Probleme avec Pub CID
Résolu
mathlepetit
Messages postés
314
Statut
Membre
-
mathlepetit Messages postés 314 Statut Membre -
mathlepetit Messages postés 314 Statut Membre -
Bonjour,
J ai un probleme sur different PC, Des pub CID vienne tout le temps je ne suis pas assé performent pour arrivé a bou de ce probleme...
Voici le rapport HiJackThis du premier PC
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:11:08, on 07/06/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16643)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\RtHDVCpl.exe
C:\Acer\Empowering Technology\eDataSecurity\eDSLoader.exe
C:\Acer\Empowering Technology\eAudio\eAudio.exe
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Acer Arcade Deluxe\Play Movie\PMVService.exe
C:\Program Files\Apoint2K\Apoint.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Users\but\AppData\Local\Temp\RtkBtMnt.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Acer\Empowering Technology\ENET\ENMTRAY.EXE
C:\Acer\Empowering Technology\EPOWER\EPOWER_DMC.EXE
C:\Acer\Empowering Technology\ACER.EMPOWERING.FRAMEWORK.SUPERVISOR.EXE
C:\Acer\Empowering Technology\eRecovery\ERAGENT.EXE
C:\Program Files\Apoint2K\Apntex.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Internet Explorer\IEUser.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Users\but\Desktop\HiJackThis.exe
C:\Windows\system32\Macromed\Flash\FlashUtil9b.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/webhp?sourceid=navclient&hl=fr&ie=UTF-8&rlz=1T4SUNA_frFR276FR277&gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O1 - Hosts: ::1 localhost
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\system32\eDStoolbar.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [ALaunch] C:\Acer\ALaunch\AlaunchClient.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
O4 - HKLM\..\Run: [eAudio] "C:\Acer\Empowering Technology\eAudio\eAudio.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\LManager.exe
O4 - HKLM\..\Run: [PlayMovie] "C:\Program Files\Acer Arcade Deluxe\Play Movie\PMVService.exe"
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe
O4 - HKLM\..\Run: [WarReg_PopUp] C:\Acer\WR_PopUp\WarReg_PopUp.exe
O4 - HKLM\..\Run: [SetPanel] C:\Acer\APanel\APanel.cmd
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [Deaf Thunk] "C:\ProgramData\64SoftwareSoftware.jrxg33p"
O4 - HKCU\..\Run: [Bags Else Hole Lite] "C:\ProgramData\chic wait memo.7cre2"
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - Global Startup: Empowering Technology Launcher.lnk = C:\Acer\Empowering Technology\eAPLauncher.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O13 - Gopher Prefix:
O16 - DPF: {4A85DBE0-BFB2-4119-8401-186A7C6EB653} - http://messenger.zone.msn.com/binary/MJSS.cab69309.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab57213.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: ALaunch Service (ALaunchService) - Unknown owner - C:\Acer\ALaunch\ALaunchSvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: eDSService.exe (eDataSecurity Service) - HiTRSUT - C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe
O23 - Service: eLock Service (eLockService) - Acer Inc. - C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe
O23 - Service: eNet Service - Acer Inc. - C:\Acer\Empowering Technology\eNet\eNet Service.exe
O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
O23 - Service: eSettings Service (eSettingsService) - Unknown owner - C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: MobilityService - Unknown owner - C:\Acer\Mobility Center\MobilityService.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: ePower Service (WMIService) - acer - C:\Acer\Empowering Technology\ePower\ePowerSvc.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe
--
End of file - 10195 bytes
dois telechargé...
J'attend vos reponse pour savoir quoi faire pour la suite, je ne sais pas par ou commencé ny meme quel logiciel je
Perdu dans ce vaste etendu je demande de l'aide MERCI BEAUCOUP
J ai un probleme sur different PC, Des pub CID vienne tout le temps je ne suis pas assé performent pour arrivé a bou de ce probleme...
Voici le rapport HiJackThis du premier PC
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:11:08, on 07/06/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16643)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\RtHDVCpl.exe
C:\Acer\Empowering Technology\eDataSecurity\eDSLoader.exe
C:\Acer\Empowering Technology\eAudio\eAudio.exe
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Acer Arcade Deluxe\Play Movie\PMVService.exe
C:\Program Files\Apoint2K\Apoint.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Users\but\AppData\Local\Temp\RtkBtMnt.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Acer\Empowering Technology\ENET\ENMTRAY.EXE
C:\Acer\Empowering Technology\EPOWER\EPOWER_DMC.EXE
C:\Acer\Empowering Technology\ACER.EMPOWERING.FRAMEWORK.SUPERVISOR.EXE
C:\Acer\Empowering Technology\eRecovery\ERAGENT.EXE
C:\Program Files\Apoint2K\Apntex.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Internet Explorer\IEUser.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Users\but\Desktop\HiJackThis.exe
C:\Windows\system32\Macromed\Flash\FlashUtil9b.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/webhp?sourceid=navclient&hl=fr&ie=UTF-8&rlz=1T4SUNA_frFR276FR277&gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O1 - Hosts: ::1 localhost
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\system32\eDStoolbar.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [ALaunch] C:\Acer\ALaunch\AlaunchClient.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
O4 - HKLM\..\Run: [eAudio] "C:\Acer\Empowering Technology\eAudio\eAudio.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\LManager.exe
O4 - HKLM\..\Run: [PlayMovie] "C:\Program Files\Acer Arcade Deluxe\Play Movie\PMVService.exe"
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe
O4 - HKLM\..\Run: [WarReg_PopUp] C:\Acer\WR_PopUp\WarReg_PopUp.exe
O4 - HKLM\..\Run: [SetPanel] C:\Acer\APanel\APanel.cmd
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [Deaf Thunk] "C:\ProgramData\64SoftwareSoftware.jrxg33p"
O4 - HKCU\..\Run: [Bags Else Hole Lite] "C:\ProgramData\chic wait memo.7cre2"
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - Global Startup: Empowering Technology Launcher.lnk = C:\Acer\Empowering Technology\eAPLauncher.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O13 - Gopher Prefix:
O16 - DPF: {4A85DBE0-BFB2-4119-8401-186A7C6EB653} - http://messenger.zone.msn.com/binary/MJSS.cab69309.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab57213.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: ALaunch Service (ALaunchService) - Unknown owner - C:\Acer\ALaunch\ALaunchSvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: eDSService.exe (eDataSecurity Service) - HiTRSUT - C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe
O23 - Service: eLock Service (eLockService) - Acer Inc. - C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe
O23 - Service: eNet Service - Acer Inc. - C:\Acer\Empowering Technology\eNet\eNet Service.exe
O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
O23 - Service: eSettings Service (eSettingsService) - Unknown owner - C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: MobilityService - Unknown owner - C:\Acer\Mobility Center\MobilityService.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: ePower Service (WMIService) - acer - C:\Acer\Empowering Technology\ePower\ePowerSvc.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe
--
End of file - 10195 bytes
dois telechargé...
J'attend vos reponse pour savoir quoi faire pour la suite, je ne sais pas par ou commencé ny meme quel logiciel je
Perdu dans ce vaste etendu je demande de l'aide MERCI BEAUCOUP
Configuration: Windows Vista Internet Explorer 7.0
A voir également:
- Probleme avec Pub CID
- Supprimer pub youtube - Accueil - Streaming
- Pub par sms - Guide
- Logiciel anti pub - Télécharger - Web & Internet
- Stop pub gratuit - Télécharger - Divers Utilitaires
- Musique tu tu tu lu tu tu tu pub - <a href="https://forums.commentcamarche.net/forum/musique-radio-clip-28">Forum Musique / Radio / Clip</a>
13 réponses
escuse moi
tu télécharge Lop S&D.exe sur ton Bureau.https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
* Double-clique dessus pour lancer l'installation
* Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
* Séléctionne la langue souhaitée , puis choisis l'option 1 (Recherche)
* Patiente jusqu'à la fin du scan
* Poste le rapport généré (C:\lopR.txt)
tu télécharge Lop S&D.exe sur ton Bureau.https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
* Double-clique dessus pour lancer l'installation
* Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
* Séléctionne la langue souhaitée , puis choisis l'option 1 (Recherche)
* Patiente jusqu'à la fin du scan
* Poste le rapport généré (C:\lopR.txt)
pour vista
Désactive le contrôle des comptes utilisateurs (tu le réactiveras après ta désinfection):
- Va dans démarrer puis panneau de configuration
- Double Clique sur l'icône "Comptes d'utilisateurs"
- Clique ensuite sur désactiver et valide.
http://www.laboratoire-microsoft.org/tips-23933-desactiver-uac-vista.html
et recommence Lop S&D.exe
Désactive le contrôle des comptes utilisateurs (tu le réactiveras après ta désinfection):
- Va dans démarrer puis panneau de configuration
- Double Clique sur l'icône "Comptes d'utilisateurs"
- Clique ensuite sur désactiver et valide.
http://www.laboratoire-microsoft.org/tips-23933-desactiver-uac-vista.html
et recommence Lop S&D.exe
voila j ai donc fait la recherche avec lop s&d sa donne sa:
-----------------------[ Lop S&D 4.2.1-2 XP/Vista ]---------------------
[ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
[ USER : but ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 07/06/2008 | 17:05:14,03 ] [ PC : PC-DE-BUT ]
[ MAJ : 01-06-2008 | 15:51 ]
[ UAC => 0 ]
-------------[ Listing des dossiers dans Application Data ]------------
[31/03/2008|22:07] C:\Users\but\AppData\Roaming\Adobe\Linguistics
[31/03/2008|22:06] C:\Users\but\AppData\Roaming\Adobe\Acrobat
[07/06/2008|12:04] C:\Users\but\AppData\Roaming\CyberLink\PlayMovie
[26/01/2008|14:04] C:\Users\but\AppData\Roaming\CyberLink\PowerProducer
[26/01/2008|14:04] C:\Users\but\AppData\Roaming\CyberLink\PowerDVD
[26/01/2008|14:04] C:\Users\but\AppData\Roaming\CyberLink\MediaCache
[24/01/2008|00:24] C:\Users\but\AppData\Roaming\CyberLink\PowerCinema
[03/06/2008|19:10] C:\Users\but\AppData\Roaming\Google\Local Search History
[08/01/2008|17:35] C:\Users\but\AppData\Roaming\Identities\{9E0A10BE-BEAC-438A-AB5E-E6FB30F0B060}
[18/03/2008|18:02] C:\Users\but\AppData\Roaming\LimeWire\.NetworkShare
[05/02/2008|18:44] C:\Users\but\AppData\Roaming\LimeWire\xml
[05/02/2008|18:16] C:\Users\but\AppData\Roaming\LimeWire\.AppSpecialShare
[05/02/2008|18:16] C:\Users\but\AppData\Roaming\LimeWire\themes
[23/01/2008|22:16] C:\Users\but\AppData\Roaming\Macromedia\Flash Player
[03/06/2008|00:13] C:\Users\but\AppData\Roaming\Microsoft\MSN Messenger
[01/06/2008|14:06] C:\Users\but\AppData\Roaming\Microsoft\Installer
[27/05/2008|19:26] C:\Users\but\AppData\Roaming\Microsoft\Windows Photo Gallery
[30/04/2008|20:35] C:\Users\but\AppData\Roaming\Microsoft\Office
[16/04/2008|23:59] C:\Users\but\AppData\Roaming\Microsoft\eHome
[21/02/2008|16:26] C:\Users\but\AppData\Roaming\Microsoft\IdentityCRL
[18/02/2008|13:17] C:\Users\but\AppData\Roaming\Microsoft\Templates
[18/02/2008|12:54] C:\Users\but\AppData\Roaming\Microsoft\Word
[04/02/2008|21:15] C:\Users\but\AppData\Roaming\Microsoft\preuve
[26/01/2008|14:06] C:\Users\but\AppData\Roaming\Microsoft\MMC
[26/01/2008|13:13] C:\Users\but\AppData\Roaming\Microsoft\Internet Explorer
[26/01/2008|12:26] C:\Users\but\AppData\Roaming\Microsoft\Crypto
[26/01/2008|12:15] C:\Users\but\AppData\Roaming\Microsoft\Credentials
[24/01/2008|06:36] C:\Users\but\AppData\Roaming\Microsoft\UProof
[24/01/2008|06:36] C:\Users\but\AppData\Roaming\Microsoft\Proof
[24/01/2008|06:35] C:\Users\but\AppData\Roaming\Microsoft\Document Building Blocks
[24/01/2008|06:35] C:\Users\but\AppData\Roaming\Microsoft\AddIns
[24/01/2008|02:17] C:\Users\but\AppData\Roaming\Microsoft\HTML Help
[08/01/2008|20:43] C:\Users\but\AppData\Roaming\Microsoft\Windows
[08/01/2008|17:35] C:\Users\but\AppData\Roaming\Microsoft\Protect
[08/01/2008|17:35] C:\Users\but\AppData\Roaming\Microsoft\SystemCertificates
[30/03/2008|19:40] C:\Users\but\AppData\Roaming\vlc\cache
----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------
[07/06/2008 17:02][--ah-----] C:\Windows\tasks\SA.DAT
[07/06/2008 17:01][--a------] C:\Windows\tasks\SCHEDLGU.TXT
------[ Listing des dossiers dans C:\ProgramData ]------
[26/07/2007|03:43] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[18/02/2008|16:42] C:\ProgramData\64SoftwareSoftware.avprx
[01/05/2008|11:11] C:\ProgramData\64SoftwareSoftware.fix3wr
[30/03/2008|11:38] C:\ProgramData\64SoftwareSoftware.j5ofrx4
[01/05/2008|11:11] C:\ProgramData\64SoftwareSoftware.jrxg33p
[26/01/2008|15:53] C:\ProgramData\64SoftwareSoftware.n7b9zrq
[26/07/2007|03:54] C:\ProgramData\Adobe
[02/11/2006|14:02] C:\ProgramData\Application Data
[08/01/2008|17:32] C:\ProgramData\Bureau
[01/05/2008|11:12] C:\ProgramData\chic wait memo.7cre2
[26/01/2008|14:04] C:\ProgramData\CyberLink
[02/11/2006|14:02] C:\ProgramData\Desktop
[02/11/2006|14:02] C:\ProgramData\Documents
[08/01/2008|17:32] C:\ProgramData\Favoris
[02/11/2006|14:02] C:\ProgramData\Favorites
[08/01/2008|20:43] C:\ProgramData\Forge of Games
[01/05/2008|11:12] C:\ProgramData\Freelist
[22/05/2008|19:33] C:\ProgramData\Google
[01/05/2008|11:12] C:\ProgramData\Iso Web Bags Else
[07/06/2008|09:45] C:\ProgramData\Lavasoft
[08/01/2008|17:32] C:\ProgramData\Menu D‚marrer
[06/06/2008|00:49] C:\ProgramData\Messenger Plus!
