Rapport Hijackthis
Coukou
-
Coukou -
Coukou -
Bonjour,
L'ordinateur sur lequels je suis actuellement a un soucis de fenêtres intempestives CiD, j'ai donc ,télécharger Hijackthis, et voici le rapport :
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:17:11, on 10/06/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16643)
Boot mode: Normal
Running processes:
C:\Windows\System32\smss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\Ati2evxx.exe
C:\Windows\System32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\Ati2evxx.exe
C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
C:\Program Files\ATK Hotkey\ASLDRSrv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\ATKGFNEX\GFNEXSrv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\ASUS\Asus MultiFrame\MultiFrame.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Windows\system32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\ATK Hotkey\Hcontrol.exe
C:\Program Files\ATKOSD2\ATKOSD2.exe
C:\Program Files\Wireless Console 2\wcourier.exe
C:\Program Files\P4G\BatteryLife.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\ASUS\Splendid\ACMON.exe
C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAANOTIF.EXE
C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Windows\system32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Windows\System32\ACEngSvr.exe
C:\Program Files\ATK Hotkey\ATKOSD.exe
C:\Program Files\Spyware Doctor\pctsAuxs.exe
C:\Program Files\Spyware Doctor\pctsSvc.exe
C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
C:\Program Files\Spyware Doctor\pctsTray.exe
C:\Windows\system32\svchost.exe
C:\Program Files\ATK Hotkey\KBFiltr.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Windows\System32\alg.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\ASUS\ASUS Live Update\ALU.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\ASUS\ATK Media\DMedia.exe
C:\Program Files\P4P\P4P.exe
C:\Windows\ASScrPro.exe
C:\Windows\System32\oopmagentts.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpobnz08.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposol08.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\Program Files\Club-Internet\Lanceur\lanceur.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\OpenOffice.org 2.3\program\soffice.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\PROGRA~1\INCRED~1\bin\ImApp.exe
C:\Program Files\OpenOffice.org 2.3\program\soffice.BIN
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpoSTS08.exe
C:\Program Files\IncrediMail\bin\IncMail.exe
C:\PROGRA~1\INCRED~1\bin\ImNotfy.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Windows\system32\conime.exe
C:\Windows\explorer.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://actus.sfr.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.asus.com/fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {9CB65206-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL
O1 - Hosts: ::1 localhost
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Ask Search Assistant BHO - {9CB65201-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O2 - BHO: Ask Toolbar BHO - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL
O3 - Toolbar: Ask Toolbar - {FE063DB9-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Skytel] Skytel.exe
O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
O4 - HKLM\..\Run: [SMSERIAL] C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Media\DMEDIA.EXE
O4 - HKLM\..\Run: [PowerForPhone] "C:\Program Files\P4P\P4P.exe"
O4 - HKLM\..\Run: [ASUS Camera ScreenSaver] C:\Windows\ASScrProlog.exe
O4 - HKLM\..\Run: [ASUS Screen Saver Protector] C:\Windows\ASScrPro.exe
O4 - HKLM\..\Run: [ooquickpdfv7] "C:\Windows\system32\oopmagentts.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [RestartNeroSetup] "E:\Installation\Setupx.exe"
O4 - HKLM\..\Run: [Share-to-Web Namespace Daemon] C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [ISTray] "C:\Program Files\Spyware Doctor\pctsTray.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [locks tick title proc] "C:\ProgramData\plan 16 ford.mgv972"
O4 - HKCU\..\Run: [exitonce] "C:\ProgramData\CORN SURF SURF.511il"
O4 - HKCU\..\Run: [dog about manager team] "C:\ProgramData\Slow Style Find.1qvbwel"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Startup: Club Internet.lnk = C:\Program Files\Club-Internet\Lanceur\lanceur.exe
O4 - Startup: OpenOffice.org 2.3.lnk = C:\Program Files\OpenOffice.org 2.3\program\quickstart.exe
O4 - Global Startup: hp psc 2000 Series.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpobnz08.exe
O4 - Global Startup: OFFICE One Startup v7.lnk = ?
O4 - Global Startup: officejet 6100.lnk = ?
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O13 - Gopher Prefix:
O17 - HKLM\System\CCS\Services\Tcpip\..\{64AC9A9E-055B-4B35-AAC6-17AA27D400FC}: NameServer = 80.10.246.2,80.10.246.129
O17 - HKLM\System\CCS\Services\Tcpip\..\{EBD3D036-2666-47F8-B075-C69D9E041C3D}: NameServer = 194.117.200.10,194.117.200.15
O23 - Service: ADSM Service (ADSMService) - Unknown owner - C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
O23 - Service: ASLDR Service (ASLDRService) - Unknown owner - C:\Program Files\ATK Hotkey\ASLDRSrv.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - Unknown owner - C:\Program Files\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
L'ordinateur sur lequels je suis actuellement a un soucis de fenêtres intempestives CiD, j'ai donc ,télécharger Hijackthis, et voici le rapport :
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:17:11, on 10/06/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16643)
Boot mode: Normal
Running processes:
C:\Windows\System32\smss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\Ati2evxx.exe
C:\Windows\System32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\Ati2evxx.exe
C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
C:\Program Files\ATK Hotkey\ASLDRSrv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\ATKGFNEX\GFNEXSrv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\ASUS\Asus MultiFrame\MultiFrame.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Windows\system32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\ATK Hotkey\Hcontrol.exe
C:\Program Files\ATKOSD2\ATKOSD2.exe
C:\Program Files\Wireless Console 2\wcourier.exe
C:\Program Files\P4G\BatteryLife.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\ASUS\Splendid\ACMON.exe
