Pubs CiD
Résolu
bibou19
-
DreaM -
DreaM -
Bonjour,
J'ai Vista et après avoir malencontreusement télécharger le sponsor de msn plus ( grosse erreur)
des pubs CiD n'arrêtent pas d'apparaître sur mon Pc
J'ai pourtant supprimer msn et plus et décocher la case sponsor mais rien n'y fait
j'ai fait plusieurs analyses ...aucun résultats
Quelqu'un pourrait m'aider ?
je ne comprends pas grand chose aux rapports
Merci de votre compréhension
J'ai Vista et après avoir malencontreusement télécharger le sponsor de msn plus ( grosse erreur)
des pubs CiD n'arrêtent pas d'apparaître sur mon Pc
J'ai pourtant supprimer msn et plus et décocher la case sponsor mais rien n'y fait
j'ai fait plusieurs analyses ...aucun résultats
Quelqu'un pourrait m'aider ?
je ne comprends pas grand chose aux rapports
Merci de votre compréhension
A voir également:
- Pubs CiD
- Bloquer les pubs youtube - Accueil - Streaming
- Supprimer les pubs - Guide
- Pourquoi j'ai des pubs de site de rencontre ✓ - Forum Virus
- Mon téléphone lance des pubs tout seul ✓ - Forum Samsung
- Comment couper le son des pubs dans les jeux - Forum Enceintes / HiFi
4 réponses
*Téléchargez lopS&D.exe sur votre bureau (Clique-droit sur le lien > Enregistrer la cible du lien sous)
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
*Désactivez votre antivirus au cas où (vous pourrez le réactiver après la fin du scan)
*Double-clique sur lopS&D pour lancer l'installation
*Une fois installé, double-clique sur Lop S&D
*Sélectionne la langue en appuyant sur la touche F, puis choisissez l'option 1 (Recherche)
*Si lopS&D vous demande de redémarrer acceptez et attendez la fin du scan.
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
*Désactivez votre antivirus au cas où (vous pourrez le réactiver après la fin du scan)
*Double-clique sur lopS&D pour lancer l'installation
*Une fois installé, double-clique sur Lop S&D
*Sélectionne la langue en appuyant sur la touche F, puis choisissez l'option 1 (Recherche)
*Si lopS&D vous demande de redémarrer acceptez et attendez la fin du scan.
Salut à tous !
J'ai le même problème que bibou (j'ai d'ailleurs été obligé de réecrire le message a cause d'une page qui s'est ouverte par dessus celle-ci ><), j'ai suivi les conseils de boy, mais, n'obtenant pas les même résultats a la fin de l'analyse, je me demande s'il faut que je continue la manip (Supprimer) ou non.
(Voici les résultats de l'analyse :
--------------------\\ Lop S&D 4.2.5-0 XP/Vista
Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : AMD Athlon(tm) 64 X2 Dual Core Processor 4400+ )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : Adam ( Administrator )
BOOT : Normal boot
Antivirus : Norton Internet Security 2007 (Activated)
Firewall : Norton Internet Security 2007 (Activated)
C:\ (Local Disk) - NTFS - Total:290 Go (Free:201 Go)
D:\ (Local Disk) - NTFS - Total:7 Go (Free:1 Go)
E:\ (CD or DVD)
G:\ (USB)
H:\ (USB)
I:\ (USB)
J:\ (USB)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 16/01/2009|20:25 )
[ UAC => 1 ]
--------------------\\ Listing des dossiers dans Local
[12/05/2008|16:26] C:\Users\Adam\AppData\Local\Adobe
[04/10/2008|20:57] C:\Users\Adam\AppData\Local\Apple
[08/10/2008|16:00] C:\Users\Adam\AppData\Local\Apple Computer
[15/09/2007|20:38] C:\Users\Adam\AppData\Local\Application Data
[16/09/2007|17:50] C:\Users\Adam\AppData\Local\d3d9caps.dat
[19/12/2008|19:18] C:\Users\Adam\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[12/06/2008|10:27] C:\Users\Adam\AppData\Local\GDIPFONTCACHEV1.DAT
[10/01/2009|19:32] C:\Users\Adam\AppData\Local\Google
[15/09/2007|20:38] C:\Users\Adam\AppData\Local\Historique
[15/01/2009|00:13] C:\Users\Adam\AppData\Local\IconCache.db
[02/09/2008|16:23] C:\Users\Adam\AppData\Local\Microsoft
[08/10/2007|21:10] C:\Users\Adam\AppData\Local\Microsoft Games
[07/12/2007|20:08] C:\Users\Adam\AppData\Local\Microsoft Help
[20/12/2008|20:37] C:\Users\Adam\AppData\Local\Mozilla
[16/01/2009|20:24] C:\Users\Adam\AppData\Local\Temp
[15/09/2007|20:38] C:\Users\Adam\AppData\Local\Temporary Internet Files
[17/09/2007|11:49] C:\Users\Adam\AppData\Local\VirtualStore
--------------------\\ Tâches planifiées dans C:\Windows\tasks
[12/01/2009 21:13][--a------] C:\Windows\tasks\Norton Internet Security - Analyse systŠme complŠte - Adam.job
[16/01/2009 16:45][--ah-----] C:\Windows\tasks\SA.DAT
[16/01/2009 00:15][--a------] C:\Windows\tasks\SCHEDLGU.TXT
--------------------\\ Listing des dossiers dans C:\ProgramData
[04/10/2008|20:59] C:\ProgramData\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[01/06/2007|23:54] C:\ProgramData\{623D32E9-0C62-4453-AD44-98B31F52A5E1}
[18/10/2008|19:18] C:\ProgramData\Admin bend math.cynnvz
[09/11/2008|21:20] C:\ProgramData\Adobe
[22/11/2008|13:59] C:\ProgramData\aim rect help creative
[04/10/2008|20:55] C:\ProgramData\Apple
[04/10/2008|20:59] C:\ProgramData\Apple Computer
[02/11/2006|14:02] C:\ProgramData\Application Data
[22/11/2008|13:59] C:\ProgramData\Bleh log face.r6dot05
[15/09/2007|20:34] C:\ProgramData\Bureau
[02/11/2006|14:02] C:\ProgramData\Desktop
[02/11/2006|14:02] C:\ProgramData\Documents
[15/09/2007|20:34] C:\ProgramData\Favoris
[02/11/2006|14:02] C:\ProgramData\Favorites
[09/01/2009|19:44] C:\ProgramData\Google
[02/06/2007|00:16] C:\ProgramData\Hewlett-Packard
[01/06/2007|23:37] C:\ProgramData\HP
[01/06/2007|23:38] C:\ProgramData\hpzinstall.log
[22/11/2008|14:00] C:\ProgramData\Malwarebytes
[15/09/2007|22:04] C:\ProgramData\Media Center Programs
[15/09/2007|20:34] C:\ProgramData\Menu D‚marrer
[07/11/2007|20:49] C:\ProgramData\Messenger Plus!
[01/12/2008|20:00] C:\ProgramData\Microsoft
[01/06/2007|23:53] C:\ProgramData\Microsoft Help
[15/09/2007|20:34] C:\ProgramData\ModŠles
[01/06/2007|23:47] C:\ProgramData\muvee Technologies
[01/07/2008|12:10] C:\ProgramData\NVIDIA
[08/12/2008|20:35] C:\ProgramData\Obj Send Meow
[01/06/2007|23:56] C:\ProgramData\PC-Doctor
[17/01/2008|20:05] C:\ProgramData\pixelStorm
[13/12/2008|16:12] C:\ProgramData\Roxio
[01/06/2007|23:44] C:\ProgramData\Sonic
[02/11/2006|14:02] C:\ProgramData\Start Menu
[15/01/2009|22:05] C:\ProgramData\Symantec
[02/11/2006|14:02] C:\ProgramData\Templates
[16/11/2008|12:29] C:\ProgramData\Up Dog Eq.oajuupx
[07/01/2008|17:19] C:\ProgramData\wipe memo memo.0b2xu47
[17/02/2008|16:36] C:\ProgramData\wipe memo memo.3cck0
[18/10/2008|19:18] C:\ProgramData\wipe memo memo.51ar3
[23/07/2008|21:03] C:\ProgramData\wipe memo memo.9lpie
[16/11/2008|12:29] C:\ProgramData\wipe memo memo.cemup
[02/06/2008|12:03] C:\ProgramData\wipe memo memo.cr6gfle
[28/09/2008|09:49] C:\ProgramData\wipe memo memo.eznqpbg
[17/09/2008|22:17] C:\ProgramData\wipe memo memo.k0bjfi
[18/01/2008|17:30] C:\ProgramData\wipe memo memo.m5asmpf
[03/01/2008|17:38] C:\ProgramData\wipe memo memo.nf14te1
[30/10/2008|10:28] C:\ProgramData\wipe memo memo.o9bgm
[27/06/2008|18:36] C:\ProgramData\wipe memo memo.ptv2w
[17/08/2008|11:02] C:\ProgramData\wipe memo memo.qnyffo
[28/04/2008|10:49] C:\ProgramData\wipe memo memo.xyf0ge7
[22/11/2008|13:58] C:\ProgramData\wipe memo memo.z0x68i
[22/11/2008|13:58] C:\ProgramData\wipe memo memo.zgzy6n
--------------------\\ Listing des dossiers dans C:\Program Files
[15/09/2007|21:49] C:\Program Files\2K Games
[01/06/2007|23:54] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[09/11/2008|21:19] C:\Program Files\Adobe
[18/11/2008|23:47] C:\Program Files\Alarian
[25/09/2007|11:37] C:\Program Files\Ankama Games
[04/10/2008|20:56] C:\Program Files\Apple Software Update
