Probleme de pub (CID) sur internet explorer
nico25400
Messages postés
6
Statut
Membre
-
nico25400 -
nico25400 -
Salut a toute et a tousse j explique mon probleme j ai vraiment bezoin d aide sa devien tres penible sur internet explorer j ai tjr des pub qui saffiche et qui provienne de (CID) je suis fan de jeux en reseaux et c est tres prenible d'avoir des pub en plein jeux merci pour vo reponse
A voir également:
- Probleme de pub (CID) sur internet explorer
- Internet explorer - Guide
- Internet explorer 11 - Télécharger - Navigateurs
- Internet explorer 8 - Télécharger - Navigateurs
- Internet explorer 10 - Télécharger - Navigateurs
- Bloqueur de pub youtube - Accueil - Streaming
11 réponses
Bonsoir
Tu vas dans Démarrer>>> panneau de configuration >>> ajout et suppression de programme.
La tu recherches le programme CID helper puis tu le désinstalle.
Je te conseillerai aussi de faire un scan anti spyware avec Spybot Search and Destroy.
Tu vas dans Démarrer>>> panneau de configuration >>> ajout et suppression de programme.
La tu recherches le programme CID helper puis tu le désinstalle.
Je te conseillerai aussi de faire un scan anti spyware avec Spybot Search and Destroy.
ben j aver déjà pu lire que l on pouvais enlever le cid help mais je ne le vois pas et oui j ai installer msn + mai jai désinstaller le sponsor alors je suis perdu
Ok peut-être est-ce messenger skinner.
Fais un scan avec Hijackthis:
https://www.01net.com/telecharger/windows/Securite/anti-spyware/fiches/29061.html
Pour cela tu le lances cliques sur "accepter" puis tu cliques sur "Do a system scan and save a logfile". Une fois le scan terminé une fenêtre du bloc note avec le log apparait, tu copie tout et colle le ici en réponse.
Fais un scan avec Hijackthis:
https://www.01net.com/telecharger/windows/Securite/anti-spyware/fiches/29061.html
Pour cela tu le lances cliques sur "accepter" puis tu cliques sur "Do a system scan and save a logfile". Une fois le scan terminé une fenêtre du bloc note avec le log apparait, tu copie tout et colle le ici en réponse.
Ba fais comme il a dit Shaee tu va dans demarer et tout le tralala psk moi aussi avant javais les page CID qui souvrer et depui ke j'ai desinstaler le sponsor ben j'en ai plus^^
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
voila se que j obtien
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:40:50, on 27/09/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
C:\WINDOWS\system32\ctfmon.exe
C:\program files\steam\steam.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\DAEMON Tools Lite\daemon.exe
C:\PROGRA~1\PANICW~1\POP-UP~1\PSFree.exe
C:\Program Files\BPS Remover\BPSRem.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Microsoft Office\Office\OSA.EXE
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe
C:\Program Files\MSN Pictures Displayer\MSN Pictures Displayer.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\OrangeHSS\systray\systrayapp.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\PROGRA~1\Mozilla Firefox\firefox.exe
C:\Documents and Settings\philippe rayot\Bureau\HiJackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = \blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\OrangeHSS\SearchURLHook\SearchPageURL.dll
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
R3 - URLSearchHook: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\YTSingleInstance.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [ORAHSSSessionManager] C:\Program Files\OrangeHSS\SessionManager\SessionManager.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [AXIS TONS THE MP3] C:\Documents and Settings\All Users.WINDOWS\Application Data\Readme Live Axis Tons\proxy move.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [YSearchProtection] "C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\GestMaj.exe GestionnaireInternet.exe
O4 - HKCU\..\Run: [Steam] "c:\program files\steam\steam.exe" -silent
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [licensefind] C:\DOCUME~1\PHILIP~2\APPLIC~1\PROCVC~1\Dent ball start.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKCU\..\Run: [YSearchProtection] C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
O4 - HKCU\..\Run: [PopUpStopperFreeEdition] "C:\PROGRA~1\PANICW~1\POP-UP~1\PSFree.exe"
O4 - HKCU\..\Run: [BPS Remover] C:\Program Files\BPS Remover\SpyRem.exe
O4 - HKCU\..\Run: [BPS Spyware Remover] C:\Program Files\BPS Remover\BPSRem.exe /STARTUP
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: MSN Pictures Displayer.lnk = C:\Program Files\MSN Pictures Displayer\MSN Pictures Displayer.exe
O4 - Global Startup: Démarrage d'Office.lnk = C:\Program Files\Microsoft Office\Office\OSA.EXE
O4 - Global Startup: Microsoft Recherche accélérée.lnk = C:\Program Files\Microsoft Office\Office\FINDFAST.EXE
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .pdf: C:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: NMIndexingService - Unknown owner - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe (file missing)
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:40:50, on 27/09/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
C:\WINDOWS\system32\ctfmon.exe
C:\program files\steam\steam.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\DAEMON Tools Lite\daemon.exe
C:\PROGRA~1\PANICW~1\POP-UP~1\PSFree.exe
C:\Program Files\BPS Remover\BPSRem.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Microsoft Office\Office\OSA.EXE
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe
C:\Program Files\MSN Pictures Displayer\MSN Pictures Displayer.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\OrangeHSS\systray\systrayapp.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\PROGRA~1\Mozilla Firefox\firefox.exe
C:\Documents and Settings\philippe rayot\Bureau\HiJackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = \blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\OrangeHSS\SearchURLHook\SearchPageURL.dll
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
R3 - URLSearchHook: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\YTSingleInstance.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [ORAHSSSessionManager] C:\Program Files\OrangeHSS\SessionManager\SessionManager.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [AXIS TONS THE MP3] C:\Documents and Settings\All Users.WINDOWS\Application Data\Readme Live Axis Tons\proxy move.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [YSearchProtection] "C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\GestMaj.exe GestionnaireInternet.exe
O4 - HKCU\..\Run: [Steam] "c:\program files\steam\steam.exe" -silent
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [licensefind] C:\DOCUME~1\PHILIP~2\APPLIC~1\PROCVC~1\Dent ball start.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKCU\..\Run: [YSearchProtection] C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
O4 - HKCU\..\Run: [PopUpStopperFreeEdition] "C:\PROGRA~1\PANICW~1\POP-UP~1\PSFree.exe"
O4 - HKCU\..\Run: [BPS Remover] C:\Program Files\BPS Remover\SpyRem.exe
O4 - HKCU\..\Run: [BPS Spyware Remover] C:\Program Files\BPS Remover\BPSRem.exe /STARTUP
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: MSN Pictures Displayer.lnk = C:\Program Files\MSN Pictures Displayer\MSN Pictures Displayer.exe
O4 - Global Startup: Démarrage d'Office.lnk = C:\Program Files\Microsoft Office\Office\OSA.EXE
O4 - Global Startup: Microsoft Recherche accélérée.lnk = C:\Program Files\Microsoft Office\Office\FINDFAST.EXE
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .pdf: C:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: NMIndexingService - Unknown owner - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe (file missing)
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
FAIT CECI
Télécharge LopSD.exe sur ton Bureau
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
Clique-droit sur le raccourci LopSD présent sur le Bureau et choisis "Exécuter en tant qu'administrateur" pour lancer LopSD.
Choisis la langue F pour Français puis valide par Entrée.
Choisis l'option Recherche en saisissant 1 puis valide par Entrée
.
* Patiente jusqu'à la fin du scan
* Poste le rapport généré qui se trouve ici => (C:\lopR.txt)
(Si le Bureau ne réapparait pas, presse Ctrl+Alt+Suppr, Onglet Fichier, Nouvelle tâche, tape explorer.exe et valide)
Si tu as un problème pour utiliser Lop S&D, regarde ce tutorial
Télécharge LopSD.exe sur ton Bureau
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
Clique-droit sur le raccourci LopSD présent sur le Bureau et choisis "Exécuter en tant qu'administrateur" pour lancer LopSD.
Choisis la langue F pour Français puis valide par Entrée.
Choisis l'option Recherche en saisissant 1 puis valide par Entrée
.
* Patiente jusqu'à la fin du scan
* Poste le rapport généré qui se trouve ici => (C:\lopR.txt)
(Si le Bureau ne réapparait pas, presse Ctrl+Alt+Suppr, Onglet Fichier, Nouvelle tâche, tape explorer.exe et valide)
Si tu as un problème pour utiliser Lop S&D, regarde ce tutorial
--------------------\\ Lop S&D 4.2.4-4 XP/Vista
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : AMD Sempron(tm) 3000+ )
BIOS : Award Modular BIOS v6.00PG
USER : philippe rayot ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 080926-0] 4.8.1229 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total : 76 Go Free : 41 Go
D:\ (CD or DVD)
E:\ (CD or DVD)
F:\ (CD or DVD)
G:\ (CD or DVD)
H:\ (CD or DVD)
"C:\Lop SD" ( MAJ : 19-09-2008|22:20 )
Option : [1] ( 27/09/2008|22:09 )
--------------------\\ Listing des dossiers dans APPLIC~1
[16/10/2007|10:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[26/11/2007|11:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[18/11/2007|13:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[18/11/2007|13:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[22/11/2006|16:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[18/11/2007|13:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[22/09/2008|20:23] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Ahead
[22/09/2008|22:21] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Apple
[22/09/2008|22:24] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Apple Computer
[12/03/2008|10:36] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\DVD X Studios
[13/03/2008|22:29] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Google
[20/09/2008|14:27] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Grisoft
[18/09/2008|23:38] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\ma-config.com
[18/09/2008|19:37] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Microsoft
[18/09/2008|19:54] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Readme Live Axis Tons
[11/02/2008|16:32] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Windows Genuine Advantage
[18/09/2008|19:30] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\WLInstaller
[20/09/2008|12:21] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\yahoo!