C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAANOTIF.EXE
C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Windows\system32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Windows\System32\ACEngSvr.exe
C:\Program Files\ATK Hotkey\ATKOSD.exe
C:\Program Files\Spyware Doctor\pctsAuxs.exe
C:\Program Files\Spyware Doctor\pctsSvc.exe
C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
C:\Program Files\Spyware Doctor\pctsTray.exe
C:\Windows\system32\svchost.exe
C:\Program Files\ATK Hotkey\KBFiltr.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Windows\System32\alg.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\ASUS\ASUS Live Update\ALU.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\ASUS\ATK Media\DMedia.exe
C:\Program Files\P4P\P4P.exe
C:\Windows\ASScrPro.exe
C:\Windows\System32\oopmagentts.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpobnz08.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposol08.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\Program Files\Club-Internet\Lanceur\lanceur.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\OpenOffice.org 2.3\program\soffice.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\PROGRA~1\INCRED~1\bin\ImApp.exe
C:\Program Files\OpenOffice.org 2.3\program\soffice.BIN
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpoSTS08.exe
C:\Program Files\IncrediMail\bin\IncMail.exe
C:\PROGRA~1\INCRED~1\bin\ImNotfy.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Windows\system32\conime.exe
C:\Windows\explorer.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://actus.sfr.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.asus.com/fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {9CB65206-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL
O1 - Hosts: ::1 localhost
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Ask Search Assistant BHO - {9CB65201-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O2 - BHO: Ask Toolbar BHO - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL
O3 - Toolbar: Ask Toolbar - {FE063DB9-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Skytel] Skytel.exe
O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
O4 - HKLM\..\Run: [SMSERIAL] C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Media\DMEDIA.EXE
O4 - HKLM\..\Run: [PowerForPhone] "C:\Program Files\P4P\P4P.exe"
O4 - HKLM\..\Run: [ASUS Camera ScreenSaver] C:\Windows\ASScrProlog.exe
O4 - HKLM\..\Run: [ASUS Screen Saver Protector] C:\Windows\ASScrPro.exe
O4 - HKLM\..\Run: [ooquickpdfv7] "C:\Windows\system32\oopmagentts.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [RestartNeroSetup] "E:\Installation\Setupx.exe"
O4 - HKLM\..\Run: [Share-to-Web Namespace Daemon] C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [ISTray] "C:\Program Files\Spyware Doctor\pctsTray.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [locks tick title proc] "C:\ProgramData\plan 16 ford.mgv972"
O4 - HKCU\..\Run: [exitonce] "C:\ProgramData\CORN SURF SURF.511il"
O4 - HKCU\..\Run: [dog about manager team] "C:\ProgramData\Slow Style Find.1qvbwel"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Startup: Club Internet.lnk = C:\Program Files\Club-Internet\Lanceur\lanceur.exe
O4 - Startup: OpenOffice.org 2.3.lnk = C:\Program Files\OpenOffice.org 2.3\program\quickstart.exe
O4 - Global Startup: hp psc 2000 Series.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpobnz08.exe
O4 - Global Startup: OFFICE One Startup v7.lnk = ?
O4 - Global Startup: officejet 6100.lnk = ?
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O13 - Gopher Prefix:
O17 - HKLM\System\CCS\Services\Tcpip\..\{64AC9A9E-055B-4B35-AAC6-17AA27D400FC}: NameServer = 80.10.246.2,80.10.246.129
O17 - HKLM\System\CCS\Services\Tcpip\..\{EBD3D036-2666-47F8-B075-C69D9E041C3D}: NameServer = 194.117.200.10,194.117.200.15
O23 - Service: ADSM Service (ADSMService) - Unknown owner - C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe
O23 - Service: ASLDR Service (ASLDRService) - Unknown owner - C:\Program Files\ATK Hotkey\ASLDRSrv.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - Unknown owner - C:\Program Files\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
A voir également:
- Rapport Hijackthis
- Hijackthis - Télécharger - Antivirus & Antimalwares
- Plan rapport de stage - Guide
- Rapport de crash windows - Guide
- Impression rapport de stage ✓ - Forum Word
- Modifier rapport d'échelle pdf xchange viewer ✓ - Forum PDF
2 réponses
Salut fais ceci:
Télécharge lopS&D.exe sur ton bureau (Clique-droit sur le lien > Enregister la cible du lien sous)
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
Désactive ton antivirus au cas où (tu pourras le réactiver après la fin du scan)
Double-clique sur lopSD pour lancer l'installation
Une fois installé, double-clique Lop S&D
Sélectionne la langue en appuyant sur la touche F, puis choisis l'option 1 (Recherche)
Si lopSD te demande de redémarrer accepte et attends la fin du scan.
Copie/colle le contenu du rapport qui se situe à la racine du DD C:\lopR.txt
Télécharge lopS&D.exe sur ton bureau (Clique-droit sur le lien > Enregister la cible du lien sous)
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
Désactive ton antivirus au cas où (tu pourras le réactiver après la fin du scan)
Double-clique sur lopSD pour lancer l'installation
Une fois installé, double-clique Lop S&D
Sélectionne la langue en appuyant sur la touche F, puis choisis l'option 1 (Recherche)
Si lopSD te demande de redémarrer accepte et attends la fin du scan.
Copie/colle le contenu du rapport qui se situe à la racine du DD C:\lopR.txt
Ok mets a jour tous tes logiciels de sécurité (Avast, Pc Tools, et autre si j'en ai oublier).
Ok désinstalle PcTools et installe Malwarebytes' Anti-Malware.
1) Télécharge Malwarebytes' Anti-Malware.
*Télécharge et installe Malwarebyte's Anti-Malware
*http://www.commentcamarche.net/telecharger/telechargement 34055379 malwarebyte s anti malware
*A la fin de l'installation, veille à ce que l'option « mettre a jour Malwarebyte's Anti-Malware » soit cochée. >>> clique sur OK
*Lance Malwarebyte's Anti-Malware en double-cliquant sur l'icône sur ton Bureau.
*Au premier lancement, une fenêtre t'annonce que la version est Free >>> clique sur OK
*Laisse les Mises à jour se télécharger
*** Referme le programme ***
1) Télécharge Malwarebytes' Anti-Malware.
