généré, copie et colle-le dans ta prochaine réponse.
.
rapport lopxp
--------------------\\ Lop S&D 4.2.5-0 XP/Vista
Microsoft® Windows Vista(TM) Édition Familiale Premium ( v6.0.6002 ) Service Pack 2
X86-based PC ( Multiprocessor Free : Intel(R) Core(TM)2 Duo CPU E8200 @ 2.66GHz )
BIOS : Award Modular BIOS v6.00PG
USER : Admin ( Administrator )
BOOT : Normal boot
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:298 Go (Free:156 Go)
D:\ (CD or DVD) - CDFS - Total:3 Go (Free:0 Go)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 29/08/2010|18:06 )
[ UAC => 1 ]
--------------------\\ Listing des dossiers dans Local
[20/07/2010|19:27] C:\Users\Admin\AppData\Local\Adobe
[09/07/2009|19:19] C:\Users\Admin\AppData\Local\Ahead
[04/07/2010|09:58] C:\Users\Admin\AppData\Local\Apple
[08/03/2008|16:33] C:\Users\Admin\AppData\Local\Application Data
[19/07/2010|18:10] C:\Users\Admin\AppData\Local\Apps
[24/06/2010|18:56] C:\Users\Admin\AppData\Local\Blizzard Entertainment
[12/10/2009|08:04] C:\Users\Admin\AppData\Local\ciieyoc.bat
[08/05/2009|07:18] C:\Users\Admin\AppData\Local\cwkocqth.bat
[02/07/2010|17:55] C:\Users\Admin\AppData\Local\d3d9caps.dat
[01/03/2010|22:56] C:\Users\Admin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[20/11/2009|13:47] C:\Users\Admin\AppData\Local\desktop.ini
[13/09/2008|17:03] C:\Users\Admin\AppData\Local\Downloaded Installations
[31/08/2009|20:42] C:\Users\Admin\AppData\Local\eMule
[18/12/2009|19:26] C:\Users\Admin\AppData\Local\EoRezo
[29/08/2010|18:05] C:\Users\Admin\AppData\Local\fstfqrew.dat
[25/08/2010|19:51] C:\Users\Admin\AppData\Local\fstfqrew.exe
[28/08/2010|19:34] C:\Users\Admin\AppData\Local\fstfqrew_nav.dat
[29/08/2010|18:06] C:\Users\Admin\AppData\Local\fstfqrew_navps.dat
[09/07/2010|16:49] C:\Users\Admin\AppData\Local\GDIPFONTCACHEV1.DAT
[15/07/2010|09:24] C:\Users\Admin\AppData\Local\Google
[26/09/2009|13:26] C:\Users\Admin\AppData\Local\Grubby Games
[08/03/2008|16:33] C:\Users\Admin\AppData\Local\Historique
[29/08/2010|17:40] C:\Users\Admin\AppData\Local\IconCache.db
[11/09/2008|15:29] C:\Users\Admin\AppData\Local\IM
[06/03/2009|10:55] C:\Users\Admin\AppData\Local\Kayenko
[15/03/2009|20:20] C:\Users\Admin\AppData\Local\keyfile3.drm
[19/07/2010|18:24] C:\Users\Admin\AppData\Local\Microsoft
[10/11/2008|22:33] C:\Users\Admin\AppData\Local\Microsoft Games
[14/02/2010|14:02] C:\Users\Admin\AppData\Local\Paint.NET
[29/08/2010|17:44] C:\Users\Admin\AppData\Local\qmhdgc.bat
[20/11/2009|13:47] C:\Users\Admin\AppData\Local\Shareaza
[04/07/2010|10:05] C:\Users\Admin\AppData\Local\Sony Ericsson
[10/08/2010|12:55] C:\Users\Admin\AppData\Local\SpiderMessenger
[29/08/2010|18:04] C:\Users\Admin\AppData\Local\Temp
[08/03/2008|16:33] C:\Users\Admin\AppData\Local\Temporary Internet Files
[20/08/2008|19:54] C:\Users\Admin\AppData\Local\VirtualStore
[21/08/2010|17:55] C:\Users\Admin\AppData\Local\Zylom Games
--------------------\\ Tâches planifiées dans C:\Windows\tasks
[29/08/2010 17:34][--a------] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[29/08/2010 17:43][--a------] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[28/08/2010 19:36][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{399B0BDA-82F3-4E3B-8A83-E65A86566C24}.job
[29/08/2010 17:43][--ah-----] C:\Windows\tasks\SA.DAT
[29/08/2010 17:41][--a------] C:\Windows\tasks\SCHEDLGU.TXT
