Rapport de lop S&D
Fermé
sebastien
-
toptitbal Messages postés 26224 Date d'inscription Statut Contributeur sécurité Dernière intervention -
toptitbal Messages postés 26224 Date d'inscription Statut Contributeur sécurité Dernière intervention -
Bonjour,
--------------------\\ Lop S&D 4.2.3-0 XP/Vista
[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : PlanŠte Saturn ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 18/08/2008 | 15:06:45 ] [ PC : ARIOSLEPENSEUR (Proc:x86) ]
[ MAJ : 17-08-2008 | 01:58 ]
--------------------\\ Listing des dossiers dans APPLIC~1
[08/08/2008|10:46] C:\DOCUME~1\ADMINI~1\APPLIC~1\desktop.ini
[08/08/2008|08:56] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[08/08/2008|09:50] C:\DOCUME~1\ADMINI~1\APPLIC~1\Macromedia
[08/08/2008|09:58] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[24/02/2008|20:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\.zreglib
[26/06/2008|15:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[08/08/2008|09:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
[15/01/2007|09:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL
[25/06/2008|13:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[19/04/2008|16:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BVRP Software
[14/01/2007|11:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[08/08/2008|10:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[26/07/2008|13:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink
[17/08/2008|17:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar
[19/04/2008|17:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Global Software Publishing
[14/08/2008|14:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
[18/01/2008|20:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\LogiShrd
[18/01/2008|20:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logitech
[14/08/2008|09:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[10/08/2008|23:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Move Bore Curb Tool
[15/01/2007|13:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[16/08/2008|23:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SoftLand Ltd
[21/04/2007|16:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony Ericsson
[17/08/2008|00:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[26/10/2007|20:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[21/04/2007|16:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Teleca
[26/07/2008|18:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[26/10/2007|20:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Trend Micro
[14/01/2007|18:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Viewpoint
[08/03/2008|11:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[08/08/2008|10:46] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[08/08/2008|08:56] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[08/08/2008|09:50] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
[08/08/2008|09:58] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[07/06/2008|19:10] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[08/08/2008|08:55] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[05/10/2007|20:28] C:\DOCUME~1\PLANTE~1\APPLIC~1\Adobe
[26/06/2008|15:46] C:\DOCUME~1\PLANTE~1\APPLIC~1\AdobeUM
[19/08/2007|12:43] C:\DOCUME~1\PLANTE~1\APPLIC~1\Ahead
[14/01/2007|19:02] C:\DOCUME~1\PLANTE~1\APPLIC~1\AOL
[14/01/2007|11:46] C:\DOCUME~1\PLANTE~1\APPLIC~1\CyberLink