*Télécharge et installe Malwarebyte's Anti-Malware
*http://www.commentcamarche.net/telecharger/telechargement 34055379 malwarebyte s anti malware
*A la fin de l'installation, veille à ce que l'option « mettre a jour Malwarebyte's Anti-Malware » soit cochée. >>> clique sur OK
*Lance Malwarebyte's Anti-Malware en double-cliquant sur l'icône sur ton Bureau.
*Au premier lancement, une fenêtre t'annonce que la version est Free >>> clique sur OK
*Laisse les Mises à jour se télécharger
*** Referme le programme ***
-----------------------[ Lop S&D 4.2.1-3 XP/Vista ]---------------------
[ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
[ USER : Val‚rie ROISSARD ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 10/06/2008 | 20:39:14,58 ] [ PC : PC-DE-VALRIE ]
[ MAJ : 07-06-2008 | 22:15 ]
[ UAC => 0 ]
-------------[ Listing des dossiers dans Application Data ]------------
[26/02/2008|14:50] C:\Users\VALRIE~1\AppData\Roaming\Adobe\Flash Player
[28/12/2007|12:33] C:\Users\VALRIE~1\AppData\Roaming\Adobe\Linguistics
[15/12/2007|14:03] C:\Users\VALRIE~1\AppData\Roaming\Adobe\Acrobat
[15/12/2007|17:34] C:\Users\VALRIE~1\AppData\Roaming\Ahead\Nero BackItUp
[15/12/2007|14:04] C:\Users\VALRIE~1\AppData\Roaming\ATI\ACE
[07/01/2008|09:09] C:\Users\VALRIE~1\AppData\Roaming\Google\Local Search History
[15/12/2007|18:15] C:\Users\VALRIE~1\AppData\Roaming\Google\GoogleEarth
[15/12/2007|14:03] C:\Users\VALRIE~1\AppData\Roaming\Identities\{C889E3D0-B813-4BF9-9E9A-6107FC3D7716}
[15/12/2007|13:56] C:\Users\VALRIE~1\AppData\Roaming\InstallShield\ISEngine12.0
[26/12/2007|16:14] C:\Users\VALRIE~1\AppData\Roaming\Intel\Wireless
[15/12/2007|18:13] C:\Users\VALRIE~1\AppData\Roaming\Macromedia\Flash Player
[15/12/2007|17:29] C:\Users\VALRIE~1\AppData\Roaming\Macromedia\Shockwave Player
[05/03/2008|16:47] C:\Users\VALRIE~1\AppData\Roaming\Microsoft\MSN Messenger
[19/01/2008|15:51] C:\Users\VALRIE~1\AppData\Roaming\Microsoft\IdentityCRL
[05/01/2008|20:58] C:\Users\VALRIE~1\AppData\Roaming\Microsoft\MMC
[26/12/2007|16:37] C:\Users\VALRIE~1\AppData\Roaming\Microsoft\Office
[26/12/2007|16:37] C:\Users\VALRIE~1\AppData\Roaming\Microsoft\Excel
[25/12/2007|20:28] C:\Users\VALRIE~1\AppData\Roaming\Microsoft\Windows
[25/12/2007|20:26] C:\Users\VALRIE~1\AppData\Roaming\Microsoft\eHome
[17/12/2007|20:05] C:\Users\VALRIE~1\AppData\Roaming\Microsoft\Document Building Blocks
[17/12/2007|20:05] C:\Users\VALRIE~1\AppData\Roaming\Microsoft\Word
[15/12/2007|17:45] C:\Users\VALRIE~1\AppData\Roaming\Microsoft\HTML Help
[15/12/2007|16:56] C:\Users\VALRIE~1\AppData\Roaming\Microsoft\Installer
[15/12/2007|16:06] C:\Users\VALRIE~1\AppData\Roaming\Microsoft\Internet Explorer
[15/12/2007|14:27] C:\Users\VALRIE~1\AppData\Roaming\Microsoft\Outlook
[15/12/2007|14:22] C:\Users\VALRIE~1\AppData\Roaming\Microsoft\Network
[15/12/2007|14:09] C:\Users\VALRIE~1\AppData\Roaming\Microsoft\Templates
[15/12/2007|14:09] C:\Users\VALRIE~1\AppData\Roaming\Microsoft\AddIns
[15/12/2007|14:04] C:\Users\VALRIE~1\AppData\Roaming\Microsoft\SystemCertificates
[15/12/2007|13:56] C:\Users\VALRIE~1\AppData\Roaming\Microsoft\Protect
[15/12/2007|13:56] C:\Users\VALRIE~1\AppData\Roaming\Microsoft\Crypto
[15/12/2007|13:54] C:\Users\VALRIE~1\AppData\Roaming\Microsoft\Credentials
[04/04/2008|11:37] C:\Users\VALRIE~1\AppData\Roaming\OFFICE One v7\OFFICE One Notes v7
[15/12/2007|17:53] C:\Users\VALRIE~1\AppData\Roaming\OFFICE One v7\OFFICE One Startup v7
[15/12/2007|17:25] C:\Users\VALRIE~1\AppData\Roaming\OFFICE One v7\OFFICE One Menu v7
[15/12/2007|17:21] C:\Users\VALRIE~1\AppData\Roaming\OFFICE One v7\OFFICE One Safety-Box v7
[15/12/2007|17:39] C:\Users\VALRIE~1\AppData\Roaming\OFFICEOne7\user
[19/03/2008|21:37] C:\Users\VALRIE~1\AppData\Roaming\OpenOffice.org2\user
[12/03/2008|18:16] C:\Users\VALRIE~1\AppData\Roaming\PC Tools\Spyware Doctor
