Aider a lire les rapport
tigamo
Messages postés
48
Statut
Membre
-
tigamo Messages postés 48 Statut Membre -
tigamo Messages postés 48 Statut Membre -
Bonjour,
quelque peut lire les rapport et me dire si tout va bien
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:22:20, on 20/02/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16608)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Toshiba\TOSHIBA Applet\TAPPSRV.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
C:\Program Files\Softwin\BitDefender10\vsserv.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Synaptics\SynTP\Toshiba.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\ltmoh\Ltmoh.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
C:\WINDOWS\system32\TPSBattM.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\BroadJump\Client Foundation\CFD.exe
C:\Program Files\Club-Internet\Agent Wi-Fi V2.1\McciTrayApp.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Softwin\BitDefender10\bdmcon.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Softwin\BitDefender10\bdagent.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\PROGRA~1\Intel\Wireless\Bin\Dot1XCfg.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\Club-Internet\Lanceur\lanceur.exe
C:\Program Files\Microsoft Office\OFFICE11\ONENOTEM.EXE
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.crawler.com/search/dispatcher.aspx?tp=aus&qkw=%s&tbid=60327
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://actus.sfr.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60327
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60327
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60327
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60327
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = proxy.atrium.rss.fr:8080
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *rss.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: &Crawler Toolbar - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [LtMoh] C:\Program Files\ltmoh\Ltmoh.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [THotkey] C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
O4 - HKLM\..\Run: [TPSMain] TPSMain.exe
O4 - HKLM\..\Run: [Tvs] C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
O4 - HKLM\..\Run: [SmoothView] C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
O4 - HKLM\..\Run: [TDispVol] TDispVol.exe
O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [BJCFD] C:\Program Files\BroadJump\Client Foundation\CFD.exe
O4 - HKLM\..\Run: [Club-Internet_McciTrayApp] C:\Program Files\Club-Internet\Agent Wi-Fi V2.1\McciTrayApp.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb07.exe
O4 - HKLM\..\Run: [EPSON Stylus DX6000 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIBIE.EXE /FU "C:\WINDOWS\TEMP\E_SCA.tmp" /EF "HKLM"
O4 - HKLM\..\Run: [MATH DOES FIRST MODE] C:\Documents and Settings\All Users\Application Data\live 64 math does\readme bone.exe
O4 - HKLM\..\Run: [2853b7c7] rundll32.exe "C:\WINDOWS\system32\opuxxyrh.dll",b
O4 - HKLM\..\Run: [BDMCon] "C:\Program Files\Softwin\BitDefender10\bdmcon.exe" /reg
O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\Softwin\BitDefender10\bdagent.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [OBJ CHIN] C:\DOCUME~1\CARREF~1\APPLIC~1\BYTEBL~1\ball htm keep.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Club Internet.lnk = C:\Program Files\Club-Internet\Lanceur\lanceur.exe
O4 - Startup: Lancement rapide de Microsoft Office OneNote 2003.lnk = C:\Program Files\Microsoft Office\OFFICE11\ONENOTEM.EXE
