Raport lop
Fermé
bernard 22
-
toptitbal Messages postés 26224 Date d'inscription Statut Contributeur sécurité Dernière intervention -
toptitbal Messages postés 26224 Date d'inscription Statut Contributeur sécurité Dernière intervention -
Bonjour,
--------------------\\ Lop S&D 4.2.4-4 XP/Vista
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Sempron(tm) Processor 3000+ )
BIOS : Phoenix - Award BIOS v6.00PG
USER : HP_Propriétaire ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 080925-0] 4.8.1229 (Activated)
C:\ (Local Disk) - NTFS - Total : 144 Go Free : 126 Go
D:\ (Local Disk) - FAT32 - Total : 4 Go Free : 0 Go
E:\ (CD or DVD)
"C:\Lop SD" ( MAJ : 19-09-2008|22:20 )
Option : [1] ( 26/09/2008|10:28 )
--------------------\\ Listing des dossiers dans APPLIC~1
[02/01/2005|22:52] C:\DOCUME~1\ADMINI~1\APPLIC~1\Apple Computer
[25/11/2004|05:26] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[19/09/2008|19:59] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[02/01/2005|22:57] C:\DOCUME~1\ADMINI~1\APPLIC~1\SampleView
[02/01/2005|23:08] C:\DOCUME~1\ADMINI~1\APPLIC~1\Symantec
[02/01/2005|22:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[02/01/2005|22:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[22/09/2008|14:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Fighters
[06/08/2007|17:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[25/09/2008|19:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
[02/01/2005|22:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[19/09/2008|09:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Htm Support Bait Deaf
[02/01/2005|22:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[24/09/2008|15:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[27/06/2007|13:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\pixelStorm
[17/08/2007|04:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[02/01/2005|22:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[02/01/2005|22:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
[21/09/2008|10:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[15/08/2008|09:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SweetIM
[02/08/2007|15:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[25/09/2008|23:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[17/06/2007|11:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\UDL
[22/09/2008|16:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[20/09/2008|10:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[02/01/2005|22:52] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Apple Computer
[25/11/2004|05:26] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[19/09/2008|19:59] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[02/01/2005|22:57] C:\DOCUME~1\DEFAUL~1\APPLIC~1\SampleView
[02/01/2005|23:08] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec
[23/03/2008|21:39] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Adobe
[23/03/2008|21:34] C:\DOCUME~1\HP_PRO~1\APPLIC~1\AdobeUM
[02/01/2005|22:52] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Apple Computer
[20/06/2007|16:37] C:\DOCUME~1\HP_PRO~1\APPLIC~1\EPSON
[24/09/2008|15:50] C:\DOCUME~1\HP_PRO~1\APPLIC~1\FrostWire
[17/08/2007|04:40] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Google
[08/07/2007|13:37] C:\DOCUME~1\HP_PRO~1\APPLIC~1\HP
[30/06/2007|11:56] C:\DOCUME~1\HP_PRO~1\APPLIC~1\HPQ
[25/11/2004|05:26] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Identities
[28/11/2007|17:31] C:\DOCUME~1\HP_PRO~1\APPLIC~1\InstallShield
[08/07/2007|12:28] C:\DOCUME~1\HP_PRO~1\APPLIC~1\InterVideo
[06/12/2007|19:59] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Lavasoft
[19/06/2007|17:03] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Leadertech
[20/08/2008|20:03] C:\DOCUME~1\HP_PRO~1\APPLIC~1\LimeWire
[10/08/2007|09:36] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Macromedia
[19/09/2008|09:38] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Microsoft
[02/01/2005|22:57] C:\DOCUME~1\HP_PRO~1\APPLIC~1\SampleView
[25/12/2007|20:11] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Samsung
[19/06/2007|17:03] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Sonic
[25/04/2008|18:01] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Sony Ericsson
