Sujet Précédent Sujet Suivant

Pub intempestive au cour d'une navigation

Résolu/Fermé
titite_baby Messages postés 80 Date d'inscription samedi 29 mars 2008 Statut Membre Dernière intervention 14 février 2009 - 27 juil. 2008 à 14:55
 Utilisateur anonyme - 4 août 2008 à 00:19
Bonjour,

j'ai des pubs qui s'ouvre à chaque connexion sur internet.

voilà mon rapport hijack

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:42:35, on 27/07/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Pack Securite\Common\FSM32.EXE
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\Picasa2\PicasaMediaDetector.exe
C:\WINDOWS\system32\sistray.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\Program Files\Boonty\BoontyBox\BoontyBox.exe
C:\Program Files\OpenOffice.org 2.2\program\soffice.exe
C:\Program Files\OpenOffice.org 2.2\program\soffice.BIN
C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Pack Securite\Anti-Virus\fsgk32st.exe
C:\Program Files\Pack Securite\Anti-Virus\FSGK32.EXE
C:\Program Files\Pack Securite\Common\FSMA32.EXE
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Pack Securite\Common\FSMB32.EXE
C:\Program Files\Norton SystemWorks\Norton AntiVirus\navapsvc.exe
C:\Program Files\Norton SystemWorks\Norton AntiVirus\IWP\NPFMntor.exe
C:\PROGRA~1\NORTON~2\NORTON~1\NPROTECT.EXE
C:\Program Files\Pack Securite\Common\FCH32.EXE
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Pack Securite\Anti-Virus\fsqh.exe
C:\Program Files\Pack Securite\Common\FAMEH32.EXE
C:\Program Files\Pack Securite\FSPC\fspc.exe
C:\Program Files\Norton SystemWorks\Norton AntiVirus\SAVScan.exe
C:\PROGRA~1\NORTON~2\NORTON~1\SPEEDD~1\NOPDB.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\Program Files\Pack Securite\FSGUI\fsguidll.exe
C:\Program Files\Pack Securite\FWES\Program\fsdfwd.exe
C:\Program Files\Pack Securite\Anti-Virus\fssm32.exe
C:\Program Files\Pack Securite\FSAUA\program\fsaua.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Pack Securite\FSAUA\program\fsus.exe
C:\Program Files\Pack Securite\Anti-Virus\fsav32.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.neuf.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://actus.sfr.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://actus.sfr.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton SystemWorks\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton SystemWorks\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\Pack Securite\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\Pack Securite\FSGUI\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: BoontyBox 01net.lnk = C:\Program Files\Boonty\BoontyBox\BoontyBox.exe
O4 - Startup: OpenOffice.org 2.2.lnk = C:\Program Files\OpenOffice.org 2.2\program\quickstart.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Utility Tray.lnk = C:\WINDOWS\system32\sistray.exe
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Parental... - {200DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\Pack Securite\FSPC\fspcmsie.dll
O9 - Extra button: (no name) - {200DB664-75B5-47c0-8B45-A44ACCF73F01} - C:\Program Files\Pack Securite\FSPC\fspcmsie.dll
O9 - Extra 'Tools' menuitem: Parental... - {200DB664-75B5-47c0-8B45-A44ACCF73F01} - C:\Program Files\Pack Securite\FSPC\fspcmsie.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/20061205/qtinstall.info.apple.com/qtactivex/qtplugin.cab
O16 - DPF: {0B79F48A-E8D6-11DB-9283-E25056D89593} (F-Secure Online Scanner 3.1) - https://www.f-secure.com/en/home/support
O16 - DPF: {1FF43AD5-2262-4C2F-81D4-26D710C3F305} (VB2S Mannequin Virtuel Control) - http://mannequin.redoute.fr/activex/Mannequin.cab
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab
O16 - DPF: {4BFD075D-C36E-4F28-BB0A-5D472795197A} (PowerLoader Class) - https://www.jeu.fr/?utm_source=spildomains&utm_medium=redirect&utm_campaign=powersoccer.jeu.fr
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - https://bitdefender.solutions-antivirus.com/scan8/oscan8.cab
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase370.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Apps/PhotoSwap/PhtPkMSN.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game02.zylom.com/activex/zylomgamesplayer.cab
O16 - DPF: {CE69F98F-2AF3-4306-BAC6-A79070EDA1B4} (Zylom Loader Object) - http://eu.download.games.yahoo.com/zylom/activex/zylomloader.cab
O16 - DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} (Virtools WebPlayer Class) - http://a532.g.akamai.net/...
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL
O23 - Service: Acer Media Server - Acer Inc. - C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files\Pack Securite\Anti-Virus\fsgk32st.exe
O23 - Service: F-Secure Automatic Update Agent (FSAUA) - F-Secure Corporation - C:\Program Files\Pack Securite\FSAUA\program\fsaua.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\Pack Securite\FWES\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\Pack Securite\Common\FSMA32.EXE
O23 - Service: Google Desktop Manager 5.1.709.19590 (GoogleDesktopManager-091907-194040) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton SystemWorks\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton SystemWorks\Norton AntiVirus\IWP\NPFMntor.exe
O23 - Service: Norton Unerase Protection (NProtectService) - Symantec Corporation - C:\PROGRA~1\NORTON~2\NORTON~1\NPROTECT.EXE
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton SystemWorks\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Speed Disk service - Symantec Corporation - C:\PROGRA~1\NORTON~2\NORTON~1\SPEEDD~1\NOPDB.EXE
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
A voir également:

48 réponses

Réponse 1 / 48
Utilisateur anonyme
27 juil. 2008 à 16:05
Salut

réouvre hijackthis
fais scan only
coches ces lignes :


O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')


O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/
O16 - DPF: {0B79F48A-E8D6-11DB-9283-E25056D89593} (F-Secure Online Scanner 3.1) - https://www.f-secure.com/en/home/support
O16 - DPF: {1FF43AD5-2262-4C2F-81D4-26D710C3F305} (VB2S Mannequin Virtuel Control) - http://mannequin.redoute.fr/activex/Mannequin.cab
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSn­iff.cab
O16 - DPF: {4BFD075D-C36E-4F28-BB0A-5D472795197A} (PowerLoader Class) - https://www.jeu.fr/?utm_source=spildomains&utm_medium=redirect&utm_campaign=powersoccer.jeu.fr
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - https://bitdefender.solutions-antivirus.com/scan8/oscan8.cab
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/download/scanner/w­lscbase370.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/­cabsa.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.ca­b31267.cab
O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Apps/Ph­otoSwap/PhtPkMSN.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game02.zylom.com/activex/zylomgamesplayer.cab
O16 - DPF: {CE69F98F-2AF3-4306-BAC6-A79070EDA1B4} (Zylom Loader Object) - http://eu.download.games.yahoo.com/zylom/activex/zylomloader­.cab
O16 - DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} (Virtools WebPlayer Class) - http://a532.g.akamai.net/
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31­267.cab


tu les coches et tu clic sur fix checked


ensuite :

désinstal java car pas a jours et telechrage et instal cette version :


https://sdlc-esd.oracle.com/ESD44/JSCDL/jdk/6u7/jre-6u7-windows-i586-p-s.exe?GroupName=JSC&FilePath=/ESD44/JSCDL/jdk/6u7/jre-6u7-windows-i586-p-s.exe&BHost=javadl.sun.com&File=jre-6u7-windows-i586-p-s.exe&AuthParam=1580978146_46494a57fbc0e7c89e79cfb72e28cd3a&ext=.exe


ensuite :


Télécharge sur ton bureau DSS (ex Comboscan) de Deckard:

http://deckard.geekstogo.com/dss.exe


(choisis enregistrer, puis Bureau comme emplacement)

Ferme toutes les applications en cours.

Double-clic sur DSS.exe pour lancer l'outil.

Une fenêtre s'ouvre, invitant à fermer toutes les applications, clique sur OK.

A la fin de l'analyse, une fenêtre s'ouvre, clique sur OK.

Le rapport main.txt va s'afficher, copie le dans ta prochaine réponse.
Si un rapport complémentaire a été créé ( extra.txt ), poste le aussi dans ta réponse.

Les rapports sont ici :
(!) C:\Deckard\System Scanner\main.txt
(!) C:\Deckard\System Scanner\extra.txt

(CTRL+A Pour tout selectionner , CTRL+C pour copier et CTRL+V pour coller )


0
Réponse 2 / 48
titite_baby Messages postés 80 Date d'inscription samedi 29 mars 2008 Statut Membre Dernière intervention 14 février 2009 2
27 juil. 2008 à 16:58
voilà les rapports :


Run by Phanélie on 2008-07-27 16:46:30
Computer is in Normal Mode.
--------------------------------------------------------------------------------

-- System Restore --------------------------------------------------------------

Successfully created a Deckard's System Scanner Restore Point.


-- Last 5 Restore Point(s) --
49: 2008-07-27 14:46:35 UTC - RP58 - Deckard's System Scanner Restore Point
48: 2008-07-27 14:39:27 UTC - RP57 - Installé Java(TM) 6 Update 7
47: 2008-07-25 15:31:45 UTC - RP56 - Installé Pro Evolution Soccer 6
46: 2008-07-25 15:27:42 UTC - RP55 - DirectX est installé
45: 2008-07-25 06:47:31 UTC - RP54 - Software Distribution Service 3.0


-- First Restore Point --
1: 2008-04-25 07:22:21 UTC - RP10 - Software Distribution Service 3.0


Backed up registry hives.
Performed disk cleanup.



-- HijackThis (run as Phanélie.exe) --------------------------------------------

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:50:29, on 27/07/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Pack Securite\Common\FSM32.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\Picasa2\PicasaMediaDetector.exe
C:\WINDOWS\system32\sistray.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\Program Files\Boonty\BoontyBox\BoontyBox.exe
C:\Program Files\OpenOffice.org 2.2\program\soffice.exe
C:\Program Files\OpenOffice.org 2.2\program\soffice.BIN
C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Pack Securite\Anti-Virus\fsgk32st.exe
C:\Program Files\Pack Securite\Anti-Virus\FSGK32.EXE
C:\Program Files\Pack Securite\Common\FSMA32.EXE
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Pack Securite\Common\FSMB32.EXE
C:\Program Files\Norton SystemWorks\Norton AntiVirus\navapsvc.exe
C:\Program Files\Norton SystemWorks\Norton AntiVirus\IWP\NPFMntor.exe
C:\PROGRA~1\NORTON~2\NORTON~1\NPROTECT.EXE
C:\Program Files\Pack Securite\Common\FCH32.EXE
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Pack Securite\Anti-Virus\fsqh.exe
C:\Program Files\Pack Securite\Common\FAMEH32.EXE
C:\Program Files\Pack Securite\FSPC\fspc.exe
C:\Program Files\Norton SystemWorks\Norton AntiVirus\SAVScan.exe
C:\PROGRA~1\NORTON~2\NORTON~1\SPEEDD~1\NOPDB.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\Program Files\Pack Securite\FSGUI\fsguidll.exe
C:\Program Files\Pack Securite\FWES\Program\fsdfwd.exe
C:\Program Files\Pack Securite\Anti-Virus\fssm32.exe
C:\Program Files\Pack Securite\FSAUA\program\fsaua.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Pack Securite\FSAUA\program\fsus.exe
C:\Program Files\Pack Securite\Anti-Virus\fsav32.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\msiexec.exe
C:\Documents and Settings\Phanélie\Local Settings\Temporary Internet Files\Content.IE5\F7V9B17W\dss[1].exe
C:\PROGRA~1\TRENDM~1\HIJACK~1\Phanélie.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.neuf.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://actus.sfr.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://actus.sfr.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton SystemWorks\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton SystemWorks\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\Pack Securite\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\Pack Securite\FSGUI\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe
O4 - Startup: BoontyBox 01net.lnk = C:\Program Files\Boonty\BoontyBox\BoontyBox.exe
O4 - Startup: OpenOffice.org 2.2.lnk = C:\Program Files\OpenOffice.org 2.2\program\quickstart.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Utility Tray.lnk = C:\WINDOWS\system32\sistray.exe
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Parental... - {200DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\Pack Securite\FSPC\fspcmsie.dll
O9 - Extra button: (no name) - {200DB664-75B5-47c0-8B45-A44ACCF73F01} - C:\Program Files\Pack Securite\FSPC\fspcmsie.dll
O9 - Extra 'Tools' menuitem: Parental... - {200DB664-75B5-47c0-8B45-A44ACCF73F01} - C:\Program Files\Pack Securite\FSPC\fspcmsie.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL
O23 - Service: Acer Media Server - Acer Inc. - C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files\Pack Securite\Anti-Virus\fsgk32st.exe
O23 - Service: F-Secure Automatic Update Agent (FSAUA) - F-Secure Corporation - C:\Program Files\Pack Securite\FSAUA\program\fsaua.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\Pack Securite\FWES\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\Pack Securite\Common\FSMA32.EXE
O23 - Service: Google Desktop Manager 5.1.709.19590 (GoogleDesktopManager-091907-194040) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton SystemWorks\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton SystemWorks\Norton AntiVirus\IWP\NPFMntor.exe
O23 - Service: Norton Unerase Protection (NProtectService) - Symantec Corporation - C:\PROGRA~1\NORTON~2\NORTON~1\NPROTECT.EXE
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton SystemWorks\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Speed Disk service - Symantec Corporation - C:\PROGRA~1\NORTON~2\NORTON~1\SPEEDD~1\NOPDB.EXE
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
0
Réponse 3 / 48
Utilisateur anonyme
27 juil. 2008 à 17:05
Fais un clic droit sur ce lien : (IL-MAFIOSO)
http://perso.orange.fr/il.mafioso/Navifix/Navilog1.exe
Enregistrer la cible (du lien) sous... et enregistre-le sur ton bureau.
Ensuite double clique sur navilog1.exe pour lancer l'installation.
Une fois l'installation terminée, le fix s'exécutera automatiquement.
(Si ce n'est pas le cas, double-clique sur le raccourci Navilog1 présent sur le bureau).

