Problème de Pub (CID ou yes messenger)
mika903
Messages postés
727
Statut
Membre
-
green day Messages postés 26722 Statut Modérateur, Contributeur sécurité -
green day Messages postés 26722 Statut Modérateur, Contributeur sécurité -
Bonjour,
comment s'il vous plait s'en debarraser (CID ou yes messenger ),
je vous prie de bien vouloir m'aider car j'ai 17 ans et je veut surfer tranquille.
avec mes remercimant.
MICKAEL
comment s'il vous plait s'en debarraser (CID ou yes messenger ),
je vous prie de bien vouloir m'aider car j'ai 17 ans et je veut surfer tranquille.
avec mes remercimant.
MICKAEL
A voir également:
- Problème de Pub (CID ou yes messenger)
- Bloqueur de pub youtube - Accueil - Streaming
- Cette personne n'est pas disponible sur messenger - Guide
- Spam messenger - Guide
- Yahoo messenger - Télécharger - Messagerie
- Messenger impossible de retirer le message ✓ - Forum Facebook Messenger
21 réponses
Salut mickel
essaye avec : SpyBot - Search & Destroy
Ad-aware Se personal
sé deux la sont tres bon comme anti-spyware.
telechargere les et fais des analyse et bien sure des mise a jours.
di moi quoi apres sa :)
@+ bonne chance
essaye avec : SpyBot - Search & Destroy
Ad-aware Se personal
sé deux la sont tres bon comme anti-spyware.
telechargere les et fais des analyse et bien sure des mise a jours.
di moi quoi apres sa :)
@+ bonne chance
Salut à vous
il faut employer les gros moyens !
Télécharge ceci :
Lien : http://www.commentcamarche.net/telecharger/telecharger 159 hijackthis
Démo : http://pageperso.aol.fr/balltrap34/demohijack.htm
Choisir l'option "do a scan and a logfile", et faire un copier/coller du rapport ainsi générer sur le forum.
++
il faut employer les gros moyens !
Télécharge ceci :
Lien : http://www.commentcamarche.net/telecharger/telecharger 159 hijackthis
Démo : http://pageperso.aol.fr/balltrap34/demohijack.htm
Choisir l'option "do a scan and a logfile", et faire un copier/coller du rapport ainsi générer sur le forum.
++
bonsoir ,
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:16:58, on 27/11/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\PROGRA~1\Wanadoo\GestionnaireInternet.exe
C:\PROGRA~1\Wanadoo\ComComp.exe
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\System32\AlertModule\AlertModule.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\cleanmgr.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SearchPageURL.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\system32\msdxm.ocx
O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [avast!] "C:\Program Files\Alwil Software\Avast4\ashDisp.exe"
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\Spybot - Search & Destroy\SDHelper.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:16:58, on 27/11/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\PROGRA~1\Wanadoo\GestionnaireInternet.exe
C:\PROGRA~1\Wanadoo\ComComp.exe
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\System32\AlertModule\AlertModule.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\cleanmgr.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SearchPageURL.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\system32\msdxm.ocx
O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [avast!] "C:\Program Files\Alwil Software\Avast4\ashDisp.exe"
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\Spybot - Search & Destroy\SDHelper.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Bonsoir :
Télécharge ceci: (by Moe) :
http://sosvirus.changelog.fr/Green_day/Lopxpsetup.exe
Double clic sur Lopxpsetup.exe pour lancer l'installation
Au menu, choisir l'option 1
Patienter jusqu'à que l'on demande d'appuyer sur une touche, appuyer !
Une rapport sera alors crée, à copie/colle en entier sur le forum.
++
Télécharge ceci: (by Moe) :
http://sosvirus.changelog.fr/Green_day/Lopxpsetup.exe
Double clic sur Lopxpsetup.exe pour lancer l'installation
Au menu, choisir l'option 1
Patienter jusqu'à que l'on demande d'appuyer sur une touche, appuyer !
Une rapport sera alors crée, à copie/colle en entier sur le forum.
++
re et voici et aussi defois ma souris se deplace tout seul c pas normal ou defois au demarrage de windows ne se connecte pas c'est un virus ou un probleme de ma souris c un microsoft avec fil.
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:11, on 28/11/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
G:\LES FICHES SUR LES ENFANTS\GATT\aawservice.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\ATKKBService.exe
G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\WINDOWS\system32\rundll32.exe
G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\Res.EXE
C:\PROGRA~1\Goto Software\Vade Retro\Vaderetro_oe.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\inKline Global\PC Booster\PCBooster.exe
C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe
G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\INTEGRAL\pinmenu.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Wanadoo\GestionnaireInternet.exe
C:\Program Files\Wanadoo\ComComp.exe
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\System32\AlertModule\AlertModule.exe
C:\Program Files\Wanadoo\Watch.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Fichiers communs\DVDVideoSoft\LanguageEditor.exe
C:\Program Files\Outlook Express\msimn.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://google.icq.com/search/search_frame.php
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://home.sweetim.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SearchPageURL.dll
R3 - URLSearchHook: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\PROGRA~1\ICQToolbar\toolbaru.dll
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: XTTBPos00 Class - {055FD26D-3A88-4e15-963D-DC8493744B1D} - C:\PROGRA~1\ICQToolbar\toolbaru.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O3 - Toolbar: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\PROGRA~1\ICQToolbar\toolbaru.dll
O4 - HKLM\..\Run: [NvCplDaemon] "RUNDLL32.EXE" C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [avast!] "C:\Program Files\Alwil Software\Avast4\ashDisp.exe"
O4 - HKLM\..\Run: [nwiz] "nwiz.exe" /install
O4 - HKLM\..\Run: [USB Storage Toolbox] "G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\Res.EXE"
O4 - HKLM\..\Run: [Vaderetro Outlook] "C:\PROGRA~1\Goto Software\Vade Retro\VrMoRegister.exe -s"
O4 - HKLM\..\Run: [Vade Retro Outlook Express] "C:\PROGRA~1\Goto Software\Vade Retro\Vaderetro_oe.exe"
O4 - HKLM\..\Run: [Part browse safe hold] C:\Documents and Settings\All Users\Application Data\Audio 4 part browse\Mags Open.exe
O4 - HKLM\..\Run: [up shim comp hold] C:\Documents and Settings\All Users\Application Data\Barb Info Hold Audio\start drv size.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\InstallShield\UpdateService\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [PC Booster] C:\Program Files\inKline Global\PC Booster\PCBooster.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe"
O4 - HKCU\..\Run: [SweetIM] "C:\Program Files\Macrogaming\SweetIM\SweetIM.exe"
O4 - HKCU\..\Run: [WINSOS VERIFY] "C:\Program Files\WINSOS\WINSOS.EXE" MINI
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - Startup: Intégrateur PROjectMT 98.lnk = ?
O4 - Startup: Shrink Pic.lnk = ?
O4 - Global Startup: Adobe Gamma Loader.lnk = ?
O8 - Extra context menu item: &Clean Traces - G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\DAP\Privacy Package\dapcleanerie.htm
O8 - Extra context menu item: &Download with &DAP - G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\DAP\dapextie.htm
O8 - Extra context menu item: Download &all with DAP - G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\DAP\dapextie2.htm
O8 - Extra context menu item: Download All Files by HiDownload - G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\HiDownload\HDGetAll.htm
O8 - Extra context menu item: Download by HiDownload - G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\HiDownload\HDGet.htm
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: HiDownload - {F4FBA929-A891-492C-A0F6-5C79CC4F1742} - G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\HiDownload\hidownload.exe
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://eugenemontel31.spaces.live.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} (OnlineScanner Control) - https://www.eset.com/
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Apps/PhotoSwap/PhtPkMSN.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\Skype4COM.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - G:\LES FICHES SUR LES ENFANTS\GATT\aawservice.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Spyware Doctor Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\svcntaux.exe
O23 - Service: Spyware Doctor Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\swdsvc.exe
O23 - Service: VideoAcceleratorEngine - Speedbit Ltd. - G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\DAP\SpeedBit Video Accelerator\VideoAcceleratorEngine.exe
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:11, on 28/11/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
G:\LES FICHES SUR LES ENFANTS\GATT\aawservice.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\ATKKBService.exe
G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\WINDOWS\system32\rundll32.exe
G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\Res.EXE
C:\PROGRA~1\Goto Software\Vade Retro\Vaderetro_oe.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\inKline Global\PC Booster\PCBooster.exe
C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe
G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\INTEGRAL\pinmenu.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Wanadoo\GestionnaireInternet.exe
C:\Program Files\Wanadoo\ComComp.exe
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\System32\AlertModule\AlertModule.exe
C:\Program Files\Wanadoo\Watch.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Fichiers communs\DVDVideoSoft\LanguageEditor.exe
C:\Program Files\Outlook Express\msimn.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://google.icq.com/search/search_frame.php
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://home.sweetim.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SearchPageURL.dll
R3 - URLSearchHook: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\PROGRA~1\ICQToolbar\toolbaru.dll
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: XTTBPos00 Class - {055FD26D-3A88-4e15-963D-DC8493744B1D} - C:\PROGRA~1\ICQToolbar\toolbaru.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O3 - Toolbar: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\PROGRA~1\ICQToolbar\toolbaru.dll
O4 - HKLM\..\Run: [NvCplDaemon] "RUNDLL32.EXE" C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [avast!] "C:\Program Files\Alwil Software\Avast4\ashDisp.exe"
O4 - HKLM\..\Run: [nwiz] "nwiz.exe" /install
O4 - HKLM\..\Run: [USB Storage Toolbox] "G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\Res.EXE"
O4 - HKLM\..\Run: [Vaderetro Outlook] "C:\PROGRA~1\Goto Software\Vade Retro\VrMoRegister.exe -s"
O4 - HKLM\..\Run: [Vade Retro Outlook Express] "C:\PROGRA~1\Goto Software\Vade Retro\Vaderetro_oe.exe"
O4 - HKLM\..\Run: [Part browse safe hold] C:\Documents and Settings\All Users\Application Data\Audio 4 part browse\Mags Open.exe
O4 - HKLM\..\Run: [up shim comp hold] C:\Documents and Settings\All Users\Application Data\Barb Info Hold Audio\start drv size.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\InstallShield\UpdateService\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [PC Booster] C:\Program Files\inKline Global\PC Booster\PCBooster.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe"
O4 - HKCU\..\Run: [SweetIM] "C:\Program Files\Macrogaming\SweetIM\SweetIM.exe"
O4 - HKCU\..\Run: [WINSOS VERIFY] "C:\Program Files\WINSOS\WINSOS.EXE" MINI
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - Startup: Intégrateur PROjectMT 98.lnk = ?
O4 - Startup: Shrink Pic.lnk = ?
O4 - Global Startup: Adobe Gamma Loader.lnk = ?