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=https://www.lereseausantesocial.fr/compte-client/
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - SOFTWIN S.R.L. - C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: TOSHIBA Application Service (TAPPSRV) - TOSHIBA Corp. - C:\Program Files\Toshiba\TOSHIBA Applet\TAPPSRV.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - SOFTWIN S.R.L. - C:\Program Files\Softwin\BitDefender10\vsserv.exe
O23 - Service: BitDefender Communicator (XCOMM) - SOFTWIN S.R.L - C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
quelque peut lire les rapport et me dire si tout va bien
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:22:20, on 20/02/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16608)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Toshiba\TOSHIBA Applet\TAPPSRV.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
C:\Program Files\Softwin\BitDefender10\vsserv.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Synaptics\SynTP\Toshiba.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\ltmoh\Ltmoh.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
C:\WINDOWS\system32\TPSBattM.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\BroadJump\Client Foundation\CFD.exe
C:\Program Files\Club-Internet\Agent Wi-Fi V2.1\McciTrayApp.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Softwin\BitDefender10\bdmcon.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Softwin\BitDefender10\bdagent.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\PROGRA~1\Intel\Wireless\Bin\Dot1XCfg.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\Club-Internet\Lanceur\lanceur.exe
C:\Program Files\Microsoft Office\OFFICE11\ONENOTEM.EXE
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.crawler.com/search/dispatcher.aspx?tp=aus&qkw=%s&tbid=60327
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://actus.sfr.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60327
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60327
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60327
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60327
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = proxy.atrium.rss.fr:8080
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *rss.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: &Crawler Toolbar - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [LtMoh] C:\Program Files\ltmoh\Ltmoh.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [THotkey] C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe
O4 - HKLM\..\Run: [TPSMain] TPSMain.exe
O4 - HKLM\..\Run: [Tvs] C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
O4 - HKLM\..\Run: [SmoothView] C:\Program Files\TOSHIBA\Utilitaire de zoom TOSHIBA\SmoothView.exe
O4 - HKLM\..\Run: [TDispVol] TDispVol.exe
O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [BJCFD] C:\Program Files\BroadJump\Client Foundation\CFD.exe
O4 - HKLM\..\Run: [Club-Internet_McciTrayApp] C:\Program Files\Club-Internet\Agent Wi-Fi V2.1\McciTrayApp.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb07.exe
O4 - HKLM\..\Run: [EPSON Stylus DX6000 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIBIE.EXE /FU "C:\WINDOWS\TEMP\E_SCA.tmp" /EF "HKLM"
O4 - HKLM\..\Run: [MATH DOES FIRST MODE] C:\Documents and Settings\All Users\Application Data\live 64 math does\readme bone.exe
O4 - HKLM\..\Run: [2853b7c7] rundll32.exe "C:\WINDOWS\system32\opuxxyrh.dll",b
O4 - HKLM\..\Run: [BDMCon] "C:\Program Files\Softwin\BitDefender10\bdmcon.exe" /reg