Laisse-toi guider. Au menu principal, choisis 1 et valides.
(ne fais pas le choix 2,3 ou 4 sans notre avis/accord)

Patiente jusqu'au message :
*** Analyse Termine le ..... ***
Appuie sur une touche comme demandé, le blocnote va s'ouvrir.
Copie-colle l'intégralité dans une réponse. Referme le blocnote.
Le rapport est en outre sauvegardé à la racine du disque (fixnavi.txt)


Tuto: http://www.malekal.com/Adware.Magic_Control.php
0
Réponse 4 / 48
titite_baby Messages postés 80 Date d'inscription samedi 29 mars 2008 Statut Membre Dernière intervention 14 février 2009 2
27 juil. 2008 à 17:52
voilà le rapport:


Search Navipromo version 3.6.1 commencé le 27/07/2008 à 17:47:23,09

!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!
!!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!!

Outil exécuté depuis C:\Program Files\navilog1
Session actuelle : "Phanélie"

Mise à jour le 19.07.2008 à 20h00 par IL-MAFIOSO


Microsoft Windows XP [version 5.1.2600]
Internet Explorer : 7.0.5730.11
Système de fichiers : FAT32

Recherche executé en mode normal

*** Recherche Programmes installés ***

Favorit

*** Recherche dossiers dans "C:\WINDOWS" ***


*** Recherche dossiers dans "C:\Program Files" ***


*** Recherche dossiers dans "C:\Documents and Settings\All Users\menudÉ~1\progra~1" ***


*** Recherche dossiers dans "C:\Documents and Settings\All Users\menudÉ~1" ***


*** Recherche dossiers dans "c:\docume~1\alluse~1\applic~1" ***


*** Recherche dossiers dans "C:\Documents and Settings\Phanélie\applic~1" ***


*** Recherche dossiers dans "C:\DOCUME~1\MAGLOIRE\applic~1" ***


*** Recherche dossiers dans "C:\DOCUME~1\STÉPHA~1\applic~1" ***


*** Recherche dossiers dans "C:\DOCUME~1\PROPRI~1\applic~1" ***


*** Recherche dossiers dans "C:\Documents and Settings\Phanélie\locals~1\applic~1" ***


*** Recherche dossiers dans "C:\DOCUME~1\MAGLOIRE\locals~1\applic~1" ***


*** Recherche dossiers dans "C:\DOCUME~1\STÉPHA~1\locals~1\applic~1" ***


*** Recherche dossiers dans "C:\Documents and Settings\Phanélie\menud+~1\progra~1" ***

*** Recherche avec Catchme-rootkit/stealth malware detector par gmer ***
pour + d'infos : http://www.gmer.net

Aucun Fichier Navipromo trouvé


*** Recherche avec GenericNaviSearch ***
!!! Tous ces résultats peuvent révéler des fichiers légitimes !!!
!!! A vérifier impérativement avant toute suppression manuelle !!!

* Recherche dans "C:\WINDOWS\system32" *

* Recherche dans "C:\Documents and Settings\Phanélie\locals~1\applic~1" *

* Recherche dans "C:\DOCUME~1\MAGLOIRE\locals~1\applic~1" *

* Recherche dans "C:\DOCUME~1\STÉPHA~1\locals~1\applic~1" *



*** Recherche fichiers ***


C:\WINDOWS\system32\nvs2.inf trouvé !

*** Recherche clés spécifiques dans le Registre ***


*** Module de Recherche complémentaire ***
(Recherche fichiers spécifiques)

1)Recherche nouveaux fichiers Instant Access :


2)Recherche Heuristique :

* Dans "C:\WINDOWS\system32" :


* Dans "C:\Documents and Settings\Phanélie\locals~1\applic~1" :


* Dans "C:\DOCUME~1\MAGLOIRE\locals~1\applic~1" :

emaukom.dat trouvé !
emaukom_nav.dat trouvé !
emaukom_navps.dat trouvé !

* Dans "C:\DOCUME~1\STÉPHA~1\locals~1\applic~1" :


3)Recherche Certificats :

Certificat Egroup absent !
Certificat Electronic-Group absent !
Certificat OOO-Favorit absent !
Certificat Sunny-Day-Design-Ltd absent !

4)Recherche fichiers connus :



*** Analyse terminée le 27/07/2008 à 17:50:25,12 ***
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 48
Utilisateur anonyme
27 juil. 2008 à 17:55
Double cliques sur le raccourci Navilog1 présent sur le bureau et laisse-toi guider.
Au menu principal, choisis 2 et valides.
(ne fais pas le choix 3 ou 4 sans notre avis/accord)

Le fix va t'informer qu'il va alors redémarrer ton PC
Fermes toutes les fenêtres ouvertes et enregistre tes documents personnels ouverts
Appuies sur une touche comme demandé.
(si ton Pc ne redémarre pas automatiquement, fais le toi même)
Au redémarrage de ton PC, choisis ta session habituelle.

Patiente jusqu'au message :
*** Nettoyage Termine le ..... ***
Le bloc-notes va s'ouvrir.
Sauvegarde le rapport de manière à le retrouver
Referme le bloc-notes. Ton bureau va réapparaitre

PS:Si ton bureau ne réapparait pas, fais CTRL+ALT+SUPP pour ouvrir le gestionnaire de tâches.
Puis rends-toi à l'onglet "processus". Clique en haut à gauche sur fichiers et choisis "exécuter"
Tape explorer et valide. Celà te fera apparaitre ton bureau.

Postes le rapport içi.
0
Réponse 6 / 48
titite_baby Messages postés 80 Date d'inscription samedi 29 mars 2008 Statut Membre Dernière intervention 14 février 2009 2
27 juil. 2008 à 19:03
voici le rapport:


Clean Navipromo version 3.6.1 commencé le 27/07/2008 à 18:54:21,62

Outil exécuté depuis C:\Program Files\navilog1
Session actuelle : "Phanélie"

Mise à jour le 19.07.2008 à 20h00 par IL-MAFIOSO


Microsoft Windows XP [version 5.1.2600]
Internet Explorer : 7.0.5730.11
Système de fichiers : FAT32

Mode suppression automatique
avec prise en charge résultats Catchme et GNS


Nettoyage exécuté au redémarrage de l'ordinateur


*** fsbl1.txt non trouvé ***
(Assurez-vous que Catchme n'avait rien trouvé lors de la recherche)


*** Suppression avec sauvegardes résultats GenericNaviSearch ***

* Suppression dans "C:\WINDOWS\System32" *


* Suppression dans "C:\Documents and Settings\Phanélie\locals~1\applic~1" *


* Suppression dans "C:\DOCUME~1\MAGLOIRE\locals~1\applic~1" *

* Suppression dans "C:\DOCUME~1\STÉPHA~1\locals~1\applic~1" *


*** Suppression dossiers dans "C:\WINDOWS" ***


*** Suppression dossiers dans "C:\Program Files" ***


*** Suppression dossiers dans "C:\Documents and Settings\All Users\menudÉ~1\progra~1" ***


*** Suppression dossiers dans "C:\Documents and Settings\All Users\menudÉ~1" ***


*** Suppression dossiers dans "c:\docume~1\alluse~1\applic~1" ***


*** Suppression dossiers dans "C:\Documents and Settings\Phanélie\applic~1" ***


*** Suppression dossiers dans "C:\DOCUME~1\MAGLOIRE\applic~1" ***


*** Suppression dossiers dans "C:\DOCUME~1\STÉPHA~1\applic~1" ***


*** Suppression dossiers dans "C:\DOCUME~1\PROPRI~1\applic~1" ***


*** Suppression dossiers dans "C:\Documents and Settings\Phanélie\locals~1\applic~1" ***


*** Suppression dossiers dans "C:\DOCUME~1\MAGLOIRE\locals~1\applic~1" ***


*** Suppression dossiers dans "C:\DOCUME~1\STÉPHA~1\locals~1\applic~1" ***


*** Suppression dossiers dans "C:\Documents and Settings\Phanélie\menud+~1\progra~1" ***



*** Suppression fichiers ***

C:\WINDOWS\system32\nvs2.inf supprimé !

*** Suppression fichiers temporaires ***

Nettoyage contenu C:\WINDOWS\Temp effectué !
Nettoyage contenu C:\Documents and Settings\Phan‚lie\locals~1\Temp effectué !

*** Traitement Recherche complémentaire ***
(Recherche fichiers spécifiques)

1)Suppression avec sauvegardes nouveaux fichiers Instant Access :

2)Recherche, création sauvegardes et suppression Heuristique :


* Dans "C:\WINDOWS\system32" *


* Dans "C:\Documents and Settings\Phanélie\locals~1\applic~1" *


* Dans "C:\DOCUME~1\MAGLOIRE\locals~1\applic~1" *


emaukom.exe trouvé !
Copie emaukom.exe réalisée avec succès !
emaukom.exe supprimé !

emaukom.dat trouvé !
Copie emaukom.dat réalisée avec succès !
emaukom.dat supprimé !

emaukom_nav.dat trouvé !
Copie emaukom_nav.dat réalisée avec succès !
emaukom_nav.dat supprimé !

emaukom_navps.dat trouvé !
Copie emaukom_navps.dat réalisée avec succès !
emaukom_navps.dat supprimé !

C:\WINDOWS\prefetch\emaukom*.pf trouvé !
Copie C:\WINDOWS\prefetch\emaukom*.pf réalisée avec succès !
C:\WINDOWS\prefetch\emaukom*.pf supprimé !


* Dans "C:\DOCUME~1\STÉPHA~1\locals~1\applic~1" *


*** Sauvegarde du Registre vers dossier Safebackup ***

sauvegarde du Registre réalisée avec succès !

*** Nettoyage Registre ***

Nettoyage Registre Ok


*** Certificats ***

Certificat Egroup absent !
Certificat Electronic-Group absent !
Certificat OOO-Favorit absent !
Certificat Sunny-Day-Design-Ltdt absent !

*** Nettoyage terminé le 27/07/2008 à 18:59:27,39 ***
0
Réponse 7 / 48
Utilisateur anonyme
27 juil. 2008 à 19:06
-> Télécharge Ccleaner (n'installe pas la barre d'outil Yahoo):

https://www.01net.com/telecharger/windows/Utilitaire/nettoyeurs_et_installeurs/fiches/32599.html

-> L´installer.

-> Une fois installé et lancé :

Dans la colonne de gauche, click sur :

->"registre" :

Coches toutes les cases sous"l´integrité du registre", puis click en bas sur "chercher des erreurs" une fois terminé, clic sur "reparer les erreurs", tu auras un message pour sauvegarder ta base de registre, tu click "oui" puis tu recommence jusqu'à ce qu'il ne trouve plus rien.

ps : les sauvegardes que tu auras faites, pourront etre supprimées ulterieurement si tout va bien.

->"nettoyeur"

quitte ton navigateur avant de le lancer, dans les propriétés du nettoyeur de l´onglet "windows" et "applications"décoche la derniere case (Avancé si elle est cochée) puis click sur "lancer le nettoyage" qunand il aura terminé le scan click en bas a droite sur "lancer le nettoyage" et accepte par oui.