O8 - Extra context menu item: &Clean Traces - G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\DAP\Privacy Package\dapcleanerie.htm
O8 - Extra context menu item: &Download with &DAP - G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\DAP\dapextie.htm
O8 - Extra context menu item: Download &all with DAP - G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\DAP\dapextie2.htm
O8 - Extra context menu item: Download All Files by HiDownload - G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\HiDownload\HDGetAll.htm
O8 - Extra context menu item: Download by HiDownload - G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\HiDownload\HDGet.htm
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: HiDownload - {F4FBA929-A891-492C-A0F6-5C79CC4F1742} - G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\HiDownload\hidownload.exe
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://eugenemontel31.spaces.live.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} (OnlineScanner Control) - https://www.eset.com/
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Apps/PhotoSwap/PhtPkMSN.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\Skype4COM.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - G:\LES FICHES SUR LES ENFANTS\GATT\aawservice.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Spyware Doctor Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\svcntaux.exe
O23 - Service: Spyware Doctor Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\swdsvc.exe
O23 - Service: VideoAcceleratorEngine - Speedbit Ltd. - G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\DAP\SpeedBit Video Accelerator\VideoAcceleratorEngine.exe
bonsoir c'est bon j'ai arriver .
Rapport Lopxp fait le 28/11/2007 à 22:18:35
Exécuté dans : C:\Program Files\Lopxp
Liste des processus actifs :
PID : 1684 C:\WINDOWS\Explorer.EXE
PID : 1948 C:\Program Files\Alwil Software\Avast4\ashDisp.exe
PID : 1984 C:\Program Files\MSN Messenger\msnmsgr.exe
PID : 2024 C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
PID : 264 C:\PROGRA~1\Wanadoo\GestionnaireInternet.exe
PID : 280 C:\PROGRA~1\Wanadoo\ComComp.exe
PID : 296 C:\PROGRA~1\Wanadoo\Toaster.exe
PID : 300 C:\PROGRA~1\Wanadoo\Inactivity.exe
PID : 308 C:\PROGRA~1\Wanadoo\PollingModule.exe
PID : 328 C:\WINDOWS\System32\AlertModule\AlertModule.exe
PID : 1604 C:\WINDOWS\system32\wscntfy.exe
PID : 2532 C:\PROGRA~1\Wanadoo\Watch.exe
PID : 1168 C:\Program Files\Mozilla Firefox\firefox.exe
PID : 3220 C:\WINDOWS\system32\cmd.exe
PID : 1240 C:\Documents and Settings\the undertaker\Mes documents\tools\pv.exe
___________________________________________________________________________
[Tâches planifiées]
___________________________________________________________________________
[Listing des dossiers Application Data]
cr: Date Création | mo: Date Modification -=- Nom Long -= Nom Court (8.3)
+- C:\Documents and Settings\All Users\Application Data
cr: 08/11/2006 13:26:37 | mo: 08/11/2006 13:26:37 -=- Ahead ----= Ahead
cr: 24/10/2006 08:42:12 | mo: 24/11/2006 13:01:12 -=- DVDSHR~1 -= DVD Shrink
cr: 24/10/2006 10:02:27 | mo: 10/05/2007 12:11:34 -=- MICROS~1 -= Microsoft
+- C:\Documents and Settings\All Users.WINDOWS\Application Data
cr: 23/09/2007 20:39:48 | mo: 23/09/2007 20:39:48 -=- DVDSHR~1 -= DVD Shrink
cr: 09/11/2007 21:14:05 | mo: 09/11/2007 21:14:05 -=- Google ---= Google
cr: 17/11/2007 22:30:15 | mo: 17/11/2007 22:30:15 -=- Lavasoft -= Lavasoft
cr: 30/10/2007 23:25:05 | mo: 30/10/2007 23:25:05 -=- Messenger Plus! -= Messenger Plus!
cr: 23/09/2007 21:32:57 | mo: 26/11/2007 21:47:19 -=- MICROS~1 -= Microsoft
cr: 23/09/2007 20:35:47 | mo: 23/09/2007 20:35:47 -=- MSNMES~1.013 -= MSN Messenger 6.2.0137
cr: 16/11/2007 21:52:50 | mo: 16/11/2007 21:52:50 -=- PY_Software -= PY_Software
cr: 15/11/2007 22:48:40 | mo: 16/11/2007 17:39:42 -=- Spybot - Search & Destroy -= Spybot - Search & Destroy
cr: 03/10/2007 17:59:33 | mo: 03/10/2007 17:59:33 -=- Windows Live Toolbar -= Windows Live Toolbar
+- C:\Documents and Settings\Boomscud\Application Data
cr: 24/10/2006 08:36:16 | mo: 23/09/2007 20:33:50 -=- MICROS~1 -= Microsoft
cr: 24/10/2006 08:40:34 | mo: 24/10/2006 08:40:34 -=- Sun ------= Sun
+- C:\Documents and Settings\the undertaker\Application Data
cr: 26/11/2007 18:18:53 | mo: 26/11/2007 18:18:53 -=- Identities ------= Identities
cr: 26/11/2007 18:50:24 | mo: 26/11/2007 18:50:24 -=- Macromedia ------= Macromedia
cr: 26/11/2007 18:18:16 | mo: 27/11/2007 20:00:16 -=- Microsoft ------= Microsoft
cr: 26/11/2007 18:40:47 | mo: 27/11/2007 08:02:45 -=- Mozilla --= Mozilla
cr: 27/11/2007 08:02:42 | mo: 27/11/2007 08:02:42 -=- Talkback -= Talkback
+- C:\Documents and Settings\the undertaker\Local Settings\Application Data
cr: 26/11/2007 18:21:49 | mo: 26/11/2007 18:21:49 -=- Help -----= Help
cr: 27/11/2007 08:42:17 | mo: 27/11/2007 08:42:17 -=- Identities -----= Identities
cr: 26/11/2007 18:18:16 | mo: 28/11/2007 20:44:10 -=- Microsoft -----= Microsoft
cr: 26/11/2007 18:40:47 | mo: 26/11/2007 18:40:47 -=- Mozilla --= Mozilla
___________________________________________________________________________
[Listing du dossier Program Files]
+- C:\Program Files
cr: 22/11/2007 22:10:59 | mo: 22/11/2007 22:11:06 -=- 7-Zip ----= 7-Zip
cr: 21/11/2007 22:22:07 | mo: 21/11/2007 22:25:35 -=- A4Desk ---= A4Desk
cr: 21/11/2007 22:14:53 | mo: 21/11/2007 22:14:54 -=- A4Desktrialfr ---= A4Desktrialfr
cr: 16/11/2007 21:51:54 | mo: 23/11/2007 22:26:34 -=- Active WebCam ---= Active WebCam
cr: 12/12/2006 19:23:32 | mo: 23/09/2007 20:34:13 -=- Adobe ----= Adobe
cr: 30/11/2006 17:20:48 | mo: 08/12/2006 18:09:47 -=- ADSL Drivers ----= ADSL Drivers
cr: 30/10/2007 23:23:09 | mo: 30/10/2007 23:23:09 -=- Adverts --= Adverts
cr: 24/10/2006 08:38:29 | mo: 21/08/2004 12:24:27 -=- Ahead ----= Ahead
cr: 03/10/2007 13:20:41 | mo: 03/10/2007 13:20:41 -=- Alwil Software ----= Alwil Software
cr: 20/11/2007 22:01:23 | mo: 27/11/2007 21:52:21 -=- Amor AVI MPEG WMV RM to MP3 Converter ----= Amor AVI MPEG WMV RM to MP3 Converter
cr: 18/11/2007 19:47:16 | mo: 25/11/2007 21:37:53 -=- Ares -----= Ares
cr: 28/10/2007 22:58:51 | mo: 28/10/2007 22:58:51 -=- Autofr ---= Autofr
cr: 15/11/2007 22:28:15 | mo: 16/11/2007 17:13:14 -=- AxBx -----= AxBx
cr: 28/06/2007 23:48:18 | mo: 28/06/2007 23:48:18 -=- Bullfrog -= Bullfrog
cr: 16/11/2007 22:24:13 | mo: 16/11/2007 22:25:27 -=- CCleaner -= CCleaner
cr: 22/09/2007 20:51:56 | mo: 22/09/2007 20:51:56 -=- COMPLU~1 -= ComPlus Applications
cr: 29/09/2007 19:26:14 | mo: 29/09/2007 19:26:14 -=- Croteam --= Croteam
cr: 27/10/2007 21:21:26 | mo: 30/10/2007 22:42:35 -=- Dachshund Software --= Dachshund Software
cr: 31/10/2006 13:48:26 | mo: 31/10/2006 13:48:26 -=- Davilex --= Davilex
cr: 18/11/2007 22:26:07 | mo: 25/11/2007 21:39:06 -=- DivX -----= DivX
cr: 01/08/2007 09:20:57 | mo: 01/08/2007 09:21:07 -=- DVCam 3(PC Camera) -----= DVCam 3(PC Camera)
cr: 24/10/2006 08:42:10 | mo: 23/09/2007 20:39:48 -=- DVDSHR~1 -= DVD Shrink
cr: 20/10/2007 13:36:10 | mo: 20/10/2007 13:36:10 -=- Eidos ----= Eidos
cr: 27/06/2007 23:47:49 | mo: 27/06/2007 23:47:49 -=- Eidos Interactive ----= Eidos Interactive
cr: 26/09/2007 20:11:49 | mo: 26/09/2007 20:27:22 -=- Electronic Arts ----= Electronic Arts
cr: 16/05/2007 19:44:14 | mo: 30/10/2007 22:43:46 -=- Executive Software ----= Executive Software
cr: 24/10/2006 10:04:33 | mo: 17/11/2007 22:26:37 -=- FICHIE~1 -= Fichiers communs
cr: 24/10/2006 08:37:23 | mo: 03/10/2007 20:41:36 -=- FlashGet -= FlashGet