[08/08/2008|10:46] C:\DOCUME~1\PLANTE~1\APPLIC~1\desktop.ini
[10/08/2008|23:39] C:\DOCUME~1\PLANTE~1\APPLIC~1\Extra anti
[05/08/2008|18:31] C:\DOCUME~1\PLANTE~1\APPLIC~1\GDIPFONTCACHEV1.DAT
[08/08/2008|08:56] C:\DOCUME~1\PLANTE~1\APPLIC~1\Identities
[19/04/2008|16:52] C:\DOCUME~1\PLANTE~1\APPLIC~1\InstallShield
[08/08/2008|09:50] C:\DOCUME~1\PLANTE~1\APPLIC~1\Macromedia
[23/05/2008|20:50] C:\DOCUME~1\PLANTE~1\APPLIC~1\Microsoft
[06/10/2007|10:37] C:\DOCUME~1\PLANTE~1\APPLIC~1\MSNInstaller
[28/06/2008|14:58] C:\DOCUME~1\PLANTE~1\APPLIC~1\PnkBstrK.sys
[21/02/2008|22:39] C:\DOCUME~1\PLANTE~1\APPLIC~1\SecuROM
[21/04/2007|16:57] C:\DOCUME~1\PLANTE~1\APPLIC~1\Teleca
[25/06/2008|13:10] C:\DOCUME~1\PLANTE~1\APPLIC~1\U3
[10/08/2008|20:22] C:\DOCUME~1\PLANTE~1\APPLIC~1\vghd
[15/03/2008|15:13] C:\DOCUME~1\PLANTE~1\APPLIC~1\vlc
[22/02/2008|20:05] C:\DOCUME~1\PLANTE~1\APPLIC~1\WinRAR
[14/01/2007|18:47] C:\DOCUME~1\PLANTE~1\APPLIC~1\You've Got Pictures Screensaver
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[18/08/2008 15:00][--ah-----] C:\WINDOWS\tasks\B024D593929742CF.job
[18/08/2008 13:54][--ah-----] C:\WINDOWS\tasks\SA.DAT
[10/08/2004 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
( B024D593929742CF.job )=( c:\docume~1\plante~1\applic~1\extraa~1\SiteDartBuild.exe )
--------------------\\ Listing des dossiers dans C:\Program Files
[08/08/2008|09:45] C:\Program Files\Adobe
[08/08/2008|09:51] C:\Program Files\Ahead
[21/03/2008|15:28] C:\Program Files\Alcohol Soft
[27/07/2008|22:59] C:\Program Files\Alien Shooter
[08/12/2007|18:05] C:\Program Files\AMD
[16/03/2008|13:19] C:\Program Files\AnglaisFacile.com
[15/01/2007|09:57] C:\Program Files\AOL 9.0
[14/01/2007|18:47] C:\Program Files\AOL Compagnon
[28/02/2008|17:24] C:\Program Files\AOL Toolbar
[14/07/2007|00:27] C:\Program Files\billard
[04/08/2007|19:56] C:\Program Files\Canon
[21/03/2008|15:28] C:\Program Files\Conduit
[31/07/2007|10:50] C:\Program Files\CR-TEKnologies
[08/08/2008|09:51] C:\Program Files\CyberLink
[11/08/2008|15:31] C:\Program Files\DAEMON Tools
[17/05/2008|19:33] C:\Program Files\Diablo II
[03/03/2007|23:02] C:\Program Files\directx
[26/07/2008|13:03] C:\Program Files\DVD Shrink
[17/08/2008|21:55] C:\Program Files\eChanblard
[04/08/2008|18:49] C:\Program Files\Eidos Interactive
[21/02/2008|21:59] C:\Program Files\Electronic Arts
[14/08/2008|14:30] C:\Program Files\Fichiers communs
[05/10/2007|19:35] C:\Program Files\Free
[08/10/2007|19:12] C:\Program Files\Free.fr
[21/03/2008|15:28] C:\Program Files\free-downloads.net
[26/07/2008|15:06] C:\Program Files\GamesBar
[21/02/2008|22:38] C:\Program Files\GameSpy
[17/03/2007|23:52] C:\Program Files\GameSpy Arcade
[19/04/2008|20:33] C:\Program Files\Happyneuron
[22/02/2008|20:06] C:\Program Files\Hero Editor
[23/06/2008|01:57] C:\Program Files\InstallShield Installation Information
[12/08/2008|23:17] C:\Program Files\Internet Explorer
[05/10/2007|19:05] C:\Program Files\Java
[05/10/2007|19:05] C:\Program Files\Java Web Start
[17/03/2007|12:56] C:\Program Files\Jeff Wayne's 'La Guerre des Mondes'
[17/03/2007|18:42] C:\Program Files\KOCH Media
[23/03/2008|13:22] C:\Program Files\Langue Et Jeu
[14/08/2008|14:30] C:\Program Files\Lavasoft
[18/01/2008|20:36] C:\Program Files\Logitech
[14/08/2008|09:24] C:\Program Files\LucasArts
[25/12/2007|12:53] C:\Program Files\Maxtor
[12/08/2008|23:19] C:\Program Files\Messenger
[08/03/2008|11:39] C:\Program Files\MessengerPlus! 3