-> Tutoriel en image :

https://www.vulgarisation-informatique.com/nettoyer-windows-ccleaner.php


ensuite :

Télecharge et instal AVG anti spyware:

http://www.commentcamarche.net/telecharger/telecharger 218 avg anti spyware


instal le et met le a jours

ensuite lance le scan et supprime

puis poste le rapport sur le forum stp

Tuto : https://kerio.probb.fr/t387-tuto-avg-anti-spyware-anti-spyware

Qu est ce que les cookies : https://kerio.probb.fr/t161-qu-est-ce-qu-un-cookie-tracking-cookie


ensuite :

* pour supprimer les outils/fix utilisés :

Télécharge ToolsCleaner sur ton bureau.
-->
ftp://ftp.commentcamarche.com/download/ToolsCleaner2.exe
http://www.commentcamarche.net/telecharger/telecharger 34055291 toolscleaner
http://pc-system.fr/

# Clique sur Recherche et laisse le scan agir ...
# Clique sur Suppression pour finaliser.
# Tu peux, si tu le souhaites, te servir des Options facultatives.
# Clique sur Quitter pour obtenir le rapport.
# Poste le rapport (TCleaner.txt) qui se trouve à la racine de ton disque dur (C:\).




0
Réponse 8 / 48
titite_baby Messages postés 80 Date d'inscription samedi 29 mars 2008 Statut Membre Dernière intervention 14 février 2009 2
28 juil. 2008 à 20:31
rapport AVG anti spiware :

AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 20:29:08 28/07/2008

+ Résultat de l'analyse:



C:\Documents and Settings\Phanélie\Cookies\phanélie@CAGVQEDB.txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Phanélie\Cookies\phanélie@CAOCP85H.txt -> TrackingCookie.2o7 : Nettoyé.
C:\Documents and Settings\Phanélie\Cookies\phanélie@CAAZLKCU.txt -> TrackingCookie.Adrevolver : Nettoyé.
C:\Documents and Settings\Phanélie\Cookies\phanélie@CA72CHSW.txt -> TrackingCookie.Estat : Nettoyé.
C:\Documents and Settings\Phanélie\Cookies\phanélie@CAZC6MII.txt -> TrackingCookie.Serving-sys : Nettoyé.


Fin du rapport
0
Réponse 9 / 48
titite_baby
28 juil. 2008 à 20:42
rapport Toolscleaners :
( faut il le supprimer du disque dur)
merci

-->- Recherche:

C:\Documents and Settings\All Users\Bureau\Navilog1.lnk: trouvé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis: trouvé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Navilog1: trouvé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis\HijackThis.lnk: trouvé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Navilog1\Navilog1.lnk: trouvé !
C:\Documents and Settings\Phanélie\Bureau\Navilog1.exe: trouvé !
C:\Program Files\Navilog1: trouvé !
C:\Program Files\Trend Micro\HijackThis: trouvé !
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe: trouvé !
C:\Program Files\Navilog1\Navilog1.bat: trouvé !

---------------------------------
-->- Suppression:

C:\Documents and Settings\All Users\Bureau\Navilog1.lnk: supprimé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis\HijackThis.lnk: supprimé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Navilog1\Navilog1.lnk: supprimé !
C:\Documents and Settings\Phanélie\Bureau\Navilog1.exe: supprimé !
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe: supprimé !
C:\Program Files\Navilog1\Navilog1.bat: supprimé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis: supprimé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Navilog1: supprimé !
C:\Program Files\Navilog1: supprimé !
C:\Program Files\Trend Micro\HijackThis: supprimé !

Fichiers temporaires nettoyés !
0
Réponse 10 / 48
Utilisateur anonyme
28 juil. 2008 à 20:47
oui supprime le

toujours des soucis ?
0
Réponse 11 / 48
titite_baby Messages postés 80 Date d'inscription samedi 29 mars 2008 Statut Membre Dernière intervention 14 février 2009 2
29 juil. 2008 à 00:03
Bonsoir,

En ce moment j'ai encor plus de de pub qu'avant
0
Réponse 12 / 48
Utilisateur anonyme
29 juil. 2008 à 00:09
Télécharge combofix : http://download.bleepingcomputer.com/sUBs/ComboFix.exe




-> Double clique sur combofix.exe.
-> Tape sur la touche 1 (Yes) pour démarrer le scan.
-> Lorsque le scan sera complété, un rapport apparaîtra. Copie/colle ce rapport dans ta prochaine réponse.

NOTE : Le rapport se trouve également ici : C:\Combofix.txt

Avant d'utiliser ComboFix :

-> Déconnecte toi d'internet et referme les fenêtres de tous les programmes en cours.

-> Désactive provisoirement et seulement le temps de l'utilisation de ComboFix, la protection en temps réel de ton Antivirus et de tes Antispywares, qui peuvent géner fortement la procédure de recherche et de nettoyage de l'outil.

Une fois fait, sur ton bureau double-clic sur Combofix.exe.

- Répond oui au message d'avertissement, pour que le programme commence à procéder à l'analyse du pc.

/!\ Pendant la durée de cette étape, ne te sert pas du pc et n'ouvre aucun programmes.

- En fin de scan il est possible que ComboFix ait besoin de redemarrer le pc pour finaliser la désinfection\recherche, laisses-le faire.

- Un rapport s'ouvrira ensuite dans le bloc notes, ce fichier rapport Combofix.txt, est automatiquement sauvegardé et rangé à C:\Combofix.txt)

-> Réactive la protection en temps réel de ton Antivirus et de tes Antispywares, avant de te reconnecter à internet.

-> Reviens sur le forum, et copie et colle la totalité du contenu de C:\Combofix.txt dans ton prochain message.

-> Tutoriel https://www.bleepingcomputer.com/combofix/fr/comment-utiliser-combofix

0
Réponse 13 / 48
titite_baby Messages postés 80 Date d'inscription samedi 29 mars 2008 Statut Membre Dernière intervention 14 février 2009 2
29 juil. 2008 à 13:48
bonjour,
Je n'arrive pas à installer combofix
J'ai un msg d'erreur qui apparait

you cannot renam combofix as combofix [1]
please use another name, preferbely made up of alphanumeric characters.

comment renomer combofix

( à certaine pub il ya écrit CiD en haut)
0
Réponse 14 / 48
Utilisateur anonyme
29 juil. 2008 à 15:44
télécharge Lop S&D.exe sur ton Bureau.https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2

* Double-clique dessus pour lancer l'installation
* Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
* Séléctionne la langue souhaitée , puis choisis l'option 1 (Recherche)
* Patiente jusqu'à la fin du scan
* Poste le rapport généré (C:\lopR.txt)


Tutorial ( aide ) : http://bibou0007.com/outils-specifiques-f78/tuto-lop-sd-t956.htm
0
Réponse 15 / 48
titite_baby Messages postés 80 Date d'inscription samedi 29 mars 2008 Statut Membre Dernière intervention 14 février 2009 2
29 juil. 2008 à 17:46
--------------------\\ Lop S&D 4.2.2-4 XP/Vista

[ Windows XP (NT 5.1) Build 2600, Service Pack 3 ]
[ USER : Phan‚lie ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 29/07/2008 | 17:39:42,62 ] [ PC : DBARRAS ]
[ MAJ : 25-07-2008 | 17:45 ]

--------------------\\ Listing des dossiers dans APPLIC~1

[02/11/2005|15:47] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[02/11/2005|16:01] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[02/11/2005|15:47] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[02/11/2005|16:09] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec

[28/07/2008|21:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Admin Inter 1 Mags
[02/11/2005|16:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[11/03/2007|15:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[13/02/2008|18:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CanonBJ
[27/07/2006|03:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[02/11/2005|15:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[10/09/2006|21:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\eConsole
[12/10/2007|19:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\F-Secure
[12/10/2007|19:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\fssg
[27/07/2006|15:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[10/03/2008|21:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
[13/10/2007|14:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
[17/07/2008|15:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HipSoft
[13/02/2008|18:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[28/07/2008|21:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[08/03/2008|08:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MGS
[02/11/2005|15:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[03/11/2007|20:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NannyMania
[01/01/2007|18:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NtiDvdCopy
[25/10/2006|11:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst
[24/03/2008|18:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QTSBandwidthCache
[11/02/2007|17:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sandlot Games
[13/02/2008|18:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ScanSoft
[11/03/2007|16:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony
[12/08/2007|15:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony Ericsson
[02/11/2005|16:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[12/08/2007|15:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Teleca
[04/04/2007|17:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[08/06/2007|13:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Trymedia
[07/08/2006|20:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[01/03/2007|17:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[25/02/2008|17:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[10/11/2006|21:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom

[02/11/2005|15:47] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

[02/11/2005|15:47] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[01/06/2007|12:29] C:\DOCUME~1\LOCALS~1\APPLIC~1\Symantec
[14/10/2007|11:48] C:\DOCUME~1\LOCALS~1\APPLIC~1\Webroot

[25/08/2006|18:19] C:\DOCUME~1\PHANLIE\APPLIC~1\Adobe
[03/01/2007|17:29] C:\DOCUME~1\PHANLIE\APPLIC~1\AdobeUM
[31/03/2007|17:03] C:\DOCUME~1\PHANLIE\APPLIC~1\Apple Computer
[13/02/2008|18:43] C:\DOCUME~1\PHANLIE\APPLIC~1\Canon
[31/07/2006|15:44] C:\DOCUME~1\PHANLIE\APPLIC~1\CyberLink
[02/11/2005|15:47] C:\DOCUME~1\PHANLIE\APPLIC~1\desktop.ini
[13/03/2003|16:56] C:\DOCUME~1\PHANLIE\APPLIC~1\Enregistrement Hachette
[25/02/2008|20:07] C:\DOCUME~1\PHANLIE\APPLIC~1\EoRezo
[12/10/2007|20:59] C:\DOCUME~1\PHANLIE\APPLIC~1\F-Secure
[04/04/2007|16:53] C:\DOCUME~1\PHANLIE\APPLIC~1\FunWebProducts
[13/04/2008|19:31] C:\DOCUME~1\PHANLIE\APPLIC~1\Gamelab
[27/07/2006|16:33] C:\DOCUME~1\PHANLIE\APPLIC~1\Google
[27/07/2008|22:34] C:\DOCUME~1\PHANLIE\APPLIC~1\Grisoft
[07/10/2006|12:22] C:\DOCUME~1\PHANLIE\APPLIC~1\Help
[02/11/2005|16:01] C:\DOCUME~1\PHANLIE\APPLIC~1\Identities
[25/02/2008|20:14] C:\DOCUME~1\PHANLIE\APPLIC~1\ItsLabel
[26/07/2007|17:53] C:\DOCUME~1\PHANLIE\APPLIC~1\iWin
[15/07/2008|11:42] C:\DOCUME~1\PHANLIE\APPLIC~1\Jane s Hotel
[30/09/2007|16:37] C:\DOCUME~1\PHANLIE\APPLIC~1\Leadertech
[27/07/2006|16:33] C:\DOCUME~1\PHANLIE\APPLIC~1\Macromedia
[03/11/2007|14:58] C:\DOCUME~1\PHANLIE\APPLIC~1\Magic Academy
[09/09/2006|18:24] C:\DOCUME~1\PHANLIE\APPLIC~1\Media Player Classic
[02/11/2005|15:47] C:\DOCUME~1\PHANLIE\APPLIC~1\Microsoft
[25/02/2008|20:52] C:\DOCUME~1\PHANLIE\APPLIC~1\Mozilla
[27/07/2006|22:44] C:\DOCUME~1\PHANLIE\APPLIC~1\MSNInstaller
[29/07/2007|14:29] C:\DOCUME~1\PHANLIE\APPLIC~1\My Games
[12/10/2007|23:13] C:\DOCUME~1\PHANLIE\APPLIC~1\OpenOffice.org2
[21/08/2006|15:33] C:\DOCUME~1\PHANLIE\APPLIC~1\Passeport II Prefs
[31/07/2006|23:51] C:\DOCUME~1\PHANLIE\APPLIC~1\Picajet.com
[25/10/2006|11:20] C:\DOCUME~1\PHANLIE\APPLIC~1\PlayFirst
[12/04/2008|10:32] C:\DOCUME~1\PHANLIE\APPLIC~1\PowerChallenge
[25/02/2008|20:17] C:\DOCUME~1\PHANLIE\APPLIC~1\Real
[13/02/2008|18:13] C:\DOCUME~1\PHANLIE\APPLIC~1\ScanSoft
[12/08/2007|15:22] C:\DOCUME~1\PHANLIE\APPLIC~1\Sony Ericsson
[27/07/2006|19:13] C:\DOCUME~1\PHANLIE\APPLIC~1\Sun
[02/11/2005|16:09] C:\DOCUME~1\PHANLIE\APPLIC~1\Symantec
[25/02/2008|20:53] C:\DOCUME~1\PHANLIE\APPLIC~1\Talkback
[12/08/2007|15:23] C:\DOCUME~1\PHANLIE\APPLIC~1\Teleca
[20/10/2006|17:57] C:\DOCUME~1\PHANLIE\APPLIC~1\update.log
[13/10/2007|10:51] C:\DOCUME~1\PHANLIE\APPLIC~1\vlc
[04/03/2008|14:59] C:\DOCUME~1\PHANLIE\APPLIC~1\Windows Live Writer
[11/02/2007|14:55] C:\DOCUME~1\PHANLIE\APPLIC~1\Zylom