O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\Softwin\BitDefender10\bdagent.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [OBJ CHIN] C:\DOCUME~1\CARREF~1\APPLIC~1\BYTEBL~1\ball htm keep.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Club Internet.lnk = C:\Program Files\Club-Internet\Lanceur\lanceur.exe
O4 - Startup: Lancement rapide de Microsoft Office OneNote 2003.lnk = C:\Program Files\Microsoft Office\OFFICE11\ONENOTEM.EXE
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=https://www.lereseausantesocial.fr/compte-client/
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - SOFTWIN S.R.L. - C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: TOSHIBA Application Service (TAPPSRV) - TOSHIBA Corp. - C:\Program Files\Toshiba\TOSHIBA Applet\TAPPSRV.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - SOFTWIN S.R.L. - C:\Program Files\Softwin\BitDefender10\vsserv.exe
O23 - Service: BitDefender Communicator (XCOMM) - SOFTWIN S.R.L - C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
A voir également:
- Aider a lire les rapport
- Lire le coran en français pdf - Télécharger - Histoire & Religion
- Lire epub - Guide
- Lire fichier bin - Guide
- Lire iso - Guide
- Comment lire un message supprimé sur whatsapp - Guide
3 réponses
et rapport lopxp
Rapport Lopxp fait le 20/02/2008 à 13:23:55
Exécuté dans : C:\Program Files\Lopxp
___________________________________________________________________________
[Threads Internet Explorer]
/!\ Suspect iexplore.exe pid: 2416 16C: C:\DOCUME~1\ALLUSE~1\APPLIC~1\LIVE64~1\README~1.EXE
___________________________________________________________________________
[Tâches planifiées]
C:\WINDOWS\tasks\AB071A9C918C8FC4.job
Tâche crée le : 16/02/2008 à 20:36
Dernière modification le : 20/02/2008 à 13:00
Fichier exécuté : C:\Documents and Settings\carrefour\Application Data\byte blah less\DefaultPileClock.exe
___________________________________________________________________________
[Listing des dossiers Application Data]
Cr = Date Création | Mo = Date Modification
C:\Documents and Settings\All Users\Application Data
Cr: 27/10/2007 14:17:35 | Mo: 27/10/2007 14:17:35 - - Adobe
Cr: 20/02/2008 11:57:13 | Mo: 20/02/2008 11:59:17 - - BitDefender
Cr: 20/11/2006 09:43:22 | Mo: 20/11/2006 09:43:22 - - Intel
Cr: 15/02/2008 21:02:57 | Mo: 20/02/2008 08:58:27 - - Lavasoft
Cr: 28/08/2007 22:01:22 | Mo: 16/02/2008 20:36:26 - - live 64 math does
Cr: 16/01/2006 18:29:36 | Mo: 27/10/2007 18:13:12 - - Microsoft
Cr: 30/07/2007 15:10:29 | Mo: 30/08/2007 11:28:06 - - Motive
Cr: 30/07/2007 15:17:06 | Mo: 30/07/2007 15:17:06 - - MotiveSysIDs
Cr: 14/02/2008 21:41:42 | Mo: 14/02/2008 21:41:42 - - reparateurdesysteme
Cr: 14/02/2008 20:56:27 | Mo: 14/02/2008 20:56:27 - - SalesMon
Cr: 16/01/2006 17:42:40 | Mo: 22/04/2006 02:16:11 - - SBSI
Cr: 20/02/2008 09:11:54 | Mo: 20/02/2008 11:28:32 - - Spyware Terminator
Cr: 17/01/2006 14:47:31 | Mo: 04/10/2007 18:47:30 - - Symantec
Cr: 13/11/2007 11:39:22 | Mo: 13/11/2007 11:41:46 - - UDL
Cr: 27/10/2007 17:58:59 | Mo: 23/01/2008 22:56:26 - - WLInstaller
C:\Documents and Settings\carrefour\Application Data
Cr: 20/11/2006 09:41:44 | Mo: 27/10/2007 14:11:34 - - Adobe
Cr: 03/10/2007 22:02:54 | Mo: 27/10/2007 14:11:34 - - AdobeUM
Cr: 20/11/2006 09:41:44 | Mo: 22/04/2006 02:16:31 - - ATI
Cr: 20/02/2008 13:02:26 | Mo: 20/02/2008 13:02:26 - - Bitdefender
Cr: 28/08/2007 22:01:02 | Mo: 16/02/2008 20:36:37 - - byte blah less
Cr: 11/02/2008 14:48:11 | Mo: 11/02/2008 14:48:11 - - Creative
Cr: 04/11/2007 15:46:22 | Mo: 04/11/2007 15:46:22 - - Dossier de téléchargement Share-to-Web
