Sujet Précédent Sujet Suivant

PuB CID je n'arrive pas à m'en débarasser

lola -  
Destrio5 Messages postés 99820 Statut Modérateur -
Bonjour,j'ai sans arret des pubs CID j'ai supprimé le sponsor messenger live et il y en a toujours
merci de votre aide
A voir également:

31 réponses

  • 1
  • 2
Réponse 1 / 31
Destrio5 Messages postés 99820 Statut Modérateur 10 305
 
Salut,

---> Télécharge Lop S&D sur ton Bureau
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
---> Double-clique dessus pour lancer l'installation
---> Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
---> Séléctionne la langue souhaitée, puis choisis l'option 1 (Recherche)
---> Patiente jusqu'à la fin du scan
---> Poste le rapport généré (C:\lopR.txt)
0
Réponse 2 / 31
toptitbal Messages postés 26224 Date d'inscription   Statut Contributeur sécurité Dernière intervention   2 232
 
Bonjour

Télécharge le fichier d’installation d’Hijackthis en cliquant sur ce lien

http://www.trendsecure.com/portal/en-US/tools/security_tools/hijackthis/download

Enregistre HJTInstall.exe sur ton bureau.

Double-clique sur HJTInstall.exe pour lancer le programme

Tuto : https://www.malekal.com/tutoriel-hijackthis/
http://pagesperso-orange.fr/rginformatique/section%20virus/Hijenr.gif
http://pagesperso-orange.fr/rginformatique/section%20virus/demohijack.htm

Accepte la license en cliquant sur le bouton "I Accept"
Choisis l'option "Do a system scan and save a log file"
Clique sur "Save log" pour enregistrer le rapport qui s'ouvrira avec le bloc-note
Clique sur "Edition -> Sélectionner tout", puis sur "Edition -> Copier" pour copier tout le contenu du rapport

Colle le rapport que tu viens de copier sur ce forum
0
Réponse 3 / 31
Destrio5 Messages postés 99820 Statut Modérateur 10 305
 
Je te le laisse, Mr Toptitbal ;)
0
toptitbal Messages postés 26224 Date d'inscription   Statut Contributeur sécurité Dernière intervention   2 232
 
Merci Mr Destrio ;-))
Si je tombe sur l'infection du siècle, je t'appelle en renfort.
0
Réponse 4 / 31
lola
 
merci de ton aide

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:45:56, on 27/09/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe
C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLService.exe
c:\APPS\HIDSERVICE\HIDSERVICE.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Spyware Doctor\pctsAuxs.exe
C:\Program Files\Spyware Doctor\pctsSvc.exe
C:\Program Files\Spyware Doctor\pctsTray.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wdfmgr.exe
c:\APPS\Powercinema\Kernel\TV\CLSched.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\ALCMTR.EXE
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Apps\Powercinema\PCMService.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9BE.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\TomTom HOME 2\HOMERunner.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\wkcalrem.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
C:\Program Files\Java\jre1.6.0_05\bin\jucheck.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\internet explorer\iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: e-Carte Bleue Browser Helper Object - {2E03C0FD-4C48-43A7-9A54-00240C70FF16} - C:\WINDOWS\system32\BhoECart.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [RMC] C:\WINDOWS\system32\drivers\RMC.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Raccourci vers la page des propriétés de High Definition Audio] HDAShCut.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [PCMService] "c:\Apps\Powercinema\PCMService.exe"
O4 - HKLM\..\Run: [WorksFUD] C:\Program Files\Microsoft Works\wkfud.exe
O4 - HKLM\..\Run: [Microsoft Works Portfolio] C:\Program Files\Microsoft Works\WksSb.exe /AllUsers
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Microsoft Works\WkDetect.exe
O4 - HKLM\..\Run: [EPSON Stylus CX3600 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9BE.EXE /P26 "EPSON Stylus CX3600 Series" /O6 "USB001" /M "Stylus CX3600"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [NAV CfgWiz] "C:\Program Files\Norton AntiVirus\CfgWiz.exe" /GUID {0D7956A2-5A08-4ec2-A72C-DF8495A66016} /MODE CfgWiz /CMDLINE "REBOOT"
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [ISTray] "C:\Program Files\Spyware Doctor\pctsTray.exe"
O4 - HKCU\..\Run: [OM2_Monitor] "C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor.exe"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\HOMERunner.exe"
O4 - HKCU\..\Run: [Comp Dash] C:\DOCUME~1\LAUREN~1\APPLIC~1\PROXYM~1\HIDEPILEPING.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: SM.lnk = C:\Documents and Settings\laurencep\Mes documents\Mes images\SM\skymessnet.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\microsoft office\Office\OSA9.EXE
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O4 - Global Startup: Rappels du Calendrier Microsoft Works.lnk = ?
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?2428e3314e2e412c8292cc9f85d53d7e
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?2428e3314e2e412c8292cc9f85d53d7e
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Organise-notes - {9455301C-CF6B-11D3-A266-00C04F689C50} - C:\Program Files\Fichiers communs\Microsoft Shared\Reference 2001\EROProj.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=file://C:\APPS\IE\offline\fr.htm
O16 - DPF: {09C21411-B9A2-4DE6-8416-4E3B58577BE0} (France Telecom MDM ActiveX Control) - http://minitelweb.minitel.com/imin_data/ocx/MDM.cab
O16 - DPF: {88764F69-3831-4EC1-B40B-FF21D8381345} (AdVerifierADPCtrl Class) - https://static.impots.gouv.fr/tdir/static/adpform/AdSignerADP-1.1.cab
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://jeuxenligne.orange.fr/Gameshell/GameHost/1.0/OberonGameHost.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - file://C:\Documents and Settings\laurencep\Local Settings\Application Data\Oberon Media\Oberon Games Host\popcaploader_v6.cab
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLSched.exe
O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
O23 - Service: Generic Service for HID Keyboard Input Collections (GenericHidService) - Unknown owner - c:\APPS\HIDSERVICE\HIDSERVICE.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: MySqlInventime - Unknown owner - c:\mysql\bin\mysqld-max-nt.exe
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: SPBBCSvc - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 31
lola
 
J'espere que c'est bien ca???
0
Réponse 6 / 31
Destrio5 Messages postés 99820 Statut Modérateur 10 305
 
Oui, maintenant, tu fais la manip' avec Lop S&D.
0
Réponse 7 / 31
toptitbal Messages postés 26224 Date d'inscription   Statut Contributeur sécurité Dernière intervention   2 232
 
Télécharge Lopxp et enregistre-le sur ton bureau.
http://sosvirus.changelog.fr/Green_day/Lopxpsetup.exe
https://www.commentcamarche.net/telecharger/ 34055210 lopxp

Referme les fenêtres de tous les programmes en cours, y compris Internet Explorer et MSN

Double clic sur le fichier Lopxpsetup.exe
pour lancer l'installation.