[27/07/2006|03:52] C:\DOCUME~1\MAGLOIRE\APPLIC~1\Adobe
[03/01/2007|17:35] C:\DOCUME~1\MAGLOIRE\APPLIC~1\AdobeUM
[24/03/2008|18:03] C:\DOCUME~1\MAGLOIRE\APPLIC~1\Apple Computer
[16/10/2006|17:53] C:\DOCUME~1\MAGLOIRE\APPLIC~1\ArcSoft
[27/02/2008|17:08] C:\DOCUME~1\MAGLOIRE\APPLIC~1\Canon
[27/07/2006|03:44] C:\DOCUME~1\MAGLOIRE\APPLIC~1\CyberLink
[02/11/2005|15:47] C:\DOCUME~1\MAGLOIRE\APPLIC~1\desktop.ini
[29/07/2008|08:43] C:\DOCUME~1\MAGLOIRE\APPLIC~1\Else plus
[13/10/2007|02:23] C:\DOCUME~1\MAGLOIRE\APPLIC~1\F-Secure
[27/07/2006|15:25] C:\DOCUME~1\MAGLOIRE\APPLIC~1\Google
[13/10/2007|17:39] C:\DOCUME~1\MAGLOIRE\APPLIC~1\Grisoft
[27/07/2006|02:35] C:\DOCUME~1\MAGLOIRE\APPLIC~1\Help
[02/11/2005|16:01] C:\DOCUME~1\MAGLOIRE\APPLIC~1\Identities
[26/02/2008|17:08] C:\DOCUME~1\MAGLOIRE\APPLIC~1\ItsLabel
[05/08/2007|18:06] C:\DOCUME~1\MAGLOIRE\APPLIC~1\Leadertech
[27/07/2006|15:21] C:\DOCUME~1\MAGLOIRE\APPLIC~1\Macromedia
[27/07/2006|16:23] C:\DOCUME~1\MAGLOIRE\APPLIC~1\Media Player Classic
[02/11/2005|15:47] C:\DOCUME~1\MAGLOIRE\APPLIC~1\Microsoft
[08/05/2008|14:34] C:\DOCUME~1\MAGLOIRE\APPLIC~1\Mozilla
[02/03/2008|23:44] C:\DOCUME~1\MAGLOIRE\APPLIC~1\OpenOffice.org2
[02/04/2008|11:15] C:\DOCUME~1\MAGLOIRE\APPLIC~1\PowerChallenge
[16/08/2007|08:33] C:\DOCUME~1\MAGLOIRE\APPLIC~1\Sony Ericsson
[10/03/2008|12:13] C:\DOCUME~1\MAGLOIRE\APPLIC~1\Spyware Terminator
[24/08/2006|03:38] C:\DOCUME~1\MAGLOIRE\APPLIC~1\Sun
[02/11/2005|16:09] C:\DOCUME~1\MAGLOIRE\APPLIC~1\Symantec
[16/08/2007|08:41] C:\DOCUME~1\MAGLOIRE\APPLIC~1\Teleca
[24/12/2007|17:45] C:\DOCUME~1\MAGLOIRE\APPLIC~1\Zylom

[23/08/2006|22:02] C:\DOCUME~1\STPHA~1\APPLIC~1\Adobe
[23/08/2006|22:02] C:\DOCUME~1\STPHA~1\APPLIC~1\AdobeUM
[02/11/2005|15:47] C:\DOCUME~1\STPHA~1\APPLIC~1\desktop.ini
[29/07/2008|08:39] C:\DOCUME~1\STPHA~1\APPLIC~1\Else plus
[14/10/2007|18:50] C:\DOCUME~1\STPHA~1\APPLIC~1\F-Secure
[28/07/2006|01:51] C:\DOCUME~1\STPHA~1\APPLIC~1\Google
[14/10/2007|18:45] C:\DOCUME~1\STPHA~1\APPLIC~1\Grisoft
[23/08/2006|20:05] C:\DOCUME~1\STPHA~1\APPLIC~1\Help
[02/11/2005|16:01] C:\DOCUME~1\STPHA~1\APPLIC~1\Identities
[05/08/2007|18:51] C:\DOCUME~1\STPHA~1\APPLIC~1\Leadertech
[28/07/2006|01:52] C:\DOCUME~1\STPHA~1\APPLIC~1\Macromedia
[12/02/2008|21:37] C:\DOCUME~1\STPHA~1\APPLIC~1\Media Player Classic
[02/11/2005|15:47] C:\DOCUME~1\STPHA~1\APPLIC~1\Microsoft
[08/05/2008|16:38] C:\DOCUME~1\STPHA~1\APPLIC~1\Mozilla
[08/05/2008|18:35] C:\DOCUME~1\STPHA~1\APPLIC~1\PowerChallenge
[17/08/2007|11:55] C:\DOCUME~1\STPHA~1\APPLIC~1\Sony Ericsson
[13/03/2008|10:37] C:\DOCUME~1\STPHA~1\APPLIC~1\Spyware Terminator
[19/03/2008|12:25] C:\DOCUME~1\STPHA~1\APPLIC~1\Sun
[02/11/2005|16:09] C:\DOCUME~1\STPHA~1\APPLIC~1\Symantec
[17/08/2007|11:55] C:\DOCUME~1\STPHA~1\APPLIC~1\Teleca

[03/01/2007|17:41] C:\DOCUME~1\PROPRI~1\APPLIC~1\Symantec

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[29/07/2008 08:25][--a------] C:\WINDOWS\tasks\Scheduled scanning task.job
[29/07/2008 14:34][--ah-----] C:\WINDOWS\tasks\MP Scheduled Scan.job
[12/06/2007 20:11][--ah-----] C:\WINDOWS\tasks\MP Scheduled Quick Scan.job
[29/07/2008 17:39][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[25/07/2008 20:08][--a------] C:\WINDOWS\tasks\Norton AntiVirus - Analyser mon ordinateur - Magloire.job
[29/07/2008 00:00][--a------] C:\WINDOWS\tasks\Symantec Drmc.job
[28/07/2008 12:00][--a------] C:\WINDOWS\tasks\Norton SystemWorks One Button Checkup.job
[29/07/2008 14:31][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 05:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[27/07/2006|01:15] C:\Program Files\Acer
[02/11/2005|16:04] C:\Program Files\Adobe
[31/07/2006|15:14] C:\Program Files\Boonty
[31/07/2006|15:14] C:\Program Files\BoontyGames
[11/04/2008|22:34] C:\Program Files\Borland
[10/12/2006|19:20] C:\Program Files\Canon
[13/02/2008|18:04] C:\Program Files\CanonBJ
[27/07/2008|21:16] C:\Program Files\CCleaner
[01/01/2007|23:15] C:\Program Files\CDBurnerXP Pro 3
[11/04/2008|22:34] C:\Program Files\CollŠge Multim‚dia
[20/10/2006|17:57] C:\Program Files\Common Files
[02/11/2005|15:51] C:\Program Files\ComPlus Applications
[07/03/2008|11:38] C:\Program Files\Crawler
[02/11/2005|16:07] C:\Program Files\CyberLink
[27/07/2006|15:37] C:\Program Files\eMule
[25/02/2008|20:07] C:\Program Files\EoRezo
[02/11/2005|15:47] C:\Program Files\Fichiers communs
[27/07/2006|15:25] C:\Program Files\Google
[13/10/2007|14:36] C:\Program Files\Grisoft
[31/05/2008|15:13] C:\Program Files\inKline Global
[02/11/2005|16:00] C:\Program Files\InstallShield Installation Information
[02/11/2005|15:52] C:\Program Files\Internet Explorer
[27/07/2006|01:17] C:\Program Files\Java
[27/07/2006|16:22] C:\Program Files\K-Lite Codec Pack
[28/01/2008|17:06] C:\Program Files\KONAMI
[31/07/2006|15:15] C:\Program Files\Mes Jeux T‚l‚charg‚s
[02/11/2005|15:51] C:\Program Files\Messenger
[28/07/2008|21:37] C:\Program Files\Messenger Plus! Live
[09/05/2007|20:06] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[02/11/2005|15:53] C:\Program Files\microsoft frontpage
[25/02/2008|17:26] C:\Program Files\Microsoft SQL Server Compact Edition
[02/11/2005|15:52] C:\Program Files\Movie Maker
[08/05/2008|14:34] C:\Program Files\Mozilla Firefox
[02/11/2005|15:51] C:\Program Files\MSN
[02/11/2005|15:51] C:\Program Files\MSN Gaming Zone
[31/03/2007|19:41] C:\Program Files\MSXML 4.0
[02/11/2005|15:52] C:\Program Files\NetMeeting
[12/10/2007|18:12] C:\Program Files\Neuf
[02/11/2005|16:07] C:\Program Files\NewTech Infosystems
[20/01/2008|21:11] C:\Program Files\Norton Security Scan
[03/01/2007|17:42] C:\Program Files\Norton SystemWorks
[02/11/2005|15:51] C:\Program Files\Online Services
[12/10/2007|21:41] C:\Program Files\OpenOffice.org 2.2
[02/11/2005|15:52] C:\Program Files\Outlook Express
[12/10/2007|19:18] C:\Program Files\Pack Securite
[31/07/2006|23:49] C:\Program Files\PicaFr
[28/03/2008|19:41] C:\Program Files\Picasa2
[17/12/2006|14:48] C:\Program Files\QuickTime
[25/02/2008|20:18] C:\Program Files\Real
[02/11/2005|16:02] C:\Program Files\Realtek AC97
[13/02/2008|18:13] C:\Program Files\ScanSoft
[29/07/2006|23:17] C:\Program Files\SdLL
[02/11/2005|15:52] C:\Program Files\Services en ligne
[02/08/2007|14:16] C:\Program Files\Shareaza
[27/07/2006|01:13] C:\Program Files\SiS VGA Utilities V3.68
[02/11/2005|16:00] C:\Program Files\sisagp
[04/04/2007|17:07] C:\Program Files\Smiley Arcade
[12/08/2007|15:12] C:\Program Files\Sony Ericsson
[02/11/2005|16:09] C:\Program Files\Symantec
[27/07/2006|02:56] C:\Program Files\SymNetDrv
[02/04/2008|20:51] C:\Program Files\Trend Micro
[02/11/2005|16:01] C:\Program Files\Uninstall Information
[10/09/2006|10:20] C:\Program Files\Virtools Web Player 3.5
[14/10/2007|11:46] C:\Program Files\Webroot
[08/07/2007|18:59] C:\Program Files\Windames
[22/03/2008|13:52] C:\Program Files\Windows Defender
[25/02/2008|17:19] C:\Program Files\Windows Live
[29/11/2007|21:19] C:\Program Files\Windows Live Favorites
[25/10/2006|10:57] C:\Program Files\Windows Live Safety Center
[01/03/2007|17:54] C:\Program Files\Windows Live Toolbar
[09/12/2006|19:11] C:\Program Files\Windows Media Connect 2
[02/11/2005|15:51] C:\Program Files\Windows Media Player
[02/11/2005|15:51] C:\Program Files\Windows NT
[02/11/2005|15:52] C:\Program Files\WindowsUpdate
[03/01/2007|18:06] C:\Program Files\WinRAR
[02/11/2005|15:53] C:\Program Files\xerox
[08/06/2007|17:59] C:\Program Files\ZEMNOTT
[11/02/2007|14:55] C:\Program Files\Zylom Games