[03/06/2008|23:50] C:\ProgramData\Microsoft
[14/05/2008|19:39] C:\ProgramData\Microsoft Help
[08/01/2008|17:32] C:\ProgramData\ModŠles
[20/02/2008|00:18] C:\ProgramData\pixelStorm
[04/06/2008|20:05] C:\ProgramData\Spybot - Search & Destroy
[02/11/2006|14:02] C:\ProgramData\Start Menu
[26/01/2008|11:21] C:\ProgramData\Symantec
[02/06/2008|14:55] C:\ProgramData\TEMP
[02/11/2006|14:02] C:\ProgramData\Templates
[07/06/2008|16:01] C:\ProgramData\WinZip
[06/06/2008|00:36] C:\ProgramData\WLInstaller
[24/01/2008|18:49] C:\ProgramData\Yahoo! Companion
---------------[ Listing des dossiers dans C:\Program Files ]--------------
[14/09/2007|18:05] C:\Program Files\Acer Arcade Deluxe
[31/05/2008|14:51] C:\Program Files\Acer GameZone
[14/09/2007|18:20] C:\Program Files\Acer Inc
[26/07/2007|03:43] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[26/07/2007|03:54] C:\Program Files\Adobe
[26/01/2008|11:41] C:\Program Files\Alwil Software
[14/09/2007|18:18] C:\Program Files\Apoint2K
[07/06/2008|09:42] C:\Program Files\Common Files
[26/07/2007|02:29] C:\Program Files\CONEXANT
[26/07/2007|03:13] C:\Program Files\CyberLink
[27/01/2008|23:22] C:\Program Files\desktop.ini
[08/01/2008|17:32] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[28/05/2008|16:47] C:\Program Files\Google
[19/02/2008|16:52] C:\Program Files\InstallShield Installation Information
[10/04/2008|20:54] C:\Program Files\Internet Explorer
[22/05/2008|19:32] C:\Program Files\Java
[14/09/2007|18:04] C:\Program Files\Launch Manager
[07/06/2008|09:44] C:\Program Files\Lavasoft
[05/02/2008|18:14] C:\Program Files\LimeWire
[07/06/2008|16:36] C:\Program Files\Lopxp
[19/02/2008|16:53] C:\Program Files\Maxis
[06/06/2008|00:45] C:\Program Files\Messenger Plus! Live
[27/01/2008|22:11] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[02/11/2006|13:37] C:\Program Files\Microsoft Games
[26/07/2007|03:43] C:\Program Files\Microsoft Office
[06/06/2008|00:43] C:\Program Files\Microsoft SQL Server Compact Edition
[26/07/2007|03:43] C:\Program Files\Microsoft Works
[26/07/2007|03:40] C:\Program Files\Microsoft.NET
[02/11/2006|13:42] C:\Program Files\Movie Maker
[02/11/2006|13:37] C:\Program Files\MSBuild
[02/11/2006|13:37] C:\Program Files\MSN
[06/06/2008|00:25] C:\Program Files\MSN Messenger
[27/01/2008|22:02] C:\Program Files\MSXML 4.0
[01/06/2008|14:05] C:\Program Files\MYLENE
[26/07/2007|03:11] C:\Program Files\NewTech Infosystems
[14/09/2007|18:07] C:\Program Files\Realtek
[02/11/2006|13:37] C:\Program Files\Reference Assemblies
[04/06/2008|19:59] C:\Program Files\Spybot - Search & Destroy
[02/06/2008|20:08] C:\Program Files\Trymedia
[30/03/2008|21:28] C:\Program Files\Ubi Soft
[02/11/2006|14:01] C:\Program Files\Uninstall Information
[30/03/2008|19:38] C:\Program Files\VideoLAN
[27/01/2008|23:18] C:\Program Files\Windows Calendar
[02/11/2006|13:42] C:\Program Files\Windows Collaboration
[26/07/2007|03:19] C:\Program Files\Windows Defender
[02/11/2006|13:42] C:\Program Files\Windows Journal
[07/06/2008|08:30] C:\Program Files\Windows Live
[14/05/2008|19:39] C:\Program Files\Windows Mail
[27/01/2008|23:18] C:\Program Files\Windows Media Player
[08/01/2008|17:32] C:\Program Files\Windows NT
[02/11/2006|13:42] C:\Program Files\Windows Photo Gallery
[27/01/2008|23:18] C:\Program Files\Windows Sidebar
[07/06/2008|16:01] C:\Program Files\WinZip
[08/01/2008|17:35] C:\Program Files\Yahoo!
------[ Listing des dossiers dans C:\Program Files\Common Files ]------
[26/07/2007|03:54] C:\Program Files\Common Files\Adobe
[01/06/2008|14:05] C:\Program Files\Common Files\Crystal Decisions
[26/07/2007|03:40] C:\Program Files\Common Files\DESIGNER
[26/07/2007|03:13] C:\Program Files\Common Files\InstallShield
[05/02/2008|18:10] C:\Program Files\Common Files\Java
[26/07/2007|03:11] C:\Program Files\Common Files\LightScribe
[06/06/2008|00:39] C:\Program Files\Common Files\microsoft shared
[26/07/2007|03:11] C:\Program Files\Common Files\muvee Technologies
[26/07/2007|03:11] C:\Program Files\Common Files\NewTech Infosystems
[26/07/2007|03:49] C:\Program Files\Common Files\Oberon Media
[02/11/2006|12:18] C:\Program Files\Common Files\Services
[02/11/2006|12:18] C:\Program Files\Common Files\SpeechEngines
[26/01/2008|11:22] C:\Program Files\Common Files\Symantec Shared
[26/07/2007|03:19] C:\Program Files\Common Files\System
[06/06/2008|00:39] C:\Program Files\Common Files\WindowsLiveInstaller
[07/06/2008|09:42] C:\Program Files\Common Files\Wise Installation Wizard
---------------------------[ Process ]--------------------------
... 83
iexplore.exe ~ [3228]
iexplore.exe ~ [3672]
----------------------[ Recherche avec S_Lop ]---------------------
C:\ProgramData\chic wait memo.7cre2
C:\Users\but\AppData\Local\Temp\bis2E50.exe
C:\Users\but\AppData\Local\Temp\bis588E.exe
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
C:\ProgramData\Iso Web Bags Else
C:\ProgramData\Iso Web Bags Else\win program.exe
C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@www.adserver5[2].txt
C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@banner.cotedazurpalace[2].txt
C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@cotedazurpalace[1].txt
C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@adopt.euroclick[1].txt
C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@partygaming.122.2o7[1].txt
C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@partypoker[1].txt
C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@vegas-millions[1].txt
C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@2xmoinscher[1].txt
C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@www.2xmoinscher[1].txt
----------------------[ Verification du Registre ]----------------------
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
..... OK !
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts PROPRE
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-06-07 17:05:41
Windows 6.0.6000 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
Aucune autre infection trouvée !
[F:1992][D:38]-> C:\Users\but\AppData\Local\Temp
[F:942][D:1]-> C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies
[F:1958][D:12]-> C:\Users\but\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:6][D:2]-> C:\$Recycle.Bin
[ UAC => 1 ]
--------------------[ Fin du rapport a 17:06:27,51 ]----------------------
j espere que c ce qu il te faut....
Merci
-----------------------[ Lop S&D 4.2.1-2 XP/Vista ]---------------------
[ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
[ USER : but ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 07/06/2008 | 17:05:14,03 ] [ PC : PC-DE-BUT ]
[ MAJ : 01-06-2008 | 15:51 ]
[ UAC => 0 ]
-------------[ Listing des dossiers dans Application Data ]------------
[31/03/2008|22:07] C:\Users\but\AppData\Roaming\Adobe\Linguistics
[31/03/2008|22:06] C:\Users\but\AppData\Roaming\Adobe\Acrobat
[07/06/2008|12:04] C:\Users\but\AppData\Roaming\CyberLink\PlayMovie
[26/01/2008|14:04] C:\Users\but\AppData\Roaming\CyberLink\PowerProducer
[26/01/2008|14:04] C:\Users\but\AppData\Roaming\CyberLink\PowerDVD
[26/01/2008|14:04] C:\Users\but\AppData\Roaming\CyberLink\MediaCache
[24/01/2008|00:24] C:\Users\but\AppData\Roaming\CyberLink\PowerCinema
[03/06/2008|19:10] C:\Users\but\AppData\Roaming\Google\Local Search History
[08/01/2008|17:35] C:\Users\but\AppData\Roaming\Identities\{9E0A10BE-BEAC-438A-AB5E-E6FB30F0B060}
[18/03/2008|18:02] C:\Users\but\AppData\Roaming\LimeWire\.NetworkShare
[05/02/2008|18:44] C:\Users\but\AppData\Roaming\LimeWire\xml
[05/02/2008|18:16] C:\Users\but\AppData\Roaming\LimeWire\.AppSpecialShare
[05/02/2008|18:16] C:\Users\but\AppData\Roaming\LimeWire\themes
[23/01/2008|22:16] C:\Users\but\AppData\Roaming\Macromedia\Flash Player
[03/06/2008|00:13] C:\Users\but\AppData\Roaming\Microsoft\MSN Messenger
[01/06/2008|14:06] C:\Users\but\AppData\Roaming\Microsoft\Installer
[27/05/2008|19:26] C:\Users\but\AppData\Roaming\Microsoft\Windows Photo Gallery
[30/04/2008|20:35] C:\Users\but\AppData\Roaming\Microsoft\Office
[16/04/2008|23:59] C:\Users\but\AppData\Roaming\Microsoft\eHome
[21/02/2008|16:26] C:\Users\but\AppData\Roaming\Microsoft\IdentityCRL
[18/02/2008|13:17] C:\Users\but\AppData\Roaming\Microsoft\Templates
[18/02/2008|12:54] C:\Users\but\AppData\Roaming\Microsoft\Word
[04/02/2008|21:15] C:\Users\but\AppData\Roaming\Microsoft\preuve
[26/01/2008|14:06] C:\Users\but\AppData\Roaming\Microsoft\MMC
[26/01/2008|13:13] C:\Users\but\AppData\Roaming\Microsoft\Internet Explorer
[26/01/2008|12:26] C:\Users\but\AppData\Roaming\Microsoft\Crypto
[26/01/2008|12:15] C:\Users\but\AppData\Roaming\Microsoft\Credentials
[24/01/2008|06:36] C:\Users\but\AppData\Roaming\Microsoft\UProof
[24/01/2008|06:36] C:\Users\but\AppData\Roaming\Microsoft\Proof
[24/01/2008|06:35] C:\Users\but\AppData\Roaming\Microsoft\Document Building Blocks
[24/01/2008|06:35] C:\Users\but\AppData\Roaming\Microsoft\AddIns
[24/01/2008|02:17] C:\Users\but\AppData\Roaming\Microsoft\HTML Help
[08/01/2008|20:43] C:\Users\but\AppData\Roaming\Microsoft\Windows
[08/01/2008|17:35] C:\Users\but\AppData\Roaming\Microsoft\Protect
[08/01/2008|17:35] C:\Users\but\AppData\Roaming\Microsoft\SystemCertificates
[30/03/2008|19:40] C:\Users\but\AppData\Roaming\vlc\cache
----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------
[07/06/2008 17:02][--ah-----] C:\Windows\tasks\SA.DAT
[07/06/2008 17:01][--a------] C:\Windows\tasks\SCHEDLGU.TXT
------[ Listing des dossiers dans C:\ProgramData ]------
[26/07/2007|03:43] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[18/02/2008|16:42] C:\ProgramData\64SoftwareSoftware.avprx
[01/05/2008|11:11] C:\ProgramData\64SoftwareSoftware.fix3wr
[30/03/2008|11:38] C:\ProgramData\64SoftwareSoftware.j5ofrx4
[01/05/2008|11:11] C:\ProgramData\64SoftwareSoftware.jrxg33p
[26/01/2008|15:53] C:\ProgramData\64SoftwareSoftware.n7b9zrq
[26/07/2007|03:54] C:\ProgramData\Adobe
[02/11/2006|14:02] C:\ProgramData\Application Data
[08/01/2008|17:32] C:\ProgramData\Bureau
[01/05/2008|11:12] C:\ProgramData\chic wait memo.7cre2
[26/01/2008|14:04] C:\ProgramData\CyberLink
[02/11/2006|14:02] C:\ProgramData\Desktop
[02/11/2006|14:02] C:\ProgramData\Documents
[08/01/2008|17:32] C:\ProgramData\Favoris
[02/11/2006|14:02] C:\ProgramData\Favorites
[08/01/2008|20:43] C:\ProgramData\Forge of Games
[01/05/2008|11:12] C:\ProgramData\Freelist
[22/05/2008|19:33] C:\ProgramData\Google
[01/05/2008|11:12] C:\ProgramData\Iso Web Bags Else
[07/06/2008|09:45] C:\ProgramData\Lavasoft
[08/01/2008|17:32] C:\ProgramData\Menu D‚marrer
[06/06/2008|00:49] C:\ProgramData\Messenger Plus!
[03/06/2008|23:50] C:\ProgramData\Microsoft
[14/05/2008|19:39] C:\ProgramData\Microsoft Help
[08/01/2008|17:32] C:\ProgramData\ModŠles
[20/02/2008|00:18] C:\ProgramData\pixelStorm
[04/06/2008|20:05] C:\ProgramData\Spybot - Search & Destroy
[02/11/2006|14:02] C:\ProgramData\Start Menu
[26/01/2008|11:21] C:\ProgramData\Symantec
[02/06/2008|14:55] C:\ProgramData\TEMP
[02/11/2006|14:02] C:\ProgramData\Templates
[07/06/2008|16:01] C:\ProgramData\WinZip
[06/06/2008|00:36] C:\ProgramData\WLInstaller
[24/01/2008|18:49] C:\ProgramData\Yahoo! Companion
---------------[ Listing des dossiers dans C:\Program Files ]--------------
[14/09/2007|18:05] C:\Program Files\Acer Arcade Deluxe
[31/05/2008|14:51] C:\Program Files\Acer GameZone
[14/09/2007|18:20] C:\Program Files\Acer Inc
[26/07/2007|03:43] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[26/07/2007|03:54] C:\Program Files\Adobe
[26/01/2008|11:41] C:\Program Files\Alwil Software
[14/09/2007|18:18] C:\Program Files\Apoint2K
[07/06/2008|09:42] C:\Program Files\Common Files
[26/07/2007|02:29] C:\Program Files\CONEXANT
[26/07/2007|03:13] C:\Program Files\CyberLink
[27/01/2008|23:22] C:\Program Files\desktop.ini
[08/01/2008|17:32] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[28/05/2008|16:47] C:\Program Files\Google
[19/02/2008|16:52] C:\Program Files\InstallShield Installation Information
[10/04/2008|20:54] C:\Program Files\Internet Explorer
[22/05/2008|19:32] C:\Program Files\Java
[14/09/2007|18:04] C:\Program Files\Launch Manager
[07/06/2008|09:44] C:\Program Files\Lavasoft
[05/02/2008|18:14] C:\Program Files\LimeWire
[07/06/2008|16:36] C:\Program Files\Lopxp
[19/02/2008|16:53] C:\Program Files\Maxis
[06/06/2008|00:45] C:\Program Files\Messenger Plus! Live
[27/01/2008|22:11] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[02/11/2006|13:37] C:\Program Files\Microsoft Games
[26/07/2007|03:43] C:\Program Files\Microsoft Office
[06/06/2008|00:43] C:\Program Files\Microsoft SQL Server Compact Edition
[26/07/2007|03:43] C:\Program Files\Microsoft Works
[26/07/2007|03:40] C:\Program Files\Microsoft.NET
[02/11/2006|13:42] C:\Program Files\Movie Maker
[02/11/2006|13:37] C:\Program Files\MSBuild
[02/11/2006|13:37] C:\Program Files\MSN
[06/06/2008|00:25] C:\Program Files\MSN Messenger
[27/01/2008|22:02] C:\Program Files\MSXML 4.0
[01/06/2008|14:05] C:\Program Files\MYLENE
[26/07/2007|03:11] C:\Program Files\NewTech Infosystems
[14/09/2007|18:07] C:\Program Files\Realtek
[02/11/2006|13:37] C:\Program Files\Reference Assemblies
[04/06/2008|19:59] C:\Program Files\Spybot - Search & Destroy
[02/06/2008|20:08] C:\Program Files\Trymedia
[30/03/2008|21:28] C:\Program Files\Ubi Soft
[02/11/2006|14:01] C:\Program Files\Uninstall Information
[30/03/2008|19:38] C:\Program Files\VideoLAN
[27/01/2008|23:18] C:\Program Files\Windows Calendar
[02/11/2006|13:42] C:\Program Files\Windows Collaboration
[26/07/2007|03:19] C:\Program Files\Windows Defender
[02/11/2006|13:42] C:\Program Files\Windows Journal
[07/06/2008|08:30] C:\Program Files\Windows Live
[14/05/2008|19:39] C:\Program Files\Windows Mail
[27/01/2008|23:18] C:\Program Files\Windows Media Player
[08/01/2008|17:32] C:\Program Files\Windows NT
[02/11/2006|13:42] C:\Program Files\Windows Photo Gallery
[27/01/2008|23:18] C:\Program Files\Windows Sidebar
[07/06/2008|16:01] C:\Program Files\WinZip
[08/01/2008|17:35] C:\Program Files\Yahoo!
