Sujet Précédent Sujet Suivant

Rapport hijackthis : pubs intempestives

qqfr2507 Messages postés 19 Statut Membre -  
raphy00 Messages postés 1112 Statut Membre -
Bonjour,

J'ai un problème de pub intempestives qui s'ouvrent sur IE, je décris le problème dans ce post :
http://www.commentcamarche.net/forum/affich 7227993 page ie qui s ouvre toute seule regulierement

J'ai donc fait un rapport hijackthis mais je suis incapable de l'interpréter... Je fais donc appelle à des spécialistes qui voudraient bien m'éclairer et me dire si ils voient ou non quelque chose d'anormal.

Voilà le rapport :

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:36:50, on 04/07/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16681)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
c:\Program Files\Bioscrypt\VeriSoft\Bin\AsGHost.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\conime.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\HP\QuickPlay\QPService.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\Wanadoo\CnxMon.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Microsoft Encarta\Collection Microsoft Encarta 2006 DVD\EDICT.EXE
C:\Users\Quentin\AppData\Local\oceiqsu.exe
C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
C:\Windows\ehome\ehmsas.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\iTunes\iTunes.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\distnoted.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceHelper.exe
C:\Program Files\Adobe\Reader 8.0\Reader\AcroRd32.exe
C:\Program Files\eMule\emule.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Quentin\Desktop\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.netvibes.com/en
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr?cobrand=hp-notebook.msn.com&ocid=HPDHP&pc=HPNTDF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr?cobrand=hp-notebook.msn.com&ocid=HPDHP&pc=HPNTDF
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\NppBho.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Solid Converter PDF - {259F616C-A300-44F5-B04A-ED001A26C85C} - C:\Program Files\SolidDocuments\SolidConverterPDF\SCPDF\ExploreExtPDF.dll
O2 - BHO: bho2gr Class - {31FF080D-12A3-439A-A2EF-4BA95A3148E8} - C:\Program Files\GetRight\xx2gr.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: VeriSoft Access Manager - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - c:\Program Files\Bioscrypt\VeriSoft\Bin\ItIEAddIn.dll
O3 - Toolbar: Show Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\UIBHO.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Solid Converter PDF - {259F616C-A300-44F5-B04A-ED001A26C85C} - C:\Program Files\SolidDocuments\SolidConverterPDF\SCPDF\ExploreExtPDF.dll
O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [SMSERIAL] C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe"
O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [HP Health Check Scheduler] C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] %ProgramFiles%\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [WAWifiMessage] %ProgramFiles%\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [CognizanceTS] rundll32.exe c:\PROGRA~1\BIOSCR~1\VeriSoft\Bin\ASTSVCC.dll,RegisterModule
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [WooCnxMon] C:\PROGRA~1\Wanadoo\CnxMon.exe
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [E06FXLRD_16693869] "C:\Program Files\Microsoft Encarta\Collection Microsoft Encarta 2006 DVD\EDICT.EXE" -m
O4 - HKCU\..\Run: [LaunchList] C:\Program Files\Pinnacle\Studio 11\LaunchList2.exe
O4 - HKCU\..\Run: [oceiqsu] c:\users\quentin\appdata\local\oceiqsu.exe oceiqsu
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
O8 - Extra context menu item: Download with GetRight Pro - C:\Program Files\GetRight\GRdownload.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Open with GetRight Pro Browser - C:\Program Files\GetRight\GRbrowse.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Statistiques d’Anti-Virus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\SCIEPlgn.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Common Files\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: (no name) - SolidConverterPDF - (no file) (HKCU)
O9 - Extra button: (no name) - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - (no file) (HKCU)
O13 - Gopher Prefix:
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - http://download.divx.com/player/DivXBrowserPlugin.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: APSHook.dll,C:\PROGRA~1\KASPER~1\KASPER~1.0\r3hook.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Kaspersky Anti-Virus 7.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe
O23 - Service: BestSync Service (BestSyncSvc) - RiseFly Software - C:\Program Files\BestSync\BestSyncSvc.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\CLSched.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Symantec IS Password Validation (ISPwdSvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\isPwdSvc.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: SolidPDFConverterReadSpool (ScReadSpool) - VoyagerSoft, LLC - C:\Program Files\SolidDocuments\SolidConverterPDF\SCPDF\SolidPdfService.exe
O23 - Service: SpeedTouch 330 Manager (st330service) - THOMSON Telecom Belgium - C:\Program Files/Thomson/ST330/service/st330service.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
A voir également:

7 réponses

Réponse 1 / 7
raphy00 Messages postés 1112 Statut Membre 9
 
Salut,

Commence par faire ca :

Télécharge Lop S&D.exe sur ton Bureau.

https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2

* Double-clique dessus pour lancer l'installation.
* Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau.
* Séléctionne la langue souhaitée , puis choisis l'option 1 (Recherche)
* Patiente jusqu'à la fin du scan
* Poste le rapport généré (C:\lopR.txt)

(Si le Bureau ne réapparaît pas, presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide)
0
Réponse 2 / 7
qqfr2507 Messages postés 19 Statut Membre 1
 
Voilà j'ai fait ce que tu m'as dit, voici le rapport :

-----------------------[ Lop S&D 4.2.1-9 XP/Vista ]---------------------

[ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
[ USER : Quentin ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 04/07/2008 | 11:55:03,29 ] [ PC : PC-DE-QUENTIN ]
[ MAJ : 01-07-2008 | 00:25 ]
[ UAC => 0 ]

-------------[ Listing des dossiers dans Roaming ]------------

[03/02/2008|12:45] C:\Users\Quentin\AppData\Roaming\Adobe\Plugins
[21/12/2007|17:44] C:\Users\Quentin\AppData\Roaming\Adobe\Flash Player
[16/12/2007|16:49] C:\Users\Quentin\AppData\Roaming\Adobe\Adobe Photoshop CS3
[16/12/2007|16:49] C:\Users\Quentin\AppData\Roaming\Adobe\Enregistrer pour le Web
[29/11/2007|20:47] C:\Users\Quentin\AppData\Roaming\Adobe\Workflow
[29/11/2007|20:47] C:\Users\Quentin\AppData\Roaming\Adobe\CameraRaw
[28/11/2007|18:20] C:\Users\Quentin\AppData\Roaming\Adobe\Color
[28/11/2007|18:20] C:\Users\Quentin\AppData\Roaming\Adobe\Adobe PDF
[28/11/2007|18:13] C:\Users\Quentin\AppData\Roaming\Adobe\Updater5
[29/09/2007|09:15] C:\Users\Quentin\AppData\Roaming\Adobe\Linguistics
[05/09/2007|19:04] C:\Users\Quentin\AppData\Roaming\Adobe\Acrobat

[04/07/2008|11:48] C:\Users\Quentin\AppData\Roaming\Apple Computer\iTunes

[03/07/2008|12:15] C:\Users\Quentin\AppData\Roaming\Azureus\logs
[26/06/2008|19:55] C:\Users\Quentin\AppData\Roaming\Azureus\active
[26/06/2008|19:55] C:\Users\Quentin\AppData\Roaming\Azureus\dht
[26/06/2008|19:55] C:\Users\Quentin\AppData\Roaming\Azureus\net
[26/06/2008|14:24] C:\Users\Quentin\AppData\Roaming\Azureus\torrents
[26/06/2008|12:12] C:\Users\Quentin\AppData\Roaming\Azureus\tmp
[07/03/2008|17:09] C:\Users\Quentin\AppData\Roaming\Azureus\updates
[23/09/2007|17:59] C:\Users\Quentin\AppData\Roaming\Azureus\plugins
[23/09/2007|17:57] C:\Users\Quentin\AppData\Roaming\Azureus\shares

[08/09/2007|17:55] C:\Users\Quentin\AppData\Roaming\Creative\Media Database
[08/09/2007|17:53] C:\Users\Quentin\AppData\Roaming\Creative\MediaSource
[08/09/2007|12:39] C:\Users\Quentin\AppData\Roaming\Creative\ZENcast

[06/09/2007|07:07] C:\Users\Quentin\AppData\Roaming\CyberLink\PowerCinema
[06/09/2007|07:07] C:\Users\Quentin\AppData\Roaming\CyberLink\PowerDVD

[12/10/2007|22:59] C:\Users\Quentin\AppData\Roaming\DivX\DivX Codec
[11/10/2007|20:56] C:\Users\Quentin\AppData\Roaming\DivX\DivX Player

[03/07/2008|12:15] C:\Users\Quentin\AppData\Roaming\Google\Local Search History

[05/09/2007|18:58] C:\Users\Quentin\AppData\Roaming\Hewlett-Packard\HP Software UI

[25/12/2007|19:24] C:\Users\Quentin\AppData\Roaming\HotSync\Conduits

[06/09/2007|07:07] C:\Users\Quentin\AppData\Roaming\HP\QuickPlay

[14/12/2007|20:19] C:\Users\Quentin\AppData\Roaming\ID3-TagIT 3\Libraries

[05/09/2007|19:04] C:\Users\Quentin\AppData\Roaming\Identities\{40D0CDEE-0676-4428-99CB-9506FD8C6C0E}