[04/10/2008|20:58] C:\Program Files\Bonjour
[20/03/2008|23:44] C:\Program Files\CamStudio
[22/11/2008|19:05] C:\Program Files\Common Files
[16/12/2008|18:44] C:\Program Files\Dofus
[28/07/2008|12:34] C:\Program Files\DofusArena2
[10/12/2008|14:14] C:\Program Files\DofusBeta
[02/06/2007|08:41] C:\Program Files\EasyBits
[15/09/2007|20:34] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[28/06/2008|10:56] C:\Program Files\GOA
[10/01/2009|02:46] C:\Program Files\Google
[22/12/2007|20:06] C:\Program Files\Gpotato.eu
[11/06/2008|14:23] C:\Program Files\Happy Note
[01/06/2007|23:57] C:\Program Files\Hewlett-Packard
[26/08/2008|20:18] C:\Program Files\HP
[16/09/2007|19:24] C:\Program Files\InstallShield Installation Information
[01/07/2008|11:51] C:\Program Files\Internet Explorer
[04/10/2008|20:59] C:\Program Files\iPod
[04/10/2008|20:59] C:\Program Files\iTunes
[06/12/2008|13:15] C:\Program Files\Java
[22/11/2008|14:00] C:\Program Files\Malwarebytes' Anti-Malware
[30/08/2008|20:29] C:\Program Files\Messenger Plus! Live
[11/06/2008|14:26] C:\Program Files\Metronimo
[02/11/2006|13:37] C:\Program Files\Microsoft Games
[01/06/2007|23:53] C:\Program Files\Microsoft Office
[01/06/2007|23:53] C:\Program Files\Microsoft Works
[01/06/2007|23:53] C:\Program Files\Microsoft.NET
[01/07/2008|11:51] C:\Program Files\Movie Maker
[20/12/2008|20:37] C:\Program Files\Mozilla Firefox
[02/11/2006|13:37] C:\Program Files\MSBuild
[30/08/2008|20:29] C:\Program Files\MSN Messenger
[15/09/2007|21:23] C:\Program Files\MSXML 4.0
[01/06/2007|23:47] C:\Program Files\muvee Technologies
[23/11/2008|23:03] C:\Program Files\Norton Internet Security
[23/11/2008|18:00] C:\Program Files\Norton Security Scan
[02/06/2007|00:10] C:\Program Files\PC-Doctor 5 for Windows
[27/03/2008|00:05] C:\Program Files\PhotoFiltre
[01/10/2007|17:34] C:\Program Files\Pivot Stickfigure Animator
[21/01/2008|22:07] C:\Program Files\planetes3D
[04/10/2008|20:58] C:\Program Files\QuickTime
[01/06/2007|23:46] C:\Program Files\Real
[04/04/2008|16:33] C:\Program Files\Realtek
[02/11/2006|13:37] C:\Program Files\Reference Assemblies
[01/06/2007|23:45] C:\Program Files\Roxio
[01/06/2007|23:59] C:\Program Files\Services en ligne
[26/07/2008|12:33] C:\Program Files\Sun
[23/11/2008|23:04] C:\Program Files\Symantec
[06/12/2007|20:21] C:\Program Files\Toribash-3.06
[02/11/2006|14:01] C:\Program Files\Uninstall Information
[19/10/2008|19:47] C:\Program Files\VideoLAN
[21/01/2008|22:07] C:\Program Files\Viewpoint
[28/12/2008|18:31] C:\Program Files\Wakfu
[01/07/2008|11:51] C:\Program Files\Windows Calendar
[01/07/2008|11:51] C:\Program Files\Windows Collaboration
[01/07/2008|11:50] C:\Program Files\Windows Defender
[01/07/2008|11:51] C:\Program Files\Windows Journal
[03/11/2007|19:21] C:\Program Files\Windows Live
[15/01/2009|18:56] C:\Program Files\Windows Mail
[01/07/2008|11:51] C:\Program Files\Windows Media Player
[15/09/2007|20:34] C:\Program Files\Windows NT
[01/07/2008|11:50] C:\Program Files\Windows Photo Gallery
[01/07/2008|11:51] C:\Program Files\Windows Sidebar
[17/11/2008|20:47] C:\Program Files\WinRAR
--------------------\\ Listing des dossiers dans C:\Program Files\Common Files
[09/11/2008|21:20] C:\Program Files\Common Files\Adobe
[04/10/2008|20:57] C:\Program Files\Common Files\Apple
[01/06/2007|23:53] C:\Program Files\Common Files\DESIGNER
[01/06/2007|23:37] C:\Program Files\Common Files\HP
[25/09/2007|11:37] C:\Program Files\Common Files\i4j_jres
[24/01/2008|17:37] C:\Program Files\Common Files\INCA Shared
[01/06/2007|23:38] C:\Program Files\Common Files\InstallShield
[07/01/2008|22:18] C:\Program Files\Common Files\Java
[01/06/2007|23:46] C:\Program Files\Common Files\LightScribe
[01/06/2007|23:45] C:\Program Files\Common Files\LS Getting Started
[26/09/2007|19:04] C:\Program Files\Common Files\microsoft shared
[01/06/2007|23:47] C:\Program Files\Common Files\muvee Technologies
[01/06/2007|23:44] C:\Program Files\Common Files\PX Storage Engine
[01/06/2007|23:46] C:\Program Files\Common Files\Real
[01/06/2007|23:44] C:\Program Files\Common Files\Roxio Shared
[02/11/2006|12:18] C:\Program Files\Common Files\Services
[01/06/2007|23:45] C:\Program Files\Common Files\Sonic Shared
[02/11/2006|12:18] C:\Program Files\Common Files\SpeechEngines
[01/06/2007|23:45] C:\Program Files\Common Files\SureThing Shared
[22/11/2008|19:06] C:\Program Files\Common Files\Symantec Shared
[01/07/2008|11:50] C:\Program Files\Common Files\System
[01/06/2007|23:46] C:\Program Files\Common Files\xing shared
--------------------\\ Process
( 70 Processes )
iexplore.exe ~ [PID:3816]
iexplore.exe ~ [PID:3856]
iexplore.exe ~ [PID:6092]
--------------------\\ Recherche avec S_Lop
C:\ProgramData\wipe memo memo.3cck0
C:\ProgramData\wipe memo memo.51ar3
C:\ProgramData\wipe memo memo.9lpie
C:\ProgramData\wipe memo memo.cemup
C:\ProgramData\wipe memo memo.o9bgm
C:\ProgramData\wipe memo memo.ptv2w
C:\ProgramData\Admin bend math.cynnvz
C:\ProgramData\wipe memo memo.k0bjfi
C:\ProgramData\wipe memo memo.qnyffo
C:\ProgramData\wipe memo memo.z0x68i
C:\ProgramData\wipe memo memo.zgzy6n
C:\ProgramData\Bleh log face.r6dot05
C:\ProgramData\Up Dog Eq.oajuupx
C:\ProgramData\wipe memo memo.0b2xu47
C:\ProgramData\wipe memo memo.cr6gfle
C:\ProgramData\wipe memo memo.eznqpbg
C:\ProgramData\wipe memo memo.m5asmpf
C:\ProgramData\wipe memo memo.nf14te1
C:\ProgramData\wipe memo memo.xyf0ge7
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\ProgramData\aim rect help creative
C:\ProgramData\aim rect help creative\poll bold.exe
C:\ProgramData\aim rect help creative\team this.exe
C:\ProgramData\aim rect help creative\Tick Rect.exe
C:\ProgramData\Obj Send Meow
C:\ProgramData\Obj Send Meow\Date Dash Funk.exe
C:\Users\Adam\AppData\Local\Temp\nsa9938.tmp
C:\Users\Adam\AppData\Local\Temp\nsd1EC9.tmp
C:\Users\Adam\AppData\Local\Temp\nsfF049.tmp
C:\Users\Adam\AppData\Local\Temp\nsh8BEC.tmp
C:\Users\Adam\AppData\Local\Temp\nsi17B6.tmp
C:\Users\Adam\AppData\Local\Temp\nsiC65E.tmp
C:\Users\Adam\AppData\Local\Temp\nsj53FB.tmp
C:\Users\Adam\AppData\Local\Temp\nsjDF69.tmp
C:\Users\Adam\AppData\Local\Temp\nsoBD28.tmp
C:\Users\Adam\AppData\Local\Temp\nspBB5.tmp
C:\Users\Adam\AppData\Local\Temp\nss874A.tmp
C:\Users\Adam\AppData\Local\Temp\nsv6E93.tmp
C:\Users\Adam\AppData\Local\Temp\nswB0EA.tmp
C:\Users\Adam\AppData\Local\Temp\sta1A14.exe
C:\Users\Adam\AppData\Local\Temp\staBF96.exe
--------------------\\ Verification du Registre
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Mpegmode"="\"C:\\ProgramData\\wipe memo memo.zgzy6n\""
"Help Creative Meow City"="\"C:\\ProgramData\\Bleh log face.r6dot05\""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-01-16 20:25:40
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 246
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:1692][D:62]-> C:\Users\Adam\AppData\Local\Temp
[F:216][D:1]-> C:\Users\Adam\AppData\Roaming\MICROS~1\Windows\Cookies
[F:2131][D:13]-> C:\Users\Adam\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:7][D:4]-> C:\$Recycle.Bin
1 - "C:\Lop SD\LopR_1.txt" - 16/01/2009|20:28 - Option : [1]
--------------------\\ Fin du rapport a 20:28:37
[ UAC => 1 ] )
Merci !!
J'ai le même problème que bibou (j'ai d'ailleurs été obligé de réecrire le message a cause d'une page qui s'est ouverte par dessus celle-ci ><), j'ai suivi les conseils de boy, mais, n'obtenant pas les même résultats a la fin de l'analyse, je me demande s'il faut que je continue la manip (Supprimer) ou non.