------[ Listing des dossiers dans C:\Program Files\Common Files ]------
[26/07/2007|03:54] C:\Program Files\Common Files\Adobe
[01/06/2008|14:05] C:\Program Files\Common Files\Crystal Decisions
[26/07/2007|03:40] C:\Program Files\Common Files\DESIGNER
[26/07/2007|03:13] C:\Program Files\Common Files\InstallShield
[05/02/2008|18:10] C:\Program Files\Common Files\Java
[26/07/2007|03:11] C:\Program Files\Common Files\LightScribe
[06/06/2008|00:39] C:\Program Files\Common Files\microsoft shared
[26/07/2007|03:11] C:\Program Files\Common Files\muvee Technologies
[26/07/2007|03:11] C:\Program Files\Common Files\NewTech Infosystems
[26/07/2007|03:49] C:\Program Files\Common Files\Oberon Media
[02/11/2006|12:18] C:\Program Files\Common Files\Services
[02/11/2006|12:18] C:\Program Files\Common Files\SpeechEngines
[26/01/2008|11:22] C:\Program Files\Common Files\Symantec Shared
[26/07/2007|03:19] C:\Program Files\Common Files\System
[06/06/2008|00:39] C:\Program Files\Common Files\WindowsLiveInstaller
[07/06/2008|09:42] C:\Program Files\Common Files\Wise Installation Wizard
---------------------------[ Process ]--------------------------
... 83
iexplore.exe ~ [3228]
iexplore.exe ~ [3672]
----------------------[ Recherche avec S_Lop ]---------------------
C:\ProgramData\chic wait memo.7cre2
C:\Users\but\AppData\Local\Temp\bis2E50.exe
C:\Users\but\AppData\Local\Temp\bis588E.exe
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
C:\ProgramData\Iso Web Bags Else
C:\ProgramData\Iso Web Bags Else\win program.exe
C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@www.adserver5[2].txt
C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@banner.cotedazurpalace[2].txt
C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@cotedazurpalace[1].txt
C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@adopt.euroclick[1].txt
C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@partygaming.122.2o7[1].txt
C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@partypoker[1].txt
C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@vegas-millions[1].txt
C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@2xmoinscher[1].txt
C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@www.2xmoinscher[1].txt
----------------------[ Verification du Registre ]----------------------
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
..... OK !
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts PROPRE
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-06-07 17:05:41
Windows 6.0.6000 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
Aucune autre infection trouvée !
[F:1992][D:38]-> C:\Users\but\AppData\Local\Temp
[F:942][D:1]-> C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies
[F:1958][D:12]-> C:\Users\but\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:6][D:2]-> C:\$Recycle.Bin
[ UAC => 1 ]
--------------------[ Fin du rapport a 17:06:27,51 ]----------------------
j espere que c ce qu il te faut....
Merci
c'est bien ça
Relance Lop S&D
* Choisis cette fois ci l'Option 2 (Suppression)
* Ne ferme pas la fenêtre lors de la suppression !
* Poste le rapport généré (C:\lopR.txt)
Relance Lop S&D
* Choisis cette fois ci l'Option 2 (Suppression)
* Ne ferme pas la fenêtre lors de la suppression !
* Poste le rapport généré (C:\lopR.txt)
Voici le rapport....
-----------------------[ Lop S&D 4.2.1-2 XP/Vista ]---------------------
[ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
[ USER : but ] [ "C:\Lop SD" ] [ Selection : 2 ]
[ 07/06/2008 | 17:20:07,90 ] [ PC : PC-DE-BUT ]
[ MAJ : 01-06-2008 | 15:51 ]
[ UAC => 0 ]
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////
Echec ! - C:\ProgramData\Iso Web Bags Else\win program.exe
Supprimé! - C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@www.adserver5[2].txt
Supprimé! - C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@banner.cotedazurpalace[2].txt
Supprimé! - C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@cotedazurpalace[1].txt
Supprimé! - C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@adopt.euroclick[1].txt
Supprimé! - C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@partygaming.122.2o7[1].txt
Supprimé! - C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@partypoker[1].txt
Supprimé! - C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@vegas-millions[1].txt
Supprimé! - C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@2xmoinscher[1].txt
Supprimé! - C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@www.2xmoinscher[1].txt
Supprimé! - C:\ProgramData\chic wait memo.7cre2
Supprimé! - C:\Users\but\AppData\Local\Temp\bis2E50.exe
Supprimé! - C:\Users\but\AppData\Local\Temp\bis588E.exe
Echec ! - C:\ProgramData\Iso Web Bags Else
Restauré! - Fichier Hosts
\\\\\\\\\\\\\\\\\\\\\\\\\\\ DEUXIEME PASSAGE ///////////////////////////
Echec ! - C:\ProgramData\Iso Web Bags Else\win program.exe
Echec ! - C:\ProgramData\Iso Web Bags Else
//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
-------------[ Listing des dossiers dans Application Data ]------------
[31/03/2008|22:07] C:\Users\but\AppData\Roaming\Adobe\Linguistics
[31/03/2008|22:06] C:\Users\but\AppData\Roaming\Adobe\Acrobat
[07/06/2008|12:04] C:\Users\but\AppData\Roaming\CyberLink\PlayMovie
[26/01/2008|14:04] C:\Users\but\AppData\Roaming\CyberLink\PowerProducer
[26/01/2008|14:04] C:\Users\but\AppData\Roaming\CyberLink\PowerDVD
[26/01/2008|14:04] C:\Users\but\AppData\Roaming\CyberLink\MediaCache
[24/01/2008|00:24] C:\Users\but\AppData\Roaming\CyberLink\PowerCinema
[03/06/2008|19:10] C:\Users\but\AppData\Roaming\Google\Local Search History
[08/01/2008|17:35] C:\Users\but\AppData\Roaming\Identities\{9E0A10BE-BEAC-438A-AB5E-E6FB30F0B060}
[18/03/2008|18:02] C:\Users\but\AppData\Roaming\LimeWire\.NetworkShare
[05/02/2008|18:44] C:\Users\but\AppData\Roaming\LimeWire\xml
[05/02/2008|18:16] C:\Users\but\AppData\Roaming\LimeWire\.AppSpecialShare
[05/02/2008|18:16] C:\Users\but\AppData\Roaming\LimeWire\themes
[23/01/2008|22:16] C:\Users\but\AppData\Roaming\Macromedia\Flash Player
[03/06/2008|00:13] C:\Users\but\AppData\Roaming\Microsoft\MSN Messenger
[01/06/2008|14:06] C:\Users\but\AppData\Roaming\Microsoft\Installer
[27/05/2008|19:26] C:\Users\but\AppData\Roaming\Microsoft\Windows Photo Gallery
[30/04/2008|20:35] C:\Users\but\AppData\Roaming\Microsoft\Office
[16/04/2008|23:59] C:\Users\but\AppData\Roaming\Microsoft\eHome
[21/02/2008|16:26] C:\Users\but\AppData\Roaming\Microsoft\IdentityCRL
[18/02/2008|13:17] C:\Users\but\AppData\Roaming\Microsoft\Templates
[18/02/2008|12:54] C:\Users\but\AppData\Roaming\Microsoft\Word
[04/02/2008|21:15] C:\Users\but\AppData\Roaming\Microsoft\preuve
[26/01/2008|14:06] C:\Users\but\AppData\Roaming\Microsoft\MMC
[26/01/2008|13:13] C:\Users\but\AppData\Roaming\Microsoft\Internet Explorer
[26/01/2008|12:26] C:\Users\but\AppData\Roaming\Microsoft\Crypto
[26/01/2008|12:15] C:\Users\but\AppData\Roaming\Microsoft\Credentials
[24/01/2008|06:36] C:\Users\but\AppData\Roaming\Microsoft\UProof
[24/01/2008|06:36] C:\Users\but\AppData\Roaming\Microsoft\Proof
[24/01/2008|06:35] C:\Users\but\AppData\Roaming\Microsoft\Document Building Blocks
[24/01/2008|06:35] C:\Users\but\AppData\Roaming\Microsoft\AddIns
[24/01/2008|02:17] C:\Users\but\AppData\Roaming\Microsoft\HTML Help
[08/01/2008|20:43] C:\Users\but\AppData\Roaming\Microsoft\Windows
[08/01/2008|17:35] C:\Users\but\AppData\Roaming\Microsoft\Protect
[08/01/2008|17:35] C:\Users\but\AppData\Roaming\Microsoft\SystemCertificates
[30/03/2008|19:40] C:\Users\but\AppData\Roaming\vlc\cache
----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------
[07/06/2008 17:19][--ah-----] C:\Windows\tasks\SA.DAT
[07/06/2008 17:18][--a------] C:\Windows\tasks\SCHEDLGU.TXT
------[ Listing des dossiers dans C:\ProgramData ]------
[26/07/2007|03:43] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[18/02/2008|16:42] C:\ProgramData\64SoftwareSoftware.avprx
[01/05/2008|11:11] C:\ProgramData\64SoftwareSoftware.fix3wr
[30/03/2008|11:38] C:\ProgramData\64SoftwareSoftware.j5ofrx4
[01/05/2008|11:11] C:\ProgramData\64SoftwareSoftware.jrxg33p
[26/01/2008|15:53] C:\ProgramData\64SoftwareSoftware.n7b9zrq
[26/07/2007|03:54] C:\ProgramData\Adobe
[02/11/2006|14:02] C:\ProgramData\Application Data
[08/01/2008|17:32] C:\ProgramData\Bureau
[26/01/2008|14:04] C:\ProgramData\CyberLink
[02/11/2006|14:02] C:\ProgramData\Desktop
[02/11/2006|14:02] C:\ProgramData\Documents
[08/01/2008|17:32] C:\ProgramData\Favoris
[02/11/2006|14:02] C:\ProgramData\Favorites
[08/01/2008|20:43] C:\ProgramData\Forge of Games
[01/05/2008|11:12] C:\ProgramData\Freelist
[22/05/2008|19:33] C:\ProgramData\Google
[01/05/2008|11:12] C:\ProgramData\Iso Web Bags Else
[07/06/2008|09:45] C:\ProgramData\Lavasoft
[08/01/2008|17:32] C:\ProgramData\Menu D‚marrer
[06/06/2008|00:49] C:\ProgramData\Messenger Plus!
[03/06/2008|23:50] C:\ProgramData\Microsoft
[14/05/2008|19:39] C:\ProgramData\Microsoft Help
[08/01/2008|17:32] C:\ProgramData\ModŠles
[20/02/2008|00:18] C:\ProgramData\pixelStorm
[04/06/2008|20:05] C:\ProgramData\Spybot - Search & Destroy
[02/11/2006|14:02] C:\ProgramData\Start Menu
[26/01/2008|11:21] C:\ProgramData\Symantec
[02/06/2008|14:55] C:\ProgramData\TEMP
[02/11/2006|14:02] C:\ProgramData\Templates
[07/06/2008|16:01] C:\ProgramData\WinZip
[06/06/2008|00:36] C:\ProgramData\WLInstaller
[24/01/2008|18:49] C:\ProgramData\Yahoo! Companion
---------------[ Listing des dossiers dans C:\Program Files ]--------------
[14/09/2007|18:05] C:\Program Files\Acer Arcade Deluxe
[31/05/2008|14:51] C:\Program Files\Acer GameZone
[14/09/2007|18:20] C:\Program Files\Acer Inc
[26/07/2007|03:43] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[26/07/2007|03:54] C:\Program Files\Adobe
[26/01/2008|11:41] C:\Program Files\Alwil Software
[14/09/2007|18:18] C:\Program Files\Apoint2K
[07/06/2008|09:42] C:\Program Files\Common Files
[26/07/2007|02:29] C:\Program Files\CONEXANT
[26/07/2007|03:13] C:\Program Files\CyberLink
[27/01/2008|23:22] C:\Program Files\desktop.ini
[08/01/2008|17:32] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[28/05/2008|16:47] C:\Program Files\Google
[19/02/2008|16:52] C:\Program Files\InstallShield Installation Information
[10/04/2008|20:54] C:\Program Files\Internet Explorer
[22/05/2008|19:32] C:\Program Files\Java
[14/09/2007|18:04] C:\Program Files\Launch Manager
[07/06/2008|09:44] C:\Program Files\Lavasoft
[05/02/2008|18:14] C:\Program Files\LimeWire
[07/06/2008|16:36] C:\Program Files\Lopxp
[19/02/2008|16:53] C:\Program Files\Maxis
[06/06/2008|00:45] C:\Program Files\Messenger Plus! Live
[27/01/2008|22:11] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[02/11/2006|13:37] C:\Program Files\Microsoft Games
[26/07/2007|03:43] C:\Program Files\Microsoft Office
[06/06/2008|00:43] C:\Program Files\Microsoft SQL Server Compact Edition
[26/07/2007|03:43] C:\Program Files\Microsoft Works
[26/07/2007|03:40] C:\Program Files\Microsoft.NET
[02/11/2006|13:42] C:\Program Files\Movie Maker
[02/11/2006|13:37] C:\Program Files\MSBuild
[02/11/2006|13:37] C:\Program Files\MSN
[06/06/2008|00:25] C:\Program Files\MSN Messenger
[27/01/2008|22:02] C:\Program Files\MSXML 4.0
[01/06/2008|14:05] C:\Program Files\MYLENE
[26/07/2007|03:11] C:\Program Files\NewTech Infosystems
[14/09/2007|18:07] C:\Program Files\Realtek
[02/11/2006|13:37] C:\Program Files\Reference Assemblies
[04/06/2008|19:59] C:\Program Files\Spybot - Search & Destroy
[02/06/2008|20:08] C:\Program Files\Trymedia
[30/03/2008|21:28] C:\Program Files\Ubi Soft
[02/11/2006|14:01] C:\Program Files\Uninstall Information
[30/03/2008|19:38] C:\Program Files\VideoLAN
[27/01/2008|23:18] C:\Program Files\Windows Calendar
[02/11/2006|13:42] C:\Program Files\Windows Collaboration
[26/07/2007|03:19] C:\Program Files\Windows Defender
[02/11/2006|13:42] C:\Program Files\Windows Journal
[07/06/2008|08:30] C:\Program Files\Windows Live
[14/05/2008|19:39] C:\Program Files\Windows Mail
[27/01/2008|23:18] C:\Program Files\Windows Media Player
[08/01/2008|17:32] C:\Program Files\Windows NT
[02/11/2006|13:42] C:\Program Files\Windows Photo Gallery
[27/01/2008|23:18] C:\Program Files\Windows Sidebar
[07/06/2008|16:01] C:\Program Files\WinZip
[08/01/2008|17:35] C:\Program Files\Yahoo!