--------------------\\ Listing des dossiers dans C:\ProgramData
[20/07/2010|19:27] C:\ProgramData\Adobe
[25/08/2008|18:59] C:\ProgramData\albumphoto
[29/08/2010|17:40] C:\ProgramData\Alwil Software
[04/07/2010|09:58] C:\ProgramData\Apple
[04/07/2010|09:59] C:\ProgramData\Apple Computer
[02/11/2006|15:02] C:\ProgramData\Application Data
[26/02/2009|20:04] C:\ProgramData\Arcade Lab
[29/08/2010|17:28] C:\ProgramData\avg8
[01/07/2010|11:37] C:\ProgramData\Blizzard
[01/07/2010|11:39] C:\ProgramData\Blizzard Entertainment
[08/03/2008|16:31] C:\ProgramData\Bureau
[04/07/2010|10:05] C:\ProgramData\BVRP Software
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[31/08/2009|20:42] C:\ProgramData\eMule
[14/02/2010|11:33] C:\ProgramData\EPSON
[21/02/2009|15:33] C:\ProgramData\Farm Frenzy
[08/03/2008|16:31] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[01/03/2009|12:40] C:\ProgramData\FreshGames
[19/09/2009|23:00] C:\ProgramData\GameHouse
[10/09/2009|22:23] C:\ProgramData\GamesBar
[01/03/2009|10:13] C:\ProgramData\Gogii
[03/12/2009|22:12] C:\ProgramData\Google
[15/02/2009|17:47] C:\ProgramData\HipSoft
[08/04/2009|17:10] C:\ProgramData\Hot Lava Games
[04/07/2010|10:00] C:\ProgramData\hpeC5A0.dll
[11/09/2008|15:29] C:\ProgramData\IM
[11/09/2008|15:28] C:\ProgramData\IncrediMail
[08/03/2008|16:31] C:\ProgramData\Menu D'marrer
[04/06/2010|17:00] C:\ProgramData\Microsoft
[08/03/2008|16:31] C:\ProgramData\ModSles
[08/03/2008|17:21] C:\ProgramData\Nero
[29/08/2010|17:28] C:\ProgramData\Norton
[21/05/2010|18:01] C:\ProgramData\NortonInstaller
[16/11/2008|18:28] C:\ProgramData\NOS
[22/10/2009|06:51] C:\ProgramData\ntuser.pol
[03/01/2007|18:06] C:\ProgramData\NVIDIA
[08/08/2009|14:37] C:\ProgramData\Oberon Media
[27/04/2009|18:18] C:\ProgramData\PlayFirst
[19/09/2009|13:46] C:\ProgramData\PlayfulAge
[04/07/2010|09:59] C:\ProgramData\Sony Ericsson
[02/11/2006|15:02] C:\ProgramData\Start Menu
[28/02/2010|20:20] C:\ProgramData\Symantec
[04/06/2010|18:34] C:\ProgramData\TEMP
[02/11/2006|15:02] C:\ProgramData\Templates
[20/05/2010|16:16] C:\ProgramData\UDL
[27/04/2009|22:16] C:\ProgramData\Valusoft
[02/01/2010|14:39] C:\ProgramData\WindowsSearch
[10/09/2008|19:20] C:\ProgramData\WLInstaller
[27/04/2009|18:11] C:\ProgramData\Zylom
--------------------\\ Listing des dossiers dans C:\Program Files
[14/02/2010|11:59] C:\Program Files\ABBYY FineReader 6.0 Sprint
[10/09/2009|22:27] C:\Program Files\Adobe
[11/12/2008|21:41] C:\Program Files\AGI
[29/08/2010|17:40] C:\Program Files\Alwil Software
[04/07/2010|09:58] C:\Program Files\Apple Software Update
[01/01/2007|01:58] C:\Program Files\AVG
[22/10/2008|17:17] C:\Program Files\Canal
[04/07/2010|09:58] C:\Program Files\Common Files
[10/06/2010|21:12] C:\Program Files\Conduit
[17/07/2008|18:02] C:\Program Files\directx
[14/02/2010|13:57] C:\Program Files\Dofus
[16/08/2010|18:41] C:\Program Files\eMule
[07/08/2010|11:54] C:\Program Files\EoRezo
[20/05/2010|16:14] C:\Program Files\epson
[08/03/2008|16:31] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[05/09/2009|18:36] C:\Program Files\Gamenext
[27/02/2010|10:52] C:\Program Files\GameSpy Arcade
[03/10/2009|19:37] C:\Program Files\GOA
[18/12/2009|19:35] C:\Program Files\Google
[19/08/2009|18:48] C:\Program Files\Gpotato.eu
[17/05/2009|15:33] C:\Program Files\HomePlayer