[23/12/2007|10:00] C:\Users\Quentin\AppData\Roaming\InstallShield\ISEngine12.0

[25/12/2007|18:49] C:\Users\Quentin\AppData\Roaming\Leadertech\PowerRegister

[01/01/2008|18:56] C:\Users\Quentin\AppData\Roaming\LimeWire\.AppSpecialShare
[01/01/2008|16:57] C:\Users\Quentin\AppData\Roaming\LimeWire\xml
[01/01/2008|16:57] C:\Users\Quentin\AppData\Roaming\LimeWire\themes

[03/07/2008|13:48] C:\Users\Quentin\AppData\Roaming\Macromedia\Flash Player
[12/09/2007|17:22] C:\Users\Quentin\AppData\Roaming\Macromedia\Shockwave Player

[26/06/2008|08:42] C:\Users\Quentin\AppData\Roaming\Microsoft\Excel
[22/06/2008|10:41] C:\Users\Quentin\AppData\Roaming\Microsoft\Forms
[01/06/2008|18:46] C:\Users\Quentin\AppData\Roaming\Microsoft\Word
[19/04/2008|13:00] C:\Users\Quentin\AppData\Roaming\Microsoft\Windows Photo Gallery
[10/04/2008|21:10] C:\Users\Quentin\AppData\Roaming\Microsoft\Office
[26/02/2008|20:08] C:\Users\Quentin\AppData\Roaming\Microsoft\Credentials
[15/02/2008|23:36] C:\Users\Quentin\AppData\Roaming\Microsoft\Internet Explorer
[10/02/2008|18:32] C:\Users\Quentin\AppData\Roaming\Microsoft\Clip Organizer
[10/02/2008|13:14] C:\Users\Quentin\AppData\Roaming\Microsoft\UProof
[10/02/2008|12:56] C:\Users\Quentin\AppData\Roaming\Microsoft\Templates
[26/12/2007|18:29] C:\Users\Quentin\AppData\Roaming\Microsoft\Network
[25/12/2007|18:40] C:\Users\Quentin\AppData\Roaming\Microsoft\Installer
[17/11/2007|17:29] C:\Users\Quentin\AppData\Roaming\Microsoft\PowerPoint
[07/11/2007|20:52] C:\Users\Quentin\AppData\Roaming\Microsoft\Outlook
[04/11/2007|12:10] C:\Users\Quentin\AppData\Roaming\Microsoft\Windows Live Call
[04/11/2007|12:10] C:\Users\Quentin\AppData\Roaming\Microsoft\IdentityCRL
[28/10/2007|09:14] C:\Users\Quentin\AppData\Roaming\Microsoft\CLView
[10/10/2007|15:26] C:\Users\Quentin\AppData\Roaming\Microsoft\Proof
[29/09/2007|08:47] C:\Users\Quentin\AppData\Roaming\Microsoft\Media Player
[22/09/2007|17:51] C:\Users\Quentin\AppData\Roaming\Microsoft\Speech
[14/09/2007|16:14] C:\Users\Quentin\AppData\Roaming\Microsoft\CLR Security Config
[12/09/2007|17:28] C:\Users\Quentin\AppData\Roaming\Microsoft\Encarta Reference Library
[09/09/2007|17:28] C:\Users\Quentin\AppData\Roaming\Microsoft\Document Building Blocks
[08/09/2007|19:52] C:\Users\Quentin\AppData\Roaming\Microsoft\HTML Help
[07/09/2007|19:02] C:\Users\Quentin\AppData\Roaming\Microsoft\Windows
[06/09/2007|20:53] C:\Users\Quentin\AppData\Roaming\Microsoft\MMC
[05/09/2007|19:57] C:\Users\Quentin\AppData\Roaming\Microsoft\Crypto
[05/09/2007|19:45] C:\Users\Quentin\AppData\Roaming\Microsoft\MSN Messenger
[05/09/2007|19:21] C:\Users\Quentin\AppData\Roaming\Microsoft\eHome
[05/09/2007|19:14] C:\Users\Quentin\AppData\Roaming\Microsoft\AddIns
[05/09/2007|19:04] C:\Users\Quentin\AppData\Roaming\Microsoft\Protect
[05/09/2007|19:02] C:\Users\Quentin\AppData\Roaming\Microsoft\SystemCertificates

[15/12/2007|20:21] C:\Users\Quentin\AppData\Roaming\Mozilla\Firefox

[08/09/2007|08:24] C:\Users\Quentin\AppData\Roaming\Notepad++\plugins

[10/11/2007|10:03] C:\Users\Quentin\AppData\Roaming\Real\RealPlayer

[21/06/2008|17:18] C:\Users\Quentin\AppData\Roaming\RiseFly\BestSync 2008

[25/12/2007|19:07] C:\Users\Quentin\AppData\Roaming\Roxio\MediaManager9
[05/10/2007|19:54] C:\Users\Quentin\AppData\Roaming\Roxio\Dragon
[05/10/2007|19:54] C:\Users\Quentin\AppData\Roaming\Roxio\RoxioCentral

[30/09/2007|15:56] C:\Users\Quentin\AppData\Roaming\SecuROM\UserData

[18/05/2008|18:45] C:\Users\Quentin\AppData\Roaming\Skype\qqfr2507
[12/09/2007|17:45] C:\Users\Quentin\AppData\Roaming\Skype\Content
[12/09/2007|17:45] C:\Users\Quentin\AppData\Roaming\Skype\Pictures

[24/05/2008|21:51] C:\Users\Quentin\AppData\Roaming\SmartFTP\Client 2.0

[26/06/2008|08:42] C:\Users\Quentin\AppData\Roaming\SolidDocuments\SolidConverterPDF

[28/10/2007|19:10] C:\Users\Quentin\AppData\Roaming\UseNeXT\cache

[25/05/2008|17:47] C:\Users\Quentin\AppData\Roaming\vlc\cache

----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------

[23/06/2008 20:02][--a------] C:\Windows\tasks\Norton Internet Security - Analyse systŠme complŠte - Quentin.job
[03/07/2008 14:30][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{EA7AB229-D475-4921-B233-51E03DFED404}.job
[04/07/2008 06:41][--ah-----] C:\Windows\tasks\SA.DAT
[03/07/2008 22:16][--a------] C:\Windows\tasks\SCHEDLGU.TXT

------[ Listing des dossiers dans C:\ProgramData ]------

[06/02/2008|21:46] C:\ProgramData\__FileUploader.log
[18/05/2007|03:47] C:\ProgramData\{623D32E9-0C62-4453-AD44-98B31F52A5E1}
[28/11/2007|18:14] C:\ProgramData\Adobe
[05/09/2007|20:23] C:\ProgramData\Apple
[29/09/2007|11:18] C:\ProgramData\Apple Computer
[05/09/2007|18:53] C:\ProgramData\Application Data
[05/09/2007|18:53] C:\ProgramData\Bureau
[22/09/2007|14:08] C:\ProgramData\CyberLink
[05/09/2007|18:53] C:\ProgramData\Documents
[22/12/2007|19:05] C:\ProgramData\DVD Shrink
[09/09/2007|08:47] C:\ProgramData\eMule
[05/09/2007|18:53] C:\ProgramData\Favoris
[28/11/2007|18:17] C:\ProgramData\FLEXnet
[18/05/2007|03:59] C:\ProgramData\Google
[18/05/2007|04:23] C:\ProgramData\Hewlett-Packard
[25/12/2007|19:28] C:\ProgramData\HotSync
[06/09/2007|07:07] C:\ProgramData\HP
[18/05/2007|03:57] C:\ProgramData\hpzinstall.log
[14/12/2007|20:19] C:\ProgramData\ID3-TagIT 3
[27/02/2008|20:27] C:\ProgramData\Installer.log
[04/07/2008|06:49] C:\ProgramData\Kaspersky Lab
[24/11/2007|19:59] C:\ProgramData\Kaspersky Lab Setup Files
[10/11/2007|13:00] C:\ProgramData\Lavasoft
[05/09/2007|18:53] C:\ProgramData\Menu D‚marrer
[07/11/2007|12:11] C:\ProgramData\Microsoft
[14/05/2008|13:29] C:\ProgramData\Microsoft Help
[05/09/2007|18:53] C:\ProgramData\ModŠles
[22/12/2007|20:16] C:\ProgramData\NCH Software
[22/12/2007|09:39] C:\ProgramData\Pinnacle
[22/12/2007|09:40] C:\ProgramData\Pinnacle Studio
[17/11/2007|18:21] C:\ProgramData\RiseFly
[18/05/2007|03:28] C:\ProgramData\Roxio
[08/09/2007|12:58] C:\ProgramData\Skype
[22/12/2007|09:54] C:\ProgramData\SmartSound Software Inc
[10/11/2007|13:26] C:\ProgramData\SolidDocuments
[05/10/2007|19:54] C:\ProgramData\Sonic
[03/07/2008|09:43] C:\ProgramData\Spybot - Search & Destroy
[06/11/2007|09:55] C:\ProgramData\Symantec
[25/02/2008|20:34] C:\ProgramData\TamoSoft
[26/02/2008|22:21] C:\ProgramData\WLInstaller