Sur le bureau, double clic ensuite sur le raccourci nommé Lopxp, pour lancer le programme.
Dans le menu, choisis l'option 1 et valide avec la touche entrée.
Patiente un peu, en fin d'analyse il te sera demandé d'appuyer sur une touche pour faire apparaître le rapport, fais-le.

Copie et colle ensuite tous son contenu dans ta prochaine réponse.
0
Réponse 8 / 31
lola
 
ci joint le rapport lop S&D

--------------------\\ Lop S&D 4.2.4-4 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : Mobile AMD Sempron(tm) Processor 3000+ )
BIOS : Insyde Software MobilePRO BIOS Version 4.20.10
USER : laurencep ( Administrator )
BOOT : Normal boot
Antivirus : Norton AntiVirus 2006 2005 (Activated)
Firewall : Norton Internet Security 2005 (Not Activated)
C:\ (Local Disk) - NTFS - Total : 68 Go Free : 20 Go
D:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 19-09-2008|22:20 )
Option : [1] ( 27/09/2008|18:33 )

--------------------\\ Listing des dossiers dans APPLIC~1

[08/12/2006|01:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[15/12/2006|12:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL
[16/01/2008|12:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[16/01/2008|12:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[20/12/2007|14:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BONE ABOUT BOOK BOWS
[16/12/2007|12:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[05/04/2008|14:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Flood Light Games
[02/03/2008|20:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FloodLightGames
[13/06/2008|14:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Friends Games
[27/09/2008|18:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar
[23/10/2007|13:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[26/09/2008|21:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
[13/06/2008|15:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\JollyBear
[17/11/2007|20:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[26/08/2007|19:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Mozilla
[09/06/2008|17:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PopCap
[08/12/2006|01:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[08/12/2006|01:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[07/07/2007|12:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[27/09/2008|17:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[01/07/2008|16:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TomTom
[15/03/2007|20:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\UDL
[20/12/2007|15:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Viewpoint
[27/03/2007|11:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[14/12/2006|20:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[04/07/2007|20:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WindowsLiveInstaller
[17/11/2007|20:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[24/03/2008|18:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion
[16/06/2008|15:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ZoomBrowser

[08/12/2006|01:47] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[04/07/2007|20:21] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[08/12/2006|01:47] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Real
[08/12/2006|01:47] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Sun
[08/12/2006|01:47] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec
[08/12/2006|01:47] C:\DOCUME~1\DEFAUL~1\APPLIC~1\You've Got Pictures Screensaver

[23/08/2008|11:31] C:\DOCUME~1\LAUREN~1\APPLIC~1\Adobe
[04/09/2008|07:28] C:\DOCUME~1\LAUREN~1\APPLIC~1\AdobeUM
[16/01/2008|19:42] C:\DOCUME~1\LAUREN~1\APPLIC~1\Apple Computer
[16/06/2008|15:48] C:\DOCUME~1\LAUREN~1\APPLIC~1\Canon
[01/07/2007|13:40] C:\DOCUME~1\LAUREN~1\APPLIC~1\CyberLink
[08/01/2008|14:16] C:\DOCUME~1\LAUREN~1\APPLIC~1\DivX
[05/04/2008|14:30] C:\DOCUME~1\LAUREN~1\APPLIC~1\Flood Light Games
[02/03/2008|20:30] C:\DOCUME~1\LAUREN~1\APPLIC~1\FloodLightGames
[23/10/2007|13:38] C:\DOCUME~1\LAUREN~1\APPLIC~1\Google
[15/11/2007|13:53] C:\DOCUME~1\LAUREN~1\APPLIC~1\Help
[08/12/2006|01:47] C:\DOCUME~1\LAUREN~1\APPLIC~1\Identities
[16/12/2007|21:40] C:\DOCUME~1\LAUREN~1\APPLIC~1\InstallShield
[19/05/2007|20:41] C:\DOCUME~1\LAUREN~1\APPLIC~1\Leadertech
[06/10/2007|16:55] C:\DOCUME~1\LAUREN~1\APPLIC~1\LG Electronics
[16/12/2007|22:04] C:\DOCUME~1\LAUREN~1\APPLIC~1\LG Image Editor
[12/04/2008|21:34] C:\DOCUME~1\LAUREN~1\APPLIC~1\LimeWire
[07/12/2006|19:06] C:\DOCUME~1\LAUREN~1\APPLIC~1\Macromedia
[01/10/2007|21:36] C:\DOCUME~1\LAUREN~1\APPLIC~1\Micro Application
[01/10/2007|20:09] C:\DOCUME~1\LAUREN~1\APPLIC~1\Microsoft
[14/12/2006|15:20] C:\DOCUME~1\LAUREN~1\APPLIC~1\Microsoft Web Folders
[01/07/2008|16:24] C:\DOCUME~1\LAUREN~1\APPLIC~1\Mozilla
[14/12/2006|19:38] C:\DOCUME~1\LAUREN~1\APPLIC~1\MSNInstaller
[25/09/2008|19:28] C:\DOCUME~1\LAUREN~1\APPLIC~1\PC Tools
[11/04/2008|20:14] C:\DOCUME~1\LAUREN~1\APPLIC~1\Proxy Mode
[08/12/2006|01:47] C:\DOCUME~1\LAUREN~1\APPLIC~1\Real
[17/11/2007|16:17] C:\DOCUME~1\LAUREN~1\APPLIC~1\SecuROM
[15/03/2007|20:21] C:\DOCUME~1\LAUREN~1\APPLIC~1\Smart Panel
[19/05/2007|20:41] C:\DOCUME~1\LAUREN~1\APPLIC~1\Sonic
[08/12/2006|01:47] C:\DOCUME~1\LAUREN~1\APPLIC~1\Sun
[08/03/2007|11:22] C:\DOCUME~1\LAUREN~1\APPLIC~1\Symantec
[26/08/2007|19:46] C:\DOCUME~1\LAUREN~1\APPLIC~1\Talkback
[11/11/2007|13:23] C:\DOCUME~1\LAUREN~1\APPLIC~1\Template
[01/07/2008|16:24] C:\DOCUME~1\LAUREN~1\APPLIC~1\TomTom
[07/08/2008|12:15] C:\DOCUME~1\LAUREN~1\APPLIC~1\U3
[20/12/2007|15:29] C:\DOCUME~1\LAUREN~1\APPLIC~1\Viewpoint
[24/03/2008|18:14] C:\DOCUME~1\LAUREN~1\APPLIC~1\Yahoo!
[08/12/2006|01:47] C:\DOCUME~1\LAUREN~1\APPLIC~1\You've Got Pictures Screensaver
[16/06/2008|16:01] C:\DOCUME~1\LAUREN~1\APPLIC~1\ZoomBrowser EX