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[02/11/2005|16:04] C:\Program Files\Fichiers communs\Adobe
[27/07/2006|01:15] C:\Program Files\Fichiers communs\ArcSoft
[13/02/2008|18:09] C:\Program Files\Fichiers communs\CANON
[02/11/2005|16:00] C:\Program Files\Fichiers communs\InstallShield
[27/07/2006|01:16] C:\Program Files\Fichiers communs\Java
[02/11/2005|15:47] C:\Program Files\Fichiers communs\Microsoft Shared
[02/11/2005|15:52] C:\Program Files\Fichiers communs\MSSoap
[02/11/2005|16:07] C:\Program Files\Fichiers communs\muvee Technologies
[02/11/2005|16:07] C:\Program Files\Fichiers communs\NewTech Infosystems
[02/11/2005|15:47] C:\Program Files\Fichiers communs\ODBC
[25/02/2008|20:17] C:\Program Files\Fichiers communs\Real
[13/02/2008|18:13] C:\Program Files\Fichiers communs\ScanSoft Shared
[02/11/2005|15:52] C:\Program Files\Fichiers communs\Services
[12/08/2007|15:12] C:\Program Files\Fichiers communs\Sony Ericsson Shared
[02/11/2005|15:47] C:\Program Files\Fichiers communs\SpeechEngines
[02/11/2005|16:09] C:\Program Files\Fichiers communs\Symantec Shared
[02/11/2005|15:52] C:\Program Files\Fichiers communs\System
[12/08/2007|15:12] C:\Program Files\Fichiers communs\Teleca Shared
[25/02/2008|17:19] C:\Program Files\Fichiers communs\WindowsLiveInstaller

--------------------\\ Process

( 60 Processus )

IEXPLORE.EXE ~ [820]
IEXPLORE.EXE ~ [3432]

--------------------\\ Recherche avec S_Lop

C:\DOCUME~1\PHANLIE\LOCALS~1\Temp\bis40E.exe

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\DOCUME~1\ALLUSE~1\APPLIC~1\Admin Inter 1 Mags
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Admin Inter 1 Mags\LIST ARMY.exe
C:\DOCUME~1\MAGLOIRE\APPLIC~1\ELSE PLUS
C:\DOCUME~1\MAGLOIRE\APPLIC~1\ELSE PLUS\AXISNEW.exe
C:\DOCUME~1\STÉPHA~1\APPLIC~1\ELSE PLUS
C:\DOCUME~1\STÉPHA~1\APPLIC~1\ELSE PLUS\AXISNEW.exe
C:\DOCUME~1\PHANÉLIE\Cookies\phanélie@32vegas[1].txt
C:\DOCUME~1\PHANÉLIE\Cookies\phanélie@banner.32vegas[2].txt
C:\DOCUME~1\PHANÉLIE\Cookies\phanélie@888.orange[1].txt

--------------------\\ Verification du Registre

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"1 mags 16 more"="C:\\Documents and Settings\\All Users\\Application Data\\Admin Inter 1 Mags\\LIST ARMY.exe"

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-07-29 17:43:33
Windows 5.1.2600 Service Pack 3 FAT NTAPI
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:52][D:5]-> C:\DOCUME~1\PHANLIE\LOCALS~1\Temp
[F:192][D:0]-> C:\DOCUME~1\PHANLIE\Cookies
[F:10199][D:13]-> C:\DOCUME~1\PHANLIE\LOCALS~1\TEMPOR~1\content.IE5
[F:1535][D:3]-> C:\Recycled

--------------------\\ Fin du rapport a 17:44:43,07
0
Réponse 16 / 48
Utilisateur anonyme
29 juil. 2008 à 17:48
Relance Lop S&D


* Choisis cette fois ci l'Option 2 (Suppression)
* Ne ferme pas la fenêtre lors de la suppression !
* Poste le rapport généré (C:\lopR.txt)
0
Réponse 17 / 48
titite_baby Messages postés 80 Date d'inscription samedi 29 mars 2008 Statut Membre Dernière intervention 14 février 2009 2
29 juil. 2008 à 18:14
--------------------\\ Lop S&D 4.2.2-4 XP/Vista

[ Windows XP (NT 5.1) Build 2600, Service Pack 3 ]
[ USER : Phan‚lie ] [ "C:\Lop SD" ] [ Selection : 2 ]
[ 29/07/2008 | 18:10:24,06 ] [ PC : DBARRAS ]
[ MAJ : 25-07-2008 | 17:45 ]


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////

Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Admin Inter 1 Mags\LIST ARMY.exe
Supprime! - C:\DOCUME~1\MAGLOIRE\APPLIC~1\ELSE PLUS\AXISNEW.exe
Supprime! - C:\DOCUME~1\STÉPHA~1\APPLIC~1\ELSE PLUS\AXISNEW.exe
Supprime! - C:\DOCUME~1\PHANÉLIE\Cookies\phanélie@32vegas[1].txt
Supprime! - C:\DOCUME~1\PHANÉLIE\Cookies\phanélie@banner.32vegas[2].txt
Supprime! - C:\DOCUME~1\PHANÉLIE\Cookies\phanélie@888.orange[1].txt
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Admin Inter 1 Mags
Supprime! - C:\DOCUME~1\MAGLOIRE\APPLIC~1\ELSE PLUS
Supprime! - C:\DOCUME~1\STÉPHA~1\APPLIC~1\ELSE PLUS

//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


--------------------\\ Listing des dossiers dans APPLIC~1

[02/11/2005|15:47] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[02/11/2005|16:01] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[02/11/2005|15:47] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[02/11/2005|16:09] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec

[02/11/2005|16:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[11/03/2007|15:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[13/02/2008|18:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CanonBJ
[27/07/2006|03:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[02/11/2005|15:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[10/09/2006|21:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\eConsole
[12/10/2007|19:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\F-Secure
[12/10/2007|19:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\fssg
[27/07/2006|15:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[10/03/2008|21:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
[13/10/2007|14:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
[17/07/2008|15:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HipSoft
[13/02/2008|18:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[28/07/2008|21:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[08/03/2008|08:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MGS
[02/11/2005|15:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[03/11/2007|20:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NannyMania
[01/01/2007|18:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NtiDvdCopy
[25/10/2006|11:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst
[24/03/2008|18:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QTSBandwidthCache
[11/02/2007|17:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sandlot Games
[13/02/2008|18:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ScanSoft
[11/03/2007|16:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony
[12/08/2007|15:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony Ericsson
[02/11/2005|16:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[12/08/2007|15:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Teleca
[04/04/2007|17:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[08/06/2007|13:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Trymedia
[07/08/2006|20:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[01/03/2007|17:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[25/02/2008|17:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[10/11/2006|21:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom

[02/11/2005|15:47] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

[02/11/2005|15:47] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[01/06/2007|12:29] C:\DOCUME~1\LOCALS~1\APPLIC~1\Symantec
[14/10/2007|11:48] C:\DOCUME~1\LOCALS~1\APPLIC~1\Webroot

[25/08/2006|18:19] C:\DOCUME~1\PHANLIE\APPLIC~1\Adobe
[03/01/2007|17:29] C:\DOCUME~1\PHANLIE\APPLIC~1\AdobeUM
[31/03/2007|17:03] C:\DOCUME~1\PHANLIE\APPLIC~1\Apple Computer
[13/02/2008|18:43] C:\DOCUME~1\PHANLIE\APPLIC~1\Canon
[31/07/2006|15:44] C:\DOCUME~1\PHANLIE\APPLIC~1\CyberLink
[02/11/2005|15:47] C:\DOCUME~1\PHANLIE\APPLIC~1\desktop.ini
[13/03/2003|16:56] C:\DOCUME~1\PHANLIE\APPLIC~1\Enregistrement Hachette
[25/02/2008|20:07] C:\DOCUME~1\PHANLIE\APPLIC~1\EoRezo
[12/10/2007|20:59] C:\DOCUME~1\PHANLIE\APPLIC~1\F-Secure
[04/04/2007|16:53] C:\DOCUME~1\PHANLIE\APPLIC~1\FunWebProducts
[13/04/2008|19:31] C:\DOCUME~1\PHANLIE\APPLIC~1\Gamelab
[27/07/2006|16:33] C:\DOCUME~1\PHANLIE\APPLIC~1\Google
[27/07/2008|22:34] C:\DOCUME~1\PHANLIE\APPLIC~1\Grisoft
[07/10/2006|12:22] C:\DOCUME~1\PHANLIE\APPLIC~1\Help
[02/11/2005|16:01] C:\DOCUME~1\PHANLIE\APPLIC~1\Identities
[25/02/2008|20:14] C:\DOCUME~1\PHANLIE\APPLIC~1\ItsLabel
[26/07/2007|17:53] C:\DOCUME~1\PHANLIE\APPLIC~1\iWin
[15/07/2008|11:42] C:\DOCUME~1\PHANLIE\APPLIC~1\Jane s Hotel
[30/09/2007|16:37] C:\DOCUME~1\PHANLIE\APPLIC~1\Leadertech
[27/07/2006|16:33] C:\DOCUME~1\PHANLIE\APPLIC~1\Macromedia
[03/11/2007|14:58] C:\DOCUME~1\PHANLIE\APPLIC~1\Magic Academy
[09/09/2006|18:24] C:\DOCUME~1\PHANLIE\APPLIC~1\Media Player Classic
[02/11/2005|15:47] C:\DOCUME~1\PHANLIE\APPLIC~1\Microsoft
[25/02/2008|20:52] C:\DOCUME~1\PHANLIE\APPLIC~1\Mozilla
[27/07/2006|22:44] C:\DOCUME~1\PHANLIE\APPLIC~1\MSNInstaller
[29/07/2007|14:29] C:\DOCUME~1\PHANLIE\APPLIC~1\My Games
[12/10/2007|23:13] C:\DOCUME~1\PHANLIE\APPLIC~1\OpenOffice.org2
[21/08/2006|15:33] C:\DOCUME~1\PHANLIE\APPLIC~1\Passeport II Prefs
[31/07/2006|23:51] C:\DOCUME~1\PHANLIE\APPLIC~1\Picajet.com
[25/10/2006|11:20] C:\DOCUME~1\PHANLIE\APPLIC~1\PlayFirst
[12/04/2008|10:32] C:\DOCUME~1\PHANLIE\APPLIC~1\PowerChallenge
[25/02/2008|20:17] C:\DOCUME~1\PHANLIE\APPLIC~1\Real
[13/02/2008|18:13] C:\DOCUME~1\PHANLIE\APPLIC~1\ScanSoft
[12/08/2007|15:22] C:\DOCUME~1\PHANLIE\APPLIC~1\Sony Ericsson
[27/07/2006|19:13] C:\DOCUME~1\PHANLIE\APPLIC~1\Sun
[02/11/2005|16:09] C:\DOCUME~1\PHANLIE\APPLIC~1\Symantec
[25/02/2008|20:53] C:\DOCUME~1\PHANLIE\APPLIC~1\Talkback
[12/08/2007|15:23] C:\DOCUME~1\PHANLIE\APPLIC~1\Teleca
[20/10/2006|17:57] C:\DOCUME~1\PHANLIE\APPLIC~1\update.log
[13/10/2007|10:51] C:\DOCUME~1\PHANLIE\APPLIC~1\vlc
[04/03/2008|14:59] C:\DOCUME~1\PHANLIE\APPLIC~1\Windows Live Writer
[11/02/2007|14:55] C:\DOCUME~1\PHANLIE\APPLIC~1\Zylom

[27/07/2006|03:52] C:\DOCUME~1\MAGLOIRE\APPLIC~1\Adobe
[03/01/2007|17:35] C:\DOCUME~1\MAGLOIRE\APPLIC~1\AdobeUM
[24/03/2008|18:03] C:\DOCUME~1\MAGLOIRE\APPLIC~1\Apple Computer
[16/10/2006|17:53] C:\DOCUME~1\MAGLOIRE\APPLIC~1\ArcSoft
[27/02/2008|17:08] C:\DOCUME~1\MAGLOIRE\APPLIC~1\Canon
[27/07/2006|03:44] C:\DOCUME~1\MAGLOIRE\APPLIC~1\CyberLink
[02/11/2005|15:47] C:\DOCUME~1\MAGLOIRE\APPLIC~1\desktop.ini
[13/10/2007|02:23] C:\DOCUME~1\MAGLOIRE\APPLIC~1\F-Secure
[27/07/2006|15:25] C:\DOCUME~1\MAGLOIRE\APPLIC~1\Google
[13/10/2007|17:39] C:\DOCUME~1\MAGLOIRE\APPLIC~1\Grisoft
[27/07/2006|02:35] C:\DOCUME~1\MAGLOIRE\APPLIC~1\Help
[02/11/2005|16:01] C:\DOCUME~1\MAGLOIRE\APPLIC~1\Identities
[26/02/2008|17:08] C:\DOCUME~1\MAGLOIRE\APPLIC~1\ItsLabel
[05/08/2007|18:06] C:\DOCUME~1\MAGLOIRE\APPLIC~1\Leadertech
[27/07/2006|15:21] C:\DOCUME~1\MAGLOIRE\APPLIC~1\Macromedia
[27/07/2006|16:23] C:\DOCUME~1\MAGLOIRE\APPLIC~1\Media Player Classic
[02/11/2005|15:47] C:\DOCUME~1\MAGLOIRE\APPLIC~1\Microsoft
[08/05/2008|14:34] C:\DOCUME~1\MAGLOIRE\APPLIC~1\Mozilla
[02/03/2008|23:44] C:\DOCUME~1\MAGLOIRE\APPLIC~1\OpenOffice.org2
[02/04/2008|11:15] C:\DOCUME~1\MAGLOIRE\APPLIC~1\PowerChallenge
[16/08/2007|08:33] C:\DOCUME~1\MAGLOIRE\APPLIC~1\Sony Ericsson
[10/03/2008|12:13] C:\DOCUME~1\MAGLOIRE\APPLIC~1\Spyware Terminator
[24/08/2006|03:38] C:\DOCUME~1\MAGLOIRE\APPLIC~1\Sun
[02/11/2005|16:09] C:\DOCUME~1\MAGLOIRE\APPLIC~1\Symantec
[16/08/2007|08:41] C:\DOCUME~1\MAGLOIRE\APPLIC~1\Teleca
[24/12/2007|17:45] C:\DOCUME~1\MAGLOIRE\APPLIC~1\Zylom