----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------
[04/06/2008 20:15][--a------] C:\Windows\tasks\Norton Security Scan.job
[10/06/2008 17:15][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{FAF6604A-11F4-4F1C-9118-E042FBA6DB24}.job
[10/06/2008 20:38][--ah-----] C:\Windows\tasks\SA.DAT
[10/06/2008 20:37][--a------] C:\Windows\tasks\SCHEDLGU.TXT
------[ Listing des dossiers dans C:\ProgramData ]------
[19/01/2008|15:40] C:\ProgramData\Adobe
[07/05/2008|19:41] C:\ProgramData\Apple
[07/05/2008|19:44] C:\ProgramData\Apple Computer
[02/11/2006|15:02] C:\ProgramData\Application Data
[26/12/2007|15:29] C:\ProgramData\ASUS
[06/05/2008|15:23] C:\ProgramData\bags readme locks tick
[15/12/2007|17:14] C:\ProgramData\Ciel
[06/05/2008|15:23] C:\ProgramData\CORN SURF SURF.2b79n
[31/05/2008|11:35] C:\ProgramData\CORN SURF SURF.511il
[31/05/2008|11:35] C:\ProgramData\CORN SURF SURF.clsl5
[17/01/2008|11:36] C:\ProgramData\CORN SURF SURF.jqtjc
[08/05/2008|14:41] C:\ProgramData\CORN SURF SURF.qft9v
[26/02/2008|20:32] C:\ProgramData\CORN SURF SURF.rc8gtz
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[31/05/2008|11:36] C:\ProgramData\Drv Audio Dog About
[02/11/2006|15:02] C:\ProgramData\Favorites
[15/12/2007|18:14] C:\ProgramData\Google
[10/06/2008|17:22] C:\ProgramData\Google Updater
[16/11/2007|09:08] C:\ProgramData\Intel
[31/05/2008|11:36] C:\ProgramData\Itchcashpure
[15/12/2007|17:50] C:\ProgramData\LUUnInstall.LiveUpdate
[17/01/2008|18:32] C:\ProgramData\Messenger Plus!
[15/12/2007|17:45] C:\ProgramData\Microsoft
[29/12/2007|12:53] C:\ProgramData\Microsoft Help
[15/12/2007|14:29] C:\ProgramData\Motive
[16/11/2007|07:53] C:\ProgramData\Nero
[15/12/2007|17:26] C:\ProgramData\OFFICE One v7
[16/11/2007|09:27] C:\ProgramData\P4G
[31/05/2008|11:36] C:\ProgramData\Slow Style Find.1qvbwel
[02/11/2006|15:02] C:\ProgramData\Start Menu
[15/12/2007|17:51] C:\ProgramData\Symantec
[10/06/2008|20:39] C:\ProgramData\TEMP
[02/11/2006|15:02] C:\ProgramData\Templates
[17/01/2008|11:30] C:\ProgramData\WLInstaller
---------------[ Listing des dossiers dans C:\Program Files ]--------------
[19/01/2008|15:39] C:\Program Files\Adobe
[15/12/2007|17:19] C:\Program Files\Alwil Software
[07/05/2008|19:41] C:\Program Files\Apple Software Update
[15/12/2007|17:32] C:\Program Files\AskTBar
[15/12/2007|16:56] C:\Program Files\ASUS
[16/11/2007|08:34] C:\Program Files\ATI
[16/11/2007|08:37] C:\Program Files\ATI Technologies
[16/11/2007|08:39] C:\Program Files\ATK Hotkey
[16/11/2007|09:21] C:\Program Files\ATKGFNEX
[16/11/2007|08:40] C:\Program Files\ATKOSD2
[15/12/2007|17:14] C:\Program Files\Ciel
[17/01/2008|11:36] C:\Program Files\Circle Developement
[15/12/2007|16:15] C:\Program Files\Club-Internet
[19/03/2008|21:29] C:\Program Files\Common Files
[16/11/2007|09:00] C:\Program Files\CSR
[15/12/2007|21:43] C:\Program Files\desktop.ini
[12/03/2008|18:11] C:\Program Files\Google
[29/12/2007|18:23] C:\Program Files\Hewlett-Packard
[15/12/2007|16:47] C:\Program Files\IncrediMail
[29/12/2007|18:30] C:\Program Files\InstallShield Installation Information
[16/11/2007|09:06] C:\Program Files\Intel
[10/04/2008|12:19] C:\Program Files\Internet Explorer
[15/12/2007|17:30] C:\Program Files\ISSENDIS
[19/03/2008|21:31] C:\Program Files\Java
[08/05/2008|14:41] C:\Program Files\Messenger Plus! Live
[02/11/2006|14:37] C:\Program Files\Microsoft Games
[26/01/2008|14:32] C:\Program Files\Microsoft Office
[16/11/2007|09:06] C:\Program Files\Motorola
[18/04/2007|11:24] C:\Program Files\Movie Maker
[02/11/2006|14:37] C:\Program Files\MSBuild
[26/01/2008|14:31] C:\Program Files\MSECache
[02/11/2006|14:37] C:\Program Files\MSN
[18/04/2007|10:43] C:\Program Files\MSXML 4.0
[16/11/2007|07:53] C:\Program Files\Nero
[04/06/2008|18:00] C:\Program Files\Norton Security Scan
[19/03/2008|21:22] C:\Program Files\OFFICE One 7.0