[27/06/2007|15:22] C:\Program Files\Micro Application
[08/03/2008|15:31] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[08/08/2008|08:53] C:\Program Files\microsoft frontpage
[08/06/2008|23:29] C:\Program Files\Microsoft Games
[10/03/2007|21:29] C:\Program Files\Microsoft IntelliPoint
[17/06/2007|14:20] C:\Program Files\Microsoft Office
[08/08/2008|08:51] C:\Program Files\Movie Maker
[20/01/2007|17:36] C:\Program Files\MSN
[08/08/2008|08:49] C:\Program Files\MSN Gaming Zone
[08/08/2008|08:51] C:\Program Files\NetMeeting
[08/08/2008|08:49] C:\Program Files\Online Services
[26/07/2008|15:05] C:\Program Files\orange
[05/10/2007|22:00] C:\Program Files\Outlook Express
[14/01/2007|18:47] C:\Program Files\QuickTime
[14/01/2007|11:34] C:\Program Files\Raccourcis de programmes
[23/02/2008|04:37] C:\Program Files\Red Storm Entertainment
[27/10/2007|14:11] C:\Program Files\Return to Castle Wolfenstein
[05/10/2007|19:09] C:\Program Files\SAGEM
[08/08/2008|08:51] C:\Program Files\Services en ligne
[23/02/2008|08:54] C:\Program Files\SlySoft
[09/12/2007|13:40] C:\Program Files\SolidWorks
[21/04/2007|16:55] C:\Program Files\Sony Ericsson
[16/08/2008|23:03] C:\Program Files\Spybot - Search & Destroy
[18/08/2008|13:54] C:\Program Files\Steam
[08/08/2008|09:48] C:\Program Files\Synaptics
[24/07/2007|13:31] C:\Program Files\Toshiba
[26/10/2007|20:39] C:\Program Files\Trend Micro
[08/08/2008|08:56] C:\Program Files\Uninstall Information
[15/03/2008|15:13] C:\Program Files\VideoLAN
[14/01/2007|18:47] C:\Program Files\Viewpoint
[14/01/2007|16:03] C:\Program Files\Wanadoo
[18/08/2008|15:03] C:\Program Files\Warcraft III
[08/03/2008|11:48] C:\Program Files\Windows Live
[15/06/2008|23:15] C:\Program Files\Windows Media Player
[08/08/2008|08:49] C:\Program Files\Windows NT
[08/08/2008|08:49] C:\Program Files\Windows Plus
[08/08/2008|08:51] C:\Program Files\WindowsUpdate
[22/02/2008|20:05] C:\Program Files\WinRAR
[05/04/2008|11:08] C:\Program Files\Wolfenstein - Enemy Territory
[08/08/2008|08:53] C:\Program Files\xerox
[08/08/2008|09:50] C:\Program Files\Yahoo!
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[26/06/2008|15:47] C:\Program Files\Fichiers communs\Adobe
[08/08/2008|09:50] C:\Program Files\Fichiers communs\Ahead
[14/01/2007|18:47] C:\Program Files\Fichiers communs\AOL
[14/01/2007|18:47] C:\Program Files\Fichiers communs\aolshare
[25/06/2008|13:13] C:\Program Files\Fichiers communs\BOONTY Shared
[04/08/2007|19:55] C:\Program Files\Fichiers communs\Canon
[17/06/2007|14:21] C:\Program Files\Fichiers communs\Designer
[18/01/2008|20:32] C:\Program Files\Fichiers communs\InstallShield
[18/01/2008|20:45] C:\Program Files\Fichiers communs\LogiShrd
[08/03/2008|11:50] C:\Program Files\Fichiers communs\Microsoft Shared
[08/08/2008|08:51] C:\Program Files\Fichiers communs\MSSoap
[14/01/2007|18:47] C:\Program Files\Fichiers communs\Nullsoft
[26/07/2008|15:05] C:\Program Files\Fichiers communs\Oberon Media
[08/08/2008|10:46] C:\Program Files\Fichiers communs\ODBC
[14/01/2007|18:47] C:\Program Files\Fichiers communs\Real
[08/08/2008|08:51] C:\Program Files\Fichiers communs\Services
[08/08/2008|10:46] C:\Program Files\Fichiers communs\SpeechEngines
[26/10/2007|20:35] C:\Program Files\Fichiers communs\Symantec Shared
[05/10/2007|22:00] C:\Program Files\Fichiers communs\System
[21/04/2007|16:55] C:\Program Files\Fichiers communs\Teleca Shared