[23/08/2006|22:02] C:\DOCUME~1\STPHA~1\APPLIC~1\Adobe
[23/08/2006|22:02] C:\DOCUME~1\STPHA~1\APPLIC~1\AdobeUM
[02/11/2005|15:47] C:\DOCUME~1\STPHA~1\APPLIC~1\desktop.ini
[14/10/2007|18:50] C:\DOCUME~1\STPHA~1\APPLIC~1\F-Secure
[28/07/2006|01:51] C:\DOCUME~1\STPHA~1\APPLIC~1\Google
[14/10/2007|18:45] C:\DOCUME~1\STPHA~1\APPLIC~1\Grisoft
[23/08/2006|20:05] C:\DOCUME~1\STPHA~1\APPLIC~1\Help
[02/11/2005|16:01] C:\DOCUME~1\STPHA~1\APPLIC~1\Identities
[05/08/2007|18:51] C:\DOCUME~1\STPHA~1\APPLIC~1\Leadertech
[28/07/2006|01:52] C:\DOCUME~1\STPHA~1\APPLIC~1\Macromedia
[12/02/2008|21:37] C:\DOCUME~1\STPHA~1\APPLIC~1\Media Player Classic
[02/11/2005|15:47] C:\DOCUME~1\STPHA~1\APPLIC~1\Microsoft
[08/05/2008|16:38] C:\DOCUME~1\STPHA~1\APPLIC~1\Mozilla
[08/05/2008|18:35] C:\DOCUME~1\STPHA~1\APPLIC~1\PowerChallenge
[17/08/2007|11:55] C:\DOCUME~1\STPHA~1\APPLIC~1\Sony Ericsson
[13/03/2008|10:37] C:\DOCUME~1\STPHA~1\APPLIC~1\Spyware Terminator
[19/03/2008|12:25] C:\DOCUME~1\STPHA~1\APPLIC~1\Sun
[02/11/2005|16:09] C:\DOCUME~1\STPHA~1\APPLIC~1\Symantec
[17/08/2007|11:55] C:\DOCUME~1\STPHA~1\APPLIC~1\Teleca

[03/01/2007|17:41] C:\DOCUME~1\PROPRI~1\APPLIC~1\Symantec

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[29/07/2008 08:25][--a------] C:\WINDOWS\tasks\Scheduled scanning task.job
[29/07/2008 14:34][--ah-----] C:\WINDOWS\tasks\MP Scheduled Scan.job
[12/06/2007 20:11][--ah-----] C:\WINDOWS\tasks\MP Scheduled Quick Scan.job
[29/07/2008 17:39][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[25/07/2008 20:08][--a------] C:\WINDOWS\tasks\Norton AntiVirus - Analyser mon ordinateur - Magloire.job
[29/07/2008 00:00][--a------] C:\WINDOWS\tasks\Symantec Drmc.job
[28/07/2008 12:00][--a------] C:\WINDOWS\tasks\Norton SystemWorks One Button Checkup.job
[29/07/2008 14:31][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 05:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[27/07/2006|01:15] C:\Program Files\Acer
[02/11/2005|16:04] C:\Program Files\Adobe
[31/07/2006|15:14] C:\Program Files\Boonty
[31/07/2006|15:14] C:\Program Files\BoontyGames
[11/04/2008|22:34] C:\Program Files\Borland
[10/12/2006|19:20] C:\Program Files\Canon
[13/02/2008|18:04] C:\Program Files\CanonBJ
[27/07/2008|21:16] C:\Program Files\CCleaner
[01/01/2007|23:15] C:\Program Files\CDBurnerXP Pro 3
[11/04/2008|22:34] C:\Program Files\CollŠge Multim‚dia
[20/10/2006|17:57] C:\Program Files\Common Files
[02/11/2005|15:51] C:\Program Files\ComPlus Applications
[07/03/2008|11:38] C:\Program Files\Crawler
[02/11/2005|16:07] C:\Program Files\CyberLink
[27/07/2006|15:37] C:\Program Files\eMule
[25/02/2008|20:07] C:\Program Files\EoRezo
[02/11/2005|15:47] C:\Program Files\Fichiers communs
[27/07/2006|15:25] C:\Program Files\Google
[13/10/2007|14:36] C:\Program Files\Grisoft
[31/05/2008|15:13] C:\Program Files\inKline Global
[02/11/2005|16:00] C:\Program Files\InstallShield Installation Information
[02/11/2005|15:52] C:\Program Files\Internet Explorer
[27/07/2006|01:17] C:\Program Files\Java
[27/07/2006|16:22] C:\Program Files\K-Lite Codec Pack
[28/01/2008|17:06] C:\Program Files\KONAMI
[31/07/2006|15:15] C:\Program Files\Mes Jeux T‚l‚charg‚s
[02/11/2005|15:51] C:\Program Files\Messenger
[28/07/2008|21:37] C:\Program Files\Messenger Plus! Live
[09/05/2007|20:06] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[02/11/2005|15:53] C:\Program Files\microsoft frontpage
[25/02/2008|17:26] C:\Program Files\Microsoft SQL Server Compact Edition
[02/11/2005|15:52] C:\Program Files\Movie Maker
[08/05/2008|14:34] C:\Program Files\Mozilla Firefox
[02/11/2005|15:51] C:\Program Files\MSN
[02/11/2005|15:51] C:\Program Files\MSN Gaming Zone
[31/03/2007|19:41] C:\Program Files\MSXML 4.0
[02/11/2005|15:52] C:\Program Files\NetMeeting
[12/10/2007|18:12] C:\Program Files\Neuf
[02/11/2005|16:07] C:\Program Files\NewTech Infosystems
[20/01/2008|21:11] C:\Program Files\Norton Security Scan
[03/01/2007|17:42] C:\Program Files\Norton SystemWorks
[02/11/2005|15:51] C:\Program Files\Online Services
[12/10/2007|21:41] C:\Program Files\OpenOffice.org 2.2
[02/11/2005|15:52] C:\Program Files\Outlook Express
[12/10/2007|19:18] C:\Program Files\Pack Securite
[31/07/2006|23:49] C:\Program Files\PicaFr
[28/03/2008|19:41] C:\Program Files\Picasa2
[17/12/2006|14:48] C:\Program Files\QuickTime
[25/02/2008|20:18] C:\Program Files\Real
[02/11/2005|16:02] C:\Program Files\Realtek AC97
[13/02/2008|18:13] C:\Program Files\ScanSoft
[29/07/2006|23:17] C:\Program Files\SdLL
[02/11/2005|15:52] C:\Program Files\Services en ligne
[02/08/2007|14:16] C:\Program Files\Shareaza
[27/07/2006|01:13] C:\Program Files\SiS VGA Utilities V3.68
[02/11/2005|16:00] C:\Program Files\sisagp
[04/04/2007|17:07] C:\Program Files\Smiley Arcade
[12/08/2007|15:12] C:\Program Files\Sony Ericsson
[02/11/2005|16:09] C:\Program Files\Symantec
[27/07/2006|02:56] C:\Program Files\SymNetDrv
[02/04/2008|20:51] C:\Program Files\Trend Micro
[02/11/2005|16:01] C:\Program Files\Uninstall Information
[10/09/2006|10:20] C:\Program Files\Virtools Web Player 3.5
[14/10/2007|11:46] C:\Program Files\Webroot
[08/07/2007|18:59] C:\Program Files\Windames
[22/03/2008|13:52] C:\Program Files\Windows Defender
[25/02/2008|17:19] C:\Program Files\Windows Live
[29/11/2007|21:19] C:\Program Files\Windows Live Favorites
[25/10/2006|10:57] C:\Program Files\Windows Live Safety Center
[01/03/2007|17:54] C:\Program Files\Windows Live Toolbar
[09/12/2006|19:11] C:\Program Files\Windows Media Connect 2
[02/11/2005|15:51] C:\Program Files\Windows Media Player
[02/11/2005|15:51] C:\Program Files\Windows NT
[02/11/2005|15:52] C:\Program Files\WindowsUpdate
[03/01/2007|18:06] C:\Program Files\WinRAR
[02/11/2005|15:53] C:\Program Files\xerox
[08/06/2007|17:59] C:\Program Files\ZEMNOTT
[11/02/2007|14:55] C:\Program Files\Zylom Games

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[02/11/2005|16:04] C:\Program Files\Fichiers communs\Adobe
[27/07/2006|01:15] C:\Program Files\Fichiers communs\ArcSoft
[13/02/2008|18:09] C:\Program Files\Fichiers communs\CANON
[02/11/2005|16:00] C:\Program Files\Fichiers communs\InstallShield
[27/07/2006|01:16] C:\Program Files\Fichiers communs\Java
[02/11/2005|15:47] C:\Program Files\Fichiers communs\Microsoft Shared
[02/11/2005|15:52] C:\Program Files\Fichiers communs\MSSoap
[02/11/2005|16:07] C:\Program Files\Fichiers communs\muvee Technologies
[02/11/2005|16:07] C:\Program Files\Fichiers communs\NewTech Infosystems
[02/11/2005|15:47] C:\Program Files\Fichiers communs\ODBC
[25/02/2008|20:17] C:\Program Files\Fichiers communs\Real
[13/02/2008|18:13] C:\Program Files\Fichiers communs\ScanSoft Shared
[02/11/2005|15:52] C:\Program Files\Fichiers communs\Services
[12/08/2007|15:12] C:\Program Files\Fichiers communs\Sony Ericsson Shared
[02/11/2005|15:47] C:\Program Files\Fichiers communs\SpeechEngines
[02/11/2005|16:09] C:\Program Files\Fichiers communs\Symantec Shared
[02/11/2005|15:52] C:\Program Files\Fichiers communs\System
[12/08/2007|15:12] C:\Program Files\Fichiers communs\Teleca Shared
[25/02/2008|17:19] C:\Program Files\Fichiers communs\WindowsLiveInstaller

--------------------\\ Process

( 57 Processus )

... OK !

--------------------\\ Recherche avec S_Lop

C:\DOCUME~1\PHANLIE\LOCALS~1\Temp\bis40E.exe

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-07-29 18:12:54
Windows 5.1.2600 Service Pack 3 FAT NTAPI
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:52][D:5]-> C:\DOCUME~1\PHANLIE\LOCALS~1\Temp
[F:196][D:0]-> C:\DOCUME~1\PHANLIE\Cookies
[F:10490][D:13]-> C:\DOCUME~1\PHANLIE\LOCALS~1\TEMPOR~1\content.IE5
[F:1535][D:3]-> C:\Recycled

--------------------\\ Fin du rapport a 18:13:40,56


(je doit le supprimer)
0
Réponse 18 / 48
Utilisateur anonyme
29 juil. 2008 à 18:23
élécharge combofix : http://download.bleepingcomputer.com/sUBs/ComboFix.exe

Avant de telecharger clic sur enregistrer renome le en killbagle et enregistre le sur le bureau


-> Double clique sur killbagle.exe.
-> Tape sur la touche 1 (Yes) pour démarrer le scan.
-> Lorsque le scan sera complété, un rapport apparaîtra. Copie/colle ce rapport dans ta prochaine réponse.