cr: 17/08/2007 19:28:59 | mo: 17/08/2007 19:29:16 -=- Future Beat 3D -= Future Beat 3D
cr: 24/10/2006 09:47:13 | mo: 24/10/2006 09:47:13 -=- Hasbro Interactive -= Hasbro Interactive
cr: 02/11/2007 08:26:45 | mo: 03/11/2007 20:27:39 -=- HotTVPlayer -= HotTVPlayer
cr: 12/05/2007 18:25:45 | mo: 12/05/2007 18:25:45 -=- Infogrames -= Infogrames
cr: 16/11/2007 17:14:25 | mo: 16/11/2007 17:14:25 -=- inKline Global -= inKline Global
cr: 29/10/2006 16:38:07 | mo: 16/11/2007 17:14:23 -=- InstallShield Installation Information -= InstallShield Installation Information
cr: 24/10/2006 08:22:33 | mo: 26/10/2007 21:42:40 -=- INTERN~1 -= internet explorer
cr: 03/10/2007 13:34:54 | mo: 03/10/2007 13:34:54 -=- Inventel -= Inventel
cr: 31/10/2007 22:02:43 | mo: 31/10/2007 22:02:43 -=- Lavalys --= Lavalys
cr: 17/11/2007 22:30:16 | mo: 17/11/2007 22:30:16 -=- Lavasoft -= Lavasoft
cr: 31/10/2006 14:17:12 | mo: 31/07/2007 09:46:46 -=- Maxis ----= Maxis
cr: 30/10/2007 23:22:45 | mo: 30/10/2007 23:22:53 -=- Messenger Plus! Live ----= Messenger Plus! Live
cr: 24/10/2006 08:22:33 | mo: 24/10/2006 08:22:33 -=- MICROS~1 -= microsoft frontpage
cr: 24/10/2006 13:53:45 | mo: 24/10/2006 13:53:45 -=- Microsoft Games -= Microsoft Games
cr: 03/10/2007 20:55:55 | mo: 19/10/2007 21:28:50 -=- Miranda IM -= Miranda IM
cr: 24/10/2006 08:22:33 | mo: 24/10/2006 08:22:33 -=- MOVIEM~1 -= movie maker
cr: 24/10/2006 08:41:38 | mo: 24/10/2006 08:41:38 -=- mozilla --= mozilla
cr: 03/10/2007 19:01:20 | mo: 27/11/2007 22:51:19 -=- Mozilla Firefox --= Mozilla Firefox
cr: 12/11/2007 20:44:19 | mo: 27/11/2007 22:33:22 -=- Mozilla Thunderbird --= Mozilla Thunderbird
cr: 23/09/2007 19:58:46 | mo: 23/09/2007 19:58:46 -=- MSNGAM~1 -= msn gaming zone
cr: 19/10/2007 21:10:55 | mo: 30/10/2007 23:22:50 -=- MSN Messenger -= MSN Messenger
cr: 18/08/2007 20:43:58 | mo: 18/08/2007 20:43:59 -=- Multimedia Combo Set -= Multimedia Combo Set
cr: 24/10/2006 08:22:33 | mo: 22/09/2007 20:55:10 -=- NETMEE~1 -= netmeeting
cr: 24/10/2006 08:22:33 | mo: 26/10/2007 21:42:40 -=- OUTLOO~1 -= outlook express
cr: 10/11/2007 21:57:11 | mo: 25/11/2007 21:39:38 -=- RayV -----= RayV
cr: 23/09/2007 20:39:31 | mo: 23/09/2007 20:39:32 -=- SATSUK~1 -= Satsuki Decodeur Pack
cr: 03/10/2007 13:35:05 | mo: 03/10/2007 13:35:05 -=- Securitoo -= Securitoo
cr: 22/09/2007 20:56:48 | mo: 22/09/2007 20:56:48 -=- SERVIC~1 -= Services en ligne
cr: 18/10/2007 20:24:06 | mo: 18/10/2007 20:45:23 -=- SM -------= SM
cr: 15/11/2007 22:48:40 | mo: 15/11/2007 22:49:01 -=- Spybot - Search & Destroy -------= Spybot - Search & Destroy
cr: 27/11/2007 22:15:53 | mo: 27/11/2007 22:15:53 -=- Trend Micro -------= Trend Micro
cr: 25/11/2007 21:33:58 | mo: 25/11/2007 21:33:58 -=- Uninstall Information -------= Uninstall Information
cr: 03/11/2006 15:07:05 | mo: 03/11/2006 15:07:05 -=- VideoLAN -= VideoLAN
cr: 03/10/2007 13:35:57 | mo: 28/11/2007 21:19:57 -=- Wanadoo --= Wanadoo
cr: 27/06/2007 10:34:09 | mo: 29/06/2007 23:57:19 -=- Wildlife Park --= Wildlife Park
cr: 24/10/2006 08:41:13 | mo: 05/11/2007 22:11:35 -=- WINAMP ---= WINAMP
cr: 30/10/2007 23:22:50 | mo: 30/10/2007 23:22:50 -=- Windows Live ---= Windows Live
cr: 03/10/2007 17:59:07 | mo: 18/10/2007 20:45:20 -=- Windows Live Toolbar ---= Windows Live Toolbar
cr: 24/10/2006 08:22:33 | mo: 22/09/2007 20:55:11 -=- WINDOW~1 -= windows media player
cr: 24/10/2006 08:22:33 | mo: 22/09/2007 20:50:53 -=- WINDOW~2 -= windows nt
cr: 22/09/2007 20:56:59 | mo: 22/09/2007 20:56:59 -=- WINDOW~3 -= WindowsUpdate
cr: 24/10/2006 08:41:33 | mo: 26/09/2007 18:59:46 -=- WinRAR ---= WinRAR
cr: 24/10/2006 08:22:34 | mo: 24/10/2006 08:22:34 -=- xerox ----= xerox
cr: 16/11/2007 22:24:44 | mo: 27/11/2007 21:50:36 -=- Yahoo! ---= Yahoo!
cr: 24/11/2007 22:17:18 | mo: 24/11/2007 22:17:18 -=- ZillaSoft.ws ---= ZillaSoft.ws
___________________________________________________________________________
[Recherche programmes connus, liés à CiD]
C:\Program Files\Messenger Plus! Live
___________________________________________________________________________
[Clés registre de démarrage]
___________________________________________________________________________
[Popups autorisés]
[-] Internet Explorer :
La version d'Internet Explorer utilisée, ne gère pas l'autorisation des popups.
[-] Mozilla Firefox
Rapport Lopxp fait le 28/11/2007 à 22:18:35
Exécuté dans : C:\Program Files\Lopxp
Liste des processus actifs :
PID : 1684 C:\WINDOWS\Explorer.EXE
PID : 1948 C:\Program Files\Alwil Software\Avast4\ashDisp.exe
PID : 1984 C:\Program Files\MSN Messenger\msnmsgr.exe
PID : 2024 C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
PID : 264 C:\PROGRA~1\Wanadoo\GestionnaireInternet.exe
PID : 280 C:\PROGRA~1\Wanadoo\ComComp.exe
PID : 296 C:\PROGRA~1\Wanadoo\Toaster.exe
PID : 300 C:\PROGRA~1\Wanadoo\Inactivity.exe
PID : 308 C:\PROGRA~1\Wanadoo\PollingModule.exe
PID : 328 C:\WINDOWS\System32\AlertModule\AlertModule.exe
PID : 1604 C:\WINDOWS\system32\wscntfy.exe
PID : 2532 C:\PROGRA~1\Wanadoo\Watch.exe
PID : 1168 C:\Program Files\Mozilla Firefox\firefox.exe
PID : 3220 C:\WINDOWS\system32\cmd.exe
PID : 1240 C:\Documents and Settings\the undertaker\Mes documents\tools\pv.exe
___________________________________________________________________________
[Tâches planifiées]
___________________________________________________________________________
[Listing des dossiers Application Data]
cr: Date Création | mo: Date Modification -=- Nom Long -= Nom Court (8.3)
+- C:\Documents and Settings\All Users\Application Data
cr: 08/11/2006 13:26:37 | mo: 08/11/2006 13:26:37 -=- Ahead ----= Ahead
cr: 24/10/2006 08:42:12 | mo: 24/11/2006 13:01:12 -=- DVDSHR~1 -= DVD Shrink
cr: 24/10/2006 10:02:27 | mo: 10/05/2007 12:11:34 -=- MICROS~1 -= Microsoft
+- C:\Documents and Settings\All Users.WINDOWS\Application Data
cr: 23/09/2007 20:39:48 | mo: 23/09/2007 20:39:48 -=- DVDSHR~1 -= DVD Shrink
cr: 09/11/2007 21:14:05 | mo: 09/11/2007 21:14:05 -=- Google ---= Google
cr: 17/11/2007 22:30:15 | mo: 17/11/2007 22:30:15 -=- Lavasoft -= Lavasoft
cr: 30/10/2007 23:25:05 | mo: 30/10/2007 23:25:05 -=- Messenger Plus! -= Messenger Plus!
cr: 23/09/2007 21:32:57 | mo: 26/11/2007 21:47:19 -=- MICROS~1 -= Microsoft
cr: 23/09/2007 20:35:47 | mo: 23/09/2007 20:35:47 -=- MSNMES~1.013 -= MSN Messenger 6.2.0137
cr: 16/11/2007 21:52:50 | mo: 16/11/2007 21:52:50 -=- PY_Software -= PY_Software
cr: 15/11/2007 22:48:40 | mo: 16/11/2007 17:39:42 -=- Spybot - Search & Destroy -= Spybot - Search & Destroy
cr: 03/10/2007 17:59:33 | mo: 03/10/2007 17:59:33 -=- Windows Live Toolbar -= Windows Live Toolbar
+- C:\Documents and Settings\Boomscud\Application Data
cr: 24/10/2006 08:36:16 | mo: 23/09/2007 20:33:50 -=- MICROS~1 -= Microsoft
cr: 24/10/2006 08:40:34 | mo: 24/10/2006 08:40:34 -=- Sun ------= Sun
+- C:\Documents and Settings\the undertaker\Application Data
cr: 26/11/2007 18:18:53 | mo: 26/11/2007 18:18:53 -=- Identities ------= Identities
cr: 26/11/2007 18:50:24 | mo: 26/11/2007 18:50:24 -=- Macromedia ------= Macromedia
cr: 26/11/2007 18:18:16 | mo: 27/11/2007 20:00:16 -=- Microsoft ------= Microsoft
cr: 26/11/2007 18:40:47 | mo: 27/11/2007 08:02:45 -=- Mozilla --= Mozilla
cr: 27/11/2007 08:02:42 | mo: 27/11/2007 08:02:42 -=- Talkback -= Talkback
+- C:\Documents and Settings\the undertaker\Local Settings\Application Data
cr: 26/11/2007 18:21:49 | mo: 26/11/2007 18:21:49 -=- Help -----= Help
cr: 27/11/2007 08:42:17 | mo: 27/11/2007 08:42:17 -=- Identities -----= Identities