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[18/05/2007|03:47] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[15/03/2008|12:16] C:\Program Files\Activision
[28/11/2007|18:14] C:\Program Files\Adobe
[22/06/2008|17:47] C:\Program Files\adslTV
[13/10/2007|08:43] C:\Program Files\AGEIA Technologies
[03/07/2008|12:48] C:\Program Files\Anagene2
[04/05/2008|10:54] C:\Program Files\Apple Software Update
[07/06/2008|18:46] C:\Program Files\Audacity
[05/11/2007|18:39] C:\Program Files\AviSynth 2.5
[07/03/2008|17:09] C:\Program Files\Azureus
[17/11/2007|18:21] C:\Program Files\BestSync
[05/09/2007|19:02] C:\Program Files\Bioscrypt
[02/03/2008|20:06] C:\Program Files\Biwizmi
[28/11/2007|18:13] C:\Program Files\Bonjour
[28/09/2007|20:06] C:\Program Files\CASIO
[03/07/2008|12:10] C:\Program Files\CCleaner
[03/07/2008|09:36] C:\Program Files\Common Files
[27/02/2008|09:51] C:\Program Files\CommViewWiFi
[08/09/2007|17:40] C:\Program Files\Creative
[08/09/2007|17:40] C:\Program Files\Creative Installation Information
[18/11/2007|21:34] C:\Program Files\DAEMON Tools
[06/09/2007|07:06] C:\Program Files\desktop.ini
[11/10/2007|20:55] C:\Program Files\DivX
[22/12/2007|19:01] C:\Program Files\DVD Shrink
[16/03/2008|13:07] C:\Program Files\EA Sports
[18/05/2007|03:59] C:\Program Files\EasyBits
[29/03/2008|14:09] C:\Program Files\EasyPHP
[18/11/2007|20:09] C:\Program Files\Electronic Arts
[09/09/2007|08:47] C:\Program Files\eMule
[05/11/2007|18:37] C:\Program Files\eRightSoft
[22/09/2007|08:57] C:\Program Files\Eurobarre
[05/09/2007|18:53] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[21/06/2008|09:15] C:\Program Files\FileZilla Client
[05/09/2007|19:02] C:\Program Files\Fingerprint Sensor
[17/02/2008|13:05] C:\Program Files\Free iPod Video Converter
[01/07/2008|19:34] C:\Program Files\FTP Commander
[03/07/2008|12:15] C:\Program Files\GetRight
[06/09/2007|07:03] C:\Program Files\Google
[18/05/2007|04:17] C:\Program Files\Hewlett-Packard
[27/09/2007|19:34] C:\Program Files\HISC
[18/05/2007|04:18] C:\Program Files\HP
[18/05/2007|04:06] C:\Program Files\HPQ
[14/12/2007|20:19] C:\Program Files\ID3-TagIT 3
[08/12/2007|19:59] C:\Program Files\iGnuteel
[17/05/2008|15:32] C:\Program Files\InstallShield Installation Information
[18/05/2007|03:09] C:\Program Files\Intel
[12/06/2008|14:22] C:\Program Files\Internet Explorer
[04/05/2008|11:10] C:\Program Files\iPod
[04/05/2008|11:10] C:\Program Files\iTunes
[26/01/2008|18:04] C:\Program Files\IVCsoft
[06/11/2007|09:59] C:\Program Files\Java
[06/10/2007|20:33] C:\Program Files\JeuDeGo
[24/11/2007|20:00] C:\Program Files\Kaspersky Lab
[28/10/2007|22:48] C:\Program Files\K-Lite Codec Pack
[08/09/2007|17:52] C:\Program Files\LaBoiteACouleurs
[10/11/2007|13:00] C:\Program Files\Lavasoft
[01/01/2008|16:54] C:\Program Files\LimeWire
[21/12/2007|23:06] C:\Program Files\MagicISO
[13/10/2007|19:02] C:\Program Files\MicromegaTS
[17/11/2007|23:55] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[12/09/2007|17:23] C:\Program Files\Microsoft Encarta
[02/11/2006|14:37] C:\Program Files\Microsoft Games
[10/11/2007|20:41] C:\Program Files\Microsoft Office
[07/11/2007|12:13] C:\Program Files\Microsoft Visual Studio
[07/11/2007|12:08] C:\Program Files\Microsoft Visual Studio 8
[18/05/2007|03:46] C:\Program Files\Microsoft Works
[18/05/2007|03:45] C:\Program Files\Microsoft.NET
[18/05/2007|02:48] C:\Program Files\Motorola
[02/11/2006|14:42] C:\Program Files\Movie Maker
[25/04/2008|19:24] C:\Program Files\Mozilla Firefox
[02/12/2007|20:06] C:\Program Files\mp3DirectCut
[07/11/2007|12:13] C:\Program Files\MSBuild
[02/11/2006|14:37] C:\Program Files\MSN
[05/09/2007|19:26] C:\Program Files\MSXML 4.0
[04/07/2008|11:04] C:\Program Files\Navilog1
[22/12/2007|20:40] C:\Program Files\NCH Software
[21/11/2007|19:10] C:\Program Files\Norton Internet Security
[22/04/2008|11:33] C:\Program Files\Notepad++
[07/09/2007|19:49] C:\Program Files\Nouveau dossier
[14/06/2008|19:32] C:\Program Files\palmOne
[23/12/2007|10:15] C:\Program Files\Pinnacle
[04/05/2008|11:07] C:\Program Files\QuickTime
[06/11/2007|13:11] C:\Program Files\Real
[18/05/2007|04:04] C:\Program Files\Realtek
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[18/05/2007|03:28] C:\Program Files\Roxio
[15/04/2008|11:01] C:\Program Files\SAGEM
[07/09/2007|22:03] C:\Program Files\Sega
[18/05/2007|04:00] C:\Program Files\Services en ligne
[08/09/2007|12:58] C:\Program Files\Skype
[09/12/2007|18:28] C:\Program Files\SLD Codec Pack
[12/04/2008|12:58] C:\Program Files\SmartFTP Client
[12/04/2008|12:56] C:\Program Files\SmartFTP Client 2.5 Setup Files
[10/11/2007|13:27] C:\Program Files\SolidDocuments
[03/07/2008|09:07] C:\Program Files\Spybot - Search & Destroy
[18/05/2007|03:32] C:\Program Files\Symantec
[18/05/2007|02:54] C:\Program Files\Synaptics
[23/02/2008|18:26] C:\Program Files\Thomson
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[29/02/2008|22:24] C:\Program Files\Veoh Networks
[27/02/2008|21:04] C:\Program Files\VideoLAN
[19/06/2008|18:54] C:\Program Files\VirtualDJ
[22/12/2007|20:05] C:\Program Files\VirtualDubMOD
[14/04/2008|21:57] C:\Program Files\Wanadoo
[30/06/2008|19:26] C:\Program Files\WebMediaPlayer
[05/09/2007|21:26] C:\Program Files\Windows Calendar
[02/11/2006|14:42] C:\Program Files\Windows Collaboration
[05/09/2007|21:26] C:\Program Files\Windows Defender
[02/11/2006|14:42] C:\Program Files\Windows Journal
[17/11/2007|17:29] C:\Program Files\Windows Live
[19/06/2008|18:33] C:\Program Files\Windows Live Safety Center
[12/06/2008|14:22] C:\Program Files\Windows Mail
[12/10/2007|15:23] C:\Program Files\Windows Media Player
[05/09/2007|18:53] C:\Program Files\Windows NT
[02/11/2006|14:42] C:\Program Files\Windows Photo Gallery
[09/01/2008|22:34] C:\Program Files\Windows Sidebar
[14/09/2007|17:43] C:\Program Files\WinRAR
[13/10/2007|19:08] C:\Program Files\Your Company Name

------[ Listing des dossiers dans C:\Program Files\Common Files ]------

[28/11/2007|18:13] C:\Program Files\Common Files\Adobe
[05/09/2007|20:23] C:\Program Files\Common Files\Apple
[08/09/2007|12:37] C:\Program Files\Common Files\Creative
[18/05/2007|03:45] C:\Program Files\Common Files\DESIGNER
[18/05/2007|03:57] C:\Program Files\Common Files\HP
[18/05/2007|04:04] C:\Program Files\Common Files\InstallShield
[18/05/2007|04:22] C:\Program Files\Common Files\Java
[18/05/2007|04:06] C:\Program Files\Common Files\LightScribe
[28/11/2007|18:02] C:\Program Files\Common Files\Macrovision Shared
[17/11/2007|17:26] C:\Program Files\Common Files\microsoft shared
[11/10/2007|20:55] C:\Program Files\Common Files\PX Storage Engine
[10/11/2007|10:03] C:\Program Files\Common Files\Real
[18/05/2007|03:27] C:\Program Files\Common Files\Roxio Shared
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[08/09/2007|12:58] C:\Program Files\Common Files\Skype
[18/05/2007|03:27] C:\Program Files\Common Files\Sonic Shared
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[18/05/2007|03:28] C:\Program Files\Common Files\SureThing Shared
[06/09/2007|19:47] C:\Program Files\Common Files\Symantec Shared
[10/11/2007|20:41] C:\Program Files\Common Files\System
[17/11/2007|17:26] C:\Program Files\Common Files\WindowsLiveInstaller
[10/11/2007|12:59] C:\Program Files\Common Files\Wise Installation Wizard

---------------------------[ Process ]--------------------------

... 89

iexplore.exe ~ [3404]

----------------------[ Recherche avec S_Lop ]---------------------

Aucun fichier / dossier Lop trouvé !