[26/06/2007|14:35] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[10/03/2007|09:30] C:\DOCUME~1\LOCALS~1\APPLIC~1\Symantec

[08/12/2006|01:47] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[27/09/2008 16:11][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[27/09/2008 18:00][--ah-----] C:\WINDOWS\tasks\A50043AB9197F773.job
[27/09/2008 17:53][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[26/09/2008 21:48][--a------] C:\WINDOWS\tasks\Norton AntiVirus - Effectuer une analyse complŠte du systŠme - laurencep.job
[07/12/2006 17:01][--a------] C:\WINDOWS\tasks\Rappel d'enregistrement 3.job
[27/09/2008 15:18][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 14:00][-rah-----] C:\WINDOWS\tasks\desktop.ini

( A50043AB9197F773.job )=( c:\docume~1\lauren~1\applic~1\proxym~1\fourfivemeet.exe )

--------------------\\ Listing des dossiers dans C:\Program Files

[08/12/2006|01:47] C:\Program Files\Adobe
[29/05/2007|14:22] C:\Program Files\Ahead
[14/02/2007|16:31] C:\Program Files\Alcoda
[29/07/2007|10:55] C:\Program Files\Alwil Software
[08/12/2006|01:47] C:\Program Files\AMD
[15/12/2006|12:11] C:\Program Files\AOL 9.0
[08/12/2006|01:47] C:\Program Files\AOL Compagnon
[15/05/2008|11:54] C:\Program Files\Apple Software Update
[24/11/2007|18:50] C:\Program Files\Atari
[08/12/2006|01:47] C:\Program Files\ATI Technologies
[16/01/2008|12:06] C:\Program Files\Bonjour
[16/06/2008|15:21] C:\Program Files\Canon
[25/09/2008|18:26] C:\Program Files\CCleaner
[08/12/2006|01:47] C:\Program Files\ComPlus Applications
[21/04/2007|20:32] C:\Program Files\cyberiummedia
[08/12/2006|01:47] C:\Program Files\CyberLink
[07/05/2007|17:14] C:\Program Files\Disney Interactive
[24/03/2008|18:13] C:\Program Files\DivX
[08/12/2006|01:48] C:\Program Files\Dynamic Toolbar
[17/11/2007|16:04] C:\Program Files\EA GAMES
[16/08/2008|21:02] C:\Program Files\Electronic Arts
[24/11/2007|17:21] C:\Program Files\Emme
[26/09/2008|11:33] C:\Program Files\eMule
[15/03/2007|20:12] C:\Program Files\EPSON
[16/06/2008|15:06] C:\Program Files\Fichiers communs
[14/12/2006|15:19] C:\Program Files\FoneSync
[05/04/2008|14:30] C:\Program Files\GamesBar
[23/10/2007|13:38] C:\Program Files\Google
[21/04/2007|20:41] C:\Program Files\Infogrames
[01/03/2008|01:40] C:\Program Files\InstallShield Installation Information
[27/09/2008|14:51] C:\Program Files\Internet Explorer
[15/05/2008|12:05] C:\Program Files\iPod
[15/05/2008|12:06] C:\Program Files\iTunes
[11/04/2008|06:40] C:\Program Files\Java
[14/02/2007|18:30] C:\Program Files\Knowledge Adventure
[08/12/2006|01:47] C:\Program Files\Learn2.com
[03/03/2007|15:05] C:\Program Files\LG Electronics
[16/12/2007|21:43] C:\Program Files\LG PC Suite 2
[25/06/2008|16:46] C:\Program Files\McDonaldsDragons
[13/08/2008|21:13] C:\Program Files\Messenger
[10/06/2007|12:32] C:\Program Files\Micro Application
[14/12/2006|15:25] C:\Program Files\Microsoft AutoRoute
[05/07/2007|23:09] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[14/12/2006|15:31] C:\Program Files\Microsoft Encarta
[08/12/2006|01:47] C:\Program Files\microsoft frontpage
[14/12/2006|15:24] C:\Program Files\Microsoft Money
[14/12/2006|15:20] C:\Program Files\microsoft office
[07/06/2007|14:28] C:\Program Files\Microsoft Picture It! PhotoPub
[17/11/2007|20:53] C:\Program Files\Microsoft SQL Server Compact Edition
[08/12/2006|01:47] C:\Program Files\Microsoft Visual Studio
[14/12/2006|15:23] C:\Program Files\Microsoft Works
[14/12/2006|15:09] C:\Program Files\Microsoft Works Suite 2001
[14/02/2007|18:11] C:\Program Files\Mindscape
[31/07/2007|12:05] C:\Program Files\MinitelADSL
[08/12/2006|01:51] C:\Program Files\Movie Maker
[26/08/2007|19:45] C:\Program Files\Mozilla Firefox
[14/12/2006|19:38] C:\Program Files\MSN
[08/12/2006|01:47] C:\Program Files\MSN Gaming Zone
[17/12/2006|20:01] C:\Program Files\MSXML 4.0
[22/04/2007|15:55] C:\Program Files\NetMeeting
[29/07/2007|10:46] C:\Program Files\Norton AntiVirus
[31/03/2007|21:03] C:\Program Files\OLYMPUS
[08/12/2006|01:51] C:\Program Files\Online Services
[02/03/2008|20:29] C:\Program Files\orange
[13/06/2007|14:55] C:\Program Files\Outlook Express
[11/04/2008|07:46] C:\Program Files\Picasa2
[20/12/2007|14:20] C:\Program Files\Proxy Mode
[15/05/2008|12:02] C:\Program Files\QuickTime
[08/12/2006|01:47] C:\Program Files\Real
[08/12/2006|01:47] C:\Program Files\Realtek
[25/09/2008|18:39] C:\Program Files\RegCleaner
[07/06/2007|15:19] C:\Program Files\Seagrand
[20/07/2007|11:40] C:\Program Files\Securitoo
[08/12/2006|01:52] C:\Program Files\Services en ligne
[15/03/2007|20:09] C:\Program Files\Smart Panel
[08/12/2006|01:47] C:\Program Files\Sonic
[27/09/2008|15:40] C:\Program Files\Spyware Doctor
[07/07/2007|12:19] C:\Program Files\Symantec
[08/12/2006|01:47] C:\Program Files\Synaptics
[01/07/2008|17:00] C:\Program Files\TomTom DesktopSuite
[25/09/2008|19:34] C:\Program Files\TomTom HOME 2
[25/09/2008|20:53] C:\Program Files\Trend Micro
[08/12/2006|01:47] C:\Program Files\Uninstall Information
[08/12/2006|01:47] C:\Program Files\Viewpoint
[31/08/2007|11:51] C:\Program Files\Virtualis
[27/02/2008|21:33] C:\Program Files\Windows Live
[17/11/2007|20:56] C:\Program Files\Windows Live Favorites
[30/11/2007|18:06] C:\Program Files\Windows Live Toolbar
[03/03/2007|14:51] C:\Program Files\Windows Media Player
[08/12/2006|01:53] C:\Program Files\Windows NT
[08/12/2006|01:47] C:\Program Files\WindowsUpdate
[08/12/2006|01:47] C:\Program Files\xerox
[24/03/2008|18:13] C:\Program Files\Yahoo!