------[ Listing des dossiers dans C:\Program Files\Common Files ]------
[26/07/2007|03:54] C:\Program Files\Common Files\Adobe
[01/06/2008|14:05] C:\Program Files\Common Files\Crystal Decisions
[26/07/2007|03:40] C:\Program Files\Common Files\DESIGNER
[26/07/2007|03:13] C:\Program Files\Common Files\InstallShield
[05/02/2008|18:10] C:\Program Files\Common Files\Java
[26/07/2007|03:11] C:\Program Files\Common Files\LightScribe
[06/06/2008|00:39] C:\Program Files\Common Files\microsoft shared
[26/07/2007|03:11] C:\Program Files\Common Files\muvee Technologies
[26/07/2007|03:11] C:\Program Files\Common Files\NewTech Infosystems
[26/07/2007|03:49] C:\Program Files\Common Files\Oberon Media
[02/11/2006|12:18] C:\Program Files\Common Files\Services
[02/11/2006|12:18] C:\Program Files\Common Files\SpeechEngines
[26/01/2008|11:22] C:\Program Files\Common Files\Symantec Shared
[26/07/2007|03:19] C:\Program Files\Common Files\System
[06/06/2008|00:39] C:\Program Files\Common Files\WindowsLiveInstaller
[07/06/2008|09:42] C:\Program Files\Common Files\Wise Installation Wizard
---------------------------[ Process ]--------------------------
... 79
iexplore.exe ~ [6020]
iexplore.exe ~ [6080]
----------------------[ Recherche avec S_Lop ]---------------------
Aucun fichier / dossier Lop trouvé !
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
C:\ProgramData\Iso Web Bags Else
C:\ProgramData\Iso Web Bags Else\win program.exe
----------------------[ Verification du Registre ]----------------------
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
..... OK !
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts PROPRE
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-06-07 17:21:27
Windows 6.0.6000 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
Aucune autre infection trouvée !
[F:1986][D:38]-> C:\Users\but\AppData\Local\Temp
[F:937][D:1]-> C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies
[F:2189][D:12]-> C:\Users\but\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:6][D:2]-> C:\$Recycle.Bin
[ UAC => 1 ]
--------------------[ Fin du rapport a 17:24:22,61 ]----------------------
Pas de trace de CID pour le moment....
Fini ?
merci
-----------------------[ Lop S&D 4.2.1-2 XP/Vista ]---------------------
[ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
[ USER : but ] [ "C:\Lop SD" ] [ Selection : 2 ]
[ 07/06/2008 | 17:20:07,90 ] [ PC : PC-DE-BUT ]
[ MAJ : 01-06-2008 | 15:51 ]
[ UAC => 0 ]
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////
Echec ! - C:\ProgramData\Iso Web Bags Else\win program.exe
Supprimé! - C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@www.adserver5[2].txt
Supprimé! - C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@banner.cotedazurpalace[2].txt
Supprimé! - C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@cotedazurpalace[1].txt
Supprimé! - C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@adopt.euroclick[1].txt
Supprimé! - C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@partygaming.122.2o7[1].txt
Supprimé! - C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@partypoker[1].txt
Supprimé! - C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@vegas-millions[1].txt
Supprimé! - C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@2xmoinscher[1].txt
Supprimé! - C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@www.2xmoinscher[1].txt
Supprimé! - C:\ProgramData\chic wait memo.7cre2
Supprimé! - C:\Users\but\AppData\Local\Temp\bis2E50.exe
Supprimé! - C:\Users\but\AppData\Local\Temp\bis588E.exe
Echec ! - C:\ProgramData\Iso Web Bags Else
Restauré! - Fichier Hosts
\\\\\\\\\\\\\\\\\\\\\\\\\\\ DEUXIEME PASSAGE ///////////////////////////
Echec ! - C:\ProgramData\Iso Web Bags Else\win program.exe
Echec ! - C:\ProgramData\Iso Web Bags Else
//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
-------------[ Listing des dossiers dans Application Data ]------------
[31/03/2008|22:07] C:\Users\but\AppData\Roaming\Adobe\Linguistics
[31/03/2008|22:06] C:\Users\but\AppData\Roaming\Adobe\Acrobat
[07/06/2008|12:04] C:\Users\but\AppData\Roaming\CyberLink\PlayMovie
[26/01/2008|14:04] C:\Users\but\AppData\Roaming\CyberLink\PowerProducer
[26/01/2008|14:04] C:\Users\but\AppData\Roaming\CyberLink\PowerDVD
[26/01/2008|14:04] C:\Users\but\AppData\Roaming\CyberLink\MediaCache
[24/01/2008|00:24] C:\Users\but\AppData\Roaming\CyberLink\PowerCinema
[03/06/2008|19:10] C:\Users\but\AppData\Roaming\Google\Local Search History
[08/01/2008|17:35] C:\Users\but\AppData\Roaming\Identities\{9E0A10BE-BEAC-438A-AB5E-E6FB30F0B060}
[18/03/2008|18:02] C:\Users\but\AppData\Roaming\LimeWire\.NetworkShare
[05/02/2008|18:44] C:\Users\but\AppData\Roaming\LimeWire\xml
[05/02/2008|18:16] C:\Users\but\AppData\Roaming\LimeWire\.AppSpecialShare
[05/02/2008|18:16] C:\Users\but\AppData\Roaming\LimeWire\themes
[23/01/2008|22:16] C:\Users\but\AppData\Roaming\Macromedia\Flash Player
[03/06/2008|00:13] C:\Users\but\AppData\Roaming\Microsoft\MSN Messenger
[01/06/2008|14:06] C:\Users\but\AppData\Roaming\Microsoft\Installer
[27/05/2008|19:26] C:\Users\but\AppData\Roaming\Microsoft\Windows Photo Gallery
[30/04/2008|20:35] C:\Users\but\AppData\Roaming\Microsoft\Office
[16/04/2008|23:59] C:\Users\but\AppData\Roaming\Microsoft\eHome
[21/02/2008|16:26] C:\Users\but\AppData\Roaming\Microsoft\IdentityCRL
[18/02/2008|13:17] C:\Users\but\AppData\Roaming\Microsoft\Templates
[18/02/2008|12:54] C:\Users\but\AppData\Roaming\Microsoft\Word
[04/02/2008|21:15] C:\Users\but\AppData\Roaming\Microsoft\preuve
[26/01/2008|14:06] C:\Users\but\AppData\Roaming\Microsoft\MMC
[26/01/2008|13:13] C:\Users\but\AppData\Roaming\Microsoft\Internet Explorer
[26/01/2008|12:26] C:\Users\but\AppData\Roaming\Microsoft\Crypto
[26/01/2008|12:15] C:\Users\but\AppData\Roaming\Microsoft\Credentials
[24/01/2008|06:36] C:\Users\but\AppData\Roaming\Microsoft\UProof
[24/01/2008|06:36] C:\Users\but\AppData\Roaming\Microsoft\Proof
[24/01/2008|06:35] C:\Users\but\AppData\Roaming\Microsoft\Document Building Blocks
[24/01/2008|06:35] C:\Users\but\AppData\Roaming\Microsoft\AddIns
[24/01/2008|02:17] C:\Users\but\AppData\Roaming\Microsoft\HTML Help
[08/01/2008|20:43] C:\Users\but\AppData\Roaming\Microsoft\Windows
[08/01/2008|17:35] C:\Users\but\AppData\Roaming\Microsoft\Protect
[08/01/2008|17:35] C:\Users\but\AppData\Roaming\Microsoft\SystemCertificates
[30/03/2008|19:40] C:\Users\but\AppData\Roaming\vlc\cache
----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------
[07/06/2008 17:19][--ah-----] C:\Windows\tasks\SA.DAT
[07/06/2008 17:18][--a------] C:\Windows\tasks\SCHEDLGU.TXT
------[ Listing des dossiers dans C:\ProgramData ]------
[26/07/2007|03:43] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[18/02/2008|16:42] C:\ProgramData\64SoftwareSoftware.avprx
[01/05/2008|11:11] C:\ProgramData\64SoftwareSoftware.fix3wr
[30/03/2008|11:38] C:\ProgramData\64SoftwareSoftware.j5ofrx4
[01/05/2008|11:11] C:\ProgramData\64SoftwareSoftware.jrxg33p
[26/01/2008|15:53] C:\ProgramData\64SoftwareSoftware.n7b9zrq
[26/07/2007|03:54] C:\ProgramData\Adobe
[02/11/2006|14:02] C:\ProgramData\Application Data
[08/01/2008|17:32] C:\ProgramData\Bureau
[26/01/2008|14:04] C:\ProgramData\CyberLink
[02/11/2006|14:02] C:\ProgramData\Desktop
[02/11/2006|14:02] C:\ProgramData\Documents
[08/01/2008|17:32] C:\ProgramData\Favoris
[02/11/2006|14:02] C:\ProgramData\Favorites
[08/01/2008|20:43] C:\ProgramData\Forge of Games
[01/05/2008|11:12] C:\ProgramData\Freelist
[22/05/2008|19:33] C:\ProgramData\Google
[01/05/2008|11:12] C:\ProgramData\Iso Web Bags Else
[07/06/2008|09:45] C:\ProgramData\Lavasoft
[08/01/2008|17:32] C:\ProgramData\Menu D‚marrer
[06/06/2008|00:49] C:\ProgramData\Messenger Plus!
[03/06/2008|23:50] C:\ProgramData\Microsoft
[14/05/2008|19:39] C:\ProgramData\Microsoft Help
[08/01/2008|17:32] C:\ProgramData\ModŠles
[20/02/2008|00:18] C:\ProgramData\pixelStorm
[04/06/2008|20:05] C:\ProgramData\Spybot - Search & Destroy
[02/11/2006|14:02] C:\ProgramData\Start Menu
[26/01/2008|11:21] C:\ProgramData\Symantec
[02/06/2008|14:55] C:\ProgramData\TEMP
[02/11/2006|14:02] C:\ProgramData\Templates
[07/06/2008|16:01] C:\ProgramData\WinZip
[06/06/2008|00:36] C:\ProgramData\WLInstaller
[24/01/2008|18:49] C:\ProgramData\Yahoo! Companion
---------------[ Listing des dossiers dans C:\Program Files ]--------------
[14/09/2007|18:05] C:\Program Files\Acer Arcade Deluxe
[31/05/2008|14:51] C:\Program Files\Acer GameZone
[14/09/2007|18:20] C:\Program Files\Acer Inc
[26/07/2007|03:43] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[26/07/2007|03:54] C:\Program Files\Adobe
[26/01/2008|11:41] C:\Program Files\Alwil Software
[14/09/2007|18:18] C:\Program Files\Apoint2K
[07/06/2008|09:42] C:\Program Files\Common Files
[26/07/2007|02:29] C:\Program Files\CONEXANT
[26/07/2007|03:13] C:\Program Files\CyberLink
[27/01/2008|23:22] C:\Program Files\desktop.ini
[08/01/2008|17:32] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[28/05/2008|16:47] C:\Program Files\Google
[19/02/2008|16:52] C:\Program Files\InstallShield Installation Information
[10/04/2008|20:54] C:\Program Files\Internet Explorer
[22/05/2008|19:32] C:\Program Files\Java
[14/09/2007|18:04] C:\Program Files\Launch Manager
[07/06/2008|09:44] C:\Program Files\Lavasoft
[05/02/2008|18:14] C:\Program Files\LimeWire
[07/06/2008|16:36] C:\Program Files\Lopxp
[19/02/2008|16:53] C:\Program Files\Maxis
[06/06/2008|00:45] C:\Program Files\Messenger Plus! Live
[27/01/2008|22:11] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[02/11/2006|13:37] C:\Program Files\Microsoft Games
[26/07/2007|03:43] C:\Program Files\Microsoft Office
[06/06/2008|00:43] C:\Program Files\Microsoft SQL Server Compact Edition
[26/07/2007|03:43] C:\Program Files\Microsoft Works
[26/07/2007|03:40] C:\Program Files\Microsoft.NET
[02/11/2006|13:42] C:\Program Files\Movie Maker
[02/11/2006|13:37] C:\Program Files\MSBuild
[02/11/2006|13:37] C:\Program Files\MSN
[06/06/2008|00:25] C:\Program Files\MSN Messenger
[27/01/2008|22:02] C:\Program Files\MSXML 4.0
[01/06/2008|14:05] C:\Program Files\MYLENE
[26/07/2007|03:11] C:\Program Files\NewTech Infosystems
[14/09/2007|18:07] C:\Program Files\Realtek
[02/11/2006|13:37] C:\Program Files\Reference Assemblies
[04/06/2008|19:59] C:\Program Files\Spybot - Search & Destroy
[02/06/2008|20:08] C:\Program Files\Trymedia
[30/03/2008|21:28] C:\Program Files\Ubi Soft
[02/11/2006|14:01] C:\Program Files\Uninstall Information
[30/03/2008|19:38] C:\Program Files\VideoLAN
[27/01/2008|23:18] C:\Program Files\Windows Calendar
[02/11/2006|13:42] C:\Program Files\Windows Collaboration
[26/07/2007|03:19] C:\Program Files\Windows Defender
[02/11/2006|13:42] C:\Program Files\Windows Journal
[07/06/2008|08:30] C:\Program Files\Windows Live
[14/05/2008|19:39] C:\Program Files\Windows Mail
[27/01/2008|23:18] C:\Program Files\Windows Media Player
[08/01/2008|17:32] C:\Program Files\Windows NT
[02/11/2006|13:42] C:\Program Files\Windows Photo Gallery
[27/01/2008|23:18] C:\Program Files\Windows Sidebar
[07/06/2008|16:01] C:\Program Files\WinZip
[08/01/2008|17:35] C:\Program Files\Yahoo!
------[ Listing des dossiers dans C:\Program Files\Common Files ]------
[26/07/2007|03:54] C:\Program Files\Common Files\Adobe
[01/06/2008|14:05] C:\Program Files\Common Files\Crystal Decisions
[26/07/2007|03:40] C:\Program Files\Common Files\DESIGNER
[26/07/2007|03:13] C:\Program Files\Common Files\InstallShield
[05/02/2008|18:10] C:\Program Files\Common Files\Java
[26/07/2007|03:11] C:\Program Files\Common Files\LightScribe
[06/06/2008|00:39] C:\Program Files\Common Files\microsoft shared
[26/07/2007|03:11] C:\Program Files\Common Files\muvee Technologies
[26/07/2007|03:11] C:\Program Files\Common Files\NewTech Infosystems
[26/07/2007|03:49] C:\Program Files\Common Files\Oberon Media
[02/11/2006|12:18] C:\Program Files\Common Files\Services
[02/11/2006|12:18] C:\Program Files\Common Files\SpeechEngines
[26/01/2008|11:22] C:\Program Files\Common Files\Symantec Shared
[26/07/2007|03:19] C:\Program Files\Common Files\System
[06/06/2008|00:39] C:\Program Files\Common Files\WindowsLiveInstaller
[07/06/2008|09:42] C:\Program Files\Common Files\Wise Installation Wizard
---------------------------[ Process ]--------------------------
... 79
iexplore.exe ~ [6020]
iexplore.exe ~ [6080]
----------------------[ Recherche avec S_Lop ]---------------------
Aucun fichier / dossier Lop trouvé !
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
C:\ProgramData\Iso Web Bags Else
C:\ProgramData\Iso Web Bags Else\win program.exe
----------------------[ Verification du Registre ]----------------------
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
..... OK !
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts PROPRE
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-06-07 17:21:27
Windows 6.0.6000 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
Aucune autre infection trouvée !
[F:1986][D:38]-> C:\Users\but\AppData\Local\Temp
[F:937][D:1]-> C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies
[F:2189][D:12]-> C:\Users\but\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:6][D:2]-> C:\$Recycle.Bin
[ UAC => 1 ]
--------------------[ Fin du rapport a 17:24:22,61 ]----------------------
Pas de trace de CID pour le moment....
Fini ?
merci
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
tout n'a pas était supprimer
Echec ! - C:\ProgramData\Iso Web Bags Else\win program.exe
Echec ! - C:\ProgramData\Iso Web Bags Else
Relance Lop S&D
* Choisis cette fois ci l'Option 2 (Suppression)
* Ne ferme pas la fenêtre lors de la suppression !
