Beaucoup de pub rapoor hijackthis
-weeman-
Messages postés
257
Statut
Membre
-
fiat500 Messages postés 2681 Statut Membre -
fiat500 Messages postés 2681 Statut Membre -
Bonjour,
voila mon rapport de hijackthis jes beaucoup de pub merci davance...
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:19:16, on 06/07/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\ehome\ehmsas.exe
C:\Users\cedric\AppData\Local\gssccas.exe
C:\Program Files\Philips\Philips SPC210NC Webcam\TrayMin210.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ustart.org
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Orange\SearchURLHook\SearchPageURL.dll (file missing)
O1 - Hosts: ::1 localhost
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: DNSEred - {3b941964-c715-cf7a-093b-b042c23717c3} - C:\Windows\system32\iednser.dll
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll (file missing)
O2 - BHO: cpmsky browser optimizer - {65b8b0c7-f9fa-4e1c-72ef-d38d9f50f580} - C:\Windows\system32\{2b0227da-74e0-e481-71a2-53aaa59b0cef}.dll
O2 - BHO: mysidesearch browser optimizer - {7082ac65-7a0c-20f8-c344-a17b1e8cd8c6} - C:\Windows\system32\{563afbd5-68e4-cc5e-ce71-2bf75dcbe741}.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Google\Google_BAE\BAE.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKCU\..\Run: [SmpcSys] C:\Program Files\Packard Bell\SetUpMyPC\SmpSys.exe
O4 - HKCU\..\Run: [ISUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Steam] C:\Program Files\Valve\Steam\\Steam.exe -silent
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [gssccas] c:\users\cedric\appdata\local\gssccas.exe gssccas
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Global Startup: TrayMin210.exe.lnk = ?
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O13 - Gopher Prefix:
O15 - Trusted Zone: https://www.orange.fr/portail
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
voila mon rapport de hijackthis jes beaucoup de pub merci davance...
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:19:16, on 06/07/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\ehome\ehmsas.exe
C:\Users\cedric\AppData\Local\gssccas.exe
C:\Program Files\Philips\Philips SPC210NC Webcam\TrayMin210.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ustart.org
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Orange\SearchURLHook\SearchPageURL.dll (file missing)
O1 - Hosts: ::1 localhost
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: DNSEred - {3b941964-c715-cf7a-093b-b042c23717c3} - C:\Windows\system32\iednser.dll
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll (file missing)
O2 - BHO: cpmsky browser optimizer - {65b8b0c7-f9fa-4e1c-72ef-d38d9f50f580} - C:\Windows\system32\{2b0227da-74e0-e481-71a2-53aaa59b0cef}.dll
O2 - BHO: mysidesearch browser optimizer - {7082ac65-7a0c-20f8-c344-a17b1e8cd8c6} - C:\Windows\system32\{563afbd5-68e4-cc5e-ce71-2bf75dcbe741}.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Google\Google_BAE\BAE.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKCU\..\Run: [SmpcSys] C:\Program Files\Packard Bell\SetUpMyPC\SmpSys.exe
O4 - HKCU\..\Run: [ISUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Steam] C:\Program Files\Valve\Steam\\Steam.exe -silent
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [gssccas] c:\users\cedric\appdata\local\gssccas.exe gssccas
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Global Startup: TrayMin210.exe.lnk = ?
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O13 - Gopher Prefix:
O15 - Trusted Zone: https://www.orange.fr/portail
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
A voir également:
- Beaucoup de pub rapoor hijackthis
- Hijackthis - Télécharger - Antivirus & Antimalwares
- Bloqueur de pub youtube - Accueil - Streaming
- Stop pub gratuit - Télécharger - Divers Utilitaires
- Supprimer la pub - Guide
- Trouver nom acteur pub ✓ - Forum Cinéma / Télé
87 réponses
-----------------------[ Lop S&D 4.2.2-0 XP/Vista ]---------------------
[ Windows 'Longhorn' (NT 6.0) Workstation Build 6001, Service Pack 1 ]
[ USER : cedric ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 08/07/2008 | 18:07:15,82 ] [ PC : PC-DE-CEDRIC ]