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[17/12/2006|14:01] C:\Program Files\Fichiers communs\Adobe
[29/05/2007|14:21] C:\Program Files\Fichiers communs\Ahead
[08/12/2006|01:48] C:\Program Files\Fichiers communs\AOL
[08/12/2006|01:48] C:\Program Files\Fichiers communs\aolshare
[16/01/2008|12:00] C:\Program Files\Fichiers communs\Apple
[16/06/2008|15:06] C:\Program Files\Fichiers communs\Canon
[08/12/2006|01:48] C:\Program Files\Fichiers communs\Designer
[08/12/2006|01:47] C:\Program Files\Fichiers communs\InstallShield
[08/12/2006|01:47] C:\Program Files\Fichiers communs\Java
[17/11/2007|20:46] C:\Program Files\Fichiers communs\Microsoft Shared
[08/12/2006|01:47] C:\Program Files\Fichiers communs\MSSoap
[31/03/2007|21:08] C:\Program Files\Fichiers communs\muvee Technologies
[08/12/2006|01:47] C:\Program Files\Fichiers communs\Nullsoft
[13/06/2008|20:23] C:\Program Files\Fichiers communs\Oberon Media
[08/12/2006|01:47] C:\Program Files\Fichiers communs\ODBC
[08/12/2006|01:47] C:\Program Files\Fichiers communs\Real
[08/12/2006|01:49] C:\Program Files\Fichiers communs\Services
[08/12/2006|01:49] C:\Program Files\Fichiers communs\Sonic Shared
[08/12/2006|01:47] C:\Program Files\Fichiers communs\SpeechEngines
[08/12/2006|01:49] C:\Program Files\Fichiers communs\SureThing Shared
[27/09/2008|00:02] C:\Program Files\Fichiers communs\Symantec Shared
[13/06/2007|14:55] C:\Program Files\Fichiers communs\System
[17/11/2007|20:43] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[08/12/2006|01:47] C:\Program Files\Fichiers communs\xing shared

--------------------\\ Process

( 76 Processes )

IEXPLORE.EXE ~ [PID:3840]
iexplore.exe ~ [PID:3544]
iexplore.exe ~ [PID:2804]
iexplore.exe ~ [PID:164]
IEXPLORE.EXE ~ [PID:1084]

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\DOCUME~1\ALLUSE~1\APPLIC~1\BONE ABOUT BOOK BOWS
C:\DOCUME~1\ALLUSE~1\APPLIC~1\BONE ABOUT BOOK BOWS\window frag.exe
C:\DOCUME~1\LAUREN~1\APPLIC~1\proxym~1
C:\DOCUME~1\LAUREN~1\APPLIC~1\proxym~1\four five meet.exe
C:\DOCUME~1\LAUREN~1\APPLIC~1\proxym~1\HIDEPILEPING.exe
C:\DOCUME~1\LAUREN~1\APPLIC~1\proxym~1\nnogohvx.exe
C:\Program Files\proxym~1
C:\DOCUME~1\LAUREN~1\Cookies\laurencep@advertising[2].txt
C:\DOCUME~1\LAUREN~1\Cookies\laurencep@adopt.euroclick[2].txt
C:\DOCUME~1\LAUREN~1\Cookies\laurencep@pacificpoker[2].txt
C:\WINDOWS\Tasks\A50043AB9197F773.job

--------------------\\ Verification du Registre

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Comp Dash"="C:\\DOCUME~1\\LAUREN~1\\APPLIC~1\\PROXYM~1\\HIDEPILEPING.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

--------------------\\ Verification du fichier Hosts

Fichier Hosts MODIFIE

127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD
127.0.0.1 download.errorsafe.com ## added by CiD
127.0.0.1 download.systemdoctor.com ## added by CiD
127.0.0.1 download.winantispyware.com ## added by CiD
127.0.0.1 download.windrivecleaner.com ## added by CiD
127.0.0.1 download.winfixer.com ## added by CiD
127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 es.winantivirus.com ## added by CiD
127.0.0.1 fr.winantivirus.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 go.winantivirus.com ## added by CiD
127.0.0.1 hk.winantivirus.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 instlog.winantivirus.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 kb.winantivirus.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 secure.winantivirus.com ## added by CiD
127.0.0.1 support.winantivirus.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 ulog.winantivirus.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 utils.winantivirus.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winantivirus.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 [i]ww/iw.drivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.errorprotector.com ## added by CiD
127.0.0.1 [i]ww/iw.errorsafe.com ## added by CiD
127.0.0.1 [i]ww/iw.systemdoctor.com ## added by CiD
127.0.0.1 [i]ww/iw.utils.winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.win-anti-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.win-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispam.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispy.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispyware.com ## added by CiD
127.0.0.1 [i]ww/iw.winantivirus.com ## added by CiD
127.0.0.1 [i]ww/iw.winantiviruspro.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivesafe.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer2006.com ## added by CiD
127.0.0.1 [i]ww/iw.winsoftware.com ## added by CiD

-> 72 [ 70 ## added by CiD ]

--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-27 18:37:14
Windows 5.1.2600 Service Pack 2 NTFS
detected NTDLL code modification:
ZwClose
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 15

--------------------\\ Recherche d'autres infections

Aucune autre infection trouvée !