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

C:\Users\Quentin\AppData\Roaming\MICROS~1\Windows\Cookies\quentin@adopt.euroclick[1].txt
C:\Users\Quentin\AppData\Roaming\MICROS~1\Windows\Cookies\quentin@pacificpoker[1].txt

----------------------[ Verification du Registre ]----------------------

..... OK !

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts PROPRE

----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-07-04 11:55:57
Windows 6.0.6000 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------

C:\Users\Quentin\AppData\Local\oceiqsu_navps.dat
C:\Users\Quentin\AppData\Local\oceiqsu.exe
C:\Users\Quentin\AppData\Local\oceiqsu.dat
C:\Users\Quentin\AppData\Local\oceiqsu_nav.dat
[b]! EGDACCESS !/b

=> C:\Users\Quentin\AppData\Roaming\Azureus\torrents\-[mininova.org]-_Need.For.Speed.Pro.Street.CRACK-ONLY-RELOADED.torrent
=> C:\Users\Quentin\AppData\Roaming\Azureus\torrents\=mininova.org=_Need.for.Speed.ProStreet.PROPER.CRACK.ONLY-ViTALiTY.torrent
=> C:\Users\Quentin\AppData\Roaming\Microsoft\Windows\Cookies\quentin@crackserialkeygen[2].txt
=> C:\Users\Quentin\AppData\Roaming\Microsoft\Windows\Cookies\quentin@cracktorrentserial[2].txt
=> C:\Users\Quentin\Desktop\En vrac\Atomix.Virtual.DJ.Professional.V5.1.Multilangages.Crack.[emule-island.com]
=> C:\Users\Quentin\Desktop\En vrac\Cracks
=> C:\Users\Quentin\Desktop\En vrac\Atomix.Virtual.DJ.Professional.V5.1.Multilangages.Crack.[emule-island.com]\Bienvenue sur eMule-Island !.url
=> C:\Users\Quentin\Desktop\En vrac\Atomix.Virtual.DJ.Professional.V5.1.Multilangages.Crack.[emule-island.com]\Consignes D'installation.txt
=> C:\Users\Quentin\Desktop\En vrac\Atomix.Virtual.DJ.Professional.V5.1.Multilangages.Crack.[emule-island.com]\Crack
=> C:\Users\Quentin\Desktop\En vrac\Atomix.Virtual.DJ.Professional.V5.1.Multilangages.Crack.[emule-island.com]\install_virtualdj_v5.1.exe
=> C:\Users\Quentin\Desktop\En vrac\Cracks\Age_of_Empire_3_MINI_IMAGEN-Macioso
=> C:\Users\Quentin\Desktop\En vrac\Cracks\CIVILIZATION.4.V1.09.ENG.RELOADED.NOCD
=> C:\Users\Quentin\Desktop\En vrac\Cracks\CIVILIZATION.4.V1.52.ENG.RELOADED.NOCD
=> C:\Users\Quentin\Desktop\En vrac\Cracks\Civilization4.exe
=> C:\Users\Quentin\Desktop\En vrac\Cracks\Crack Photoshop CS3
=> C:\Users\Quentin\Desktop\En vrac\Cracks\Age_of_Empire_3_MINI_IMAGEN-Macioso\crackmanworld.com.html
=> C:\Users\Quentin\Desktop\En vrac\Cracks\Age_of_Empire_3_MINI_IMAGEN-Macioso\mcz-aoe3mi.iso
=> C:\Users\Quentin\Desktop\En vrac\Cracks\Age_of_Empire_3_MINI_IMAGEN-Macioso\mcz-aoe3mi.nfo
=> C:\Users\Quentin\Desktop\En vrac\Cracks\CIVILIZATION.4.V1.09.ENG.RELOADED.NOCD\Civilization4.exe
=> C:\Users\Quentin\Desktop\En vrac\Cracks\CIVILIZATION.4.V1.09.ENG.RELOADED.NOCD\reloaded.nfo
=> C:\Users\Quentin\Desktop\En vrac\Cracks\CIVILIZATION.4.V1.52.ENG.RELOADED.NOCD\Civilization4.exe
=> C:\Users\Quentin\Desktop\En vrac\Cracks\CIVILIZATION.4.V1.52.ENG.RELOADED.NOCD\reloaded.nfo
=> C:\Users\Quentin\Desktop\En vrac\Cracks\Crack Photoshop CS3\CiM.nFo
=> C:\Users\Quentin\Desktop\En vrac\Cracks\Crack Photoshop CS3\Patch.exe
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\CommView
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\CommView\CV.exe
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\CommView\readme.txt
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\CommView\setup.exe
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\aircrack.exe
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\airdecap.exe
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\airodump.exe
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\cygwin1.dll
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\Lang
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\MSVCR70.DLL
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\PEEK.DLL
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\PEEK5.SYS
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\README.txt
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\Temp
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\Updater
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\Updater.exe
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\Updater.ini
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\WinAircrack.exe
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\WinAircrack.ini
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\wzcook.exe
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\Lang\english.ini
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\Lang\francais.ini
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\Lang\spanish.ini
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\Lang\system.ini.txt
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\Temp\Download.tmp
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\Updater\Data.upd
=> C:\Users\Quentin\Downloads\eMule\Incoming\Palm MMPlayer 0.2.14 + crack.zip
=> C:\Users\Quentin\Favorites\Aircrack-ng, aireplay-ng, airodump-ng, Tutorial crack cle wep.url
=> C:\Users\Quentin\Favorites\Wifiway cracker une cl‚ WEP.url
=> C:\Users\Quentin\Favorites\YouTube - How to Crack WEP.url
=> C:\Users\Quentin\AppData\Roaming\Azureus\torrents\Pinnacle_Studio_Plus_v11_Incl_Keygen.torrent_-moNova.org-_.torrent
=> C:\Users\Quentin\AppData\Roaming\Microsoft\Windows\Cookies\quentin@crackserialkeygen[2].txt
=> C:\Users\Quentin\Desktop\En vrac\K750i\1300 jeux\DigitalRed Shuffleboard v20\Digital.Red.Shuffleboard.v2.0.for.Nokia.3650.7650..Keygen-BLZPDA
=> C:\Users\Quentin\Desktop\En vrac\K750i\1300 jeux\DigitalRed Shuffleboard v20\Digital.Red.Shuffleboard.v2.0.for.Nokia.3650.7650..Keygen-BLZPDA\-COMPLETE-
=> C:\Users\Quentin\Desktop\En vrac\K750i\1300 jeux\DigitalRed Shuffleboard v20\Digital.Red.Shuffleboard.v2.0.for.Nokia.3650.7650..Keygen-BLZPDA\blzpda.nfo
=> C:\Users\Quentin\Desktop\En vrac\K750i\1300 jeux\DigitalRed Shuffleboard v20\Digital.Red.Shuffleboard.v2.0.for.Nokia.3650.7650..Keygen-BLZPDA\file_id.diz
=> C:\Users\Quentin\Desktop\En vrac\K750i\1300 jeux\DigitalRed Shuffleboard v20\Digital.Red.Shuffleboard.v2.0.for.Nokia.3650.7650..Keygen-BLZPDA\shuffleboard7650ex.SIS
=> C:\Users\Quentin\Desktop\En vrac\K750i\1300 jeux\Geopod\Geopod\keygen.exe
=> C:\Users\Quentin\Desktop\En vrac\K750i\1300 jeux\MGS-Silverball_v1.60\Silverball_v1.60\keygen.exe
=> C:\Users\Quentin\Desktop\En vrac\K750i\1300 jeux\MGSkarting_cracked\karting\keygen.exe
=> C:\Users\Quentin\Desktop\En vrac\K750i\1300 jeux\MVRPool\MVRPool\keygen.exe
=> C:\Users\Quentin\Desktop\En vrac\K750i\1300 jeux\Tennis Maniac\keygen.exe

[F:358][D:9]-> C:\Users\Quentin\AppData\Local\Temp
[F:1194][D:1]-> C:\Users\Quentin\AppData\Roaming\MICROS~1\Windows\Cookies
[F:4461][D:8]-> C:\Users\Quentin\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:27][D:3]-> C:\$Recycle.Bin

[ UAC => 1 ]

--------------------[ Fin du rapport a 11:57:11,24 ]----------------------
0
Réponse 3 / 7
raphy00 Messages postés 1112 Statut Membre 9
 
Adepte de cracks ?..;

Pour desinfecter:

* Choisis cette fois ci l'Option 2 (Suppression)
* Ne ferme pas la fenêtre lors de la suppression !
* Poste le rapport généré (C:\lopR.txt)

(Si le Bureau ne réapparaît pas, presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide)

Apres tu repostes un hijackthis.
0
Réponse 4 / 7
qqfr2507 Messages postés 19 Statut Membre 1
 
Voila le premier rapport obtenu après la désinfection :

-----------------------[ Lop S&D 4.2.1-9 XP/Vista ]---------------------

[ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
[ USER : Quentin ] [ "C:\Lop SD" ] [ Selection : 2 ]
[ 04/07/2008 | 12:11:37,51 ] [ PC : PC-DE-QUENTIN ]
[ MAJ : 01-07-2008 | 00:25 ]
[ UAC => 0 ]

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////

Supprime! - C:\Users\Quentin\AppData\Roaming\MICROS~1\Windows\Cookies\quentin@adopt.euroclick[1].txt
Supprime! - C:\Users\Quentin\AppData\Roaming\MICROS~1\Windows\Cookies\quentin@pacificpoker[1].txt
RestaurÚ! - Fichier Hosts

