Sujet Précédent Sujet Suivant

Pub Cid Besoin D'aide Pr analyse de Rapor

Girlystik -  
jlpjlp Messages postés 52399 Statut Contributeur sécurité -
Bonjour,

Voila jai un probleme avec lé pub cid ki envahisse mon ordi d ke jouvre une page internet jai lu kil falai fair un rapor hightjaks ske g fé mais aparamen il fo ke kelk dexpérimenter maide donc Si kelk pouvé maidé sa seré gentil Jen ai pir ke mar de c cid

Merci davance
A voir également:

18 réponses

Réponse 1 / 18
liguec1 Messages postés 1796 Statut Membre 78
 
salut fais ca et post le rapport stp
télécharge GenProc de Jean-Chretien1 et Narco4 sur ton bureau
http://www.alt-shift-return.org/Info/Fichiers/GenProc.zip

lance genproc.bat et mes le rapport qui t'aura ouvert sur ce forum, fais ensuite exactement tous ce qu'il te demande
tuto
http://www.alt-shift-return.org/Info/GenProc-HowTo.html
0
Réponse 2 / 18
Girlystik
 
raport hijackthis pluto
0
zaz77122
 
Bonsoir,

J'ai également un pb cid. Psa de sponsor msn d'installé.
Je joins le rapport hijack. Si quelqu'un pouvait m'aider.


Merci d'avance

Logfile of HijackThis v1.99.1
Scan saved at 19:03:09, on 22/05/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
E:\avg\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\lxcecoms.exe
C:\WINDOWS\system32\winlogon.exe
C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
C:\WINDOWS\Explorer.EXE
E:\avg\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
E:\Application Launcher\Application Launcher.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Fichiers communs\Teleca Shared\CapabilityManager.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Teleca Shared\Generic.exe
E:\Mobile Phone Monitor\epmworker.exe
C:\WINDOWS\system32\wuauclt.exe
E:\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - E:\Programmes\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: GamesBar - {6F282B65-56BF-4BD1-A8B2-A4449A05863D} - C:\Program Files\GamesBar\oberontb.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
O2 - BHO: (no name) - {B886C1F4-D1D3-45F5-F45E-75EB024320AC} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: GamesBar - {6F282B65-56BF-4BD1-A8B2-A4449A05863D} - C:\Program Files\GamesBar\oberontb.dll
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "E:\avg\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "E:\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [Bat Wave Base Dale] C:\Documents and Settings\All Users\Application Data\Link Axis Bat Wave\Copy Media.exe
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ccleaner] "E:\ccleaner\CCleaner.exe" /AUTO
O4 - HKCU\..\Run: [Body tons] C:\DOCUME~1\ISABEL~1\APPLIC~1\GREYBO~1\ooze soft eq.exe
O4 - Startup: GigaTribe.lnk = E:\GigaTribe\gigatribe.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: (no name) - {1A93C934-025B-4c3a-B38E-9654A7003239} - C:\Program Files\GamesBar\oberontb.dll
O9 - Extra 'Tools' menuitem: GamesBar - {1A93C934-025B-4c3a-B38E-9654A7003239} - C:\Program Files\GamesBar\oberontb.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w2/resources/MSNPUpld.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game02.zylom.com/activex/zylomgamesplayer.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://jeuxentelechargement.orange.fr/Gameshell/GameHost/1.0/OberonGameHost.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - E:\avg\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: BlueSoleil Hid Service - Unknown owner - E:\BTNtService.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: InCD Helper (read only) (InCDsrvR) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: lxce_device - Lexmark International, Inc. - C:\WINDOWS\system32\lxcecoms.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe
0
Réponse 3 / 18
liguec1 Messages postés 1796 Statut Membre 78
 
oui ca demandera de le faire
0
Réponse 4 / 18
Girlystik
 
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:16:12, on 22/05/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16643)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\Securitoo\Common\FSM32.EXE
C:\Windows\System32\mobsync.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\system32\conime.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Securitoo\FSGUI\fsguidll.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Users\Mona\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZCCUUX5L\HiJackThis[1].exe
C:\Windows\system32\Macromed\Flash\FlashUtil9e.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Securitoo\FWES\Program\fsdc.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [ISUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\Securitoo\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\Securitoo\FSGUI\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [Way bits] "C:\ProgramData\save info info.d7yxur"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O13 - Gopher Prefix:
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {87AF076E-D86D-4E87-ADDD-F05804E1F150} - https://www.virginmega.fr/DownloadManager/Release/Prod/DownMan.cab
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files\Securitoo\Anti-Virus\fsgk32st.exe
O23 - Service: F-Secure Automatic Update Agent (FSAUA) - F-Secure Corporation - C:\Program Files\Securitoo\FSAUA\program\fsaua.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\Securitoo\FWES\Program\fsdfwd.exe
O23 - Service: FSMA - F-Secure Corporation - C:\Program Files\Securitoo\Common\FSMA32.EXE
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 18
Girlystik
 
Donc voila ci dessu mon rappor javé oublié de le posté o debu donc merci de maider
Merci merci merci davance psk c vraimen galere
0
Réponse 6 / 18
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
slt a tous

ici:

O4 - HKCU\..\Run: [Way bits] "C:\ProgramData\save info info.d7yxur"

pour virer les infections CID/lop

le mieux est LOP XP:

Télécharge ceci: (by Moe) :

http://sosvirus.changelog.fr/Green_day/Lopxpsetup.exe

Double clic sur Lopxpsetup.exe pour lancer l'installation
Au menu, choisir l'option 1
Patienter jusqu'à que l'on demande d'appuyer sur une touche, appuyer !
Une rapport sera alors crée, à copie/colle en entier sur le forum.
0
zaz77122
 
Merci de me donner un coup de main voici mon rapport
# Rapport Lopxp fait le 22/05/2008 à 20:16:35
# Exécuté dans : C:\Program Files\Lopxp
# Version 3.10 - Maj du 11/04/2008

Killing 'iexplore.exe'
"C:\Program Files\Internet Explorer\iexplore.exe" (8324)
"C:\Program Files\Internet Explorer\iexplore.exe" (8652)
"C:\Program Files\Internet Explorer\iexplore.exe" -Embedding (9372)

========== Listing des dossiers Application Data

+- C:\Documents and Settings\Administrateur\Application Data

2008-02-20 à 11:04:28 - Macromedia
2007-07-11 à 16:41:44 - Microsoft

+- C:\Documents and Settings\Administrateur\Local Settings\Application Data

2008-05-17 à 15:58:53 - Microsoft
2007-07-11 à 16:44:18 - {3248F0A6-6813-11D6-A77B-00B0D0150000}

+- C:\Documents and Settings\All Users\Application Data

2007-07-15 à 07:03:39 - Adobe
2007-07-11 à 18:31:07 - Ahead
2007-08-19 à 20:51:38 - Apple Computer
2008-05-22 à 17:11:48 - GamesBar
2007-07-12 à 17:39:55 - Google
2008-05-21 à 19:36:48 - Google Updater
2007-12-30 à 19:06:33 - Grisoft
2008-05-01 à 11:40:37 - Link Axis Bat Wave
2007-10-14 à 20:44:10 - Logishrd
2007-10-14 à 20:39:34 - Logitech
2007-10-16 à 17:39:17 - Messenger Plus!
2008-03-11 à 06:14:06 - Microsoft
2008-04-27 à 12:44:32 - Sony Ericsson
2008-05-05 à 15:50:55 - Spybot - Search & Destroy
2007-07-21 à 16:28:54 - Teleca
2008-05-22 à 17:21:45 - TEMP
2007-07-16 à 20:10:40 - Windows Genuine Advantage
2008-04-18 à 06:31:03 - WLInstaller
2007-09-18 à 17:42:59 - Zylom

+- C:\Documents and Settings\claude gibert\Application Data

2007-10-19 à 18:53:07 - Adobe
2007-10-19 à 18:53:19 - AdobeUM
2007-08-27 à 18:10:00 - Google
2008-04-30 à 19:30:35 - Grey bolt ford
2007-12-31 à 06:36:03 - Grisoft
2007-07-11 à 18:05:49 - Identities
2007-07-14 à 16:54:08 - Macromedia
2007-09-18 à 04:18:34 - Microsoft
2007-11-23 à 17:34:17 - Mozilla
2008-05-17 à 15:14:55 - OpenOffice.org2
2007-07-22 à 17:55:46 - Teleca