[ MAJ : 06-07-2008 | 10:55 ]
[ UAC => 0 ]
-------------[ Listing des dossiers dans Roaming ]------------
[28/05/2008|12:46] C:\Users\cedric\AppData\Roaming\Adobe\After Effects
[28/05/2008|12:42] C:\Users\cedric\AppData\Roaming\Adobe\Workflow
[28/05/2008|12:42] C:\Users\cedric\AppData\Roaming\Adobe\XMP
[28/05/2008|12:41] C:\Users\cedric\AppData\Roaming\Adobe\CameraRaw
[21/02/2008|01:03] C:\Users\cedric\AppData\Roaming\Adobe\Linguistics
[21/02/2008|01:02] C:\Users\cedric\AppData\Roaming\Adobe\Acrobat
[07/02/2008|23:12] C:\Users\cedric\AppData\Roaming\Adobe\Flash Player
[21/05/2008|15:10] C:\Users\cedric\AppData\Roaming\Blender Foundation\Blender
[23/01/2008|19:59] C:\Users\cedric\AppData\Roaming\CyberLink\PowerDVD
[23/01/2008|19:58] C:\Users\cedric\AppData\Roaming\CyberLink\PowerCinema
[23/01/2008|19:29] C:\Users\cedric\AppData\Roaming\CyberLink\MediaCache
[23/01/2008|19:29] C:\Users\cedric\AppData\Roaming\CyberLink\MagicSports
[28/05/2008|12:40] C:\Users\cedric\AppData\Roaming\EoRezo\eoDesktop
[28/05/2008|12:40] C:\Users\cedric\AppData\Roaming\EoRezo\db
[09/05/2008|18:59] C:\Users\cedric\AppData\Roaming\Google\Local Search History
[01/02/2008|10:57] C:\Users\cedric\AppData\Roaming\Google\GoogleEarth
[23/01/2008|19:28] C:\Users\cedric\AppData\Roaming\Identities\{4A9283C3-6591-4558-A957-F5FD52B64B98}
[25/01/2008|19:01] C:\Users\cedric\AppData\Roaming\InstallShield\UpdateService
[29/06/2008|08:08] C:\Users\cedric\AppData\Roaming\LimeWire\promotion
[04/03/2008|22:09] C:\Users\cedric\AppData\Roaming\LimeWire\.AppSpecialShare
[04/03/2008|22:09] C:\Users\cedric\AppData\Roaming\LimeWire\xml
[04/03/2008|22:09] C:\Users\cedric\AppData\Roaming\LimeWire\themes
[01/02/2008|14:45] C:\Users\cedric\AppData\Roaming\Macromedia\Flash Player
[06/07/2008|20:58] C:\Users\cedric\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware
[01/07/2008|14:31] C:\Users\cedric\AppData\Roaming\Microsoft\Windows Photo Gallery
[12/06/2008|12:33] C:\Users\cedric\AppData\Roaming\Microsoft\Windows Media Encoder
[11/06/2008|19:03] C:\Users\cedric\AppData\Roaming\Microsoft\Network
[10/06/2008|10:35] C:\Users\cedric\AppData\Roaming\Microsoft\MMC
[12/05/2008|12:03] C:\Users\cedric\AppData\Roaming\Microsoft\MSN Messenger
[08/05/2008|18:29] C:\Users\cedric\AppData\Roaming\Microsoft\Internet Explorer
[07/05/2008|17:38] C:\Users\cedric\AppData\Roaming\Microsoft\Templates
[07/05/2008|17:38] C:\Users\cedric\AppData\Roaming\Microsoft\QuickStyles
[01/05/2008|13:45] C:\Users\cedric\AppData\Roaming\Microsoft\UProof
[24/04/2008|01:39] C:\Users\cedric\AppData\Roaming\Microsoft\CLR Security Config
[23/04/2008|23:59] C:\Users\cedric\AppData\Roaming\Microsoft\VCExpress
[23/04/2008|23:59] C:\Users\cedric\AppData\Roaming\Microsoft\MSDN
[10/03/2008|01:03] C:\Users\cedric\AppData\Roaming\Microsoft\Office
[08/03/2008|13:44] C:\Users\cedric\AppData\Roaming\Microsoft\Windows Live Call
[08/03/2008|13:44] C:\Users\cedric\AppData\Roaming\Microsoft\IdentityCRL
[23/02/2008|11:11] C:\Users\cedric\AppData\Roaming\Microsoft\eHome
[20/02/2008|14:58] C:\Users\cedric\AppData\Roaming\Microsoft\Speech
[06/02/2008|15:13] C:\Users\cedric\AppData\Roaming\Microsoft\HTML Help
[05/02/2008|20:39] C:\Users\cedric\AppData\Roaming\Microsoft\Crypto
[29/01/2008|21:26] C:\Users\cedric\AppData\Roaming\Microsoft\Word
[29/01/2008|19:45] C:\Users\cedric\AppData\Roaming\Microsoft\Proof
[29/01/2008|19:40] C:\Users\cedric\AppData\Roaming\Microsoft\Document Building Blocks
[23/01/2008|19:39] C:\Users\cedric\AppData\Roaming\Microsoft\Works
[23/01/2008|19:38] C:\Users\cedric\AppData\Roaming\Microsoft\Excel
[23/01/2008|19:38] C:\Users\cedric\AppData\Roaming\Microsoft\AddIns
[23/01/2008|19:30] C:\Users\cedric\AppData\Roaming\Microsoft\Windows
[23/01/2008|19:29] C:\Users\cedric\AppData\Roaming\Microsoft\SystemCertificates
[23/01/2008|19:28] C:\Users\cedric\AppData\Roaming\Microsoft\Protect
[23/01/2008|19:21] C:\Users\cedric\AppData\Roaming\Microsoft\Credentials
[19/06/2008|19:45] C:\Users\cedric\AppData\Roaming\Mozilla\Extensions
[19/06/2008|19:45] C:\Users\cedric\AppData\Roaming\Mozilla\Firefox
[13/05/2008|15:30] C:\Users\cedric\AppData\Roaming\Notepad++\plugins