[F:5][D:4]-> C:\DOCUME~1\LAUREN~1\LOCALS~1\Temp
[F:154][D:0]-> C:\DOCUME~1\LAUREN~1\Cookies
[F:2393][D:4]-> C:\DOCUME~1\LAUREN~1\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 27/09/2008|18:40 - Option : [1]

--------------------\\ Fin du rapport a 18:40:04
0
Réponse 9 / 31
lola
 
ci joint le rapport lop S&D

--------------------\\ Lop S&D 4.2.4-4 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : Mobile AMD Sempron(tm) Processor 3000+ )
BIOS : Insyde Software MobilePRO BIOS Version 4.20.10
USER : laurencep ( Administrator )
BOOT : Normal boot
Antivirus : Norton AntiVirus 2006 2005 (Activated)
Firewall : Norton Internet Security 2005 (Not Activated)
C:\ (Local Disk) - NTFS - Total : 68 Go Free : 20 Go
D:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 19-09-2008|22:20 )
Option : [1] ( 27/09/2008|18:33 )

--------------------\\ Listing des dossiers dans APPLIC~1

[08/12/2006|01:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[15/12/2006|12:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL
[16/01/2008|12:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[16/01/2008|12:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[20/12/2007|14:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BONE ABOUT BOOK BOWS
[16/12/2007|12:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[05/04/2008|14:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Flood Light Games
[02/03/2008|20:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FloodLightGames
[13/06/2008|14:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Friends Games
[27/09/2008|18:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar
[23/10/2007|13:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[26/09/2008|21:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
[13/06/2008|15:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\JollyBear
[17/11/2007|20:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[26/08/2007|19:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Mozilla
[09/06/2008|17:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PopCap
[08/12/2006|01:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[08/12/2006|01:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[07/07/2007|12:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[27/09/2008|17:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[01/07/2008|16:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TomTom
[15/03/2007|20:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\UDL
[20/12/2007|15:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Viewpoint
[27/03/2007|11:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[14/12/2006|20:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[04/07/2007|20:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WindowsLiveInstaller
[17/11/2007|20:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[24/03/2008|18:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion
[16/06/2008|15:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ZoomBrowser

[08/12/2006|01:47] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[04/07/2007|20:21] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[08/12/2006|01:47] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Real
[08/12/2006|01:47] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Sun
[08/12/2006|01:47] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec
[08/12/2006|01:47] C:\DOCUME~1\DEFAUL~1\APPLIC~1\You've Got Pictures Screensaver

[23/08/2008|11:31] C:\DOCUME~1\LAUREN~1\APPLIC~1\Adobe
[04/09/2008|07:28] C:\DOCUME~1\LAUREN~1\APPLIC~1\AdobeUM
[16/01/2008|19:42] C:\DOCUME~1\LAUREN~1\APPLIC~1\Apple Computer
[16/06/2008|15:48] C:\DOCUME~1\LAUREN~1\APPLIC~1\Canon
[01/07/2007|13:40] C:\DOCUME~1\LAUREN~1\APPLIC~1\CyberLink
[08/01/2008|14:16] C:\DOCUME~1\LAUREN~1\APPLIC~1\DivX
[05/04/2008|14:30] C:\DOCUME~1\LAUREN~1\APPLIC~1\Flood Light Games
[02/03/2008|20:30] C:\DOCUME~1\LAUREN~1\APPLIC~1\FloodLightGames
[23/10/2007|13:38] C:\DOCUME~1\LAUREN~1\APPLIC~1\Google
[15/11/2007|13:53] C:\DOCUME~1\LAUREN~1\APPLIC~1\Help
[08/12/2006|01:47] C:\DOCUME~1\LAUREN~1\APPLIC~1\Identities
[16/12/2007|21:40] C:\DOCUME~1\LAUREN~1\APPLIC~1\InstallShield
[19/05/2007|20:41] C:\DOCUME~1\LAUREN~1\APPLIC~1\Leadertech
[06/10/2007|16:55] C:\DOCUME~1\LAUREN~1\APPLIC~1\LG Electronics
[16/12/2007|22:04] C:\DOCUME~1\LAUREN~1\APPLIC~1\LG Image Editor
[12/04/2008|21:34] C:\DOCUME~1\LAUREN~1\APPLIC~1\LimeWire
[07/12/2006|19:06] C:\DOCUME~1\LAUREN~1\APPLIC~1\Macromedia
[01/10/2007|21:36] C:\DOCUME~1\LAUREN~1\APPLIC~1\Micro Application
[01/10/2007|20:09] C:\DOCUME~1\LAUREN~1\APPLIC~1\Microsoft
[14/12/2006|15:20] C:\DOCUME~1\LAUREN~1\APPLIC~1\Microsoft Web Folders
[01/07/2008|16:24] C:\DOCUME~1\LAUREN~1\APPLIC~1\Mozilla
[14/12/2006|19:38] C:\DOCUME~1\LAUREN~1\APPLIC~1\MSNInstaller
[25/09/2008|19:28] C:\DOCUME~1\LAUREN~1\APPLIC~1\PC Tools
[11/04/2008|20:14] C:\DOCUME~1\LAUREN~1\APPLIC~1\Proxy Mode
[08/12/2006|01:47] C:\DOCUME~1\LAUREN~1\APPLIC~1\Real
[17/11/2007|16:17] C:\DOCUME~1\LAUREN~1\APPLIC~1\SecuROM
[15/03/2007|20:21] C:\DOCUME~1\LAUREN~1\APPLIC~1\Smart Panel
[19/05/2007|20:41] C:\DOCUME~1\LAUREN~1\APPLIC~1\Sonic
[08/12/2006|01:47] C:\DOCUME~1\LAUREN~1\APPLIC~1\Sun
[08/03/2007|11:22] C:\DOCUME~1\LAUREN~1\APPLIC~1\Symantec
[26/08/2007|19:46] C:\DOCUME~1\LAUREN~1\APPLIC~1\Talkback
[11/11/2007|13:23] C:\DOCUME~1\LAUREN~1\APPLIC~1\Template
[01/07/2008|16:24] C:\DOCUME~1\LAUREN~1\APPLIC~1\TomTom
[07/08/2008|12:15] C:\DOCUME~1\LAUREN~1\APPLIC~1\U3
[20/12/2007|15:29] C:\DOCUME~1\LAUREN~1\APPLIC~1\Viewpoint
[24/03/2008|18:14] C:\DOCUME~1\LAUREN~1\APPLIC~1\Yahoo!
[08/12/2006|01:47] C:\DOCUME~1\LAUREN~1\APPLIC~1\You've Got Pictures Screensaver
[16/06/2008|16:01] C:\DOCUME~1\LAUREN~1\APPLIC~1\ZoomBrowser EX

[26/06/2007|14:35] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[10/03/2007|09:30] C:\DOCUME~1\LOCALS~1\APPLIC~1\Symantec

[08/12/2006|01:47] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[27/09/2008 16:11][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[27/09/2008 18:00][--ah-----] C:\WINDOWS\tasks\A50043AB9197F773.job
[27/09/2008 17:53][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[26/09/2008 21:48][--a------] C:\WINDOWS\tasks\Norton AntiVirus - Effectuer une analyse complŠte du systŠme - laurencep.job
[07/12/2006 17:01][--a------] C:\WINDOWS\tasks\Rappel d'enregistrement 3.job
[27/09/2008 15:18][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 14:00][-rah-----] C:\WINDOWS\tasks\desktop.ini