[19/07/2010|18:01] C:\Program Files\InstallShield Installation Information
[08/03/2008|16:48] C:\Program Files\Intel
[13/08/2010|10:49] C:\Program Files\Internet Explorer
[25/11/2009|12:41] C:\Program Files\Java
[03/10/2009|19:32] C:\Program Files\Jeux.fr
[08/03/2008|17:25] C:\Program Files\K-Lite Codec Pack
[07/02/2010|19:01] C:\Program Files\Lecteur CANALPLAY
[28/04/2009|18:13] C:\Program Files\Les Aventures de Robinson Crusoe
[14/02/2010|11:40] C:\Program Files\MFP Server
[04/07/2010|10:03] C:\Program Files\Microsoft
[08/03/2009|18:42] C:\Program Files\Microsoft Games
[27/04/2009|09:47] C:\Program Files\Microsoft Office
[12/12/2009|18:17] C:\Program Files\Microsoft Office Outlook Connector
[07/06/2010|17:21] C:\Program Files\Microsoft Silverlight
[18/12/2008|17:09] C:\Program Files\Microsoft SQL Server Compact Edition
[18/12/2008|17:09] C:\Program Files\Microsoft Sync Framework
[26/06/2010|18:24] C:\Program Files\Microsoft.NET
[24/08/2008|19:44] C:\Program Files\monAlbumPhoto
[13/08/2010|10:49] C:\Program Files\Movie Maker
[02/11/2006|14:37] C:\Program Files\MSBuild
[27/04/2009|09:47] C:\Program Files\MSECache
[13/11/2008|18:00] C:\Program Files\MSXML 4.0
[10/06/2010|21:12] C:\Program Files\mywebsites.pro-FR
[08/03/2008|17:21] C:\Program Files\Nero
[16/11/2008|18:28] C:\Program Files\NOS
[08/08/2009|14:37] C:\Program Files\Oberon Media
[09/06/2010|16:40] C:\Program Files\Objectif Tarot
[14/02/2010|22:03] C:\Program Files\Paint.NET
[04/07/2010|09:59] C:\Program Files\QuickTime
[01/01/2007|12:40] C:\Program Files\RALINK
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[09/01/2010|16:08] C:\Program Files\Shareaza
[04/07/2010|10:04] C:\Program Files\Sony Ericsson
[04/07/2010|09:55] C:\Program Files\Sony Setup
[10/08/2010|12:55] C:\Program Files\SpiderMessenger
[19/07/2010|18:01] C:\Program Files\Ubisoft
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[28/04/2009|17:45] C:\Program Files\Virtual Villagers - The Secret City
[20/11/2009|14:09] C:\Program Files\Windows Calendar
[20/11/2009|14:09] C:\Program Files\Windows Collaboration
[20/11/2009|14:08] C:\Program Files\Windows Defender
[20/11/2009|14:09] C:\Program Files\Windows Journal
[12/12/2009|18:16] C:\Program Files\Windows Live
[18/12/2008|17:08] C:\Program Files\Windows Live SkyDrive
[13/08/2010|09:49] C:\Program Files\Windows Mail
[20/11/2009|14:09] C:\Program Files\Windows Media Player
[08/03/2008|16:31] C:\Program Files\Windows NT
[20/11/2009|14:09] C:\Program Files\Windows Photo Gallery
[21/11/2009|18:17] C:\Program Files\Windows Portable Devices
[20/11/2009|14:09] C:\Program Files\Windows Sidebar
[08/03/2008|17:26] C:\Program Files\WinRAR
[17/08/2010|09:45] C:\Program Files\World of Warcraft 2.4.3
[08/08/2009|14:37] C:\Program Files\Yahoo!
[27/04/2009|18:11] C:\Program Files\Zylom Games
--------------------\\ Listing des dossiers dans C:\Program Files\Common Files
[19/07/2010|18:19] C:\Program Files\Common Files\Adobe
[24/05/2010|10:18] C:\Program Files\Common Files\Adobe AIR
[08/03/2008|17:21] C:\Program Files\Common Files\Ahead
[29/08/2010|17:43] C:\Program Files\Common Files\Akamai
[04/07/2010|09:58] C:\Program Files\Common Files\Apple
[01/07/2010|11:32] C:\Program Files\Common Files\Blizzard Entertainment
[08/03/2008|17:24] C:\Program Files\Common Files\DESIGNER
[04/01/2007|21:08] C:\Program Files\Common Files\INCA Shared