[08/03/2008|11:48] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[14/08/2008|14:30] C:\Program Files\Fichiers communs\Wise Installation Wizard
--------------------\\ Process
( 67 Processus )
iexplore.exe ~ [PID:808] ~ [Threads:13]
iexplore.exe ~ [PID:832] ~ [Threads:5]
iexplore.exe ~ [PID:1472] ~ [Threads:17]
iexplore.exe ~ [PID:4892] ~ [Threads:24]
--------------------\\ Recherche avec S_Lop
C:\DOCUME~1\PLANTE~1\APPLIC~1\EXTRAA~1
C:\DOCUME~1\PLANTE~1\APPLIC~1\EXTRAA~1\Bone online media.exe
C:\DOCUME~1\PLANTE~1\APPLIC~1\EXTRAA~1\cokewptp.exe
C:\DOCUME~1\PLANTE~1\APPLIC~1\EXTRAA~1\Site Dart Build.exe
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Move Bore Curb Tool
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Move Bore Curb Tool\The One.exe
C:\DOCUME~1\PLANTE~1\APPLIC~1\extraa~1
C:\DOCUME~1\PLANTE~1\APPLIC~1\extraa~1\Bone online media.exe
C:\DOCUME~1\PLANTE~1\APPLIC~1\extraa~1\cokewptp.exe
C:\DOCUME~1\PLANTE~1\APPLIC~1\extraa~1\Site Dart Build.exe
C:\DOCUME~1\PLANTE~1\Cookies\planete_saturn@adultfriendfinder[2].txt
C:\DOCUME~1\PLANTE~1\Cookies\planete_saturn@advertising[1].txt
C:\DOCUME~1\PLANTE~1\Cookies\planete_saturn@bigpoint[1].txt
C:\DOCUME~1\PLANTE~1\Cookies\planete_saturn@fr.thepimps.bigpoint[2].txt
C:\DOCUME~1\PLANTE~1\Cookies\planete_saturn@adopt.euroclick[1].txt
C:\DOCUME~1\PLANTE~1\Cookies\planete_saturn@adopt.euroclick[3].txt
C:\DOCUME~1\PLANTE~1\Cookies\planete_saturn@pacificpoker[2].txt
C:\DOCUME~1\PLANTE~1\Cookies\planete_saturn@partypoker[1].txt
C:\DOCUME~1\PLANTE~1\Cookies\planete_saturn@partypoker[2].txt
C:\DOCUME~1\PLANTE~1\Cookies\planete_saturn@32vegas[1].txt
C:\DOCUME~1\PLANTE~1\Cookies\planete_saturn@banner.32vegas[2].txt
C:\DOCUME~1\PLANTE~1\Cookies\planete_saturn@888[1].txt
C:\WINDOWS\Tasks\B024D593929742CF.job
--------------------\\ Verification du Registre
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\pokeroamglue]
"DisplayName"="CiD Help"
"UninstallString"="C:\\DOCUME~1\\PLANTE~1\\APPLIC~1\\EXTRAA~1\\Bone online media.exe -uninstall"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"blue32"="C:\\DOCUME~1\\PLANTE~1\\APPLIC~1\\EXTRAA~1\\Bone online media.exe"
"blue32"="C:\\DOCUME~1\\PLANTE~1\\APPLIC~1\\EXTRAA~1\\Bone online media.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Curb tool help dart"="C:\\Documents and Settings\\All Users\\Application Data\\Move Bore Curb Tool\\The One.exe"
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-08-18 15:08:20
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 65
--------------------\\ Recherche d'autres infections
--------------------\\ ROGUES ..
C:\DOCUME~1\ALLUSE~1\APPLIC~1\SoftLand Ltd
--------------------\\ Cracks & Keygens ..
C:\DOCUME~1\PLANTE~1\Bureau\keygen.rar
C:\DOCUME~1\PLANTE~1\Bureau\setup et autres\keygen.rar
C:\DOCUME~1\PLANTE~1\Local Settings\Temp\Rar$DR37.469\Crack
C:\DOCUME~1\PLANTE~1\Local Settings\Temp\Rar$DR37.562\Crack
C:\DOCUME~1\PLANTE~1\Local Settings\Temp\Rar$DR38.344\Crack
C:\DOCUME~1\PLANTE~1\Local Settings\Temp\Rar$DR38.937\Crack
C:\DOCUME~1\PLANTE~1\Local Settings\Temp\Rar$DR39.578\Crack
C:\DOCUME~1\PLANTE~1\Local Settings\Temp\Rar$DR39.922\Crack
C:\DOCUME~1\PLANTE~1\Local Settings\Temp\Rar$DR41.562\Crack
C:\DOCUME~1\PLANTE~1\Local Settings\Temp\Rar$DR42.375\Crack
[F:73][D:45]-> C:\DOCUME~1\PLANTE~1\LOCALS~1\Temp
[F:305][D:0]-> C:\DOCUME~1\PLANTE~1\Cookies
[F:4746][D:13]-> C:\DOCUME~1\PLANTE~1\LOCALS~1\TEMPOR~1\content.IE5
--------------------\\ Fin du rapport a 15:10:35,45