[20/09/2008|14:33] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Yahoo! Companion
[01/12/2007|21:30] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[18/02/2008|12:01] C:\DOCUME~1\DEFAUL~1.WIN\APPLIC~1\Microsoft
[18/09/2006|04:03] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[18/09/2008|14:52] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Microsoft
[01/12/2007|21:29] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[17/01/2008|10:06] C:\DOCUME~1\NETWOR~1.AUT\APPLIC~1\Microsoft
[26/09/2006|17:51] C:\DOCUME~1\PHILIP~1\APPLIC~1\Adobe
[12/10/2006|10:01] C:\DOCUME~1\PHILIP~1\APPLIC~1\Ahead
[16/10/2007|10:24] C:\DOCUME~1\PHILIP~1\APPLIC~1\Apple Computer
[21/09/2006|11:02] C:\DOCUME~1\PHILIP~1\APPLIC~1\Brother
[11/09/2007|16:23] C:\DOCUME~1\PHILIP~1\APPLIC~1\DialMessenger
[21/09/2006|10:39] C:\DOCUME~1\PHILIP~1\APPLIC~1\Help
[18/09/2006|04:58] C:\DOCUME~1\PHILIP~1\APPLIC~1\Identities
[21/09/2006|10:49] C:\DOCUME~1\PHILIP~1\APPLIC~1\InterTrust
[15/01/2008|12:07] C:\DOCUME~1\PHILIP~1\APPLIC~1\LimeWire
[07/01/2008|23:59] C:\DOCUME~1\PHILIP~1\APPLIC~1\ma-config.com
[26/09/2006|17:39] C:\DOCUME~1\PHILIP~1\APPLIC~1\Macromedia
[26/11/2007|16:20] C:\DOCUME~1\PHILIP~1\APPLIC~1\Microsoft
[23/01/2008|09:49] C:\DOCUME~1\PHILIP~2\APPLIC~1\Adobe
[22/09/2008|20:32] C:\DOCUME~1\PHILIP~2\APPLIC~1\Ahead
[19/09/2008|20:26] C:\DOCUME~1\PHILIP~2\APPLIC~1\ATI
[18/09/2008|21:39] C:\DOCUME~1\PHILIP~2\APPLIC~1\DAEMON Tools
[22/01/2008|16:11] C:\DOCUME~1\PHILIP~2\APPLIC~1\Help
[21/01/2008|14:39] C:\DOCUME~1\PHILIP~2\APPLIC~1\Identities
[28/01/2008|09:55] C:\DOCUME~1\PHILIP~2\APPLIC~1\InterTrust
[18/09/2008|14:53] C:\DOCUME~1\PHILIP~2\APPLIC~1\LimeWire
[18/09/2008|14:50] C:\DOCUME~1\PHILIP~2\APPLIC~1\ma-config(2).com
[23/01/2008|09:49] C:\DOCUME~1\PHILIP~2\APPLIC~1\Macromedia
[18/09/2008|19:47] C:\DOCUME~1\PHILIP~2\APPLIC~1\Microsoft
[23/01/2008|12:15] C:\DOCUME~1\PHILIP~2\APPLIC~1\Mozilla
[18/09/2008|20:04] C:\DOCUME~1\PHILIP~2\APPLIC~1\MSN Pictures Displayer
[19/09/2008|11:05] C:\DOCUME~1\PHILIP~2\APPLIC~1\Proc vc
[25/09/2008|13:51] C:\DOCUME~1\PHILIP~2\APPLIC~1\SecuROM
[13/02/2008|16:12] C:\DOCUME~1\PHILIP~2\APPLIC~1\Sun
[23/01/2008|12:15] C:\DOCUME~1\PHILIP~2\APPLIC~1\Talkback
[21/09/2008|22:56] C:\DOCUME~1\PHILIP~2\APPLIC~1\vlc
[20/09/2008|12:21] C:\DOCUME~1\PHILIP~2\APPLIC~1\Yahoo!
[17/01/2008|13:08] C:\DOCUME~1\PROPRI~1\APPLIC~1\Adobe
[11/02/2008|16:14] C:\DOCUME~1\PROPRI~1\APPLIC~1\Bitdefender
[18/01/2008|13:24] C:\DOCUME~1\PROPRI~1\APPLIC~1\Help
[17/01/2008|10:06] C:\DOCUME~1\PROPRI~1\APPLIC~1\Identities
[17/01/2008|14:43] C:\DOCUME~1\PROPRI~1\APPLIC~1\LimeWire
[17/01/2008|10:24] C:\DOCUME~1\PROPRI~1\APPLIC~1\Macromedia
[17/01/2008|12:30] C:\DOCUME~1\PROPRI~1\APPLIC~1\Microsoft
[17/01/2008|13:05] C:\DOCUME~1\PROPRI~1\APPLIC~1\Mozilla
[17/01/2008|13:05] C:\DOCUME~1\PROPRI~1\APPLIC~1\Talkback
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[23/09/2008 16:25][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[27/09/2008 12:54][--ah-----] C:\WINDOWS\tasks\SA.DAT
[28/08/2001 14:00][---------] C:\WINDOWS\tasks\desktop.ini
--------------------\\ Listing des dossiers dans C:\Program Files
[21/09/2006|10:49] C:\Program Files\Adobe
[18/09/2006|05:14] C:\Program Files\Ahead
[25/09/2008|01:32] C:\Program Files\AIDA32 - Personal System Information
[21/09/2006|09:40] C:\Program Files\Alcatel
[22/09/2008|11:21] C:\Program Files\Alcohol Soft
[18/09/2008|18:58] C:\Program Files\Alwil Software
[22/09/2008|22:21] C:\Program Files\Apple Software Update
[19/09/2008|20:22] C:\Program Files\ATI Technologies
[22/09/2008|22:25] C:\Program Files\Bonjour
[27/09/2008|12:56] C:\Program Files\BPS Remover
[21/09/2006|10:48] C:\Program Files\Brother
[28/01/2008|10:03] C:\Program Files\Brownie
[29/12/2007|14:45] C:\Program Files\Canon
[18/09/2008|19:23] C:\Program Files\Common Files
[18/09/2006|04:00] C:\Program Files\ComPlus Applications
[17/11/2007|15:25] C:\Program Files\Controle Parental
[18/09/2008|22:11] C:\Program Files\DAEMON Tools Lite
[18/09/2008|22:11] C:\Program Files\DAEMON Tools Toolbar
[11/09/2007|16:23] C:\Program Files\DialMessenger
[23/09/2008|17:26] C:\Program Files\DVD X Player 4.1 Professionnel
[25/09/2008|13:50] C:\Program Files\EA GAMES
[23/09/2008|17:26] C:\Program Files\eMule
[25/09/2008|01:54] C:\Program Files\eToro
[27/09/2008|13:02] C:\Program Files\Everest Poker
[22/09/2008|22:24] C:\Program Files\Fichiers communs
[22/09/2008|11:21] C:\Program Files\free-downloads.net
[26/11/2007|21:23] C:\Program Files\Hewlett-Packard
[13/03/2008|22:30] C:\Program Files\InstallShield Installation Information
[19/09/2008|13:12] C:\Program Files\Internet Explorer
[11/02/2008|19:54] C:\Program Files\Java
[21/09/2006|09:40] C:\Program Files\JavaSoft
[18/09/2008|23:39] C:\Program Files\ma-config.com
[19/09/2008|13:13] C:\Program Files\Messenger
[23/09/2008|17:26] C:\Program Files\MessengerPlus! 3
[23/09/2008|17:26] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[18/09/2006|04:04] C:\Program Files\microsoft frontpage
[18/01/2008|13:23] C:\Program Files\Microsoft Office
[16/02/2008|11:26] C:\Program Files\Microsoft SQL Server Compact Edition
[11/02/2008|17:19] C:\Program Files\Movie Maker
[27/09/2008|22:06] C:\Program Files\Mozilla Firefox
[17/01/2008|00:41] C:\Program Files\MSN
[18/09/2006|03:59] C:\Program Files\MSN Gaming Zone
[18/09/2008|19:34] C:\Program Files\MSN Messenger
[18/09/2008|20:04] C:\Program Files\MSN Pictures Displayer
[26/11/2007|16:19] C:\Program Files\MSXML 4.0
[11/02/2008|20:05] C:\Program Files\MSXML 6.0
[20/09/2008|14:24] C:\Program Files\Navilog1
[22/09/2008|20:20] C:\Program Files\Nero
[11/02/2008|17:14] C:\Program Files\NetMeeting
[23/09/2008|17:02] C:\Program Files\NoAdware5.0
[18/09/2006|03:59] C:\Program Files\Online Services
[18/09/2008|15:44] C:\Program Files\OrangeHSS
[11/02/2008|19:23] C:\Program Files\Outlook Express
[23/09/2008|12:39] C:\Program Files\Panicware
[18/09/2008|19:54] C:\Program Files\Proc vc
[22/09/2008|22:25] C:\Program Files\QuickTime
[18/09/2008|23:44] C:\Program Files\Realtek AC97
[18/09/2008|14:47] C:\Program Files\Realtek AC97(2)
[18/09/2008|15:10] C:\Program Files\Securitoo
[22/09/2008|19:56] C:\Program Files\SharkMate
[22/09/2008|19:17] C:\Program Files\Smart Projects
[02/02/2008|00:12] C:\Program Files\SOFTWIN
[27/09/2008|20:52] C:\Program Files\Steam
[29/12/2007|10:51] C:\Program Files\Ulead Systems
[18/09/2006|04:58] C:\Program Files\Uninstall Information
[21/09/2008|22:54] C:\Program Files\VideoLAN
[03/10/2007|22:01] C:\Program Files\WebSubmit Manager
[19/09/2008|11:21] C:\Program Files\Windows Live
[23/09/2008|12:50] C:\Program Files\Windows Live Favorites
[23/09/2008|12:50] C:\Program Files\Windows Live Toolbar
[11/02/2008|19:10] C:\Program Files\Windows Media Connect 2
[18/09/2008|14:51] C:\Program Files\Windows Media Player
[18/01/2008|13:22] C:\Program Files\Windows Messaging
[11/02/2008|17:14] C:\Program Files\Windows NT
[11/02/2008|16:27] C:\Program Files\WindowsUpdate
[23/09/2008|17:26] C:\Program Files\WinRAR
[18/09/2006|04:04] C:\Program Files\xerox
[20/09/2008|12:21] C:\Program Files\Yahoo!