[19/03/2008|21:26] C:\Program Files\OFFICE One v7
[19/03/2008|21:32] C:\Program Files\OpenOffice.org 2.3
[16/11/2007|09:27] C:\Program Files\P4G
[16/11/2007|09:28] C:\Program Files\P4P
[07/05/2008|19:45] C:\Program Files\QuickTime
[18/01/2008|15:47] C:\Program Files\Radmin Viewer 3
[29/12/2007|18:31] C:\Program Files\ReadIris
[16/11/2007|08:52] C:\Program Files\Realtek
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[10/06/2008|17:37] C:\Program Files\Spyware Doctor
[15/12/2007|17:49] C:\Program Files\Symantec
[16/11/2007|09:20] C:\Program Files\Synaptics
[10/06/2008|20:16] C:\Program Files\Trend Micro
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[15/12/2007|21:38] C:\Program Files\Windows Calendar
[18/04/2007|11:24] C:\Program Files\Windows Collaboration
[16/11/2007|09:34] C:\Program Files\Windows Defender
[18/04/2007|11:24] C:\Program Files\Windows Journal
[17/01/2008|11:33] C:\Program Files\Windows Live
[15/05/2008|08:09] C:\Program Files\Windows Mail
[15/12/2007|21:38] C:\Program Files\Windows Media Player
[02/11/2006|14:37] C:\Program Files\Windows NT
[18/04/2007|11:24] C:\Program Files\Windows Photo Gallery
[10/01/2008|18:22] C:\Program Files\Windows Sidebar
[16/11/2007|08:59] C:\Program Files\Wireless Console 2
------[ Listing des dossiers dans C:\Program Files\Common Files ]------
[19/01/2008|15:40] C:\Program Files\Common Files\Adobe
[15/12/2007|17:35] C:\Program Files\Common Files\Ahead
[15/12/2007|17:14] C:\Program Files\Common Files\Ciel
[29/12/2007|18:26] C:\Program Files\Common Files\Hewlett-Packard
[15/12/2007|17:13] C:\Program Files\Common Files\InstallShield
[19/03/2008|21:29] C:\Program Files\Common Files\Java
[16/11/2007|07:55] C:\Program Files\Common Files\LightScribe
[26/01/2008|14:32] C:\Program Files\Common Files\microsoft shared
[15/12/2007|17:14] C:\Program Files\Common Files\MSSoap
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[06/06/2008|08:58] C:\Program Files\Common Files\Symantec Shared
[29/12/2007|12:49] C:\Program Files\Common Files\System
[17/01/2008|11:32] C:\Program Files\Common Files\WindowsLiveInstaller
---------------------------[ Process ]--------------------------
... 94
iexplore.exe ~ [3656]
iexplore.exe ~ [3680]
----------------------[ Recherche avec S_Lop ]---------------------
C:\ProgramData\CORN SURF SURF.2b79n
C:\ProgramData\CORN SURF SURF.511il
C:\ProgramData\CORN SURF SURF.clsl5
C:\ProgramData\CORN SURF SURF.jqtjc
C:\ProgramData\CORN SURF SURF.qft9v
C:\ProgramData\CORN SURF SURF.rc8gtz
C:\ProgramData\Slow Style Find.1qvbwel
C:\ProgramData\CORN SURF SURF.511il
C:\ProgramData\CORN SURF SURF.jqtjc
C:\ProgramData\CORN SURF SURF.rc8gtz
C:\ProgramData\Slow Style Find.1qvbwel
C:\Users\VALRIE~1\AppData\Local\Temp\bis252C.exe
C:\Users\VALRIE~1\AppData\Local\Temp\bisFA2A.exe
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
C:\ProgramData\bags readme locks tick
C:\ProgramData\Drv Audio Dog About
C:\ProgramData\Drv Audio Dog About\Plus Site.exe
C:\Program Files\Circle Developement
C:\Program Files\Circle Developement\Uninstall.exe
C:\Windows\Prefetch\PLUS SITE.EXE-E5B263C5.pf
C:\Users\VALRIE~1\AppData\Roaming\MICROS~1\Windows\Cookies\val‚rie_roissard@www.adserver5[1].txt
C:\Users\VALRIE~1\AppData\Roaming\MICROS~1\Windows\Cookies\val‚rie_roissard@banner.cotedazurpalace[2].txt
C:\Users\VALRIE~1\AppData\Roaming\MICROS~1\Windows\Cookies\val‚rie_roissard@cotedazurpalace[1].txt
C:\Users\VALRIE~1\AppData\Roaming\MICROS~1\Windows\Cookies\val‚rie_roissard@adopt.euroclick[2].txt
----------------------[ Verification du Registre ]----------------------
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
..... OK !
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts PROPRE
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-06-10 20:42:00
Windows 6.0.6000 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
Aucune autre infection trouvée !