+- C:\Documents and Settings\claude gibert\Local Settings\Application Data

2007-10-19 à 18:53:18 - Adobe
2007-08-15 à 16:55:28 - Google
2007-07-14 à 17:09:04 - Help
2007-07-12 à 17:42:22 - Identities
2008-04-14 à 17:24:53 - Microsoft
2007-11-23 à 17:34:17 - Mozilla
2007-07-11 à 16:44:18 - {3248F0A6-6813-11D6-A77B-00B0D0150000}

+- C:\Documents and Settings\gw‚na‰l gibert\Application Data

2007-09-09 à 16:28:48 - Adobe
2007-09-09 à 16:39:33 - AdobeUM
2007-07-29 à 12:03:05 - Google
2008-05-01 à 11:40:59 - Grey bolt ford
2007-12-31 à 14:10:20 - Grisoft
2007-08-15 à 15:55:51 - Help
2007-07-12 à 18:49:41 - Identities
2007-07-29 à 12:04:16 - Macromedia
2008-04-14 à 18:18:13 - Microsoft
2008-05-17 à 18:41:50 - OpenOffice.org2
2008-03-15 à 18:59:57 - Sun
2007-07-29 à 11:25:54 - Teleca

+- C:\Documents and Settings\gw‚na‰l gibert\Local Settings\Application Data

2007-09-09 à 16:29:00 - Adobe
2007-08-15 à 15:34:42 - Google
2007-08-15 à 15:55:51 - Help
2007-07-12 à 18:49:56 - Identities
2008-04-14 à 18:20:12 - Microsoft
2007-07-11 à 16:44:18 - {3248F0A6-6813-11D6-A77B-00B0D0150000}

+- C:\Documents and Settings\isabelle gibert\Application Data

2007-07-15 à 07:04:00 - Adobe
2007-12-02 à 13:48:33 - AdobeUM
2007-08-20 à 20:10:01 - Ahead
2007-08-19 à 21:31:27 - DivX
2008-03-22 à 07:04:43 - GigaTribe
2007-09-12 à 05:03:19 - Google
2008-05-01 à 11:54:35 - Grey bolt ford
2007-12-30 à 19:06:48 - Grisoft
2007-07-12 à 16:09:05 - Help
2007-07-11 à 17:16:37 - Identities
2008-04-29 à 18:38:13 - LimeWire
2007-12-30 à 09:54:27 - Macromedia
2007-07-12 à 18:16:50 - Microsoft
2007-11-05 à 18:39:38 - Mozilla
2007-11-05 à 19:19:58 - Notepad++
2008-05-22 à 17:16:41 - OpenOffice.org2
2007-09-05 à 05:58:53 - Samsung
2007-09-28 à 21:19:13 - SecondLife
2008-01-12 à 18:14:36 - SecuROM
2007-09-12 à 04:48:49 - Sun
2007-07-22 à 09:58:19 - Teleca
2008-02-11 à 16:48:37 - WinButler

+- C:\Documents and Settings\isabelle gibert\Local Settings\Application Data

2007-07-15 à 07:04:09 - Adobe
2007-08-18 à 15:31:30 - Ahead
2007-08-22 à 16:53:35 - Apple Computer
2007-08-16 à 07:55:46 - ApplicationHistory
2008-03-11 à 19:42:44 - Ares
2007-09-12 à 05:03:19 - Google
2007-07-11 à 17:31:51 - Help
2007-07-12 à 18:16:49 - Identities
2008-03-31 à 04:09:17 - Microsoft
2007-11-05 à 18:39:38 - Mozilla
2008-03-05 à 17:59:19 - WMTools Downloaded Files
2007-07-11 à 16:44:18 - {3248F0A6-6813-11D6-A77B-00B0D0150000}

+- C:\Documents and Settings\stǸphanie violet\Application Data

2007-09-27 à 20:09:07 - SecondLife

+- C:\Documents and Settings\st‚phanie violet\Application Data

2007-09-18 à 19:17:56 - Adobe
2007-10-24 à 20:33:57 - AdobeUM
2007-09-25 à 19:39:09 - Ahead
2007-09-04 à 07:48:29 - DivX
2007-09-25 à 05:26:34 - Google
2008-03-12 à 05:10:20 - Grey bolt ford
2008-01-06 à 20:44:59 - Grisoft
2007-09-03 à 10:32:02 - Help
2007-07-14 à 07:30:57 - Identities
2008-01-08 à 07:29:40 - Macromedia
2008-03-20 à 21:16:21 - Microsoft
2007-11-08 à 06:08:47 - Mozilla
2007-09-04 à 20:36:17 - Samsung
2007-09-27 à 20:09:29 - SecondLife
2008-01-07 à 21:11:13 - SecuROM
2007-07-21 à 15:50:54 - Shareaza
2007-09-03 à 19:55:41 - Sun
2007-07-21 à 16:31:32 - Teleca

+- C:\Documents and Settings\st‚phanie violet\Local Settings\Application Data

2007-09-18 à 19:18:00 - Adobe
2007-11-25 à 20:53:36 - Apple Computer
2008-03-11 à 06:25:56 - ApplicationHistory
2007-09-25 à 05:26:34 - Google
2007-09-03 à 10:32:02 - Help
2007-10-09 à 04:57:00 - Identities
2008-03-11 à 15:53:24 - Microsoft
2007-11-08 à 06:08:47 - Mozilla
2008-03-11 à 15:53:28 - PCHealth
2007-07-21 à 15:50:54 - Shareaza
2007-07-11 à 16:44:18 - {3248F0A6-6813-11D6-A77B-00B0D0150000}

+- C:\Documents and Settings\TEMP\Application Data

2008-02-20 à 11:04:28 - Macromedia
2008-03-12 à 17:49:57 - Microsoft

+- C:\Documents and Settings\TEMP\Local Settings\Application Data

2008-03-12 à 17:49:58 - Microsoft
2007-07-11 à 16:44:18 - {3248F0A6-6813-11D6-A77B-00B0D0150000}

========== Listing du dossier Program Files

+- C:\Program Files

2008-01-27 à 15:14:35 - Ahead
2007-09-11 à 18:07:32 - Alwil Software
2008-03-01 à 10:31:40 - BrowsingSoftware
2007-07-11 à 16:38:44 - ComPlus Applications
2007-12-26 à 15:30:42 - CursorXP
2007-12-24 à 20:27:53 - DIFX
2008-01-07 à 21:04:56 - EA GAMES
2008-04-19 à 19:45:34 - Fichiers communs
2008-04-20 à 09:24:57 - GamesBar
2008-02-09 à 16:43:22 - Google
2008-05-01 à 11:38:50 - Grey bolt ford
2008-02-25 à 18:47:13 - Hijackthis Version Française
2008-04-27 à 07:31:57 - InstallShield Installation Information
2008-05-17 à 17:17:04 - Internet Explorer
2008-04-03 à 03:45:38 - Java
2007-07-11 à 17:40:53 - Kit ADSL
2007-11-11 à 15:54:51 - Lexmark 4300 Series
2007-10-14 à 20:39:29 - Logitech
2008-05-22 à 18:16:39 - Lopxp
2007-07-12 à 16:30:33 - Messenger
2007-12-30 à 18:33:21 - Messenger Plus! Live
2007-10-17 à 19:32:26 - Microsoft CAPICOM 2.1.0.2
2007-07-11 à 16:44:58 - microsoft frontpage
2007-10-20 à 06:37:45 - Microsoft Office
2008-03-11 à 06:48:16 - Microsoft SQL Server Compact Edition
2007-12-26 à 15:30:21 - Movie Maker
2008-01-21 à 19:41:53 - Mozilla Firefox
2007-10-20 à 06:37:30 - MSECache
2007-07-12 à 17:54:39 - MSN
2007-07-11 à 16:38:00 - MSN Gaming Zone
2008-04-10 à 14:39:33 - MSN Messenger
2007-07-22 à 01:00:31 - MSXML 4.0
2007-07-11 à 16:39:44 - NetMeeting
2007-11-05 à 19:29:47 - Notepad++
2007-07-11 à 16:38:09 - Online Services
2008-03-29 à 19:39:56 - OpenOffice.org 2.3
2008-03-29 à 19:41:04 - OpenOffice.org 2.4
2008-04-19 à 19:45:34 - orange
2008-05-17 à 17:17:10 - Outlook Express
2007-09-04 à 20:30:45 - Samsung
2007-07-11 à 16:40:37 - Services en ligne
2008-03-02 à 19:47:44 - Shareaza Turbo Accelerator
2007-12-24 à 20:25:41 - Sony
2008-01-09 à 19:43:54 - Ubisoft
2007-07-11 à 17:16:36 - Uninstall Information
2008-02-21 à 05:16:05 - Web Publish
2007-10-17 à 05:10:12 - Windows Defender
2008-03-11 à 06:48:57 - Windows Live
2007-08-15 à 18:50:39 - Windows Media Connect 2
2008-05-17 à 17:19:34 - Windows Media Player
2007-07-11 à 16:37:50 - Windows NT
2007-07-11 à 16:40:41 - WindowsUpdate
2007-07-11 à 16:44:58 - xerox
2008-01-02 à 17:53:46 - Yahoo!