[23/09/2008|17:26] C:\Program Files\Zuma Deluxe
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[26/09/2006|17:51] C:\Program Files\Fichiers communs\Adobe
[22/09/2008|20:38] C:\Program Files\Fichiers communs\Ahead
[22/09/2008|22:24] C:\Program Files\Fichiers communs\Apple
[18/09/2008|15:08] C:\Program Files\Fichiers communs\France Telecom
[26/11/2007|11:02] C:\Program Files\Fichiers communs\Hewlett-Packard
[16/10/2007|10:17] C:\Program Files\Fichiers communs\InstallShield
[18/12/2007|11:10] C:\Program Files\Fichiers communs\Java
[18/01/2008|13:20] C:\Program Files\Fichiers communs\Microsoft Shared
[18/09/2006|04:01] C:\Program Files\Fichiers communs\MSSoap
[18/09/2006|05:18] C:\Program Files\Fichiers communs\ODBC
[18/09/2006|04:01] C:\Program Files\Fichiers communs\Services
[18/09/2008|15:01] C:\Program Files\Fichiers communs\Softwin
[18/09/2006|05:18] C:\Program Files\Fichiers communs\SpeechEngines
[11/02/2008|19:23] C:\Program Files\Fichiers communs\System
[18/09/2008|19:33] C:\Program Files\Fichiers communs\WindowsLiveInstaller
--------------------\\ Process
( 50 Processes )
IEXPLORE.EXE ~ [PID:2280]
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Readme Live Axis Tons
C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Readme Live Axis Tons\proxy move.exe
C:\DOCUME~1\PHILIP~2\Cookies\philippe_rayot@www.adserver5[1].txt
C:\DOCUME~1\PHILIP~2\Cookies\philippe_rayot@advertising[1].txt
C:\DOCUME~1\PHILIP~2\Cookies\philippe_rayot@bigpoint[1].txt
C:\DOCUME~1\PHILIP~2\Cookies\philippe_rayot@fr1.darkorbit.bigpoint[1].txt
C:\DOCUME~1\PHILIP~2\Cookies\philippe_rayot@banner.cotedazurpalace[2].txt
C:\DOCUME~1\PHILIP~2\Cookies\philippe_rayot@cotedazurpalace[2].txt
C:\DOCUME~1\PHILIP~2\Cookies\philippe_rayot@www.cotedazurpalace[1].txt
C:\DOCUME~1\PHILIP~2\Cookies\philippe_rayot@adopt.euroclick[1].txt
C:\DOCUME~1\PHILIP~2\Cookies\philippe_rayot@pacificpoker[2].txt
C:\DOCUME~1\PHILIP~2\Cookies\philippe_rayot@partypoker[2].txt
C:\DOCUME~1\PHILIP~2\Cookies\philippe_rayot@32vegas[2].txt
C:\DOCUME~1\PHILIP~2\Cookies\philippe_rayot@banner.32vegas[2].txt
--------------------\\ Verification du Registre
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AXIS TONS THE MP3"="C:\\Documents and Settings\\All Users.WINDOWS\\Application Data\\Readme Live Axis Tons\\proxy move.exe"
--------------------\\ Verification du fichier Hosts
Fichier Hosts MODIFIE
127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD
127.0.0.1 download.errorsafe.com ## added by CiD
127.0.0.1 download.systemdoctor.com ## added by CiD
127.0.0.1 download.winantispyware.com ## added by CiD
127.0.0.1 download.windrivecleaner.com ## added by CiD
127.0.0.1 download.winfixer.com ## added by CiD
127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 es.winantivirus.com ## added by CiD
127.0.0.1 fr.winantivirus.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 go.winantivirus.com ## added by CiD
127.0.0.1 hk.winantivirus.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 instlog.winantivirus.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 kb.winantivirus.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 secure.winantivirus.com ## added by CiD
127.0.0.1 support.winantivirus.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 ulog.winantivirus.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 utils.winantivirus.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winantivirus.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 [i]ww/iw.drivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.errorprotector.com ## added by CiD
127.0.0.1 [i]ww/iw.errorsafe.com ## added by CiD
127.0.0.1 [i]ww/iw.systemdoctor.com ## added by CiD
127.0.0.1 [i]ww/iw.utils.winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.win-anti-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.win-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispam.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispy.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispyware.com ## added by CiD
127.0.0.1 [i]ww/iw.winantivirus.com ## added by CiD
127.0.0.1 [i]ww/iw.winantiviruspro.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivesafe.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer2006.com ## added by CiD
127.0.0.1 [i]ww/iw.winsoftware.com ## added by CiD
-> 71 [ 70 ## added by CiD ]
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-27 22:10:20
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
C:\DOCUME~1\PHILIP~2\LOCALS~1\APPLIC~1\Microsoft\Windows\GameExplorer\{DFEF49D9-FC95-4301-99B9-2FB91C6ABA06}\PlayTasks\1\Les Sims™ 2 : Boit@Look.lnk 1087 bytes hidden from API
scan completed successfully
hidden processes: 0
hidden files: 1
--------------------\\ Recherche d'autres infections
--------------------\\ Cracks & Keygens ..
[F:4792][D:206]-> C:\DOCUME~1\PHILIP~2\LOCALS~1\Temp
[F:105][D:0]-> C:\DOCUME~1\PHILIP~2\Cookies
[F:39969][D:52]-> C:\DOCUME~1\PHILIP~2\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 27/09/2008|22:16 - Option : [1]
--------------------\\ Fin du rapport a 22:16:27
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : AMD Sempron(tm) 3000+ )
BIOS : Award Modular BIOS v6.00PG
USER : philippe rayot ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 080926-0] 4.8.1229 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total : 76 Go Free : 41 Go
D:\ (CD or DVD)
E:\ (CD or DVD)
F:\ (CD or DVD)
G:\ (CD or DVD)
H:\ (CD or DVD)
"C:\Lop SD" ( MAJ : 19-09-2008|22:20 )
Option : [1] ( 27/09/2008|22:09 )
--------------------\\ Listing des dossiers dans APPLIC~1
[16/10/2007|10:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[26/11/2007|11:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[18/11/2007|13:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[18/11/2007|13:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[22/11/2006|16:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[18/11/2007|13:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[22/09/2008|20:23] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Ahead
[22/09/2008|22:21] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Apple
[22/09/2008|22:24] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Apple Computer
[12/03/2008|10:36] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\DVD X Studios
[13/03/2008|22:29] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Google
[20/09/2008|14:27] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Grisoft
[18/09/2008|23:38] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\ma-config.com
[18/09/2008|19:37] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Microsoft
[18/09/2008|19:54] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Readme Live Axis Tons
[11/02/2008|16:32] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Windows Genuine Advantage
[18/09/2008|19:30] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\WLInstaller
[20/09/2008|12:21] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\yahoo!