[F:6996][D:72]-> C:\Users\VALRIE~1\AppData\Local\Temp
[F:199][D:1]-> C:\Users\VALRIE~1\AppData\Roaming\MICROS~1\Windows\Cookies
[F:521][D:4]-> C:\Users\VALRIE~1\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:47][D:1]-> C:\$Recycle.Bin
[ UAC => 1 ]
--------------------[ Fin du rapport a 20:44:25,27 ]----------------------
-----------------------[ Lop S&D 4.2.1-3 XP/Vista ]---------------------
[ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
[ USER : Val‚rie ROISSARD ] [ "C:\Lop SD" ] [ Selection : 2 ]
[ 10/06/2008 | 20:55:09,81 ] [ PC : PC-DE-VALRIE ]
[ MAJ : 07-06-2008 | 22:15 ]
[ UAC => 0 ]
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////
Echec ! - C:\ProgramData\Drv Audio Dog About\Plus Site.exe
Supprimé! - C:\Program Files\Circle Developement\Uninstall.exe
Supprimé! - C:\Windows\Prefetch\PLUS SITE.EXE-E5B263C5.pf
Supprimé! - C:\Users\VALRIE~1\AppData\Roaming\MICROS~1\Windows\Cookies\val‚rie_roissard@www.adserver5[1].txt
Supprimé! - C:\Users\VALRIE~1\AppData\Roaming\MICROS~1\Windows\Cookies\val‚rie_roissard@banner.cotedazurpalace[2].txt
Supprimé! - C:\Users\VALRIE~1\AppData\Roaming\MICROS~1\Windows\Cookies\val‚rie_roissard@cotedazurpalace[1].txt
Supprimé! - C:\Users\VALRIE~1\AppData\Roaming\MICROS~1\Windows\Cookies\val‚rie_roissard@adopt.euroclick[2].txt
Supprimé! - C:\ProgramData\CORN SURF SURF.2b79n
Supprimé! - C:\ProgramData\CORN SURF SURF.511il
Supprimé! - C:\ProgramData\CORN SURF SURF.clsl5
Supprimé! - C:\ProgramData\CORN SURF SURF.jqtjc
Supprimé! - C:\ProgramData\CORN SURF SURF.qft9v
Supprimé! - C:\ProgramData\CORN SURF SURF.rc8gtz
Supprimé! - C:\ProgramData\Slow Style Find.1qvbwel
Supprimé! - C:\Users\VALRIE~1\AppData\Local\Temp\bis252C.exe
Supprimé! - C:\Users\VALRIE~1\AppData\Local\Temp\bisFA2A.exe
Supprimé! - C:\ProgramData\bags readme locks tick
Echec ! - C:\ProgramData\Drv Audio Dog About
Supprimé! - C:\Program Files\Circle Developement
Restauré! - Fichier Hosts
\\\\\\\\\\\\\\\\\\\\\\\\\\\ DEUXIEME PASSAGE ///////////////////////////
Echec ! - C:\ProgramData\Drv Audio Dog About\Plus Site.exe
Echec ! - C:\ProgramData\Drv Audio Dog About
//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
-------------[ Listing des dossiers dans Application Data ]------------
[26/02/2008|14:50] C:\Users\VALRIE~1\AppData\Roaming\Adobe\Flash Player
[28/12/2007|12:33] C:\Users\VALRIE~1\AppData\Roaming\Adobe\Linguistics
[15/12/2007|14:03] C:\Users\VALRIE~1\AppData\Roaming\Adobe\Acrobat
[15/12/2007|17:34] C:\Users\VALRIE~1\AppData\Roaming\Ahead\Nero BackItUp
[15/12/2007|14:04] C:\Users\VALRIE~1\AppData\Roaming\ATI\ACE
[07/01/2008|09:09] C:\Users\VALRIE~1\AppData\Roaming\Google\Local Search History
[15/12/2007|18:15] C:\Users\VALRIE~1\AppData\Roaming\Google\GoogleEarth
[15/12/2007|14:03] C:\Users\VALRIE~1\AppData\Roaming\Identities\{C889E3D0-B813-4BF9-9E9A-6107FC3D7716}
[15/12/2007|13:56] C:\Users\VALRIE~1\AppData\Roaming\InstallShield\ISEngine12.0
[26/12/2007|16:14] C:\Users\VALRIE~1\AppData\Roaming\Intel\Wireless
[15/12/2007|18:13] C:\Users\VALRIE~1\AppData\Roaming\Macromedia\Flash Player
[15/12/2007|17:29] C:\Users\VALRIE~1\AppData\Roaming\Macromedia\Shockwave Player
[05/03/2008|16:47] C:\Users\VALRIE~1\AppData\Roaming\Microsoft\MSN Messenger
[19/01/2008|15:51] C:\Users\VALRIE~1\AppData\Roaming\Microsoft\IdentityCRL
[05/01/2008|20:58] C:\Users\VALRIE~1\AppData\Roaming\Microsoft\MMC
[26/12/2007|16:37] C:\Users\VALRIE~1\AppData\Roaming\Microsoft\Office
[26/12/2007|16:37] C:\Users\VALRIE~1\AppData\Roaming\Microsoft\Excel
[25/12/2007|20:28] C:\Users\VALRIE~1\AppData\Roaming\Microsoft\Windows
[25/12/2007|20:26] C:\Users\VALRIE~1\AppData\Roaming\Microsoft\eHome
[17/12/2007|20:05] C:\Users\VALRIE~1\AppData\Roaming\Microsoft\Document Building Blocks
[17/12/2007|20:05] C:\Users\VALRIE~1\AppData\Roaming\Microsoft\Word
[15/12/2007|17:45] C:\Users\VALRIE~1\AppData\Roaming\Microsoft\HTML Help
[15/12/2007|16:56] C:\Users\VALRIE~1\AppData\Roaming\Microsoft\Installer
[15/12/2007|16:06] C:\Users\VALRIE~1\AppData\Roaming\Microsoft\Internet Explorer
[15/12/2007|14:27] C:\Users\VALRIE~1\AppData\Roaming\Microsoft\Outlook
[15/12/2007|14:22] C:\Users\VALRIE~1\AppData\Roaming\Microsoft\Network
[15/12/2007|14:09] C:\Users\VALRIE~1\AppData\Roaming\Microsoft\Templates
[15/12/2007|14:09] C:\Users\VALRIE~1\AppData\Roaming\Microsoft\AddIns
[15/12/2007|14:04] C:\Users\VALRIE~1\AppData\Roaming\Microsoft\SystemCertificates
[15/12/2007|13:56] C:\Users\VALRIE~1\AppData\Roaming\Microsoft\Protect
[15/12/2007|13:56] C:\Users\VALRIE~1\AppData\Roaming\Microsoft\Crypto
[15/12/2007|13:54] C:\Users\VALRIE~1\AppData\Roaming\Microsoft\Credentials
[04/04/2008|11:37] C:\Users\VALRIE~1\AppData\Roaming\OFFICE One v7\OFFICE One Notes v7
[15/12/2007|17:53] C:\Users\VALRIE~1\AppData\Roaming\OFFICE One v7\OFFICE One Startup v7
[15/12/2007|17:25] C:\Users\VALRIE~1\AppData\Roaming\OFFICE One v7\OFFICE One Menu v7
[15/12/2007|17:21] C:\Users\VALRIE~1\AppData\Roaming\OFFICE One v7\OFFICE One Safety-Box v7
[15/12/2007|17:39] C:\Users\VALRIE~1\AppData\Roaming\OFFICEOne7\user
[19/03/2008|21:37] C:\Users\VALRIE~1\AppData\Roaming\OpenOffice.org2\user
[12/03/2008|18:16] C:\Users\VALRIE~1\AppData\Roaming\PC Tools\Spyware Doctor
----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------
[04/06/2008 20:15][--a------] C:\Windows\tasks\Norton Security Scan.job
[10/06/2008 17:15][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{FAF6604A-11F4-4F1C-9118-E042FBA6DB24}.job
[10/06/2008 20:54][--ah-----] C:\Windows\tasks\SA.DAT
[10/06/2008 20:53][--a------] C:\Windows\tasks\SCHEDLGU.TXT
------[ Listing des dossiers dans C:\ProgramData ]------
[19/01/2008|15:40] C:\ProgramData\Adobe
[07/05/2008|19:41] C:\ProgramData\Apple
[07/05/2008|19:44] C:\ProgramData\Apple Computer
[02/11/2006|15:02] C:\ProgramData\Application Data
[26/12/2007|15:29] C:\ProgramData\ASUS
[15/12/2007|17:14] C:\ProgramData\Ciel
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[31/05/2008|11:36] C:\ProgramData\Drv Audio Dog About
[02/11/2006|15:02] C:\ProgramData\Favorites
[15/12/2007|18:14] C:\ProgramData\Google
[10/06/2008|17:22] C:\ProgramData\Google Updater
[16/11/2007|09:08] C:\ProgramData\Intel
[31/05/2008|11:36] C:\ProgramData\Itchcashpure
[15/12/2007|17:50] C:\ProgramData\LUUnInstall.LiveUpdate
[17/01/2008|18:32] C:\ProgramData\Messenger Plus!