cr: 26/11/2007 18:18:16 | mo: 28/11/2007 20:44:10 -=- Microsoft -----= Microsoft
cr: 26/11/2007 18:40:47 | mo: 26/11/2007 18:40:47 -=- Mozilla --= Mozilla
___________________________________________________________________________
[Listing du dossier Program Files]
+- C:\Program Files
cr: 22/11/2007 22:10:59 | mo: 22/11/2007 22:11:06 -=- 7-Zip ----= 7-Zip
cr: 21/11/2007 22:22:07 | mo: 21/11/2007 22:25:35 -=- A4Desk ---= A4Desk
cr: 21/11/2007 22:14:53 | mo: 21/11/2007 22:14:54 -=- A4Desktrialfr ---= A4Desktrialfr
cr: 16/11/2007 21:51:54 | mo: 23/11/2007 22:26:34 -=- Active WebCam ---= Active WebCam
cr: 12/12/2006 19:23:32 | mo: 23/09/2007 20:34:13 -=- Adobe ----= Adobe
cr: 30/11/2006 17:20:48 | mo: 08/12/2006 18:09:47 -=- ADSL Drivers ----= ADSL Drivers
cr: 30/10/2007 23:23:09 | mo: 30/10/2007 23:23:09 -=- Adverts --= Adverts
cr: 24/10/2006 08:38:29 | mo: 21/08/2004 12:24:27 -=- Ahead ----= Ahead
cr: 03/10/2007 13:20:41 | mo: 03/10/2007 13:20:41 -=- Alwil Software ----= Alwil Software
cr: 20/11/2007 22:01:23 | mo: 27/11/2007 21:52:21 -=- Amor AVI MPEG WMV RM to MP3 Converter ----= Amor AVI MPEG WMV RM to MP3 Converter
cr: 18/11/2007 19:47:16 | mo: 25/11/2007 21:37:53 -=- Ares -----= Ares
cr: 28/10/2007 22:58:51 | mo: 28/10/2007 22:58:51 -=- Autofr ---= Autofr
cr: 15/11/2007 22:28:15 | mo: 16/11/2007 17:13:14 -=- AxBx -----= AxBx
cr: 28/06/2007 23:48:18 | mo: 28/06/2007 23:48:18 -=- Bullfrog -= Bullfrog
cr: 16/11/2007 22:24:13 | mo: 16/11/2007 22:25:27 -=- CCleaner -= CCleaner
cr: 22/09/2007 20:51:56 | mo: 22/09/2007 20:51:56 -=- COMPLU~1 -= ComPlus Applications
cr: 29/09/2007 19:26:14 | mo: 29/09/2007 19:26:14 -=- Croteam --= Croteam
cr: 27/10/2007 21:21:26 | mo: 30/10/2007 22:42:35 -=- Dachshund Software --= Dachshund Software
cr: 31/10/2006 13:48:26 | mo: 31/10/2006 13:48:26 -=- Davilex --= Davilex
cr: 18/11/2007 22:26:07 | mo: 25/11/2007 21:39:06 -=- DivX -----= DivX
cr: 01/08/2007 09:20:57 | mo: 01/08/2007 09:21:07 -=- DVCam 3(PC Camera) -----= DVCam 3(PC Camera)
cr: 24/10/2006 08:42:10 | mo: 23/09/2007 20:39:48 -=- DVDSHR~1 -= DVD Shrink
cr: 20/10/2007 13:36:10 | mo: 20/10/2007 13:36:10 -=- Eidos ----= Eidos
cr: 27/06/2007 23:47:49 | mo: 27/06/2007 23:47:49 -=- Eidos Interactive ----= Eidos Interactive
cr: 26/09/2007 20:11:49 | mo: 26/09/2007 20:27:22 -=- Electronic Arts ----= Electronic Arts
cr: 16/05/2007 19:44:14 | mo: 30/10/2007 22:43:46 -=- Executive Software ----= Executive Software
cr: 24/10/2006 10:04:33 | mo: 17/11/2007 22:26:37 -=- FICHIE~1 -= Fichiers communs
cr: 24/10/2006 08:37:23 | mo: 03/10/2007 20:41:36 -=- FlashGet -= FlashGet
cr: 17/08/2007 19:28:59 | mo: 17/08/2007 19:29:16 -=- Future Beat 3D -= Future Beat 3D
cr: 24/10/2006 09:47:13 | mo: 24/10/2006 09:47:13 -=- Hasbro Interactive -= Hasbro Interactive
cr: 02/11/2007 08:26:45 | mo: 03/11/2007 20:27:39 -=- HotTVPlayer -= HotTVPlayer
cr: 12/05/2007 18:25:45 | mo: 12/05/2007 18:25:45 -=- Infogrames -= Infogrames
cr: 16/11/2007 17:14:25 | mo: 16/11/2007 17:14:25 -=- inKline Global -= inKline Global
cr: 29/10/2006 16:38:07 | mo: 16/11/2007 17:14:23 -=- InstallShield Installation Information -= InstallShield Installation Information
cr: 24/10/2006 08:22:33 | mo: 26/10/2007 21:42:40 -=- INTERN~1 -= internet explorer
cr: 03/10/2007 13:34:54 | mo: 03/10/2007 13:34:54 -=- Inventel -= Inventel
cr: 31/10/2007 22:02:43 | mo: 31/10/2007 22:02:43 -=- Lavalys --= Lavalys
cr: 17/11/2007 22:30:16 | mo: 17/11/2007 22:30:16 -=- Lavasoft -= Lavasoft
cr: 31/10/2006 14:17:12 | mo: 31/07/2007 09:46:46 -=- Maxis ----= Maxis
cr: 30/10/2007 23:22:45 | mo: 30/10/2007 23:22:53 -=- Messenger Plus! Live ----= Messenger Plus! Live
cr: 24/10/2006 08:22:33 | mo: 24/10/2006 08:22:33 -=- MICROS~1 -= microsoft frontpage
cr: 24/10/2006 13:53:45 | mo: 24/10/2006 13:53:45 -=- Microsoft Games -= Microsoft Games
cr: 03/10/2007 20:55:55 | mo: 19/10/2007 21:28:50 -=- Miranda IM -= Miranda IM
cr: 24/10/2006 08:22:33 | mo: 24/10/2006 08:22:33 -=- MOVIEM~1 -= movie maker
cr: 24/10/2006 08:41:38 | mo: 24/10/2006 08:41:38 -=- mozilla --= mozilla
cr: 03/10/2007 19:01:20 | mo: 27/11/2007 22:51:19 -=- Mozilla Firefox --= Mozilla Firefox
cr: 12/11/2007 20:44:19 | mo: 27/11/2007 22:33:22 -=- Mozilla Thunderbird --= Mozilla Thunderbird
cr: 23/09/2007 19:58:46 | mo: 23/09/2007 19:58:46 -=- MSNGAM~1 -= msn gaming zone
cr: 19/10/2007 21:10:55 | mo: 30/10/2007 23:22:50 -=- MSN Messenger -= MSN Messenger
cr: 18/08/2007 20:43:58 | mo: 18/08/2007 20:43:59 -=- Multimedia Combo Set -= Multimedia Combo Set
cr: 24/10/2006 08:22:33 | mo: 22/09/2007 20:55:10 -=- NETMEE~1 -= netmeeting
cr: 24/10/2006 08:22:33 | mo: 26/10/2007 21:42:40 -=- OUTLOO~1 -= outlook express
cr: 10/11/2007 21:57:11 | mo: 25/11/2007 21:39:38 -=- RayV -----= RayV
cr: 23/09/2007 20:39:31 | mo: 23/09/2007 20:39:32 -=- SATSUK~1 -= Satsuki Decodeur Pack
cr: 03/10/2007 13:35:05 | mo: 03/10/2007 13:35:05 -=- Securitoo -= Securitoo
cr: 22/09/2007 20:56:48 | mo: 22/09/2007 20:56:48 -=- SERVIC~1 -= Services en ligne
cr: 18/10/2007 20:24:06 | mo: 18/10/2007 20:45:23 -=- SM -------= SM
cr: 15/11/2007 22:48:40 | mo: 15/11/2007 22:49:01 -=- Spybot - Search & Destroy -------= Spybot - Search & Destroy
cr: 27/11/2007 22:15:53 | mo: 27/11/2007 22:15:53 -=- Trend Micro -------= Trend Micro
cr: 25/11/2007 21:33:58 | mo: 25/11/2007 21:33:58 -=- Uninstall Information -------= Uninstall Information
cr: 03/11/2006 15:07:05 | mo: 03/11/2006 15:07:05 -=- VideoLAN -= VideoLAN
cr: 03/10/2007 13:35:57 | mo: 28/11/2007 21:19:57 -=- Wanadoo --= Wanadoo
cr: 27/06/2007 10:34:09 | mo: 29/06/2007 23:57:19 -=- Wildlife Park --= Wildlife Park
cr: 24/10/2006 08:41:13 | mo: 05/11/2007 22:11:35 -=- WINAMP ---= WINAMP
cr: 30/10/2007 23:22:50 | mo: 30/10/2007 23:22:50 -=- Windows Live ---= Windows Live
cr: 03/10/2007 17:59:07 | mo: 18/10/2007 20:45:20 -=- Windows Live Toolbar ---= Windows Live Toolbar
cr: 24/10/2006 08:22:33 | mo: 22/09/2007 20:55:11 -=- WINDOW~1 -= windows media player
cr: 24/10/2006 08:22:33 | mo: 22/09/2007 20:50:53 -=- WINDOW~2 -= windows nt
cr: 22/09/2007 20:56:59 | mo: 22/09/2007 20:56:59 -=- WINDOW~3 -= WindowsUpdate
cr: 24/10/2006 08:41:33 | mo: 26/09/2007 18:59:46 -=- WinRAR ---= WinRAR
cr: 24/10/2006 08:22:34 | mo: 24/10/2006 08:22:34 -=- xerox ----= xerox
cr: 16/11/2007 22:24:44 | mo: 27/11/2007 21:50:36 -=- Yahoo! ---= Yahoo!
cr: 24/11/2007 22:17:18 | mo: 24/11/2007 22:17:18 -=- ZillaSoft.ws ---= ZillaSoft.ws
___________________________________________________________________________
[Recherche programmes connus, liés à CiD]
C:\Program Files\Messenger Plus! Live
___________________________________________________________________________
[Clés registre de démarrage]
___________________________________________________________________________
[Popups autorisés]
[-] Internet Explorer :
La version d'Internet Explorer utilisée, ne gère pas l'autorisation des popups.
[-] Mozilla Firefox
Salut
les deux rapports hijackthis ne correspondent pas du tout, l'un présente une infection, lop, l'autre pas ...
il faut exécuter lopxp sur le PC infecté !! ;-)
++
les deux rapports hijackthis ne correspondent pas du tout, l'un présente une infection, lop, l'autre pas ...
il faut exécuter lopxp sur le PC infecté !! ;-)
++
salut c'est normal le premiere rapprot est celui de ma chambre qui a des pub et le deuxeme rapprot c'est mon pc qui est au salon avec defois des pub ?
le 1er PC, soit doit être du naviprimo, et le 2ème c'est du lop !