[20/09/2008|14:33] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Yahoo! Companion
[01/12/2007|21:30] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[18/02/2008|12:01] C:\DOCUME~1\DEFAUL~1.WIN\APPLIC~1\Microsoft
[18/09/2006|04:03] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[18/09/2008|14:52] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Microsoft
[01/12/2007|21:29] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[17/01/2008|10:06] C:\DOCUME~1\NETWOR~1.AUT\APPLIC~1\Microsoft
[26/09/2006|17:51] C:\DOCUME~1\PHILIP~1\APPLIC~1\Adobe
[12/10/2006|10:01] C:\DOCUME~1\PHILIP~1\APPLIC~1\Ahead
[16/10/2007|10:24] C:\DOCUME~1\PHILIP~1\APPLIC~1\Apple Computer
[21/09/2006|11:02] C:\DOCUME~1\PHILIP~1\APPLIC~1\Brother
[11/09/2007|16:23] C:\DOCUME~1\PHILIP~1\APPLIC~1\DialMessenger
[21/09/2006|10:39] C:\DOCUME~1\PHILIP~1\APPLIC~1\Help
[18/09/2006|04:58] C:\DOCUME~1\PHILIP~1\APPLIC~1\Identities
[21/09/2006|10:49] C:\DOCUME~1\PHILIP~1\APPLIC~1\InterTrust
[15/01/2008|12:07] C:\DOCUME~1\PHILIP~1\APPLIC~1\LimeWire
[07/01/2008|23:59] C:\DOCUME~1\PHILIP~1\APPLIC~1\ma-config.com
[26/09/2006|17:39] C:\DOCUME~1\PHILIP~1\APPLIC~1\Macromedia
[26/11/2007|16:20] C:\DOCUME~1\PHILIP~1\APPLIC~1\Microsoft
[23/01/2008|09:49] C:\DOCUME~1\PHILIP~2\APPLIC~1\Adobe
[22/09/2008|20:32] C:\DOCUME~1\PHILIP~2\APPLIC~1\Ahead
[19/09/2008|20:26] C:\DOCUME~1\PHILIP~2\APPLIC~1\ATI
[18/09/2008|21:39] C:\DOCUME~1\PHILIP~2\APPLIC~1\DAEMON Tools
[22/01/2008|16:11] C:\DOCUME~1\PHILIP~2\APPLIC~1\Help
[21/01/2008|14:39] C:\DOCUME~1\PHILIP~2\APPLIC~1\Identities
[28/01/2008|09:55] C:\DOCUME~1\PHILIP~2\APPLIC~1\InterTrust
[18/09/2008|14:53] C:\DOCUME~1\PHILIP~2\APPLIC~1\LimeWire
[18/09/2008|14:50] C:\DOCUME~1\PHILIP~2\APPLIC~1\ma-config(2).com
[23/01/2008|09:49] C:\DOCUME~1\PHILIP~2\APPLIC~1\Macromedia
[18/09/2008|19:47] C:\DOCUME~1\PHILIP~2\APPLIC~1\Microsoft
[23/01/2008|12:15] C:\DOCUME~1\PHILIP~2\APPLIC~1\Mozilla
[18/09/2008|20:04] C:\DOCUME~1\PHILIP~2\APPLIC~1\MSN Pictures Displayer
[19/09/2008|11:05] C:\DOCUME~1\PHILIP~2\APPLIC~1\Proc vc
[25/09/2008|13:51] C:\DOCUME~1\PHILIP~2\APPLIC~1\SecuROM
[13/02/2008|16:12] C:\DOCUME~1\PHILIP~2\APPLIC~1\Sun
[23/01/2008|12:15] C:\DOCUME~1\PHILIP~2\APPLIC~1\Talkback
[21/09/2008|22:56] C:\DOCUME~1\PHILIP~2\APPLIC~1\vlc
[20/09/2008|12:21] C:\DOCUME~1\PHILIP~2\APPLIC~1\Yahoo!
[17/01/2008|13:08] C:\DOCUME~1\PROPRI~1\APPLIC~1\Adobe
[11/02/2008|16:14] C:\DOCUME~1\PROPRI~1\APPLIC~1\Bitdefender
[18/01/2008|13:24] C:\DOCUME~1\PROPRI~1\APPLIC~1\Help
[17/01/2008|10:06] C:\DOCUME~1\PROPRI~1\APPLIC~1\Identities
[17/01/2008|14:43] C:\DOCUME~1\PROPRI~1\APPLIC~1\LimeWire
[17/01/2008|10:24] C:\DOCUME~1\PROPRI~1\APPLIC~1\Macromedia
[17/01/2008|12:30] C:\DOCUME~1\PROPRI~1\APPLIC~1\Microsoft
[17/01/2008|13:05] C:\DOCUME~1\PROPRI~1\APPLIC~1\Mozilla
[17/01/2008|13:05] C:\DOCUME~1\PROPRI~1\APPLIC~1\Talkback
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[23/09/2008 16:25][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[27/09/2008 12:54][--ah-----] C:\WINDOWS\tasks\SA.DAT
[28/08/2001 14:00][---------] C:\WINDOWS\tasks\desktop.ini
--------------------\\ Listing des dossiers dans C:\Program Files
[21/09/2006|10:49] C:\Program Files\Adobe
[18/09/2006|05:14] C:\Program Files\Ahead
[25/09/2008|01:32] C:\Program Files\AIDA32 - Personal System Information
[21/09/2006|09:40] C:\Program Files\Alcatel
[22/09/2008|11:21] C:\Program Files\Alcohol Soft
[18/09/2008|18:58] C:\Program Files\Alwil Software
[22/09/2008|22:21] C:\Program Files\Apple Software Update
[19/09/2008|20:22] C:\Program Files\ATI Technologies
[22/09/2008|22:25] C:\Program Files\Bonjour
[27/09/2008|12:56] C:\Program Files\BPS Remover
[21/09/2006|10:48] C:\Program Files\Brother
[28/01/2008|10:03] C:\Program Files\Brownie
[29/12/2007|14:45] C:\Program Files\Canon
[18/09/2008|19:23] C:\Program Files\Common Files
[18/09/2006|04:00] C:\Program Files\ComPlus Applications
[17/11/2007|15:25] C:\Program Files\Controle Parental
[18/09/2008|22:11] C:\Program Files\DAEMON Tools Lite
[18/09/2008|22:11] C:\Program Files\DAEMON Tools Toolbar
[11/09/2007|16:23] C:\Program Files\DialMessenger
[23/09/2008|17:26] C:\Program Files\DVD X Player 4.1 Professionnel
[25/09/2008|13:50] C:\Program Files\EA GAMES
[23/09/2008|17:26] C:\Program Files\eMule
[25/09/2008|01:54] C:\Program Files\eToro
[27/09/2008|13:02] C:\Program Files\Everest Poker
[22/09/2008|22:24] C:\Program Files\Fichiers communs
[22/09/2008|11:21] C:\Program Files\free-downloads.net
[26/11/2007|21:23] C:\Program Files\Hewlett-Packard
[13/03/2008|22:30] C:\Program Files\InstallShield Installation Information
[19/09/2008|13:12] C:\Program Files\Internet Explorer
[11/02/2008|19:54] C:\Program Files\Java
[21/09/2006|09:40] C:\Program Files\JavaSoft
[18/09/2008|23:39] C:\Program Files\ma-config.com
[19/09/2008|13:13] C:\Program Files\Messenger
[23/09/2008|17:26] C:\Program Files\MessengerPlus! 3
[23/09/2008|17:26] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[18/09/2006|04:04] C:\Program Files\microsoft frontpage
[18/01/2008|13:23] C:\Program Files\Microsoft Office
[16/02/2008|11:26] C:\Program Files\Microsoft SQL Server Compact Edition
[11/02/2008|17:19] C:\Program Files\Movie Maker
[27/09/2008|22:06] C:\Program Files\Mozilla Firefox
[17/01/2008|00:41] C:\Program Files\MSN
[18/09/2006|03:59] C:\Program Files\MSN Gaming Zone
[18/09/2008|19:34] C:\Program Files\MSN Messenger
[18/09/2008|20:04] C:\Program Files\MSN Pictures Displayer
[26/11/2007|16:19] C:\Program Files\MSXML 4.0
[11/02/2008|20:05] C:\Program Files\MSXML 6.0
[20/09/2008|14:24] C:\Program Files\Navilog1
[22/09/2008|20:20] C:\Program Files\Nero
[11/02/2008|17:14] C:\Program Files\NetMeeting
[23/09/2008|17:02] C:\Program Files\NoAdware5.0
[18/09/2006|03:59] C:\Program Files\Online Services
[18/09/2008|15:44] C:\Program Files\OrangeHSS
[11/02/2008|19:23] C:\Program Files\Outlook Express
[23/09/2008|12:39] C:\Program Files\Panicware
[18/09/2008|19:54] C:\Program Files\Proc vc
[22/09/2008|22:25] C:\Program Files\QuickTime
[18/09/2008|23:44] C:\Program Files\Realtek AC97
[18/09/2008|14:47] C:\Program Files\Realtek AC97(2)
[18/09/2008|15:10] C:\Program Files\Securitoo
[22/09/2008|19:56] C:\Program Files\SharkMate
[22/09/2008|19:17] C:\Program Files\Smart Projects
[02/02/2008|00:12] C:\Program Files\SOFTWIN
[27/09/2008|20:52] C:\Program Files\Steam
[29/12/2007|10:51] C:\Program Files\Ulead Systems
[18/09/2006|04:58] C:\Program Files\Uninstall Information
[21/09/2008|22:54] C:\Program Files\VideoLAN
[03/10/2007|22:01] C:\Program Files\WebSubmit Manager
[19/09/2008|11:21] C:\Program Files\Windows Live
[23/09/2008|12:50] C:\Program Files\Windows Live Favorites
[23/09/2008|12:50] C:\Program Files\Windows Live Toolbar
[11/02/2008|19:10] C:\Program Files\Windows Media Connect 2
[18/09/2008|14:51] C:\Program Files\Windows Media Player
[18/01/2008|13:22] C:\Program Files\Windows Messaging
[11/02/2008|17:14] C:\Program Files\Windows NT
[11/02/2008|16:27] C:\Program Files\WindowsUpdate
[23/09/2008|17:26] C:\Program Files\WinRAR
[18/09/2006|04:04] C:\Program Files\xerox
[20/09/2008|12:21] C:\Program Files\Yahoo!