========== Tâches planifiées

AE10107D944F81C1.job: c:\docume~1\claude~1\applic~1\greybo~1\OBJ ONLINE STUPID.exe
B22842DA918FEFAA.job: c:\docume~1\gwnalg~1\applic~1\greybo~1\OBJ ONLINE STUPID.exe
B980A264938B5CB8.job: c:\docume~1\stphan~1\applic~1\greybo~1\OBJ ONLINE STUPID.exe
MP Scheduled Scan.job: C:\Program Files\Windows Defender\MpCmdRun.exe Scan -RestrictPrivileges

========== Clés registre

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Bat Wave Base Dale"="C:\Documents and Settings\All Users\Application Data\Link Axis Bat Wave\Copy Media.exe"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Body tons"="C:\DOCUME~1\ISABEL~1\APPLIC~1\GREYBO~1\ooze soft eq.exe"


========== Bloqueur popups Internet Explorer

www.ortholud.com
plano.free.fr
www.intellego.fr
www.virginmega.fr
www.rfm.fr
*.defense.gouv.fr
www.123cours.com
www.commentcamarche.net
forum.zebulon.fr
www.wikio.fr
*.fra.cityvox.fr
maps.google.fr
www.leguide.net
www.alapage.com
idf.disneylandparis.fr
idf-offres.disneylandparis.fr
www.valmagazine.com
www.egypte-antique.com
*.finances.gouv.fr
www.cotemaison.fr
www.e-leclerc.com
209.85.129.104
www.babou.fr
www.clubic.com
www.gratuiciel.com
www.cuisinetoo.com
www.asiaflash.com
www.linternaute.com

========== Suggestion ( /!\ Nécessite une interprétation.) ==========

C:\Documents and Settings\All Users\Application Data\Link Axis Bat Wave
C:\Documents and Settings\claude gibert\Application Data\Grey bolt ford
C:\Documents and Settings\gwénaël gibert\Application Data\Grey bolt ford
C:\Documents and Settings\isabelle gibert\Application Data\Grey bolt ford
C:\Documents and Settings\stéphanie violet\Application Data\Grey bolt ford
C:\Program Files\Grey bolt ford
C:\WINDOWS\tasks\AE10107D944F81C1.job
C:\WINDOWS\tasks\B22842DA918FEFAA.job
C:\WINDOWS\tasks\B980A264938B5CB8.job

+- Registre:

REGEDIT4

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Bat Wave Base Dale"=-

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Body tons"=-




- Fin du rapport -
0
zaz77122
 
peux-tu m'aider à virer les cid ?
Je te poste mon rapport, merci d'avance
# Rapport Lopxp fait le 22/05/2008 à 20:16:35
# Exécuté dans : C:\Program Files\Lopxp
# Version 3.10 - Maj du 11/04/2008

Killing 'iexplore.exe'
"C:\Program Files\Internet Explorer\iexplore.exe" (8324)
"C:\Program Files\Internet Explorer\iexplore.exe" (8652)
"C:\Program Files\Internet Explorer\iexplore.exe" -Embedding (9372)

========== Listing des dossiers Application Data

+- C:\Documents and Settings\Administrateur\Application Data

2008-02-20 à 11:04:28 - Macromedia
2007-07-11 à 16:41:44 - Microsoft

+- C:\Documents and Settings\Administrateur\Local Settings\Application Data

2008-05-17 à 15:58:53 - Microsoft
2007-07-11 à 16:44:18 - {3248F0A6-6813-11D6-A77B-00B0D0150000}

+- C:\Documents and Settings\All Users\Application Data

2007-07-15 à 07:03:39 - Adobe
2007-07-11 à 18:31:07 - Ahead
2007-08-19 à 20:51:38 - Apple Computer
2008-05-22 à 17:11:48 - GamesBar
2007-07-12 à 17:39:55 - Google
2008-05-21 à 19:36:48 - Google Updater
2007-12-30 à 19:06:33 - Grisoft
2008-05-01 à 11:40:37 - Link Axis Bat Wave
2007-10-14 à 20:44:10 - Logishrd
2007-10-14 à 20:39:34 - Logitech
2007-10-16 à 17:39:17 - Messenger Plus!
2008-03-11 à 06:14:06 - Microsoft
2008-04-27 à 12:44:32 - Sony Ericsson
2008-05-05 à 15:50:55 - Spybot - Search & Destroy
2007-07-21 à 16:28:54 - Teleca
2008-05-22 à 17:21:45 - TEMP
2007-07-16 à 20:10:40 - Windows Genuine Advantage
2008-04-18 à 06:31:03 - WLInstaller
2007-09-18 à 17:42:59 - Zylom

+- C:\Documents and Settings\claude gibert\Application Data

2007-10-19 à 18:53:07 - Adobe
2007-10-19 à 18:53:19 - AdobeUM
2007-08-27 à 18:10:00 - Google
2008-04-30 à 19:30:35 - Grey bolt ford
2007-12-31 à 06:36:03 - Grisoft
2007-07-11 à 18:05:49 - Identities
2007-07-14 à 16:54:08 - Macromedia
2007-09-18 à 04:18:34 - Microsoft
2007-11-23 à 17:34:17 - Mozilla
2008-05-17 à 15:14:55 - OpenOffice.org2
2007-07-22 à 17:55:46 - Teleca

+- C:\Documents and Settings\claude gibert\Local Settings\Application Data

2007-10-19 à 18:53:18 - Adobe
2007-08-15 à 16:55:28 - Google
2007-07-14 à 17:09:04 - Help
2007-07-12 à 17:42:22 - Identities
2008-04-14 à 17:24:53 - Microsoft
2007-11-23 à 17:34:17 - Mozilla
2007-07-11 à 16:44:18 - {3248F0A6-6813-11D6-A77B-00B0D0150000}

+- C:\Documents and Settings\gw‚na‰l gibert\Application Data

2007-09-09 à 16:28:48 - Adobe
2007-09-09 à 16:39:33 - AdobeUM
2007-07-29 à 12:03:05 - Google
2008-05-01 à 11:40:59 - Grey bolt ford
2007-12-31 à 14:10:20 - Grisoft
2007-08-15 à 15:55:51 - Help
2007-07-12 à 18:49:41 - Identities
2007-07-29 à 12:04:16 - Macromedia
2008-04-14 à 18:18:13 - Microsoft
2008-05-17 à 18:41:50 - OpenOffice.org2
2008-03-15 à 18:59:57 - Sun
2007-07-29 à 11:25:54 - Teleca

+- C:\Documents and Settings\gw‚na‰l gibert\Local Settings\Application Data

2007-09-09 à 16:29:00 - Adobe
2007-08-15 à 15:34:42 - Google
2007-08-15 à 15:55:51 - Help
2007-07-12 à 18:49:56 - Identities
2008-04-14 à 18:20:12 - Microsoft
2007-07-11 à 16:44:18 - {3248F0A6-6813-11D6-A77B-00B0D0150000}

+- C:\Documents and Settings\isabelle gibert\Application Data

2007-07-15 à 07:04:00 - Adobe
2007-12-02 à 13:48:33 - AdobeUM
2007-08-20 à 20:10:01 - Ahead
2007-08-19 à 21:31:27 - DivX
2008-03-22 à 07:04:43 - GigaTribe
2007-09-12 à 05:03:19 - Google
2008-05-01 à 11:54:35 - Grey bolt ford
2007-12-30 à 19:06:48 - Grisoft
2007-07-12 à 16:09:05 - Help
2007-07-11 à 17:16:37 - Identities
2008-04-29 à 18:38:13 - LimeWire
2007-12-30 à 09:54:27 - Macromedia
2007-07-12 à 18:16:50 - Microsoft
2007-11-05 à 18:39:38 - Mozilla
2007-11-05 à 19:19:58 - Notepad++
2008-05-22 à 17:16:41 - OpenOffice.org2
2007-09-05 à 05:58:53 - Samsung
2007-09-28 à 21:19:13 - SecondLife
2008-01-12 à 18:14:36 - SecuROM
2007-09-12 à 04:48:49 - Sun
2007-07-22 à 09:58:19 - Teleca
2008-02-11 à 16:48:37 - WinButler