[14/02/2010|12:00] C:\Program Files\Common Files\InstallShield
[08/03/2008|17:26] C:\Program Files\Common Files\Java
[15/07/2010|18:35] C:\Program Files\Common Files\microsoft shared
[15/02/2009|16:08] C:\Program Files\Common Files\Oberon Media
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[29/08/2010|15:47] C:\Program Files\Common Files\Symantec Shared
[12/12/2009|18:17] C:\Program Files\Common Files\System
[18/12/2008|17:02] C:\Program Files\Common Files\Windows Live
[10/09/2008|19:22] C:\Program Files\Common Files\WindowsLiveInstaller
--------------------\\ Process
( 79 Processes )
iexplore.exe ~ [PID:4860]
iexplore.exe ~ [PID:6120]
iexplore.exe ~ [PID:5732]
iexplore.exe ~ [PID:4768]
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\Users\Admin\AppData\Local\Temp\nsa94A2.tmp
C:\Users\Admin\AppData\Local\Temp\nsb1DC8.tmp
C:\Users\Admin\AppData\Local\Temp\nslF090.tmp
C:\Users\Admin\AppData\Local\Temp\NSSstub.txt
C:\Users\Admin\AppData\Local\Temp\nst8CBD.tmp
C:\Users\Admin\AppData\Local\Temp\nsu6BA4.tmp
C:\Users\Admin\AppData\Local\Temp\nszCE7B.tmp
C:\Users\Admin\AppData\Roaming\MICROS~1\Windows\Cookies\admin@advertstream[1].txt
C:\Users\Admin\AppData\Roaming\MICROS~1\Windows\Cookies\admin@advertstream[2].txt
C:\Users\Admin\AppData\Roaming\MICROS~1\Windows\Cookies\admin@d2.advertserve[1].txt
C:\Users\Admin\AppData\Roaming\MICROS~1\Windows\Cookies\admin@d2.advertserve[2].txt
C:\Users\Admin\AppData\Roaming\MICROS~1\Windows\Cookies\admin@adultfriendfinder[1].txt
C:\Users\Admin\AppData\Roaming\MICROS~1\Windows\Cookies\admin@advertising[1].txt
C:\Users\Admin\AppData\Roaming\MICROS~1\Windows\Cookies\admin@booking.db.advertising[2].txt
C:\Users\Admin\AppData\Roaming\MICROS~1\Windows\Cookies\admin@spartoo.db.advertising[1].txt
C:\Users\Admin\AppData\Roaming\MICROS~1\Windows\Cookies\admin@bigpoint[1].txt
C:\Users\Admin\AppData\Roaming\MICROS~1\Windows\Cookies\admin@fr.darkorbit.bigpoint[1].txt
C:\Users\Admin\AppData\Roaming\MICROS~1\Windows\Cookies\admin@fr.deepolis.bigpoint[2].txt
C:\Users\Admin\AppData\Roaming\MICROS~1\Windows\Cookies\admin@fr.seafight.bigpoint[1].txt
C:\Users\Admin\AppData\Roaming\MICROS~1\Windows\Cookies\admin@fr.seafight.bigpoint[3].txt
C:\Users\Admin\AppData\Roaming\MICROS~1\Windows\Cookies\admin@seafight.bigpoint[1].txt
C:\Users\Admin\AppData\Roaming\MICROS~1\Windows\Cookies\admin@thepimps.bigpoint[2].txt
C:\Users\Admin\AppData\Roaming\MICROS~1\Windows\Cookies\admin@fr.seafight.bigpoint[1].txt
C:\Users\Admin\AppData\Roaming\MICROS~1\Windows\Cookies\admin@fr.seafight.bigpoint[3].txt
C:\Users\Admin\AppData\Roaming\MICROS~1\Windows\Cookies\admin@seafight.bigpoint[1].txt
C:\Users\Admin\AppData\Roaming\MICROS~1\Windows\Cookies\admin@2xmoinscher[1].txt
C:\Users\Admin\AppData\Roaming\MICROS~1\Windows\Cookies\admin@cc.2xmoinscher[1].txt
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-08-29 18:06:38
Windows 6.0.6002 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\DGLREB3K\ooshop_com[1].txt 166985 bytes
scan completed successfully
hidden processes: 0
hidden files: 1
--------------------\\ Recherche d'autres infections
C:\Users\Admin\AppData\Local\fstfqrew.dat
C:\Users\Admin\AppData\Local\fstfqrew.exe
C:\Users\Admin\AppData\Local\fstfqrew_nav.dat
C:\Users\Admin\AppData\Local\fstfqrew_navps.dat
[b]==> EGDACCESS <==/b
--------------------\\ Cracks & Keygens ..