[23/09/2008|17:26] C:\Program Files\Zuma Deluxe
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[26/09/2006|17:51] C:\Program Files\Fichiers communs\Adobe
[22/09/2008|20:38] C:\Program Files\Fichiers communs\Ahead
[22/09/2008|22:24] C:\Program Files\Fichiers communs\Apple
[18/09/2008|15:08] C:\Program Files\Fichiers communs\France Telecom
[26/11/2007|11:02] C:\Program Files\Fichiers communs\Hewlett-Packard
[16/10/2007|10:17] C:\Program Files\Fichiers communs\InstallShield
[18/12/2007|11:10] C:\Program Files\Fichiers communs\Java
[18/01/2008|13:20] C:\Program Files\Fichiers communs\Microsoft Shared
[18/09/2006|04:01] C:\Program Files\Fichiers communs\MSSoap
[18/09/2006|05:18] C:\Program Files\Fichiers communs\ODBC
[18/09/2006|04:01] C:\Program Files\Fichiers communs\Services
[18/09/2008|15:01] C:\Program Files\Fichiers communs\Softwin
[18/09/2006|05:18] C:\Program Files\Fichiers communs\SpeechEngines
[11/02/2008|19:23] C:\Program Files\Fichiers communs\System
[18/09/2008|19:33] C:\Program Files\Fichiers communs\WindowsLiveInstaller
--------------------\\ Process
( 50 Processes )
IEXPLORE.EXE ~ [PID:2280]
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Readme Live Axis Tons
C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Readme Live Axis Tons\proxy move.exe
C:\DOCUME~1\PHILIP~2\Cookies\philippe_rayot@www.adserver5[1].txt
C:\DOCUME~1\PHILIP~2\Cookies\philippe_rayot@advertising[1].txt
C:\DOCUME~1\PHILIP~2\Cookies\philippe_rayot@bigpoint[1].txt
C:\DOCUME~1\PHILIP~2\Cookies\philippe_rayot@fr1.darkorbit.bigpoint[1].txt
C:\DOCUME~1\PHILIP~2\Cookies\philippe_rayot@banner.cotedazurpalace[2].txt
C:\DOCUME~1\PHILIP~2\Cookies\philippe_rayot@cotedazurpalace[2].txt
C:\DOCUME~1\PHILIP~2\Cookies\philippe_rayot@www.cotedazurpalace[1].txt
C:\DOCUME~1\PHILIP~2\Cookies\philippe_rayot@adopt.euroclick[1].txt
C:\DOCUME~1\PHILIP~2\Cookies\philippe_rayot@pacificpoker[2].txt
C:\DOCUME~1\PHILIP~2\Cookies\philippe_rayot@partypoker[2].txt
C:\DOCUME~1\PHILIP~2\Cookies\philippe_rayot@32vegas[2].txt
C:\DOCUME~1\PHILIP~2\Cookies\philippe_rayot@banner.32vegas[2].txt
--------------------\\ Verification du Registre
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AXIS TONS THE MP3"="C:\\Documents and Settings\\All Users.WINDOWS\\Application Data\\Readme Live Axis Tons\\proxy move.exe"
--------------------\\ Verification du fichier Hosts
Fichier Hosts MODIFIE
127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD
127.0.0.1 download.errorsafe.com ## added by CiD
127.0.0.1 download.systemdoctor.com ## added by CiD
127.0.0.1 download.winantispyware.com ## added by CiD
127.0.0.1 download.windrivecleaner.com ## added by CiD
127.0.0.1 download.winfixer.com ## added by CiD
127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 es.winantivirus.com ## added by CiD
127.0.0.1 fr.winantivirus.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 go.winantivirus.com ## added by CiD
127.0.0.1 hk.winantivirus.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 instlog.winantivirus.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 kb.winantivirus.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 secure.winantivirus.com ## added by CiD
127.0.0.1 support.winantivirus.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 ulog.winantivirus.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 utils.winantivirus.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winantivirus.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 [i]ww/iw.drivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.errorprotector.com ## added by CiD
127.0.0.1 [i]ww/iw.errorsafe.com ## added by CiD
127.0.0.1 [i]ww/iw.systemdoctor.com ## added by CiD
127.0.0.1 [i]ww/iw.utils.winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.win-anti-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.win-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispam.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispy.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispyware.com ## added by CiD
127.0.0.1 [i]ww/iw.winantivirus.com ## added by CiD
127.0.0.1 [i]ww/iw.winantiviruspro.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivesafe.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer2006.com ## added by CiD
127.0.0.1 [i]ww/iw.winsoftware.com ## added by CiD
-> 71 [ 70 ## added by CiD ]
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-27 22:10:20
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
C:\DOCUME~1\PHILIP~2\LOCALS~1\APPLIC~1\Microsoft\Windows\GameExplorer\{DFEF49D9-FC95-4301-99B9-2FB91C6ABA06}\PlayTasks\1\Les Sims™ 2 : Boit@Look.lnk 1087 bytes hidden from API
scan completed successfully
hidden processes: 0
hidden files: 1
--------------------\\ Recherche d'autres infections
--------------------\\ Cracks & Keygens ..
[F:4792][D:206]-> C:\DOCUME~1\PHILIP~2\LOCALS~1\Temp
[F:105][D:0]-> C:\DOCUME~1\PHILIP~2\Cookies
[F:39969][D:52]-> C:\DOCUME~1\PHILIP~2\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 27/09/2008|22:16 - Option : [1]
--------------------\\ Fin du rapport a 22:16:27
voila le 2eme raport
--------------------\\ Lop S&D 4.2.4-4 XP/Vista
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : AMD Sempron(tm) 3000+ )
BIOS : Award Modular BIOS v6.00PG
USER : philippe rayot ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 080926-0] 4.8.1229 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total : 76 Go Free : 41 Go
D:\ (CD or DVD)
E:\ (CD or DVD)
F:\ (CD or DVD)
G:\ (CD or DVD)
H:\ (CD or DVD)
"C:\Lop SD" ( MAJ : 19-09-2008|22:20 )
Option : [2] ( 27/09/2008|22:58 )
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing des dossiers dans APPLIC~1
[16/10/2007|10:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[26/11/2007|11:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[18/11/2007|13:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[18/11/2007|13:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[22/11/2006|16:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[18/11/2007|13:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[22/09/2008|20:23] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Ahead
[22/09/2008|22:21] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Apple
[22/09/2008|22:24] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Apple Computer
[12/03/2008|10:36] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\DVD X Studios
[13/03/2008|22:29] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Google
[20/09/2008|14:27] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Grisoft
[18/09/2008|23:38] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\ma-config.com
[18/09/2008|19:37] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Microsoft
[11/02/2008|16:32] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Windows Genuine Advantage
[18/09/2008|19:30] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\WLInstaller
[20/09/2008|12:21] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\yahoo!