on va commencer par le 2ème PC ( donc on va commencer par celui du salon uniquement !! )
exécute lopxp sur le sur le 2ème PC stp
++
on va commencer par le 2ème PC ( donc on va commencer par celui du salon uniquement !! )
exécute lopxp sur le sur le 2ème PC stp
++
OK TIENS CELUI DU SALON C FAIT
Rapport Lopxp fait le 29/11/2007 à 12:29:48
Exécuté dans : C:\Program Files\Lopxp
Liste des processus actifs :
PID : 592 C:\WINDOWS\System32\smss.exe
PID : 664 C:\WINDOWS\system32\csrss.exe
PID : 688 C:\WINDOWS\system32\winlogon.exe
PID : 732 C:\WINDOWS\system32\services.exe
PID : 744 C:\WINDOWS\system32\lsass.exe
PID : 896 C:\WINDOWS\system32\svchost.exe
PID : 952 C:\WINDOWS\system32\svchost.exe
PID : 1016 C:\WINDOWS\System32\svchost.exe
PID : 1128 C:\WINDOWS\system32\svchost.exe
PID : 1164 C:\WINDOWS\system32\svchost.exe
PID : 1312 G:\LES FICHES SUR LES ENFANTS\GATT\aawservice.exe
PID : 1324 C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
PID : 1372 C:\Program Files\Alwil Software\Avast4\ashServ.exe
PID : 1592 C:\WINDOWS\system32\spoolsv.exe
PID : 1872 C:\WINDOWS\Explorer.EXE
PID : 1972 C:\Program Files\Alwil Software\Avast4\ashDisp.exe
PID : 2012 G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\Res.EXE
PID : 2016 C:\WINDOWS\system32\rundll32.exe
PID : 2044 C:\PROGRA~1\Goto Software\Vade Retro\Vaderetro_oe.exe
PID : 164 C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
PID : 208 C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
PID : 284 C:\Program Files\inKline Global\PC Booster\PCBooster.exe
PID : 300 C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
PID : 308 C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
PID : 472 C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe
PID : 500 C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
PID : 540 C:\WINDOWS\ATKKBService.exe
PID : 360 G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\AVG Anti-Spyware 7.5\guard.exe
PID : 124 C:\WINDOWS\System32\FTRTSVC.exe
PID : 1048 C:\WINDOWS\system32\nvsvc32.exe
PID : 1220 C:\WINDOWS\system32\svchost.exe
PID : 1712 G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\INTEGRAL\pinmenu.exe
PID : 1828 C:\WINDOWS\system32\wdfmgr.exe
PID : 2228 C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
PID : 2244 C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
PID : 2460 C:\WINDOWS\system32\wscntfy.exe
PID : 2768 C:\WINDOWS\System32\alg.exe
PID : 2896 C:\WINDOWS\System32\svchost.exe
PID : 3212 C:\Program Files\Wanadoo\GestionnaireInternet.exe
PID : 3244 C:\Program Files\Wanadoo\ComComp.exe
PID : 3272 C:\PROGRA~1\Wanadoo\Toaster.exe
PID : 3280 C:\PROGRA~1\Wanadoo\Inactivity.exe
PID : 3288 C:\PROGRA~1\Wanadoo\PollingModule.exe
PID : 3328 C:\WINDOWS\System32\AlertModule\AlertModule.exe
PID : 3516 C:\Program Files\Wanadoo\Watch.exe
PID : 2712 C:\Program Files\Outlook Express\msimn.exe
PID : 1232 C:\PROGRA~1\MOZILLA FIREFOX\FIREFOX.EXE
PID : 1280 C:\WINDOWS\system32\cmd.exe
PID : 2640 C:\Program Files\Lopxp\tools\pv.exe
___________________________________________________________________________
[Tâches planifiées]
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
Cr : 02/07/2007 à 07:03
Mo : 08/11/2007 à 20:39
Fichier exécuté : C\Program Files\Apple Software Update\SoftwareUpdate.exe -task
___________________________________________________________________________
[Listing des dossiers Application Data]
cr: Date Création | mo: Date Modification -=- Nom Long -= Nom Court (8.3)
+- C:\Documents and Settings\Administrateur\Application Data
cr: 24/03/2007 19:23:08 | mo: 24/03/2007 19:23:08 -=- Identities Identities
cr: 24/03/2007 19:22:53 | mo: 24/03/2007 19:22:56 -=- Microsoft Microsoft
+- C:\Documents and Settings\Administrateur\Local Settings\Application Data
cr: 24/03/2007 19:22:53 | mo: 24/03/2007 19:22:56 -=- Microsoft Microsoft
+- C:\Documents and Settings\All Users\Application Data
cr: 02/01/2007 15:37:13 | mo: 07/11/2007 07:37:36 -=- Adobe ----= Adobe
cr: 23/12/2006 10:53:02 | mo: 23/12/2006 10:53:02 -=- Ahead ----= Ahead
cr: 31/03/2007 16:36:10 | mo: 31/03/2007 18:01:16 -=- AntiSpyInfo ----= AntiSpyInfo
cr: 21/06/2007 07:53:01 | mo: 21/06/2007 07:53:01 -=- AOL Downloads ----= AOL Downloads
cr: 02/07/2007 07:02:47 | mo: 02/07/2007 07:02:47 -=- Apple ----= Apple
cr: 07/03/2007 17:46:44 | mo: 04/07/2007 07:11:33 -=- Apple Computer ----= Apple Computer
cr: 24/07/2007 12:59:19 | mo: 27/07/2007 12:34:47 -=- Audio 4 part browse ----= Audio 4 part browse
cr: 27/06/2007 09:03:31 | mo: 27/06/2007 09:03:31 -=- AVS4YOU --= AVS4YOU
cr: 12/04/2007 07:06:37 | mo: 12/04/2007 07:06:37 -=- Azureus --= Azureus
cr: 24/07/2007 12:59:24 | mo: 27/07/2007 12:34:48 -=- Barb Info Hold Audio --= Barb Info Hold Audio
cr: 27/12/2006 13:02:05 | mo: 27/12/2006 13:02:05 -=- BOONTY ---= BOONTY
cr: 11/04/2007 12:11:10 | mo: 11/04/2007 12:11:10 -=- DVD Shrink ---= DVD Shrink
cr: 23/12/2006 15:12:51 | mo: 23/12/2006 15:12:52 -=- Google ---= Google
cr: 23/08/2007 18:10:08 | mo: 23/08/2007 18:10:08 -=- Grisoft --= Grisoft
cr: 28/09/2007 20:11:54 | mo: 28/09/2007 20:11:54 -=- InstallShield --= InstallShield
cr: 10/07/2007 20:37:07 | mo: 10/07/2007 20:37:07 -=- Lavasoft -= Lavasoft
cr: 21/08/2007 07:46:33 | mo: 21/08/2007 07:46:33 -=- McAfee ---= McAfee
cr: 10/02/2007 18:13:55 | mo: 03/08/2007 07:59:30 -=- mealsoftwareblahlong ---= mealsoftwareblahlong
cr: 27/10/2007 12:49:31 | mo: 27/10/2007 12:49:31 -=- Messenger Plus! ---= Messenger Plus!
cr: 23/12/2006 10:52:02 | mo: 23/05/2007 15:35:37 -=- MICROS~1 -= Microsoft
cr: 22/10/2007 14:42:31 | mo: 14/11/2007 22:30:12 -=- Nero -----= Nero
cr: 05/01/2007 10:50:35 | mo: 14/01/2007 12:38:18 -=- NFS Underground -----= NFS Underground
cr: 05/01/2007 09:49:37 | mo: 05/01/2007 09:49:37 -=- NFS Underground Demo -----= NFS Underground Demo
cr: 23/12/2006 10:48:12 | mo: 23/12/2006 10:48:12 -=- NVIDIA ---= NVIDIA
cr: 17/02/2007 08:35:04 | mo: 19/06/2007 12:13:18 -=- nView_Profiles ---= nView_Profiles
cr: 04/04/2007 17:21:55 | mo: 04/04/2007 17:33:22 -=- Pinnacle -= Pinnacle
cr: 04/04/2007 17:24:59 | mo: 04/04/2007 17:33:35 -=- Pinnacle Studio -= Pinnacle Studio
cr: 18/01/2007 19:44:35 | mo: 18/01/2007 19:44:35 -=- pixelStorm -= pixelStorm
cr: 02/07/2007 14:16:51 | mo: 02/07/2007 14:16:51 -=- SiComponents -= SiComponents
cr: 21/08/2007 07:46:33 | mo: 21/08/2007 07:46:33 -=- SiteAdvisor -= SiteAdvisor
cr: 04/10/2007 17:41:53 | mo: 04/10/2007 17:42:00 -=- Skype ----= Skype
cr: 17/03/2007 14:50:28 | mo: 25/06/2007 18:37:38 -=- Spybot - Search & Destroy ----= Spybot - Search & Destroy
cr: 21/03/2007 11:48:11 | mo: 31/10/2007 17:17:40 -=- TEMP -----= TEMP
cr: 20/01/2007 19:09:14 | mo: 20/01/2007 19:09:14 -=- UDL ------= UDL
cr: 20/06/2007 17:29:47 | mo: 20/06/2007 17:29:55 -=- VadeRetro ------= VadeRetro
cr: 28/12/2006 16:56:54 | mo: 28/12/2006 16:56:54 -=- Windows Genuine Advantage ------= Windows Genuine Advantage
cr: 05/01/2007 09:10:30 | mo: 05/01/2007 09:10:30 -=- Windows Live Toolbar ------= Windows Live Toolbar
cr: 31/08/2007 07:48:03 | mo: 31/08/2007 07:48:31 -=- WindowsLiveInstaller ------= WindowsLiveInstaller
cr: 31/08/2007 07:47:56 | mo: 13/11/2007 17:47:20 -=- WLInstaller ------= WLInstaller
cr: 02/03/2007 17:28:13 | mo: 02/03/2007 17:28:13 -=- Yahoo! ---= Yahoo!