Echec ! - C:\ProgramData\Iso Web Bags Else\win program.exe
Echec ! - C:\ProgramData\Iso Web Bags Else
Relance Lop S&D
* Choisis cette fois ci l'Option 2 (Suppression)
* Ne ferme pas la fenêtre lors de la suppression !
pour supprimer les outils de désinfections
Télécharge ToolsCleaner de A.Roshtein sur ton Bureau.(sur un des 2 liens)
http://pagesperso-orange.fr/AceRothstein/ToolsCleaner2.exe
http://a-rothstein.changelog.fr/TC/ToolsCleaner2.exe
· Clique sur Recherche et laisse le scan se terminer.
· Clique, sur Suppression pour finaliser.
· Tu peux, si tu le souhaites, te servir des Options facultatives.
· Clique sur Quitter, pour que le rapport puisse se créer.
· Poste moi le rapport (TCleaner.txt) qui se trouve à la racine de ton disque dur( C:\).
Télécharge ToolsCleaner de A.Roshtein sur ton Bureau.(sur un des 2 liens)
http://pagesperso-orange.fr/AceRothstein/ToolsCleaner2.exe
http://a-rothstein.changelog.fr/TC/ToolsCleaner2.exe
· Clique sur Recherche et laisse le scan se terminer.
· Clique, sur Suppression pour finaliser.
· Tu peux, si tu le souhaites, te servir des Options facultatives.
· Clique sur Quitter, pour que le rapport puisse se créer.
· Poste moi le rapport (TCleaner.txt) qui se trouve à la racine de ton disque dur( C:\).
tu vas dans le menu Démarrer
tu clique sur panneau de configuration
tu choisi le module ajout/suppression de programmes
tu désinstalle messenger plus!
tu clique sur panneau de configuration
tu choisi le module ajout/suppression de programmes
tu désinstalle messenger plus!
je sais pas si c le rapport mais voila ce que j ai trouvé...
Je pense que c sa...
-->- Recherche:
C:\Lop SD: trouvé !
C:\Lop SD\Lop S&D.lnk: trouvé !
C:\Users\but\AppData\Roaming\Microsoft\Windows\Recent\HijackThis.lnk: trouvé !
C:\Users\but\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes\Lop S&D: trouvé !
C:\Users\but\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lop S&D: trouvé !
C:\Users\but\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Lop S&D.lnk: trouvé !
C:\Users\but\Desktop\Lop S&D.lnk: trouvé !
C:\Users\but\Desktop\LopSD.exe: trouvé !
C:\Users\but\Desktop\HijackThis.exe: trouvé !
---------------------------------
-->- Suppression:
C:\Lop SD\Lop S&D.lnk: supprimé !
C:\Users\but\AppData\Roaming\Microsoft\Windows\Recent\HijackThis.lnk: supprimé !
C:\Users\but\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Lop S&D.lnk: supprimé !
C:\Users\but\Desktop\Lop S&D.lnk: supprimé !
C:\Users\but\Desktop\LopSD.exe: supprimé !
C:\Users\but\Desktop\HijackThis.exe: supprimé !
C:\Lop SD: supprimé !
C:\Users\but\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes\Lop S&D: ERREUR DE SUPPRESSION !!
C:\Users\but\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lop S&D: supprimé !
Merci pour la reponse
Je pense que c sa...
-->- Recherche:
C:\Lop SD: trouvé !
C:\Lop SD\Lop S&D.lnk: trouvé !
C:\Users\but\AppData\Roaming\Microsoft\Windows\Recent\HijackThis.lnk: trouvé !
C:\Users\but\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes\Lop S&D: trouvé !
C:\Users\but\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lop S&D: trouvé !
C:\Users\but\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Lop S&D.lnk: trouvé !
C:\Users\but\Desktop\Lop S&D.lnk: trouvé !
C:\Users\but\Desktop\LopSD.exe: trouvé !
C:\Users\but\Desktop\HijackThis.exe: trouvé !
---------------------------------
-->- Suppression:
C:\Lop SD\Lop S&D.lnk: supprimé !
C:\Users\but\AppData\Roaming\Microsoft\Windows\Recent\HijackThis.lnk: supprimé !
C:\Users\but\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Lop S&D.lnk: supprimé !
C:\Users\but\Desktop\Lop S&D.lnk: supprimé !
C:\Users\but\Desktop\LopSD.exe: supprimé !
C:\Users\but\Desktop\HijackThis.exe: supprimé !
C:\Lop SD: supprimé !
C:\Users\but\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes\Lop S&D: ERREUR DE SUPPRESSION !!
C:\Users\but\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lop S&D: supprimé !
Merci pour la reponse
bon au reprend du début
Désactive le contrôle des comptes utilisateurs (tu le réactiveras après ta désinfection):
- Va dans démarrer puis panneau de configuration
- Double Clique sur l'icône "Comptes d'utilisateurs"
- Clique ensuite sur désactiver et valide.
tu télécharge Lop S&D.exe sur ton Bureau.https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
* Double-clique dessus pour lancer l'installation
* Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
* Séléctionne la langue souhaitée , puis choisis l'option 1 (Recherche)
* Patiente jusqu'à la fin du scan
* Poste le rapport généré (C:\lopR.txt)
Désactive le contrôle des comptes utilisateurs (tu le réactiveras après ta désinfection):
- Va dans démarrer puis panneau de configuration
- Double Clique sur l'icône "Comptes d'utilisateurs"
- Clique ensuite sur désactiver et valide.
tu télécharge Lop S&D.exe sur ton Bureau.https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
* Double-clique dessus pour lancer l'installation
* Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
* Séléctionne la langue souhaitée , puis choisis l'option 1 (Recherche)
* Patiente jusqu'à la fin du scan
* Poste le rapport généré (C:\lopR.txt)
voici le rapport
-----------------------[ Lop S&D 4.2.1-3 XP/Vista ]---------------------
[ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
[ USER : but ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 07/06/2008 | 23:24:52,84 ] [ PC : PC-DE-BUT ]
[ MAJ : 07-06-2008 | 22:15 ]
[ UAC => 0 ]
-------------[ Listing des dossiers dans Application Data ]------------
[31/03/2008|22:07] C:\Users\but\AppData\Roaming\Adobe\Linguistics
[31/03/2008|22:06] C:\Users\but\AppData\Roaming\Adobe\Acrobat
[07/06/2008|12:04] C:\Users\but\AppData\Roaming\CyberLink\PlayMovie
[26/01/2008|14:04] C:\Users\but\AppData\Roaming\CyberLink\PowerProducer
[26/01/2008|14:04] C:\Users\but\AppData\Roaming\CyberLink\PowerDVD
[26/01/2008|14:04] C:\Users\but\AppData\Roaming\CyberLink\MediaCache
[24/01/2008|00:24] C:\Users\but\AppData\Roaming\CyberLink\PowerCinema
[03/06/2008|19:10] C:\Users\but\AppData\Roaming\Google\Local Search History
[08/01/2008|17:35] C:\Users\but\AppData\Roaming\Identities\{9E0A10BE-BEAC-438A-AB5E-E6FB30F0B060}
[18/03/2008|18:02] C:\Users\but\AppData\Roaming\LimeWire\.NetworkShare
[05/02/2008|18:44] C:\Users\but\AppData\Roaming\LimeWire\xml
[05/02/2008|18:16] C:\Users\but\AppData\Roaming\LimeWire\.AppSpecialShare
[05/02/2008|18:16] C:\Users\but\AppData\Roaming\LimeWire\themes
[23/01/2008|22:16] C:\Users\but\AppData\Roaming\Macromedia\Flash Player
[03/06/2008|00:13] C:\Users\but\AppData\Roaming\Microsoft\MSN Messenger
[01/06/2008|14:06] C:\Users\but\AppData\Roaming\Microsoft\Installer
[27/05/2008|19:26] C:\Users\but\AppData\Roaming\Microsoft\Windows Photo Gallery
[30/04/2008|20:35] C:\Users\but\AppData\Roaming\Microsoft\Office
[16/04/2008|23:59] C:\Users\but\AppData\Roaming\Microsoft\eHome
[21/02/2008|16:26] C:\Users\but\AppData\Roaming\Microsoft\IdentityCRL
[18/02/2008|13:17] C:\Users\but\AppData\Roaming\Microsoft\Templates
[18/02/2008|12:54] C:\Users\but\AppData\Roaming\Microsoft\Word
[04/02/2008|21:15] C:\Users\but\AppData\Roaming\Microsoft\preuve
[26/01/2008|14:06] C:\Users\but\AppData\Roaming\Microsoft\MMC
[26/01/2008|13:13] C:\Users\but\AppData\Roaming\Microsoft\Internet Explorer
[26/01/2008|12:26] C:\Users\but\AppData\Roaming\Microsoft\Crypto
[26/01/2008|12:15] C:\Users\but\AppData\Roaming\Microsoft\Credentials
[24/01/2008|06:36] C:\Users\but\AppData\Roaming\Microsoft\UProof
[24/01/2008|06:36] C:\Users\but\AppData\Roaming\Microsoft\Proof
[24/01/2008|06:35] C:\Users\but\AppData\Roaming\Microsoft\Document Building Blocks
[24/01/2008|06:35] C:\Users\but\AppData\Roaming\Microsoft\AddIns
[24/01/2008|02:17] C:\Users\but\AppData\Roaming\Microsoft\HTML Help
[08/01/2008|20:43] C:\Users\but\AppData\Roaming\Microsoft\Windows
[08/01/2008|17:35] C:\Users\but\AppData\Roaming\Microsoft\Protect
[08/01/2008|17:35] C:\Users\but\AppData\Roaming\Microsoft\SystemCertificates
[30/03/2008|19:40] C:\Users\but\AppData\Roaming\vlc\cache
----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------
[07/06/2008 23:22][--ah-----] C:\Windows\tasks\SA.DAT
[07/06/2008 23:20][--a------] C:\Windows\tasks\SCHEDLGU.TXT
------[ Listing des dossiers dans C:\ProgramData ]------
[26/07/2007|03:43] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[07/06/2008|17:26] C:\ProgramData\64SoftwareSoftware.1vvjdrs
[07/06/2008|22:19] C:\ProgramData\64SoftwareSoftware.3oo9l2j
[07/06/2008|17:26] C:\ProgramData\64SoftwareSoftware.6cn1dv
[07/06/2008|18:40] C:\ProgramData\64SoftwareSoftware.a6vq7
[18/02/2008|16:42] C:\ProgramData\64SoftwareSoftware.avprx
[07/06/2008|21:13] C:\ProgramData\64SoftwareSoftware.bo8wpw9
[01/05/2008|11:11] C:\ProgramData\64SoftwareSoftware.fix3wr
[07/06/2008|22:40] C:\ProgramData\64SoftwareSoftware.gdo4w
[07/06/2008|21:35] C:\ProgramData\64SoftwareSoftware.imk3og
[30/03/2008|11:38] C:\ProgramData\64SoftwareSoftware.j5ofrx4
[26/01/2008|15:53] C:\ProgramData\64SoftwareSoftware.n7b9zrq
[07/06/2008|19:24] C:\ProgramData\64SoftwareSoftware.nwb6b9w
[07/06/2008|20:29] C:\ProgramData\64SoftwareSoftware.oj7uf
[07/06/2008|20:51] C:\ProgramData\64SoftwareSoftware.p1ygv7
[07/06/2008|21:57] C:\ProgramData\64SoftwareSoftware.q9o5c8
[07/06/2008|18:07] C:\ProgramData\64SoftwareSoftware.s0jfg
[07/06/2008|20:08] C:\ProgramData\64SoftwareSoftware.s203bfq
[07/06/2008|19:46] C:\ProgramData\64SoftwareSoftware.uestd
[07/06/2008|19:02] C:\ProgramData\64SoftwareSoftware.vpj0nt
[07/06/2008|23:02] C:\ProgramData\64SoftwareSoftware.xbj6jee
[26/07/2007|03:54] C:\ProgramData\Adobe
[02/11/2006|14:02] C:\ProgramData\Application Data
[08/01/2008|17:32] C:\ProgramData\Bureau
[26/01/2008|14:04] C:\ProgramData\CyberLink
[07/06/2008|17:27] C:\ProgramData\Dead Barb Bind.zwu24
[02/11/2006|14:02] C:\ProgramData\Desktop
[02/11/2006|14:02] C:\ProgramData\Documents
[08/01/2008|17:32] C:\ProgramData\Favoris
[02/11/2006|14:02] C:\ProgramData\Favorites
[08/01/2008|20:43] C:\ProgramData\Forge of Games
[07/06/2008|17:27] C:\ProgramData\Freelist
[22/05/2008|19:33] C:\ProgramData\Google
[07/06/2008|17:27] C:\ProgramData\Iso Web Bags Else
[07/06/2008|09:45] C:\ProgramData\Lavasoft
[08/01/2008|17:32] C:\ProgramData\Menu D‚marrer
[06/06/2008|00:49] C:\ProgramData\Messenger Plus!
[03/06/2008|23:50] C:\ProgramData\Microsoft
[14/05/2008|19:39] C:\ProgramData\Microsoft Help
[08/01/2008|17:32] C:\ProgramData\ModŠles
[20/02/2008|00:18] C:\ProgramData\pixelStorm
[04/06/2008|20:05] C:\ProgramData\Spybot - Search & Destroy
[02/11/2006|14:02] C:\ProgramData\Start Menu
[26/01/2008|11:21] C:\ProgramData\Symantec
[02/06/2008|14:55] C:\ProgramData\TEMP
[02/11/2006|14:02] C:\ProgramData\Templates
[07/06/2008|16:01] C:\ProgramData\WinZip
[06/06/2008|00:36] C:\ProgramData\WLInstaller
[24/01/2008|18:49] C:\ProgramData\Yahoo! Companion
---------------[ Listing des dossiers dans C:\Program Files ]--------------
[14/09/2007|18:05] C:\Program Files\Acer Arcade Deluxe
[31/05/2008|14:51] C:\Program Files\Acer GameZone
[14/09/2007|18:20] C:\Program Files\Acer Inc
[26/07/2007|03:43] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[26/07/2007|03:54] C:\Program Files\Adobe
[26/01/2008|11:41] C:\Program Files\Alwil Software
[14/09/2007|18:18] C:\Program Files\Apoint2K
[07/06/2008|22:22] C:\Program Files\Common Files
[26/07/2007|02:29] C:\Program Files\CONEXANT
[26/07/2007|03:13] C:\Program Files\CyberLink
[27/01/2008|23:22] C:\Program Files\desktop.ini
[08/01/2008|17:32] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[07/06/2008|17:26] C:\Program Files\Freelist
[28/05/2008|16:47] C:\Program Files\Google
[19/02/2008|16:52] C:\Program Files\InstallShield Installation Information
[10/04/2008|20:54] C:\Program Files\Internet Explorer
[22/05/2008|19:32] C:\Program Files\Java
[14/09/2007|18:04] C:\Program Files\Launch Manager
[05/02/2008|18:14] C:\Program Files\LimeWire
[07/06/2008|16:36] C:\Program Files\Lopxp
[19/02/2008|16:53] C:\Program Files\Maxis
[07/06/2008|21:58] C:\Program Files\Messenger Plus! Live
[27/01/2008|22:11] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[02/11/2006|13:37] C:\Program Files\Microsoft Games
[26/07/2007|03:43] C:\Program Files\Microsoft Office
[06/06/2008|00:43] C:\Program Files\Microsoft SQL Server Compact Edition
[26/07/2007|03:43] C:\Program Files\Microsoft Works
[26/07/2007|03:40] C:\Program Files\Microsoft.NET
[02/11/2006|13:42] C:\Program Files\Movie Maker
[02/11/2006|13:37] C:\Program Files\MSBuild
[02/11/2006|13:37] C:\Program Files\MSN
[06/06/2008|00:25] C:\Program Files\MSN Messenger
[27/01/2008|22:02] C:\Program Files\MSXML 4.0
[01/06/2008|14:05] C:\Program Files\MYLENE
[26/07/2007|03:11] C:\Program Files\NewTech Infosystems
[14/09/2007|18:07] C:\Program Files\Realtek
[02/11/2006|13:37] C:\Program Files\Reference Assemblies
[04/06/2008|19:59] C:\Program Files\Spybot - Search & Destroy
[02/06/2008|20:08] C:\Program Files\Trymedia
[30/03/2008|21:28] C:\Program Files\Ubi Soft
[02/11/2006|14:01] C:\Program Files\Uninstall Information
[30/03/2008|19:38] C:\Program Files\VideoLAN
[27/01/2008|23:18] C:\Program Files\Windows Calendar
[02/11/2006|13:42] C:\Program Files\Windows Collaboration
[26/07/2007|03:19] C:\Program Files\Windows Defender
[02/11/2006|13:42] C:\Program Files\Windows Journal
[07/06/2008|08:30] C:\Program Files\Windows Live
[14/05/2008|19:39] C:\Program Files\Windows Mail
[27/01/2008|23:18] C:\Program Files\Windows Media Player
[08/01/2008|17:32] C:\Program Files\Windows NT
[02/11/2006|13:42] C:\Program Files\Windows Photo Gallery
[27/01/2008|23:18] C:\Program Files\Windows Sidebar
[07/06/2008|16:01] C:\Program Files\WinZip
[08/01/2008|17:35] C:\Program Files\Yahoo!