+- C:\Documents and Settings\isabelle gibert\Local Settings\Application Data

2007-07-15 à 07:04:09 - Adobe
2007-08-18 à 15:31:30 - Ahead
2007-08-22 à 16:53:35 - Apple Computer
2007-08-16 à 07:55:46 - ApplicationHistory
2008-03-11 à 19:42:44 - Ares
2007-09-12 à 05:03:19 - Google
2007-07-11 à 17:31:51 - Help
2007-07-12 à 18:16:49 - Identities
2008-03-31 à 04:09:17 - Microsoft
2007-11-05 à 18:39:38 - Mozilla
2008-03-05 à 17:59:19 - WMTools Downloaded Files
2007-07-11 à 16:44:18 - {3248F0A6-6813-11D6-A77B-00B0D0150000}

+- C:\Documents and Settings\stǸphanie violet\Application Data

2007-09-27 à 20:09:07 - SecondLife

+- C:\Documents and Settings\st‚phanie violet\Application Data

2007-09-18 à 19:17:56 - Adobe
2007-10-24 à 20:33:57 - AdobeUM
2007-09-25 à 19:39:09 - Ahead
2007-09-04 à 07:48:29 - DivX
2007-09-25 à 05:26:34 - Google
2008-03-12 à 05:10:20 - Grey bolt ford
2008-01-06 à 20:44:59 - Grisoft
2007-09-03 à 10:32:02 - Help
2007-07-14 à 07:30:57 - Identities
2008-01-08 à 07:29:40 - Macromedia
2008-03-20 à 21:16:21 - Microsoft
2007-11-08 à 06:08:47 - Mozilla
2007-09-04 à 20:36:17 - Samsung
2007-09-27 à 20:09:29 - SecondLife
2008-01-07 à 21:11:13 - SecuROM
2007-07-21 à 15:50:54 - Shareaza
2007-09-03 à 19:55:41 - Sun
2007-07-21 à 16:31:32 - Teleca

+- C:\Documents and Settings\st‚phanie violet\Local Settings\Application Data

2007-09-18 à 19:18:00 - Adobe
2007-11-25 à 20:53:36 - Apple Computer
2008-03-11 à 06:25:56 - ApplicationHistory
2007-09-25 à 05:26:34 - Google
2007-09-03 à 10:32:02 - Help
2007-10-09 à 04:57:00 - Identities
2008-03-11 à 15:53:24 - Microsoft
2007-11-08 à 06:08:47 - Mozilla
2008-03-11 à 15:53:28 - PCHealth
2007-07-21 à 15:50:54 - Shareaza
2007-07-11 à 16:44:18 - {3248F0A6-6813-11D6-A77B-00B0D0150000}

+- C:\Documents and Settings\TEMP\Application Data

2008-02-20 à 11:04:28 - Macromedia
2008-03-12 à 17:49:57 - Microsoft

+- C:\Documents and Settings\TEMP\Local Settings\Application Data

2008-03-12 à 17:49:58 - Microsoft
2007-07-11 à 16:44:18 - {3248F0A6-6813-11D6-A77B-00B0D0150000}

========== Listing du dossier Program Files

+- C:\Program Files

2008-01-27 à 15:14:35 - Ahead
2007-09-11 à 18:07:32 - Alwil Software
2008-03-01 à 10:31:40 - BrowsingSoftware
2007-07-11 à 16:38:44 - ComPlus Applications
2007-12-26 à 15:30:42 - CursorXP
2007-12-24 à 20:27:53 - DIFX
2008-01-07 à 21:04:56 - EA GAMES
2008-04-19 à 19:45:34 - Fichiers communs
2008-04-20 à 09:24:57 - GamesBar
2008-02-09 à 16:43:22 - Google
2008-05-01 à 11:38:50 - Grey bolt ford
2008-02-25 à 18:47:13 - Hijackthis Version Française
2008-04-27 à 07:31:57 - InstallShield Installation Information
2008-05-17 à 17:17:04 - Internet Explorer
2008-04-03 à 03:45:38 - Java
2007-07-11 à 17:40:53 - Kit ADSL
2007-11-11 à 15:54:51 - Lexmark 4300 Series
2007-10-14 à 20:39:29 - Logitech
2008-05-22 à 18:16:39 - Lopxp
2007-07-12 à 16:30:33 - Messenger
2007-12-30 à 18:33:21 - Messenger Plus! Live
2007-10-17 à 19:32:26 - Microsoft CAPICOM 2.1.0.2
2007-07-11 à 16:44:58 - microsoft frontpage
2007-10-20 à 06:37:45 - Microsoft Office
2008-03-11 à 06:48:16 - Microsoft SQL Server Compact Edition
2007-12-26 à 15:30:21 - Movie Maker
2008-01-21 à 19:41:53 - Mozilla Firefox
2007-10-20 à 06:37:30 - MSECache
2007-07-12 à 17:54:39 - MSN
2007-07-11 à 16:38:00 - MSN Gaming Zone
2008-04-10 à 14:39:33 - MSN Messenger
2007-07-22 à 01:00:31 - MSXML 4.0
2007-07-11 à 16:39:44 - NetMeeting
2007-11-05 à 19:29:47 - Notepad++
2007-07-11 à 16:38:09 - Online Services
2008-03-29 à 19:39:56 - OpenOffice.org 2.3
2008-03-29 à 19:41:04 - OpenOffice.org 2.4
2008-04-19 à 19:45:34 - orange
2008-05-17 à 17:17:10 - Outlook Express
2007-09-04 à 20:30:45 - Samsung
2007-07-11 à 16:40:37 - Services en ligne
2008-03-02 à 19:47:44 - Shareaza Turbo Accelerator
2007-12-24 à 20:25:41 - Sony
2008-01-09 à 19:43:54 - Ubisoft
2007-07-11 à 17:16:36 - Uninstall Information
2008-02-21 à 05:16:05 - Web Publish
2007-10-17 à 05:10:12 - Windows Defender
2008-03-11 à 06:48:57 - Windows Live
2007-08-15 à 18:50:39 - Windows Media Connect 2
2008-05-17 à 17:19:34 - Windows Media Player
2007-07-11 à 16:37:50 - Windows NT
2007-07-11 à 16:40:41 - WindowsUpdate
2007-07-11 à 16:44:58 - xerox
2008-01-02 à 17:53:46 - Yahoo!

========== Tâches planifiées

AE10107D944F81C1.job: c:\docume~1\claude~1\applic~1\greybo~1\OBJ ONLINE STUPID.exe
B22842DA918FEFAA.job: c:\docume~1\gwnalg~1\applic~1\greybo~1\OBJ ONLINE STUPID.exe
B980A264938B5CB8.job: c:\docume~1\stphan~1\applic~1\greybo~1\OBJ ONLINE STUPID.exe
MP Scheduled Scan.job: C:\Program Files\Windows Defender\MpCmdRun.exe Scan -RestrictPrivileges

========== Clés registre

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Bat Wave Base Dale"="C:\Documents and Settings\All Users\Application Data\Link Axis Bat Wave\Copy Media.exe"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Body tons"="C:\DOCUME~1\ISABEL~1\APPLIC~1\GREYBO~1\ooze soft eq.exe"


========== Bloqueur popups Internet Explorer

www.ortholud.com
plano.free.fr
www.intellego.fr
www.virginmega.fr
www.rfm.fr
*.defense.gouv.fr
www.123cours.com
www.commentcamarche.net
forum.zebulon.fr
www.wikio.fr
*.fra.cityvox.fr
maps.google.fr
www.leguide.net
www.alapage.com
idf.disneylandparis.fr
idf-offres.disneylandparis.fr
www.valmagazine.com
www.egypte-antique.com
*.finances.gouv.fr
www.cotemaison.fr
www.e-leclerc.com
209.85.129.104
www.babou.fr
www.clubic.com
www.gratuiciel.com
www.cuisinetoo.com
www.asiaflash.com
www.linternaute.com