[20/09/2008|14:33] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Yahoo! Companion
[01/12/2007|21:30] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[18/02/2008|12:01] C:\DOCUME~1\DEFAUL~1.WIN\APPLIC~1\Microsoft
[18/09/2006|04:03] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[18/09/2008|14:52] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Microsoft
[01/12/2007|21:29] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[17/01/2008|10:06] C:\DOCUME~1\NETWOR~1.AUT\APPLIC~1\Microsoft
[26/09/2006|17:51] C:\DOCUME~1\PHILIP~1\APPLIC~1\Adobe
[12/10/2006|10:01] C:\DOCUME~1\PHILIP~1\APPLIC~1\Ahead
[16/10/2007|10:24] C:\DOCUME~1\PHILIP~1\APPLIC~1\Apple Computer
[21/09/2006|11:02] C:\DOCUME~1\PHILIP~1\APPLIC~1\Brother
[11/09/2007|16:23] C:\DOCUME~1\PHILIP~1\APPLIC~1\DialMessenger
[21/09/2006|10:39] C:\DOCUME~1\PHILIP~1\APPLIC~1\Help
[18/09/2006|04:58] C:\DOCUME~1\PHILIP~1\APPLIC~1\Identities
[21/09/2006|10:49] C:\DOCUME~1\PHILIP~1\APPLIC~1\InterTrust
[15/01/2008|12:07] C:\DOCUME~1\PHILIP~1\APPLIC~1\LimeWire
[07/01/2008|23:59] C:\DOCUME~1\PHILIP~1\APPLIC~1\ma-config.com
[26/09/2006|17:39] C:\DOCUME~1\PHILIP~1\APPLIC~1\Macromedia
[26/11/2007|16:20] C:\DOCUME~1\PHILIP~1\APPLIC~1\Microsoft
[23/01/2008|09:49] C:\DOCUME~1\PHILIP~2\APPLIC~1\Adobe
[22/09/2008|20:32] C:\DOCUME~1\PHILIP~2\APPLIC~1\Ahead
[19/09/2008|20:26] C:\DOCUME~1\PHILIP~2\APPLIC~1\ATI
[18/09/2008|21:39] C:\DOCUME~1\PHILIP~2\APPLIC~1\DAEMON Tools
[22/01/2008|16:11] C:\DOCUME~1\PHILIP~2\APPLIC~1\Help
[21/01/2008|14:39] C:\DOCUME~1\PHILIP~2\APPLIC~1\Identities
[28/01/2008|09:55] C:\DOCUME~1\PHILIP~2\APPLIC~1\InterTrust
[18/09/2008|14:53] C:\DOCUME~1\PHILIP~2\APPLIC~1\LimeWire
[18/09/2008|14:50] C:\DOCUME~1\PHILIP~2\APPLIC~1\ma-config(2).com
[23/01/2008|09:49] C:\DOCUME~1\PHILIP~2\APPLIC~1\Macromedia
[18/09/2008|19:47] C:\DOCUME~1\PHILIP~2\APPLIC~1\Microsoft
[23/01/2008|12:15] C:\DOCUME~1\PHILIP~2\APPLIC~1\Mozilla
[18/09/2008|20:04] C:\DOCUME~1\PHILIP~2\APPLIC~1\MSN Pictures Displayer
[19/09/2008|11:05] C:\DOCUME~1\PHILIP~2\APPLIC~1\Proc vc
[25/09/2008|13:51] C:\DOCUME~1\PHILIP~2\APPLIC~1\SecuROM
[13/02/2008|16:12] C:\DOCUME~1\PHILIP~2\APPLIC~1\Sun
[23/01/2008|12:15] C:\DOCUME~1\PHILIP~2\APPLIC~1\Talkback
[21/09/2008|22:56] C:\DOCUME~1\PHILIP~2\APPLIC~1\vlc
[20/09/2008|12:21] C:\DOCUME~1\PHILIP~2\APPLIC~1\Yahoo!
[17/01/2008|13:08] C:\DOCUME~1\PROPRI~1\APPLIC~1\Adobe
[11/02/2008|16:14] C:\DOCUME~1\PROPRI~1\APPLIC~1\Bitdefender
[18/01/2008|13:24] C:\DOCUME~1\PROPRI~1\APPLIC~1\Help
[17/01/2008|10:06] C:\DOCUME~1\PROPRI~1\APPLIC~1\Identities
[17/01/2008|14:43] C:\DOCUME~1\PROPRI~1\APPLIC~1\LimeWire
[17/01/2008|10:24] C:\DOCUME~1\PROPRI~1\APPLIC~1\Macromedia
[17/01/2008|12:30] C:\DOCUME~1\PROPRI~1\APPLIC~1\Microsoft
[17/01/2008|13:05] C:\DOCUME~1\PROPRI~1\APPLIC~1\Mozilla
[17/01/2008|13:05] C:\DOCUME~1\PROPRI~1\APPLIC~1\Talkback
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[23/09/2008 16:25][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[27/09/2008 12:54][--ah-----] C:\WINDOWS\tasks\SA.DAT
[28/08/2001 14:00][---------] C:\WINDOWS\tasks\desktop.ini
--------------------\\ Listing des dossiers dans C:\Program Files
[21/09/2006|10:49] C:\Program Files\Adobe
[18/09/2006|05:14] C:\Program Files\Ahead
[25/09/2008|01:32] C:\Program Files\AIDA32 - Personal System Information
[21/09/2006|09:40] C:\Program Files\Alcatel
[22/09/2008|11:21] C:\Program Files\Alcohol Soft
[18/09/2008|18:58] C:\Program Files\Alwil Software
[22/09/2008|22:21] C:\Program Files\Apple Software Update
[19/09/2008|20:22] C:\Program Files\ATI Technologies
[22/09/2008|22:25] C:\Program Files\Bonjour
[27/09/2008|12:56] C:\Program Files\BPS Remover
[21/09/2006|10:48] C:\Program Files\Brother
[28/01/2008|10:03] C:\Program Files\Brownie
[29/12/2007|14:45] C:\Program Files\Canon
[18/09/2008|19:23] C:\Program Files\Common Files
[18/09/2006|04:00] C:\Program Files\ComPlus Applications
[17/11/2007|15:25] C:\Program Files\Controle Parental
[18/09/2008|22:11] C:\Program Files\DAEMON Tools Lite
[18/09/2008|22:11] C:\Program Files\DAEMON Tools Toolbar
[11/09/2007|16:23] C:\Program Files\DialMessenger
[23/09/2008|17:26] C:\Program Files\DVD X Player 4.1 Professionnel
[25/09/2008|13:50] C:\Program Files\EA GAMES
[23/09/2008|17:26] C:\Program Files\eMule
[25/09/2008|01:54] C:\Program Files\eToro
[27/09/2008|13:02] C:\Program Files\Everest Poker
[22/09/2008|22:24] C:\Program Files\Fichiers communs
[22/09/2008|11:21] C:\Program Files\free-downloads.net
[26/11/2007|21:23] C:\Program Files\Hewlett-Packard
[13/03/2008|22:30] C:\Program Files\InstallShield Installation Information
[19/09/2008|13:12] C:\Program Files\Internet Explorer
[11/02/2008|19:54] C:\Program Files\Java
[21/09/2006|09:40] C:\Program Files\JavaSoft
[18/09/2008|23:39] C:\Program Files\ma-config.com
[19/09/2008|13:13] C:\Program Files\Messenger
[23/09/2008|17:26] C:\Program Files\MessengerPlus! 3
[23/09/2008|17:26] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[18/09/2006|04:04] C:\Program Files\microsoft frontpage
[18/01/2008|13:23] C:\Program Files\Microsoft Office
[16/02/2008|11:26] C:\Program Files\Microsoft SQL Server Compact Edition
[11/02/2008|17:19] C:\Program Files\Movie Maker
[27/09/2008|22:06] C:\Program Files\Mozilla Firefox
[17/01/2008|00:41] C:\Program Files\MSN
[18/09/2006|03:59] C:\Program Files\MSN Gaming Zone
[18/09/2008|19:34] C:\Program Files\MSN Messenger
[18/09/2008|20:04] C:\Program Files\MSN Pictures Displayer
[26/11/2007|16:19] C:\Program Files\MSXML 4.0
[11/02/2008|20:05] C:\Program Files\MSXML 6.0
[20/09/2008|14:24] C:\Program Files\Navilog1
[22/09/2008|20:20] C:\Program Files\Nero
[11/02/2008|17:14] C:\Program Files\NetMeeting
[23/09/2008|17:02] C:\Program Files\NoAdware5.0
[18/09/2006|03:59] C:\Program Files\Online Services
[18/09/2008|15:44] C:\Program Files\OrangeHSS
[11/02/2008|19:23] C:\Program Files\Outlook Express
[23/09/2008|12:39] C:\Program Files\Panicware
[18/09/2008|19:54] C:\Program Files\Proc vc
[22/09/2008|22:25] C:\Program Files\QuickTime
[18/09/2008|23:44] C:\Program Files\Realtek AC97
[18/09/2008|14:47] C:\Program Files\Realtek AC97(2)
[18/09/2008|15:10] C:\Program Files\Securitoo
[22/09/2008|19:56] C:\Program Files\SharkMate
[22/09/2008|19:17] C:\Program Files\Smart Projects
[02/02/2008|00:12] C:\Program Files\SOFTWIN
[27/09/2008|20:52] C:\Program Files\Steam
[29/12/2007|10:51] C:\Program Files\Ulead Systems
[18/09/2006|04:58] C:\Program Files\Uninstall Information
[21/09/2008|22:54] C:\Program Files\VideoLAN
[03/10/2007|22:01] C:\Program Files\WebSubmit Manager
[19/09/2008|11:21] C:\Program Files\Windows Live
[23/09/2008|12:50] C:\Program Files\Windows Live Favorites
[23/09/2008|12:50] C:\Program Files\Windows Live Toolbar
[11/02/2008|19:10] C:\Program Files\Windows Media Connect 2
[18/09/2008|14:51] C:\Program Files\Windows Media Player
[18/01/2008|13:22] C:\Program Files\Windows Messaging
[11/02/2008|17:14] C:\Program Files\Windows NT
[11/02/2008|16:27] C:\Program Files\WindowsUpdate
[23/09/2008|17:26] C:\Program Files\WinRAR
[18/09/2006|04:04] C:\Program Files\xerox
[20/09/2008|12:21] C:\Program Files\Yahoo!