[29/03/2008|15:16] C:\Users\cedric\AppData\Roaming\Packard Bell\Setup my PC
[24/01/2008|14:01] C:\Users\cedric\AppData\Roaming\Packard Bell\Smart Restore
[23/01/2008|19:53] C:\Users\cedric\AppData\Roaming\Packard Bell\InfoCentre
[28/01/2008|21:17] C:\Users\cedric\AppData\Roaming\Roxio\MediaManager9
[25/01/2008|19:06] C:\Users\cedric\AppData\Roaming\Roxio\RoxioCentral
[25/01/2008|19:06] C:\Users\cedric\AppData\Roaming\Roxio\RoxioCentral33
[31/01/2008|18:58] C:\Users\cedric\AppData\Roaming\Symantec\Cleanup
[23/01/2008|19:47] C:\Users\cedric\AppData\Roaming\Talkback\MozillaOrg
[09/05/2008|19:33] C:\Users\cedric\AppData\Roaming\vlc\cache
----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------
[07/07/2008 20:14][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{73703F0F-BAFC-4892-ABAC-EC81530CB50E}.job
[08/07/2008 18:00][--a------] C:\Windows\tasks\Extension de garantie.job
[08/07/2008 18:00][--a------] C:\Windows\tasks\Recovery DVD Creator.job
[08/07/2008 15:52][--ah-----] C:\Windows\tasks\SA.DAT
[08/07/2008 15:52][--a------] C:\Windows\tasks\SCHEDLGU.TXT
------[ Listing des dossiers dans C:\ProgramData ]------
[08/12/2007|19:46] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[28/05/2008|12:50] C:\ProgramData\Adobe
[28/05/2008|00:47] C:\ProgramData\Adobe Systems
[02/11/2006|15:02] C:\ProgramData\Application Data
[08/07/2008|14:07] C:\ProgramData\avg8
[23/01/2008|19:17] C:\ProgramData\Bureau
[14/03/2008|02:00] C:\ProgramData\CyberLink
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[05/05/2008|00:19] C:\ProgramData\EmailNotifier
[29/02/2008|20:48] C:\ProgramData\eMule
[23/01/2008|19:17] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[08/12/2007|19:32] C:\ProgramData\Google
[03/07/2008|20:16] C:\ProgramData\Grisoft
[08/12/2007|19:31] C:\ProgramData\InstallShield
[06/07/2008|20:58] C:\ProgramData\Malwarebytes
[23/01/2008|19:17] C:\ProgramData\Menu D‚marrer
[26/02/2008|19:56] C:\ProgramData\Messenger Plus!
[10/06/2008|10:32] C:\ProgramData\Microsoft
[03/07/2008|19:15] C:\ProgramData\Microsoft Help
[23/01/2008|19:17] C:\ProgramData\ModŠles
[07/07/2008|19:09] C:\ProgramData\ntuser.pol
[08/05/2008|21:05] C:\ProgramData\NVIDIA
[21/03/2008|22:37] C:\ProgramData\Roxio
[19/02/2008|19:37] C:\ProgramData\Skype
[08/12/2007|19:31] C:\ProgramData\Sonic
[08/07/2008|16:36] C:\ProgramData\Spybot - Search & Destroy
[02/11/2006|15:02] C:\ProgramData\Start Menu
[06/02/2008|03:35] C:\ProgramData\Symantec
[21/03/2008|22:11] C:\ProgramData\TEMP
[02/11/2006|15:02] C:\ProgramData\Templates
[31/01/2008|16:21] C:\ProgramData\WLInstaller
---------------[ Listing des dossiers dans C:\Program Files ]--------------
[08/12/2007|19:46] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[02/07/2008|12:24] C:\Program Files\Adobe
[06/02/2008|14:05] C:\Program Files\Alwil Software
[08/07/2008|14:07] C:\Program Files\AVG
[21/05/2008|15:10] C:\Program Files\Blender Foundation
[03/07/2008|19:15] C:\Program Files\Common Files
[08/12/2007|19:33] C:\Program Files\CyberLink
[09/04/2008|20:55] C:\Program Files\DebugMode
[08/05/2008|19:14] C:\Program Files\desktop.ini
[23/02/2008|11:13] C:\Program Files\DivX
[29/06/2008|01:46] C:\Program Files\eMule
[28/05/2008|12:52] C:\Program Files\EoRezo
[23/01/2008|19:17] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[08/02/2008|16:05] C:\Program Files\Google
[08/07/2008|15:44] C:\Program Files\GRISOFT
[08/12/2007|19:22] C:\Program Files\HDReg
[23/04/2008|23:08] C:\Program Files\InstallShield Installation Information
[28/05/2008|12:39] C:\Program Files\Internet Explorer
[31/01/2008|15:44] C:\Program Files\Inventel
[02/04/2008|06:50] C:\Program Files\Java
[02/03/2008|02:46] C:\Program Files\LG Electronics
[06/06/2008|11:14] C:\Program Files\LimeWire
[06/07/2008|20:58] C:\Program Files\Malwarebytes' Anti-Malware
[04/04/2008|19:48] C:\Program Files\Messenger Plus! Live
[31/01/2008|16:57] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[26/01/2008|18:42] C:\Program Files\Microsoft Games
[08/12/2007|19:44] C:\Program Files\Microsoft Office
[23/04/2008|23:55] C:\Program Files\Microsoft SDKs
[20/05/2008|12:55] C:\Program Files\Microsoft Silverlight
[03/07/2008|19:15] C:\Program Files\Microsoft Visual Studio 9.0