Cr: 04/11/2007 15:46:22 | Mo: 04/11/2007 15:46:22 - - Dossier de téléchargement Share-to-Web
Cr: 15/12/2007 19:18:22 | Mo: 15/12/2007 19:18:22 - - EPSON
Cr: 03/10/2007 21:32:50 | Mo: 03/10/2007 21:32:50 - - Help
Cr: 04/11/2007 21:28:21 | Mo: 04/11/2007 21:28:21 - - Hewlett-Packard
Cr: 20/11/2006 09:41:44 | Mo: 22/04/2006 02:16:31 - - Identities
Cr: 20/11/2006 09:43:11 | Mo: 20/11/2006 09:43:11 - - Intel
Cr: 18/12/2006 15:48:41 | Mo: 18/12/2006 15:48:41 - - InterVideo
Cr: 30/12/2006 08:39:05 | Mo: 30/12/2006 08:39:05 - - Macromedia
Cr: 20/11/2006 09:41:44 | Mo: 15/02/2008 21:03:47 - - Microsoft
Cr: 29/08/2007 09:48:33 | Mo: 29/08/2007 09:48:33 - - Motive
Cr: 13/11/2007 20:17:49 | Mo: 13/11/2007 20:18:19 - - Mozilla
Cr: 30/07/2007 21:46:20 | Mo: 30/07/2007 21:46:22 - - MSNInstaller
Cr: 22/11/2007 21:17:49 | Mo: 22/11/2007 21:17:49 - - SecondLife
Cr: 20/11/2006 09:41:44 | Mo: 22/04/2006 02:16:32 - - Sonic
Cr: 20/02/2008 09:11:53 | Mo: 20/02/2008 09:22:30 - - Spyware Terminator
Cr: 05/10/2007 09:15:52 | Mo: 05/10/2007 09:15:52 - - Sun
Cr: 20/11/2006 09:41:44 | Mo: 22/04/2006 02:16:32 - - toshiba
Cr: 28/08/2007 18:59:53 | Mo: 28/08/2007 18:59:53 - - vlc
Cr: 27/10/2007 18:19:02 | Mo: 27/10/2007 18:19:02 - - Windows Desktop Search
C:\Documents and Settings\carrefour\Local Settings\Application Data
Cr: 20/11/2006 09:41:44 | Mo: 22/04/2006 02:16:32 - - Adobe
Cr: 20/11/2006 09:41:44 | Mo: 20/02/2008 11:45:47 - - ApplicationHistory
Cr: 20/11/2006 09:41:44 | Mo: 22/04/2006 02:16:32 - - ATI
Cr: 03/10/2007 21:32:50 | Mo: 03/10/2007 21:32:50 - - Help
Cr: 25/10/2007 18:59:42 | Mo: 25/10/2007 18:59:42 - - Identities
Cr: 20/11/2006 09:41:44 | Mo: 23/12/2007 08:50:59 - - Microsoft
Cr: 20/11/2006 09:41:44 | Mo: 22/04/2006 02:16:33 - - Toshiba
Cr: 27/10/2007 18:13:29 | Mo: 27/10/2007 18:13:29 - - Windows Live Writer
Cr: 20/11/2006 09:41:44 | Mo: 22/04/2006 02:16:33 - - {3248F0A6-6813-11D6-A77B-00B0D0150040}
___________________________________________________________________________
[Listing du dossier Program Files]
C:\Program Files
Cr: 13/11/2007 11:38:29 | Mo: 13/11/2007 11:39:06 - - ABBYY FineReader 6.0 Sprint
Cr: 17/01/2006 14:08:47 | Mo: 22/04/2006 02:23:12 - - Adobe
Cr: 03/10/2007 19:34:17 | Mo: 03/10/2007 19:34:17 - - Alwil Software
Cr: 17/01/2006 11:35:28 | Mo: 22/04/2006 02:24:58 - - ATI Technologies
Cr: 30/07/2007 15:07:10 | Mo: 30/07/2007 15:07:10 - - BroadJump
Cr: 16/02/2008 20:35:48 | Mo: 16/02/2008 20:35:48 - - byte blah less
Cr: 04/11/2007 15:34:27 | Mo: 04/11/2007 15:36:54 - - CBA
Cr: 20/02/2008 08:29:09 | Mo: 20/02/2008 08:30:27 - - CCleaner
Cr: 30/07/2007 15:04:24 | Mo: 06/11/2007 08:55:20 - - Club-Internet
Cr: 30/07/2007 15:10:22 | Mo: 02/02/2008 09:33:05 - - Common Files
Cr: 16/01/2006 17:35:01 | Mo: 16/01/2006 17:35:01 - - ComPlus Applications
Cr: 20/02/2008 09:12:29 | Mo: 20/02/2008 09:13:12 - - Crawler
Cr: 11/02/2008 13:13:06 | Mo: 11/02/2008 19:43:09 - - Creative
Cr: 16/01/2008 13:59:58 | Mo: 11/02/2008 20:28:05 - - Dofus
Cr: 13/11/2007 11:33:06 | Mo: 13/11/2007 11:40:15 - - epson
Cr: 16/01/2006 18:30:09 | Mo: 20/02/2008 11:54:07 - - Fichiers communs
Cr: 02/11/2007 07:52:54 | Mo: 02/11/2007 07:52:54 - - Gpotato.eu
Cr: 17/01/2006 11:35:26 | Mo: 11/02/2008 13:55:18 - - InstallShield Installation Information
Cr: 17/01/2006 11:18:20 | Mo: 20/11/2006 09:43:21 - - Intel
Cr: 16/01/2006 17:35:17 | Mo: 13/02/2008 20:34:29 - - Internet Explorer
Cr: 17/01/2006 14:02:04 | Mo: 20/11/2006 09:42:37 - - InterVideo
Cr: 16/01/2006 17:56:04 | Mo: 22/04/2006 02:27:21 - - Java
Cr: 20/02/2008 08:58:28 | Mo: 20/02/2008 08:58:28 - - Lavasoft