[23/09/2008|17:26] C:\Program Files\Zuma Deluxe
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[26/09/2006|17:51] C:\Program Files\Fichiers communs\Adobe
[22/09/2008|20:38] C:\Program Files\Fichiers communs\Ahead
[22/09/2008|22:24] C:\Program Files\Fichiers communs\Apple
[18/09/2008|15:08] C:\Program Files\Fichiers communs\France Telecom
[26/11/2007|11:02] C:\Program Files\Fichiers communs\Hewlett-Packard
[16/10/2007|10:17] C:\Program Files\Fichiers communs\InstallShield
[18/12/2007|11:10] C:\Program Files\Fichiers communs\Java
[18/01/2008|13:20] C:\Program Files\Fichiers communs\Microsoft Shared
[18/09/2006|04:01] C:\Program Files\Fichiers communs\MSSoap
[18/09/2006|05:18] C:\Program Files\Fichiers communs\ODBC
[18/09/2006|04:01] C:\Program Files\Fichiers communs\Services
[18/09/2008|15:01] C:\Program Files\Fichiers communs\Softwin
[18/09/2006|05:18] C:\Program Files\Fichiers communs\SpeechEngines
[11/02/2008|19:23] C:\Program Files\Fichiers communs\System
[18/09/2008|19:33] C:\Program Files\Fichiers communs\WindowsLiveInstaller
--------------------\\ Process
( 47 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-27 23:00:28
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
C:\DOCUME~1\PHILIP~2\LOCALS~1\APPLIC~1\Microsoft\Windows\GameExplorer\{DFEF49D9-FC95-4301-99B9-2FB91C6ABA06}\PlayTasks\1\Les Sims™ 2 : Boit@Look.lnk 1087 bytes hidden from API
scan completed successfully
hidden processes: 0
hidden files: 1
--------------------\\ Recherche d'autres infections
--------------------\\ Cracks & Keygens ..
[F:4792][D:206]-> C:\DOCUME~1\PHILIP~2\LOCALS~1\Temp
[F:93][D:0]-> C:\DOCUME~1\PHILIP~2\Cookies
[F:39969][D:52]-> C:\DOCUME~1\PHILIP~2\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 27/09/2008|22:16 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 27/09/2008|22:42 - Option : [1]
3 - "C:\Lop SD\LopR_3.txt" - 27/09/2008|22:48 - Option : [2]
4 - "C:\Lop SD\LopR_4.txt" - 27/09/2008|23:04 - Option : [2]
--------------------\\ Fin du rapport a 23:04:08
--------------------\\ Lop S&D 4.2.4-4 XP/Vista
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : AMD Sempron(tm) 3000+ )
BIOS : Award Modular BIOS v6.00PG
USER : philippe rayot ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 080926-0] 4.8.1229 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total : 76 Go Free : 41 Go
D:\ (CD or DVD)
E:\ (CD or DVD)
F:\ (CD or DVD)
G:\ (CD or DVD)
H:\ (CD or DVD)
"C:\Lop SD" ( MAJ : 19-09-2008|22:20 )
Option : [2] ( 27/09/2008|22:58 )
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing des dossiers dans APPLIC~1
[16/10/2007|10:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[26/11/2007|11:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[18/11/2007|13:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[18/11/2007|13:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[22/11/2006|16:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[18/11/2007|13:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[22/09/2008|20:23] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Ahead
[22/09/2008|22:21] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Apple
[22/09/2008|22:24] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Apple Computer
[12/03/2008|10:36] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\DVD X Studios
[13/03/2008|22:29] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Google
[20/09/2008|14:27] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Grisoft
[18/09/2008|23:38] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\ma-config.com
[18/09/2008|19:37] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Microsoft
[11/02/2008|16:32] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Windows Genuine Advantage
[18/09/2008|19:30] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\WLInstaller
[20/09/2008|12:21] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\yahoo!
[20/09/2008|14:33] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Yahoo! Companion
[01/12/2007|21:30] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[18/02/2008|12:01] C:\DOCUME~1\DEFAUL~1.WIN\APPLIC~1\Microsoft
[18/09/2006|04:03] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[18/09/2008|14:52] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Microsoft
[01/12/2007|21:29] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[17/01/2008|10:06] C:\DOCUME~1\NETWOR~1.AUT\APPLIC~1\Microsoft
[26/09/2006|17:51] C:\DOCUME~1\PHILIP~1\APPLIC~1\Adobe
[12/10/2006|10:01] C:\DOCUME~1\PHILIP~1\APPLIC~1\Ahead
[16/10/2007|10:24] C:\DOCUME~1\PHILIP~1\APPLIC~1\Apple Computer
[21/09/2006|11:02] C:\DOCUME~1\PHILIP~1\APPLIC~1\Brother
[11/09/2007|16:23] C:\DOCUME~1\PHILIP~1\APPLIC~1\DialMessenger
[21/09/2006|10:39] C:\DOCUME~1\PHILIP~1\APPLIC~1\Help
[18/09/2006|04:58] C:\DOCUME~1\PHILIP~1\APPLIC~1\Identities
[21/09/2006|10:49] C:\DOCUME~1\PHILIP~1\APPLIC~1\InterTrust
[15/01/2008|12:07] C:\DOCUME~1\PHILIP~1\APPLIC~1\LimeWire
[07/01/2008|23:59] C:\DOCUME~1\PHILIP~1\APPLIC~1\ma-config.com
[26/09/2006|17:39] C:\DOCUME~1\PHILIP~1\APPLIC~1\Macromedia
[26/11/2007|16:20] C:\DOCUME~1\PHILIP~1\APPLIC~1\Microsoft
[23/01/2008|09:49] C:\DOCUME~1\PHILIP~2\APPLIC~1\Adobe
[22/09/2008|20:32] C:\DOCUME~1\PHILIP~2\APPLIC~1\Ahead
[19/09/2008|20:26] C:\DOCUME~1\PHILIP~2\APPLIC~1\ATI
[18/09/2008|21:39] C:\DOCUME~1\PHILIP~2\APPLIC~1\DAEMON Tools
[22/01/2008|16:11] C:\DOCUME~1\PHILIP~2\APPLIC~1\Help
[21/01/2008|14:39] C:\DOCUME~1\PHILIP~2\APPLIC~1\Identities
[28/01/2008|09:55] C:\DOCUME~1\PHILIP~2\APPLIC~1\InterTrust
[18/09/2008|14:53] C:\DOCUME~1\PHILIP~2\APPLIC~1\LimeWire
[18/09/2008|14:50] C:\DOCUME~1\PHILIP~2\APPLIC~1\ma-config(2).com
[23/01/2008|09:49] C:\DOCUME~1\PHILIP~2\APPLIC~1\Macromedia
[18/09/2008|19:47] C:\DOCUME~1\PHILIP~2\APPLIC~1\Microsoft
[23/01/2008|12:15] C:\DOCUME~1\PHILIP~2\APPLIC~1\Mozilla
[18/09/2008|20:04] C:\DOCUME~1\PHILIP~2\APPLIC~1\MSN Pictures Displayer
[19/09/2008|11:05] C:\DOCUME~1\PHILIP~2\APPLIC~1\Proc vc
[25/09/2008|13:51] C:\DOCUME~1\PHILIP~2\APPLIC~1\SecuROM
[13/02/2008|16:12] C:\DOCUME~1\PHILIP~2\APPLIC~1\Sun
[23/01/2008|12:15] C:\DOCUME~1\PHILIP~2\APPLIC~1\Talkback
[21/09/2008|22:56] C:\DOCUME~1\PHILIP~2\APPLIC~1\vlc
[20/09/2008|12:21] C:\DOCUME~1\PHILIP~2\APPLIC~1\Yahoo!