--------------------\\ Lop S&D 4.2.3-0 XP/Vista
[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : PlanŠte Saturn ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 18/08/2008 | 15:06:45 ] [ PC : ARIOSLEPENSEUR (Proc:x86) ]
[ MAJ : 17-08-2008 | 01:58 ]
--------------------\\ Listing des dossiers dans APPLIC~1
[08/08/2008|10:46] C:\DOCUME~1\ADMINI~1\APPLIC~1\desktop.ini
[08/08/2008|08:56] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[08/08/2008|09:50] C:\DOCUME~1\ADMINI~1\APPLIC~1\Macromedia
[08/08/2008|09:58] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[24/02/2008|20:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\.zreglib
[26/06/2008|15:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[08/08/2008|09:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
[15/01/2007|09:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL
[25/06/2008|13:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[19/04/2008|16:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BVRP Software
[14/01/2007|11:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[08/08/2008|10:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[26/07/2008|13:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink
[17/08/2008|17:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar
[19/04/2008|17:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Global Software Publishing
[14/08/2008|14:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
[18/01/2008|20:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\LogiShrd
[18/01/2008|20:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logitech
[14/08/2008|09:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[10/08/2008|23:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Move Bore Curb Tool
[15/01/2007|13:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[16/08/2008|23:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SoftLand Ltd
[21/04/2007|16:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony Ericsson
[17/08/2008|00:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[26/10/2007|20:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[21/04/2007|16:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Teleca
[26/07/2008|18:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[26/10/2007|20:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Trend Micro
[14/01/2007|18:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Viewpoint
[08/03/2008|11:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[08/08/2008|10:46] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[08/08/2008|08:56] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[08/08/2008|09:50] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
[08/08/2008|09:58] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[07/06/2008|19:10] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[08/08/2008|08:55] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[05/10/2007|20:28] C:\DOCUME~1\PLANTE~1\APPLIC~1\Adobe
[26/06/2008|15:46] C:\DOCUME~1\PLANTE~1\APPLIC~1\AdobeUM
[19/08/2007|12:43] C:\DOCUME~1\PLANTE~1\APPLIC~1\Ahead
[14/01/2007|19:02] C:\DOCUME~1\PLANTE~1\APPLIC~1\AOL
[14/01/2007|11:46] C:\DOCUME~1\PLANTE~1\APPLIC~1\CyberLink
[08/08/2008|10:46] C:\DOCUME~1\PLANTE~1\APPLIC~1\desktop.ini
[10/08/2008|23:39] C:\DOCUME~1\PLANTE~1\APPLIC~1\Extra anti
[05/08/2008|18:31] C:\DOCUME~1\PLANTE~1\APPLIC~1\GDIPFONTCACHEV1.DAT
[08/08/2008|08:56] C:\DOCUME~1\PLANTE~1\APPLIC~1\Identities