[27/06/2007|10:46] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Sun
[17/08/2007|04:39] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Symantec
[25/04/2008|18:01] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Teleca
[24/06/2007|15:05] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Template
[20/09/2008|10:04] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Windows Live Writer
[30/07/2007|12:13] C:\DOCUME~1\HP_PRO~1\APPLIC~1\WinRAR
[16/08/2007|16:47] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[29/11/2007|18:03] C:\DOCUME~1\LOCALS~1\APPLIC~1\Symantec
[24/09/2008|15:58] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[26/09/2008 08:23][--ah-----] C:\WINDOWS\tasks\MP Scheduled Scan.job
[26/09/2008 10:25][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[26/09/2008 10:27][--a------] C:\WINDOWS\tasks\Symantec NetDetect.job
[26/09/2008 08:14][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 20:00][-rah-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ Listing des dossiers dans C:\Program Files
[17/08/2007|04:25] C:\Program Files\802.11 Wireless LAN
[17/06/2007|11:01] C:\Program Files\ABBYY FineReader 6.0 Sprint
[02/01/2005|22:49] C:\Program Files\Adobe
[02/08/2007|15:06] C:\Program Files\Alwil Software
[02/01/2005|22:28] C:\Program Files\ATI Technologies
[21/09/2008|10:38] C:\Program Files\AxBx
[24/11/2004|03:37] C:\Program Files\ComPlus Applications
[25/04/2008|17:52] C:\Program Files\Disc2Phone
[20/09/2008|10:17] C:\Program Files\DivX
[20/09/2008|10:17] C:\Program Files\Easy Internet signup
[17/06/2007|11:02] C:\Program Files\epson
[14/07/2007|18:26] C:\Program Files\ffdshow
[22/09/2008|17:16] C:\Program Files\Fichiers communs
[22/09/2008|15:23] C:\Program Files\Fighters
[20/09/2008|10:17] C:\Program Files\FrostWire
[22/09/2008|15:49] C:\Program Files\Google
[28/11/2007|17:32] C:\Program Files\Hercules
[02/01/2005|22:48] C:\Program Files\Hewlett-Packard
[02/01/2005|22:36] C:\Program Files\HP
[15/08/2008|13:21] C:\Program Files\Iminent
[17/06/2007|13:39] C:\Program Files\Infogrames
[18/08/2008|20:10] C:\Program Files\InstallShield Installation Information
[22/09/2008|16:55] C:\Program Files\Internet Explorer
[10/03/2008|21:35] C:\Program Files\InternetGameBox
[02/01/2005|22:48] C:\Program Files\InterVideo
[02/01/2005|22:52] C:\Program Files\iPod
[02/01/2005|22:52] C:\Program Files\iTunes
[17/09/2008|08:42] C:\Program Files\Java
[02/12/2007|13:07] C:\Program Files\Lavasoft RegHance
[20/08/2008|20:04] C:\Program Files\LimeWire
[22/09/2008|15:49] C:\Program Files\Messenger
[25/11/2004|05:27] C:\Program Files\microsoft frontpage
[02/01/2005|22:51] C:\Program Files\Microsoft Office
[19/09/2008|09:27] C:\Program Files\Microsoft SQL Server Compact Edition
[20/09/2008|10:17] C:\Program Files\Microsoft Works
[22/09/2008|15:41] C:\Program Files\Movie Maker
[15/08/2008|09:09] C:\Program Files\Mozilla Firefox
[17/08/2007|04:44] C:\Program Files\MSN
[25/11/2004|05:27] C:\Program Files\MSN Gaming Zone
[22/09/2008|16:05] C:\Program Files\MSN Messenger
[18/06/2007|21:11] C:\Program Files\MSXML 4.0
[02/01/2005|22:55] C:\Program Files\muvee Technologies
[26/09/2008|09:47] C:\Program Files\Navilog1
[22/09/2008|15:38] C:\Program Files\NetMeeting
[18/08/2008|20:10] C:\Program Files\NewTech Infosystems
[25/11/2004|05:27] C:\Program Files\Online Services
[22/09/2008|15:37] C:\Program Files\Outlook Express
[22/09/2008|16:31] C:\Program Files\PC-Doctor 5 for Windows
[26/06/2007|18:42] C:\Program Files\Quark
[23/09/2008|10:54] C:\Program Files\QuickTime
[22/09/2008|15:17] C:\Program Files\RegCleaner
[22/09/2008|15:19] C:\Program Files\Registry Mechanic
[25/12/2007|12:01] C:\Program Files\Samsung
[08/07/2007|13:47] C:\Program Files\Services en ligne
[22/09/2008|17:01] C:\Program Files\Sonic
[21/09/2008|10:18] C:\Program Files\Spybot - Search & Destroy
[17/09/2008|08:42] C:\Program Files\Sun
[15/08/2008|13:49] C:\Program Files\SweetIM
[02/01/2005|23:10] C:\Program Files\Symantec
[25/09/2008|14:59] C:\Program Files\Trend Micro
[28/06/2007|14:42] C:\Program Files\Ubisoft
[24/11/2004|03:37] C:\Program Files\Uninstall Information
[23/06/2007|12:22] C:\Program Files\Vimicro
[24/09/2008|15:38] C:\Program Files\Windows Defender
[19/09/2008|23:02] C:\Program Files\Windows Live
[20/09/2008|10:17] C:\Program Files\Windows Live Toolbar
[22/09/2008|15:37] C:\Program Files\Windows Media Player