+- C:\Documents and Settings\mika\Application Data
cr: 24/03/2007 19:21:35 | mo: 24/03/2007 19:21:36 -=- Microsoft ---= Microsoft
+- C:\Documents and Settings\mika\Local Settings\Application Data
cr: 24/03/2007 19:21:35 | mo: 24/03/2007 19:21:36 -=- Microsoft ---= Microsoft
___________________________________________________________________________
[Listing du dossier Program Files]
+- C:\Program Files
cr: 20/09/2007 17:21:48 | mo: 20/09/2007 17:21:48 -=- 1964 -----= 1964
cr: 25/12/2006 20:16:22 | mo: 23/11/2007 15:20:12 -=- Adobe ----= Adobe
cr: 27/10/2007 12:46:29 | mo: 27/10/2007 12:46:29 -=- Adverts --= Adverts
cr: 24/12/2006 08:23:14 | mo: 24/12/2006 08:23:14 -=- Agfa -----= Agfa
cr: 24/12/2006 08:23:33 | mo: 24/12/2006 08:23:33 -=- AGFAnet --= AGFAnet
cr: 23/12/2006 14:46:53 | mo: 23/12/2006 14:46:53 -=- Alwil Software --= Alwil Software
cr: 02/07/2007 07:03:23 | mo: 02/07/2007 07:03:24 -=- Apple Software Update --= Apple Software Update
cr: 23/12/2006 10:08:21 | mo: 23/12/2006 10:08:21 -=- ATI Technologies --= ATI Technologies
cr: 23/12/2006 10:12:34 | mo: 23/12/2006 10:12:37 -=- AvRack ---= AvRack
cr: 14/11/2007 21:30:50 | mo: 14/11/2007 21:30:50 -=- AxBx -----= AxBx
cr: 27/12/2006 13:01:15 | mo: 27/12/2006 13:01:15 -=- Boonty ---= Boonty
cr: 27/12/2006 13:01:40 | mo: 27/12/2006 13:01:40 -=- BoontyGames ---= BoontyGames
cr: 27/12/2006 15:23:33 | mo: 27/12/2006 15:25:23 -=- Brother --= Brother
cr: 27/12/2006 15:25:34 | mo: 27/12/2006 15:30:52 -=- Brownie --= Brownie
cr: 23/05/2007 14:25:03 | mo: 12/06/2007 09:26:55 -=- capb2i ---= capb2i
cr: 23/12/2006 09:57:07 | mo: 23/12/2006 09:57:07 -=- COMPLU~1 -= ComPlus Applications
cr: 22/10/2007 08:45:52 | mo: 22/10/2007 08:45:52 -=- DMV ------= DMV
cr: 20/01/2007 19:06:26 | mo: 21/01/2007 08:18:43 -=- epson ----= epson
cr: 06/11/2007 14:41:34 | mo: 07/11/2007 11:50:55 -=- EsetOnlineScanner ----= EsetOnlineScanner
cr: 05/02/2007 17:44:37 | mo: 05/02/2007 17:44:37 -=- eurobarre ----= eurobarre
cr: 23/12/2006 10:52:43 | mo: 13/11/2007 17:47:40 -=- FICHIE~1 -= Fichiers communs
cr: 23/12/2006 15:12:51 | mo: 12/06/2007 15:52:20 -=- Google ---= Google
cr: 20/06/2007 17:29:39 | mo: 20/06/2007 17:29:39 -=- Goto Software ---= Goto Software
cr: 20/07/2007 16:46:08 | mo: 10/11/2007 09:07:00 -=- ICQToolbar ---= ICQToolbar
cr: 14/11/2007 21:32:00 | mo: 14/11/2007 21:32:00 -=- inKline Global ---= inKline Global
cr: 23/12/2006 10:08:19 | mo: 16/11/2007 18:44:45 -=- InstallShield Installation Information ---= InstallShield Installation Information
cr: 23/12/2006 09:57:34 | mo: 13/11/2007 17:57:38 -=- INTERN~1 -= Internet Explorer
cr: 23/12/2006 14:04:25 | mo: 24/03/2007 14:35:41 -=- Inventel -= Inventel
cr: 10/10/2007 18:01:36 | mo: 10/10/2007 18:01:36 -=- IVCsoft --= IVCsoft
cr: 12/01/2007 07:56:48 | mo: 07/09/2007 14:28:49 -=- Java -----= Java
cr: 03/01/2007 14:47:58 | mo: 03/01/2007 14:47:58 -=- KONAMI ---= KONAMI
cr: 04/09/2007 08:40:50 | mo: 29/11/2007 12:29:50 -=- Lopxp ----= Lopxp
cr: 18/03/2007 18:57:15 | mo: 03/04/2007 11:02:51 -=- Macrogaming ----= Macrogaming
cr: 27/10/2007 12:46:23 | mo: 27/10/2007 12:46:24 -=- Messenger Plus! Live ----= Messenger Plus! Live
cr: 23/12/2006 10:00:30 | mo: 23/12/2006 10:00:30 -=- MICROS~1 -= microsoft frontpage
cr: 23/12/2006 10:25:48 | mo: 23/12/2006 10:26:12 -=- Microsoft Office -= Microsoft Office
cr: 01/01/2007 17:17:50 | mo: 01/01/2007 17:18:36 -=- Microsoft Référence -= Microsoft Référence
cr: 23/12/2006 10:00:30 | mo: 23/11/2007 14:23:22 -=- MOVIEM~1 -= movie maker
cr: 23/12/2006 10:05:05 | mo: 23/12/2006 10:05:05 -=- mozilla --= mozilla
cr: 23/12/2006 15:16:00 | mo: 29/11/2007 12:13:46 -=- Mozilla Firefox --= Mozilla Firefox
cr: 07/11/2007 17:48:43 | mo: 07/11/2007 17:55:45 -=- Mozilla Thunderbird --= Mozilla Thunderbird
cr: 02/01/2007 14:52:21 | mo: 02/01/2007 14:52:22 -=- MSI ------= MSI
cr: 24/12/2006 14:03:17 | mo: 05/01/2007 09:10:06 -=- MSN Apps -= MSN Apps
cr: 23/12/2006 10:00:30 | mo: 23/12/2006 10:00:30 -=- MSNGAM~1 -= msn gaming zone
cr: 04/02/2007 09:32:58 | mo: 13/11/2007 17:53:29 -=- MSN Messenger -= MSN Messenger
cr: 23/12/2006 10:18:14 | mo: 02/06/2007 13:24:48 -=- My Company Name -= My Company Name
cr: 31/08/2007 09:02:24 | mo: 02/09/2007 07:53:03 -=- Navilog1 -= Navilog1
cr: 01/01/2007 13:31:09 | mo: 14/11/2007 22:30:13 -=- Nero -----= Nero
cr: 23/12/2006 09:57:49 | mo: 31/01/2007 16:16:16 -=- NETMEE~1 -= NetMeeting
cr: 31/08/2007 16:02:34 | mo: 31/08/2007 16:02:43 -=- OpenOffice.org 2.2 -= OpenOffice.org 2.2
cr: 23/12/2006 09:57:46 | mo: 23/12/2006 09:58:15 -=- OUTLOO~1 -= Outlook Express
cr: 03/10/2007 14:53:03 | mo: 03/10/2007 14:53:03 -=- Panda Security -= Panda Security
cr: 16/05/2007 12:22:30 | mo: 02/06/2007 13:24:45 -=- Pidgin ---= Pidgin
cr: 07/03/2007 17:47:37 | mo: 04/07/2007 07:11:49 -=- QuickTime ---= QuickTime
cr: 23/12/2006 10:12:30 | mo: 23/12/2006 10:12:34 -=- Realtek AC97 ---= Realtek AC97
cr: 23/12/2006 10:12:37 | mo: 23/12/2006 10:12:37 -=- Realtek Sound Manager ---= Realtek Sound Manager
cr: 07/06/2007 16:09:56 | mo: 07/06/2007 16:09:56 -=- Replay Converter ---= Replay Converter
cr: 02/11/2007 11:06:05 | mo: 02/11/2007 11:06:05 -=- Securitoo ---= Securitoo
cr: 23/12/2006 09:59:06 | mo: 23/12/2006 09:59:06 -=- SERVIC~1 -= Services en ligne
cr: 24/07/2007 12:59:54 | mo: 24/07/2007 12:59:54 -=- Shim mags -= Shim mags
cr: 17/03/2007 15:08:09 | mo: 04/10/2007 17:42:00 -=- Skype ----= Skype
cr: 20/01/2007 19:07:28 | mo: 20/01/2007 19:08:47 -=- Smart Panel ----= Smart Panel
cr: 12/06/2007 06:54:48 | mo: 19/06/2007 08:49:21 -=- Spyware Doctor ----= Spyware Doctor
cr: 03/01/2007 17:57:45 | mo: 03/01/2007 17:59:11 -=- Traction Software ----= Traction Software
cr: 02/01/2007 15:37:25 | mo: 02/01/2007 15:37:25 -=- Ubi Soft -= Ubi Soft
cr: 02/01/2007 15:31:48 | mo: 02/01/2007 15:31:48 -=- UbiSoft --= UbiSoft
cr: 12/01/2007 18:11:28 | mo: 12/01/2007 18:11:28 -=- Uninstall Information --= Uninstall Information
cr: 23/12/2006 14:12:09 | mo: 29/11/2007 12:04:58 -=- Wanadoo --= Wanadoo
cr: 20/06/2007 07:32:12 | mo: 13/11/2007 18:00:16 -=- Windows Live --= Windows Live
cr: 02/10/2007 14:01:37 | mo: 23/11/2007 13:53:22 -=- Windows Live Safety Center --= Windows Live Safety Center
cr: 23/12/2006 09:56:57 | mo: 22/10/2007 14:41:51 -=- WINDOW~2 -= Windows Media Player
cr: 23/12/2006 09:56:31 | mo: 24/03/2007 18:13:13 -=- WINDOW~1 -= Windows NT
cr: 23/12/2006 09:59:09 | mo: 23/12/2006 09:59:09 -=- WINDOW~3 -= WindowsUpdate
cr: 10/01/2007 18:29:09 | mo: 25/04/2007 18:10:09 -=- WinRAR ---= WinRAR
cr: 23/12/2006 10:00:30 | mo: 23/12/2006 10:00:30 -=- xerox ----= xerox
cr: 02/03/2007 17:21:04 | mo: 02/03/2007 17:26:31 -=- Yahoo! ---= Yahoo!