[17/01/2008|13:08] C:\DOCUME~1\PROPRI~1\APPLIC~1\Adobe
[11/02/2008|16:14] C:\DOCUME~1\PROPRI~1\APPLIC~1\Bitdefender
[18/01/2008|13:24] C:\DOCUME~1\PROPRI~1\APPLIC~1\Help
[17/01/2008|10:06] C:\DOCUME~1\PROPRI~1\APPLIC~1\Identities
[17/01/2008|14:43] C:\DOCUME~1\PROPRI~1\APPLIC~1\LimeWire
[17/01/2008|10:24] C:\DOCUME~1\PROPRI~1\APPLIC~1\Macromedia
[17/01/2008|12:30] C:\DOCUME~1\PROPRI~1\APPLIC~1\Microsoft
[17/01/2008|13:05] C:\DOCUME~1\PROPRI~1\APPLIC~1\Mozilla
[17/01/2008|13:05] C:\DOCUME~1\PROPRI~1\APPLIC~1\Talkback
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[23/09/2008 16:25][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[27/09/2008 12:54][--ah-----] C:\WINDOWS\tasks\SA.DAT
[28/08/2001 14:00][---------] C:\WINDOWS\tasks\desktop.ini
--------------------\\ Listing des dossiers dans C:\Program Files
[21/09/2006|10:49] C:\Program Files\Adobe
[18/09/2006|05:14] C:\Program Files\Ahead
[25/09/2008|01:32] C:\Program Files\AIDA32 - Personal System Information
[21/09/2006|09:40] C:\Program Files\Alcatel
[22/09/2008|11:21] C:\Program Files\Alcohol Soft
[18/09/2008|18:58] C:\Program Files\Alwil Software
[22/09/2008|22:21] C:\Program Files\Apple Software Update
[19/09/2008|20:22] C:\Program Files\ATI Technologies
[22/09/2008|22:25] C:\Program Files\Bonjour
[27/09/2008|12:56] C:\Program Files\BPS Remover
[21/09/2006|10:48] C:\Program Files\Brother
[28/01/2008|10:03] C:\Program Files\Brownie
[29/12/2007|14:45] C:\Program Files\Canon
[18/09/2008|19:23] C:\Program Files\Common Files
[18/09/2006|04:00] C:\Program Files\ComPlus Applications
[17/11/2007|15:25] C:\Program Files\Controle Parental
[18/09/2008|22:11] C:\Program Files\DAEMON Tools Lite
[18/09/2008|22:11] C:\Program Files\DAEMON Tools Toolbar
[11/09/2007|16:23] C:\Program Files\DialMessenger
[23/09/2008|17:26] C:\Program Files\DVD X Player 4.1 Professionnel
[25/09/2008|13:50] C:\Program Files\EA GAMES
[23/09/2008|17:26] C:\Program Files\eMule
[25/09/2008|01:54] C:\Program Files\eToro
[27/09/2008|13:02] C:\Program Files\Everest Poker
[22/09/2008|22:24] C:\Program Files\Fichiers communs
[22/09/2008|11:21] C:\Program Files\free-downloads.net
[26/11/2007|21:23] C:\Program Files\Hewlett-Packard
[13/03/2008|22:30] C:\Program Files\InstallShield Installation Information
[19/09/2008|13:12] C:\Program Files\Internet Explorer
[11/02/2008|19:54] C:\Program Files\Java
[21/09/2006|09:40] C:\Program Files\JavaSoft
[18/09/2008|23:39] C:\Program Files\ma-config.com
[19/09/2008|13:13] C:\Program Files\Messenger
[23/09/2008|17:26] C:\Program Files\MessengerPlus! 3
[23/09/2008|17:26] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[18/09/2006|04:04] C:\Program Files\microsoft frontpage
[18/01/2008|13:23] C:\Program Files\Microsoft Office
[16/02/2008|11:26] C:\Program Files\Microsoft SQL Server Compact Edition
[11/02/2008|17:19] C:\Program Files\Movie Maker
[27/09/2008|22:06] C:\Program Files\Mozilla Firefox
[17/01/2008|00:41] C:\Program Files\MSN
[18/09/2006|03:59] C:\Program Files\MSN Gaming Zone
[18/09/2008|19:34] C:\Program Files\MSN Messenger
[18/09/2008|20:04] C:\Program Files\MSN Pictures Displayer
[26/11/2007|16:19] C:\Program Files\MSXML 4.0
[11/02/2008|20:05] C:\Program Files\MSXML 6.0
[20/09/2008|14:24] C:\Program Files\Navilog1
[22/09/2008|20:20] C:\Program Files\Nero
[11/02/2008|17:14] C:\Program Files\NetMeeting
[23/09/2008|17:02] C:\Program Files\NoAdware5.0
[18/09/2006|03:59] C:\Program Files\Online Services
[18/09/2008|15:44] C:\Program Files\OrangeHSS
[11/02/2008|19:23] C:\Program Files\Outlook Express
[23/09/2008|12:39] C:\Program Files\Panicware
[18/09/2008|19:54] C:\Program Files\Proc vc
[22/09/2008|22:25] C:\Program Files\QuickTime
[18/09/2008|23:44] C:\Program Files\Realtek AC97
[18/09/2008|14:47] C:\Program Files\Realtek AC97(2)
[18/09/2008|15:10] C:\Program Files\Securitoo
[22/09/2008|19:56] C:\Program Files\SharkMate
[22/09/2008|19:17] C:\Program Files\Smart Projects
[02/02/2008|00:12] C:\Program Files\SOFTWIN
[27/09/2008|20:52] C:\Program Files\Steam
[29/12/2007|10:51] C:\Program Files\Ulead Systems
[18/09/2006|04:58] C:\Program Files\Uninstall Information
[21/09/2008|22:54] C:\Program Files\VideoLAN
[03/10/2007|22:01] C:\Program Files\WebSubmit Manager
[19/09/2008|11:21] C:\Program Files\Windows Live
[23/09/2008|12:50] C:\Program Files\Windows Live Favorites
[23/09/2008|12:50] C:\Program Files\Windows Live Toolbar
[11/02/2008|19:10] C:\Program Files\Windows Media Connect 2
[18/09/2008|14:51] C:\Program Files\Windows Media Player
[18/01/2008|13:22] C:\Program Files\Windows Messaging
[11/02/2008|17:14] C:\Program Files\Windows NT
[11/02/2008|16:27] C:\Program Files\WindowsUpdate
[23/09/2008|17:26] C:\Program Files\WinRAR
[18/09/2006|04:04] C:\Program Files\xerox
[20/09/2008|12:21] C:\Program Files\Yahoo!
[23/09/2008|17:26] C:\Program Files\Zuma Deluxe
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[26/09/2006|17:51] C:\Program Files\Fichiers communs\Adobe
[22/09/2008|20:38] C:\Program Files\Fichiers communs\Ahead
[22/09/2008|22:24] C:\Program Files\Fichiers communs\Apple
[18/09/2008|15:08] C:\Program Files\Fichiers communs\France Telecom
[26/11/2007|11:02] C:\Program Files\Fichiers communs\Hewlett-Packard
[16/10/2007|10:17] C:\Program Files\Fichiers communs\InstallShield
[18/12/2007|11:10] C:\Program Files\Fichiers communs\Java
[18/01/2008|13:20] C:\Program Files\Fichiers communs\Microsoft Shared
[18/09/2006|04:01] C:\Program Files\Fichiers communs\MSSoap
[18/09/2006|05:18] C:\Program Files\Fichiers communs\ODBC
[18/09/2006|04:01] C:\Program Files\Fichiers communs\Services
[18/09/2008|15:01] C:\Program Files\Fichiers communs\Softwin
[18/09/2006|05:18] C:\Program Files\Fichiers communs\SpeechEngines
[11/02/2008|19:23] C:\Program Files\Fichiers communs\System
[18/09/2008|19:33] C:\Program Files\Fichiers communs\WindowsLiveInstaller
--------------------\\ Process
( 47 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-27 23:00:28
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
C:\DOCUME~1\PHILIP~2\LOCALS~1\APPLIC~1\Microsoft\Windows\GameExplorer\{DFEF49D9-FC95-4301-99B9-2FB91C6ABA06}\PlayTasks\1\Les Sims™ 2 : Boit@Look.lnk 1087 bytes hidden from API
scan completed successfully
hidden processes: 0
hidden files: 1
--------------------\\ Recherche d'autres infections
--------------------\\ Cracks & Keygens ..
[F:4792][D:206]-> C:\DOCUME~1\PHILIP~2\LOCALS~1\Temp
[F:93][D:0]-> C:\DOCUME~1\PHILIP~2\Cookies
[F:39969][D:52]-> C:\DOCUME~1\PHILIP~2\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 27/09/2008|22:16 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 27/09/2008|22:42 - Option : [1]
3 - "C:\Lop SD\LopR_3.txt" - 27/09/2008|22:48 - Option : [2]
4 - "C:\Lop SD\LopR_4.txt" - 27/09/2008|23:04 - Option : [2]
--------------------\\ Fin du rapport a 23:04:08