[22/09/2008|15:37] C:\Program Files\Windows NT
[24/11/2004|03:37] C:\Program Files\WindowsUpdate
[30/07/2007|12:13] C:\Program Files\WinRAR
[25/11/2004|05:28] C:\Program Files\xerox
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[02/01/2005|22:49] C:\Program Files\Fichiers communs\Adobe
[02/01/2005|22:42] C:\Program Files\Fichiers communs\Hewlett-Packard
[02/01/2005|22:39] C:\Program Files\Fichiers communs\HP
[02/01/2005|22:55] C:\Program Files\Fichiers communs\InstallShield
[02/01/2005|22:21] C:\Program Files\Fichiers communs\Java
[14/02/2008|10:25] C:\Program Files\Fichiers communs\Microsoft Shared
[25/11/2004|05:26] C:\Program Files\Fichiers communs\MSSoap
[02/01/2005|22:55] C:\Program Files\Fichiers communs\muvee Technologies
[18/08/2008|20:06] C:\Program Files\Fichiers communs\NewTech Infosystems
[25/11/2004|05:26] C:\Program Files\Fichiers communs\ODBC
[17/08/2007|04:04] C:\Program Files\Fichiers communs\Services
[02/01/2005|22:46] C:\Program Files\Fichiers communs\Sonic Shared
[25/11/2004|05:26] C:\Program Files\Fichiers communs\SpeechEngines
[08/03/2008|10:17] C:\Program Files\Fichiers communs\Symantec Shared
[22/09/2008|15:37] C:\Program Files\Fichiers communs\System
[02/01/2005|22:47] C:\Program Files\Fichiers communs\TiVo Shared
[14/02/2008|10:23] C:\Program Files\Fichiers communs\WindowsLiveInstaller
--------------------\\ Process
( 57 Processes )
IEXPLORE.EXE ~ [PID:3836]
iexplore.exe ~ [PID:3252]
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Htm Support Bait Deaf
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Htm Support Bait Deaf\Wipe Base.exe
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsxE3E.tmp
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@adultfriendfinder[1].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@advertising[1].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@adin.bigpoint[1].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@bigpoint[2].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@fr.seafight.bigpoint[1].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@fr1.darkorbit.bigpoint[1].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@fr1.seafight.bigpoint[2].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@banner.casinoking[2].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@casinoking[2].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@banner.cotedazurpalace[2].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@cotedazurpalace[1].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@www.cotedazurpalace[1].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@adopt.euroclick[1].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@pacificpoker[1].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@partypoker[1].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@fr.seafight.bigpoint[1].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@fr1.seafight.bigpoint[2].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@32vegas[2].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@banner.32vegas[2].txt
--------------------\\ Verification du Registre
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"bait deaf idle setup"="C:\\Documents and Settings\\All Users\\Application Data\\Htm Support Bait Deaf\\Wipe Base.exe"
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-26 10:30:11
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 391
--------------------\\ Recherche d'autres infections
C:\Program Files\InternetGameBox
C:\Program Files\InternetGameBox\Conditions g‚n‚rales.url
C:\Program Files\InternetGameBox\Confidentialit‚.url
C:\Program Files\InternetGameBox\language
C:\Program Files\InternetGameBox\ressources
C:\Program Files\InternetGameBox\skins
C:\Program Files\InternetGameBox\Website.url
C:\WINDOWS\Pack.epk
C:\DOCUME~1\HP_PRO~1\LOCALS~1\APPLIC~1\zeqchm.dat
C:\DOCUME~1\HP_PRO~1\LOCALS~1\APPLIC~1\zeqchm_nav.dat
C:\DOCUME~1\HP_PRO~1\LOCALS~1\APPLIC~1\zeqchm_navps.dat
C:\WINDOWS\System32\rawyth.dat
C:\WINDOWS\System32\rawyth_nav.dat
C:\WINDOWS\System32\rawyth_navps.dat
[b]==> EGDACCESS <==/b
[F:1737][D:95]-> C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp
[F:366][D:0]-> C:\DOCUME~1\HP_PRO~1\Cookies
[F:14854][D:18]-> C:\DOCUME~1\HP_PRO~1\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 26/09/2008|10:32 - Option : [1]