========== Suggestion ( /!\ Nécessite une interprétation.) ==========

C:\Documents and Settings\All Users\Application Data\Link Axis Bat Wave
C:\Documents and Settings\claude gibert\Application Data\Grey bolt ford
C:\Documents and Settings\gwénaël gibert\Application Data\Grey bolt ford
C:\Documents and Settings\isabelle gibert\Application Data\Grey bolt ford
C:\Documents and Settings\stéphanie violet\Application Data\Grey bolt ford
C:\Program Files\Grey bolt ford
C:\WINDOWS\tasks\AE10107D944F81C1.job
C:\WINDOWS\tasks\B22842DA918FEFAA.job
C:\WINDOWS\tasks\B980A264938B5CB8.job

+- Registre:

REGEDIT4

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Bat Wave Base Dale"=-

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Body tons"=-




- Fin du rapport -
0
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040 > zaz77122
 
va dans : Démarrer > Exécuter puis copie/colle la ligne suivante :

"%programfiles%\Lopxp\Lopxp.bat" /Fixme


puis valide, accepte toutes les demandes de suppression et poste le rapport stp et dis si encore des pubs
0
Réponse 7 / 18
Girlystik
 
sa march pa sur vista HELPPP PLEASEEEEEEEEEEEE
0
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
sous vista

tu télécharge Lop S&D.exe sur ton Bureau.https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2

* Double-clique dessus pour lancer l'installation
* Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
* Séléctionne la langue souhaitée , puis choisis l'option 1 (Recherche)
* Patiente jusqu'à la fin du scan
* Poste le rapport généré (C:\lopR.txt)
0
Réponse 8 / 18
Girlystik
 
Je suis completement desesperé c un truk de ouf
0
Réponse 9 / 18
gil le fantom Messages postés 2809 Statut Membre 25
 
bonjour tar tous
je me permet jlpjlp en attendant ton retour

pour vista

tu télécharge Lop S&D.exe sur ton Bureau.https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2

* Double-clique dessus pour lancer l'installation
* Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
* Séléctionne la langue souhaitée , puis choisis l'option 1 (Recherche)
* Patiente jusqu'à la fin du scan
* Poste le rapport généré (C:\lopR.txt)
0
girlstcik
 
pe tu maider maintenan ke jai posté le rapor stp
0
Réponse 10 / 18
Girlystik
 
Merci bocou jvé le faire desuite et jle poste
0
Réponse 11 / 18
girlstcik
 
-----------------------[ Lop S&D 4.2.0-9 XP/Vista ]---------------------

[ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
[ USER : Mona ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 22/05/2008 | 20:35:13,02 ] [ PC : PC-DE-MONA ]
[ MAJ : 16-05-2008 | 23:35 ]
[ UAC => 0 ]

-------------[ Listing des dossiers dans Application Data ]------------

[01/05/2008|02:11] C:\Users\Mona\AppData\Roaming\Adobe\Lightroom
[01/05/2008|02:02] C:\Users\Mona\AppData\Roaming\Adobe\CameraRaw
[15/12/2007|14:30] C:\Users\Mona\AppData\Roaming\Adobe\Flash Player

[18/05/2008|22:23] C:\Users\Mona\AppData\Roaming\Apple Computer\iTunes

[21/02/2008|21:44] C:\Users\Mona\AppData\Roaming\DivX\DivX Player
[20/02/2008|16:02] C:\Users\Mona\AppData\Roaming\DivX\DivX Codec

[14/05/2008|08:37] C:\Users\Mona\AppData\Roaming\dvdcss\CHARLIE_CHOCOLATE_FACTORY_D1-2005092314243400-000000002c
[12/05/2008|19:31] C:\Users\Mona\AppData\Roaming\dvdcss\THORNBIRDS_PART4-2004091318273500-2b36e4e9d7
[12/05/2008|19:29] C:\Users\Mona\AppData\Roaming\dvdcss\THORNBIRDS_PART2-2004091413002200-2b36e4e9d7
[10/05/2008|16:22] C:\Users\Mona\AppData\Roaming\dvdcss\THORNBIRDS_PART3-2004091320030000-2b36e4e9d7
[10/05/2008|13:57] C:\Users\Mona\AppData\Roaming\dvdcss\THORNBIRDS_PART1-2004091412575300-2b36e4e9d7
[08/05/2008|18:58] C:\Users\Mona\AppData\Roaming\dvdcss\SURFS_UP-2008022710582800-3c1dd3a3a9
[08/05/2008|18:44] C:\Users\Mona\AppData\Roaming\dvdcss\SURFS_UP-2008022817435400-3c1dd3a3a9
[03/05/2008|22:32] C:\Users\Mona\AppData\Roaming\dvdcss\ZATHURA-0000000000000000-3c1dd3a3a9
[03/05/2008|20:52] C:\Users\Mona\AppData\Roaming\dvdcss\HAU0EFM1-2004042816310100-2e97321f2a
[28/04/2008|13:48] C:\Users\Mona\AppData\Roaming\dvdcss\FRIENDS-2002080915495100-23f6e21b65
[24/04/2008|20:50] C:\Users\Mona\AppData\Roaming\dvdcss\MOLIERE-2007080212001700-b453fb5c76
[21/04/2008|20:37] C:\Users\Mona\AppData\Roaming\dvdcss\DESHSW_S02D04-2007032016555800
[21/04/2008|20:34] C:\Users\Mona\AppData\Roaming\dvdcss\DESHSW_S02D03-2007032007481900
[18/04/2008|21:13] C:\Users\Mona\AppData\Roaming\dvdcss\DVDVOLUME-0000000000000000
[12/04/2008|23:22] C:\Users\Mona\AppData\Roaming\dvdcss\BUFFY_SEASON3_DISC1-2001091411010000-14e7e225b8
[09/04/2008|14:10] C:\Users\Mona\AppData\Roaming\dvdcss\MY_DISC-2005062016300000
[03/04/2008|20:53] C:\Users\Mona\AppData\Roaming\dvdcss\FEAR_ITSELF_DARK_MEMORIES-2006041112564100-3c1dd3a3a9
[29/03/2008|22:28] C:\Users\Mona\AppData\Roaming\dvdcss\GREMLINS-2000011218105900-0000000931
[29/03/2008|18:58] C:\Users\Mona\AppData\Roaming\dvdcss\M2S0EFW1-2006092822490300-2e97321f51
[23/03/2008|21:40] C:\Users\Mona\AppData\Roaming\dvdcss\HP_AND_THE_PRISONER_OF_AZKABAN-2004090218055300-00000d65b2
[22/03/2008|21:06] C:\Users\Mona\AppData\Roaming\dvdcss\THE_OTHERS-0000000000000000
[13/03/2008|20:55] C:\Users\Mona\AppData\Roaming\dvdcss\MHC___NOUS_N_IRONS_PLUS_AU_BOIS-2003022220433800

[20/02/2008|15:56] C:\Users\Mona\AppData\Roaming\F-Secure\Spam Control
[03/01/2008|08:08] C:\Users\Mona\AppData\Roaming\F-Secure\System Control

[03/05/2008|20:39] C:\Users\Mona\AppData\Roaming\Google\Local Search History

[15/12/2007|14:25] C:\Users\Mona\AppData\Roaming\Identities\{C9BBA1E6-DA26-4DC9-9269-E20F9557D126}

[26/02/2008|21:19] C:\Users\Mona\AppData\Roaming\InterVideo\WinDVD

[14/02/2008|22:04] C:\Users\Mona\AppData\Roaming\LimeWire\.NetworkShare
[22/12/2007|16:26] C:\Users\Mona\AppData\Roaming\LimeWire\.AppSpecialShare
[22/12/2007|16:26] C:\Users\Mona\AppData\Roaming\LimeWire\xml
[22/12/2007|16:26] C:\Users\Mona\AppData\Roaming\LimeWire\themes

[15/12/2007|14:30] C:\Users\Mona\AppData\Roaming\Macromedia\Flash Player

[21/05/2008|17:09] C:\Users\Mona\AppData\Roaming\Microsoft\Installer
[11/05/2008|03:31] C:\Users\Mona\AppData\Roaming\Microsoft\Windows Photo Gallery
[19/04/2008|11:18] C:\Users\Mona\AppData\Roaming\Microsoft\MMC
[18/03/2008|13:59] C:\Users\Mona\AppData\Roaming\Microsoft\MSN Messenger
[04/03/2008|23:01] C:\Users\Mona\AppData\Roaming\Microsoft\HTML Help
[20/02/2008|22:29] C:\Users\Mona\AppData\Roaming\Microsoft\IdentityCRL
[24/01/2008|22:24] C:\Users\Mona\AppData\Roaming\Microsoft\Crypto
[16/12/2007|12:06] C:\Users\Mona\AppData\Roaming\Microsoft\Windows
[15/12/2007|20:29] C:\Users\Mona\AppData\Roaming\Microsoft\Internet Explorer
[15/12/2007|14:30] C:\Users\Mona\AppData\Roaming\Microsoft\SystemCertificates
[15/12/2007|14:25] C:\Users\Mona\AppData\Roaming\Microsoft\Protect
[15/12/2007|14:24] C:\Users\Mona\AppData\Roaming\Microsoft\Credentials