//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

-------------[ Listing des dossiers dans Roaming ]------------

[03/02/2008|12:45] C:\Users\Quentin\AppData\Roaming\Adobe\Plugins
[21/12/2007|17:44] C:\Users\Quentin\AppData\Roaming\Adobe\Flash Player
[16/12/2007|16:49] C:\Users\Quentin\AppData\Roaming\Adobe\Adobe Photoshop CS3
[16/12/2007|16:49] C:\Users\Quentin\AppData\Roaming\Adobe\Enregistrer pour le Web
[29/11/2007|20:47] C:\Users\Quentin\AppData\Roaming\Adobe\Workflow
[29/11/2007|20:47] C:\Users\Quentin\AppData\Roaming\Adobe\CameraRaw
[28/11/2007|18:20] C:\Users\Quentin\AppData\Roaming\Adobe\Color
[28/11/2007|18:20] C:\Users\Quentin\AppData\Roaming\Adobe\Adobe PDF
[28/11/2007|18:13] C:\Users\Quentin\AppData\Roaming\Adobe\Updater5
[29/09/2007|09:15] C:\Users\Quentin\AppData\Roaming\Adobe\Linguistics
[05/09/2007|19:04] C:\Users\Quentin\AppData\Roaming\Adobe\Acrobat

[04/07/2008|12:04] C:\Users\Quentin\AppData\Roaming\Apple Computer\iTunes

[03/07/2008|12:15] C:\Users\Quentin\AppData\Roaming\Azureus\logs
[26/06/2008|19:55] C:\Users\Quentin\AppData\Roaming\Azureus\active
[26/06/2008|19:55] C:\Users\Quentin\AppData\Roaming\Azureus\dht
[26/06/2008|19:55] C:\Users\Quentin\AppData\Roaming\Azureus\net
[26/06/2008|14:24] C:\Users\Quentin\AppData\Roaming\Azureus\torrents
[26/06/2008|12:12] C:\Users\Quentin\AppData\Roaming\Azureus\tmp
[07/03/2008|17:09] C:\Users\Quentin\AppData\Roaming\Azureus\updates
[23/09/2007|17:59] C:\Users\Quentin\AppData\Roaming\Azureus\plugins
[23/09/2007|17:57] C:\Users\Quentin\AppData\Roaming\Azureus\shares

[08/09/2007|17:55] C:\Users\Quentin\AppData\Roaming\Creative\Media Database
[08/09/2007|17:53] C:\Users\Quentin\AppData\Roaming\Creative\MediaSource
[08/09/2007|12:39] C:\Users\Quentin\AppData\Roaming\Creative\ZENcast

[06/09/2007|07:07] C:\Users\Quentin\AppData\Roaming\CyberLink\PowerCinema
[06/09/2007|07:07] C:\Users\Quentin\AppData\Roaming\CyberLink\PowerDVD

[12/10/2007|22:59] C:\Users\Quentin\AppData\Roaming\DivX\DivX Codec
[11/10/2007|20:56] C:\Users\Quentin\AppData\Roaming\DivX\DivX Player

[03/07/2008|12:15] C:\Users\Quentin\AppData\Roaming\Google\Local Search History

[05/09/2007|18:58] C:\Users\Quentin\AppData\Roaming\Hewlett-Packard\HP Software UI

[25/12/2007|19:24] C:\Users\Quentin\AppData\Roaming\HotSync\Conduits

[06/09/2007|07:07] C:\Users\Quentin\AppData\Roaming\HP\QuickPlay

[14/12/2007|20:19] C:\Users\Quentin\AppData\Roaming\ID3-TagIT 3\Libraries

[05/09/2007|19:04] C:\Users\Quentin\AppData\Roaming\Identities\{40D0CDEE-0676-4428-99CB-9506FD8C6C0E}

[23/12/2007|10:00] C:\Users\Quentin\AppData\Roaming\InstallShield\ISEngine12.0

[25/12/2007|18:49] C:\Users\Quentin\AppData\Roaming\Leadertech\PowerRegister

[01/01/2008|18:56] C:\Users\Quentin\AppData\Roaming\LimeWire\.AppSpecialShare
[01/01/2008|16:57] C:\Users\Quentin\AppData\Roaming\LimeWire\xml
[01/01/2008|16:57] C:\Users\Quentin\AppData\Roaming\LimeWire\themes

[03/07/2008|13:48] C:\Users\Quentin\AppData\Roaming\Macromedia\Flash Player
[12/09/2007|17:22] C:\Users\Quentin\AppData\Roaming\Macromedia\Shockwave Player

[26/06/2008|08:42] C:\Users\Quentin\AppData\Roaming\Microsoft\Excel
[22/06/2008|10:41] C:\Users\Quentin\AppData\Roaming\Microsoft\Forms
[01/06/2008|18:46] C:\Users\Quentin\AppData\Roaming\Microsoft\Word
[19/04/2008|13:00] C:\Users\Quentin\AppData\Roaming\Microsoft\Windows Photo Gallery
[10/04/2008|21:10] C:\Users\Quentin\AppData\Roaming\Microsoft\Office
[26/02/2008|20:08] C:\Users\Quentin\AppData\Roaming\Microsoft\Credentials
[15/02/2008|23:36] C:\Users\Quentin\AppData\Roaming\Microsoft\Internet Explorer
[10/02/2008|18:32] C:\Users\Quentin\AppData\Roaming\Microsoft\Clip Organizer
[10/02/2008|13:14] C:\Users\Quentin\AppData\Roaming\Microsoft\UProof
[10/02/2008|12:56] C:\Users\Quentin\AppData\Roaming\Microsoft\Templates
[26/12/2007|18:29] C:\Users\Quentin\AppData\Roaming\Microsoft\Network
[25/12/2007|18:40] C:\Users\Quentin\AppData\Roaming\Microsoft\Installer
[17/11/2007|17:29] C:\Users\Quentin\AppData\Roaming\Microsoft\PowerPoint
[07/11/2007|20:52] C:\Users\Quentin\AppData\Roaming\Microsoft\Outlook
[04/11/2007|12:10] C:\Users\Quentin\AppData\Roaming\Microsoft\Windows Live Call
[04/11/2007|12:10] C:\Users\Quentin\AppData\Roaming\Microsoft\IdentityCRL
[28/10/2007|09:14] C:\Users\Quentin\AppData\Roaming\Microsoft\CLView
[10/10/2007|15:26] C:\Users\Quentin\AppData\Roaming\Microsoft\Proof
[29/09/2007|08:47] C:\Users\Quentin\AppData\Roaming\Microsoft\Media Player
[22/09/2007|17:51] C:\Users\Quentin\AppData\Roaming\Microsoft\Speech
[14/09/2007|16:14] C:\Users\Quentin\AppData\Roaming\Microsoft\CLR Security Config
[12/09/2007|17:28] C:\Users\Quentin\AppData\Roaming\Microsoft\Encarta Reference Library
[09/09/2007|17:28] C:\Users\Quentin\AppData\Roaming\Microsoft\Document Building Blocks
[08/09/2007|19:52] C:\Users\Quentin\AppData\Roaming\Microsoft\HTML Help
[07/09/2007|19:02] C:\Users\Quentin\AppData\Roaming\Microsoft\Windows
[06/09/2007|20:53] C:\Users\Quentin\AppData\Roaming\Microsoft\MMC
[05/09/2007|19:57] C:\Users\Quentin\AppData\Roaming\Microsoft\Crypto
[05/09/2007|19:45] C:\Users\Quentin\AppData\Roaming\Microsoft\MSN Messenger
[05/09/2007|19:21] C:\Users\Quentin\AppData\Roaming\Microsoft\eHome
[05/09/2007|19:14] C:\Users\Quentin\AppData\Roaming\Microsoft\AddIns
[05/09/2007|19:04] C:\Users\Quentin\AppData\Roaming\Microsoft\Protect
[05/09/2007|19:02] C:\Users\Quentin\AppData\Roaming\Microsoft\SystemCertificates

[15/12/2007|20:21] C:\Users\Quentin\AppData\Roaming\Mozilla\Firefox

[08/09/2007|08:24] C:\Users\Quentin\AppData\Roaming\Notepad++\plugins

[10/11/2007|10:03] C:\Users\Quentin\AppData\Roaming\Real\RealPlayer

[21/06/2008|17:18] C:\Users\Quentin\AppData\Roaming\RiseFly\BestSync 2008

[25/12/2007|19:07] C:\Users\Quentin\AppData\Roaming\Roxio\MediaManager9
[05/10/2007|19:54] C:\Users\Quentin\AppData\Roaming\Roxio\Dragon
[05/10/2007|19:54] C:\Users\Quentin\AppData\Roaming\Roxio\RoxioCentral

[30/09/2007|15:56] C:\Users\Quentin\AppData\Roaming\SecuROM\UserData

[18/05/2008|18:45] C:\Users\Quentin\AppData\Roaming\Skype\qqfr2507
[12/09/2007|17:45] C:\Users\Quentin\AppData\Roaming\Skype\Content
[12/09/2007|17:45] C:\Users\Quentin\AppData\Roaming\Skype\Pictures