--------------------\\ Fin du rapport a 10:32:37
--------------------\\ Lop S&D 4.2.4-4 XP/Vista
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Sempron(tm) Processor 3000+ )
BIOS : Phoenix - Award BIOS v6.00PG
USER : HP_Propriétaire ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 080925-0] 4.8.1229 (Activated)
C:\ (Local Disk) - NTFS - Total : 144 Go Free : 126 Go
D:\ (Local Disk) - FAT32 - Total : 4 Go Free : 0 Go
E:\ (CD or DVD)
"C:\Lop SD" ( MAJ : 19-09-2008|22:20 )
Option : [1] ( 26/09/2008|10:28 )
--------------------\\ Listing des dossiers dans APPLIC~1
[02/01/2005|22:52] C:\DOCUME~1\ADMINI~1\APPLIC~1\Apple Computer
[25/11/2004|05:26] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[19/09/2008|19:59] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[02/01/2005|22:57] C:\DOCUME~1\ADMINI~1\APPLIC~1\SampleView
[02/01/2005|23:08] C:\DOCUME~1\ADMINI~1\APPLIC~1\Symantec
[02/01/2005|22:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[02/01/2005|22:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[22/09/2008|14:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Fighters
[06/08/2007|17:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[25/09/2008|19:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
[02/01/2005|22:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[19/09/2008|09:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Htm Support Bait Deaf
[02/01/2005|22:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[24/09/2008|15:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[27/06/2007|13:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\pixelStorm
[17/08/2007|04:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[02/01/2005|22:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[02/01/2005|22:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
[21/09/2008|10:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[15/08/2008|09:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SweetIM
[02/08/2007|15:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[25/09/2008|23:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[17/06/2007|11:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\UDL
[22/09/2008|16:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[20/09/2008|10:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[02/01/2005|22:52] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Apple Computer
[25/11/2004|05:26] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[19/09/2008|19:59] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[02/01/2005|22:57] C:\DOCUME~1\DEFAUL~1\APPLIC~1\SampleView
[02/01/2005|23:08] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec
[23/03/2008|21:39] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Adobe
[23/03/2008|21:34] C:\DOCUME~1\HP_PRO~1\APPLIC~1\AdobeUM
[02/01/2005|22:52] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Apple Computer
[20/06/2007|16:37] C:\DOCUME~1\HP_PRO~1\APPLIC~1\EPSON
[24/09/2008|15:50] C:\DOCUME~1\HP_PRO~1\APPLIC~1\FrostWire
[17/08/2007|04:40] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Google
[08/07/2007|13:37] C:\DOCUME~1\HP_PRO~1\APPLIC~1\HP
[30/06/2007|11:56] C:\DOCUME~1\HP_PRO~1\APPLIC~1\HPQ
[25/11/2004|05:26] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Identities
[28/11/2007|17:31] C:\DOCUME~1\HP_PRO~1\APPLIC~1\InstallShield
[08/07/2007|12:28] C:\DOCUME~1\HP_PRO~1\APPLIC~1\InterVideo
[06/12/2007|19:59] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Lavasoft
[19/06/2007|17:03] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Leadertech
[20/08/2008|20:03] C:\DOCUME~1\HP_PRO~1\APPLIC~1\LimeWire
[10/08/2007|09:36] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Macromedia
[19/09/2008|09:38] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Microsoft
[02/01/2005|22:57] C:\DOCUME~1\HP_PRO~1\APPLIC~1\SampleView
[25/12/2007|20:11] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Samsung
[19/06/2007|17:03] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Sonic
[25/04/2008|18:01] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Sony Ericsson
[27/06/2007|10:46] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Sun
[17/08/2007|04:39] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Symantec
[25/04/2008|18:01] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Teleca