[08/12/2007|19:44] C:\Program Files\Microsoft Works
[08/12/2007|19:44] C:\Program Files\Microsoft.NET
[08/05/2008|19:08] C:\Program Files\Movie Maker
[08/07/2008|16:08] C:\Program Files\Mozilla Firefox
[02/11/2006|14:37] C:\Program Files\MSBuild
[31/01/2008|16:52] C:\Program Files\MSXML 4.0
[07/07/2008|17:15] C:\Program Files\Navilog1
[30/06/2008|19:05] C:\Program Files\Notepad++
[29/03/2008|15:16] C:\Program Files\Packard Bell
[23/03/2008|20:29] C:\Program Files\Philips
[08/12/2007|19:17] C:\Program Files\Realtek
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[08/12/2007|19:31] C:\Program Files\Roxio
[08/12/2007|19:24] C:\Program Files\Seagate
[08/07/2008|16:33] C:\Program Files\Spybot - Search & Destroy
[06/07/2008|16:18] C:\Program Files\Trend Micro
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[02/06/2008|17:19] C:\Program Files\Valve
[05/03/2008|19:57] C:\Program Files\VideoLAN
[05/05/2008|00:19] C:\Program Files\Visicom Media
[08/05/2008|19:08] C:\Program Files\Windows Calendar
[08/05/2008|19:08] C:\Program Files\Windows Collaboration
[08/05/2008|19:08] C:\Program Files\Windows Defender
[08/05/2008|19:08] C:\Program Files\Windows Journal
[31/01/2008|16:34] C:\Program Files\Windows Live
[08/07/2008|18:07] C:\Program Files\Windows Live Safety Center
[11/06/2008|22:58] C:\Program Files\Windows Mail
[08/02/2008|16:09] C:\Program Files\Windows Media Components
[08/05/2008|19:08] C:\Program Files\Windows Media Player
[23/01/2008|19:17] C:\Program Files\Windows NT
[08/05/2008|19:08] C:\Program Files\Windows Photo Gallery
[08/05/2008|19:08] C:\Program Files\Windows Sidebar
[14/05/2008|11:51] C:\Program Files\World of Warcraft
------[ Listing des dossiers dans C:\Program Files\Common Files ]------
[28/05/2008|12:50] C:\Program Files\Common Files\Adobe
[28/05/2008|00:44] C:\Program Files\Common Files\Adobe Systems Shared
[01/02/2008|14:16] C:\Program Files\Common Files\Blizzard Entertainment
[08/12/2007|19:44] C:\Program Files\Common Files\DESIGNER
[08/12/2007|19:33] C:\Program Files\Common Files\InstallShield
[04/03/2008|22:06] C:\Program Files\Common Files\Java
[08/07/2008|14:07] C:\Program Files\Common Files\microsoft shared
[08/12/2007|19:31] C:\Program Files\Common Files\Roxio Shared
[19/04/2008|19:33] C:\Program Files\Common Files\ServerExten
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[08/12/2007|19:31] C:\Program Files\Common Files\Sonic Shared
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[10/06/2008|15:38] C:\Program Files\Common Files\Steam
[08/12/2007|19:31] C:\Program Files\Common Files\SureThing Shared
[23/04/2008|21:07] C:\Program Files\Common Files\SWF Studio
[06/02/2008|03:35] C:\Program Files\Common Files\Symantec Shared
[08/05/2008|19:08] C:\Program Files\Common Files\System
[31/01/2008|16:34] C:\Program Files\Common Files\WindowsLiveInstaller
[08/12/2007|19:23] C:\Program Files\Common Files\Wise Installation Wizard
---------------------------[ Process ]--------------------------
... 55
... OK !
----------------------[ Recherche avec S_Lop ]---------------------
Aucun fichier / dossier Lop trouvé !
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
Aucun fichier / dossier Lop trouvé !
----------------------[ Verification du Registre ]----------------------
..... OK !
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts PROPRE
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-07-08 18:07:46
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
C:\Users\cedric\AppData\Local\gssccas.dat
C:\Users\cedric\AppData\Local\gssccas.exe
C:\Users\cedric\AppData\Local\gssccas_nav.dat
C:\Users\cedric\AppData\Local\gssccas_navps.dat
[b]! EGDACCESS !/b
[F:55][D:8]-> C:\Users\cedric\AppData\Local\Temp
[F:347][D:1]-> C:\Users\cedric\AppData\Roaming\MICROS~1\Windows\Cookies
[F:698][D:6]-> C:\Users\cedric\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:10][D:3]-> C:\$Recycle.Bin
[ UAC => 1 ]
--------------------[ Fin du rapport a 18:08:23,50 ]----------------------
[ Windows 'Longhorn' (NT 6.0) Workstation Build 6001, Service Pack 1 ]
[ USER : cedric ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 08/07/2008 | 18:07:15,82 ] [ PC : PC-DE-CEDRIC ]