Cr: 20/02/2008 13:23:35 | Mo: 20/02/2008 13:24:05 - - Lopxp
Cr: 17/01/2006 13:20:44 | Mo: 22/04/2006 02:27:41 - - ltmoh
Cr: 16/01/2006 17:34:13 | Mo: 22/04/2006 02:27:42 - - Messenger
Cr: 27/10/2007 21:25:55 | Mo: 27/10/2007 21:25:55 - - Microsoft CAPICOM 2.1.0.2
Cr: 16/01/2006 17:37:34 | Mo: 22/04/2006 02:27:42 - - microsoft frontpage
Cr: 17/01/2006 14:45:36 | Mo: 22/04/2006 02:27:52 - - Microsoft Office
Cr: 27/10/2007 18:13:42 | Mo: 27/10/2007 18:13:42 - - Microsoft SQL Server Compact Edition
Cr: 23/01/2006 16:42:10 | Mo: 22/04/2006 02:29:15 - - Microsoft Works
Cr: 17/01/2006 14:45:36 | Mo: 22/04/2006 02:29:15 - - Microsoft.NET
Cr: 16/01/2006 17:35:24 | Mo: 22/04/2006 02:29:18 - - Movie Maker
Cr: 16/01/2006 17:34:00 | Mo: 21/07/2007 16:24:22 - - MSN
Cr: 16/01/2006 17:34:11 | Mo: 22/04/2006 02:29:30 - - MSN Gaming Zone
Cr: 28/08/2007 21:51:17 | Mo: 27/10/2007 18:17:24 - - MSN Messenger
Cr: 29/08/2007 11:02:10 | Mo: 29/08/2007 11:02:10 - - MSXML 4.0
Cr: 16/01/2006 17:35:20 | Mo: 22/04/2006 02:29:33 - - NetMeeting
Cr: 17/01/2006 14:19:56 | Mo: 04/11/2007 15:28:32 - - Offre Wanadoo
Cr: 16/01/2006 17:34:19 | Mo: 22/04/2006 02:30:15 - - Online Services
Cr: 16/01/2006 17:35:19 | Mo: 29/08/2007 11:06:52 - - Outlook Express
Cr: 17/01/2006 13:16:55 | Mo: 22/04/2006 02:30:16 - - Realtek
Cr: 16/01/2006 17:35:49 | Mo: 22/04/2006 02:30:29 - - Services en ligne
Cr: 11/02/2008 13:41:56 | Mo: 11/02/2008 13:43:15 - - SightSpeed
Cr: 20/02/2008 11:57:12 | Mo: 20/02/2008 11:57:12 - - Softwin
Cr: 17/01/2006 14:05:39 | Mo: 22/04/2006 02:30:30 - - Sonic
Cr: 20/02/2008 09:11:30 | Mo: 20/02/2008 11:23:07 - - Spyware Terminator
Cr: 17/01/2006 13:05:10 | Mo: 22/04/2006 02:30:42 - - Synaptics
Cr: 17/01/2006 13:27:42 | Mo: 22/04/2006 02:31:55 - - Toshiba
Cr: 20/02/2008 13:21:07 | Mo: 20/02/2008 13:21:07 - - Trend Micro
Cr: 23/01/2006 16:35:23 | Mo: 23/01/2006 16:35:23 - - Uninstall Information
Cr: 28/08/2007 18:53:00 | Mo: 30/08/2007 11:33:27 - - VideoLAN
Cr: 27/10/2007 18:13:12 | Mo: 27/10/2007 18:13:14 - - Windows Desktop Search
Cr: 27/10/2007 17:59:07 | Mo: 30/11/2007 21:23:49 - - Windows Live
Cr: 27/10/2007 18:11:34 | Mo: 19/02/2008 11:52:50 - - Windows Live Toolbar
Cr: 16/01/2006 17:34:19 | Mo: 29/08/2007 11:07:29 - - Windows Media Player
Cr: 16/01/2006 17:33:59 | Mo: 22/04/2006 02:31:57 - - Windows NT
Cr: 16/01/2006 17:35:55 | Mo: 16/01/2006 17:35:55 - - WindowsUpdate
Cr: 16/01/2006 17:37:34 | Mo: 22/04/2006 02:31:58 - - xerox
Cr: 20/02/2008 08:29:47 | Mo: 20/02/2008 08:29:49 - - Yahoo!
___________________________________________________________________________
[Recherche programmes connus, liés à CiD]
___________________________________________________________________________
[Clés registre de démarrage]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
MATH DOES FIRST MODE REG_SZ C:\Documents and Settings\All Users\Application Data\live 64 math does\readme bone.exe
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
OBJ CHIN REG_SZ C:\DOCUME~1\CARREF~1\APPLIC~1\BYTEBL~1\ball htm keep.exe
___________________________________________________________________________
[Popups autorisés]
[-] Internet Explorer :
Aucune adresse détectée dans la liste des sites autorisés à émettre des Popups.
[-] Mozilla Firefox
[-] Suite Mozilla / SeaMonkey
___________________________________________________________________________
[Suggestion nettoyage registre]
REGEDIT4
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MATH DOES FIRST MODE"=-
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"OBJ CHIN"=-
Le fichier fix.reg à été généré dans C:\Program Files\Lopxp\tools .