C:\Users\Admin\AppData\Local\Zylom Games\Farm Frenzy Deluxe\Data\Sounds\bear_crack_cat.ogg
C:\Users\Admin\AppData\Local\Zylom Games\Farm Frenzy Deluxe\Data\Sounds\bear_crack_cow.ogg
C:\Users\Admin\AppData\Local\Zylom Games\Farm Frenzy Deluxe\Data\Sounds\bear_crack_goose.ogg
C:\Users\Admin\AppData\Local\Zylom Games\Farm Frenzy Deluxe\Data\Sounds\bear_crack_product.ogg
C:\Users\Admin\AppData\Local\Zylom Games\Farm Frenzy Deluxe\Data\Sounds\bear_crack_sheep.ogg
[F:5507][D:426]-> C:\Users\Admin\AppData\Local\Temp
[F:3971][D:1]-> C:\Users\Admin\AppData\Roaming\MICROS~1\Windows\Cookies
[F:3227][D:21]-> C:\Users\Admin\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:17][D:6]-> C:\$Recycle.Bin
1 - "C:\Lop SD\LopR_1.txt" - 29/08/2010|18:09 - Option : [1]
--------------------\\ Fin du rapport a 18:09:42
[ UAC => 1 ]
--------------------\\ Lop S&D 4.2.5-0 XP/Vista
Microsoft® Windows Vista(TM) Édition Familiale Premium ( v6.0.6002 ) Service Pack 2
X86-based PC ( Multiprocessor Free : Intel(R) Core(TM)2 Duo CPU E8200 @ 2.66GHz )
BIOS : Award Modular BIOS v6.00PG
USER : Admin ( Administrator )
BOOT : Normal boot
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:298 Go (Free:156 Go)
D:\ (CD or DVD) - CDFS - Total:3 Go (Free:0 Go)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 29/08/2010|18:06 )
[ UAC => 1 ]
--------------------\\ Listing des dossiers dans Local
[20/07/2010|19:27] C:\Users\Admin\AppData\Local\Adobe
[09/07/2009|19:19] C:\Users\Admin\AppData\Local\Ahead
[04/07/2010|09:58] C:\Users\Admin\AppData\Local\Apple
[08/03/2008|16:33] C:\Users\Admin\AppData\Local\Application Data
[19/07/2010|18:10] C:\Users\Admin\AppData\Local\Apps
[24/06/2010|18:56] C:\Users\Admin\AppData\Local\Blizzard Entertainment
[12/10/2009|08:04] C:\Users\Admin\AppData\Local\ciieyoc.bat
[08/05/2009|07:18] C:\Users\Admin\AppData\Local\cwkocqth.bat
[02/07/2010|17:55] C:\Users\Admin\AppData\Local\d3d9caps.dat
[01/03/2010|22:56] C:\Users\Admin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[20/11/2009|13:47] C:\Users\Admin\AppData\Local\desktop.ini
[13/09/2008|17:03] C:\Users\Admin\AppData\Local\Downloaded Installations
[31/08/2009|20:42] C:\Users\Admin\AppData\Local\eMule
[18/12/2009|19:26] C:\Users\Admin\AppData\Local\EoRezo
[29/08/2010|18:05] C:\Users\Admin\AppData\Local\fstfqrew.dat
[25/08/2010|19:51] C:\Users\Admin\AppData\Local\fstfqrew.exe
[28/08/2010|19:34] C:\Users\Admin\AppData\Local\fstfqrew_nav.dat
[29/08/2010|18:06] C:\Users\Admin\AppData\Local\fstfqrew_navps.dat
[09/07/2010|16:49] C:\Users\Admin\AppData\Local\GDIPFONTCACHEV1.DAT
[15/07/2010|09:24] C:\Users\Admin\AppData\Local\Google
[26/09/2009|13:26] C:\Users\Admin\AppData\Local\Grubby Games
[08/03/2008|16:33] C:\Users\Admin\AppData\Local\Historique
[29/08/2010|17:40] C:\Users\Admin\AppData\Local\IconCache.db
[11/09/2008|15:29] C:\Users\Admin\AppData\Local\IM
[06/03/2009|10:55] C:\Users\Admin\AppData\Local\Kayenko
[15/03/2009|20:20] C:\Users\Admin\AppData\Local\keyfile3.drm
[19/07/2010|18:24] C:\Users\Admin\AppData\Local\Microsoft
[10/11/2008|22:33] C:\Users\Admin\AppData\Local\Microsoft Games
[14/02/2010|14:02] C:\Users\Admin\AppData\Local\Paint.NET
[29/08/2010|17:44] C:\Users\Admin\AppData\Local\qmhdgc.bat
[20/11/2009|13:47] C:\Users\Admin\AppData\Local\Shareaza
[04/07/2010|10:05] C:\Users\Admin\AppData\Local\Sony Ericsson
[10/08/2010|12:55] C:\Users\Admin\AppData\Local\SpiderMessenger
[29/08/2010|18:04] C:\Users\Admin\AppData\Local\Temp
[08/03/2008|16:33] C:\Users\Admin\AppData\Local\Temporary Internet Files
[20/08/2008|19:54] C:\Users\Admin\AppData\Local\VirtualStore
[21/08/2010|17:55] C:\Users\Admin\AppData\Local\Zylom Games
--------------------\\ Tâches planifiées dans C:\Windows\tasks