[ MAJ : 06-07-2008 | 10:55 ]
[ UAC => 0 ]
-------------[ Listing des dossiers dans Roaming ]------------
[28/05/2008|12:46] C:\Users\cedric\AppData\Roaming\Adobe\After Effects
[28/05/2008|12:42] C:\Users\cedric\AppData\Roaming\Adobe\Workflow
[28/05/2008|12:42] C:\Users\cedric\AppData\Roaming\Adobe\XMP
[28/05/2008|12:41] C:\Users\cedric\AppData\Roaming\Adobe\CameraRaw
[21/02/2008|01:03] C:\Users\cedric\AppData\Roaming\Adobe\Linguistics
[21/02/2008|01:02] C:\Users\cedric\AppData\Roaming\Adobe\Acrobat
[07/02/2008|23:12] C:\Users\cedric\AppData\Roaming\Adobe\Flash Player
[21/05/2008|15:10] C:\Users\cedric\AppData\Roaming\Blender Foundation\Blender
[23/01/2008|19:59] C:\Users\cedric\AppData\Roaming\CyberLink\PowerDVD
[23/01/2008|19:58] C:\Users\cedric\AppData\Roaming\CyberLink\PowerCinema
[23/01/2008|19:29] C:\Users\cedric\AppData\Roaming\CyberLink\MediaCache
[23/01/2008|19:29] C:\Users\cedric\AppData\Roaming\CyberLink\MagicSports
[28/05/2008|12:40] C:\Users\cedric\AppData\Roaming\EoRezo\eoDesktop
[28/05/2008|12:40] C:\Users\cedric\AppData\Roaming\EoRezo\db
[09/05/2008|18:59] C:\Users\cedric\AppData\Roaming\Google\Local Search History
[01/02/2008|10:57] C:\Users\cedric\AppData\Roaming\Google\GoogleEarth
[23/01/2008|19:28] C:\Users\cedric\AppData\Roaming\Identities\{4A9283C3-6591-4558-A957-F5FD52B64B98}
[25/01/2008|19:01] C:\Users\cedric\AppData\Roaming\InstallShield\UpdateService
[29/06/2008|08:08] C:\Users\cedric\AppData\Roaming\LimeWire\promotion
[04/03/2008|22:09] C:\Users\cedric\AppData\Roaming\LimeWire\.AppSpecialShare
[04/03/2008|22:09] C:\Users\cedric\AppData\Roaming\LimeWire\xml
[04/03/2008|22:09] C:\Users\cedric\AppData\Roaming\LimeWire\themes
[01/02/2008|14:45] C:\Users\cedric\AppData\Roaming\Macromedia\Flash Player
[06/07/2008|20:58] C:\Users\cedric\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware
[01/07/2008|14:31] C:\Users\cedric\AppData\Roaming\Microsoft\Windows Photo Gallery
[12/06/2008|12:33] C:\Users\cedric\AppData\Roaming\Microsoft\Windows Media Encoder
[11/06/2008|19:03] C:\Users\cedric\AppData\Roaming\Microsoft\Network
[10/06/2008|10:35] C:\Users\cedric\AppData\Roaming\Microsoft\MMC
[12/05/2008|12:03] C:\Users\cedric\AppData\Roaming\Microsoft\MSN Messenger
[08/05/2008|18:29] C:\Users\cedric\AppData\Roaming\Microsoft\Internet Explorer
[07/05/2008|17:38] C:\Users\cedric\AppData\Roaming\Microsoft\Templates
[07/05/2008|17:38] C:\Users\cedric\AppData\Roaming\Microsoft\QuickStyles
[01/05/2008|13:45] C:\Users\cedric\AppData\Roaming\Microsoft\UProof
[24/04/2008|01:39] C:\Users\cedric\AppData\Roaming\Microsoft\CLR Security Config
[23/04/2008|23:59] C:\Users\cedric\AppData\Roaming\Microsoft\VCExpress
[23/04/2008|23:59] C:\Users\cedric\AppData\Roaming\Microsoft\MSDN
[10/03/2008|01:03] C:\Users\cedric\AppData\Roaming\Microsoft\Office
[08/03/2008|13:44] C:\Users\cedric\AppData\Roaming\Microsoft\Windows Live Call
[08/03/2008|13:44] C:\Users\cedric\AppData\Roaming\Microsoft\IdentityCRL
[23/02/2008|11:11] C:\Users\cedric\AppData\Roaming\Microsoft\eHome
[20/02/2008|14:58] C:\Users\cedric\AppData\Roaming\Microsoft\Speech
[06/02/2008|15:13] C:\Users\cedric\AppData\Roaming\Microsoft\HTML Help
[05/02/2008|20:39] C:\Users\cedric\AppData\Roaming\Microsoft\Crypto
[29/01/2008|21:26] C:\Users\cedric\AppData\Roaming\Microsoft\Word
[29/01/2008|19:45] C:\Users\cedric\AppData\Roaming\Microsoft\Proof
[29/01/2008|19:40] C:\Users\cedric\AppData\Roaming\Microsoft\Document Building Blocks
[23/01/2008|19:39] C:\Users\cedric\AppData\Roaming\Microsoft\Works
[23/01/2008|19:38] C:\Users\cedric\AppData\Roaming\Microsoft\Excel
[23/01/2008|19:38] C:\Users\cedric\AppData\Roaming\Microsoft\AddIns
[23/01/2008|19:30] C:\Users\cedric\AppData\Roaming\Microsoft\Windows
[23/01/2008|19:29] C:\Users\cedric\AppData\Roaming\Microsoft\SystemCertificates
[23/01/2008|19:28] C:\Users\cedric\AppData\Roaming\Microsoft\Protect
[23/01/2008|19:21] C:\Users\cedric\AppData\Roaming\Microsoft\Credentials
[19/06/2008|19:45] C:\Users\cedric\AppData\Roaming\Mozilla\Extensions
[19/06/2008|19:45] C:\Users\cedric\AppData\Roaming\Mozilla\Firefox
[13/05/2008|15:30] C:\Users\cedric\AppData\Roaming\Notepad++\plugins