[15/12/2007|17:45] C:\ProgramData\Microsoft
[29/12/2007|12:53] C:\ProgramData\Microsoft Help
[15/12/2007|14:29] C:\ProgramData\Motive
[16/11/2007|07:53] C:\ProgramData\Nero
[15/12/2007|17:26] C:\ProgramData\OFFICE One v7
[16/11/2007|09:27] C:\ProgramData\P4G
[02/11/2006|15:02] C:\ProgramData\Start Menu
[15/12/2007|17:51] C:\ProgramData\Symantec
[10/06/2008|20:54] C:\ProgramData\TEMP
[02/11/2006|15:02] C:\ProgramData\Templates
[17/01/2008|11:30] C:\ProgramData\WLInstaller
---------------[ Listing des dossiers dans C:\Program Files ]--------------
[19/01/2008|15:39] C:\Program Files\Adobe
[15/12/2007|17:19] C:\Program Files\Alwil Software
[07/05/2008|19:41] C:\Program Files\Apple Software Update
[15/12/2007|17:32] C:\Program Files\AskTBar
[15/12/2007|16:56] C:\Program Files\ASUS
[16/11/2007|08:34] C:\Program Files\ATI
[16/11/2007|08:37] C:\Program Files\ATI Technologies
[16/11/2007|08:39] C:\Program Files\ATK Hotkey
[16/11/2007|09:21] C:\Program Files\ATKGFNEX
[16/11/2007|08:40] C:\Program Files\ATKOSD2
[15/12/2007|17:14] C:\Program Files\Ciel
[15/12/2007|16:15] C:\Program Files\Club-Internet
[19/03/2008|21:29] C:\Program Files\Common Files
[16/11/2007|09:00] C:\Program Files\CSR
[15/12/2007|21:43] C:\Program Files\desktop.ini
[12/03/2008|18:11] C:\Program Files\Google
[29/12/2007|18:23] C:\Program Files\Hewlett-Packard
[15/12/2007|16:47] C:\Program Files\IncrediMail
[29/12/2007|18:30] C:\Program Files\InstallShield Installation Information
[16/11/2007|09:06] C:\Program Files\Intel
[10/04/2008|12:19] C:\Program Files\Internet Explorer
[15/12/2007|17:30] C:\Program Files\ISSENDIS
[19/03/2008|21:31] C:\Program Files\Java
[08/05/2008|14:41] C:\Program Files\Messenger Plus! Live
[02/11/2006|14:37] C:\Program Files\Microsoft Games
[26/01/2008|14:32] C:\Program Files\Microsoft Office
[16/11/2007|09:06] C:\Program Files\Motorola
[18/04/2007|11:24] C:\Program Files\Movie Maker
[02/11/2006|14:37] C:\Program Files\MSBuild
[26/01/2008|14:31] C:\Program Files\MSECache
[02/11/2006|14:37] C:\Program Files\MSN
[18/04/2007|10:43] C:\Program Files\MSXML 4.0
[16/11/2007|07:53] C:\Program Files\Nero
[04/06/2008|18:00] C:\Program Files\Norton Security Scan
[19/03/2008|21:22] C:\Program Files\OFFICE One 7.0
[19/03/2008|21:26] C:\Program Files\OFFICE One v7
[19/03/2008|21:32] C:\Program Files\OpenOffice.org 2.3
[16/11/2007|09:27] C:\Program Files\P4G
[16/11/2007|09:28] C:\Program Files\P4P
[07/05/2008|19:45] C:\Program Files\QuickTime
[18/01/2008|15:47] C:\Program Files\Radmin Viewer 3
[29/12/2007|18:31] C:\Program Files\ReadIris
[16/11/2007|08:52] C:\Program Files\Realtek
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[10/06/2008|17:37] C:\Program Files\Spyware Doctor
[15/12/2007|17:49] C:\Program Files\Symantec
[16/11/2007|09:20] C:\Program Files\Synaptics
[10/06/2008|20:16] C:\Program Files\Trend Micro
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[15/12/2007|21:38] C:\Program Files\Windows Calendar
[18/04/2007|11:24] C:\Program Files\Windows Collaboration
[16/11/2007|09:34] C:\Program Files\Windows Defender
[18/04/2007|11:24] C:\Program Files\Windows Journal
[17/01/2008|11:33] C:\Program Files\Windows Live
[15/05/2008|08:09] C:\Program Files\Windows Mail
[15/12/2007|21:38] C:\Program Files\Windows Media Player
[02/11/2006|14:37] C:\Program Files\Windows NT
[18/04/2007|11:24] C:\Program Files\Windows Photo Gallery
[10/01/2008|18:22] C:\Program Files\Windows Sidebar
[16/11/2007|08:59] C:\Program Files\Wireless Console 2
------[ Listing des dossiers dans C:\Program Files\Common Files ]------
[19/01/2008|15:40] C:\Program Files\Common Files\Adobe
[15/12/2007|17:35] C:\Program Files\Common Files\Ahead
[15/12/2007|17:14] C:\Program Files\Common Files\Ciel
[29/12/2007|18:26] C:\Program Files\Common Files\Hewlett-Packard
[15/12/2007|17:13] C:\Program Files\Common Files\InstallShield
[19/03/2008|21:29] C:\Program Files\Common Files\Java
[16/11/2007|07:55] C:\Program Files\Common Files\LightScribe
[26/01/2008|14:32] C:\Program Files\Common Files\microsoft shared
[15/12/2007|17:14] C:\Program Files\Common Files\MSSoap
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[06/06/2008|08:58] C:\Program Files\Common Files\Symantec Shared
[29/12/2007|12:49] C:\Program Files\Common Files\System
[17/01/2008|11:32] C:\Program Files\Common Files\WindowsLiveInstaller
---------------------------[ Process ]--------------------------
... 96
iexplore.exe ~ [2752]
iexplore.exe ~ [5828]
----------------------[ Recherche avec S_Lop ]---------------------
Aucun fichier / dossier Lop trouvé !