[24/05/2008|21:51] C:\Users\Quentin\AppData\Roaming\SmartFTP\Client 2.0

[26/06/2008|08:42] C:\Users\Quentin\AppData\Roaming\SolidDocuments\SolidConverterPDF

[28/10/2007|19:10] C:\Users\Quentin\AppData\Roaming\UseNeXT\cache

[25/05/2008|17:47] C:\Users\Quentin\AppData\Roaming\vlc\cache

----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------

[23/06/2008 20:02][--a------] C:\Windows\tasks\Norton Internet Security - Analyse systŠme complŠte - Quentin.job
[03/07/2008 14:30][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{EA7AB229-D475-4921-B233-51E03DFED404}.job
[04/07/2008 12:08][--ah-----] C:\Windows\tasks\SA.DAT
[04/07/2008 12:06][--a------] C:\Windows\tasks\SCHEDLGU.TXT

------[ Listing des dossiers dans C:\ProgramData ]------

[06/02/2008|21:46] C:\ProgramData\__FileUploader.log
[18/05/2007|03:47] C:\ProgramData\{623D32E9-0C62-4453-AD44-98B31F52A5E1}
[28/11/2007|18:14] C:\ProgramData\Adobe
[05/09/2007|20:23] C:\ProgramData\Apple
[29/09/2007|11:18] C:\ProgramData\Apple Computer
[05/09/2007|18:53] C:\ProgramData\Application Data
[05/09/2007|18:53] C:\ProgramData\Bureau
[22/09/2007|14:08] C:\ProgramData\CyberLink
[05/09/2007|18:53] C:\ProgramData\Documents
[22/12/2007|19:05] C:\ProgramData\DVD Shrink
[09/09/2007|08:47] C:\ProgramData\eMule
[05/09/2007|18:53] C:\ProgramData\Favoris
[28/11/2007|18:17] C:\ProgramData\FLEXnet
[18/05/2007|03:59] C:\ProgramData\Google
[18/05/2007|04:23] C:\ProgramData\Hewlett-Packard
[25/12/2007|19:28] C:\ProgramData\HotSync
[06/09/2007|07:07] C:\ProgramData\HP
[18/05/2007|03:57] C:\ProgramData\hpzinstall.log
[14/12/2007|20:19] C:\ProgramData\ID3-TagIT 3
[27/02/2008|20:27] C:\ProgramData\Installer.log
[04/07/2008|12:10] C:\ProgramData\Kaspersky Lab
[24/11/2007|19:59] C:\ProgramData\Kaspersky Lab Setup Files
[10/11/2007|13:00] C:\ProgramData\Lavasoft
[05/09/2007|18:53] C:\ProgramData\Menu D‚marrer
[07/11/2007|12:11] C:\ProgramData\Microsoft
[14/05/2008|13:29] C:\ProgramData\Microsoft Help
[05/09/2007|18:53] C:\ProgramData\ModŠles
[22/12/2007|20:16] C:\ProgramData\NCH Software
[22/12/2007|09:39] C:\ProgramData\Pinnacle
[22/12/2007|09:40] C:\ProgramData\Pinnacle Studio
[17/11/2007|18:21] C:\ProgramData\RiseFly
[18/05/2007|03:28] C:\ProgramData\Roxio
[08/09/2007|12:58] C:\ProgramData\Skype
[22/12/2007|09:54] C:\ProgramData\SmartSound Software Inc
[10/11/2007|13:26] C:\ProgramData\SolidDocuments
[05/10/2007|19:54] C:\ProgramData\Sonic
[03/07/2008|09:43] C:\ProgramData\Spybot - Search & Destroy
[06/11/2007|09:55] C:\ProgramData\Symantec
[25/02/2008|20:34] C:\ProgramData\TamoSoft
[26/02/2008|22:21] C:\ProgramData\WLInstaller

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[18/05/2007|03:47] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[15/03/2008|12:16] C:\Program Files\Activision
[28/11/2007|18:14] C:\Program Files\Adobe
[22/06/2008|17:47] C:\Program Files\adslTV
[13/10/2007|08:43] C:\Program Files\AGEIA Technologies
[03/07/2008|12:48] C:\Program Files\Anagene2
[04/05/2008|10:54] C:\Program Files\Apple Software Update
[07/06/2008|18:46] C:\Program Files\Audacity
[05/11/2007|18:39] C:\Program Files\AviSynth 2.5
[07/03/2008|17:09] C:\Program Files\Azureus
[17/11/2007|18:21] C:\Program Files\BestSync
[05/09/2007|19:02] C:\Program Files\Bioscrypt
[02/03/2008|20:06] C:\Program Files\Biwizmi
[28/11/2007|18:13] C:\Program Files\Bonjour
[28/09/2007|20:06] C:\Program Files\CASIO
[03/07/2008|12:10] C:\Program Files\CCleaner
[03/07/2008|09:36] C:\Program Files\Common Files
[27/02/2008|09:51] C:\Program Files\CommViewWiFi
[08/09/2007|17:40] C:\Program Files\Creative
[08/09/2007|17:40] C:\Program Files\Creative Installation Information
[18/11/2007|21:34] C:\Program Files\DAEMON Tools
[06/09/2007|07:06] C:\Program Files\desktop.ini
[11/10/2007|20:55] C:\Program Files\DivX
[22/12/2007|19:01] C:\Program Files\DVD Shrink
[16/03/2008|13:07] C:\Program Files\EA Sports
[18/05/2007|03:59] C:\Program Files\EasyBits
[29/03/2008|14:09] C:\Program Files\EasyPHP
[18/11/2007|20:09] C:\Program Files\Electronic Arts
[09/09/2007|08:47] C:\Program Files\eMule
[05/11/2007|18:37] C:\Program Files\eRightSoft
[22/09/2007|08:57] C:\Program Files\Eurobarre
[05/09/2007|18:53] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[21/06/2008|09:15] C:\Program Files\FileZilla Client
[05/09/2007|19:02] C:\Program Files\Fingerprint Sensor
[17/02/2008|13:05] C:\Program Files\Free iPod Video Converter
[01/07/2008|19:34] C:\Program Files\FTP Commander
[03/07/2008|12:15] C:\Program Files\GetRight
[06/09/2007|07:03] C:\Program Files\Google
[18/05/2007|04:17] C:\Program Files\Hewlett-Packard
[27/09/2007|19:34] C:\Program Files\HISC
[18/05/2007|04:18] C:\Program Files\HP
[18/05/2007|04:06] C:\Program Files\HPQ
[14/12/2007|20:19] C:\Program Files\ID3-TagIT 3
[08/12/2007|19:59] C:\Program Files\iGnuteel
[17/05/2008|15:32] C:\Program Files\InstallShield Installation Information
[18/05/2007|03:09] C:\Program Files\Intel
[12/06/2008|14:22] C:\Program Files\Internet Explorer
[04/05/2008|11:10] C:\Program Files\iPod
[04/05/2008|11:10] C:\Program Files\iTunes
[26/01/2008|18:04] C:\Program Files\IVCsoft
[06/11/2007|09:59] C:\Program Files\Java
[06/10/2007|20:33] C:\Program Files\JeuDeGo
[24/11/2007|20:00] C:\Program Files\Kaspersky Lab
[28/10/2007|22:48] C:\Program Files\K-Lite Codec Pack
[08/09/2007|17:52] C:\Program Files\LaBoiteACouleurs
[10/11/2007|13:00] C:\Program Files\Lavasoft
[01/01/2008|16:54] C:\Program Files\LimeWire
[21/12/2007|23:06] C:\Program Files\MagicISO
[13/10/2007|19:02] C:\Program Files\MicromegaTS
[17/11/2007|23:55] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[12/09/2007|17:23] C:\Program Files\Microsoft Encarta
[02/11/2006|14:37] C:\Program Files\Microsoft Games
[10/11/2007|20:41] C:\Program Files\Microsoft Office
[07/11/2007|12:13] C:\Program Files\Microsoft Visual Studio
[07/11/2007|12:08] C:\Program Files\Microsoft Visual Studio 8
[18/05/2007|03:46] C:\Program Files\Microsoft Works
[18/05/2007|03:45] C:\Program Files\Microsoft.NET
[18/05/2007|02:48] C:\Program Files\Motorola
[02/11/2006|14:42] C:\Program Files\Movie Maker
[25/04/2008|19:24] C:\Program Files\Mozilla Firefox
[02/12/2007|20:06] C:\Program Files\mp3DirectCut
[07/11/2007|12:13] C:\Program Files\MSBuild
[02/11/2006|14:37] C:\Program Files\MSN
[05/09/2007|19:26] C:\Program Files\MSXML 4.0
[04/07/2008|11:04] C:\Program Files\Navilog1
[22/12/2007|20:40] C:\Program Files\NCH Software
[21/11/2007|19:10] C:\Program Files\Norton Internet Security
[22/04/2008|11:33] C:\Program Files\Notepad++
[07/09/2007|19:49] C:\Program Files\Nouveau dossier
[14/06/2008|19:32] C:\Program Files\palmOne
[23/12/2007|10:15] C:\Program Files\Pinnacle
[04/05/2008|11:07] C:\Program Files\QuickTime
[06/11/2007|13:11] C:\Program Files\Real
[18/05/2007|04:04] C:\Program Files\Realtek
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[18/05/2007|03:28] C:\Program Files\Roxio
[15/04/2008|11:01] C:\Program Files\SAGEM
[07/09/2007|22:03] C:\Program Files\Sega
[18/05/2007|04:00] C:\Program Files\Services en ligne
[08/09/2007|12:58] C:\Program Files\Skype
[09/12/2007|18:28] C:\Program Files\SLD Codec Pack
[12/04/2008|12:58] C:\Program Files\SmartFTP Client
[12/04/2008|12:56] C:\Program Files\SmartFTP Client 2.5 Setup Files
[10/11/2007|13:27] C:\Program Files\SolidDocuments
[03/07/2008|09:07] C:\Program Files\Spybot - Search & Destroy
[18/05/2007|03:32] C:\Program Files\Symantec
[18/05/2007|02:54] C:\Program Files\Synaptics
[23/02/2008|18:26] C:\Program Files\Thomson
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[29/02/2008|22:24] C:\Program Files\Veoh Networks
[27/02/2008|21:04] C:\Program Files\VideoLAN
[19/06/2008|18:54] C:\Program Files\VirtualDJ
[22/12/2007|20:05] C:\Program Files\VirtualDubMOD
[14/04/2008|21:57] C:\Program Files\Wanadoo
[30/06/2008|19:26] C:\Program Files\WebMediaPlayer
[05/09/2007|21:26] C:\Program Files\Windows Calendar
[02/11/2006|14:42] C:\Program Files\Windows Collaboration
[05/09/2007|21:26] C:\Program Files\Windows Defender
[02/11/2006|14:42] C:\Program Files\Windows Journal
[17/11/2007|17:29] C:\Program Files\Windows Live
[19/06/2008|18:33] C:\Program Files\Windows Live Safety Center
[12/06/2008|14:22] C:\Program Files\Windows Mail
[12/10/2007|15:23] C:\Program Files\Windows Media Player
[05/09/2007|18:53] C:\Program Files\Windows NT
[02/11/2006|14:42] C:\Program Files\Windows Photo Gallery
[09/01/2008|22:34] C:\Program Files\Windows Sidebar
[14/09/2007|17:43] C:\Program Files\WinRAR
[13/10/2007|19:08] C:\Program Files\Your Company Name