NOTE : Le rapport se trouve également ici : C:\Combofix.txt

Avant d'utiliser ComboFix :

-> Déconnecte toi d'internet et referme les fenêtres de tous les programmes en cours.


Une fois fait, sur ton bureau double-clic sur killbagle.exe.

- Répond oui au message d'avertissement, pour que le programme commence à procéder à l'analyse du pc.

/!\ Pendant la durée de cette étape, ne te sert pas du pc et n'ouvre aucun programmes.

- En fin de scan il est possible que ComboFix ait besoin de redemarrer le pc pour finaliser la désinfection\recherche, laisses-le faire.

- Un rapport s'ouvrira ensuite dans le bloc notes, ce fichier rapport Combofix.txt, est automatiquement sauvegardé et rangé à C:\Combofix.txt)


-> Reviens sur le forum, et copie et colle la totalité du contenu de C:\Combofix.txt dans ton prochain message.
0
Réponse 19 / 48
titite_baby Messages postés 80 Date d'inscription samedi 29 mars 2008 Statut Membre Dernière intervention 14 février 2009 2
29 juil. 2008 à 18:53
ComboFix 08-07-28.6 - Phanélie 2008-07-29 18:36:41.1 - [color=red][b]FAT32[/b][/color]x86
Microsoft Windows XP Édition familiale 5.1.2600.3.1252.1.1036.18.448 [GMT 2:00]
Endroit: C:\DOCUME~1\PHANÉLIE\Bureau\killbagle.exe
* Création d'un nouveau point de restauration
* Resident AV is active


[color=red][b]AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !![/b][/color]
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\DOCUME~1\PHANÉLIE\Application Data\FunWebProducts
C:\DOCUME~1\PHANÉLIE\Application Data\FunWebProducts\Data\Phanélie\avatar.dat
C:\DOCUME~1\PHANÉLIE\Application Data\FunWebProducts\Data\Phanélie\register.dat
C:\DOCUME~1\PHANÉLIE\Application Data\FunWebProducts\Data\Phanélie\zbucks.dat
C:\Documents and Settings\Magloire\Application Data\macromedia\Flash Player\#SharedObjects\ZD7LAELV\interclick.com
C:\Documents and Settings\Magloire\Application Data\macromedia\Flash Player\#SharedObjects\ZD7LAELV\interclick.com\ud.sol
C:\Documents and Settings\Magloire\Application Data\macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#interclick.com
C:\Documents and Settings\Magloire\Application Data\macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#interclick.com\settings.sol
C:\Documents and Settings\Stéphanie Moulébé\Menu Démarrer\Programmes\Spyware-Secure
C:\Documents and Settings\Stéphanie Moulébé\Menu Démarrer\Programmes\Spyware-Secure\Website.lnk
C:\WINDOWS\dialerexe.ini
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\accessories\dirty_dishes.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\accessories\foodtray.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\accessories\heart1.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\accessories\heart2.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\accessories\heart3.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\accessories\menu_down.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\accessories\menu_up.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\accessories\mop_prop.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\accessories\ticket.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\music\cafe\cafe_music_a1.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\music\cafe\cafe_music_a2.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\music\cafe\cafe_music_a3.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\music\cafe\cafe_music_a4.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\music\mainmenumusic.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\baby_cry.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\chef_cook1.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\closing_time.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\customer_ditch.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\dialog_down.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\dialog_up.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\drink_table.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\expert.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\highchair_deliver.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\highchair_pickup.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\keystroke2.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\level_lose.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\level_win.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\menu_click.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\menu_rollover.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\mop_pickup.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\mop_spill.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\sfx_bring_check_1_snd.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\sfx_deliver_food_1_snd.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\sfx_dish_dropoff_1_snd.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\sfx_dropoff_drinks_1.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\sfx_food_ready_1_snd.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\sfx_gain_heart_1.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\sfx_get_drinks_1_snd.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\sfx_menu_down.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\sfx_party_arrive_1_snd.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\sfx_pencil_write_2.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\sfx_pickup_food_1_snd.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\sfx_seat_people_snd.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\spill.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\table_drink.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\audio\sfx\tip_2.ogg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\backgrounds\flo_lose.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\backgrounds\flo_win.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\backgrounds\fullscreendialog.jpg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\backgrounds\high_score_menu_bg.jpg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\backgrounds\levelintro.jpg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\backgrounds\levelintro.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\backgrounds\levelover.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\backgrounds\longdialog.jpg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\backgrounds\longdialog.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\backgrounds\mainmenu.jpg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\backgrounds\mainmenu_logo.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\backgrounds\popup.jpg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\backgrounds\popup.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\backgrounds\textfield.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\backgrounds\upgrade_lines.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\arrowdown_a.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\arrowdown_b.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\arrowdown_c.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\arrowup_a.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\arrowup_b.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\arrowup_c.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\checkbox_a.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\checkbox_b.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\checkbox_rotated_a.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\checkbox_rotated_b.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\decor_highlight.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\decor_normal.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\decor_selected.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\dialog_button_a_large_1.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\dialog_button_a_large_2.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\dialog_button_a_large_3.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\dialog_button_a_small_1.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\dialog_button_a_small_2.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\dialog_button_a_small_3.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\dialog_button_a1.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\dialog_button_a2.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\dialog_button_a3.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\left_arrow_a.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\left_arrow_b.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\left_arrow_c.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\main_menu_button1_a.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\main_menu_button1_b.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\main_menu_button1_c.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\main_menu_button1_mask.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\main_menu_button2_a.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\main_menu_button2_b.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\main_menu_button2_c.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\main_menu_button2_mask.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\map_button_a.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\map_button_b.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\map_button_c.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\right_arrow_a.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\right_arrow_b.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\right_arrow_c.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\upgrade_down.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\upgrade_over.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\upgrade_up.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\buttons\welcome_player.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\config\actionpoints.bin
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\config\career.bin
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\config\customer.bin
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\config\endless.bin
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\config\global.bin
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\config\powerups.bin
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\cook\stove.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\cursor\arrow.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\cursor\click.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\cursor\click2.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\cursor\grab.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\cursor\open.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\dad_male\anim.anm
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\dad_male\anim.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\dad_male\blue.pal
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\dad_male\blue_legs.pal
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\dad_male\legs.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\dad_male\red.pal
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\dad_male\red_legs.pal
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\kid_male\anim.anm
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\kid_male\anim.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\kid_male\blue.pal
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\kid_male\blue_legs.pal
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\kid_male\legs.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\kid_male\red.pal
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\kid_male\red_legs.pal
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\mom_female\anim.anm
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\mom_female\anim.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\mom_female\baby.anm
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\mom_female\baby.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\mom_female\blue.pal
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\mom_female\blue_baby.pal
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\mom_female\blue_legs.pal
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\mom_female\legs.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\mom_female\red.pal
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\mom_female\red_baby.pal
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\mom_female\red_legs.pal
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\young_female\anim.anm
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\young_female\anim.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\young_female\blue.pal
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\young_female\blue_legs.pal
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\young_female\legs.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\young_female\red.pal
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\customers\young_female\red_legs.pal
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\flo\idle.anm
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\flo\idle.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\flo\lower.anm
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\flo\lower.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\flo\upper.anm
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\flo\upper.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\fonts\mercurius.mvec
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\bench.anm
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\bench.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\blue_highchairbaby.pal
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\chair.anm
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\chair.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\dirt2top.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\dirt4top.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\dishcart.anm
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\dishcart.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\green_highchairbaby.pal
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\highchair_prop_a.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\highchair_prop_b.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\highchairbaby.anm
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\highchairbaby.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\luxury_bench.anm
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\luxury_bench.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\mop_station_a.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\mop_station_b.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\mop_station_c.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\podium.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\podium_heart.anm
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\podium_heart.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\purple_highchairbaby.pal
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\radio.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\red_highchairbaby.pal
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\spill.anm
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\spill.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\stereo.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\ticketstation.anm
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\ticketstation.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\furniture\yellow_highchairbaby.pal
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\help\family.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\help\help_dividerline.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\help\help1_colormatch1.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\help\help1_colormatch2.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\help\help1_noise.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\help\help1_score.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\help\help2_cleardishes.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\help\help2_givecheck.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\help\help2_pickupfood.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\help\help2_servefood.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\help\help2_takeorder.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\hiscore\local-hs-bb.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\hiscore\p1icon.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\layouts\career_1_1.bin
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\layouts\career_1_2.bin
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\layouts\career_1_3.bin
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\layouts\career_1_4.bin
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\layouts\career_1_5.bin
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\layouts\career_1_6.bin
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\layouts\endless_1_1.bin
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\layouts\endless_1_1_a.bin
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\layouts\endless_1_1_b.bin
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\layouts\endless_1_1_c.bin
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\playfirstlogo.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\background.jpg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\chairs\blue.pal
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\chairs\green.anm
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\chairs\green.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\chairs\grey.pal
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\chairs\red.pal
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\food\cup1.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\food\food.anm
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\food\food.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\frames\2_0.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\frames\2_1.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\furniture\drinkstation1_a.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\furniture\drinkstation1_b.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\furniture\drinkstation1_c.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\people\cook.anm
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\people\cook.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\props\cup_prop1.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\tables\2top.anm
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\tables\2top.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\tables\4top.anm
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\tables\4top.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\upgrade_icons\cafe_icon_2_0.jpg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\upgrade_icons\cafe_icon_2_1.jpg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\cafe\upgrades.xml
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\restaurants\tableshadow.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\careerupgrade.lua
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\choosedifficulty.lua
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\closeconfirm.lua
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\entername.lua
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\game.lua
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\getmoregames.lua
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\help1.lua
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\help2.lua
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\hiscore.lua
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\hiscoreinfo.lua
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\hiscoresubmit.lua
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\levelintro.lua
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\levelover.lua
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\loading.lua
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\mainloop.lua
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\mainmenu.lua
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\ok.lua
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\pause.lua
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\style.lua
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\upgrade.lua
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\upsell.lua
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\scripts\yesno.lua
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\splash\aol_logo.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\splash\playfirst_logo.jpg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\strings.xml
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\angersmoke.anm
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\angersmoke.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\bubbles\request_bubble.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\bubbles\request_mop.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\bubbles\request_rejectmeal.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\chairflags.anm
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\chairflags.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\check.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\checkmark.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\closed.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\coinflip.anm
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\coinflip.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\decor_lines.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\dollar.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\expert.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\foodpoof.anm
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\foodpoof.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\heartgrow.anm
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\heartgrow.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\jar.anm
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\jar.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\lives_icon.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\noisering.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\notes\music_boost_a.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\notes\music_boost_b.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\notes\music_boost_c.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\notes\music_boost_d.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\notes\music_boost_e.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\notes\music_boost_f.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\tablenumber_a.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\tablenumber_b.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\traynumber.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\tutorialarrow.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\tutorialbox.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\ui_base.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\ui_hand.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\ui_timer_off.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\ui_timer_on.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgradeanim.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_bench_a.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_bench_b.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_bench_c.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_drink_station1_a.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_drink_station1_b.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_drink_station1_c.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_luxury_bench_a.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_luxury_bench_b.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_luxury_bench_c.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_oven_a.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_oven_b.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_oven_c.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_podium_a.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_podium_b.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_podium_c.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_powerbars_a.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_powerbars_b.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_powerbars_c.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_radio_a.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_radio_b.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_radio_c.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_stereo_a.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_stereo_b.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_stereo_c.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_table_a.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_table_b.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\ui\upgrades\icon_table_c.png
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\upsell\dd1.jpg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\upsell\dd2.jpg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\upsell\dd3.jpg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\assets\upsell\dd4.jpg
C:\WINDOWS\Downloaded Program Files\DinerDash2.1.0.0.48\dinerdash2.exe
C:\WINDOWS\Downloaded Program Files\setup.inf
C:\WINDOWS\system32\stera.job

.
((((((((((((((((((((((((((((( Fichiers cr‚‚s 2008-06-28 to 2008-07-29 ))))))))))))))))))))))))))))))))))))
.