------[ Listing des dossiers dans C:\Program Files\Common Files ]------
[26/07/2007|03:54] C:\Program Files\Common Files\Adobe
[01/06/2008|14:05] C:\Program Files\Common Files\Crystal Decisions
[26/07/2007|03:40] C:\Program Files\Common Files\DESIGNER
[26/07/2007|03:13] C:\Program Files\Common Files\InstallShield
[05/02/2008|18:10] C:\Program Files\Common Files\Java
[26/07/2007|03:11] C:\Program Files\Common Files\LightScribe
[06/06/2008|00:39] C:\Program Files\Common Files\microsoft shared
[26/07/2007|03:11] C:\Program Files\Common Files\muvee Technologies
[26/07/2007|03:11] C:\Program Files\Common Files\NewTech Infosystems
[26/07/2007|03:49] C:\Program Files\Common Files\Oberon Media
[02/11/2006|12:18] C:\Program Files\Common Files\Services
[02/11/2006|12:18] C:\Program Files\Common Files\SpeechEngines
[26/01/2008|11:22] C:\Program Files\Common Files\Symantec Shared
[26/07/2007|03:19] C:\Program Files\Common Files\System
[06/06/2008|00:39] C:\Program Files\Common Files\WindowsLiveInstaller
---------------------------[ Process ]--------------------------
... 81
iexplore.exe ~ [3264]
iexplore.exe ~ [3704]
----------------------[ Recherche avec S_Lop ]---------------------
C:\ProgramData\Dead Barb Bind.zwu24
C:\ProgramData\Dead Barb Bind.zwu24
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
C:\ProgramData\Iso Web Bags Else
C:\ProgramData\Iso Web Bags Else\Army deaf.exe
C:\Windows\Prefetch\ARMY DEAF.EXE-500F3081.pf
C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@32vegas[1].txt
C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@banner.32vegas[2].txt
----------------------[ Verification du Registre ]----------------------
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
..... OK !
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts PROPRE
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-06-07 23:25:17
Windows 6.0.6000 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
Aucune autre infection trouvée !
[F:1731][D:38]-> C:\Users\but\AppData\Local\Temp
[F:974][D:1]-> C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies
[F:2546][D:12]-> C:\Users\but\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:6][D:2]-> C:\$Recycle.Bin
[ UAC => 1 ]
--------------------[ Fin du rapport a 23:26:01,80 ]----------------------
merci
-----------------------[ Lop S&D 4.2.1-3 XP/Vista ]---------------------
[ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
[ USER : but ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 07/06/2008 | 23:24:52,84 ] [ PC : PC-DE-BUT ]
[ MAJ : 07-06-2008 | 22:15 ]
[ UAC => 0 ]
-------------[ Listing des dossiers dans Application Data ]------------
[31/03/2008|22:07] C:\Users\but\AppData\Roaming\Adobe\Linguistics
[31/03/2008|22:06] C:\Users\but\AppData\Roaming\Adobe\Acrobat
[07/06/2008|12:04] C:\Users\but\AppData\Roaming\CyberLink\PlayMovie
[26/01/2008|14:04] C:\Users\but\AppData\Roaming\CyberLink\PowerProducer
[26/01/2008|14:04] C:\Users\but\AppData\Roaming\CyberLink\PowerDVD
[26/01/2008|14:04] C:\Users\but\AppData\Roaming\CyberLink\MediaCache
[24/01/2008|00:24] C:\Users\but\AppData\Roaming\CyberLink\PowerCinema
[03/06/2008|19:10] C:\Users\but\AppData\Roaming\Google\Local Search History
[08/01/2008|17:35] C:\Users\but\AppData\Roaming\Identities\{9E0A10BE-BEAC-438A-AB5E-E6FB30F0B060}
[18/03/2008|18:02] C:\Users\but\AppData\Roaming\LimeWire\.NetworkShare
[05/02/2008|18:44] C:\Users\but\AppData\Roaming\LimeWire\xml
[05/02/2008|18:16] C:\Users\but\AppData\Roaming\LimeWire\.AppSpecialShare
[05/02/2008|18:16] C:\Users\but\AppData\Roaming\LimeWire\themes
[23/01/2008|22:16] C:\Users\but\AppData\Roaming\Macromedia\Flash Player
[03/06/2008|00:13] C:\Users\but\AppData\Roaming\Microsoft\MSN Messenger
[01/06/2008|14:06] C:\Users\but\AppData\Roaming\Microsoft\Installer
[27/05/2008|19:26] C:\Users\but\AppData\Roaming\Microsoft\Windows Photo Gallery
[30/04/2008|20:35] C:\Users\but\AppData\Roaming\Microsoft\Office
[16/04/2008|23:59] C:\Users\but\AppData\Roaming\Microsoft\eHome
[21/02/2008|16:26] C:\Users\but\AppData\Roaming\Microsoft\IdentityCRL
[18/02/2008|13:17] C:\Users\but\AppData\Roaming\Microsoft\Templates
[18/02/2008|12:54] C:\Users\but\AppData\Roaming\Microsoft\Word
[04/02/2008|21:15] C:\Users\but\AppData\Roaming\Microsoft\preuve
[26/01/2008|14:06] C:\Users\but\AppData\Roaming\Microsoft\MMC
[26/01/2008|13:13] C:\Users\but\AppData\Roaming\Microsoft\Internet Explorer
[26/01/2008|12:26] C:\Users\but\AppData\Roaming\Microsoft\Crypto
[26/01/2008|12:15] C:\Users\but\AppData\Roaming\Microsoft\Credentials
[24/01/2008|06:36] C:\Users\but\AppData\Roaming\Microsoft\UProof
[24/01/2008|06:36] C:\Users\but\AppData\Roaming\Microsoft\Proof
[24/01/2008|06:35] C:\Users\but\AppData\Roaming\Microsoft\Document Building Blocks
[24/01/2008|06:35] C:\Users\but\AppData\Roaming\Microsoft\AddIns
[24/01/2008|02:17] C:\Users\but\AppData\Roaming\Microsoft\HTML Help
[08/01/2008|20:43] C:\Users\but\AppData\Roaming\Microsoft\Windows
[08/01/2008|17:35] C:\Users\but\AppData\Roaming\Microsoft\Protect
[08/01/2008|17:35] C:\Users\but\AppData\Roaming\Microsoft\SystemCertificates
[30/03/2008|19:40] C:\Users\but\AppData\Roaming\vlc\cache
----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------
[07/06/2008 23:22][--ah-----] C:\Windows\tasks\SA.DAT
[07/06/2008 23:20][--a------] C:\Windows\tasks\SCHEDLGU.TXT
------[ Listing des dossiers dans C:\ProgramData ]------
[26/07/2007|03:43] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[07/06/2008|17:26] C:\ProgramData\64SoftwareSoftware.1vvjdrs
[07/06/2008|22:19] C:\ProgramData\64SoftwareSoftware.3oo9l2j
[07/06/2008|17:26] C:\ProgramData\64SoftwareSoftware.6cn1dv
[07/06/2008|18:40] C:\ProgramData\64SoftwareSoftware.a6vq7
[18/02/2008|16:42] C:\ProgramData\64SoftwareSoftware.avprx
[07/06/2008|21:13] C:\ProgramData\64SoftwareSoftware.bo8wpw9
[01/05/2008|11:11] C:\ProgramData\64SoftwareSoftware.fix3wr
[07/06/2008|22:40] C:\ProgramData\64SoftwareSoftware.gdo4w
[07/06/2008|21:35] C:\ProgramData\64SoftwareSoftware.imk3og
[30/03/2008|11:38] C:\ProgramData\64SoftwareSoftware.j5ofrx4
[26/01/2008|15:53] C:\ProgramData\64SoftwareSoftware.n7b9zrq
[07/06/2008|19:24] C:\ProgramData\64SoftwareSoftware.nwb6b9w
[07/06/2008|20:29] C:\ProgramData\64SoftwareSoftware.oj7uf
[07/06/2008|20:51] C:\ProgramData\64SoftwareSoftware.p1ygv7
[07/06/2008|21:57] C:\ProgramData\64SoftwareSoftware.q9o5c8
[07/06/2008|18:07] C:\ProgramData\64SoftwareSoftware.s0jfg
[07/06/2008|20:08] C:\ProgramData\64SoftwareSoftware.s203bfq
[07/06/2008|19:46] C:\ProgramData\64SoftwareSoftware.uestd
[07/06/2008|19:02] C:\ProgramData\64SoftwareSoftware.vpj0nt
[07/06/2008|23:02] C:\ProgramData\64SoftwareSoftware.xbj6jee
[26/07/2007|03:54] C:\ProgramData\Adobe
[02/11/2006|14:02] C:\ProgramData\Application Data
[08/01/2008|17:32] C:\ProgramData\Bureau
[26/01/2008|14:04] C:\ProgramData\CyberLink
[07/06/2008|17:27] C:\ProgramData\Dead Barb Bind.zwu24
[02/11/2006|14:02] C:\ProgramData\Desktop
[02/11/2006|14:02] C:\ProgramData\Documents
[08/01/2008|17:32] C:\ProgramData\Favoris
[02/11/2006|14:02] C:\ProgramData\Favorites
[08/01/2008|20:43] C:\ProgramData\Forge of Games
[07/06/2008|17:27] C:\ProgramData\Freelist
[22/05/2008|19:33] C:\ProgramData\Google
[07/06/2008|17:27] C:\ProgramData\Iso Web Bags Else
[07/06/2008|09:45] C:\ProgramData\Lavasoft
[08/01/2008|17:32] C:\ProgramData\Menu D‚marrer
[06/06/2008|00:49] C:\ProgramData\Messenger Plus!
[03/06/2008|23:50] C:\ProgramData\Microsoft
[14/05/2008|19:39] C:\ProgramData\Microsoft Help
[08/01/2008|17:32] C:\ProgramData\ModŠles
[20/02/2008|00:18] C:\ProgramData\pixelStorm
[04/06/2008|20:05] C:\ProgramData\Spybot - Search & Destroy
[02/11/2006|14:02] C:\ProgramData\Start Menu
[26/01/2008|11:21] C:\ProgramData\Symantec
[02/06/2008|14:55] C:\ProgramData\TEMP
[02/11/2006|14:02] C:\ProgramData\Templates
[07/06/2008|16:01] C:\ProgramData\WinZip
[06/06/2008|00:36] C:\ProgramData\WLInstaller
[24/01/2008|18:49] C:\ProgramData\Yahoo! Companion
---------------[ Listing des dossiers dans C:\Program Files ]--------------
[14/09/2007|18:05] C:\Program Files\Acer Arcade Deluxe
[31/05/2008|14:51] C:\Program Files\Acer GameZone
[14/09/2007|18:20] C:\Program Files\Acer Inc
[26/07/2007|03:43] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[26/07/2007|03:54] C:\Program Files\Adobe
[26/01/2008|11:41] C:\Program Files\Alwil Software
[14/09/2007|18:18] C:\Program Files\Apoint2K
[07/06/2008|22:22] C:\Program Files\Common Files
[26/07/2007|02:29] C:\Program Files\CONEXANT
[26/07/2007|03:13] C:\Program Files\CyberLink
[27/01/2008|23:22] C:\Program Files\desktop.ini
[08/01/2008|17:32] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[07/06/2008|17:26] C:\Program Files\Freelist
[28/05/2008|16:47] C:\Program Files\Google
[19/02/2008|16:52] C:\Program Files\InstallShield Installation Information
[10/04/2008|20:54] C:\Program Files\Internet Explorer
[22/05/2008|19:32] C:\Program Files\Java
[14/09/2007|18:04] C:\Program Files\Launch Manager
[05/02/2008|18:14] C:\Program Files\LimeWire
[07/06/2008|16:36] C:\Program Files\Lopxp
[19/02/2008|16:53] C:\Program Files\Maxis
[07/06/2008|21:58] C:\Program Files\Messenger Plus! Live
[27/01/2008|22:11] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[02/11/2006|13:37] C:\Program Files\Microsoft Games
[26/07/2007|03:43] C:\Program Files\Microsoft Office
[06/06/2008|00:43] C:\Program Files\Microsoft SQL Server Compact Edition
[26/07/2007|03:43] C:\Program Files\Microsoft Works
[26/07/2007|03:40] C:\Program Files\Microsoft.NET
[02/11/2006|13:42] C:\Program Files\Movie Maker
[02/11/2006|13:37] C:\Program Files\MSBuild
[02/11/2006|13:37] C:\Program Files\MSN
[06/06/2008|00:25] C:\Program Files\MSN Messenger
[27/01/2008|22:02] C:\Program Files\MSXML 4.0
[01/06/2008|14:05] C:\Program Files\MYLENE
[26/07/2007|03:11] C:\Program Files\NewTech Infosystems
[14/09/2007|18:07] C:\Program Files\Realtek
[02/11/2006|13:37] C:\Program Files\Reference Assemblies
[04/06/2008|19:59] C:\Program Files\Spybot - Search & Destroy
[02/06/2008|20:08] C:\Program Files\Trymedia
[30/03/2008|21:28] C:\Program Files\Ubi Soft
[02/11/2006|14:01] C:\Program Files\Uninstall Information
[30/03/2008|19:38] C:\Program Files\VideoLAN
[27/01/2008|23:18] C:\Program Files\Windows Calendar
[02/11/2006|13:42] C:\Program Files\Windows Collaboration
[26/07/2007|03:19] C:\Program Files\Windows Defender
[02/11/2006|13:42] C:\Program Files\Windows Journal
[07/06/2008|08:30] C:\Program Files\Windows Live
[14/05/2008|19:39] C:\Program Files\Windows Mail
[27/01/2008|23:18] C:\Program Files\Windows Media Player
[08/01/2008|17:32] C:\Program Files\Windows NT
[02/11/2006|13:42] C:\Program Files\Windows Photo Gallery
[27/01/2008|23:18] C:\Program Files\Windows Sidebar
[07/06/2008|16:01] C:\Program Files\WinZip
[08/01/2008|17:35] C:\Program Files\Yahoo!