(Voici les résultats de l'analyse :
--------------------\\ Lop S&D 4.2.5-0 XP/Vista
Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : AMD Athlon(tm) 64 X2 Dual Core Processor 4400+ )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : Adam ( Administrator )
BOOT : Normal boot
Antivirus : Norton Internet Security 2007 (Activated)
Firewall : Norton Internet Security 2007 (Activated)
C:\ (Local Disk) - NTFS - Total:290 Go (Free:201 Go)
D:\ (Local Disk) - NTFS - Total:7 Go (Free:1 Go)
E:\ (CD or DVD)
G:\ (USB)
H:\ (USB)
I:\ (USB)
J:\ (USB)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 16/01/2009|20:25 )
[ UAC => 1 ]
--------------------\\ Listing des dossiers dans Local
[12/05/2008|16:26] C:\Users\Adam\AppData\Local\Adobe
[04/10/2008|20:57] C:\Users\Adam\AppData\Local\Apple
[08/10/2008|16:00] C:\Users\Adam\AppData\Local\Apple Computer
[15/09/2007|20:38] C:\Users\Adam\AppData\Local\Application Data
[16/09/2007|17:50] C:\Users\Adam\AppData\Local\d3d9caps.dat
[19/12/2008|19:18] C:\Users\Adam\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[12/06/2008|10:27] C:\Users\Adam\AppData\Local\GDIPFONTCACHEV1.DAT
[10/01/2009|19:32] C:\Users\Adam\AppData\Local\Google
[15/09/2007|20:38] C:\Users\Adam\AppData\Local\Historique
[15/01/2009|00:13] C:\Users\Adam\AppData\Local\IconCache.db
[02/09/2008|16:23] C:\Users\Adam\AppData\Local\Microsoft
[08/10/2007|21:10] C:\Users\Adam\AppData\Local\Microsoft Games
[07/12/2007|20:08] C:\Users\Adam\AppData\Local\Microsoft Help
[20/12/2008|20:37] C:\Users\Adam\AppData\Local\Mozilla
[16/01/2009|20:24] C:\Users\Adam\AppData\Local\Temp
[15/09/2007|20:38] C:\Users\Adam\AppData\Local\Temporary Internet Files
[17/09/2007|11:49] C:\Users\Adam\AppData\Local\VirtualStore
--------------------\\ Tâches planifiées dans C:\Windows\tasks
[12/01/2009 21:13][--a------] C:\Windows\tasks\Norton Internet Security - Analyse systŠme complŠte - Adam.job
[16/01/2009 16:45][--ah-----] C:\Windows\tasks\SA.DAT
[16/01/2009 00:15][--a------] C:\Windows\tasks\SCHEDLGU.TXT
--------------------\\ Listing des dossiers dans C:\ProgramData
[04/10/2008|20:59] C:\ProgramData\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[01/06/2007|23:54] C:\ProgramData\{623D32E9-0C62-4453-AD44-98B31F52A5E1}
[18/10/2008|19:18] C:\ProgramData\Admin bend math.cynnvz
[09/11/2008|21:20] C:\ProgramData\Adobe
[22/11/2008|13:59] C:\ProgramData\aim rect help creative
[04/10/2008|20:55] C:\ProgramData\Apple
[04/10/2008|20:59] C:\ProgramData\Apple Computer
[02/11/2006|14:02] C:\ProgramData\Application Data
[22/11/2008|13:59] C:\ProgramData\Bleh log face.r6dot05
[15/09/2007|20:34] C:\ProgramData\Bureau
[02/11/2006|14:02] C:\ProgramData\Desktop
[02/11/2006|14:02] C:\ProgramData\Documents
[15/09/2007|20:34] C:\ProgramData\Favoris
[02/11/2006|14:02] C:\ProgramData\Favorites
[09/01/2009|19:44] C:\ProgramData\Google
[02/06/2007|00:16] C:\ProgramData\Hewlett-Packard
[01/06/2007|23:37] C:\ProgramData\HP
[01/06/2007|23:38] C:\ProgramData\hpzinstall.log
[22/11/2008|14:00] C:\ProgramData\Malwarebytes
[15/09/2007|22:04] C:\ProgramData\Media Center Programs
[15/09/2007|20:34] C:\ProgramData\Menu D‚marrer
[07/11/2007|20:49] C:\ProgramData\Messenger Plus!
[01/12/2008|20:00] C:\ProgramData\Microsoft
[01/06/2007|23:53] C:\ProgramData\Microsoft Help
[15/09/2007|20:34] C:\ProgramData\ModŠles
[01/06/2007|23:47] C:\ProgramData\muvee Technologies
[01/07/2008|12:10] C:\ProgramData\NVIDIA
[08/12/2008|20:35] C:\ProgramData\Obj Send Meow
[01/06/2007|23:56] C:\ProgramData\PC-Doctor
[17/01/2008|20:05] C:\ProgramData\pixelStorm
[13/12/2008|16:12] C:\ProgramData\Roxio
[01/06/2007|23:44] C:\ProgramData\Sonic
[02/11/2006|14:02] C:\ProgramData\Start Menu
[15/01/2009|22:05] C:\ProgramData\Symantec
[02/11/2006|14:02] C:\ProgramData\Templates
[16/11/2008|12:29] C:\ProgramData\Up Dog Eq.oajuupx
[07/01/2008|17:19] C:\ProgramData\wipe memo memo.0b2xu47
[17/02/2008|16:36] C:\ProgramData\wipe memo memo.3cck0
[18/10/2008|19:18] C:\ProgramData\wipe memo memo.51ar3
[23/07/2008|21:03] C:\ProgramData\wipe memo memo.9lpie
[16/11/2008|12:29] C:\ProgramData\wipe memo memo.cemup
[02/06/2008|12:03] C:\ProgramData\wipe memo memo.cr6gfle
[28/09/2008|09:49] C:\ProgramData\wipe memo memo.eznqpbg
[17/09/2008|22:17] C:\ProgramData\wipe memo memo.k0bjfi
[18/01/2008|17:30] C:\ProgramData\wipe memo memo.m5asmpf
[03/01/2008|17:38] C:\ProgramData\wipe memo memo.nf14te1
[30/10/2008|10:28] C:\ProgramData\wipe memo memo.o9bgm
[27/06/2008|18:36] C:\ProgramData\wipe memo memo.ptv2w
[17/08/2008|11:02] C:\ProgramData\wipe memo memo.qnyffo
[28/04/2008|10:49] C:\ProgramData\wipe memo memo.xyf0ge7
[22/11/2008|13:58] C:\ProgramData\wipe memo memo.z0x68i
[22/11/2008|13:58] C:\ProgramData\wipe memo memo.zgzy6n
--------------------\\ Listing des dossiers dans C:\Program Files
[15/09/2007|21:49] C:\Program Files\2K Games
[01/06/2007|23:54] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[09/11/2008|21:19] C:\Program Files\Adobe
[18/11/2008|23:47] C:\Program Files\Alarian
[25/09/2007|11:37] C:\Program Files\Ankama Games
[04/10/2008|20:56] C:\Program Files\Apple Software Update
[04/10/2008|20:58] C:\Program Files\Bonjour
[20/03/2008|23:44] C:\Program Files\CamStudio
[22/11/2008|19:05] C:\Program Files\Common Files
[16/12/2008|18:44] C:\Program Files\Dofus
[28/07/2008|12:34] C:\Program Files\DofusArena2
[10/12/2008|14:14] C:\Program Files\DofusBeta
[02/06/2007|08:41] C:\Program Files\EasyBits
[15/09/2007|20:34] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[28/06/2008|10:56] C:\Program Files\GOA
[10/01/2009|02:46] C:\Program Files\Google
[22/12/2007|20:06] C:\Program Files\Gpotato.eu
[11/06/2008|14:23] C:\Program Files\Happy Note
[01/06/2007|23:57] C:\Program Files\Hewlett-Packard
[26/08/2008|20:18] C:\Program Files\HP
[16/09/2007|19:24] C:\Program Files\InstallShield Installation Information
[01/07/2008|11:51] C:\Program Files\Internet Explorer
[04/10/2008|20:59] C:\Program Files\iPod
[04/10/2008|20:59] C:\Program Files\iTunes
[06/12/2008|13:15] C:\Program Files\Java
[22/11/2008|14:00] C:\Program Files\Malwarebytes' Anti-Malware
[30/08/2008|20:29] C:\Program Files\Messenger Plus! Live
[11/06/2008|14:26] C:\Program Files\Metronimo
[02/11/2006|13:37] C:\Program Files\Microsoft Games
[01/06/2007|23:53] C:\Program Files\Microsoft Office
[01/06/2007|23:53] C:\Program Files\Microsoft Works
[01/06/2007|23:53] C:\Program Files\Microsoft.NET
[01/07/2008|11:51] C:\Program Files\Movie Maker
[20/12/2008|20:37] C:\Program Files\Mozilla Firefox
[02/11/2006|13:37] C:\Program Files\MSBuild
[30/08/2008|20:29] C:\Program Files\MSN Messenger
[15/09/2007|21:23] C:\Program Files\MSXML 4.0
[01/06/2007|23:47] C:\Program Files\muvee Technologies
[23/11/2008|23:03] C:\Program Files\Norton Internet Security
[23/11/2008|18:00] C:\Program Files\Norton Security Scan
[02/06/2007|00:10] C:\Program Files\PC-Doctor 5 for Windows
[27/03/2008|00:05] C:\Program Files\PhotoFiltre
[01/10/2007|17:34] C:\Program Files\Pivot Stickfigure Animator
[21/01/2008|22:07] C:\Program Files\planetes3D
[04/10/2008|20:58] C:\Program Files\QuickTime