[29/08/2010 17:34][--a------] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[29/08/2010 17:43][--a------] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[28/08/2010 19:36][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{399B0BDA-82F3-4E3B-8A83-E65A86566C24}.job
[29/08/2010 17:43][--ah-----] C:\Windows\tasks\SA.DAT
[29/08/2010 17:41][--a------] C:\Windows\tasks\SCHEDLGU.TXT
--------------------\\ Listing des dossiers dans C:\ProgramData
[20/07/2010|19:27] C:\ProgramData\Adobe
[25/08/2008|18:59] C:\ProgramData\albumphoto
[29/08/2010|17:40] C:\ProgramData\Alwil Software
[04/07/2010|09:58] C:\ProgramData\Apple
[04/07/2010|09:59] C:\ProgramData\Apple Computer
[02/11/2006|15:02] C:\ProgramData\Application Data
[26/02/2009|20:04] C:\ProgramData\Arcade Lab
[29/08/2010|17:28] C:\ProgramData\avg8
[01/07/2010|11:37] C:\ProgramData\Blizzard
[01/07/2010|11:39] C:\ProgramData\Blizzard Entertainment
[08/03/2008|16:31] C:\ProgramData\Bureau
[04/07/2010|10:05] C:\ProgramData\BVRP Software
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[31/08/2009|20:42] C:\ProgramData\eMule
[14/02/2010|11:33] C:\ProgramData\EPSON
[21/02/2009|15:33] C:\ProgramData\Farm Frenzy
[08/03/2008|16:31] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[01/03/2009|12:40] C:\ProgramData\FreshGames
[19/09/2009|23:00] C:\ProgramData\GameHouse
[10/09/2009|22:23] C:\ProgramData\GamesBar
[01/03/2009|10:13] C:\ProgramData\Gogii
[03/12/2009|22:12] C:\ProgramData\Google
[15/02/2009|17:47] C:\ProgramData\HipSoft
[08/04/2009|17:10] C:\ProgramData\Hot Lava Games
[04/07/2010|10:00] C:\ProgramData\hpeC5A0.dll
[11/09/2008|15:29] C:\ProgramData\IM
[11/09/2008|15:28] C:\ProgramData\IncrediMail
[08/03/2008|16:31] C:\ProgramData\Menu D'marrer
[04/06/2010|17:00] C:\ProgramData\Microsoft
[08/03/2008|16:31] C:\ProgramData\ModSles
[08/03/2008|17:21] C:\ProgramData\Nero
[29/08/2010|17:28] C:\ProgramData\Norton
[21/05/2010|18:01] C:\ProgramData\NortonInstaller
[16/11/2008|18:28] C:\ProgramData\NOS
[22/10/2009|06:51] C:\ProgramData\ntuser.pol
[03/01/2007|18:06] C:\ProgramData\NVIDIA
[08/08/2009|14:37] C:\ProgramData\Oberon Media
[27/04/2009|18:18] C:\ProgramData\PlayFirst
[19/09/2009|13:46] C:\ProgramData\PlayfulAge
[04/07/2010|09:59] C:\ProgramData\Sony Ericsson
[02/11/2006|15:02] C:\ProgramData\Start Menu
[28/02/2010|20:20] C:\ProgramData\Symantec
[04/06/2010|18:34] C:\ProgramData\TEMP
[02/11/2006|15:02] C:\ProgramData\Templates
[20/05/2010|16:16] C:\ProgramData\UDL
[27/04/2009|22:16] C:\ProgramData\Valusoft
[02/01/2010|14:39] C:\ProgramData\WindowsSearch
[10/09/2008|19:20] C:\ProgramData\WLInstaller
[27/04/2009|18:11] C:\ProgramData\Zylom
--------------------\\ Listing des dossiers dans C:\Program Files
[14/02/2010|11:59] C:\Program Files\ABBYY FineReader 6.0 Sprint
[10/09/2009|22:27] C:\Program Files\Adobe
[11/12/2008|21:41] C:\Program Files\AGI
[29/08/2010|17:40] C:\Program Files\Alwil Software
[04/07/2010|09:58] C:\Program Files\Apple Software Update
[01/01/2007|01:58] C:\Program Files\AVG
[22/10/2008|17:17] C:\Program Files\Canal
[04/07/2010|09:58] C:\Program Files\Common Files
[10/06/2010|21:12] C:\Program Files\Conduit
[17/07/2008|18:02] C:\Program Files\directx
[14/02/2010|13:57] C:\Program Files\Dofus
[16/08/2010|18:41] C:\Program Files\eMule
[07/08/2010|11:54] C:\Program Files\EoRezo
[20/05/2010|16:14] C:\Program Files\epson
[08/03/2008|16:31] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[05/09/2009|18:36] C:\Program Files\Gamenext
[27/02/2010|10:52] C:\Program Files\GameSpy Arcade
[03/10/2009|19:37] C:\Program Files\GOA
[18/12/2009|19:35] C:\Program Files\Google
[19/08/2009|18:48] C:\Program Files\Gpotato.eu
[17/05/2009|15:33] C:\Program Files\HomePlayer
[19/07/2010|18:01] C:\Program Files\InstallShield Installation Information
[08/03/2008|16:48] C:\Program Files\Intel
[13/08/2010|10:49] C:\Program Files\Internet Explorer