- Fin du rapport -
Rapport Lopxp fait le 20/02/2008 à 13:23:55
Exécuté dans : C:\Program Files\Lopxp
___________________________________________________________________________
[Threads Internet Explorer]
/!\ Suspect iexplore.exe pid: 2416 16C: C:\DOCUME~1\ALLUSE~1\APPLIC~1\LIVE64~1\README~1.EXE
___________________________________________________________________________
[Tâches planifiées]
C:\WINDOWS\tasks\AB071A9C918C8FC4.job
Tâche crée le : 16/02/2008 à 20:36
Dernière modification le : 20/02/2008 à 13:00
Fichier exécuté : C:\Documents and Settings\carrefour\Application Data\byte blah less\DefaultPileClock.exe
___________________________________________________________________________
[Listing des dossiers Application Data]
Cr = Date Création | Mo = Date Modification
C:\Documents and Settings\All Users\Application Data
Cr: 27/10/2007 14:17:35 | Mo: 27/10/2007 14:17:35 - - Adobe
Cr: 20/02/2008 11:57:13 | Mo: 20/02/2008 11:59:17 - - BitDefender
Cr: 20/11/2006 09:43:22 | Mo: 20/11/2006 09:43:22 - - Intel
Cr: 15/02/2008 21:02:57 | Mo: 20/02/2008 08:58:27 - - Lavasoft
Cr: 28/08/2007 22:01:22 | Mo: 16/02/2008 20:36:26 - - live 64 math does
Cr: 16/01/2006 18:29:36 | Mo: 27/10/2007 18:13:12 - - Microsoft
Cr: 30/07/2007 15:10:29 | Mo: 30/08/2007 11:28:06 - - Motive
Cr: 30/07/2007 15:17:06 | Mo: 30/07/2007 15:17:06 - - MotiveSysIDs
Cr: 14/02/2008 21:41:42 | Mo: 14/02/2008 21:41:42 - - reparateurdesysteme
Cr: 14/02/2008 20:56:27 | Mo: 14/02/2008 20:56:27 - - SalesMon
Cr: 16/01/2006 17:42:40 | Mo: 22/04/2006 02:16:11 - - SBSI
Cr: 20/02/2008 09:11:54 | Mo: 20/02/2008 11:28:32 - - Spyware Terminator
Cr: 17/01/2006 14:47:31 | Mo: 04/10/2007 18:47:30 - - Symantec
Cr: 13/11/2007 11:39:22 | Mo: 13/11/2007 11:41:46 - - UDL
Cr: 27/10/2007 17:58:59 | Mo: 23/01/2008 22:56:26 - - WLInstaller
C:\Documents and Settings\carrefour\Application Data
Cr: 20/11/2006 09:41:44 | Mo: 27/10/2007 14:11:34 - - Adobe
Cr: 03/10/2007 22:02:54 | Mo: 27/10/2007 14:11:34 - - AdobeUM
Cr: 20/11/2006 09:41:44 | Mo: 22/04/2006 02:16:31 - - ATI
Cr: 20/02/2008 13:02:26 | Mo: 20/02/2008 13:02:26 - - Bitdefender
Cr: 28/08/2007 22:01:02 | Mo: 16/02/2008 20:36:37 - - byte blah less
Cr: 11/02/2008 14:48:11 | Mo: 11/02/2008 14:48:11 - - Creative
Cr: 04/11/2007 15:46:22 | Mo: 04/11/2007 15:46:22 - - Dossier de téléchargement Share-to-Web
Cr: 04/11/2007 15:46:22 | Mo: 04/11/2007 15:46:22 - - Dossier de téléchargement Share-to-Web
Cr: 15/12/2007 19:18:22 | Mo: 15/12/2007 19:18:22 - - EPSON
Cr: 03/10/2007 21:32:50 | Mo: 03/10/2007 21:32:50 - - Help
Cr: 04/11/2007 21:28:21 | Mo: 04/11/2007 21:28:21 - - Hewlett-Packard
Cr: 20/11/2006 09:41:44 | Mo: 22/04/2006 02:16:31 - - Identities
Cr: 20/11/2006 09:43:11 | Mo: 20/11/2006 09:43:11 - - Intel
Cr: 18/12/2006 15:48:41 | Mo: 18/12/2006 15:48:41 - - InterVideo
Cr: 30/12/2006 08:39:05 | Mo: 30/12/2006 08:39:05 - - Macromedia
Cr: 20/11/2006 09:41:44 | Mo: 15/02/2008 21:03:47 - - Microsoft
Cr: 29/08/2007 09:48:33 | Mo: 29/08/2007 09:48:33 - - Motive
Cr: 13/11/2007 20:17:49 | Mo: 13/11/2007 20:18:19 - - Mozilla
Cr: 30/07/2007 21:46:20 | Mo: 30/07/2007 21:46:22 - - MSNInstaller
Cr: 22/11/2007 21:17:49 | Mo: 22/11/2007 21:17:49 - - SecondLife