[24/06/2007|15:05] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Template
[20/09/2008|10:04] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Windows Live Writer
[30/07/2007|12:13] C:\DOCUME~1\HP_PRO~1\APPLIC~1\WinRAR
[16/08/2007|16:47] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[29/11/2007|18:03] C:\DOCUME~1\LOCALS~1\APPLIC~1\Symantec
[24/09/2008|15:58] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[26/09/2008 08:23][--ah-----] C:\WINDOWS\tasks\MP Scheduled Scan.job
[26/09/2008 10:25][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[26/09/2008 10:27][--a------] C:\WINDOWS\tasks\Symantec NetDetect.job
[26/09/2008 08:14][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 20:00][-rah-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ Listing des dossiers dans C:\Program Files
[17/08/2007|04:25] C:\Program Files\802.11 Wireless LAN
[17/06/2007|11:01] C:\Program Files\ABBYY FineReader 6.0 Sprint
[02/01/2005|22:49] C:\Program Files\Adobe
[02/08/2007|15:06] C:\Program Files\Alwil Software
[02/01/2005|22:28] C:\Program Files\ATI Technologies
[21/09/2008|10:38] C:\Program Files\AxBx
[24/11/2004|03:37] C:\Program Files\ComPlus Applications
[25/04/2008|17:52] C:\Program Files\Disc2Phone
[20/09/2008|10:17] C:\Program Files\DivX
[20/09/2008|10:17] C:\Program Files\Easy Internet signup
[17/06/2007|11:02] C:\Program Files\epson
[14/07/2007|18:26] C:\Program Files\ffdshow
[22/09/2008|17:16] C:\Program Files\Fichiers communs
[22/09/2008|15:23] C:\Program Files\Fighters
[20/09/2008|10:17] C:\Program Files\FrostWire
[22/09/2008|15:49] C:\Program Files\Google
[28/11/2007|17:32] C:\Program Files\Hercules
[02/01/2005|22:48] C:\Program Files\Hewlett-Packard
[02/01/2005|22:36] C:\Program Files\HP
[15/08/2008|13:21] C:\Program Files\Iminent
[17/06/2007|13:39] C:\Program Files\Infogrames
[18/08/2008|20:10] C:\Program Files\InstallShield Installation Information
[22/09/2008|16:55] C:\Program Files\Internet Explorer
[10/03/2008|21:35] C:\Program Files\InternetGameBox
[02/01/2005|22:48] C:\Program Files\InterVideo
[02/01/2005|22:52] C:\Program Files\iPod
[02/01/2005|22:52] C:\Program Files\iTunes
[17/09/2008|08:42] C:\Program Files\Java
[02/12/2007|13:07] C:\Program Files\Lavasoft RegHance
[20/08/2008|20:04] C:\Program Files\LimeWire
[22/09/2008|15:49] C:\Program Files\Messenger
[25/11/2004|05:27] C:\Program Files\microsoft frontpage
[02/01/2005|22:51] C:\Program Files\Microsoft Office
[19/09/2008|09:27] C:\Program Files\Microsoft SQL Server Compact Edition
[20/09/2008|10:17] C:\Program Files\Microsoft Works
[22/09/2008|15:41] C:\Program Files\Movie Maker
[15/08/2008|09:09] C:\Program Files\Mozilla Firefox
[17/08/2007|04:44] C:\Program Files\MSN
[25/11/2004|05:27] C:\Program Files\MSN Gaming Zone
[22/09/2008|16:05] C:\Program Files\MSN Messenger
[18/06/2007|21:11] C:\Program Files\MSXML 4.0
[02/01/2005|22:55] C:\Program Files\muvee Technologies
[26/09/2008|09:47] C:\Program Files\Navilog1
[22/09/2008|15:38] C:\Program Files\NetMeeting
[18/08/2008|20:10] C:\Program Files\NewTech Infosystems
[25/11/2004|05:27] C:\Program Files\Online Services
[22/09/2008|15:37] C:\Program Files\Outlook Express
[22/09/2008|16:31] C:\Program Files\PC-Doctor 5 for Windows
[26/06/2007|18:42] C:\Program Files\Quark
[23/09/2008|10:54] C:\Program Files\QuickTime
[22/09/2008|15:17] C:\Program Files\RegCleaner
[22/09/2008|15:19] C:\Program Files\Registry Mechanic
[25/12/2007|12:01] C:\Program Files\Samsung
[08/07/2007|13:47] C:\Program Files\Services en ligne
[22/09/2008|17:01] C:\Program Files\Sonic
[21/09/2008|10:18] C:\Program Files\Spybot - Search & Destroy
[17/09/2008|08:42] C:\Program Files\Sun
[15/08/2008|13:49] C:\Program Files\SweetIM
[02/01/2005|23:10] C:\Program Files\Symantec
[25/09/2008|14:59] C:\Program Files\Trend Micro
[28/06/2007|14:42] C:\Program Files\Ubisoft
[24/11/2004|03:37] C:\Program Files\Uninstall Information
[23/06/2007|12:22] C:\Program Files\Vimicro
[24/09/2008|15:38] C:\Program Files\Windows Defender
[19/09/2008|23:02] C:\Program Files\Windows Live
[20/09/2008|10:17] C:\Program Files\Windows Live Toolbar
[22/09/2008|15:37] C:\Program Files\Windows Media Player
[22/09/2008|15:37] C:\Program Files\Windows NT
[24/11/2004|03:37] C:\Program Files\WindowsUpdate
[30/07/2007|12:13] C:\Program Files\WinRAR