[01/06/2007|23:46] C:\Program Files\Real
[04/04/2008|16:33] C:\Program Files\Realtek
[02/11/2006|13:37] C:\Program Files\Reference Assemblies
[01/06/2007|23:45] C:\Program Files\Roxio
[01/06/2007|23:59] C:\Program Files\Services en ligne
[26/07/2008|12:33] C:\Program Files\Sun
[23/11/2008|23:04] C:\Program Files\Symantec
[06/12/2007|20:21] C:\Program Files\Toribash-3.06
[02/11/2006|14:01] C:\Program Files\Uninstall Information
[19/10/2008|19:47] C:\Program Files\VideoLAN
[21/01/2008|22:07] C:\Program Files\Viewpoint
[28/12/2008|18:31] C:\Program Files\Wakfu
[01/07/2008|11:51] C:\Program Files\Windows Calendar
[01/07/2008|11:51] C:\Program Files\Windows Collaboration
[01/07/2008|11:50] C:\Program Files\Windows Defender
[01/07/2008|11:51] C:\Program Files\Windows Journal
[03/11/2007|19:21] C:\Program Files\Windows Live
[15/01/2009|18:56] C:\Program Files\Windows Mail
[01/07/2008|11:51] C:\Program Files\Windows Media Player
[15/09/2007|20:34] C:\Program Files\Windows NT
[01/07/2008|11:50] C:\Program Files\Windows Photo Gallery
[01/07/2008|11:51] C:\Program Files\Windows Sidebar
[17/11/2008|20:47] C:\Program Files\WinRAR
--------------------\\ Listing des dossiers dans C:\Program Files\Common Files
[09/11/2008|21:20] C:\Program Files\Common Files\Adobe
[04/10/2008|20:57] C:\Program Files\Common Files\Apple
[01/06/2007|23:53] C:\Program Files\Common Files\DESIGNER
[01/06/2007|23:37] C:\Program Files\Common Files\HP
[25/09/2007|11:37] C:\Program Files\Common Files\i4j_jres
[24/01/2008|17:37] C:\Program Files\Common Files\INCA Shared
[01/06/2007|23:38] C:\Program Files\Common Files\InstallShield
[07/01/2008|22:18] C:\Program Files\Common Files\Java
[01/06/2007|23:46] C:\Program Files\Common Files\LightScribe
[01/06/2007|23:45] C:\Program Files\Common Files\LS Getting Started
[26/09/2007|19:04] C:\Program Files\Common Files\microsoft shared
[01/06/2007|23:47] C:\Program Files\Common Files\muvee Technologies
[01/06/2007|23:44] C:\Program Files\Common Files\PX Storage Engine
[01/06/2007|23:46] C:\Program Files\Common Files\Real
[01/06/2007|23:44] C:\Program Files\Common Files\Roxio Shared
[02/11/2006|12:18] C:\Program Files\Common Files\Services
[01/06/2007|23:45] C:\Program Files\Common Files\Sonic Shared
[02/11/2006|12:18] C:\Program Files\Common Files\SpeechEngines
[01/06/2007|23:45] C:\Program Files\Common Files\SureThing Shared
[22/11/2008|19:06] C:\Program Files\Common Files\Symantec Shared
[01/07/2008|11:50] C:\Program Files\Common Files\System
[01/06/2007|23:46] C:\Program Files\Common Files\xing shared
--------------------\\ Process
( 70 Processes )
iexplore.exe ~ [PID:3816]
iexplore.exe ~ [PID:3856]
iexplore.exe ~ [PID:6092]
--------------------\\ Recherche avec S_Lop
C:\ProgramData\wipe memo memo.3cck0
C:\ProgramData\wipe memo memo.51ar3
C:\ProgramData\wipe memo memo.9lpie
C:\ProgramData\wipe memo memo.cemup
C:\ProgramData\wipe memo memo.o9bgm
C:\ProgramData\wipe memo memo.ptv2w
C:\ProgramData\Admin bend math.cynnvz
C:\ProgramData\wipe memo memo.k0bjfi
C:\ProgramData\wipe memo memo.qnyffo
C:\ProgramData\wipe memo memo.z0x68i
C:\ProgramData\wipe memo memo.zgzy6n
C:\ProgramData\Bleh log face.r6dot05
C:\ProgramData\Up Dog Eq.oajuupx
C:\ProgramData\wipe memo memo.0b2xu47
C:\ProgramData\wipe memo memo.cr6gfle
C:\ProgramData\wipe memo memo.eznqpbg
C:\ProgramData\wipe memo memo.m5asmpf
C:\ProgramData\wipe memo memo.nf14te1
C:\ProgramData\wipe memo memo.xyf0ge7
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\ProgramData\aim rect help creative
C:\ProgramData\aim rect help creative\poll bold.exe
C:\ProgramData\aim rect help creative\team this.exe
C:\ProgramData\aim rect help creative\Tick Rect.exe
C:\ProgramData\Obj Send Meow
C:\ProgramData\Obj Send Meow\Date Dash Funk.exe
C:\Users\Adam\AppData\Local\Temp\nsa9938.tmp
C:\Users\Adam\AppData\Local\Temp\nsd1EC9.tmp
C:\Users\Adam\AppData\Local\Temp\nsfF049.tmp
C:\Users\Adam\AppData\Local\Temp\nsh8BEC.tmp
C:\Users\Adam\AppData\Local\Temp\nsi17B6.tmp
C:\Users\Adam\AppData\Local\Temp\nsiC65E.tmp
C:\Users\Adam\AppData\Local\Temp\nsj53FB.tmp
C:\Users\Adam\AppData\Local\Temp\nsjDF69.tmp
C:\Users\Adam\AppData\Local\Temp\nsoBD28.tmp
C:\Users\Adam\AppData\Local\Temp\nspBB5.tmp
C:\Users\Adam\AppData\Local\Temp\nss874A.tmp
C:\Users\Adam\AppData\Local\Temp\nsv6E93.tmp
C:\Users\Adam\AppData\Local\Temp\nswB0EA.tmp
C:\Users\Adam\AppData\Local\Temp\sta1A14.exe
C:\Users\Adam\AppData\Local\Temp\staBF96.exe
--------------------\\ Verification du Registre
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Mpegmode"="\"C:\\ProgramData\\wipe memo memo.zgzy6n\""
"Help Creative Meow City"="\"C:\\ProgramData\\Bleh log face.r6dot05\""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-01-16 20:25:40
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 246
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:1692][D:62]-> C:\Users\Adam\AppData\Local\Temp
[F:216][D:1]-> C:\Users\Adam\AppData\Roaming\MICROS~1\Windows\Cookies
[F:2131][D:13]-> C:\Users\Adam\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:7][D:4]-> C:\$Recycle.Bin
1 - "C:\Lop SD\LopR_1.txt" - 16/01/2009|20:28 - Option : [1]
--------------------\\ Fin du rapport a 20:28:37
[ UAC => 1 ] )
Merci !!
Et voilà le rapport qui m'est fourni :
-----------------------[ Lop S&D 4.2.1-6 XP/Vista ]---------------------
[ Windows 'Longhorn' (NT 6.0) Workstation Build 6001, Service Pack 1 ]
[ USER : Elsa ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 18/06/2008 | 22:13:45,35 ] [ PC : PC-ELSA ]
[ MAJ : 16-06-2008 | 23:01 ]
[ UAC => 0 ]
-------------[ Listing des dossiers dans Application Data ]------------
[11/11/2007|20:39] C:\Users\Elsa\AppData\Roaming\ACAMPREF\Myriad
[11/11/2007|20:37] C:\Users\Elsa\AppData\Roaming\ACAMPREF\Themes
[17/05/2008|12:37] C:\Users\Elsa\AppData\Roaming\Adobe\Adobe Illustrator CS3 Settings
[26/04/2008|15:35] C:\Users\Elsa\AppData\Roaming\Adobe\PatcherLogs
[16/02/2008|17:32] C:\Users\Elsa\AppData\Roaming\Adobe\Workflow
[14/02/2008|20:32] C:\Users\Elsa\AppData\Roaming\Adobe\Adobe PDF
[14/02/2008|20:18] C:\Users\Elsa\AppData\Roaming\Adobe\Color
[14/02/2008|20:18] C:\Users\Elsa\AppData\Roaming\Adobe\Enregistrer pour le Web AI
[14/02/2008|20:17] C:\Users\Elsa\AppData\Roaming\Adobe\Logs
[14/02/2008|20:17] C:\Users\Elsa\AppData\Roaming\Adobe\Fonts
[14/02/2008|19:53] C:\Users\Elsa\AppData\Roaming\Adobe\Updater5
[07/02/2008|19:46] C:\Users\Elsa\AppData\Roaming\Adobe\Adobe Illustrator 10
[22/01/2008|20:19] C:\Users\Elsa\AppData\Roaming\Adobe\Flash Player
[08/09/2007|18:48] C:\Users\Elsa\AppData\Roaming\Adobe\Linguistics
[08/09/2007|12:31] C:\Users\Elsa\AppData\Roaming\Adobe\Acrobat
[15/06/2008|15:32] C:\Users\Elsa\AppData\Roaming\Apple Computer\iTunes
[21/10/2007|14:45] C:\Users\Elsa\AppData\Roaming\CyberLink\PowerCinema
[21/10/2007|14:45] C:\Users\Elsa\AppData\Roaming\CyberLink\PowerDVD
[27/10/2007|17:07] C:\Users\Elsa\AppData\Roaming\DivX\DivX Codec
[15/12/2007|20:17] C:\Users\Elsa\AppData\Roaming\ESET\ESET Smart Security
[07/02/2008|19:42] C:\Users\Elsa\AppData\Roaming\Google\Local Search History