Cr: 20/11/2006 09:41:44 | Mo: 22/04/2006 02:16:32 - - Sonic
Cr: 20/02/2008 09:11:53 | Mo: 20/02/2008 09:22:30 - - Spyware Terminator
Cr: 05/10/2007 09:15:52 | Mo: 05/10/2007 09:15:52 - - Sun
Cr: 20/11/2006 09:41:44 | Mo: 22/04/2006 02:16:32 - - toshiba
Cr: 28/08/2007 18:59:53 | Mo: 28/08/2007 18:59:53 - - vlc
Cr: 27/10/2007 18:19:02 | Mo: 27/10/2007 18:19:02 - - Windows Desktop Search
C:\Documents and Settings\carrefour\Local Settings\Application Data
Cr: 20/11/2006 09:41:44 | Mo: 22/04/2006 02:16:32 - - Adobe
Cr: 20/11/2006 09:41:44 | Mo: 20/02/2008 11:45:47 - - ApplicationHistory
Cr: 20/11/2006 09:41:44 | Mo: 22/04/2006 02:16:32 - - ATI
Cr: 03/10/2007 21:32:50 | Mo: 03/10/2007 21:32:50 - - Help
Cr: 25/10/2007 18:59:42 | Mo: 25/10/2007 18:59:42 - - Identities
Cr: 20/11/2006 09:41:44 | Mo: 23/12/2007 08:50:59 - - Microsoft
Cr: 20/11/2006 09:41:44 | Mo: 22/04/2006 02:16:33 - - Toshiba
Cr: 27/10/2007 18:13:29 | Mo: 27/10/2007 18:13:29 - - Windows Live Writer
Cr: 20/11/2006 09:41:44 | Mo: 22/04/2006 02:16:33 - - {3248F0A6-6813-11D6-A77B-00B0D0150040}
___________________________________________________________________________
[Listing du dossier Program Files]
C:\Program Files
Cr: 13/11/2007 11:38:29 | Mo: 13/11/2007 11:39:06 - - ABBYY FineReader 6.0 Sprint
Cr: 17/01/2006 14:08:47 | Mo: 22/04/2006 02:23:12 - - Adobe
Cr: 03/10/2007 19:34:17 | Mo: 03/10/2007 19:34:17 - - Alwil Software
Cr: 17/01/2006 11:35:28 | Mo: 22/04/2006 02:24:58 - - ATI Technologies
Cr: 30/07/2007 15:07:10 | Mo: 30/07/2007 15:07:10 - - BroadJump
Cr: 16/02/2008 20:35:48 | Mo: 16/02/2008 20:35:48 - - byte blah less
Cr: 04/11/2007 15:34:27 | Mo: 04/11/2007 15:36:54 - - CBA
Cr: 20/02/2008 08:29:09 | Mo: 20/02/2008 08:30:27 - - CCleaner
Cr: 30/07/2007 15:04:24 | Mo: 06/11/2007 08:55:20 - - Club-Internet
Cr: 30/07/2007 15:10:22 | Mo: 02/02/2008 09:33:05 - - Common Files
Cr: 16/01/2006 17:35:01 | Mo: 16/01/2006 17:35:01 - - ComPlus Applications
Cr: 20/02/2008 09:12:29 | Mo: 20/02/2008 09:13:12 - - Crawler
Cr: 11/02/2008 13:13:06 | Mo: 11/02/2008 19:43:09 - - Creative
Cr: 16/01/2008 13:59:58 | Mo: 11/02/2008 20:28:05 - - Dofus
Cr: 13/11/2007 11:33:06 | Mo: 13/11/2007 11:40:15 - - epson
Cr: 16/01/2006 18:30:09 | Mo: 20/02/2008 11:54:07 - - Fichiers communs
Cr: 02/11/2007 07:52:54 | Mo: 02/11/2007 07:52:54 - - Gpotato.eu
Cr: 17/01/2006 11:35:26 | Mo: 11/02/2008 13:55:18 - - InstallShield Installation Information
Cr: 17/01/2006 11:18:20 | Mo: 20/11/2006 09:43:21 - - Intel
Cr: 16/01/2006 17:35:17 | Mo: 13/02/2008 20:34:29 - - Internet Explorer
Cr: 17/01/2006 14:02:04 | Mo: 20/11/2006 09:42:37 - - InterVideo
Cr: 16/01/2006 17:56:04 | Mo: 22/04/2006 02:27:21 - - Java
Cr: 20/02/2008 08:58:28 | Mo: 20/02/2008 08:58:28 - - Lavasoft
Cr: 20/02/2008 13:23:35 | Mo: 20/02/2008 13:24:05 - - Lopxp
Cr: 17/01/2006 13:20:44 | Mo: 22/04/2006 02:27:41 - - ltmoh
Cr: 16/01/2006 17:34:13 | Mo: 22/04/2006 02:27:42 - - Messenger
Cr: 27/10/2007 21:25:55 | Mo: 27/10/2007 21:25:55 - - Microsoft CAPICOM 2.1.0.2
Cr: 16/01/2006 17:37:34 | Mo: 22/04/2006 02:27:42 - - microsoft frontpage
Cr: 17/01/2006 14:45:36 | Mo: 22/04/2006 02:27:52 - - Microsoft Office