[19/04/2008|16:52] C:\DOCUME~1\PLANTE~1\APPLIC~1\InstallShield
[08/08/2008|09:50] C:\DOCUME~1\PLANTE~1\APPLIC~1\Macromedia
[23/05/2008|20:50] C:\DOCUME~1\PLANTE~1\APPLIC~1\Microsoft
[06/10/2007|10:37] C:\DOCUME~1\PLANTE~1\APPLIC~1\MSNInstaller
[28/06/2008|14:58] C:\DOCUME~1\PLANTE~1\APPLIC~1\PnkBstrK.sys
[21/02/2008|22:39] C:\DOCUME~1\PLANTE~1\APPLIC~1\SecuROM
[21/04/2007|16:57] C:\DOCUME~1\PLANTE~1\APPLIC~1\Teleca
[25/06/2008|13:10] C:\DOCUME~1\PLANTE~1\APPLIC~1\U3
[10/08/2008|20:22] C:\DOCUME~1\PLANTE~1\APPLIC~1\vghd
[15/03/2008|15:13] C:\DOCUME~1\PLANTE~1\APPLIC~1\vlc
[22/02/2008|20:05] C:\DOCUME~1\PLANTE~1\APPLIC~1\WinRAR
[14/01/2007|18:47] C:\DOCUME~1\PLANTE~1\APPLIC~1\You've Got Pictures Screensaver
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[18/08/2008 15:00][--ah-----] C:\WINDOWS\tasks\B024D593929742CF.job
[18/08/2008 13:54][--ah-----] C:\WINDOWS\tasks\SA.DAT
[10/08/2004 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
( B024D593929742CF.job )=( c:\docume~1\plante~1\applic~1\extraa~1\SiteDartBuild.exe )
--------------------\\ Listing des dossiers dans C:\Program Files
[08/08/2008|09:45] C:\Program Files\Adobe
[08/08/2008|09:51] C:\Program Files\Ahead
[21/03/2008|15:28] C:\Program Files\Alcohol Soft
[27/07/2008|22:59] C:\Program Files\Alien Shooter
[08/12/2007|18:05] C:\Program Files\AMD
[16/03/2008|13:19] C:\Program Files\AnglaisFacile.com
[15/01/2007|09:57] C:\Program Files\AOL 9.0
[14/01/2007|18:47] C:\Program Files\AOL Compagnon
[28/02/2008|17:24] C:\Program Files\AOL Toolbar
[14/07/2007|00:27] C:\Program Files\billard
[04/08/2007|19:56] C:\Program Files\Canon
[21/03/2008|15:28] C:\Program Files\Conduit
[31/07/2007|10:50] C:\Program Files\CR-TEKnologies
[08/08/2008|09:51] C:\Program Files\CyberLink
[11/08/2008|15:31] C:\Program Files\DAEMON Tools
[17/05/2008|19:33] C:\Program Files\Diablo II
[03/03/2007|23:02] C:\Program Files\directx
[26/07/2008|13:03] C:\Program Files\DVD Shrink
[17/08/2008|21:55] C:\Program Files\eChanblard
[04/08/2008|18:49] C:\Program Files\Eidos Interactive
[21/02/2008|21:59] C:\Program Files\Electronic Arts
[14/08/2008|14:30] C:\Program Files\Fichiers communs
[05/10/2007|19:35] C:\Program Files\Free
[08/10/2007|19:12] C:\Program Files\Free.fr
[21/03/2008|15:28] C:\Program Files\free-downloads.net
[26/07/2008|15:06] C:\Program Files\GamesBar
[21/02/2008|22:38] C:\Program Files\GameSpy
[17/03/2007|23:52] C:\Program Files\GameSpy Arcade
[19/04/2008|20:33] C:\Program Files\Happyneuron
[22/02/2008|20:06] C:\Program Files\Hero Editor
[23/06/2008|01:57] C:\Program Files\InstallShield Installation Information
[12/08/2008|23:17] C:\Program Files\Internet Explorer
[05/10/2007|19:05] C:\Program Files\Java
[05/10/2007|19:05] C:\Program Files\Java Web Start
[17/03/2007|12:56] C:\Program Files\Jeff Wayne's 'La Guerre des Mondes'
[17/03/2007|18:42] C:\Program Files\KOCH Media
[23/03/2008|13:22] C:\Program Files\Langue Et Jeu
[14/08/2008|14:30] C:\Program Files\Lavasoft
[18/01/2008|20:36] C:\Program Files\Logitech
[14/08/2008|09:24] C:\Program Files\LucasArts
[25/12/2007|12:53] C:\Program Files\Maxtor
[12/08/2008|23:19] C:\Program Files\Messenger
[08/03/2008|11:39] C:\Program Files\MessengerPlus! 3
[27/06/2007|15:22] C:\Program Files\Micro Application
[08/03/2008|15:31] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[08/08/2008|08:53] C:\Program Files\microsoft frontpage
[08/06/2008|23:29] C:\Program Files\Microsoft Games