[12/05/2008|18:54] C:\Users\Mona\AppData\Roaming\Samsung\Samsung PC Studio 3

[13/03/2008|20:55] C:\Users\Mona\AppData\Roaming\vlc\cache

[11/01/2008|21:48] C:\Users\Mona\AppData\Roaming\Yahoo!\Companion

----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------

[22/05/2008 20:34][--ah-----] C:\Windows\tasks\SA.DAT
[22/05/2008 20:33][--a------] C:\Windows\tasks\SCHEDLGU.TXT

------[ Listing des dossiers dans C:\ProgramData ]------

[01/05/2008|02:01] C:\ProgramData\Adobe
[28/12/2007|08:59] C:\ProgramData\Apple
[17/05/2008|14:27] C:\ProgramData\Apple Computer
[02/11/2006|14:59] C:\ProgramData\Application Data
[15/12/2007|14:20] C:\ProgramData\Bureau
[02/11/2006|14:59] C:\ProgramData\Desktop
[02/11/2006|14:59] C:\ProgramData\Documents
[21/03/2008|22:08] C:\ProgramData\eMule
[15/12/2007|14:20] C:\ProgramData\Favoris
[02/11/2006|14:59] C:\ProgramData\Favorites
[13/04/2008|12:36] C:\ProgramData\F-Secure
[13/04/2008|20:55] C:\ProgramData\fssg
[03/05/2008|00:40] C:\ProgramData\Google
[21/05/2008|14:23] C:\ProgramData\Google Updater
[26/02/2008|21:14] C:\ProgramData\InstallShield
[12/05/2008|18:54] C:\ProgramData\LauncherAccess.dt
[21/05/2008|17:12] C:\ProgramData\Lavasoft
[15/12/2007|14:20] C:\ProgramData\Menu D‚marrer
[15/12/2007|14:01] C:\ProgramData\Microsoft
[15/12/2007|14:20] C:\ProgramData\ModŠles
[08/05/2008|10:38] C:\ProgramData\save info info.882nx
[22/12/2007|21:33] C:\ProgramData\save info info.agt9vu
[15/12/2007|20:28] C:\ProgramData\save info info.b8e4r
[21/05/2008|20:36] C:\ProgramData\save info info.bqerty
[21/05/2008|20:36] C:\ProgramData\save info info.d7yxur
[26/12/2007|21:53] C:\ProgramData\save info info.gtvrx
[29/03/2008|21:36] C:\ProgramData\save info info.os8xc4
[05/01/2008|19:45] C:\ProgramData\save info info.rkxpm
[08/05/2008|10:38] C:\ProgramData\save info info.sfo5nh
[08/05/2008|10:39] C:\ProgramData\size bin dale
[03/05/2008|00:45] C:\ProgramData\Spybot - Search & Destroy
[02/11/2006|14:59] C:\ProgramData\Start Menu
[21/05/2008|18:39] C:\ProgramData\TEMP
[02/11/2006|14:59] C:\ProgramData\Templates
[08/05/2008|10:39] C:\ProgramData\third lies itch ford
[08/05/2008|10:39] C:\ProgramData\this platform enc.ltoy33
[15/12/2007|15:50] C:\ProgramData\WLInstaller

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[17/05/2008|14:13] C:\Program Files\Apple Software Update
[21/05/2008|19:13] C:\Program Files\Circle Developement
[21/05/2008|17:04] C:\Program Files\Common Files
[16/12/2007|10:15] C:\Program Files\desktop.ini
[12/04/2008|19:38] C:\Program Files\DivX
[15/12/2007|14:20] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[03/05/2008|00:40] C:\Program Files\Google
[13/03/2008|19:38] C:\Program Files\InstallShield Installation Information
[10/04/2008|03:15] C:\Program Files\Internet Explorer
[26/02/2008|21:17] C:\Program Files\InterVideo Information Service
[17/05/2008|14:31] C:\Program Files\iPod
[17/05/2008|14:31] C:\Program Files\iTunes
[11/04/2008|23:04] C:\Program Files\Java
[21/05/2008|17:08] C:\Program Files\Lavasoft
[06/03/2008|20:26] C:\Program Files\LimeWire
[22/05/2008|20:01] C:\Program Files\Lopxp
[31/03/2008|19:27] C:\Program Files\Macrogaming
[02/11/2006|14:35] C:\Program Files\Microsoft Games
[02/11/2006|14:40] C:\Program Files\Movie Maker
[02/11/2006|14:35] C:\Program Files\MSBuild
[02/11/2006|14:35] C:\Program Files\MSN
[19/01/2008|13:31] C:\Program Files\MSXML 4.0
[05/03/2008|20:00] C:\Program Files\PhotoFiltre
[17/05/2008|14:29] C:\Program Files\QuickTime
[02/11/2006|14:35] C:\Program Files\Reference Assemblies
[18/01/2008|18:54] C:\Program Files\Samsung
[14/04/2008|07:43] C:\Program Files\Securitoo
[02/11/2006|14:58] C:\Program Files\Uninstall Information
[13/03/2008|20:51] C:\Program Files\VideoLAN
[16/12/2007|10:09] C:\Program Files\Windows Calendar
[02/11/2006|14:40] C:\Program Files\Windows Collaboration
[16/12/2007|10:09] C:\Program Files\Windows Defender
[15/12/2007|15:58] C:\Program Files\Windows Live
[14/05/2008|23:09] C:\Program Files\Windows Mail
[02/04/2008|13:01] C:\Program Files\Windows Media Components
[16/12/2007|10:09] C:\Program Files\Windows Media Player
[15/12/2007|14:20] C:\Program Files\Windows NT
[02/11/2006|14:40] C:\Program Files\Windows Photo Gallery
[10/01/2008|19:33] C:\Program Files\Windows Sidebar
[19/04/2008|21:51] C:\Program Files\WinRAR

------[ Listing des dossiers dans C:\Program Files\Common Files ]------

[28/12/2007|08:59] C:\Program Files\Common Files\Apple
[26/02/2008|21:16] C:\Program Files\Common Files\InstallShield
[16/12/2007|10:37] C:\Program Files\Common Files\Java
[26/02/2008|21:04] C:\Program Files\Common Files\microsoft shared
[01/05/2008|17:38] C:\Program Files\Common Files\PX Storage Engine
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[16/12/2007|10:09] C:\Program Files\Common Files\System
[26/02/2008|21:17] C:\Program Files\Common Files\Ulead
[15/12/2007|15:58] C:\Program Files\Common Files\WindowsLiveInstaller
[21/05/2008|17:04] C:\Program Files\Common Files\Wise Installation Wizard

---------------------------[ Process ]--------------------------

... 63

iexplore.exe ~ [1568]
iexplore.exe ~ [3948]

----------------------[ Recherche avec S_Lop ]---------------------

C:\ProgramData\save info info.882nx
C:\ProgramData\save info info.agt9vu
C:\ProgramData\save info info.b8e4r
C:\ProgramData\save info info.bqerty
C:\ProgramData\save info info.d7yxur
C:\ProgramData\save info info.gtvrx
C:\ProgramData\save info info.os8xc4
C:\ProgramData\save info info.rkxpm
C:\ProgramData\save info info.sfo5nh
C:\ProgramData\this platform enc.ltoy33
C:\ProgramData\save info info.882nx
C:\ProgramData\save info info.agt9vu
C:\ProgramData\save info info.d7yxur
C:\ProgramData\save info info.gtvrx
C:\ProgramData\save info info.os8xc4
C:\ProgramData\save info info.sfo5nh

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

C:\ProgramData\third lies itch ford
C:\ProgramData\third lies itch ford\Inter Test.exe
C:\Program Files\Circle Developement
C:\Program Files\Circle Developement\Uninstall.0xe

----------------------[ Verification du Registre ]----------------------

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

..... OK !