[29/03/2008|15:16] C:\Users\cedric\AppData\Roaming\Packard Bell\Setup my PC
[24/01/2008|14:01] C:\Users\cedric\AppData\Roaming\Packard Bell\Smart Restore
[23/01/2008|19:53] C:\Users\cedric\AppData\Roaming\Packard Bell\InfoCentre
[28/01/2008|21:17] C:\Users\cedric\AppData\Roaming\Roxio\MediaManager9
[25/01/2008|19:06] C:\Users\cedric\AppData\Roaming\Roxio\RoxioCentral
[25/01/2008|19:06] C:\Users\cedric\AppData\Roaming\Roxio\RoxioCentral33
[31/01/2008|18:58] C:\Users\cedric\AppData\Roaming\Symantec\Cleanup
[23/01/2008|19:47] C:\Users\cedric\AppData\Roaming\Talkback\MozillaOrg
[09/05/2008|19:33] C:\Users\cedric\AppData\Roaming\vlc\cache
----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------
[07/07/2008 20:14][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{73703F0F-BAFC-4892-ABAC-EC81530CB50E}.job
[08/07/2008 18:00][--a------] C:\Windows\tasks\Extension de garantie.job
[08/07/2008 18:00][--a------] C:\Windows\tasks\Recovery DVD Creator.job
[08/07/2008 15:52][--ah-----] C:\Windows\tasks\SA.DAT
[08/07/2008 15:52][--a------] C:\Windows\tasks\SCHEDLGU.TXT
------[ Listing des dossiers dans C:\ProgramData ]------
[08/12/2007|19:46] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[28/05/2008|12:50] C:\ProgramData\Adobe
[28/05/2008|00:47] C:\ProgramData\Adobe Systems
[02/11/2006|15:02] C:\ProgramData\Application Data
[08/07/2008|14:07] C:\ProgramData\avg8
[23/01/2008|19:17] C:\ProgramData\Bureau
[14/03/2008|02:00] C:\ProgramData\CyberLink
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[05/05/2008|00:19] C:\ProgramData\EmailNotifier
[29/02/2008|20:48] C:\ProgramData\eMule
[23/01/2008|19:17] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[08/12/2007|19:32] C:\ProgramData\Google
[03/07/2008|20:16] C:\ProgramData\Grisoft
[08/12/2007|19:31] C:\ProgramData\InstallShield
[06/07/2008|20:58] C:\ProgramData\Malwarebytes
[23/01/2008|19:17] C:\ProgramData\Menu D‚marrer
[26/02/2008|19:56] C:\ProgramData\Messenger Plus!
[10/06/2008|10:32] C:\ProgramData\Microsoft
[03/07/2008|19:15] C:\ProgramData\Microsoft Help
[23/01/2008|19:17] C:\ProgramData\ModŠles
[07/07/2008|19:09] C:\ProgramData\ntuser.pol
[08/05/2008|21:05] C:\ProgramData\NVIDIA
[21/03/2008|22:37] C:\ProgramData\Roxio
[19/02/2008|19:37] C:\ProgramData\Skype
[08/12/2007|19:31] C:\ProgramData\Sonic
[08/07/2008|16:36] C:\ProgramData\Spybot - Search & Destroy
[02/11/2006|15:02] C:\ProgramData\Start Menu
[06/02/2008|03:35] C:\ProgramData\Symantec
[21/03/2008|22:11] C:\ProgramData\TEMP
[02/11/2006|15:02] C:\ProgramData\Templates
[31/01/2008|16:21] C:\ProgramData\WLInstaller
---------------[ Listing des dossiers dans C:\Program Files ]--------------
[08/12/2007|19:46] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[02/07/2008|12:24] C:\Program Files\Adobe
[06/02/2008|14:05] C:\Program Files\Alwil Software
[08/07/2008|14:07] C:\Program Files\AVG
[21/05/2008|15:10] C:\Program Files\Blender Foundation
[03/07/2008|19:15] C:\Program Files\Common Files
[08/12/2007|19:33] C:\Program Files\CyberLink
[09/04/2008|20:55] C:\Program Files\DebugMode
[08/05/2008|19:14] C:\Program Files\desktop.ini
[23/02/2008|11:13] C:\Program Files\DivX
[29/06/2008|01:46] C:\Program Files\eMule
[28/05/2008|12:52] C:\Program Files\EoRezo
[23/01/2008|19:17] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[08/02/2008|16:05] C:\Program Files\Google
[08/07/2008|15:44] C:\Program Files\GRISOFT
[08/12/2007|19:22] C:\Program Files\HDReg
[23/04/2008|23:08] C:\Program Files\InstallShield Installation Information
[28/05/2008|12:39] C:\Program Files\Internet Explorer
[31/01/2008|15:44] C:\Program Files\Inventel
[02/04/2008|06:50] C:\Program Files\Java
[02/03/2008|02:46] C:\Program Files\LG Electronics
[06/06/2008|11:14] C:\Program Files\LimeWire
[06/07/2008|20:58] C:\Program Files\Malwarebytes' Anti-Malware
[04/04/2008|19:48] C:\Program Files\Messenger Plus! Live
[31/01/2008|16:57] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[26/01/2008|18:42] C:\Program Files\Microsoft Games
[08/12/2007|19:44] C:\Program Files\Microsoft Office
[23/04/2008|23:55] C:\Program Files\Microsoft SDKs
[20/05/2008|12:55] C:\Program Files\Microsoft Silverlight
[03/07/2008|19:15] C:\Program Files\Microsoft Visual Studio 9.0