[10/03/2007|21:29] C:\Program Files\Microsoft IntelliPoint
[17/06/2007|14:20] C:\Program Files\Microsoft Office
[08/08/2008|08:51] C:\Program Files\Movie Maker
[20/01/2007|17:36] C:\Program Files\MSN
[08/08/2008|08:49] C:\Program Files\MSN Gaming Zone
[08/08/2008|08:51] C:\Program Files\NetMeeting
[08/08/2008|08:49] C:\Program Files\Online Services
[26/07/2008|15:05] C:\Program Files\orange
[05/10/2007|22:00] C:\Program Files\Outlook Express
[14/01/2007|18:47] C:\Program Files\QuickTime
[14/01/2007|11:34] C:\Program Files\Raccourcis de programmes
[23/02/2008|04:37] C:\Program Files\Red Storm Entertainment
[27/10/2007|14:11] C:\Program Files\Return to Castle Wolfenstein
[05/10/2007|19:09] C:\Program Files\SAGEM
[08/08/2008|08:51] C:\Program Files\Services en ligne
[23/02/2008|08:54] C:\Program Files\SlySoft
[09/12/2007|13:40] C:\Program Files\SolidWorks
[21/04/2007|16:55] C:\Program Files\Sony Ericsson
[16/08/2008|23:03] C:\Program Files\Spybot - Search & Destroy
[18/08/2008|13:54] C:\Program Files\Steam
[08/08/2008|09:48] C:\Program Files\Synaptics
[24/07/2007|13:31] C:\Program Files\Toshiba
[26/10/2007|20:39] C:\Program Files\Trend Micro
[08/08/2008|08:56] C:\Program Files\Uninstall Information
[15/03/2008|15:13] C:\Program Files\VideoLAN
[14/01/2007|18:47] C:\Program Files\Viewpoint
[14/01/2007|16:03] C:\Program Files\Wanadoo
[18/08/2008|15:03] C:\Program Files\Warcraft III
[08/03/2008|11:48] C:\Program Files\Windows Live
[15/06/2008|23:15] C:\Program Files\Windows Media Player
[08/08/2008|08:49] C:\Program Files\Windows NT
[08/08/2008|08:49] C:\Program Files\Windows Plus
[08/08/2008|08:51] C:\Program Files\WindowsUpdate
[22/02/2008|20:05] C:\Program Files\WinRAR
[05/04/2008|11:08] C:\Program Files\Wolfenstein - Enemy Territory
[08/08/2008|08:53] C:\Program Files\xerox
[08/08/2008|09:50] C:\Program Files\Yahoo!
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[26/06/2008|15:47] C:\Program Files\Fichiers communs\Adobe
[08/08/2008|09:50] C:\Program Files\Fichiers communs\Ahead
[14/01/2007|18:47] C:\Program Files\Fichiers communs\AOL
[14/01/2007|18:47] C:\Program Files\Fichiers communs\aolshare
[25/06/2008|13:13] C:\Program Files\Fichiers communs\BOONTY Shared
[04/08/2007|19:55] C:\Program Files\Fichiers communs\Canon
[17/06/2007|14:21] C:\Program Files\Fichiers communs\Designer
[18/01/2008|20:32] C:\Program Files\Fichiers communs\InstallShield
[18/01/2008|20:45] C:\Program Files\Fichiers communs\LogiShrd
[08/03/2008|11:50] C:\Program Files\Fichiers communs\Microsoft Shared
[08/08/2008|08:51] C:\Program Files\Fichiers communs\MSSoap
[14/01/2007|18:47] C:\Program Files\Fichiers communs\Nullsoft
[26/07/2008|15:05] C:\Program Files\Fichiers communs\Oberon Media
[08/08/2008|10:46] C:\Program Files\Fichiers communs\ODBC
[14/01/2007|18:47] C:\Program Files\Fichiers communs\Real
[08/08/2008|08:51] C:\Program Files\Fichiers communs\Services
[08/08/2008|10:46] C:\Program Files\Fichiers communs\SpeechEngines
[26/10/2007|20:35] C:\Program Files\Fichiers communs\Symantec Shared
[05/10/2007|22:00] C:\Program Files\Fichiers communs\System
[21/04/2007|16:55] C:\Program Files\Fichiers communs\Teleca Shared
[08/03/2008|11:48] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[14/08/2008|14:30] C:\Program Files\Fichiers communs\Wise Installation Wizard
--------------------\\ Process
( 67 Processus )
iexplore.exe ~ [PID:808] ~ [Threads:13]
iexplore.exe ~ [PID:832] ~ [Threads:5]