------[ Listing des dossiers dans C:\Program Files\Common Files ]------
[26/07/2007|03:54] C:\Program Files\Common Files\Adobe
[01/06/2008|14:05] C:\Program Files\Common Files\Crystal Decisions
[26/07/2007|03:40] C:\Program Files\Common Files\DESIGNER
[26/07/2007|03:13] C:\Program Files\Common Files\InstallShield
[05/02/2008|18:10] C:\Program Files\Common Files\Java
[26/07/2007|03:11] C:\Program Files\Common Files\LightScribe
[06/06/2008|00:39] C:\Program Files\Common Files\microsoft shared
[26/07/2007|03:11] C:\Program Files\Common Files\muvee Technologies
[26/07/2007|03:11] C:\Program Files\Common Files\NewTech Infosystems
[26/07/2007|03:49] C:\Program Files\Common Files\Oberon Media
[02/11/2006|12:18] C:\Program Files\Common Files\Services
[02/11/2006|12:18] C:\Program Files\Common Files\SpeechEngines
[26/01/2008|11:22] C:\Program Files\Common Files\Symantec Shared
[26/07/2007|03:19] C:\Program Files\Common Files\System
[06/06/2008|00:39] C:\Program Files\Common Files\WindowsLiveInstaller
---------------------------[ Process ]--------------------------
... 81
iexplore.exe ~ [3264]
iexplore.exe ~ [3704]
----------------------[ Recherche avec S_Lop ]---------------------
C:\ProgramData\Dead Barb Bind.zwu24
C:\ProgramData\Dead Barb Bind.zwu24
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
C:\ProgramData\Iso Web Bags Else
C:\ProgramData\Iso Web Bags Else\Army deaf.exe
C:\Windows\Prefetch\ARMY DEAF.EXE-500F3081.pf
C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@32vegas[1].txt
C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@banner.32vegas[2].txt
----------------------[ Verification du Registre ]----------------------
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
..... OK !
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts PROPRE
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-06-07 23:25:17
Windows 6.0.6000 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
Aucune autre infection trouvée !
[F:1731][D:38]-> C:\Users\but\AppData\Local\Temp
[F:974][D:1]-> C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies
[F:2546][D:12]-> C:\Users\but\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:6][D:2]-> C:\$Recycle.Bin
[ UAC => 1 ]
--------------------[ Fin du rapport a 23:26:01,80 ]----------------------
merci
Relance Lop S&D
* Choisis cette fois ci l'Option 2 (Suppression)
* Ne ferme pas la fenêtre lors de la suppression !
* Poste le rapport généré (C:\lopR.txt)
(Si le Bureau ne réapparaît pas, presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide)
* Choisis cette fois ci l'Option 2 (Suppression)
* Ne ferme pas la fenêtre lors de la suppression !
* Poste le rapport généré (C:\lopR.txt)
(Si le Bureau ne réapparaît pas, presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide)
voici le rapport
-----------------------[ Lop S&D 4.2.1-3 XP/Vista ]---------------------
[ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
[ USER : but ] [ "C:\Lop SD" ] [ Selection : 2 ]
[ 07/06/2008 | 23:37:42,79 ] [ PC : PC-DE-BUT ]
[ MAJ : 07-06-2008 | 22:15 ]
[ UAC => 0 ]
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////
Supprimé! - C:\ProgramData\Iso Web Bags Else\Army deaf.exe
Supprimé! - C:\Windows\Prefetch\ARMY DEAF.EXE-500F3081.pf
Supprimé! - C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@32vegas[1].txt
Supprimé! - C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@banner.32vegas[2].txt
Supprimé! - C:\ProgramData\Dead Barb Bind.zwu24
Supprimé! - C:\ProgramData\Iso Web Bags Else
//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
-------------[ Listing des dossiers dans Application Data ]------------
[31/03/2008|22:07] C:\Users\but\AppData\Roaming\Adobe\Linguistics
[31/03/2008|22:06] C:\Users\but\AppData\Roaming\Adobe\Acrobat
[07/06/2008|12:04] C:\Users\but\AppData\Roaming\CyberLink\PlayMovie
[26/01/2008|14:04] C:\Users\but\AppData\Roaming\CyberLink\PowerProducer
[26/01/2008|14:04] C:\Users\but\AppData\Roaming\CyberLink\PowerDVD
[26/01/2008|14:04] C:\Users\but\AppData\Roaming\CyberLink\MediaCache
[24/01/2008|00:24] C:\Users\but\AppData\Roaming\CyberLink\PowerCinema
[03/06/2008|19:10] C:\Users\but\AppData\Roaming\Google\Local Search History
[08/01/2008|17:35] C:\Users\but\AppData\Roaming\Identities\{9E0A10BE-BEAC-438A-AB5E-E6FB30F0B060}
[18/03/2008|18:02] C:\Users\but\AppData\Roaming\LimeWire\.NetworkShare
[05/02/2008|18:44] C:\Users\but\AppData\Roaming\LimeWire\xml
[05/02/2008|18:16] C:\Users\but\AppData\Roaming\LimeWire\.AppSpecialShare
[05/02/2008|18:16] C:\Users\but\AppData\Roaming\LimeWire\themes
[23/01/2008|22:16] C:\Users\but\AppData\Roaming\Macromedia\Flash Player
[03/06/2008|00:13] C:\Users\but\AppData\Roaming\Microsoft\MSN Messenger
[01/06/2008|14:06] C:\Users\but\AppData\Roaming\Microsoft\Installer
[27/05/2008|19:26] C:\Users\but\AppData\Roaming\Microsoft\Windows Photo Gallery
[30/04/2008|20:35] C:\Users\but\AppData\Roaming\Microsoft\Office
[16/04/2008|23:59] C:\Users\but\AppData\Roaming\Microsoft\eHome
[21/02/2008|16:26] C:\Users\but\AppData\Roaming\Microsoft\IdentityCRL
[18/02/2008|13:17] C:\Users\but\AppData\Roaming\Microsoft\Templates
[18/02/2008|12:54] C:\Users\but\AppData\Roaming\Microsoft\Word
[04/02/2008|21:15] C:\Users\but\AppData\Roaming\Microsoft\preuve
[26/01/2008|14:06] C:\Users\but\AppData\Roaming\Microsoft\MMC
[26/01/2008|13:13] C:\Users\but\AppData\Roaming\Microsoft\Internet Explorer
[26/01/2008|12:26] C:\Users\but\AppData\Roaming\Microsoft\Crypto
[26/01/2008|12:15] C:\Users\but\AppData\Roaming\Microsoft\Credentials
[24/01/2008|06:36] C:\Users\but\AppData\Roaming\Microsoft\UProof
[24/01/2008|06:36] C:\Users\but\AppData\Roaming\Microsoft\Proof
[24/01/2008|06:35] C:\Users\but\AppData\Roaming\Microsoft\Document Building Blocks
[24/01/2008|06:35] C:\Users\but\AppData\Roaming\Microsoft\AddIns
[24/01/2008|02:17] C:\Users\but\AppData\Roaming\Microsoft\HTML Help
[08/01/2008|20:43] C:\Users\but\AppData\Roaming\Microsoft\Windows
[08/01/2008|17:35] C:\Users\but\AppData\Roaming\Microsoft\Protect
[08/01/2008|17:35] C:\Users\but\AppData\Roaming\Microsoft\SystemCertificates
[30/03/2008|19:40] C:\Users\but\AppData\Roaming\vlc\cache
----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------
[07/06/2008 23:37][--ah-----] C:\Windows\tasks\SA.DAT
[07/06/2008 23:33][--a------] C:\Windows\tasks\SCHEDLGU.TXT
------[ Listing des dossiers dans C:\ProgramData ]------
[26/07/2007|03:43] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[07/06/2008|17:26] C:\ProgramData\64SoftwareSoftware.1vvjdrs
[07/06/2008|22:19] C:\ProgramData\64SoftwareSoftware.3oo9l2j
[07/06/2008|17:26] C:\ProgramData\64SoftwareSoftware.6cn1dv
[07/06/2008|18:40] C:\ProgramData\64SoftwareSoftware.a6vq7
[18/02/2008|16:42] C:\ProgramData\64SoftwareSoftware.avprx
[07/06/2008|21:13] C:\ProgramData\64SoftwareSoftware.bo8wpw9
[01/05/2008|11:11] C:\ProgramData\64SoftwareSoftware.fix3wr
[07/06/2008|22:40] C:\ProgramData\64SoftwareSoftware.gdo4w
[07/06/2008|21:35] C:\ProgramData\64SoftwareSoftware.imk3og
[30/03/2008|11:38] C:\ProgramData\64SoftwareSoftware.j5ofrx4
[26/01/2008|15:53] C:\ProgramData\64SoftwareSoftware.n7b9zrq
[07/06/2008|19:24] C:\ProgramData\64SoftwareSoftware.nwb6b9w
[07/06/2008|20:29] C:\ProgramData\64SoftwareSoftware.oj7uf
[07/06/2008|20:51] C:\ProgramData\64SoftwareSoftware.p1ygv7
[07/06/2008|21:57] C:\ProgramData\64SoftwareSoftware.q9o5c8
[07/06/2008|18:07] C:\ProgramData\64SoftwareSoftware.s0jfg
[07/06/2008|20:08] C:\ProgramData\64SoftwareSoftware.s203bfq
[07/06/2008|19:46] C:\ProgramData\64SoftwareSoftware.uestd
[07/06/2008|19:02] C:\ProgramData\64SoftwareSoftware.vpj0nt
[07/06/2008|23:02] C:\ProgramData\64SoftwareSoftware.xbj6jee
[26/07/2007|03:54] C:\ProgramData\Adobe
[02/11/2006|14:02] C:\ProgramData\Application Data
[08/01/2008|17:32] C:\ProgramData\Bureau
[26/01/2008|14:04] C:\ProgramData\CyberLink
[02/11/2006|14:02] C:\ProgramData\Desktop
[02/11/2006|14:02] C:\ProgramData\Documents
[08/01/2008|17:32] C:\ProgramData\Favoris
[02/11/2006|14:02] C:\ProgramData\Favorites
[08/01/2008|20:43] C:\ProgramData\Forge of Games
[07/06/2008|17:27] C:\ProgramData\Freelist
[22/05/2008|19:33] C:\ProgramData\Google
[07/06/2008|09:45] C:\ProgramData\Lavasoft
[08/01/2008|17:32] C:\ProgramData\Menu D‚marrer
[06/06/2008|00:49] C:\ProgramData\Messenger Plus!
[03/06/2008|23:50] C:\ProgramData\Microsoft
[14/05/2008|19:39] C:\ProgramData\Microsoft Help
[08/01/2008|17:32] C:\ProgramData\ModŠles
[20/02/2008|00:18] C:\ProgramData\pixelStorm
[04/06/2008|20:05] C:\ProgramData\Spybot - Search & Destroy
[02/11/2006|14:02] C:\ProgramData\Start Menu
[26/01/2008|11:21] C:\ProgramData\Symantec
[02/06/2008|14:55] C:\ProgramData\TEMP
[02/11/2006|14:02] C:\ProgramData\Templates
[07/06/2008|16:01] C:\ProgramData\WinZip
[06/06/2008|00:36] C:\ProgramData\WLInstaller
[24/01/2008|18:49] C:\ProgramData\Yahoo! Companion
---------------[ Listing des dossiers dans C:\Program Files ]--------------
[14/09/2007|18:05] C:\Program Files\Acer Arcade Deluxe
[31/05/2008|14:51] C:\Program Files\Acer GameZone
[14/09/2007|18:20] C:\Program Files\Acer Inc
[26/07/2007|03:43] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[26/07/2007|03:54] C:\Program Files\Adobe
[26/01/2008|11:41] C:\Program Files\Alwil Software
[14/09/2007|18:18] C:\Program Files\Apoint2K
[07/06/2008|22:22] C:\Program Files\Common Files
[26/07/2007|02:29] C:\Program Files\CONEXANT
[26/07/2007|03:13] C:\Program Files\CyberLink
[27/01/2008|23:22] C:\Program Files\desktop.ini
[08/01/2008|17:32] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[07/06/2008|17:26] C:\Program Files\Freelist
[28/05/2008|16:47] C:\Program Files\Google
[19/02/2008|16:52] C:\Program Files\InstallShield Installation Information
[10/04/2008|20:54] C:\Program Files\Internet Explorer
[22/05/2008|19:32] C:\Program Files\Java
[14/09/2007|18:04] C:\Program Files\Launch Manager
[05/02/2008|18:14] C:\Program Files\LimeWire
[07/06/2008|16:36] C:\Program Files\Lopxp
[19/02/2008|16:53] C:\Program Files\Maxis
[07/06/2008|21:58] C:\Program Files\Messenger Plus! Live
[27/01/2008|22:11] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[02/11/2006|13:37] C:\Program Files\Microsoft Games
[26/07/2007|03:43] C:\Program Files\Microsoft Office
[06/06/2008|00:43] C:\Program Files\Microsoft SQL Server Compact Edition
[26/07/2007|03:43] C:\Program Files\Microsoft Works
[26/07/2007|03:40] C:\Program Files\Microsoft.NET
[02/11/2006|13:42] C:\Program Files\Movie Maker
[02/11/2006|13:37] C:\Program Files\MSBuild
[02/11/2006|13:37] C:\Program Files\MSN
[06/06/2008|00:25] C:\Program Files\MSN Messenger
[27/01/2008|22:02] C:\Program Files\MSXML 4.0
[01/06/2008|14:05] C:\Program Files\MYLENE
[26/07/2007|03:11] C:\Program Files\NewTech Infosystems
[14/09/2007|18:07] C:\Program Files\Realtek
[02/11/2006|13:37] C:\Program Files\Reference Assemblies
[04/06/2008|19:59] C:\Program Files\Spybot - Search & Destroy
[02/06/2008|20:08] C:\Program Files\Trymedia
[30/03/2008|21:28] C:\Program Files\Ubi Soft
[02/11/2006|14:01] C:\Program Files\Uninstall Information
[30/03/2008|19:38] C:\Program Files\VideoLAN
[27/01/2008|23:18] C:\Program Files\Windows Calendar
[02/11/2006|13:42] C:\Program Files\Windows Collaboration
[26/07/2007|03:19] C:\Program Files\Windows Defender
[02/11/2006|13:42] C:\Program Files\Windows Journal
[07/06/2008|08:30] C:\Program Files\Windows Live
[14/05/2008|19:39] C:\Program Files\Windows Mail
[27/01/2008|23:18] C:\Program Files\Windows Media Player
[08/01/2008|17:32] C:\Program Files\Windows NT
[02/11/2006|13:42] C:\Program Files\Windows Photo Gallery
[27/01/2008|23:18] C:\Program Files\Windows Sidebar
[07/06/2008|16:01] C:\Program Files\WinZip
[08/01/2008|17:35] C:\Program Files\Yahoo!
------[ Listing des dossiers dans C:\Program Files\Common Files ]------
[26/07/2007|03:54] C:\Program Files\Common Files\Adobe
[01/06/2008|14:05] C:\Program Files\Common Files\Crystal Decisions
[26/07/2007|03:40] C:\Program Files\Common Files\DESIGNER
[26/07/2007|03:13] C:\Program Files\Common Files\InstallShield
[05/02/2008|18:10] C:\Program Files\Common Files\Java
[26/07/2007|03:11] C:\Program Files\Common Files\LightScribe
[06/06/2008|00:39] C:\Program Files\Common Files\microsoft shared
[26/07/2007|03:11] C:\Program Files\Common Files\muvee Technologies
[26/07/2007|03:11] C:\Program Files\Common Files\NewTech Infosystems
[26/07/2007|03:49] C:\Program Files\Common Files\Oberon Media
[02/11/2006|12:18] C:\Program Files\Common Files\Services
[02/11/2006|12:18] C:\Program Files\Common Files\SpeechEngines
[26/01/2008|11:22] C:\Program Files\Common Files\Symantec Shared
[26/07/2007|03:19] C:\Program Files\Common Files\System
[06/06/2008|00:39] C:\Program Files\Common Files\WindowsLiveInstaller
---------------------------[ Process ]--------------------------
... 78
iexplore.exe ~ [5724]
----------------------[ Recherche avec S_Lop ]---------------------
Aucun fichier / dossier Lop trouvé !