( A50043AB9197F773.job )=( c:\docume~1\lauren~1\applic~1\proxym~1\fourfivemeet.exe )

--------------------\\ Listing des dossiers dans C:\Program Files

[08/12/2006|01:47] C:\Program Files\Adobe
[29/05/2007|14:22] C:\Program Files\Ahead
[14/02/2007|16:31] C:\Program Files\Alcoda
[29/07/2007|10:55] C:\Program Files\Alwil Software
[08/12/2006|01:47] C:\Program Files\AMD
[15/12/2006|12:11] C:\Program Files\AOL 9.0
[08/12/2006|01:47] C:\Program Files\AOL Compagnon
[15/05/2008|11:54] C:\Program Files\Apple Software Update
[24/11/2007|18:50] C:\Program Files\Atari
[08/12/2006|01:47] C:\Program Files\ATI Technologies
[16/01/2008|12:06] C:\Program Files\Bonjour
[16/06/2008|15:21] C:\Program Files\Canon
[25/09/2008|18:26] C:\Program Files\CCleaner
[08/12/2006|01:47] C:\Program Files\ComPlus Applications
[21/04/2007|20:32] C:\Program Files\cyberiummedia
[08/12/2006|01:47] C:\Program Files\CyberLink
[07/05/2007|17:14] C:\Program Files\Disney Interactive
[24/03/2008|18:13] C:\Program Files\DivX
[08/12/2006|01:48] C:\Program Files\Dynamic Toolbar
[17/11/2007|16:04] C:\Program Files\EA GAMES
[16/08/2008|21:02] C:\Program Files\Electronic Arts
[24/11/2007|17:21] C:\Program Files\Emme
[26/09/2008|11:33] C:\Program Files\eMule
[15/03/2007|20:12] C:\Program Files\EPSON
[16/06/2008|15:06] C:\Program Files\Fichiers communs
[14/12/2006|15:19] C:\Program Files\FoneSync
[05/04/2008|14:30] C:\Program Files\GamesBar
[23/10/2007|13:38] C:\Program Files\Google
[21/04/2007|20:41] C:\Program Files\Infogrames
[01/03/2008|01:40] C:\Program Files\InstallShield Installation Information
[27/09/2008|14:51] C:\Program Files\Internet Explorer
[15/05/2008|12:05] C:\Program Files\iPod
[15/05/2008|12:06] C:\Program Files\iTunes
[11/04/2008|06:40] C:\Program Files\Java
[14/02/2007|18:30] C:\Program Files\Knowledge Adventure
[08/12/2006|01:47] C:\Program Files\Learn2.com
[03/03/2007|15:05] C:\Program Files\LG Electronics
[16/12/2007|21:43] C:\Program Files\LG PC Suite 2
[25/06/2008|16:46] C:\Program Files\McDonaldsDragons
[13/08/2008|21:13] C:\Program Files\Messenger
[10/06/2007|12:32] C:\Program Files\Micro Application
[14/12/2006|15:25] C:\Program Files\Microsoft AutoRoute
[05/07/2007|23:09] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[14/12/2006|15:31] C:\Program Files\Microsoft Encarta
[08/12/2006|01:47] C:\Program Files\microsoft frontpage
[14/12/2006|15:24] C:\Program Files\Microsoft Money
[14/12/2006|15:20] C:\Program Files\microsoft office
[07/06/2007|14:28] C:\Program Files\Microsoft Picture It! PhotoPub
[17/11/2007|20:53] C:\Program Files\Microsoft SQL Server Compact Edition
[08/12/2006|01:47] C:\Program Files\Microsoft Visual Studio
[14/12/2006|15:23] C:\Program Files\Microsoft Works
[14/12/2006|15:09] C:\Program Files\Microsoft Works Suite 2001
[14/02/2007|18:11] C:\Program Files\Mindscape
[31/07/2007|12:05] C:\Program Files\MinitelADSL
[08/12/2006|01:51] C:\Program Files\Movie Maker
[26/08/2007|19:45] C:\Program Files\Mozilla Firefox
[14/12/2006|19:38] C:\Program Files\MSN
[08/12/2006|01:47] C:\Program Files\MSN Gaming Zone
[17/12/2006|20:01] C:\Program Files\MSXML 4.0
[22/04/2007|15:55] C:\Program Files\NetMeeting
[29/07/2007|10:46] C:\Program Files\Norton AntiVirus
[31/03/2007|21:03] C:\Program Files\OLYMPUS
[08/12/2006|01:51] C:\Program Files\Online Services
[02/03/2008|20:29] C:\Program Files\orange
[13/06/2007|14:55] C:\Program Files\Outlook Express
[11/04/2008|07:46] C:\Program Files\Picasa2
[20/12/2007|14:20] C:\Program Files\Proxy Mode
[15/05/2008|12:02] C:\Program Files\QuickTime
[08/12/2006|01:47] C:\Program Files\Real
[08/12/2006|01:47] C:\Program Files\Realtek
[25/09/2008|18:39] C:\Program Files\RegCleaner
[07/06/2007|15:19] C:\Program Files\Seagrand
[20/07/2007|11:40] C:\Program Files\Securitoo
[08/12/2006|01:52] C:\Program Files\Services en ligne
[15/03/2007|20:09] C:\Program Files\Smart Panel
[08/12/2006|01:47] C:\Program Files\Sonic
[27/09/2008|15:40] C:\Program Files\Spyware Doctor
[07/07/2007|12:19] C:\Program Files\Symantec
[08/12/2006|01:47] C:\Program Files\Synaptics
[01/07/2008|17:00] C:\Program Files\TomTom DesktopSuite
[25/09/2008|19:34] C:\Program Files\TomTom HOME 2
[25/09/2008|20:53] C:\Program Files\Trend Micro
[08/12/2006|01:47] C:\Program Files\Uninstall Information
[08/12/2006|01:47] C:\Program Files\Viewpoint
[31/08/2007|11:51] C:\Program Files\Virtualis
[27/02/2008|21:33] C:\Program Files\Windows Live
[17/11/2007|20:56] C:\Program Files\Windows Live Favorites
[30/11/2007|18:06] C:\Program Files\Windows Live Toolbar
[03/03/2007|14:51] C:\Program Files\Windows Media Player
[08/12/2006|01:53] C:\Program Files\Windows NT
[08/12/2006|01:47] C:\Program Files\WindowsUpdate
[08/12/2006|01:47] C:\Program Files\xerox
[24/03/2008|18:13] C:\Program Files\Yahoo!