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts PROPRE

----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-05-22 20:40:15
Windows 6.0.6000 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------

C:\Users\Mona\AppData\Local\mxznfdsevn_navps.dat
C:\Users\Mona\AppData\Local\mxznfdsevn.exe
C:\Users\Mona\AppData\Local\mxznfdsevn.dat
C:\Users\Mona\AppData\Local\mxznfdsevn_nav.dat
[b]! EGDACCESS !/b

[F:85][D:17]-> C:\Users\Mona\AppData\Local\Temp
[F:107][D:1]-> C:\Users\Mona\AppData\Roaming\MICROS~1\Windows\Cookies
[F:496][D:5]-> C:\Users\Mona\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:2][D:2]-> C:\$Recycle.Bin

[ UAC => 1 ]

--------------------[ Fin du rapport a 20:42:19,03 ]----------------------
0
Réponse 12 / 18
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
* Choisis cette fois ci l'Option 2 (Suppression)
* Ne ferme pas la fenêtre lors de la suppression !
* Poste le rapport généré (C:\lopR.txt)

(Si le Bureau ne réapparaît pas, presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide)

encore des pubs?
0
Réponse 13 / 18
girlstcik
 
-----------------------[ Lop S&D 4.2.0-9 XP/Vista ]---------------------

[ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
[ USER : Mona ] [ "C:\Lop SD" ] [ Selection : 2 ]
[ 22/05/2008 | 21:00:31,64 ] [ PC : PC-DE-MONA ]
[ MAJ : 16-05-2008 | 23:35 ]
[ UAC => 0 ]

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////

Supprimé! - C:\ProgramData\third lies itch ford\Inter Test.exe
Supprimé! - C:\Program Files\Circle Developement\Uninstall.0xe
Supprimé! - C:\ProgramData\save info info.882nx
Supprimé! - C:\ProgramData\save info info.agt9vu
Supprimé! - C:\ProgramData\save info info.b8e4r
Supprimé! - C:\ProgramData\save info info.bqerty
Supprimé! - C:\ProgramData\save info info.d7yxur
Supprimé! - C:\ProgramData\save info info.gtvrx
Supprimé! - C:\ProgramData\save info info.os8xc4
Supprimé! - C:\ProgramData\save info info.rkxpm
Supprimé! - C:\ProgramData\save info info.sfo5nh
Supprimé! - C:\ProgramData\this platform enc.ltoy33
Supprimé! - C:\ProgramData\third lies itch ford
Supprimé! - C:\Program Files\Circle Developement
Restauré! - Fichier Hosts

//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

-------------[ Listing des dossiers dans Application Data ]------------

[01/05/2008|02:11] C:\Users\Mona\AppData\Roaming\Adobe\Lightroom
[01/05/2008|02:02] C:\Users\Mona\AppData\Roaming\Adobe\CameraRaw
[15/12/2007|14:30] C:\Users\Mona\AppData\Roaming\Adobe\Flash Player

[18/05/2008|22:23] C:\Users\Mona\AppData\Roaming\Apple Computer\iTunes

[21/02/2008|21:44] C:\Users\Mona\AppData\Roaming\DivX\DivX Player
[20/02/2008|16:02] C:\Users\Mona\AppData\Roaming\DivX\DivX Codec

[14/05/2008|08:37] C:\Users\Mona\AppData\Roaming\dvdcss\CHARLIE_CHOCOLATE_FACTORY_D1-2005092314243400-000000002c
[12/05/2008|19:31] C:\Users\Mona\AppData\Roaming\dvdcss\THORNBIRDS_PART4-2004091318273500-2b36e4e9d7
[12/05/2008|19:29] C:\Users\Mona\AppData\Roaming\dvdcss\THORNBIRDS_PART2-2004091413002200-2b36e4e9d7
[10/05/2008|16:22] C:\Users\Mona\AppData\Roaming\dvdcss\THORNBIRDS_PART3-2004091320030000-2b36e4e9d7
[10/05/2008|13:57] C:\Users\Mona\AppData\Roaming\dvdcss\THORNBIRDS_PART1-2004091412575300-2b36e4e9d7
[08/05/2008|18:58] C:\Users\Mona\AppData\Roaming\dvdcss\SURFS_UP-2008022710582800-3c1dd3a3a9
[08/05/2008|18:44] C:\Users\Mona\AppData\Roaming\dvdcss\SURFS_UP-2008022817435400-3c1dd3a3a9
[03/05/2008|22:32] C:\Users\Mona\AppData\Roaming\dvdcss\ZATHURA-0000000000000000-3c1dd3a3a9
[03/05/2008|20:52] C:\Users\Mona\AppData\Roaming\dvdcss\HAU0EFM1-2004042816310100-2e97321f2a
[28/04/2008|13:48] C:\Users\Mona\AppData\Roaming\dvdcss\FRIENDS-2002080915495100-23f6e21b65
[24/04/2008|20:50] C:\Users\Mona\AppData\Roaming\dvdcss\MOLIERE-2007080212001700-b453fb5c76
[21/04/2008|20:37] C:\Users\Mona\AppData\Roaming\dvdcss\DESHSW_S02D04-2007032016555800
[21/04/2008|20:34] C:\Users\Mona\AppData\Roaming\dvdcss\DESHSW_S02D03-2007032007481900
[18/04/2008|21:13] C:\Users\Mona\AppData\Roaming\dvdcss\DVDVOLUME-0000000000000000
[12/04/2008|23:22] C:\Users\Mona\AppData\Roaming\dvdcss\BUFFY_SEASON3_DISC1-2001091411010000-14e7e225b8
[09/04/2008|14:10] C:\Users\Mona\AppData\Roaming\dvdcss\MY_DISC-2005062016300000
[03/04/2008|20:53] C:\Users\Mona\AppData\Roaming\dvdcss\FEAR_ITSELF_DARK_MEMORIES-2006041112564100-3c1dd3a3a9
[29/03/2008|22:28] C:\Users\Mona\AppData\Roaming\dvdcss\GREMLINS-2000011218105900-0000000931
[29/03/2008|18:58] C:\Users\Mona\AppData\Roaming\dvdcss\M2S0EFW1-2006092822490300-2e97321f51
[23/03/2008|21:40] C:\Users\Mona\AppData\Roaming\dvdcss\HP_AND_THE_PRISONER_OF_AZKABAN-2004090218055300-00000d65b2
[22/03/2008|21:06] C:\Users\Mona\AppData\Roaming\dvdcss\THE_OTHERS-0000000000000000
[13/03/2008|20:55] C:\Users\Mona\AppData\Roaming\dvdcss\MHC___NOUS_N_IRONS_PLUS_AU_BOIS-2003022220433800

[20/02/2008|15:56] C:\Users\Mona\AppData\Roaming\F-Secure\Spam Control
[03/01/2008|08:08] C:\Users\Mona\AppData\Roaming\F-Secure\System Control

[03/05/2008|20:39] C:\Users\Mona\AppData\Roaming\Google\Local Search History

[15/12/2007|14:25] C:\Users\Mona\AppData\Roaming\Identities\{C9BBA1E6-DA26-4DC9-9269-E20F9557D126}

[26/02/2008|21:19] C:\Users\Mona\AppData\Roaming\InterVideo\WinDVD

[14/02/2008|22:04] C:\Users\Mona\AppData\Roaming\LimeWire\.NetworkShare
[22/12/2007|16:26] C:\Users\Mona\AppData\Roaming\LimeWire\.AppSpecialShare
[22/12/2007|16:26] C:\Users\Mona\AppData\Roaming\LimeWire\xml
[22/12/2007|16:26] C:\Users\Mona\AppData\Roaming\LimeWire\themes

[15/12/2007|14:30] C:\Users\Mona\AppData\Roaming\Macromedia\Flash Player

[21/05/2008|17:09] C:\Users\Mona\AppData\Roaming\Microsoft\Installer
[11/05/2008|03:31] C:\Users\Mona\AppData\Roaming\Microsoft\Windows Photo Gallery
[19/04/2008|11:18] C:\Users\Mona\AppData\Roaming\Microsoft\MMC
[18/03/2008|13:59] C:\Users\Mona\AppData\Roaming\Microsoft\MSN Messenger
[04/03/2008|23:01] C:\Users\Mona\AppData\Roaming\Microsoft\HTML Help
[20/02/2008|22:29] C:\Users\Mona\AppData\Roaming\Microsoft\IdentityCRL
[24/01/2008|22:24] C:\Users\Mona\AppData\Roaming\Microsoft\Crypto
[16/12/2007|12:06] C:\Users\Mona\AppData\Roaming\Microsoft\Windows
[15/12/2007|20:29] C:\Users\Mona\AppData\Roaming\Microsoft\Internet Explorer
[15/12/2007|14:30] C:\Users\Mona\AppData\Roaming\Microsoft\SystemCertificates
[15/12/2007|14:25] C:\Users\Mona\AppData\Roaming\Microsoft\Protect
[15/12/2007|14:24] C:\Users\Mona\AppData\Roaming\Microsoft\Credentials