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
Aucun fichier / dossier Lop trouvé !
----------------------[ Verification du Registre ]----------------------
..... OK !
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts PROPRE
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-06-07 23:38:34
Windows 6.0.6000 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
Aucune autre infection trouvée !
[F:1723][D:38]-> C:\Users\but\AppData\Local\Temp
[F:972][D:1]-> C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies
[F:2577][D:12]-> C:\Users\but\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:6][D:2]-> C:\$Recycle.Bin
[ UAC => 1 ]
--------------------[ Fin du rapport a 23:42:16,40 ]----------------------
merci
-----------------------[ Lop S&D 4.2.1-3 XP/Vista ]---------------------
[ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
[ USER : but ] [ "C:\Lop SD" ] [ Selection : 2 ]
[ 07/06/2008 | 23:37:42,79 ] [ PC : PC-DE-BUT ]
[ MAJ : 07-06-2008 | 22:15 ]
[ UAC => 0 ]
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////
Supprimé! - C:\ProgramData\Iso Web Bags Else\Army deaf.exe
Supprimé! - C:\Windows\Prefetch\ARMY DEAF.EXE-500F3081.pf
Supprimé! - C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@32vegas[1].txt
Supprimé! - C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies\but@banner.32vegas[2].txt
Supprimé! - C:\ProgramData\Dead Barb Bind.zwu24
Supprimé! - C:\ProgramData\Iso Web Bags Else
//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
-------------[ Listing des dossiers dans Application Data ]------------
[31/03/2008|22:07] C:\Users\but\AppData\Roaming\Adobe\Linguistics
[31/03/2008|22:06] C:\Users\but\AppData\Roaming\Adobe\Acrobat
[07/06/2008|12:04] C:\Users\but\AppData\Roaming\CyberLink\PlayMovie
[26/01/2008|14:04] C:\Users\but\AppData\Roaming\CyberLink\PowerProducer
[26/01/2008|14:04] C:\Users\but\AppData\Roaming\CyberLink\PowerDVD
[26/01/2008|14:04] C:\Users\but\AppData\Roaming\CyberLink\MediaCache
[24/01/2008|00:24] C:\Users\but\AppData\Roaming\CyberLink\PowerCinema
[03/06/2008|19:10] C:\Users\but\AppData\Roaming\Google\Local Search History
[08/01/2008|17:35] C:\Users\but\AppData\Roaming\Identities\{9E0A10BE-BEAC-438A-AB5E-E6FB30F0B060}
[18/03/2008|18:02] C:\Users\but\AppData\Roaming\LimeWire\.NetworkShare
[05/02/2008|18:44] C:\Users\but\AppData\Roaming\LimeWire\xml
[05/02/2008|18:16] C:\Users\but\AppData\Roaming\LimeWire\.AppSpecialShare
[05/02/2008|18:16] C:\Users\but\AppData\Roaming\LimeWire\themes
[23/01/2008|22:16] C:\Users\but\AppData\Roaming\Macromedia\Flash Player
[03/06/2008|00:13] C:\Users\but\AppData\Roaming\Microsoft\MSN Messenger
[01/06/2008|14:06] C:\Users\but\AppData\Roaming\Microsoft\Installer
[27/05/2008|19:26] C:\Users\but\AppData\Roaming\Microsoft\Windows Photo Gallery
[30/04/2008|20:35] C:\Users\but\AppData\Roaming\Microsoft\Office
[16/04/2008|23:59] C:\Users\but\AppData\Roaming\Microsoft\eHome
[21/02/2008|16:26] C:\Users\but\AppData\Roaming\Microsoft\IdentityCRL
[18/02/2008|13:17] C:\Users\but\AppData\Roaming\Microsoft\Templates
[18/02/2008|12:54] C:\Users\but\AppData\Roaming\Microsoft\Word
[04/02/2008|21:15] C:\Users\but\AppData\Roaming\Microsoft\preuve
[26/01/2008|14:06] C:\Users\but\AppData\Roaming\Microsoft\MMC
[26/01/2008|13:13] C:\Users\but\AppData\Roaming\Microsoft\Internet Explorer
[26/01/2008|12:26] C:\Users\but\AppData\Roaming\Microsoft\Crypto
[26/01/2008|12:15] C:\Users\but\AppData\Roaming\Microsoft\Credentials
[24/01/2008|06:36] C:\Users\but\AppData\Roaming\Microsoft\UProof
[24/01/2008|06:36] C:\Users\but\AppData\Roaming\Microsoft\Proof
[24/01/2008|06:35] C:\Users\but\AppData\Roaming\Microsoft\Document Building Blocks
[24/01/2008|06:35] C:\Users\but\AppData\Roaming\Microsoft\AddIns
[24/01/2008|02:17] C:\Users\but\AppData\Roaming\Microsoft\HTML Help
[08/01/2008|20:43] C:\Users\but\AppData\Roaming\Microsoft\Windows
[08/01/2008|17:35] C:\Users\but\AppData\Roaming\Microsoft\Protect
[08/01/2008|17:35] C:\Users\but\AppData\Roaming\Microsoft\SystemCertificates
[30/03/2008|19:40] C:\Users\but\AppData\Roaming\vlc\cache
----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------
[07/06/2008 23:37][--ah-----] C:\Windows\tasks\SA.DAT
[07/06/2008 23:33][--a------] C:\Windows\tasks\SCHEDLGU.TXT
------[ Listing des dossiers dans C:\ProgramData ]------
[26/07/2007|03:43] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[07/06/2008|17:26] C:\ProgramData\64SoftwareSoftware.1vvjdrs
[07/06/2008|22:19] C:\ProgramData\64SoftwareSoftware.3oo9l2j
[07/06/2008|17:26] C:\ProgramData\64SoftwareSoftware.6cn1dv
[07/06/2008|18:40] C:\ProgramData\64SoftwareSoftware.a6vq7
[18/02/2008|16:42] C:\ProgramData\64SoftwareSoftware.avprx
[07/06/2008|21:13] C:\ProgramData\64SoftwareSoftware.bo8wpw9
[01/05/2008|11:11] C:\ProgramData\64SoftwareSoftware.fix3wr
[07/06/2008|22:40] C:\ProgramData\64SoftwareSoftware.gdo4w
[07/06/2008|21:35] C:\ProgramData\64SoftwareSoftware.imk3og
[30/03/2008|11:38] C:\ProgramData\64SoftwareSoftware.j5ofrx4
[26/01/2008|15:53] C:\ProgramData\64SoftwareSoftware.n7b9zrq
[07/06/2008|19:24] C:\ProgramData\64SoftwareSoftware.nwb6b9w
[07/06/2008|20:29] C:\ProgramData\64SoftwareSoftware.oj7uf
[07/06/2008|20:51] C:\ProgramData\64SoftwareSoftware.p1ygv7
[07/06/2008|21:57] C:\ProgramData\64SoftwareSoftware.q9o5c8
[07/06/2008|18:07] C:\ProgramData\64SoftwareSoftware.s0jfg
[07/06/2008|20:08] C:\ProgramData\64SoftwareSoftware.s203bfq
[07/06/2008|19:46] C:\ProgramData\64SoftwareSoftware.uestd
[07/06/2008|19:02] C:\ProgramData\64SoftwareSoftware.vpj0nt
[07/06/2008|23:02] C:\ProgramData\64SoftwareSoftware.xbj6jee
[26/07/2007|03:54] C:\ProgramData\Adobe
[02/11/2006|14:02] C:\ProgramData\Application Data
[08/01/2008|17:32] C:\ProgramData\Bureau
[26/01/2008|14:04] C:\ProgramData\CyberLink
[02/11/2006|14:02] C:\ProgramData\Desktop
[02/11/2006|14:02] C:\ProgramData\Documents
[08/01/2008|17:32] C:\ProgramData\Favoris
[02/11/2006|14:02] C:\ProgramData\Favorites
[08/01/2008|20:43] C:\ProgramData\Forge of Games
[07/06/2008|17:27] C:\ProgramData\Freelist
[22/05/2008|19:33] C:\ProgramData\Google
[07/06/2008|09:45] C:\ProgramData\Lavasoft
[08/01/2008|17:32] C:\ProgramData\Menu D‚marrer
[06/06/2008|00:49] C:\ProgramData\Messenger Plus!
[03/06/2008|23:50] C:\ProgramData\Microsoft
[14/05/2008|19:39] C:\ProgramData\Microsoft Help
[08/01/2008|17:32] C:\ProgramData\ModŠles
[20/02/2008|00:18] C:\ProgramData\pixelStorm
[04/06/2008|20:05] C:\ProgramData\Spybot - Search & Destroy
[02/11/2006|14:02] C:\ProgramData\Start Menu
[26/01/2008|11:21] C:\ProgramData\Symantec
[02/06/2008|14:55] C:\ProgramData\TEMP
[02/11/2006|14:02] C:\ProgramData\Templates
[07/06/2008|16:01] C:\ProgramData\WinZip
[06/06/2008|00:36] C:\ProgramData\WLInstaller
[24/01/2008|18:49] C:\ProgramData\Yahoo! Companion
---------------[ Listing des dossiers dans C:\Program Files ]--------------
[14/09/2007|18:05] C:\Program Files\Acer Arcade Deluxe
[31/05/2008|14:51] C:\Program Files\Acer GameZone
[14/09/2007|18:20] C:\Program Files\Acer Inc
[26/07/2007|03:43] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[26/07/2007|03:54] C:\Program Files\Adobe
[26/01/2008|11:41] C:\Program Files\Alwil Software
[14/09/2007|18:18] C:\Program Files\Apoint2K
[07/06/2008|22:22] C:\Program Files\Common Files
[26/07/2007|02:29] C:\Program Files\CONEXANT
[26/07/2007|03:13] C:\Program Files\CyberLink
[27/01/2008|23:22] C:\Program Files\desktop.ini
[08/01/2008|17:32] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[07/06/2008|17:26] C:\Program Files\Freelist
[28/05/2008|16:47] C:\Program Files\Google
[19/02/2008|16:52] C:\Program Files\InstallShield Installation Information
[10/04/2008|20:54] C:\Program Files\Internet Explorer
[22/05/2008|19:32] C:\Program Files\Java
[14/09/2007|18:04] C:\Program Files\Launch Manager
[05/02/2008|18:14] C:\Program Files\LimeWire
[07/06/2008|16:36] C:\Program Files\Lopxp
[19/02/2008|16:53] C:\Program Files\Maxis
[07/06/2008|21:58] C:\Program Files\Messenger Plus! Live
[27/01/2008|22:11] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[02/11/2006|13:37] C:\Program Files\Microsoft Games
[26/07/2007|03:43] C:\Program Files\Microsoft Office
[06/06/2008|00:43] C:\Program Files\Microsoft SQL Server Compact Edition
[26/07/2007|03:43] C:\Program Files\Microsoft Works
[26/07/2007|03:40] C:\Program Files\Microsoft.NET
[02/11/2006|13:42] C:\Program Files\Movie Maker
[02/11/2006|13:37] C:\Program Files\MSBuild
[02/11/2006|13:37] C:\Program Files\MSN
[06/06/2008|00:25] C:\Program Files\MSN Messenger
[27/01/2008|22:02] C:\Program Files\MSXML 4.0
[01/06/2008|14:05] C:\Program Files\MYLENE
[26/07/2007|03:11] C:\Program Files\NewTech Infosystems
[14/09/2007|18:07] C:\Program Files\Realtek
[02/11/2006|13:37] C:\Program Files\Reference Assemblies
[04/06/2008|19:59] C:\Program Files\Spybot - Search & Destroy
[02/06/2008|20:08] C:\Program Files\Trymedia
[30/03/2008|21:28] C:\Program Files\Ubi Soft
[02/11/2006|14:01] C:\Program Files\Uninstall Information
[30/03/2008|19:38] C:\Program Files\VideoLAN
[27/01/2008|23:18] C:\Program Files\Windows Calendar
[02/11/2006|13:42] C:\Program Files\Windows Collaboration
[26/07/2007|03:19] C:\Program Files\Windows Defender
[02/11/2006|13:42] C:\Program Files\Windows Journal
[07/06/2008|08:30] C:\Program Files\Windows Live
[14/05/2008|19:39] C:\Program Files\Windows Mail
[27/01/2008|23:18] C:\Program Files\Windows Media Player
[08/01/2008|17:32] C:\Program Files\Windows NT
[02/11/2006|13:42] C:\Program Files\Windows Photo Gallery
[27/01/2008|23:18] C:\Program Files\Windows Sidebar
[07/06/2008|16:01] C:\Program Files\WinZip
[08/01/2008|17:35] C:\Program Files\Yahoo!
------[ Listing des dossiers dans C:\Program Files\Common Files ]------
[26/07/2007|03:54] C:\Program Files\Common Files\Adobe
[01/06/2008|14:05] C:\Program Files\Common Files\Crystal Decisions
[26/07/2007|03:40] C:\Program Files\Common Files\DESIGNER
[26/07/2007|03:13] C:\Program Files\Common Files\InstallShield
[05/02/2008|18:10] C:\Program Files\Common Files\Java
[26/07/2007|03:11] C:\Program Files\Common Files\LightScribe
[06/06/2008|00:39] C:\Program Files\Common Files\microsoft shared
[26/07/2007|03:11] C:\Program Files\Common Files\muvee Technologies
[26/07/2007|03:11] C:\Program Files\Common Files\NewTech Infosystems
[26/07/2007|03:49] C:\Program Files\Common Files\Oberon Media
[02/11/2006|12:18] C:\Program Files\Common Files\Services
[02/11/2006|12:18] C:\Program Files\Common Files\SpeechEngines
[26/01/2008|11:22] C:\Program Files\Common Files\Symantec Shared
[26/07/2007|03:19] C:\Program Files\Common Files\System
[06/06/2008|00:39] C:\Program Files\Common Files\WindowsLiveInstaller
---------------------------[ Process ]--------------------------
... 78
iexplore.exe ~ [5724]
----------------------[ Recherche avec S_Lop ]---------------------
Aucun fichier / dossier Lop trouvé !
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
Aucun fichier / dossier Lop trouvé !
----------------------[ Verification du Registre ]----------------------
..... OK !
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts PROPRE
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-06-07 23:38:34
Windows 6.0.6000 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
Aucune autre infection trouvée !
[F:1723][D:38]-> C:\Users\but\AppData\Local\Temp
[F:972][D:1]-> C:\Users\but\AppData\Roaming\MICROS~1\Windows\Cookies
[F:2577][D:12]-> C:\Users\but\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:6][D:2]-> C:\$Recycle.Bin
[ UAC => 1 ]
--------------------[ Fin du rapport a 23:42:16,40 ]----------------------
merci
c'est bon
tu vas dans le menu Démarrer
tu clique sur panneau de configuration
tu choisi le module ajout/suppression de programmes
soit tu désinstalle messenger plus! ou tout simplement le sponsor
tu vérifie et tu supprime les programmes suivants si présents:
+ Cid help
+ Circle Developement
+ Adverts
bonne soirée et bonne nuit
gil
tu vas dans le menu Démarrer
tu clique sur panneau de configuration
tu choisi le module ajout/suppression de programmes
soit tu désinstalle messenger plus! ou tout simplement le sponsor
tu vérifie et tu supprime les programmes suivants si présents:
+ Cid help
+ Circle Developement
+ Adverts
bonne soirée et bonne nuit
gil
J atten la reponse merci beaucoup