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[17/12/2006|14:01] C:\Program Files\Fichiers communs\Adobe
[29/05/2007|14:21] C:\Program Files\Fichiers communs\Ahead
[08/12/2006|01:48] C:\Program Files\Fichiers communs\AOL
[08/12/2006|01:48] C:\Program Files\Fichiers communs\aolshare
[16/01/2008|12:00] C:\Program Files\Fichiers communs\Apple
[16/06/2008|15:06] C:\Program Files\Fichiers communs\Canon
[08/12/2006|01:48] C:\Program Files\Fichiers communs\Designer
[08/12/2006|01:47] C:\Program Files\Fichiers communs\InstallShield
[08/12/2006|01:47] C:\Program Files\Fichiers communs\Java
[17/11/2007|20:46] C:\Program Files\Fichiers communs\Microsoft Shared
[08/12/2006|01:47] C:\Program Files\Fichiers communs\MSSoap
[31/03/2007|21:08] C:\Program Files\Fichiers communs\muvee Technologies
[08/12/2006|01:47] C:\Program Files\Fichiers communs\Nullsoft
[13/06/2008|20:23] C:\Program Files\Fichiers communs\Oberon Media
[08/12/2006|01:47] C:\Program Files\Fichiers communs\ODBC
[08/12/2006|01:47] C:\Program Files\Fichiers communs\Real
[08/12/2006|01:49] C:\Program Files\Fichiers communs\Services
[08/12/2006|01:49] C:\Program Files\Fichiers communs\Sonic Shared
[08/12/2006|01:47] C:\Program Files\Fichiers communs\SpeechEngines
[08/12/2006|01:49] C:\Program Files\Fichiers communs\SureThing Shared
[27/09/2008|00:02] C:\Program Files\Fichiers communs\Symantec Shared
[13/06/2007|14:55] C:\Program Files\Fichiers communs\System
[17/11/2007|20:43] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[08/12/2006|01:47] C:\Program Files\Fichiers communs\xing shared

--------------------\\ Process

( 76 Processes )

IEXPLORE.EXE ~ [PID:3840]
iexplore.exe ~ [PID:3544]
iexplore.exe ~ [PID:2804]
iexplore.exe ~ [PID:164]
IEXPLORE.EXE ~ [PID:1084]

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\DOCUME~1\ALLUSE~1\APPLIC~1\BONE ABOUT BOOK BOWS
C:\DOCUME~1\ALLUSE~1\APPLIC~1\BONE ABOUT BOOK BOWS\window frag.exe
C:\DOCUME~1\LAUREN~1\APPLIC~1\proxym~1
C:\DOCUME~1\LAUREN~1\APPLIC~1\proxym~1\four five meet.exe
C:\DOCUME~1\LAUREN~1\APPLIC~1\proxym~1\HIDEPILEPING.exe
C:\DOCUME~1\LAUREN~1\APPLIC~1\proxym~1\nnogohvx.exe
C:\Program Files\proxym~1
C:\DOCUME~1\LAUREN~1\Cookies\laurencep@advertising[2].txt
C:\DOCUME~1\LAUREN~1\Cookies\laurencep@adopt.euroclick[2].txt
C:\DOCUME~1\LAUREN~1\Cookies\laurencep@pacificpoker[2].txt
C:\WINDOWS\Tasks\A50043AB9197F773.job

--------------------\\ Verification du Registre

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Comp Dash"="C:\\DOCUME~1\\LAUREN~1\\APPLIC~1\\PROXYM~1\\HIDEPILEPING.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

--------------------\\ Verification du fichier Hosts

Fichier Hosts MODIFIE

127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD
127.0.0.1 download.errorsafe.com ## added by CiD
127.0.0.1 download.systemdoctor.com ## added by CiD
127.0.0.1 download.winantispyware.com ## added by CiD
127.0.0.1 download.windrivecleaner.com ## added by CiD
127.0.0.1 download.winfixer.com ## added by CiD
127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 es.winantivirus.com ## added by CiD
127.0.0.1 fr.winantivirus.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 go.winantivirus.com ## added by CiD
127.0.0.1 hk.winantivirus.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 instlog.winantivirus.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 kb.winantivirus.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 secure.winantivirus.com ## added by CiD
127.0.0.1 support.winantivirus.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 ulog.winantivirus.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 utils.winantivirus.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winantivirus.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 [i]ww/iw.drivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.errorprotector.com ## added by CiD
127.0.0.1 [i]ww/iw.errorsafe.com ## added by CiD
127.0.0.1 [i]ww/iw.systemdoctor.com ## added by CiD
127.0.0.1 [i]ww/iw.utils.winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.win-anti-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.win-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispam.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispy.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispyware.com ## added by CiD
127.0.0.1 [i]ww/iw.winantivirus.com ## added by CiD
127.0.0.1 [i]ww/iw.winantiviruspro.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivesafe.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer2006.com ## added by CiD
127.0.0.1 [i]ww/iw.winsoftware.com ## added by CiD

-> 72 [ 70 ## added by CiD ]

--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-27 18:37:14
Windows 5.1.2600 Service Pack 2 NTFS
detected NTDLL code modification:
ZwClose
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 15

--------------------\\ Recherche d'autres infections

Aucune autre infection trouvée !

[F:5][D:4]-> C:\DOCUME~1\LAUREN~1\LOCALS~1\Temp
[F:154][D:0]-> C:\DOCUME~1\LAUREN~1\Cookies
[F:2393][D:4]-> C:\DOCUME~1\LAUREN~1\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 27/09/2008|18:40 - Option : [1]

--------------------\\ Fin du rapport a 18:40:04
0
Réponse 10 / 31
toptitbal Messages postés 26224 Date d'inscription   Statut Contributeur sécurité Dernière intervention   2 232
 
Relance Lop S&D

* Choisis cette fois ci l'Option 2 (Suppression)
* Ne ferme pas la fenêtre lors de la suppression !
* Poste le rapport généré (C:\lopR.txt)
0
Réponse 11 / 31
lola
 
est-ce que je peux fermer la fenetre maintenant?