[08/12/2007|19:44] C:\Program Files\Microsoft Works
[08/12/2007|19:44] C:\Program Files\Microsoft.NET
[08/05/2008|19:08] C:\Program Files\Movie Maker
[08/07/2008|16:08] C:\Program Files\Mozilla Firefox
[02/11/2006|14:37] C:\Program Files\MSBuild
[31/01/2008|16:52] C:\Program Files\MSXML 4.0
[07/07/2008|17:15] C:\Program Files\Navilog1
[30/06/2008|19:05] C:\Program Files\Notepad++
[29/03/2008|15:16] C:\Program Files\Packard Bell
[23/03/2008|20:29] C:\Program Files\Philips
[08/12/2007|19:17] C:\Program Files\Realtek
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[08/12/2007|19:31] C:\Program Files\Roxio
[08/12/2007|19:24] C:\Program Files\Seagate
[08/07/2008|16:33] C:\Program Files\Spybot - Search & Destroy
[06/07/2008|16:18] C:\Program Files\Trend Micro
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[02/06/2008|17:19] C:\Program Files\Valve
[05/03/2008|19:57] C:\Program Files\VideoLAN
[05/05/2008|00:19] C:\Program Files\Visicom Media
[08/05/2008|19:08] C:\Program Files\Windows Calendar
[08/05/2008|19:08] C:\Program Files\Windows Collaboration
[08/05/2008|19:08] C:\Program Files\Windows Defender
[08/05/2008|19:08] C:\Program Files\Windows Journal
[31/01/2008|16:34] C:\Program Files\Windows Live
[08/07/2008|18:07] C:\Program Files\Windows Live Safety Center
[11/06/2008|22:58] C:\Program Files\Windows Mail
[08/02/2008|16:09] C:\Program Files\Windows Media Components
[08/05/2008|19:08] C:\Program Files\Windows Media Player
[23/01/2008|19:17] C:\Program Files\Windows NT
[08/05/2008|19:08] C:\Program Files\Windows Photo Gallery
[08/05/2008|19:08] C:\Program Files\Windows Sidebar
[14/05/2008|11:51] C:\Program Files\World of Warcraft
------[ Listing des dossiers dans C:\Program Files\Common Files ]------
[28/05/2008|12:50] C:\Program Files\Common Files\Adobe
[28/05/2008|00:44] C:\Program Files\Common Files\Adobe Systems Shared
[01/02/2008|14:16] C:\Program Files\Common Files\Blizzard Entertainment
[08/12/2007|19:44] C:\Program Files\Common Files\DESIGNER
[08/12/2007|19:33] C:\Program Files\Common Files\InstallShield
[04/03/2008|22:06] C:\Program Files\Common Files\Java
[08/07/2008|14:07] C:\Program Files\Common Files\microsoft shared
[08/12/2007|19:31] C:\Program Files\Common Files\Roxio Shared
[19/04/2008|19:33] C:\Program Files\Common Files\ServerExten
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[08/12/2007|19:31] C:\Program Files\Common Files\Sonic Shared
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[10/06/2008|15:38] C:\Program Files\Common Files\Steam
[08/12/2007|19:31] C:\Program Files\Common Files\SureThing Shared
[23/04/2008|21:07] C:\Program Files\Common Files\SWF Studio
[06/02/2008|03:35] C:\Program Files\Common Files\Symantec Shared
[08/05/2008|19:08] C:\Program Files\Common Files\System
[31/01/2008|16:34] C:\Program Files\Common Files\WindowsLiveInstaller
[08/12/2007|19:23] C:\Program Files\Common Files\Wise Installation Wizard
---------------------------[ Process ]--------------------------
... 55
... OK !
----------------------[ Recherche avec S_Lop ]---------------------
Aucun fichier / dossier Lop trouvé !
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
Aucun fichier / dossier Lop trouvé !
----------------------[ Verification du Registre ]----------------------
..... OK !
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts PROPRE
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-07-08 18:07:46
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
C:\Users\cedric\AppData\Local\gssccas.dat
C:\Users\cedric\AppData\Local\gssccas.exe
C:\Users\cedric\AppData\Local\gssccas_nav.dat
C:\Users\cedric\AppData\Local\gssccas_navps.dat
[b]! EGDACCESS !/b
[F:55][D:8]-> C:\Users\cedric\AppData\Local\Temp
[F:347][D:1]-> C:\Users\cedric\AppData\Roaming\MICROS~1\Windows\Cookies
[F:698][D:6]-> C:\Users\cedric\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:10][D:3]-> C:\$Recycle.Bin
[ UAC => 1 ]
--------------------[ Fin du rapport a 18:08:23,50 ]----------------------
Search Navipromo version 3.6.0 commencé le 08/07/2008 à 18:14:02,44
!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!
!!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!!