[01/09/2007|16:26] C:\Users\Elsa\AppData\Roaming\Identities\{283416FD-5F7E-49ED-92F0-84811C1F6659}
[16/06/2008|15:50] C:\Users\Elsa\AppData\Roaming\Lavasoft\Ad-Aware
[18/05/2008|12:29] C:\Users\Elsa\AppData\Roaming\Macromedia\Shockwave Player
[22/01/2008|20:18] C:\Users\Elsa\AppData\Roaming\Macromedia\Flash Player
[17/06/2008|20:12] C:\Users\Elsa\AppData\Roaming\Microsoft\Outlook
[16/06/2008|19:10] C:\Users\Elsa\AppData\Roaming\Microsoft\Windows Photo Gallery
[11/05/2008|14:06] C:\Users\Elsa\AppData\Roaming\Microsoft\MSN Messenger
[30/03/2008|15:50] C:\Users\Elsa\AppData\Roaming\Microsoft\UProof
[09/03/2008|23:02] C:\Users\Elsa\AppData\Roaming\Microsoft\Word
[09/03/2008|17:17] C:\Users\Elsa\AppData\Roaming\Microsoft\Office
[07/03/2008|21:03] C:\Users\Elsa\AppData\Roaming\Microsoft\Windows Media Encoder
[31/12/2007|18:26] C:\Users\Elsa\AppData\Roaming\Microsoft\Speech
[05/12/2007|21:10] C:\Users\Elsa\AppData\Roaming\Microsoft\CLView
[10/11/2007|20:42] C:\Users\Elsa\AppData\Roaming\Microsoft\Templates
[18/10/2007|22:36] C:\Users\Elsa\AppData\Roaming\Microsoft\Sticky Notes
[10/10/2007|17:22] C:\Users\Elsa\AppData\Roaming\Microsoft\HTML Help
[07/10/2007|14:54] C:\Users\Elsa\AppData\Roaming\Microsoft\OIS
[05/10/2007|14:15] C:\Users\Elsa\AppData\Roaming\Microsoft\Proof
[26/09/2007|16:15] C:\Users\Elsa\AppData\Roaming\Microsoft\Excel
[26/09/2007|16:14] C:\Users\Elsa\AppData\Roaming\Microsoft\InfoPath
[26/09/2007|16:14] C:\Users\Elsa\AppData\Roaming\Microsoft\Publisher
[26/09/2007|16:13] C:\Users\Elsa\AppData\Roaming\Microsoft\IMJP10
[26/09/2007|16:11] C:\Users\Elsa\AppData\Roaming\Microsoft\Document Building Blocks
[26/09/2007|16:11] C:\Users\Elsa\AppData\Roaming\Microsoft\AddIns
[04/09/2007|12:14] C:\Users\Elsa\AppData\Roaming\Microsoft\Internet Explorer
[03/09/2007|22:32] C:\Users\Elsa\AppData\Roaming\Microsoft\Crypto
[02/09/2007|15:51] C:\Users\Elsa\AppData\Roaming\Microsoft\IdentityCRL
[02/09/2007|15:02] C:\Users\Elsa\AppData\Roaming\Microsoft\MMC
[02/09/2007|14:14] C:\Users\Elsa\AppData\Roaming\Microsoft\eHome
[02/09/2007|13:28] C:\Users\Elsa\AppData\Roaming\Microsoft\Windows
[01/09/2007|16:27] C:\Users\Elsa\AppData\Roaming\Microsoft\CLR Security Config
[01/09/2007|16:26] C:\Users\Elsa\AppData\Roaming\Microsoft\SystemCertificates
[01/09/2007|16:26] C:\Users\Elsa\AppData\Roaming\Microsoft\Protect
[01/09/2007|16:21] C:\Users\Elsa\AppData\Roaming\Microsoft\Credentials
[25/11/2007|21:12] C:\Users\Elsa\AppData\Roaming\Mozilla\Firefox
[02/09/2007|16:42] C:\Users\Elsa\AppData\Roaming\Packard Bell\PBUpdator
[02/09/2007|15:20] C:\Users\Elsa\AppData\Roaming\Packard Bell\Setup my PC
[02/09/2007|14:58] C:\Users\Elsa\AppData\Roaming\Packard Bell\Smart Restore
[01/09/2007|16:27] C:\Users\Elsa\AppData\Roaming\Packard Bell\Identity Card
[18/06/2008|20:15] C:\Users\Elsa\AppData\Roaming\PC Tools\Spyware Doctor
[12/06/2008|16:11] C:\Users\Elsa\AppData\Roaming\Roxio\MediaManager9
[21/10/2007|14:33] C:\Users\Elsa\AppData\Roaming\Roxio\Label Creator
[10/10/2007|18:24] C:\Users\Elsa\AppData\Roaming\Roxio\RoxioCentral
[10/10/2007|18:24] C:\Users\Elsa\AppData\Roaming\Roxio\RoxioCentral33
[07/11/2007|18:59] C:\Users\Elsa\AppData\Roaming\Snapfish\Common
[07/11/2007|18:58] C:\Users\Elsa\AppData\Roaming\Snapfish\Activia
[02/09/2007|12:09] C:\Users\Elsa\AppData\Roaming\Talkback\MozillaOrg
[21/10/2007|13:56] C:\Users\Elsa\AppData\Roaming\vlc\cache
----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------
[13/06/2008 19:59][--a------] C:\Windows\tasks\Norton Internet Security - Analyse systŠme complŠte - elsa37.job
[18/06/2008 22:00][--a------] C:\Windows\tasks\Extension de garantie.job
[18/06/2008 22:00][--a------] C:\Windows\tasks\Recovery DVD Creator.job
[18/06/2008 21:23][--ah-----] C:\Windows\tasks\SA.DAT
[18/06/2008 21:21][--a------] C:\Windows\tasks\SCHEDLGU.TXT
------[ Listing des dossiers dans C:\ProgramData ]------
[14/02/2008|19:55] C:\ProgramData\Adobe
[14/02/2008|19:56] C:\ProgramData\ALM
[28/11/2007|18:27] C:\ProgramData\Apple
[28/11/2007|18:34] C:\ProgramData\Apple Computer
[02/11/2006|15:02] C:\ProgramData\Application Data
[17/06/2008|20:12] C:\ProgramData\avg8
[18/06/2008|20:10] C:\ProgramData\BASH SKIP BORE.bsivpc
[01/09/2007|16:15] C:\ProgramData\Bureau
[18/06/2008|20:10] C:\ProgramData\city about store file
[15/06/2008|20:45] C:\ProgramData\City Eggs Eggs.4iyfia
[15/06/2008|20:23] C:\ProgramData\City Eggs Eggs.f8vnl
[15/06/2008|19:39] C:\ProgramData\City Eggs Eggs.flwszi
[15/06/2008|19:17] C:\ProgramData\City Eggs Eggs.gxv275
[15/06/2008|21:38] C:\ProgramData\City Eggs Eggs.pecatf
[15/06/2008|19:17] C:\ProgramData\City Eggs Eggs.tk1vjw
[15/06/2008|20:01] C:\ProgramData\City Eggs Eggs.udufwka
[18/06/2008|20:09] C:\ProgramData\City Eggs Eggs.vxrma
[15/06/2008|21:16] C:\ProgramData\City Eggs Eggs.xdchg9
[18/06/2008|20:09] C:\ProgramData\City Eggs Eggs.zgosk
[21/10/2007|14:45] C:\ProgramData\CyberLink
[02/11/2006|15:02] C:\ProgramData\Desktop
[24/05/2008|13:31] C:\ProgramData\DigitalChocolate
[02/11/2006|15:02] C:\ProgramData\Documents
[24/05/2008|13:30] C:\ProgramData\Double Trump
[16/06/2008|15:15] C:\ProgramData\eMule
[15/12/2007|20:11] C:\ProgramData\ESET
[01/09/2007|16:15] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[14/02/2008|20:13] C:\ProgramData\FLEXnet
[07/02/2008|19:42] C:\ProgramData\Google
[18/06/2008|21:16] C:\ProgramData\Google Updater
[02/06/2007|11:23] C:\ProgramData\InstallShield
[01/09/2007|16:15] C:\ProgramData\Menu D‚marrer
[10/10/2007|17:22] C:\ProgramData\Microsoft
[15/05/2008|19:19] C:\ProgramData\Microsoft Help
[01/09/2007|16:15] C:\ProgramData\ModŠles
[15/06/2008|21:26] C:\ProgramData\ntuser.pol
[18/06/2008|20:10] C:\ProgramData\realprogrampile
[02/12/2007|18:43] C:\ProgramData\Roxio
[29/12/2007|14:12] C:\ProgramData\Sonic
[17/06/2008|19:56] C:\ProgramData\Spybot - Search & Destroy
[02/11/2006|15:02] C:\ProgramData\Start Menu
[25/03/2008|17:05] C:\ProgramData\Symantec
[18/06/2008|22:00] C:\ProgramData\TEMP
[02/11/2006|15:02] C:\ProgramData\Templates
[21/11/2007|14:41] C:\ProgramData\WLInstaller
---------------[ Listing des dossiers dans C:\Program Files ]--------------
[26/02/2008|17:20] C:\Program Files\Adobe
[07/02/2008|19:08] C:\Program Files\Adobe Illustrator 10
[05/09/2007|16:57] C:\Program Files\Alwil Software
[28/11/2007|18:29] C:\Program Files\Apple Software Update
[17/06/2008|17:41] C:\Program Files\AVG
[14/02/2008|19:53] C:\Program Files\Bonjour
[14/02/2008|19:33] C:\Program Files\Common Files
[21/10/2007|15:01] C:\Program Files\CyberLink
[16/06/2008|12:17] C:\Program Files\desktop.ini
[24/05/2008|17:27] C:\Program Files\Digital Chocolate
[27/10/2007|17:05] C:\Program Files\DivX
[01/01/2008|20:27] C:\Program Files\DX-Ball
[05/10/2007|17:35] C:\Program Files\Elsa.txt
[15/06/2008|21:18] C:\Program Files\eMule
[01/09/2007|16:15] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[19/04/2008|22:07] C:\Program Files\FLV Player
[24/05/2008|22:23] C:\Program Files\Free Easy Burner
[21/10/2007|13:49] C:\Program Files\FusionSoft DVD Player XP