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
C:\ProgramData\Drv Audio Dog About
C:\ProgramData\Drv Audio Dog About\Plus Site.exe
----------------------[ Verification du Registre ]----------------------
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
..... OK !
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts PROPRE
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-06-10 20:57:08
Windows 6.0.6000 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
Aucune autre infection trouvée !
[F:7007][D:71]-> C:\Users\VALRIE~1\AppData\Local\Temp
[F:208][D:1]-> C:\Users\VALRIE~1\AppData\Roaming\MICROS~1\Windows\Cookies
[F:794][D:4]-> C:\Users\VALRIE~1\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:47][D:1]-> C:\$Recycle.Bin
[ UAC => 1 ]
--------------------[ Fin du rapport a 20:59:15,92 ]----------------------
• Vider la corbeille
• Fermer toutes les applications
================NAVILOG====================
* Faire un clic droit sur ce lien : http://perso.orange.fr/il.mafioso/Navifix/Navilog1.zip
* Enregistrez la cible (du lien) sous... et enregistrez-le sur le bureau.
* Faire un clic droit sur navilog1.zip et choisir "tout extraire"
* Double-cliquez sur navilog1.exe
* Arriver au menu principal, choisir l'option 1 et valider.
* Patientez jusqu'au message : Analyse Termine le ...
* Le rapport sera en outre sauvegardé à la racine du disque (fixnavi.txt)
Search Navipromo version 3.5.8 commencé le 10/06/2008 à 21:10:34,89
!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!
!!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!!
Outil exécuté depuis C:\Program Files\navilog1
Session actuelle : "Valérie ROISSARD"
Mise à jour le 06.06.2008 à 18h00 par IL-MAFIOSO
Microsoft Windows Vista 6.0.6000
Internet Explorer : 7.0.6000.16643
Système de fichiers : NTFS
Recherche executé en mode normal
*** Recherche Programmes installés ***
*** Recherche dossiers dans "C:\Windows" ***
*** Recherche dossiers dans "C:\Program Files" ***
*** Recherche dossiers dans "C:\ProgramData" ***
*** Recherche dossiers dans "c:\progra~2\micros~1\windows\startm~1\programs" ***
*** Recherche dossiers dans "c:\users\valrie~1\appdata\roaming\micros~1\windows\startm~1\programs" ***
*** Recherche dossiers dans "C:\Users\Val‚rie ROISSARD\AppData\Local\virtualstore\Program Files" ***
*** Recherche dossiers dans "C:\Users\VALRIE~1\AppData\Roaming" ***
*** Recherche avec Catchme-rootkit/stealth malware detector par gmer ***
pour + d'infos : http://www.gmer.net
Aucun Fichier trouvé
*** Recherche avec GenericNaviSearch ***
!!! Tous ces résultats peuvent révéler des fichiers légitimes !!!
!!! A vérifier impérativement avant toute suppression manuelle !!!
* Recherche dans "C:\Windows\system32" *
* Recherche dans "C:\Users\Val‚rie ROISSARD\AppData\Local\Microsoft" *
* Recherche dans "C:\Users\Val‚rie ROISSARD\AppData\Local\virtualstore\windows\system32" *
* Recherche dans "C:\Users\Val‚rie ROISSARD\AppData\Local" *
*** Recherche fichiers ***
*** Recherche clés spécifiques dans le Registre ***
*** Module de Recherche complémentaire ***
(Recherche fichiers spécifiques)
1)Recherche nouveaux fichiers Instant Access :
2)Recherche Heuristique :
* Dans "C:\Windows\system32" :
* Dans "C:\Users\Val‚rie ROISSARD\AppData\Local\Microsoft" :
* Dans "C:\Users\Val‚rie ROISSARD\AppData\Local\virtualstore\windows\system32" :
* Dans "C:\Users\Val‚rie ROISSARD\AppData\Local" :
3)Recherche Certificats :
Certificat Egroup absent !
Certificat Electronic-Group absent !
Certificat OOO-Favorit absent !
Certificat Sunny-Day-Design-Ltd absent !
4)Recherche fichiers connus :
*** Analyse terminée le 10/06/2008 à 21:18:44,82 ***