Outil exécuté depuis C:\Program Files\navilog1
Session actuelle : "cedric"
Mise à jour le 27.06.2008 à 23h00 par IL-MAFIOSO
Microsoft Windows Vista 6.0.6001
Internet Explorer : 7.0.6001.18000
Système de fichiers : NTFS
Recherche executé en mode normal
*** Recherche Programmes installés ***
*** Recherche dossiers dans "C:\Windows" ***
*** Recherche dossiers dans "C:\Program Files" ***
*** Recherche dossiers dans "C:\ProgramData" ***
*** Recherche dossiers dans "c:\progra~2\micros~1\windows\startm~1\programs" ***
*** Recherche dossiers dans "c:\users\cedric\appdata\roaming\micros~1\windows\startm~1\programs" ***
*** Recherche dossiers dans "C:\Users\cedric\AppData\Local\virtualstore\Program Files" ***
*** Recherche dossiers dans "C:\Users\cedric\AppData\Roaming" ***
*** Recherche avec Catchme-rootkit/stealth malware detector par gmer ***
pour + d'infos : http://www.gmer.net
Aucun Fichier trouvé
*** Recherche avec GenericNaviSearch ***
!!! Tous ces résultats peuvent révéler des fichiers légitimes !!!
!!! A vérifier impérativement avant toute suppression manuelle !!!
* Recherche dans "C:\Windows\system32" *
* Recherche dans "C:\Users\cedric\AppData\Local\Microsoft" *
* Recherche dans "C:\Users\cedric\AppData\Local\virtualstore\windows\system32" *
* Recherche dans "C:\Users\cedric\AppData\Local" *
Fichiers trouvés :
gssccas.exe trouvé !
gssccas.dat trouvé !
gssccas_nav.dat trouvé !
gssccas_navps.dat trouvé !
*** Recherche fichiers ***
*** Recherche clés spécifiques dans le Registre ***
HKEY_CURRENT_USER\Software\Lanconfig trouvé !
*** Module de Recherche complémentaire ***
(Recherche fichiers spécifiques)
1)Recherche nouveaux fichiers Instant Access :
2)Recherche Heuristique :
* Dans "C:\Windows\system32" :
* Dans "C:\Users\cedric\AppData\Local\Microsoft" :
* Dans "C:\Users\cedric\AppData\Local\virtualstore\windows\system32" :
* Dans "C:\Users\cedric\AppData\Local" :
gssccas.dat trouvé !
gssccas_nav.dat trouvé !
gssccas_navps.dat trouvé !
3)Recherche Certificats :
Certificat Egroup trouvé !
Certificat Electronic-Group trouvé !
Certificat OOO-Favorit trouvé !
Certificat Sunny-Day-Design-Ltd absent !
4)Recherche fichiers connus :
*** Analyse terminée le 08/07/2008 à 18:24:48,96 ***
!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!
!!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!!
Outil exécuté depuis C:\Program Files\navilog1
Session actuelle : "cedric"
Mise à jour le 27.06.2008 à 23h00 par IL-MAFIOSO
Microsoft Windows Vista 6.0.6001
Internet Explorer : 7.0.6001.18000
Système de fichiers : NTFS
Recherche executé en mode normal
*** Recherche Programmes installés ***
*** Recherche dossiers dans "C:\Windows" ***
*** Recherche dossiers dans "C:\Program Files" ***
*** Recherche dossiers dans "C:\ProgramData" ***
*** Recherche dossiers dans "c:\progra~2\micros~1\windows\startm~1\programs" ***
*** Recherche dossiers dans "c:\users\cedric\appdata\roaming\micros~1\windows\startm~1\programs" ***
*** Recherche dossiers dans "C:\Users\cedric\AppData\Local\virtualstore\Program Files" ***
*** Recherche dossiers dans "C:\Users\cedric\AppData\Roaming" ***
*** Recherche avec Catchme-rootkit/stealth malware detector par gmer ***
pour + d'infos : http://www.gmer.net
Aucun Fichier trouvé
*** Recherche avec GenericNaviSearch ***
!!! Tous ces résultats peuvent révéler des fichiers légitimes !!!
!!! A vérifier impérativement avant toute suppression manuelle !!!
* Recherche dans "C:\Windows\system32" *
* Recherche dans "C:\Users\cedric\AppData\Local\Microsoft" *
* Recherche dans "C:\Users\cedric\AppData\Local\virtualstore\windows\system32" *
* Recherche dans "C:\Users\cedric\AppData\Local" *
Fichiers trouvés :
gssccas.exe trouvé !
gssccas.dat trouvé !
gssccas_nav.dat trouvé !
gssccas_navps.dat trouvé !
*** Recherche fichiers ***
*** Recherche clés spécifiques dans le Registre ***
HKEY_CURRENT_USER\Software\Lanconfig trouvé !
*** Module de Recherche complémentaire ***
(Recherche fichiers spécifiques)
1)Recherche nouveaux fichiers Instant Access :
2)Recherche Heuristique :
* Dans "C:\Windows\system32" :
* Dans "C:\Users\cedric\AppData\Local\Microsoft" :
* Dans "C:\Users\cedric\AppData\Local\virtualstore\windows\system32" :
* Dans "C:\Users\cedric\AppData\Local" :
gssccas.dat trouvé !
gssccas_nav.dat trouvé !
gssccas_navps.dat trouvé !
3)Recherche Certificats :
Certificat Egroup trouvé !
Certificat Electronic-Group trouvé !
Certificat OOO-Favorit trouvé !
Certificat Sunny-Day-Design-Ltd absent !
4)Recherche fichiers connus :
*** Analyse terminée le 08/07/2008 à 18:24:48,96 ***
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
non tkt on as tous fais navilog malwarebytes avg spybot scan en ligne lop sd ! il a plus rien on a supprimer navilog et lop sd