[07/02/2008|19:42] C:\Program Files\Google
[14/12/2007|19:25] C:\Program Files\Grisoft
[02/06/2007|11:17] C:\Program Files\HDReg
[18/05/2008|12:32] C:\Program Files\InstallShield Installation Information
[16/06/2008|01:38] C:\Program Files\Internet Explorer
[20/01/2008|14:41] C:\Program Files\iPod
[20/01/2008|14:42] C:\Program Files\iTunes
[26/04/2008|18:18] C:\Program Files\Java
[05/09/2007|16:58] C:\Program Files\Lavasoft
[26/05/2008|21:59] C:\Program Files\Lexmark 2300 Series
[11/05/2008|20:11] C:\Program Files\MessengerDiscovery
[26/09/2007|18:47] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[02/11/2006|14:37] C:\Program Files\Microsoft Games
[26/09/2007|15:54] C:\Program Files\Microsoft Office
[26/09/2007|15:54] C:\Program Files\Microsoft Visual Studio
[26/09/2007|15:47] C:\Program Files\Microsoft Visual Studio 8
[26/09/2007|15:55] C:\Program Files\Microsoft Works
[26/09/2007|15:51] C:\Program Files\Microsoft.NET
[10/09/2007|17:10] C:\Program Files\MioNet
[16/06/2008|01:38] C:\Program Files\Movie Maker
[30/03/2008|12:41] C:\Program Files\Mozilla Firefox
[26/09/2007|15:55] C:\Program Files\MSBuild
[02/09/2007|23:48] C:\Program Files\MSXML 4.0
[16/06/2008|18:33] C:\Program Files\Navilog1
[28/09/2007|18:08] C:\Program Files\nomutil.txt
[11/03/2008|13:43] C:\Program Files\Norton Internet Security
[07/03/2008|20:01] C:\Program Files\NRJ
[02/09/2007|16:43] C:\Program Files\Packard Bell
[10/09/2007|17:06] C:\Program Files\Philips
[05/09/2007|12:39] C:\Program Files\PhotoFiltre Studio
[11/04/2008|17:39] C:\Program Files\Picasa2
[20/01/2008|14:38] C:\Program Files\QuickTime
[18/06/2008|20:09] C:\Program Files\realprogrampile
[02/06/2007|11:13] C:\Program Files\Realtek
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[02/06/2007|11:23] C:\Program Files\Roxio
[18/05/2008|12:32] C:\Program Files\Skyworks Technologies
[19/02/2008|14:02] C:\Program Files\SM
[17/06/2008|19:53] C:\Program Files\Spybot - Search & Destroy
[18/06/2008|21:13] C:\Program Files\Spyware Doctor
[11/03/2008|13:16] C:\Program Files\Symantec
[13/04/2008|21:43] C:\Program Files\TrackMania Nations ESWC
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[21/10/2007|13:44] C:\Program Files\VideoLAN
[16/06/2008|01:38] C:\Program Files\Windows Calendar
[16/06/2008|01:38] C:\Program Files\Windows Collaboration
[16/06/2008|01:37] C:\Program Files\Windows Defender
[16/06/2008|01:38] C:\Program Files\Windows Journal
[21/11/2007|14:55] C:\Program Files\Windows Live
[16/06/2008|01:38] C:\Program Files\Windows Mail
[07/03/2008|20:07] C:\Program Files\Windows Media Components
[16/06/2008|01:38] C:\Program Files\Windows Media Player
[01/09/2007|16:15] C:\Program Files\Windows NT
[16/06/2008|01:38] C:\Program Files\Windows Photo Gallery
[16/06/2008|01:38] C:\Program Files\Windows Sidebar
[26/09/2007|16:38] C:\Program Files\WinRAR
------[ Listing des dossiers dans C:\Program Files\Common Files ]------
[14/02/2008|19:53] C:\Program Files\Common Files\Adobe
[28/11/2007|18:27] C:\Program Files\Common Files\Apple
[26/09/2007|15:54] C:\Program Files\Common Files\DESIGNER
[10/09/2007|17:33] C:\Program Files\Common Files\InstallShield
[20/09/2007|17:49] C:\Program Files\Common Files\Java
[14/02/2008|19:33] C:\Program Files\Common Files\Macrovision Shared
[17/06/2008|17:39] C:\Program Files\Common Files\microsoft shared
[02/06/2007|11:23] C:\Program Files\Common Files\Roxio Shared
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[02/06/2007|11:23] C:\Program Files\Common Files\Sonic Shared
[10/09/2007|17:34] C:\Program Files\Common Files\SPC500NC
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[02/06/2007|11:23] C:\Program Files\Common Files\SureThing Shared
[11/03/2008|13:08] C:\Program Files\Common Files\Symantec Shared
[16/06/2008|01:37] C:\Program Files\Common Files\System
[07/02/2008|19:14] C:\Program Files\Common Files\Vbox
[21/11/2007|14:53] C:\Program Files\Common Files\WindowsLiveInstaller
[24/03/2008|17:20] C:\Program Files\Common Files\Wise Installation Wizard
---------------------------[ Process ]--------------------------
... 76
iexplore.exe ~ [432]
iexplore.exe ~ [1264]
iexplore.exe ~ [5444]
----------------------[ Recherche avec S_Lop ]---------------------
C:\ProgramData\BASH SKIP BORE.bsivpc
C:\ProgramData\City Eggs Eggs.4iyfia
C:\ProgramData\City Eggs Eggs.f8vnl
C:\ProgramData\City Eggs Eggs.flwszi
C:\ProgramData\City Eggs Eggs.gxv275
C:\ProgramData\City Eggs Eggs.pecatf
C:\ProgramData\City Eggs Eggs.tk1vjw
C:\ProgramData\City Eggs Eggs.udufwka
C:\ProgramData\City Eggs Eggs.vxrma
C:\ProgramData\City Eggs Eggs.xdchg9
C:\ProgramData\City Eggs Eggs.zgosk
C:\ProgramData\BASH SKIP BORE.bsivpc
C:\ProgramData\City Eggs Eggs.4iyfia
C:\ProgramData\City Eggs Eggs.flwszi
C:\ProgramData\City Eggs Eggs.gxv275
C:\ProgramData\City Eggs Eggs.pecatf
C:\ProgramData\City Eggs Eggs.udufwka
C:\ProgramData\City Eggs Eggs.xdchg9
C:\ProgramData\City Eggs Eggs.zgosk
C:\Users\Elsa\AppData\Local\Temp\bisB0F7.exe
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
C:\ProgramData\city about store file
C:\ProgramData\city about store file\Online Find.exe
C:\Windows\Prefetch\ONLINE FIND.EXE-A03FA3C4.pf
C:\Users\Elsa\AppData\Roaming\MICROS~1\Windows\Cookies\elsa@www.adserver5[1].txt
C:\Users\Elsa\AppData\Roaming\MICROS~1\Windows\Cookies\elsa@adin.bigpoint[2].txt
C:\Users\Elsa\AppData\Roaming\MICROS~1\Windows\Cookies\elsa@bigpoint[1].txt
C:\Users\Elsa\AppData\Roaming\MICROS~1\Windows\Cookies\elsa@fr1.seafight.bigpoint[1].txt
C:\Users\Elsa\AppData\Roaming\MICROS~1\Windows\Cookies\elsa@banner.cotedazurpalace[2].txt
C:\Users\Elsa\AppData\Roaming\MICROS~1\Windows\Cookies\elsa@cotedazurpalace[2].txt
C:\Users\Elsa\AppData\Roaming\MICROS~1\Windows\Cookies\elsa@adopt.euroclick[1].txt
C:\Users\Elsa\AppData\Roaming\MICROS~1\Windows\Cookies\elsa@fr1.seafight.bigpoint[1].txt
C:\Users\Elsa\AppData\Roaming\MICROS~1\Windows\Cookies\elsa@32vegas[1].txt
C:\Users\Elsa\AppData\Roaming\MICROS~1\Windows\Cookies\elsa@banner.32vegas[2].txt
----------------------[ Verification du Registre ]----------------------
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Store file readme bash"="\"C:\\ProgramData\\BASH SKIP BORE.bsivpc\""
"Global Meet"="\"C:\\ProgramData\\City Eggs Eggs.vxrma\""
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts PROPRE
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-06-18 22:14:57
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
Aucune autre infection trouvée !
[F:7205][D:584]-> C:\Users\Elsa\AppData\Local\Temp
[F:165][D:0]-> C:\Users\Elsa\AppData\Roaming\MICROS~1\Windows\Cookies
[F:5087][D:11]-> C:\Users\Elsa\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:9][D:6]-> C:\$Recycle.Bin
[ UAC => 1 ]
--------------------[ Fin du rapport a 22:17:03,72 ]----------------------
· Choisis cette fois ci l'option 2 ( Suppression )
· Ne ferme pas la fenêtre lors de la suppression !
· Poste le rapport généré ( C:\lopR.txt )
*( Si le Bureau ne réapparait pas presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide).