[25/11/2004|05:28] C:\Program Files\xerox
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[02/01/2005|22:49] C:\Program Files\Fichiers communs\Adobe
[02/01/2005|22:42] C:\Program Files\Fichiers communs\Hewlett-Packard
[02/01/2005|22:39] C:\Program Files\Fichiers communs\HP
[02/01/2005|22:55] C:\Program Files\Fichiers communs\InstallShield
[02/01/2005|22:21] C:\Program Files\Fichiers communs\Java
[14/02/2008|10:25] C:\Program Files\Fichiers communs\Microsoft Shared
[25/11/2004|05:26] C:\Program Files\Fichiers communs\MSSoap
[02/01/2005|22:55] C:\Program Files\Fichiers communs\muvee Technologies
[18/08/2008|20:06] C:\Program Files\Fichiers communs\NewTech Infosystems
[25/11/2004|05:26] C:\Program Files\Fichiers communs\ODBC
[17/08/2007|04:04] C:\Program Files\Fichiers communs\Services
[02/01/2005|22:46] C:\Program Files\Fichiers communs\Sonic Shared
[25/11/2004|05:26] C:\Program Files\Fichiers communs\SpeechEngines
[08/03/2008|10:17] C:\Program Files\Fichiers communs\Symantec Shared
[22/09/2008|15:37] C:\Program Files\Fichiers communs\System
[02/01/2005|22:47] C:\Program Files\Fichiers communs\TiVo Shared
[14/02/2008|10:23] C:\Program Files\Fichiers communs\WindowsLiveInstaller
--------------------\\ Process
( 57 Processes )
IEXPLORE.EXE ~ [PID:3836]
iexplore.exe ~ [PID:3252]
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Htm Support Bait Deaf
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Htm Support Bait Deaf\Wipe Base.exe
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsxE3E.tmp
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@adultfriendfinder[1].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@advertising[1].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@adin.bigpoint[1].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@bigpoint[2].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@fr.seafight.bigpoint[1].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@fr1.darkorbit.bigpoint[1].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@fr1.seafight.bigpoint[2].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@banner.casinoking[2].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@casinoking[2].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@banner.cotedazurpalace[2].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@cotedazurpalace[1].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@www.cotedazurpalace[1].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@adopt.euroclick[1].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@pacificpoker[1].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@partypoker[1].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@fr.seafight.bigpoint[1].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@fr1.seafight.bigpoint[2].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@32vegas[2].txt
C:\DOCUME~1\HP_PRO~1\Cookies\hp_propriétaire@banner.32vegas[2].txt
--------------------\\ Verification du Registre
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"bait deaf idle setup"="C:\\Documents and Settings\\All Users\\Application Data\\Htm Support Bait Deaf\\Wipe Base.exe"
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-26 10:30:11
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 391
--------------------\\ Recherche d'autres infections
C:\Program Files\InternetGameBox
C:\Program Files\InternetGameBox\Conditions g‚n‚rales.url
C:\Program Files\InternetGameBox\Confidentialit‚.url
C:\Program Files\InternetGameBox\language
C:\Program Files\InternetGameBox\ressources
C:\Program Files\InternetGameBox\skins
C:\Program Files\InternetGameBox\Website.url
C:\WINDOWS\Pack.epk
C:\DOCUME~1\HP_PRO~1\LOCALS~1\APPLIC~1\zeqchm.dat
C:\DOCUME~1\HP_PRO~1\LOCALS~1\APPLIC~1\zeqchm_nav.dat
C:\DOCUME~1\HP_PRO~1\LOCALS~1\APPLIC~1\zeqchm_navps.dat
C:\WINDOWS\System32\rawyth.dat
C:\WINDOWS\System32\rawyth_nav.dat
C:\WINDOWS\System32\rawyth_navps.dat
[b]==> EGDACCESS <==/b
[F:1737][D:95]-> C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp
[F:366][D:0]-> C:\DOCUME~1\HP_PRO~1\Cookies
[F:14854][D:18]-> C:\DOCUME~1\HP_PRO~1\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 26/09/2008|10:32 - Option : [1]
--------------------\\ Fin du rapport a 10:32:37
A voir également:
- Raport lop
- Fastec raport page - Télécharger - Outils professionnels