------[ Listing des dossiers dans C:\Program Files\Common Files ]------

[28/11/2007|18:13] C:\Program Files\Common Files\Adobe
[05/09/2007|20:23] C:\Program Files\Common Files\Apple
[08/09/2007|12:37] C:\Program Files\Common Files\Creative
[18/05/2007|03:45] C:\Program Files\Common Files\DESIGNER
[18/05/2007|03:57] C:\Program Files\Common Files\HP
[18/05/2007|04:04] C:\Program Files\Common Files\InstallShield
[18/05/2007|04:22] C:\Program Files\Common Files\Java
[18/05/2007|04:06] C:\Program Files\Common Files\LightScribe
[28/11/2007|18:02] C:\Program Files\Common Files\Macrovision Shared
[17/11/2007|17:26] C:\Program Files\Common Files\microsoft shared
[11/10/2007|20:55] C:\Program Files\Common Files\PX Storage Engine
[10/11/2007|10:03] C:\Program Files\Common Files\Real
[18/05/2007|03:27] C:\Program Files\Common Files\Roxio Shared
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[08/09/2007|12:58] C:\Program Files\Common Files\Skype
[18/05/2007|03:27] C:\Program Files\Common Files\Sonic Shared
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[18/05/2007|03:28] C:\Program Files\Common Files\SureThing Shared
[06/09/2007|19:47] C:\Program Files\Common Files\Symantec Shared
[10/11/2007|20:41] C:\Program Files\Common Files\System
[17/11/2007|17:26] C:\Program Files\Common Files\WindowsLiveInstaller
[10/11/2007|12:59] C:\Program Files\Common Files\Wise Installation Wizard

---------------------------[ Process ]--------------------------

... 83

... OK !

----------------------[ Recherche avec S_Lop ]---------------------

Aucun fichier / dossier Lop trouvé !

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

Aucun fichier / dossier Lop trouvé !

----------------------[ Verification du Registre ]----------------------

..... OK !

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts PROPRE

----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-07-04 12:14:35
Windows 6.0.6000 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------

C:\Users\Quentin\AppData\Local\oceiqsu_navps.dat
C:\Users\Quentin\AppData\Local\oceiqsu.exe
C:\Users\Quentin\AppData\Local\oceiqsu.dat
C:\Users\Quentin\AppData\Local\oceiqsu_nav.dat
[b]! EGDACCESS !/b

=> C:\Users\Quentin\AppData\Roaming\Azureus\torrents\-[mininova.org]-_Need.For.Speed.Pro.Street.CRACK-ONLY-RELOADED.torrent
=> C:\Users\Quentin\AppData\Roaming\Azureus\torrents\=mininova.org=_Need.for.Speed.ProStreet.PROPER.CRACK.ONLY-ViTALiTY.torrent
=> C:\Users\Quentin\AppData\Roaming\Microsoft\Windows\Cookies\quentin@crackserialkeygen[2].txt
=> C:\Users\Quentin\AppData\Roaming\Microsoft\Windows\Cookies\quentin@cracktorrentserial[2].txt
=> C:\Users\Quentin\Desktop\En vrac\Atomix.Virtual.DJ.Professional.V5.1.Multilangages.Crack.[emule-island.com]
=> C:\Users\Quentin\Desktop\En vrac\Cracks
=> C:\Users\Quentin\Desktop\En vrac\Atomix.Virtual.DJ.Professional.V5.1.Multilangages.Crack.[emule-island.com]\Bienvenue sur eMule-Island !.url
=> C:\Users\Quentin\Desktop\En vrac\Atomix.Virtual.DJ.Professional.V5.1.Multilangages.Crack.[emule-island.com]\Consignes D'installation.txt
=> C:\Users\Quentin\Desktop\En vrac\Atomix.Virtual.DJ.Professional.V5.1.Multilangages.Crack.[emule-island.com]\Crack
=> C:\Users\Quentin\Desktop\En vrac\Atomix.Virtual.DJ.Professional.V5.1.Multilangages.Crack.[emule-island.com]\install_virtualdj_v5.1.exe
=> C:\Users\Quentin\Desktop\En vrac\Cracks\Age_of_Empire_3_MINI_IMAGEN-Macioso
=> C:\Users\Quentin\Desktop\En vrac\Cracks\CIVILIZATION.4.V1.09.ENG.RELOADED.NOCD
=> C:\Users\Quentin\Desktop\En vrac\Cracks\CIVILIZATION.4.V1.52.ENG.RELOADED.NOCD
=> C:\Users\Quentin\Desktop\En vrac\Cracks\Civilization4.exe
=> C:\Users\Quentin\Desktop\En vrac\Cracks\Crack Photoshop CS3
=> C:\Users\Quentin\Desktop\En vrac\Cracks\Age_of_Empire_3_MINI_IMAGEN-Macioso\crackmanworld.com.html
=> C:\Users\Quentin\Desktop\En vrac\Cracks\Age_of_Empire_3_MINI_IMAGEN-Macioso\mcz-aoe3mi.iso
=> C:\Users\Quentin\Desktop\En vrac\Cracks\Age_of_Empire_3_MINI_IMAGEN-Macioso\mcz-aoe3mi.nfo
=> C:\Users\Quentin\Desktop\En vrac\Cracks\CIVILIZATION.4.V1.09.ENG.RELOADED.NOCD\Civilization4.exe
=> C:\Users\Quentin\Desktop\En vrac\Cracks\CIVILIZATION.4.V1.09.ENG.RELOADED.NOCD\reloaded.nfo
=> C:\Users\Quentin\Desktop\En vrac\Cracks\CIVILIZATION.4.V1.52.ENG.RELOADED.NOCD\Civilization4.exe
=> C:\Users\Quentin\Desktop\En vrac\Cracks\CIVILIZATION.4.V1.52.ENG.RELOADED.NOCD\reloaded.nfo
=> C:\Users\Quentin\Desktop\En vrac\Cracks\Crack Photoshop CS3\CiM.nFo
=> C:\Users\Quentin\Desktop\En vrac\Cracks\Crack Photoshop CS3\Patch.exe
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\CommView
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\CommView\CV.exe
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\CommView\readme.txt
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\CommView\setup.exe
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\aircrack.exe
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\airdecap.exe
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\airodump.exe
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\cygwin1.dll
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\Lang
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\MSVCR70.DLL
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\PEEK.DLL
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\PEEK5.SYS
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\README.txt
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\Temp
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\Updater
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\Updater.exe
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\Updater.ini
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\WinAircrack.exe
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\WinAircrack.ini
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\wzcook.exe
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\Lang\english.ini
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\Lang\francais.ini
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\Lang\spanish.ini
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\Lang\system.ini.txt
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\Temp\Download.tmp
=> C:\Users\Quentin\Desktop\Hacking\Crack WEP\WinAircrack\WinAircrackPack\Updater\Data.upd
=> C:\Users\Quentin\Downloads\eMule\Incoming\Palm MMPlayer 0.2.14 + crack.zip
=> C:\Users\Quentin\Favorites\Aircrack-ng, aireplay-ng, airodump-ng, Tutorial crack cle wep.url
=> C:\Users\Quentin\Favorites\Wifiway cracker une cl‚ WEP.url
=> C:\Users\Quentin\Favorites\YouTube - How to Crack WEP.url
=> C:\Users\Quentin\AppData\Roaming\Azureus\torrents\Pinnacle_Studio_Plus_v11_Incl_Keygen.torrent_-moNova.org-_.torrent
=> C:\Users\Quentin\AppData\Roaming\Microsoft\Windows\Cookies\quentin@crackserialkeygen[2].txt
=> C:\Users\Quentin\Desktop\En vrac\K750i\1300 jeux\DigitalRed Shuffleboard v20\Digital.Red.Shuffleboard.v2.0.for.Nokia.3650.7650..Keygen-BLZPDA
=> C:\Users\Quentin\Desktop\En vrac\K750i\1300 jeux\DigitalRed Shuffleboard v20\Digital.Red.Shuffleboard.v2.0.for.Nokia.3650.7650..Keygen-BLZPDA\-COMPLETE-
=> C:\Users\Quentin\Desktop\En vrac\K750i\1300 jeux\DigitalRed Shuffleboard v20\Digital.Red.Shuffleboard.v2.0.for.Nokia.3650.7650..Keygen-BLZPDA\blzpda.nfo
=> C:\Users\Quentin\Desktop\En vrac\K750i\1300 jeux\DigitalRed Shuffleboard v20\Digital.Red.Shuffleboard.v2.0.for.Nokia.3650.7650..Keygen-BLZPDA\file_id.diz
=> C:\Users\Quentin\Desktop\En vrac\K750i\1300 jeux\DigitalRed Shuffleboard v20\Digital.Red.Shuffleboard.v2.0.for.Nokia.3650.7650..Keygen-BLZPDA\shuffleboard7650ex.SIS
=> C:\Users\Quentin\Desktop\En vrac\K750i\1300 jeux\Geopod\Geopod\keygen.exe
=> C:\Users\Quentin\Desktop\En vrac\K750i\1300 jeux\MGS-Silverball_v1.60\Silverball_v1.60\keygen.exe
=> C:\Users\Quentin\Desktop\En vrac\K750i\1300 jeux\MGSkarting_cracked\karting\keygen.exe
=> C:\Users\Quentin\Desktop\En vrac\K750i\1300 jeux\MVRPool\MVRPool\keygen.exe
=> C:\Users\Quentin\Desktop\En vrac\K750i\1300 jeux\Tennis Maniac\keygen.exe