___________________________________________________________________________
[Recherche programmes connus, liés à CiD]
C:\Program Files\Messenger Plus! Live
C:\Documents and Settings\micka‰l\Application Data\Microsoft\Internet Explorer\Quick Launch\BitDownload Downloads.lnk
C:\DOCUME~1\micka‰l\Local Settings\Temp\QZTEMP\BitDownload-setup.exe
___________________________________________________________________________
[Clés registre de démarrage]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
Part browse safe hold REG_SZ C:\Documents and Settings\All Users\Application Data\Audio 4 part browse\Mags Open.exe
up shim comp hold REG_SZ C:\Documents and Settings\All Users\Application Data\Barb Info Hold Audio\start drv size.exe
___________________________________________________________________________
[Popups autorisés]
[-] Internet Explorer :
zonenxt.msn-int.com
zonenxt.msn-ppe.com
zone.msn.com
*.spaces.live.com
mysearchnow.com
www.mysearchnow.com
www.skyrock.com
searchweb2.com
www.searchweb2.com
www.windowslive.fr
favorites.live.com
music.orange.fr
[-] Mozilla Firefox
host popup 1 www.bioxit.com
host popup 1 trials.adobe.com
host popup 1 www.nrjblog.fr
host popup 1 ivcsoft.free.fr
host popup 1 www.forumfr.com
host popup 1 www.t45ol.com
host popup 1 membres.lycos.fr
host popup 1 jt.france2.fr
host cookie 2 popupsponsor.com
host popup 1 video.msn.com
host cookie 2 popuptraffic.com
host popup 1 www.perdudevue-org.net
host cookie 2 paypopup.com
host popup 1 video.voila.fr
host popup 1 messaging.myspace.com
host popup 1 www.futura-sciences.com
host popup 1 nrjblog.fr
host popup 1 www.mynrj.com
host popup 1 www.infos-du-net.com
host popup 1 www.01net.com
host popup 1 webmessenger.msn.com
host popup 1 mail.google.com
host popup 1 www.kamini.fr
host popup 1 www.lexode.com
host popup 1 www.skyrock.com
host popup 1 www.clubic.com
host popup 1 www.emoticons-plus.com
host popup 1 www.gametronik.com
host popup 1 info.assedic.fr
host popup 1 www.mikasounds.com
host popup 1 www.pandasoftware.fr
host popup 1 fr.launch.yahoo.com
host popup 1 www.jeuxvideopc.com
[-] Suite Mozilla / SeaMonkey
___________________________________________________________________________
[Suggestion nettoyage registre]
REGEDIT4
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Part browse safe hold"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"up shim comp hold"=-
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow]
"mysearchnow.com"=-
"www.mysearchnow.com"=-
- Fin du rapport -
Rapport Lopxp fait le 29/11/2007 à 12:29:48
Exécuté dans : C:\Program Files\Lopxp
Liste des processus actifs :
PID : 592 C:\WINDOWS\System32\smss.exe
PID : 664 C:\WINDOWS\system32\csrss.exe
PID : 688 C:\WINDOWS\system32\winlogon.exe
PID : 732 C:\WINDOWS\system32\services.exe
PID : 744 C:\WINDOWS\system32\lsass.exe
PID : 896 C:\WINDOWS\system32\svchost.exe
PID : 952 C:\WINDOWS\system32\svchost.exe
PID : 1016 C:\WINDOWS\System32\svchost.exe
PID : 1128 C:\WINDOWS\system32\svchost.exe
PID : 1164 C:\WINDOWS\system32\svchost.exe
PID : 1312 G:\LES FICHES SUR LES ENFANTS\GATT\aawservice.exe
PID : 1324 C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
PID : 1372 C:\Program Files\Alwil Software\Avast4\ashServ.exe
PID : 1592 C:\WINDOWS\system32\spoolsv.exe
PID : 1872 C:\WINDOWS\Explorer.EXE
PID : 1972 C:\Program Files\Alwil Software\Avast4\ashDisp.exe
PID : 2012 G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\Res.EXE
PID : 2016 C:\WINDOWS\system32\rundll32.exe
PID : 2044 C:\PROGRA~1\Goto Software\Vade Retro\Vaderetro_oe.exe
PID : 164 C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
PID : 208 C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
PID : 284 C:\Program Files\inKline Global\PC Booster\PCBooster.exe
PID : 300 C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
PID : 308 C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
PID : 472 C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe
PID : 500 C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
PID : 540 C:\WINDOWS\ATKKBService.exe
PID : 360 G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\AVG Anti-Spyware 7.5\guard.exe
PID : 124 C:\WINDOWS\System32\FTRTSVC.exe
PID : 1048 C:\WINDOWS\system32\nvsvc32.exe
PID : 1220 C:\WINDOWS\system32\svchost.exe
PID : 1712 G:\LES FICHES SUR LES ENFANTS\GATT\Mickaël\INTEGRAL\pinmenu.exe
PID : 1828 C:\WINDOWS\system32\wdfmgr.exe
PID : 2228 C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
PID : 2244 C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
PID : 2460 C:\WINDOWS\system32\wscntfy.exe
PID : 2768 C:\WINDOWS\System32\alg.exe
PID : 2896 C:\WINDOWS\System32\svchost.exe
PID : 3212 C:\Program Files\Wanadoo\GestionnaireInternet.exe
PID : 3244 C:\Program Files\Wanadoo\ComComp.exe
PID : 3272 C:\PROGRA~1\Wanadoo\Toaster.exe
PID : 3280 C:\PROGRA~1\Wanadoo\Inactivity.exe
PID : 3288 C:\PROGRA~1\Wanadoo\PollingModule.exe
PID : 3328 C:\WINDOWS\System32\AlertModule\AlertModule.exe
PID : 3516 C:\Program Files\Wanadoo\Watch.exe
PID : 2712 C:\Program Files\Outlook Express\msimn.exe
PID : 1232 C:\PROGRA~1\MOZILLA FIREFOX\FIREFOX.EXE
PID : 1280 C:\WINDOWS\system32\cmd.exe
PID : 2640 C:\Program Files\Lopxp\tools\pv.exe
___________________________________________________________________________
[Tâches planifiées]
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
Cr : 02/07/2007 à 07:03
Mo : 08/11/2007 à 20:39
Fichier exécuté : C\Program Files\Apple Software Update\SoftwareUpdate.exe -task
___________________________________________________________________________
[Listing des dossiers Application Data]
cr: Date Création | mo: Date Modification -=- Nom Long -= Nom Court (8.3)
+- C:\Documents and Settings\Administrateur\Application Data
cr: 24/03/2007 19:23:08 | mo: 24/03/2007 19:23:08 -=- Identities Identities
cr: 24/03/2007 19:22:53 | mo: 24/03/2007 19:22:56 -=- Microsoft Microsoft
+- C:\Documents and Settings\Administrateur\Local Settings\Application Data
cr: 24/03/2007 19:22:53 | mo: 24/03/2007 19:22:56 -=- Microsoft Microsoft
+- C:\Documents and Settings\All Users\Application Data
cr: 02/01/2007 15:37:13 | mo: 07/11/2007 07:37:36 -=- Adobe ----= Adobe
cr: 23/12/2006 10:53:02 | mo: 23/12/2006 10:53:02 -=- Ahead ----= Ahead
cr: 31/03/2007 16:36:10 | mo: 31/03/2007 18:01:16 -=- AntiSpyInfo ----= AntiSpyInfo
cr: 21/06/2007 07:53:01 | mo: 21/06/2007 07:53:01 -=- AOL Downloads ----= AOL Downloads
cr: 02/07/2007 07:02:47 | mo: 02/07/2007 07:02:47 -=- Apple ----= Apple
cr: 07/03/2007 17:46:44 | mo: 04/07/2007 07:11:33 -=- Apple Computer ----= Apple Computer
cr: 24/07/2007 12:59:19 | mo: 27/07/2007 12:34:47 -=- Audio 4 part browse ----= Audio 4 part browse
cr: 27/06/2007 09:03:31 | mo: 27/06/2007 09:03:31 -=- AVS4YOU --= AVS4YOU
cr: 12/04/2007 07:06:37 | mo: 12/04/2007 07:06:37 -=- Azureus --= Azureus
cr: 24/07/2007 12:59:24 | mo: 27/07/2007 12:34:48 -=- Barb Info Hold Audio --= Barb Info Hold Audio
cr: 27/12/2006 13:02:05 | mo: 27/12/2006 13:02:05 -=- BOONTY ---= BOONTY
cr: 11/04/2007 12:11:10 | mo: 11/04/2007 12:11:10 -=- DVD Shrink ---= DVD Shrink
cr: 23/12/2006 15:12:51 | mo: 23/12/2006 15:12:52 -=- Google ---= Google
cr: 23/08/2007 18:10:08 | mo: 23/08/2007 18:10:08 -=- Grisoft --= Grisoft
cr: 28/09/2007 20:11:54 | mo: 28/09/2007 20:11:54 -=- InstallShield --= InstallShield
cr: 10/07/2007 20:37:07 | mo: 10/07/2007 20:37:07 -=- Lavasoft -= Lavasoft
cr: 21/08/2007 07:46:33 | mo: 21/08/2007 07:46:33 -=- McAfee ---= McAfee
cr: 10/02/2007 18:13:55 | mo: 03/08/2007 07:59:30 -=- mealsoftwareblahlong ---= mealsoftwareblahlong
cr: 27/10/2007 12:49:31 | mo: 27/10/2007 12:49:31 -=- Messenger Plus! ---= Messenger Plus!
cr: 23/12/2006 10:52:02 | mo: 23/05/2007 15:35:37 -=- MICROS~1 -= Microsoft
cr: 22/10/2007 14:42:31 | mo: 14/11/2007 22:30:12 -=- Nero -----= Nero
cr: 05/01/2007 10:50:35 | mo: 14/01/2007 12:38:18 -=- NFS Underground -----= NFS Underground
cr: 05/01/2007 09:49:37 | mo: 05/01/2007 09:49:37 -=- NFS Underground Demo -----= NFS Underground Demo
cr: 23/12/2006 10:48:12 | mo: 23/12/2006 10:48:12 -=- NVIDIA ---= NVIDIA
cr: 17/02/2007 08:35:04 | mo: 19/06/2007 12:13:18 -=- nView_Profiles ---= nView_Profiles
cr: 04/04/2007 17:21:55 | mo: 04/04/2007 17:33:22 -=- Pinnacle -= Pinnacle
cr: 04/04/2007 17:24:59 | mo: 04/04/2007 17:33:35 -=- Pinnacle Studio -= Pinnacle Studio
cr: 18/01/2007 19:44:35 | mo: 18/01/2007 19:44:35 -=- pixelStorm -= pixelStorm
cr: 02/07/2007 14:16:51 | mo: 02/07/2007 14:16:51 -=- SiComponents -= SiComponents
cr: 21/08/2007 07:46:33 | mo: 21/08/2007 07:46:33 -=- SiteAdvisor -= SiteAdvisor
cr: 04/10/2007 17:41:53 | mo: 04/10/2007 17:42:00 -=- Skype ----= Skype
cr: 17/03/2007 14:50:28 | mo: 25/06/2007 18:37:38 -=- Spybot - Search & Destroy ----= Spybot - Search & Destroy
cr: 21/03/2007 11:48:11 | mo: 31/10/2007 17:17:40 -=- TEMP -----= TEMP
cr: 20/01/2007 19:09:14 | mo: 20/01/2007 19:09:14 -=- UDL ------= UDL
cr: 20/06/2007 17:29:47 | mo: 20/06/2007 17:29:55 -=- VadeRetro ------= VadeRetro
cr: 28/12/2006 16:56:54 | mo: 28/12/2006 16:56:54 -=- Windows Genuine Advantage ------= Windows Genuine Advantage
cr: 05/01/2007 09:10:30 | mo: 05/01/2007 09:10:30 -=- Windows Live Toolbar ------= Windows Live Toolbar
cr: 31/08/2007 07:48:03 | mo: 31/08/2007 07:48:31 -=- WindowsLiveInstaller ------= WindowsLiveInstaller
cr: 31/08/2007 07:47:56 | mo: 13/11/2007 17:47:20 -=- WLInstaller ------= WLInstaller
cr: 02/03/2007 17:28:13 | mo: 02/03/2007 17:28:13 -=- Yahoo! ---= Yahoo!