2008-07-29 17:37 . 2008-07-29 17:37 <REP> d-------- C:\Lop SD
2008-07-28 21:38 . 2008-07-28 21:38 <REP> d-------- C:\DOCUME~1\ALLUSE~1\Application Data\Messenger Plus!
2008-07-28 21:37 . 2008-07-28 21:37 <REP> d-------- C:\Program Files\Messenger Plus! Live
2008-07-27 22:33 . 2007-05-30 14:10 10,872 --a------ C:\WINDOWS\system32\drivers\AvgAsCln.sys
2008-07-27 21:16 . 2008-07-27 21:16 <REP> d-------- C:\Program Files\CCleaner
2008-07-27 16:38 . 2008-07-27 16:38 <REP> d-------- C:\Deckard
2008-07-26 12:38 . 2008-07-26 12:38 201 --a------ C:\Raccourci (5) vers Lecteur CD.lnk
2008-07-25 19:26 . 2008-07-25 19:26 <REP> d--hs---- C:\FOUND.030
2008-07-17 15:43 . 2008-07-17 15:44 <REP> d-------- C:\DOCUME~1\ALLUSE~1\Application Data\HipSoft

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-06-20 17:47 247,808 ----a-w C:\WINDOWS\system32\mswsock.dll
2008-06-20 17:47 247,808 ------w C:\WINDOWS\system32\dllcache\mswsock.dll
2008-06-20 17:47 147,968 ------w C:\WINDOWS\system32\dllcache\dnsapi.dll
2008-06-20 11:51 361,600 ----a-w C:\WINDOWS\system32\drivers\tcpip.sys
2008-06-20 11:51 361,600 ------w C:\WINDOWS\system32\dllcache\tcpip.sys
2008-06-20 11:40 138,496 ----a-w C:\WINDOWS\system32\drivers\afd.sys
2008-06-20 11:40 138,496 ------w C:\WINDOWS\system32\dllcache\afd.sys
2008-06-20 11:08 225,856 ----a-w C:\WINDOWS\system32\drivers\tcpip6.sys
2008-06-20 11:08 225,856 ------w C:\WINDOWS\system32\dllcache\tcpip6.sys
2008-06-14 17:33 272,768 ------w C:\WINDOWS\system32\drivers\bthport.sys
2008-06-14 17:33 272,768 ------w C:\WINDOWS\system32\dllcache\bthport.sys
2008-05-31 13:13 --------- d-----w C:\Program Files\inKline Global
2008-05-09 10:55 90,112 ----a-w C:\WINDOWS\system32\wshext.dll
2008-05-09 10:55 90,112 ------w C:\WINDOWS\system32\dllcache\wshext.dll
2008-05-09 10:55 512,000 ------w C:\WINDOWS\system32\dllcache\jscript.dll
2008-05-09 10:55 430,080 ----a-w C:\WINDOWS\system32\vbscript.dll
2008-05-09 10:55 430,080 ------w C:\WINDOWS\system32\dllcache\vbscript.dll
2008-05-09 10:55 180,224 ----a-w C:\WINDOWS\system32\scrobj.dll
2008-05-09 10:55 180,224 ------w C:\WINDOWS\system32\dllcache\scrobj.dll
2008-05-09 10:55 172,032 ----a-w C:\WINDOWS\system32\scrrun.dll
2008-05-09 10:55 172,032 ------w C:\WINDOWS\system32\dllcache\scrrun.dll
2008-05-08 14:02 203,136 ------w C:\WINDOWS\system32\dllcache\rmcast.sys
2008-05-08 11:24 155,648 ----a-w C:\WINDOWS\system32\wscript.exe
2008-05-08 11:24 155,648 ------w C:\WINDOWS\system32\dllcache\wscript.exe
2008-05-07 09:07 135,168 ----a-w C:\WINDOWS\system32\cscript.exe
2008-05-07 09:07 135,168 ------w C:\WINDOWS\system32\dllcache\cscript.exe
2008-05-07 05:11 1,294,336 ----a-w C:\WINDOWS\system32\quartz.dll
2008-05-07 05:11 1,294,336 ------w C:\WINDOWS\system32\dllcache\quartz.dll
.

((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Note* les ‚l‚ments vides & les ‚l‚ments initiaux l‚gitimes ne sont pas list‚s

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2008-04-14 04:34 15360]
"MsnMsgr"="C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" [2007-10-18 11:34 5724184]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-03-10 21:52 68856]
"Picasa Media Detector"="C:\Program Files\Picasa2\PicasaMediaDetector.exe" [2008-02-26 02:23 443968]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"F-Secure Manager"="C:\Program Files\Pack Securite\Common\FSM32.EXE" [2007-04-26 18:12 183208]
"F-Secure TNB"="C:\Program Files\Pack Securite\FSGUI\TNBUtil.exe" [2007-04-26 18:10 740208]
"ccApp"="C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe" [2007-02-21 16:29 58984]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe" [2008-06-10 04:27 144784]
"!AVG Anti-Spyware"="C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" [2007-06-11 11:25 6731312]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"VIDC.X264"= x264vfw.dll
"VIDC.3iv2"= 3ivxVfWCodec.dll

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001
"AntiVirusOverride"=dword:00000001
"FirewallOverride"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\Messenger\\msmsgs.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"C:\\Program Files\\eMule\\emule.exe"=
"C:\Program Files\Neuf\Media Center\httpd\httpd.exe"= C:\Program Files\Neuf\Media Center\httpd\httpd.exe:172.16.255.0/255.255.255.0,192.168.1.2/255.255.255.255:Enabled:Serveur de partage Media Center (Player Neuf Cegetel)
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=

R0 FSFW;F-Secure Firewall Driver;C:\WINDOWS\system32\drivers\fsdfw.sys [2008-03-17 21:29]
R1 F-Secure HIPS;F-Secure HIPS;C:\Program Files\Pack Securite\HIPS\fshs.sys [2008-03-02 12:32]
R2 int15.sys;int15.sys;C:\Acer\Empowering Technology\eRecovery\int15.sys [2005-01-13 14:46]
R3 F-Secure Gatekeeper;F-Secure Gatekeeper;C:\Program Files\Pack Securite\Anti-Virus\minifilter\fsgk.sys [2007-04-26 18:07]
R3 USBSTOR;Pilote de stockage de masse USB;C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 20:45]
S3 GoogleDesktopManager-091907-194040;Google Desktop Manager 5.1.709.19590;C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2007-11-19 12:34]
S3 usbscan;Pilote de scanneur USB;C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 20:45]
S4 F-Secure Filter;F-Secure File System Filter;C:\Program Files\Pack Securite\Anti-Virus\Win2K\FSfilter.sys [2007-04-26 18:08]
S4 F-Secure Recognizer;F-Secure File System Recognizer;C:\Program Files\Pack Securite\Anti-Virus\Win2K\FSrec.sys [2007-04-26 18:08]
.
Contenu du dossier 'Scheduled Tasks/Tƒches planifi‚es'

2007-06-12 C:\WINDOWS\Tasks\MP Scheduled Quick Scan.job
- C:\Program Files\Microsoft Windows OneCare Live\Antivirus\MpCmdRun.exe []

2008-07-28 C:\WINDOWS\Tasks\Norton SystemWorks One Button Checkup.job
- C:\Program Files\Norton SystemWorks\OBC.exe [2004-11-19 16:32]

2008-07-28 C:\WINDOWS\Tasks\Symantec Drmc.job
- C:\Program Files\Fichiers communs\Symantec Shared\SymDrmc.exe [2004-10-27 11:48]

2008-07-25 C:\WINDOWS\Tasks\Norton AntiVirus - Analyser mon ordinateur - Magloire.job
- C:\PROGRA~1\NORTON~2\NORTON~3\Navw32.exe [2005-11-22 11:04]

2008-07-29 C:\WINDOWS\Tasks\MP Scheduled Scan.job
- C:\Program Files\Windows Defender\MpCmdRun.exe [2006-11-03 19:20]

2008-07-29 C:\WINDOWS\Tasks\Scheduled scanning task.job
- C:\PROGRA~1\PACKSE~1\ANTI-V~1\fsav.exe [2007-04-26 12:42]
.
.
------- Supplementary Scan -------
.
R0 -: HKCU-Main,Start Page = hxxp://www.google.fr/webhp?sourceid=navclient&hl=fr&ie=UTF-8
R0 -: HKCU-Main,SearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
R0 -: HKCU-Main,Default_Search_URL = hxxp://www.google.com/ie
R1 -: HKCU-Internet Connection Wizard,ShellNext = iexplore
R1 -: HKCU-SearchURL,(Default) = hxxp://www.google.com/search?q=%s
O8 -: &Windows Live Search - C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 -: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites


**************************************************************************

catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-07-29 18:46:36
Windows 5.1.2600 Service Pack 3 FAT NTAPI

Balayage processus cach‚s ...

Balayage cach‚ autostart entries ...

Balayage des fichiers cach‚s ...

Scan termin‚ avec succŠs
Les fichiers cach‚s: 0

**************************************************************************
.
------------------------ Other Running Processes ------------------------
.
C:\PROGRAM FILES\WINDOWS DEFENDER\MSMPENG.EXE
C:\PROGRAM FILES\FICHIERS COMMUNS\SYMANTEC SHARED\CCSETMGR.EXE
C:\PROGRAM FILES\FICHIERS COMMUNS\SYMANTEC SHARED\CCEVTMGR.EXE
C:\PROGRAM FILES\ACER\ACER ECONSOLE\MEDIASERVERSERVICE.EXE
C:\PROGRAM FILES\GRISOFT\AVG ANTI-SPYWARE 7.5\GUARD.EXE
C:\PROGRAM FILES\PACK SECURITE\ANTI-VIRUS\FSGK32ST.EXE
C:\PROGRAM FILES\PACK SECURITE\ANTI-VIRUS\FSGK32.EXE
C:\PROGRAM FILES\PACK SECURITE\COMMON\FSMA32.EXE
C:\PROGRAM FILES\GOOGLE\COMMON\GOOGLE UPDATER\GOOGLEUPDATERSERVICE.EXE
C:\PROGRAM FILES\PACK SECURITE\COMMON\FSMB32.EXE
C:\PROGRAM FILES\NORTON SYSTEMWORKS\NORTON ANTIVIRUS\NAVAPSVC.EXE
C:\PROGRAM FILES\NORTON SYSTEMWORKS\NORTON ANTIVIRUS\IWP\NPFMNTOR.EXE
C:\PROGRAM FILES\NORTON SYSTEMWORKS\NORTON UTILITIES\NPROTECT.EXE
C:\PROGRAM FILES\PACK SECURITE\COMMON\FCH32.EXE
C:\PROGRAM FILES\SYMANTEC\LIVEUPDATE\ALUSCHEDULERSVC.EXE
C:\PROGRAM FILES\PACK SECURITE\COMMON\FAMEH32.EXE
C:\PROGRAM FILES\PACK SECURITE\ANTI-VIRUS\FSQH.EXE
C:\PROGRAM FILES\PACK SECURITE\FSPC\FSPC.EXE
C:\PROGRAM FILES\NORTON SYSTEMWORKS\NORTON ANTIVIRUS\SAVSCAN.EXE
C:\PROGRAM FILES\NORTON SYSTEMWORKS\NORTON UTILITIES\SPEED DISK\NOPDB.EXE
C:\PROGRAM FILES\FICHIERS COMMUNS\SYMANTEC SHARED\CCPD-LC\SYMLCSVC.EXE
C:\Program Files\Pack Securite\FSAUA\program\fsaua.exe
C:\Program Files\Pack Securite\Anti-Virus\fssm32.exe
C:\Program Files\Pack Securite\FWES\Program\fsdfwd.exe
C:\Program Files\Pack Securite\FSAUA\program\fsus.exe
C:\WINDOWS\system32\sistray.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\Program Files\Boonty\BoontyBox\BoontyBox.exe
C:\Program Files\OpenOffice.org 2.2\program\soffice.exe
C:\Program Files\OpenOffice.org 2.2\program\soffice.BIN
C:\Program Files\Pack Securite\FSGUI\fsguidll.exe
C:\Program Files\Pack Securite\Anti-Virus\fsav32.exe
C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
C:\WINDOWS\system32\imapi.exe
.
**************************************************************************
.
Temps d'accomplissement: 2008-07-29 18:51:09 - machine was rebooted
ComboFix-quarantined-files.txt 2008-07-29 16:50:56

Pre-Run: 16,188,375,040 octets libres
Post-Run: 18,091,343,872 octets libres

521 --- E O F --- 2008-07-27 20:36:51
0
Réponse 20 / 48
Utilisateur anonyme
29 juil. 2008 à 18:59
Télécharge HijackThis ici :

-> http://www.trendsecure.com/portal/en-US/_download/HJTInstall.exe


Tutoriel d´instalation :

-> https://forums.cnetfrance.fr

Tutoriel d´utilisation :

-> https://forums.cnetfrance.fr

Post le rapport généré ici stp...
0

Discussions similaires

Musique pub Skoda IV
SkodaIV -
Duck -

16 réponses
Pub intempestive sur smartphone Android.
Camitte -
Yoyo -

31 réponses
Cherche chanteur et titre chanson pub kinder noel 2023
Herme80 -
trekipat -

16 réponses