iexplore.exe ~ [PID:1472] ~ [Threads:17]
iexplore.exe ~ [PID:4892] ~ [Threads:24]
--------------------\\ Recherche avec S_Lop
C:\DOCUME~1\PLANTE~1\APPLIC~1\EXTRAA~1
C:\DOCUME~1\PLANTE~1\APPLIC~1\EXTRAA~1\Bone online media.exe
C:\DOCUME~1\PLANTE~1\APPLIC~1\EXTRAA~1\cokewptp.exe
C:\DOCUME~1\PLANTE~1\APPLIC~1\EXTRAA~1\Site Dart Build.exe
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Move Bore Curb Tool
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Move Bore Curb Tool\The One.exe
C:\DOCUME~1\PLANTE~1\APPLIC~1\extraa~1
C:\DOCUME~1\PLANTE~1\APPLIC~1\extraa~1\Bone online media.exe
C:\DOCUME~1\PLANTE~1\APPLIC~1\extraa~1\cokewptp.exe
C:\DOCUME~1\PLANTE~1\APPLIC~1\extraa~1\Site Dart Build.exe
C:\DOCUME~1\PLANTE~1\Cookies\planete_saturn@adultfriendfinder[2].txt
C:\DOCUME~1\PLANTE~1\Cookies\planete_saturn@advertising[1].txt
C:\DOCUME~1\PLANTE~1\Cookies\planete_saturn@bigpoint[1].txt
C:\DOCUME~1\PLANTE~1\Cookies\planete_saturn@fr.thepimps.bigpoint[2].txt
C:\DOCUME~1\PLANTE~1\Cookies\planete_saturn@adopt.euroclick[1].txt
C:\DOCUME~1\PLANTE~1\Cookies\planete_saturn@adopt.euroclick[3].txt
C:\DOCUME~1\PLANTE~1\Cookies\planete_saturn@pacificpoker[2].txt
C:\DOCUME~1\PLANTE~1\Cookies\planete_saturn@partypoker[1].txt
C:\DOCUME~1\PLANTE~1\Cookies\planete_saturn@partypoker[2].txt
C:\DOCUME~1\PLANTE~1\Cookies\planete_saturn@32vegas[1].txt
C:\DOCUME~1\PLANTE~1\Cookies\planete_saturn@banner.32vegas[2].txt
C:\DOCUME~1\PLANTE~1\Cookies\planete_saturn@888[1].txt
C:\WINDOWS\Tasks\B024D593929742CF.job
--------------------\\ Verification du Registre
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\pokeroamglue]
"DisplayName"="CiD Help"
"UninstallString"="C:\\DOCUME~1\\PLANTE~1\\APPLIC~1\\EXTRAA~1\\Bone online media.exe -uninstall"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"blue32"="C:\\DOCUME~1\\PLANTE~1\\APPLIC~1\\EXTRAA~1\\Bone online media.exe"
"blue32"="C:\\DOCUME~1\\PLANTE~1\\APPLIC~1\\EXTRAA~1\\Bone online media.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Curb tool help dart"="C:\\Documents and Settings\\All Users\\Application Data\\Move Bore Curb Tool\\The One.exe"
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-08-18 15:08:20
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 65
--------------------\\ Recherche d'autres infections
--------------------\\ ROGUES ..
C:\DOCUME~1\ALLUSE~1\APPLIC~1\SoftLand Ltd
--------------------\\ Cracks & Keygens ..
C:\DOCUME~1\PLANTE~1\Bureau\keygen.rar
C:\DOCUME~1\PLANTE~1\Bureau\setup et autres\keygen.rar
C:\DOCUME~1\PLANTE~1\Local Settings\Temp\Rar$DR37.469\Crack
C:\DOCUME~1\PLANTE~1\Local Settings\Temp\Rar$DR37.562\Crack
C:\DOCUME~1\PLANTE~1\Local Settings\Temp\Rar$DR38.344\Crack
C:\DOCUME~1\PLANTE~1\Local Settings\Temp\Rar$DR38.937\Crack
C:\DOCUME~1\PLANTE~1\Local Settings\Temp\Rar$DR39.578\Crack
C:\DOCUME~1\PLANTE~1\Local Settings\Temp\Rar$DR39.922\Crack
C:\DOCUME~1\PLANTE~1\Local Settings\Temp\Rar$DR41.562\Crack
C:\DOCUME~1\PLANTE~1\Local Settings\Temp\Rar$DR42.375\Crack
[F:73][D:45]-> C:\DOCUME~1\PLANTE~1\LOCALS~1\Temp
[F:305][D:0]-> C:\DOCUME~1\PLANTE~1\Cookies
[F:4746][D:13]-> C:\DOCUME~1\PLANTE~1\LOCALS~1\TEMPOR~1\content.IE5
--------------------\\ Fin du rapport a 15:10:35,45
2 réponses
Bonjour
Continue sur ce topik :
http://www.commentcamarche.net/forum/affich 7954005 infos complementaire pr pubs intempestive
Continue sur ce topik :
http://www.commentcamarche.net/forum/affich 7954005 infos complementaire pr pubs intempestive