+- C:\Documents and Settings\mika\Application Data
cr: 24/03/2007 19:21:35 | mo: 24/03/2007 19:21:36 -=- Microsoft ---= Microsoft
+- C:\Documents and Settings\mika\Local Settings\Application Data
cr: 24/03/2007 19:21:35 | mo: 24/03/2007 19:21:36 -=- Microsoft ---= Microsoft
___________________________________________________________________________
[Listing du dossier Program Files]
+- C:\Program Files
cr: 20/09/2007 17:21:48 | mo: 20/09/2007 17:21:48 -=- 1964 -----= 1964
cr: 25/12/2006 20:16:22 | mo: 23/11/2007 15:20:12 -=- Adobe ----= Adobe
cr: 27/10/2007 12:46:29 | mo: 27/10/2007 12:46:29 -=- Adverts --= Adverts
cr: 24/12/2006 08:23:14 | mo: 24/12/2006 08:23:14 -=- Agfa -----= Agfa
cr: 24/12/2006 08:23:33 | mo: 24/12/2006 08:23:33 -=- AGFAnet --= AGFAnet
cr: 23/12/2006 14:46:53 | mo: 23/12/2006 14:46:53 -=- Alwil Software --= Alwil Software
cr: 02/07/2007 07:03:23 | mo: 02/07/2007 07:03:24 -=- Apple Software Update --= Apple Software Update
cr: 23/12/2006 10:08:21 | mo: 23/12/2006 10:08:21 -=- ATI Technologies --= ATI Technologies
cr: 23/12/2006 10:12:34 | mo: 23/12/2006 10:12:37 -=- AvRack ---= AvRack
cr: 14/11/2007 21:30:50 | mo: 14/11/2007 21:30:50 -=- AxBx -----= AxBx
cr: 27/12/2006 13:01:15 | mo: 27/12/2006 13:01:15 -=- Boonty ---= Boonty
cr: 27/12/2006 13:01:40 | mo: 27/12/2006 13:01:40 -=- BoontyGames ---= BoontyGames
cr: 27/12/2006 15:23:33 | mo: 27/12/2006 15:25:23 -=- Brother --= Brother
cr: 27/12/2006 15:25:34 | mo: 27/12/2006 15:30:52 -=- Brownie --= Brownie
cr: 23/05/2007 14:25:03 | mo: 12/06/2007 09:26:55 -=- capb2i ---= capb2i
cr: 23/12/2006 09:57:07 | mo: 23/12/2006 09:57:07 -=- COMPLU~1 -= ComPlus Applications
cr: 22/10/2007 08:45:52 | mo: 22/10/2007 08:45:52 -=- DMV ------= DMV
cr: 20/01/2007 19:06:26 | mo: 21/01/2007 08:18:43 -=- epson ----= epson
cr: 06/11/2007 14:41:34 | mo: 07/11/2007 11:50:55 -=- EsetOnlineScanner ----= EsetOnlineScanner
cr: 05/02/2007 17:44:37 | mo: 05/02/2007 17:44:37 -=- eurobarre ----= eurobarre
cr: 23/12/2006 10:52:43 | mo: 13/11/2007 17:47:40 -=- FICHIE~1 -= Fichiers communs
cr: 23/12/2006 15:12:51 | mo: 12/06/2007 15:52:20 -=- Google ---= Google
cr: 20/06/2007 17:29:39 | mo: 20/06/2007 17:29:39 -=- Goto Software ---= Goto Software
cr: 20/07/2007 16:46:08 | mo: 10/11/2007 09:07:00 -=- ICQToolbar ---= ICQToolbar
cr: 14/11/2007 21:32:00 | mo: 14/11/2007 21:32:00 -=- inKline Global ---= inKline Global
cr: 23/12/2006 10:08:19 | mo: 16/11/2007 18:44:45 -=- InstallShield Installation Information ---= InstallShield Installation Information
cr: 23/12/2006 09:57:34 | mo: 13/11/2007 17:57:38 -=- INTERN~1 -= Internet Explorer
cr: 23/12/2006 14:04:25 | mo: 24/03/2007 14:35:41 -=- Inventel -= Inventel
cr: 10/10/2007 18:01:36 | mo: 10/10/2007 18:01:36 -=- IVCsoft --= IVCsoft
cr: 12/01/2007 07:56:48 | mo: 07/09/2007 14:28:49 -=- Java -----= Java
cr: 03/01/2007 14:47:58 | mo: 03/01/2007 14:47:58 -=- KONAMI ---= KONAMI
cr: 04/09/2007 08:40:50 | mo: 29/11/2007 12:29:50 -=- Lopxp ----= Lopxp
cr: 18/03/2007 18:57:15 | mo: 03/04/2007 11:02:51 -=- Macrogaming ----= Macrogaming
cr: 27/10/2007 12:46:23 | mo: 27/10/2007 12:46:24 -=- Messenger Plus! Live ----= Messenger Plus! Live
cr: 23/12/2006 10:00:30 | mo: 23/12/2006 10:00:30 -=- MICROS~1 -= microsoft frontpage
cr: 23/12/2006 10:25:48 | mo: 23/12/2006 10:26:12 -=- Microsoft Office -= Microsoft Office
cr: 01/01/2007 17:17:50 | mo: 01/01/2007 17:18:36 -=- Microsoft Référence -= Microsoft Référence
cr: 23/12/2006 10:00:30 | mo: 23/11/2007 14:23:22 -=- MOVIEM~1 -= movie maker
cr: 23/12/2006 10:05:05 | mo: 23/12/2006 10:05:05 -=- mozilla --= mozilla
cr: 23/12/2006 15:16:00 | mo: 29/11/2007 12:13:46 -=- Mozilla Firefox --= Mozilla Firefox
cr: 07/11/2007 17:48:43 | mo: 07/11/2007 17:55:45 -=- Mozilla Thunderbird --= Mozilla Thunderbird
cr: 02/01/2007 14:52:21 | mo: 02/01/2007 14:52:22 -=- MSI ------= MSI
cr: 24/12/2006 14:03:17 | mo: 05/01/2007 09:10:06 -=- MSN Apps -= MSN Apps
cr: 23/12/2006 10:00:30 | mo: 23/12/2006 10:00:30 -=- MSNGAM~1 -= msn gaming zone
cr: 04/02/2007 09:32:58 | mo: 13/11/2007 17:53:29 -=- MSN Messenger -= MSN Messenger
cr: 23/12/2006 10:18:14 | mo: 02/06/2007 13:24:48 -=- My Company Name -= My Company Name
cr: 31/08/2007 09:02:24 | mo: 02/09/2007 07:53:03 -=- Navilog1 -= Navilog1
cr: 01/01/2007 13:31:09 | mo: 14/11/2007 22:30:13 -=- Nero -----= Nero
cr: 23/12/2006 09:57:49 | mo: 31/01/2007 16:16:16 -=- NETMEE~1 -= NetMeeting
cr: 31/08/2007 16:02:34 | mo: 31/08/2007 16:02:43 -=- OpenOffice.org 2.2 -= OpenOffice.org 2.2
cr: 23/12/2006 09:57:46 | mo: 23/12/2006 09:58:15 -=- OUTLOO~1 -= Outlook Express
cr: 03/10/2007 14:53:03 | mo: 03/10/2007 14:53:03 -=- Panda Security -= Panda Security
cr: 16/05/2007 12:22:30 | mo: 02/06/2007 13:24:45 -=- Pidgin ---= Pidgin
cr: 07/03/2007 17:47:37 | mo: 04/07/2007 07:11:49 -=- QuickTime ---= QuickTime
cr: 23/12/2006 10:12:30 | mo: 23/12/2006 10:12:34 -=- Realtek AC97 ---= Realtek AC97
cr: 23/12/2006 10:12:37 | mo: 23/12/2006 10:12:37 -=- Realtek Sound Manager ---= Realtek Sound Manager
cr: 07/06/2007 16:09:56 | mo: 07/06/2007 16:09:56 -=- Replay Converter ---= Replay Converter
cr: 02/11/2007 11:06:05 | mo: 02/11/2007 11:06:05 -=- Securitoo ---= Securitoo
cr: 23/12/2006 09:59:06 | mo: 23/12/2006 09:59:06 -=- SERVIC~1 -= Services en ligne
cr: 24/07/2007 12:59:54 | mo: 24/07/2007 12:59:54 -=- Shim mags -= Shim mags
cr: 17/03/2007 15:08:09 | mo: 04/10/2007 17:42:00 -=- Skype ----= Skype
cr: 20/01/2007 19:07:28 | mo: 20/01/2007 19:08:47 -=- Smart Panel ----= Smart Panel
cr: 12/06/2007 06:54:48 | mo: 19/06/2007 08:49:21 -=- Spyware Doctor ----= Spyware Doctor
cr: 03/01/2007 17:57:45 | mo: 03/01/2007 17:59:11 -=- Traction Software ----= Traction Software
cr: 02/01/2007 15:37:25 | mo: 02/01/2007 15:37:25 -=- Ubi Soft -= Ubi Soft
cr: 02/01/2007 15:31:48 | mo: 02/01/2007 15:31:48 -=- UbiSoft --= UbiSoft
cr: 12/01/2007 18:11:28 | mo: 12/01/2007 18:11:28 -=- Uninstall Information --= Uninstall Information
cr: 23/12/2006 14:12:09 | mo: 29/11/2007 12:04:58 -=- Wanadoo --= Wanadoo
cr: 20/06/2007 07:32:12 | mo: 13/11/2007 18:00:16 -=- Windows Live --= Windows Live
cr: 02/10/2007 14:01:37 | mo: 23/11/2007 13:53:22 -=- Windows Live Safety Center --= Windows Live Safety Center
cr: 23/12/2006 09:56:57 | mo: 22/10/2007 14:41:51 -=- WINDOW~2 -= Windows Media Player
cr: 23/12/2006 09:56:31 | mo: 24/03/2007 18:13:13 -=- WINDOW~1 -= Windows NT
cr: 23/12/2006 09:59:09 | mo: 23/12/2006 09:59:09 -=- WINDOW~3 -= WindowsUpdate
cr: 10/01/2007 18:29:09 | mo: 25/04/2007 18:10:09 -=- WinRAR ---= WinRAR
cr: 23/12/2006 10:00:30 | mo: 23/12/2006 10:00:30 -=- xerox ----= xerox
cr: 02/03/2007 17:21:04 | mo: 02/03/2007 17:26:31 -=- Yahoo! ---= Yahoo!
___________________________________________________________________________
[Recherche programmes connus, liés à CiD]
C:\Program Files\Messenger Plus! Live
C:\Documents and Settings\micka‰l\Application Data\Microsoft\Internet Explorer\Quick Launch\BitDownload Downloads.lnk
C:\DOCUME~1\micka‰l\Local Settings\Temp\QZTEMP\BitDownload-setup.exe
___________________________________________________________________________
[Clés registre de démarrage]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
Part browse safe hold REG_SZ C:\Documents and Settings\All Users\Application Data\Audio 4 part browse\Mags Open.exe
up shim comp hold REG_SZ C:\Documents and Settings\All Users\Application Data\Barb Info Hold Audio\start drv size.exe
___________________________________________________________________________
[Popups autorisés]
[-] Internet Explorer :
zonenxt.msn-int.com
zonenxt.msn-ppe.com
zone.msn.com
*.spaces.live.com
mysearchnow.com
www.mysearchnow.com
www.skyrock.com
searchweb2.com
www.searchweb2.com
www.windowslive.fr
favorites.live.com
music.orange.fr
[-] Mozilla Firefox
host popup 1 www.bioxit.com
host popup 1 trials.adobe.com
host popup 1 www.nrjblog.fr
host popup 1 ivcsoft.free.fr
host popup 1 www.forumfr.com
host popup 1 www.t45ol.com
host popup 1 membres.lycos.fr
host popup 1 jt.france2.fr
host cookie 2 popupsponsor.com
host popup 1 video.msn.com
host cookie 2 popuptraffic.com
host popup 1 www.perdudevue-org.net
host cookie 2 paypopup.com
host popup 1 video.voila.fr
host popup 1 messaging.myspace.com
host popup 1 www.futura-sciences.com
host popup 1 nrjblog.fr
host popup 1 www.mynrj.com
host popup 1 www.infos-du-net.com
host popup 1 www.01net.com
host popup 1 webmessenger.msn.com
host popup 1 mail.google.com
host popup 1 www.kamini.fr
host popup 1 www.lexode.com
host popup 1 www.skyrock.com
host popup 1 www.clubic.com
host popup 1 www.emoticons-plus.com
host popup 1 www.gametronik.com
host popup 1 info.assedic.fr
host popup 1 www.mikasounds.com
host popup 1 www.pandasoftware.fr
host popup 1 fr.launch.yahoo.com
host popup 1 www.jeuxvideopc.com
[-] Suite Mozilla / SeaMonkey
___________________________________________________________________________
[Suggestion nettoyage registre]
REGEDIT4
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Part browse safe hold"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"up shim comp hold"=-
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow]
"mysearchnow.com"=-
"www.mysearchnow.com"=-
- Fin du rapport -