-----------------------[ Lop S&D 4.2.1-6 XP/Vista ]---------------------
[ Windows 'Longhorn' (NT 6.0) Workstation Build 6001, Service Pack 1 ]
[ USER : Elsa ] [ "C:\Lop SD" ] [ Selection : 2 ]
[ 18/06/2008 | 22:28:17,22 ] [ PC : PC-ELSA ]
[ MAJ : 16-06-2008 | 23:01 ]
[ UAC => 0 ]
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////
Supprimé! - C:\ProgramData\city about store file\Online Find.exe
Supprimé! - C:\Windows\Prefetch\ONLINE FIND.EXE-A03FA3C4.pf
Supprimé! - C:\Users\Elsa\AppData\Roaming\MICROS~1\Windows\Cookies\elsa@www.adserver5[1].txt
Supprimé! - C:\Users\Elsa\AppData\Roaming\MICROS~1\Windows\Cookies\elsa@adin.bigpoint[2].txt
Supprimé! - C:\Users\Elsa\AppData\Roaming\MICROS~1\Windows\Cookies\elsa@bigpoint[1].txt
Supprimé! - C:\Users\Elsa\AppData\Roaming\MICROS~1\Windows\Cookies\elsa@fr1.seafight.bigpoint[1].txt
Supprimé! - C:\Users\Elsa\AppData\Roaming\MICROS~1\Windows\Cookies\elsa@banner.cotedazurpalace[2].txt
Supprimé! - C:\Users\Elsa\AppData\Roaming\MICROS~1\Windows\Cookies\elsa@cotedazurpalace[2].txt
Supprimé! - C:\Users\Elsa\AppData\Roaming\MICROS~1\Windows\Cookies\elsa@adopt.euroclick[1].txt
Supprimé! - C:\Users\Elsa\AppData\Roaming\MICROS~1\Windows\Cookies\elsa@32vegas[1].txt
Supprimé! - C:\Users\Elsa\AppData\Roaming\MICROS~1\Windows\Cookies\elsa@banner.32vegas[2].txt
Supprimé! - C:\ProgramData\BASH SKIP BORE.bsivpc
Supprimé! - C:\ProgramData\City Eggs Eggs.4iyfia
Supprimé! - C:\ProgramData\City Eggs Eggs.f8vnl
Supprimé! - C:\ProgramData\City Eggs Eggs.flwszi
Supprimé! - C:\ProgramData\City Eggs Eggs.gxv275
Supprimé! - C:\ProgramData\City Eggs Eggs.pecatf
Supprimé! - C:\ProgramData\City Eggs Eggs.tk1vjw
Supprimé! - C:\ProgramData\City Eggs Eggs.udufwka
Supprimé! - C:\ProgramData\City Eggs Eggs.vxrma
Supprimé! - C:\ProgramData\City Eggs Eggs.xdchg9
Supprimé! - C:\ProgramData\City Eggs Eggs.zgosk
Supprimé! - C:\Users\Elsa\AppData\Local\Temp\bisB0F7.exe
Supprimé! - C:\ProgramData\city about store file
Restauré! - Fichier Hosts
//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
-------------[ Listing des dossiers dans Application Data ]------------
[11/11/2007|20:39] C:\Users\Elsa\AppData\Roaming\ACAMPREF\Myriad
[11/11/2007|20:37] C:\Users\Elsa\AppData\Roaming\ACAMPREF\Themes
[17/05/2008|12:37] C:\Users\Elsa\AppData\Roaming\Adobe\Adobe Illustrator CS3 Settings
[26/04/2008|15:35] C:\Users\Elsa\AppData\Roaming\Adobe\PatcherLogs
[16/02/2008|17:32] C:\Users\Elsa\AppData\Roaming\Adobe\Workflow
[14/02/2008|20:32] C:\Users\Elsa\AppData\Roaming\Adobe\Adobe PDF
[14/02/2008|20:18] C:\Users\Elsa\AppData\Roaming\Adobe\Color
[14/02/2008|20:18] C:\Users\Elsa\AppData\Roaming\Adobe\Enregistrer pour le Web AI
[14/02/2008|20:17] C:\Users\Elsa\AppData\Roaming\Adobe\Logs
[14/02/2008|20:17] C:\Users\Elsa\AppData\Roaming\Adobe\Fonts
[14/02/2008|19:53] C:\Users\Elsa\AppData\Roaming\Adobe\Updater5
[07/02/2008|19:46] C:\Users\Elsa\AppData\Roaming\Adobe\Adobe Illustrator 10
[22/01/2008|20:19] C:\Users\Elsa\AppData\Roaming\Adobe\Flash Player
[08/09/2007|18:48] C:\Users\Elsa\AppData\Roaming\Adobe\Linguistics
[08/09/2007|12:31] C:\Users\Elsa\AppData\Roaming\Adobe\Acrobat
[15/06/2008|15:32] C:\Users\Elsa\AppData\Roaming\Apple Computer\iTunes
[21/10/2007|14:45] C:\Users\Elsa\AppData\Roaming\CyberLink\PowerCinema
[21/10/2007|14:45] C:\Users\Elsa\AppData\Roaming\CyberLink\PowerDVD
[27/10/2007|17:07] C:\Users\Elsa\AppData\Roaming\DivX\DivX Codec
[15/12/2007|20:17] C:\Users\Elsa\AppData\Roaming\ESET\ESET Smart Security
[07/02/2008|19:42] C:\Users\Elsa\AppData\Roaming\Google\Local Search History
[01/09/2007|16:26] C:\Users\Elsa\AppData\Roaming\Identities\{283416FD-5F7E-49ED-92F0-84811C1F6659}
[16/06/2008|15:50] C:\Users\Elsa\AppData\Roaming\Lavasoft\Ad-Aware
[18/05/2008|12:29] C:\Users\Elsa\AppData\Roaming\Macromedia\Shockwave Player
[22/01/2008|20:18] C:\Users\Elsa\AppData\Roaming\Macromedia\Flash Player
[17/06/2008|20:12] C:\Users\Elsa\AppData\Roaming\Microsoft\Outlook
[16/06/2008|19:10] C:\Users\Elsa\AppData\Roaming\Microsoft\Windows Photo Gallery
[11/05/2008|14:06] C:\Users\Elsa\AppData\Roaming\Microsoft\MSN Messenger
[30/03/2008|15:50] C:\Users\Elsa\AppData\Roaming\Microsoft\UProof
[09/03/2008|23:02] C:\Users\Elsa\AppData\Roaming\Microsoft\Word
[09/03/2008|17:17] C:\Users\Elsa\AppData\Roaming\Microsoft\Office
[07/03/2008|21:03] C:\Users\Elsa\AppData\Roaming\Microsoft\Windows Media Encoder
[31/12/2007|18:26] C:\Users\Elsa\AppData\Roaming\Microsoft\Speech
[05/12/2007|21:10] C:\Users\Elsa\AppData\Roaming\Microsoft\CLView
[10/11/2007|20:42] C:\Users\Elsa\AppData\Roaming\Microsoft\Templates
[18/10/2007|22:36] C:\Users\Elsa\AppData\Roaming\Microsoft\Sticky Notes
[10/10/2007|17:22] C:\Users\Elsa\AppData\Roaming\Microsoft\HTML Help
[07/10/2007|14:54] C:\Users\Elsa\AppData\Roaming\Microsoft\OIS
[05/10/2007|14:15] C:\Users\Elsa\AppData\Roaming\Microsoft\Proof
[26/09/2007|16:15] C:\Users\Elsa\AppData\Roaming\Microsoft\Excel
[26/09/2007|16:14] C:\Users\Elsa\AppData\Roaming\Microsoft\InfoPath
[26/09/2007|16:14] C:\Users\Elsa\AppData\Roaming\Microsoft\Publisher
[26/09/2007|16:13] C:\Users\Elsa\AppData\Roaming\Microsoft\IMJP10
[26/09/2007|16:11] C:\Users\Elsa\AppData\Roaming\Microsoft\Document Building Blocks
[26/09/2007|16:11] C:\Users\Elsa\AppData\Roaming\Microsoft\AddIns
[04/09/2007|12:14] C:\Users\Elsa\AppData\Roaming\Microsoft\Internet Explorer
[03/09/2007|22:32] C:\Users\Elsa\AppData\Roaming\Microsoft\Crypto
[02/09/2007|15:51] C:\Users\Elsa\AppData\Roaming\Microsoft\IdentityCRL
[02/09/2007|15:02] C:\Users\Elsa\AppData\Roaming\Microsoft\MMC
[02/09/2007|14:14] C:\Users\Elsa\AppData\Roaming\Microsoft\eHome
[02/09/2007|13:28] C:\Users\Elsa\AppData\Roaming\Microsoft\Windows
[01/09/2007|16:27] C:\Users\Elsa\AppData\Roaming\Microsoft\CLR Security Config
[01/09/2007|16:26] C:\Users\Elsa\AppData\Roaming\Microsoft\SystemCertificates
[01/09/2007|16:26] C:\Users\Elsa\AppData\Roaming\Microsoft\Protect
[01/09/2007|16:21] C:\Users\Elsa\AppData\Roaming\Microsoft\Credentials
[25/11/2007|21:12] C:\Users\Elsa\AppData\Roaming\Mozilla\Firefox
[02/09/2007|16:42] C:\Users\Elsa\AppData\Roaming\Packard Bell\PBUpdator
[02/09/2007|15:20] C:\Users\Elsa\AppData\Roaming\Packard Bell\Setup my PC
[02/09/2007|14:58] C:\Users\Elsa\AppData\Roaming\Packard Bell\Smart Restore
[01/09/2007|16:27] C:\Users\Elsa\AppData\Roaming\Packard Bell\Identity Card
[18/06/2008|20:15] C:\Users\Elsa\AppData\Roaming\PC Tools\Spyware Doctor
[12/06/2008|16:11] C:\Users\Elsa\AppData\Roaming\Roxio\MediaManager9
[21/10/2007|14:33] C:\Users\Elsa\AppData\Roaming\Roxio\Label Creator
[10/10/2007|18:24] C:\Users\Elsa\AppData\Roaming\Roxio\RoxioCentral
[10/10/2007|18:24] C:\Users\Elsa\AppData\Roaming\Roxio\RoxioCentral33
[07/11/2007|18:59] C:\Users\Elsa\AppData\Roaming\Snapfish\Common
[07/11/2007|18:58] C:\Users\Elsa\AppData\Roaming\Snapfish\Activia
[02/09/2007|12:09] C:\Users\Elsa\AppData\Roaming\Talkback\MozillaOrg
[21/10/2007|13:56] C:\Users\Elsa\AppData\Roaming\vlc\cache
----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------
[13/06/2008 19:59][--a------] C:\Windows\tasks\Norton Internet Security - Analyse systŠme complŠte - elsa37.job
[18/06/2008 22:00][--a------] C:\Windows\tasks\Extension de garantie.job
[18/06/2008 22:00][--a------] C:\Windows\tasks\Recovery DVD Creator.job
[18/06/2008 22:24][--ah-----] C:\Windows\tasks\SA.DAT
[18/06/2008 22:23][--a------] C:\Windows\tasks\SCHEDLGU.TXT
------[ Listing des dossiers dans C:\ProgramData ]------
[14/02/2008|19:55] C:\ProgramData\Adobe
[14/02/2008|19:56] C:\ProgramData\ALM