[12/05/2008|18:54] C:\Users\Mona\AppData\Roaming\Samsung\Samsung PC Studio 3

[13/03/2008|20:55] C:\Users\Mona\AppData\Roaming\vlc\cache

[11/01/2008|21:48] C:\Users\Mona\AppData\Roaming\Yahoo!\Companion

----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------

[22/05/2008 21:00][--ah-----] C:\Windows\tasks\SA.DAT
[22/05/2008 20:58][--a------] C:\Windows\tasks\SCHEDLGU.TXT

------[ Listing des dossiers dans C:\ProgramData ]------

[01/05/2008|02:01] C:\ProgramData\Adobe
[28/12/2007|08:59] C:\ProgramData\Apple
[17/05/2008|14:27] C:\ProgramData\Apple Computer
[02/11/2006|14:59] C:\ProgramData\Application Data
[15/12/2007|14:20] C:\ProgramData\Bureau
[02/11/2006|14:59] C:\ProgramData\Desktop
[02/11/2006|14:59] C:\ProgramData\Documents
[21/03/2008|22:08] C:\ProgramData\eMule
[15/12/2007|14:20] C:\ProgramData\Favoris
[02/11/2006|14:59] C:\ProgramData\Favorites
[13/04/2008|12:36] C:\ProgramData\F-Secure
[13/04/2008|20:55] C:\ProgramData\fssg
[03/05/2008|00:40] C:\ProgramData\Google
[22/05/2008|20:46] C:\ProgramData\Google Updater
[26/02/2008|21:14] C:\ProgramData\InstallShield
[12/05/2008|18:54] C:\ProgramData\LauncherAccess.dt
[21/05/2008|17:12] C:\ProgramData\Lavasoft
[15/12/2007|14:20] C:\ProgramData\Menu D‚marrer
[15/12/2007|14:01] C:\ProgramData\Microsoft
[15/12/2007|14:20] C:\ProgramData\ModŠles
[08/05/2008|10:39] C:\ProgramData\size bin dale
[03/05/2008|00:45] C:\ProgramData\Spybot - Search & Destroy
[02/11/2006|14:59] C:\ProgramData\Start Menu
[21/05/2008|18:39] C:\ProgramData\TEMP
[02/11/2006|14:59] C:\ProgramData\Templates
[15/12/2007|15:50] C:\ProgramData\WLInstaller

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[17/05/2008|14:13] C:\Program Files\Apple Software Update
[21/05/2008|17:04] C:\Program Files\Common Files
[16/12/2007|10:15] C:\Program Files\desktop.ini
[12/04/2008|19:38] C:\Program Files\DivX
[15/12/2007|14:20] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[03/05/2008|00:40] C:\Program Files\Google
[13/03/2008|19:38] C:\Program Files\InstallShield Installation Information
[10/04/2008|03:15] C:\Program Files\Internet Explorer
[26/02/2008|21:17] C:\Program Files\InterVideo Information Service
[17/05/2008|14:31] C:\Program Files\iPod
[17/05/2008|14:31] C:\Program Files\iTunes
[11/04/2008|23:04] C:\Program Files\Java
[21/05/2008|17:08] C:\Program Files\Lavasoft
[06/03/2008|20:26] C:\Program Files\LimeWire
[22/05/2008|20:01] C:\Program Files\Lopxp
[31/03/2008|19:27] C:\Program Files\Macrogaming
[02/11/2006|14:35] C:\Program Files\Microsoft Games
[02/11/2006|14:40] C:\Program Files\Movie Maker
[02/11/2006|14:35] C:\Program Files\MSBuild
[02/11/2006|14:35] C:\Program Files\MSN
[19/01/2008|13:31] C:\Program Files\MSXML 4.0
[05/03/2008|20:00] C:\Program Files\PhotoFiltre
[17/05/2008|14:29] C:\Program Files\QuickTime
[02/11/2006|14:35] C:\Program Files\Reference Assemblies
[18/01/2008|18:54] C:\Program Files\Samsung
[14/04/2008|07:43] C:\Program Files\Securitoo
[02/11/2006|14:58] C:\Program Files\Uninstall Information
[13/03/2008|20:51] C:\Program Files\VideoLAN
[16/12/2007|10:09] C:\Program Files\Windows Calendar
[02/11/2006|14:40] C:\Program Files\Windows Collaboration
[16/12/2007|10:09] C:\Program Files\Windows Defender
[15/12/2007|15:58] C:\Program Files\Windows Live
[14/05/2008|23:09] C:\Program Files\Windows Mail
[02/04/2008|13:01] C:\Program Files\Windows Media Components
[16/12/2007|10:09] C:\Program Files\Windows Media Player
[15/12/2007|14:20] C:\Program Files\Windows NT
[02/11/2006|14:40] C:\Program Files\Windows Photo Gallery
[10/01/2008|19:33] C:\Program Files\Windows Sidebar
[19/04/2008|21:51] C:\Program Files\WinRAR

------[ Listing des dossiers dans C:\Program Files\Common Files ]------

[28/12/2007|08:59] C:\Program Files\Common Files\Apple
[26/02/2008|21:16] C:\Program Files\Common Files\InstallShield
[16/12/2007|10:37] C:\Program Files\Common Files\Java
[26/02/2008|21:04] C:\Program Files\Common Files\microsoft shared
[01/05/2008|17:38] C:\Program Files\Common Files\PX Storage Engine
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[16/12/2007|10:09] C:\Program Files\Common Files\System
[26/02/2008|21:17] C:\Program Files\Common Files\Ulead
[15/12/2007|15:58] C:\Program Files\Common Files\WindowsLiveInstaller
[21/05/2008|17:04] C:\Program Files\Common Files\Wise Installation Wizard

---------------------------[ Process ]--------------------------

... 65

iexplore.exe ~ [2908]
iexplore.exe ~ [1364]

----------------------[ Recherche avec S_Lop ]---------------------

Aucun fichier / dossier Lop trouvé !

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

Aucun fichier / dossier Lop trouvé !

----------------------[ Verification du Registre ]----------------------

..... OK !

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts PROPRE

----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-05-22 21:04:27
Windows 6.0.6000 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------

C:\Users\Mona\AppData\Local\mxznfdsevn_navps.dat
C:\Users\Mona\AppData\Local\mxznfdsevn.exe
C:\Users\Mona\AppData\Local\mxznfdsevn.dat
C:\Users\Mona\AppData\Local\mxznfdsevn_nav.dat
[b]! EGDACCESS !/b

[F:87][D:17]-> C:\Users\Mona\AppData\Local\Temp
[F:113][D:1]-> C:\Users\Mona\AppData\Roaming\MICROS~1\Windows\Cookies
[F:1069][D:5]-> C:\Users\Mona\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:4][D:2]-> C:\$Recycle.Bin

[ UAC => 1 ]

--------------------[ Fin du rapport a 21:05:54,82 ]----------------------
0
Réponse 14 / 18
girlstcik
 
Bn ba G fé Ts ske tu ma di Merci Bocou davoir pri le ten de tocuper de mon probleme Jespere Ke jen sui debarasser On vera Bien Merciiiiiiii
0
Réponse 15 / 18
girlstcik
 
pr linstan plu de pub
0
Réponse 16 / 18
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
ok tu diras
0
Réponse 17 / 18
girlstick
 
bn ba plu ocune pub c super merci bocou
0
Réponse 18 / 18
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
parfait tu peux virer le logiciel utilisé . Bonne suite
0

Discussions similaires

Google Chrome "  Échec de l'analyse antivirus "
jmpower -
RBmoon -

18 réponses
Ouvrir un fichier .pub sans Publisher
baissaoui -
baissaoui -

0 réponse
" Échec de l'analyse antivirus " la solution.
bazfile -
bazfile -

0 réponse
Huawei P8 Lite "nouveau tag ajouté"
ArianeKathleen -
Mn -

25 réponses
Nouveau tag ajouté - Utilité
Eerfers -
madmyke -

1 réponse