Cr: 27/10/2007 18:13:42 | Mo: 27/10/2007 18:13:42 - - Microsoft SQL Server Compact Edition
Cr: 23/01/2006 16:42:10 | Mo: 22/04/2006 02:29:15 - - Microsoft Works
Cr: 17/01/2006 14:45:36 | Mo: 22/04/2006 02:29:15 - - Microsoft.NET
Cr: 16/01/2006 17:35:24 | Mo: 22/04/2006 02:29:18 - - Movie Maker
Cr: 16/01/2006 17:34:00 | Mo: 21/07/2007 16:24:22 - - MSN
Cr: 16/01/2006 17:34:11 | Mo: 22/04/2006 02:29:30 - - MSN Gaming Zone
Cr: 28/08/2007 21:51:17 | Mo: 27/10/2007 18:17:24 - - MSN Messenger
Cr: 29/08/2007 11:02:10 | Mo: 29/08/2007 11:02:10 - - MSXML 4.0
Cr: 16/01/2006 17:35:20 | Mo: 22/04/2006 02:29:33 - - NetMeeting
Cr: 17/01/2006 14:19:56 | Mo: 04/11/2007 15:28:32 - - Offre Wanadoo
Cr: 16/01/2006 17:34:19 | Mo: 22/04/2006 02:30:15 - - Online Services
Cr: 16/01/2006 17:35:19 | Mo: 29/08/2007 11:06:52 - - Outlook Express
Cr: 17/01/2006 13:16:55 | Mo: 22/04/2006 02:30:16 - - Realtek
Cr: 16/01/2006 17:35:49 | Mo: 22/04/2006 02:30:29 - - Services en ligne
Cr: 11/02/2008 13:41:56 | Mo: 11/02/2008 13:43:15 - - SightSpeed
Cr: 20/02/2008 11:57:12 | Mo: 20/02/2008 11:57:12 - - Softwin
Cr: 17/01/2006 14:05:39 | Mo: 22/04/2006 02:30:30 - - Sonic
Cr: 20/02/2008 09:11:30 | Mo: 20/02/2008 11:23:07 - - Spyware Terminator
Cr: 17/01/2006 13:05:10 | Mo: 22/04/2006 02:30:42 - - Synaptics
Cr: 17/01/2006 13:27:42 | Mo: 22/04/2006 02:31:55 - - Toshiba
Cr: 20/02/2008 13:21:07 | Mo: 20/02/2008 13:21:07 - - Trend Micro
Cr: 23/01/2006 16:35:23 | Mo: 23/01/2006 16:35:23 - - Uninstall Information
Cr: 28/08/2007 18:53:00 | Mo: 30/08/2007 11:33:27 - - VideoLAN
Cr: 27/10/2007 18:13:12 | Mo: 27/10/2007 18:13:14 - - Windows Desktop Search
Cr: 27/10/2007 17:59:07 | Mo: 30/11/2007 21:23:49 - - Windows Live
Cr: 27/10/2007 18:11:34 | Mo: 19/02/2008 11:52:50 - - Windows Live Toolbar
Cr: 16/01/2006 17:34:19 | Mo: 29/08/2007 11:07:29 - - Windows Media Player
Cr: 16/01/2006 17:33:59 | Mo: 22/04/2006 02:31:57 - - Windows NT
Cr: 16/01/2006 17:35:55 | Mo: 16/01/2006 17:35:55 - - WindowsUpdate
Cr: 16/01/2006 17:37:34 | Mo: 22/04/2006 02:31:58 - - xerox
Cr: 20/02/2008 08:29:47 | Mo: 20/02/2008 08:29:49 - - Yahoo!
___________________________________________________________________________
[Recherche programmes connus, liés à CiD]
___________________________________________________________________________
[Clés registre de démarrage]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
MATH DOES FIRST MODE REG_SZ C:\Documents and Settings\All Users\Application Data\live 64 math does\readme bone.exe
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
OBJ CHIN REG_SZ C:\DOCUME~1\CARREF~1\APPLIC~1\BYTEBL~1\ball htm keep.exe
___________________________________________________________________________
[Popups autorisés]
[-] Internet Explorer :
Aucune adresse détectée dans la liste des sites autorisés à émettre des Popups.
[-] Mozilla Firefox
[-] Suite Mozilla / SeaMonkey
___________________________________________________________________________
[Suggestion nettoyage registre]
REGEDIT4
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MATH DOES FIRST MODE"=-
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"OBJ CHIN"=-
Le fichier fix.reg à été généré dans C:\Program Files\Lopxp\tools .
- Fin du rapport -