[25/11/2009|12:41] C:\Program Files\Java
[03/10/2009|19:32] C:\Program Files\Jeux.fr
[08/03/2008|17:25] C:\Program Files\K-Lite Codec Pack
[07/02/2010|19:01] C:\Program Files\Lecteur CANALPLAY
[28/04/2009|18:13] C:\Program Files\Les Aventures de Robinson Crusoe
[14/02/2010|11:40] C:\Program Files\MFP Server
[04/07/2010|10:03] C:\Program Files\Microsoft
[08/03/2009|18:42] C:\Program Files\Microsoft Games
[27/04/2009|09:47] C:\Program Files\Microsoft Office
[12/12/2009|18:17] C:\Program Files\Microsoft Office Outlook Connector
[07/06/2010|17:21] C:\Program Files\Microsoft Silverlight
[18/12/2008|17:09] C:\Program Files\Microsoft SQL Server Compact Edition
[18/12/2008|17:09] C:\Program Files\Microsoft Sync Framework
[26/06/2010|18:24] C:\Program Files\Microsoft.NET
[24/08/2008|19:44] C:\Program Files\monAlbumPhoto
[13/08/2010|10:49] C:\Program Files\Movie Maker
[02/11/2006|14:37] C:\Program Files\MSBuild
[27/04/2009|09:47] C:\Program Files\MSECache
[13/11/2008|18:00] C:\Program Files\MSXML 4.0
[10/06/2010|21:12] C:\Program Files\mywebsites.pro-FR
[08/03/2008|17:21] C:\Program Files\Nero
[16/11/2008|18:28] C:\Program Files\NOS
[08/08/2009|14:37] C:\Program Files\Oberon Media
[09/06/2010|16:40] C:\Program Files\Objectif Tarot
[14/02/2010|22:03] C:\Program Files\Paint.NET
[04/07/2010|09:59] C:\Program Files\QuickTime
[01/01/2007|12:40] C:\Program Files\RALINK
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[09/01/2010|16:08] C:\Program Files\Shareaza
[04/07/2010|10:04] C:\Program Files\Sony Ericsson
[04/07/2010|09:55] C:\Program Files\Sony Setup
[10/08/2010|12:55] C:\Program Files\SpiderMessenger
[19/07/2010|18:01] C:\Program Files\Ubisoft
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[28/04/2009|17:45] C:\Program Files\Virtual Villagers - The Secret City
[20/11/2009|14:09] C:\Program Files\Windows Calendar
[20/11/2009|14:09] C:\Program Files\Windows Collaboration
[20/11/2009|14:08] C:\Program Files\Windows Defender
[20/11/2009|14:09] C:\Program Files\Windows Journal
[12/12/2009|18:16] C:\Program Files\Windows Live
[18/12/2008|17:08] C:\Program Files\Windows Live SkyDrive
[13/08/2010|09:49] C:\Program Files\Windows Mail
[20/11/2009|14:09] C:\Program Files\Windows Media Player
[08/03/2008|16:31] C:\Program Files\Windows NT
[20/11/2009|14:09] C:\Program Files\Windows Photo Gallery
[21/11/2009|18:17] C:\Program Files\Windows Portable Devices
[20/11/2009|14:09] C:\Program Files\Windows Sidebar
[08/03/2008|17:26] C:\Program Files\WinRAR
[17/08/2010|09:45] C:\Program Files\World of Warcraft 2.4.3
[08/08/2009|14:37] C:\Program Files\Yahoo!
[27/04/2009|18:11] C:\Program Files\Zylom Games
--------------------\\ Listing des dossiers dans C:\Program Files\Common Files
[19/07/2010|18:19] C:\Program Files\Common Files\Adobe
[24/05/2010|10:18] C:\Program Files\Common Files\Adobe AIR
[08/03/2008|17:21] C:\Program Files\Common Files\Ahead
[29/08/2010|17:43] C:\Program Files\Common Files\Akamai
[04/07/2010|09:58] C:\Program Files\Common Files\Apple
[01/07/2010|11:32] C:\Program Files\Common Files\Blizzard Entertainment
[08/03/2008|17:24] C:\Program Files\Common Files\DESIGNER
[04/01/2007|21:08] C:\Program Files\Common Files\INCA Shared
[14/02/2010|12:00] C:\Program Files\Common Files\InstallShield
[08/03/2008|17:26] C:\Program Files\Common Files\Java
[15/07/2010|18:35] C:\Program Files\Common Files\microsoft shared
[15/02/2009|16:08] C:\Program Files\Common Files\Oberon Media
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[29/08/2010|15:47] C:\Program Files\Common Files\Symantec Shared
[12/12/2009|18:17] C:\Program Files\Common Files\System
[18/12/2008|17:02] C:\Program Files\Common Files\Windows Live
[10/09/2008|19:22] C:\Program Files\Common Files\WindowsLiveInstaller
--------------------\\ Process