[28/11/2007|18:27] C:\ProgramData\Apple
[28/11/2007|18:34] C:\ProgramData\Apple Computer
[02/11/2006|15:02] C:\ProgramData\Application Data
[17/06/2008|20:12] C:\ProgramData\avg8
[01/09/2007|16:15] C:\ProgramData\Bureau
[21/10/2007|14:45] C:\ProgramData\CyberLink
[02/11/2006|15:02] C:\ProgramData\Desktop
[24/05/2008|13:31] C:\ProgramData\DigitalChocolate
[02/11/2006|15:02] C:\ProgramData\Documents
[24/05/2008|13:30] C:\ProgramData\Double Trump
[16/06/2008|15:15] C:\ProgramData\eMule
[15/12/2007|20:11] C:\ProgramData\ESET
[01/09/2007|16:15] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[14/02/2008|20:13] C:\ProgramData\FLEXnet
[07/02/2008|19:42] C:\ProgramData\Google
[18/06/2008|21:16] C:\ProgramData\Google Updater
[02/06/2007|11:23] C:\ProgramData\InstallShield
[01/09/2007|16:15] C:\ProgramData\Menu D‚marrer
[10/10/2007|17:22] C:\ProgramData\Microsoft
[15/05/2008|19:19] C:\ProgramData\Microsoft Help
[01/09/2007|16:15] C:\ProgramData\ModŠles
[15/06/2008|21:26] C:\ProgramData\ntuser.pol
[18/06/2008|20:10] C:\ProgramData\realprogrampile
[02/12/2007|18:43] C:\ProgramData\Roxio
[29/12/2007|14:12] C:\ProgramData\Sonic
[17/06/2008|19:56] C:\ProgramData\Spybot - Search & Destroy
[02/11/2006|15:02] C:\ProgramData\Start Menu
[25/03/2008|17:05] C:\ProgramData\Symantec
[18/06/2008|22:27] C:\ProgramData\TEMP
[02/11/2006|15:02] C:\ProgramData\Templates
[21/11/2007|14:41] C:\ProgramData\WLInstaller
---------------[ Listing des dossiers dans C:\Program Files ]--------------
[26/02/2008|17:20] C:\Program Files\Adobe
[07/02/2008|19:08] C:\Program Files\Adobe Illustrator 10
[05/09/2007|16:57] C:\Program Files\Alwil Software
[28/11/2007|18:29] C:\Program Files\Apple Software Update
[17/06/2008|17:41] C:\Program Files\AVG
[14/02/2008|19:53] C:\Program Files\Bonjour
[14/02/2008|19:33] C:\Program Files\Common Files
[21/10/2007|15:01] C:\Program Files\CyberLink
[16/06/2008|12:17] C:\Program Files\desktop.ini
[24/05/2008|17:27] C:\Program Files\Digital Chocolate
[27/10/2007|17:05] C:\Program Files\DivX
[01/01/2008|20:27] C:\Program Files\DX-Ball
[05/10/2007|17:35] C:\Program Files\Elsa.txt
[15/06/2008|21:18] C:\Program Files\eMule
[01/09/2007|16:15] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[19/04/2008|22:07] C:\Program Files\FLV Player
[24/05/2008|22:23] C:\Program Files\Free Easy Burner
[21/10/2007|13:49] C:\Program Files\FusionSoft DVD Player XP
[07/02/2008|19:42] C:\Program Files\Google
[14/12/2007|19:25] C:\Program Files\Grisoft
[02/06/2007|11:17] C:\Program Files\HDReg
[18/05/2008|12:32] C:\Program Files\InstallShield Installation Information
[16/06/2008|01:38] C:\Program Files\Internet Explorer
[20/01/2008|14:41] C:\Program Files\iPod
[20/01/2008|14:42] C:\Program Files\iTunes
[26/04/2008|18:18] C:\Program Files\Java
[05/09/2007|16:58] C:\Program Files\Lavasoft
[26/05/2008|21:59] C:\Program Files\Lexmark 2300 Series
[11/05/2008|20:11] C:\Program Files\MessengerDiscovery
[26/09/2007|18:47] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[02/11/2006|14:37] C:\Program Files\Microsoft Games
[26/09/2007|15:54] C:\Program Files\Microsoft Office
[26/09/2007|15:54] C:\Program Files\Microsoft Visual Studio
[26/09/2007|15:47] C:\Program Files\Microsoft Visual Studio 8
[26/09/2007|15:55] C:\Program Files\Microsoft Works
[26/09/2007|15:51] C:\Program Files\Microsoft.NET
[10/09/2007|17:10] C:\Program Files\MioNet
[16/06/2008|01:38] C:\Program Files\Movie Maker
[30/03/2008|12:41] C:\Program Files\Mozilla Firefox
[26/09/2007|15:55] C:\Program Files\MSBuild
[02/09/2007|23:48] C:\Program Files\MSXML 4.0
[16/06/2008|18:33] C:\Program Files\Navilog1
[28/09/2007|18:08] C:\Program Files\nomutil.txt
[11/03/2008|13:43] C:\Program Files\Norton Internet Security
[07/03/2008|20:01] C:\Program Files\NRJ
[02/09/2007|16:43] C:\Program Files\Packard Bell
[10/09/2007|17:06] C:\Program Files\Philips
[05/09/2007|12:39] C:\Program Files\PhotoFiltre Studio
[11/04/2008|17:39] C:\Program Files\Picasa2
[20/01/2008|14:38] C:\Program Files\QuickTime
[18/06/2008|20:09] C:\Program Files\realprogrampile
[02/06/2007|11:13] C:\Program Files\Realtek
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[02/06/2007|11:23] C:\Program Files\Roxio
[18/05/2008|12:32] C:\Program Files\Skyworks Technologies
[19/02/2008|14:02] C:\Program Files\SM
[17/06/2008|19:53] C:\Program Files\Spybot - Search & Destroy
[18/06/2008|21:13] C:\Program Files\Spyware Doctor
[11/03/2008|13:16] C:\Program Files\Symantec
[13/04/2008|21:43] C:\Program Files\TrackMania Nations ESWC
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[21/10/2007|13:44] C:\Program Files\VideoLAN
[16/06/2008|01:38] C:\Program Files\Windows Calendar
[16/06/2008|01:38] C:\Program Files\Windows Collaboration
[16/06/2008|01:37] C:\Program Files\Windows Defender
[16/06/2008|01:38] C:\Program Files\Windows Journal
[21/11/2007|14:55] C:\Program Files\Windows Live
[16/06/2008|01:38] C:\Program Files\Windows Mail
[07/03/2008|20:07] C:\Program Files\Windows Media Components
[16/06/2008|01:38] C:\Program Files\Windows Media Player
[01/09/2007|16:15] C:\Program Files\Windows NT
[16/06/2008|01:38] C:\Program Files\Windows Photo Gallery
[16/06/2008|01:38] C:\Program Files\Windows Sidebar
[26/09/2007|16:38] C:\Program Files\WinRAR
------[ Listing des dossiers dans C:\Program Files\Common Files ]------
[14/02/2008|19:53] C:\Program Files\Common Files\Adobe
[28/11/2007|18:27] C:\Program Files\Common Files\Apple
[26/09/2007|15:54] C:\Program Files\Common Files\DESIGNER
[10/09/2007|17:33] C:\Program Files\Common Files\InstallShield
[20/09/2007|17:49] C:\Program Files\Common Files\Java
[14/02/2008|19:33] C:\Program Files\Common Files\Macrovision Shared
[17/06/2008|17:39] C:\Program Files\Common Files\microsoft shared
[02/06/2007|11:23] C:\Program Files\Common Files\Roxio Shared
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[02/06/2007|11:23] C:\Program Files\Common Files\Sonic Shared
[10/09/2007|17:34] C:\Program Files\Common Files\SPC500NC
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[02/06/2007|11:23] C:\Program Files\Common Files\SureThing Shared
[11/03/2008|13:08] C:\Program Files\Common Files\Symantec Shared
[16/06/2008|01:37] C:\Program Files\Common Files\System
[07/02/2008|19:14] C:\Program Files\Common Files\Vbox
[21/11/2007|14:53] C:\Program Files\Common Files\WindowsLiveInstaller
[24/03/2008|17:20] C:\Program Files\Common Files\Wise Installation Wizard
---------------------------[ Process ]--------------------------
... 73
iexplore.exe ~ [5920]
----------------------[ Recherche avec S_Lop ]---------------------
Aucun fichier / dossier Lop trouvé !
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
Aucun fichier / dossier Lop trouvé !
----------------------[ Verification du Registre ]----------------------
..... OK !
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts PROPRE
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-06-18 22:30:34
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
Aucune autre infection trouvée !
[F:7200][D:584]-> C:\Users\Elsa\AppData\Local\Temp
[F:156][D:0]-> C:\Users\Elsa\AppData\Roaming\MICROS~1\Windows\Cookies
[F:5208][D:11]-> C:\Users\Elsa\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:9][D:6]-> C:\$Recycle.Bin
[ UAC => 1 ]
--------------------[ Fin du rapport a 22:34:26,08 ]----------------------
BitDefender en ligne: http://www.bitdefender.fr/scan_fr/scan8/ie.html
Tutoriel BitDefender en ligne: http://cybersecurite.xooit.com/t201-Scan-en-ligne-BitDefender.htm
cela va prendre au moins 2h ...
et je ferais quoi après ?