[F:354][D:9]-> C:\Users\Quentin\AppData\Local\Temp
[F:1199][D:1]-> C:\Users\Quentin\AppData\Roaming\MICROS~1\Windows\Cookies
[F:4660][D:8]-> C:\Users\Quentin\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:29][D:3]-> C:\$Recycle.Bin

[ UAC => 1 ]

--------------------[ Fin du rapport a 12:17:22,56 ]----------------------

Et voilà le rapport hijackthis :

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:18:58, on 04/07/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16681)
Boot mode: Normal

Running processes:
c:\Program Files\Bioscrypt\VeriSoft\Bin\AsGHost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\HP\QuickPlay\QPService.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\Wanadoo\CnxMon.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Microsoft Encarta\Collection Microsoft Encarta 2006 DVD\EDICT.EXE
C:\Users\Quentin\AppData\Local\oceiqsu.exe
C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
C:\Windows\ehome\ehmsas.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\System32\mobsync.exe
C:\Windows\explorer.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Quentin\Desktop\Maintenance\HiJackThis.exe
C:\Windows\system32\DllHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.netvibes.com/en
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr?cobrand=hp-notebook.msn.com&ocid=HPDHP&pc=HPNTDF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr?cobrand=hp-notebook.msn.com&ocid=HPDHP&pc=HPNTDF
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\NppBho.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Solid Converter PDF - {259F616C-A300-44F5-B04A-ED001A26C85C} - C:\Program Files\SolidDocuments\SolidConverterPDF\SCPDF\ExploreExtPDF.dll
O2 - BHO: bho2gr Class - {31FF080D-12A3-439A-A2EF-4BA95A3148E8} - C:\Program Files\GetRight\xx2gr.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: VeriSoft Access Manager - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - c:\Program Files\Bioscrypt\VeriSoft\Bin\ItIEAddIn.dll
O3 - Toolbar: Show Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\UIBHO.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Solid Converter PDF - {259F616C-A300-44F5-B04A-ED001A26C85C} - C:\Program Files\SolidDocuments\SolidConverterPDF\SCPDF\ExploreExtPDF.dll
O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [SMSERIAL] C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe"
O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [HP Health Check Scheduler] C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] %ProgramFiles%\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [WAWifiMessage] %ProgramFiles%\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [CognizanceTS] rundll32.exe c:\PROGRA~1\BIOSCR~1\VeriSoft\Bin\ASTSVCC.dll,RegisterModule
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [WooCnxMon] C:\PROGRA~1\Wanadoo\CnxMon.exe
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [E06FXLRD_16693869] "C:\Program Files\Microsoft Encarta\Collection Microsoft Encarta 2006 DVD\EDICT.EXE" -m
O4 - HKCU\..\Run: [LaunchList] C:\Program Files\Pinnacle\Studio 11\LaunchList2.exe
O4 - HKCU\..\Run: [oceiqsu] c:\users\quentin\appdata\local\oceiqsu.exe oceiqsu
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
O8 - Extra context menu item: Download with GetRight Pro - C:\Program Files\GetRight\GRdownload.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Open with GetRight Pro Browser - C:\Program Files\GetRight\GRbrowse.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Statistiques d’Anti-Virus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\SCIEPlgn.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Common Files\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: (no name) - SolidConverterPDF - (no file) (HKCU)
O9 - Extra button: (no name) - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - (no file) (HKCU)
O13 - Gopher Prefix:
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - http://download.divx.com/player/DivXBrowserPlugin.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: APSHook.dll,C:\PROGRA~1\KASPER~1\KASPER~1.0\r3hook.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Kaspersky Anti-Virus 7.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe
O23 - Service: BestSync Service (BestSyncSvc) - RiseFly Software - C:\Program Files\BestSync\BestSyncSvc.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\CLSched.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Symantec IS Password Validation (ISPwdSvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\isPwdSvc.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: SolidPDFConverterReadSpool (ScReadSpool) - VoyagerSoft, LLC - C:\Program Files\SolidDocuments\SolidConverterPDF\SCPDF\SolidPdfService.exe
O23 - Service: SpeedTouch 330 Manager (st330service) - THOMSON Telecom Belgium - C:\Program Files/Thomson/ST330/service/st330service.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 7
qqfr2507 Messages postés 19 Statut Membre 1
 
Est-ce que tout est ok ??
0
Réponse 6 / 7
qqfr2507
 
J'ai toujours le même problème avec ces publicités malgré la manip que tu m'as fait faire...
0
Réponse 7 / 7
raphy00 Messages postés 1112 Statut Membre 9
 
Salut,

M'est avis que le probleme vient des cracks...
On va supprimer toute la partie autres infections du rapport.

Jette un coup d'oeil ici :

http://forum.malekal.com/ftopic893.php

Alors apres ca :

Télécharge combofix.exe (par sUBs) sur ton Bureau.

-> http://download.bleepingcomputer.com/sUBs/ComboFix.exe

-> Double clique combofix.exe.
-> Tape sur la touche 1 (Yes) pour démarrer le scan.
-> Lorsque le scan sera complété, un rapport apparaîtra. Copie/colle ce rapport dans ta prochaine réponse.

NOTE : Le rapport se trouve également ici : C:\Combofix.txt

Avant d'utiliser ComboFix :

-> Déconnecte toi d'internet et referme les fenêtres de tous les programmes en cours.

-> Désactive provisoirement et seulement le temps de l'utilisation de ComboFix, la protection en temps réel de ton Antivirus et de tes Antispywares, qui peuvent géner fortement la procédure de recherche et de nettoyage de l'outil.

Une fois fait, sur ton bureau double-clic sur Combofix.exe.

- Répond oui au message d'avertissement, pour que le programme commence à procéder à l'analyse du pc.

/!\ Pendant la durée de cette étape, ne te sert pas du pc et n'ouvre aucun programmes.

- En fin de scan il est possible que ComboFix ait besoin de redemarrer le pc pour finaliser la désinfection\recherche, laisses-le faire.

- Un rapport s'ouvrira ensuite dans le bloc notes, ce fichier rapport Combofix.txt, est automatiquement sauvegardé et rangé à C:\Combofix.txt)

-> Réactive la protection en temps réel de ton Antivirus et de tes Antispywares, avant de te reconnecter à internet.

-> Reviens sur le forum, et copie et colle la totalité du contenu de C:\Combofix.txt dans ton prochain message.

-> Tutoriel https://www.bleepingcomputer.com/combofix/fr/comment-utiliser-combofix

0

Discussions similaires

Impossible d'afficher le rapport de tableau croisé dynamique sur un rapport
Utilisateur anonyme -
TomH. -

13 réponses
écrire un rapport de travail
asi -
REGINALD -

3 réponses
impossible d'afficher le tableau dynamique sur un rapport existant
Pierre -
Adrien71 -

3 réponses
Problém affichage du tableau croisé dynamique
BK -
Raymond PENTIER -

2 réponses
Theme de rapport de stage option comptabilité
sana saydou -
Raymond PENTIER -

2 réponses