( 79 Processes )
iexplore.exe ~ [PID:4860]
iexplore.exe ~ [PID:6120]
iexplore.exe ~ [PID:5732]
iexplore.exe ~ [PID:4768]
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\Users\Admin\AppData\Local\Temp\nsa94A2.tmp
C:\Users\Admin\AppData\Local\Temp\nsb1DC8.tmp
C:\Users\Admin\AppData\Local\Temp\nslF090.tmp
C:\Users\Admin\AppData\Local\Temp\NSSstub.txt
C:\Users\Admin\AppData\Local\Temp\nst8CBD.tmp
C:\Users\Admin\AppData\Local\Temp\nsu6BA4.tmp
C:\Users\Admin\AppData\Local\Temp\nszCE7B.tmp
C:\Users\Admin\AppData\Roaming\MICROS~1\Windows\Cookies\admin@advertstream[1].txt
C:\Users\Admin\AppData\Roaming\MICROS~1\Windows\Cookies\admin@advertstream[2].txt
C:\Users\Admin\AppData\Roaming\MICROS~1\Windows\Cookies\admin@d2.advertserve[1].txt
C:\Users\Admin\AppData\Roaming\MICROS~1\Windows\Cookies\admin@d2.advertserve[2].txt
C:\Users\Admin\AppData\Roaming\MICROS~1\Windows\Cookies\admin@adultfriendfinder[1].txt
C:\Users\Admin\AppData\Roaming\MICROS~1\Windows\Cookies\admin@advertising[1].txt
C:\Users\Admin\AppData\Roaming\MICROS~1\Windows\Cookies\admin@booking.db.advertising[2].txt
C:\Users\Admin\AppData\Roaming\MICROS~1\Windows\Cookies\admin@spartoo.db.advertising[1].txt
C:\Users\Admin\AppData\Roaming\MICROS~1\Windows\Cookies\admin@bigpoint[1].txt
C:\Users\Admin\AppData\Roaming\MICROS~1\Windows\Cookies\admin@fr.darkorbit.bigpoint[1].txt
C:\Users\Admin\AppData\Roaming\MICROS~1\Windows\Cookies\admin@fr.deepolis.bigpoint[2].txt
C:\Users\Admin\AppData\Roaming\MICROS~1\Windows\Cookies\admin@fr.seafight.bigpoint[1].txt
C:\Users\Admin\AppData\Roaming\MICROS~1\Windows\Cookies\admin@fr.seafight.bigpoint[3].txt
C:\Users\Admin\AppData\Roaming\MICROS~1\Windows\Cookies\admin@seafight.bigpoint[1].txt
C:\Users\Admin\AppData\Roaming\MICROS~1\Windows\Cookies\admin@thepimps.bigpoint[2].txt
C:\Users\Admin\AppData\Roaming\MICROS~1\Windows\Cookies\admin@fr.seafight.bigpoint[1].txt
C:\Users\Admin\AppData\Roaming\MICROS~1\Windows\Cookies\admin@fr.seafight.bigpoint[3].txt
C:\Users\Admin\AppData\Roaming\MICROS~1\Windows\Cookies\admin@seafight.bigpoint[1].txt
C:\Users\Admin\AppData\Roaming\MICROS~1\Windows\Cookies\admin@2xmoinscher[1].txt
C:\Users\Admin\AppData\Roaming\MICROS~1\Windows\Cookies\admin@cc.2xmoinscher[1].txt
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-08-29 18:06:38
Windows 6.0.6002 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\DGLREB3K\ooshop_com[1].txt 166985 bytes
scan completed successfully
hidden processes: 0
hidden files: 1
--------------------\\ Recherche d'autres infections
C:\Users\Admin\AppData\Local\fstfqrew.dat
C:\Users\Admin\AppData\Local\fstfqrew.exe
C:\Users\Admin\AppData\Local\fstfqrew_nav.dat
C:\Users\Admin\AppData\Local\fstfqrew_navps.dat
[b]==> EGDACCESS <==/b
--------------------\\ Cracks & Keygens ..
C:\Users\Admin\AppData\Local\Zylom Games\Farm Frenzy Deluxe\Data\Sounds\bear_crack_cat.ogg
C:\Users\Admin\AppData\Local\Zylom Games\Farm Frenzy Deluxe\Data\Sounds\bear_crack_cow.ogg
C:\Users\Admin\AppData\Local\Zylom Games\Farm Frenzy Deluxe\Data\Sounds\bear_crack_goose.ogg
C:\Users\Admin\AppData\Local\Zylom Games\Farm Frenzy Deluxe\Data\Sounds\bear_crack_product.ogg
C:\Users\Admin\AppData\Local\Zylom Games\Farm Frenzy Deluxe\Data\Sounds\bear_crack_sheep.ogg
[F:5507][D:426]-> C:\Users\Admin\AppData\Local\Temp
[F:3971][D:1]-> C:\Users\Admin\AppData\Roaming\MICROS~1\Windows\Cookies
[F:3227][D:21]-> C:\Users\Admin\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:17][D:6]-> C:\$Recycle.Bin
1 - "C:\Lop SD\LopR_1.txt" - 29/08/2010|18:09 - Option : [1]
--------------------\\ Fin du rapport a 18:09:42
[ UAC => 1 ]
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
il a des réponse en copié coller
envoie lui un message privé
merci
-->ignore
peux tu poster les rapports lopsd (suppression) et Ad-remover ??