--------------------\\ Lop S&D 4.2.4-4 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : Mobile AMD Sempron(tm) Processor 3000+ )
BIOS : Insyde Software MobilePRO BIOS Version 4.20.10
USER : laurencep ( Administrator )
BOOT : Normal boot
Antivirus : Norton AntiVirus 2006 2005 (Activated)
Firewall : Norton Internet Security 2005 (Not Activated)
C:\ (Local Disk) - NTFS - Total : 68 Go Free : 20 Go
D:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 19-09-2008|22:20 )
Option : [2] ( 27/09/2008|18:52 )

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\BONE ABOUT BOOK BOWS\window frag.exe
Echec ! - C:\DOCUME~1\LAUREN~1\APPLIC~1\proxym~1\four five meet.exe
Supprime! - C:\DOCUME~1\LAUREN~1\APPLIC~1\proxym~1\HIDEPILEPING.exe
Supprime! - C:\DOCUME~1\LAUREN~1\APPLIC~1\proxym~1\nnogohvx.exe
Supprime! - C:\DOCUME~1\LAUREN~1\Cookies\laurencep@adopt.euroclick[2].txt
Supprime! - C:\DOCUME~1\LAUREN~1\Cookies\laurencep@pacificpoker[2].txt
Supprime! - C:\WINDOWS\Tasks\A50043AB9197F773.job
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\BONE ABOUT BOOK BOWS
Supprime! - C:\DOCUME~1\LAUREN~1\APPLIC~1\proxym~1
Supprime! - C:\Program Files\proxym~1
-
[ Fichier Hosts ] .. Restaure!

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

Supprime! - C:\Program Files\Viewpoint
Supprime! - C:\DOCUME~1\LAUREN~1\APPLIC~1\Viewpoint
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Viewpoint

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

--------------------\\ Listing des dossiers dans APPLIC~1

[08/12/2006|01:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[15/12/2006|12:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL
[16/01/2008|12:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[16/01/2008|12:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[16/12/2007|12:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[05/04/2008|14:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Flood Light Games
[02/03/2008|20:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FloodLightGames
[13/06/2008|14:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Friends Games
[27/09/2008|18:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar
[23/10/2007|13:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[26/09/2008|21:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
[13/06/2008|15:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\JollyBear
[17/11/2007|20:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[26/08/2007|19:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Mozilla
[09/06/2008|17:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PopCap
[08/12/2006|01:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[08/12/2006|01:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[07/07/2007|12:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[27/09/2008|17:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[01/07/2008|16:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TomTom
[15/03/2007|20:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\UDL
[27/03/2007|11:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[14/12/2006|20:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[04/07/2007|20:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WindowsLiveInstaller
[17/11/2007|20:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[24/03/2008|18:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion
[16/06/2008|15:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ZoomBrowser

[08/12/2006|01:47] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[04/07/2007|20:21] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[08/12/2006|01:47] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Real
[08/12/2006|01:47] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Sun
[08/12/2006|01:47] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec
[08/12/2006|01:47] C:\DOCUME~1\DEFAUL~1\APPLIC~1\You've Got Pictures Screensaver

[23/08/2008|11:31] C:\DOCUME~1\LAUREN~1\APPLIC~1\Adobe
[04/09/2008|07:28] C:\DOCUME~1\LAUREN~1\APPLIC~1\AdobeUM
[16/01/2008|19:42] C:\DOCUME~1\LAUREN~1\APPLIC~1\Apple Computer
[16/06/2008|15:48] C:\DOCUME~1\LAUREN~1\APPLIC~1\Canon
[01/07/2007|13:40] C:\DOCUME~1\LAUREN~1\APPLIC~1\CyberLink
[08/01/2008|14:16] C:\DOCUME~1\LAUREN~1\APPLIC~1\DivX
[05/04/2008|14:30] C:\DOCUME~1\LAUREN~1\APPLIC~1\Flood Light Games
[02/03/2008|20:30] C:\DOCUME~1\LAUREN~1\APPLIC~1\FloodLightGames
[23/10/2007|13:38] C:\DOCUME~1\LAUREN~1\APPLIC~1\Google
[15/11/2007|13:53] C:\DOCUME~1\LAUREN~1\APPLIC~1\Help
[08/12/2006|01:47] C:\DOCUME~1\LAUREN~1\APPLIC~1\Identities
[16/12/2007|21:40] C:\DOCUME~1\LAUREN~1\APPLIC~1\InstallShield
[19/05/2007|20:41] C:\DOCUME~1\LAUREN~1\APPLIC~1\Leadertech
[06/10/2007|16:55] C:\DOCUME~1\LAUREN~1\APPLIC~1\LG Electronics
[16/12/2007|22:04] C:\DOCUME~1\LAUREN~1\APPLIC~1\LG Image Editor
[12/04/2008|21:34] C:\DOCUME~1\LAUREN~1\APPLIC~1\LimeWire
[07/12/2006|19:06] C:\DOCUME~1\LAUREN~1\APPLIC~1\Macromedia
[01/10/2007|21:36] C:\DOCUME~1\LAUREN~1\APPLIC~1\Micro Application
[01/10/2007|20:09] C:\DOCUME~1\LAUREN~1\APPLIC~1\Microsoft
[14/12/2006|15:20] C:\DOCUME~1\LAUREN~1\APPLIC~1\Microsoft Web Folders
[01/07/2008|16:24] C:\DOCUME~1\LAUREN~1\APPLIC~1\Mozilla
[14/12/2006|19:38] C:\DOCUME~1\LAUREN~1\APPLIC~1\MSNInstaller
[25/09/2008|19:28] C:\DOCUME~1\LAUREN~1\APPLIC~1\PC Tools
[08/12/2006|01:47] C:\DOCUME~1\LAUREN~1\APPLIC~1\Real
[17/11/2007|16:17] C:\DOCUME~1\LAUREN~1\APPLIC~1\SecuROM
[15/03/2007|20:21] C:\DOCUME~1\LAUREN~1\APPLIC~1\Smart Panel
[19/05/2007|20:41] C:\DOCUME~1\LAUREN~1\APPLIC~1\Sonic
[08/12/2006|01:47] C:\DOCUME~1\LAUREN~1\APPLIC~1\Sun
[08/03/2007|11:22] C:\DOCUME~1\LAUREN~1\APPLIC~1\Symantec
[26/08/2007|19:46] C:\DOCUME~1\LAUREN~1\APPLIC~1\Talkback
[11/11/2007|13:23] C:\DOCUME~1\LAUREN~1\APPLIC~1\Template
[01/07/2008|16:24] C:\DOCUME~1\LAUREN~1\APPLIC~1\TomTom
[07/08/2008|12:15] C:\DOCUME~1\LAUREN~1\APPLIC~1\U3
[24/03/2008|18:14] C:\DOCUME~1\LAUREN~1\APPLIC~1\Yahoo!
[08/12/2006|01:47] C:\DOCUME~1\LAUREN~1\APPLIC~1\You've Got Pictures Screensaver
[16/06/2008|16:01] C:\DOCUME~1\LAUREN~1\APPLIC~1\ZoomBrowser EX

[26/06/2007|14:35] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[10/03/2007|09:30] C:\DOCUME~1\LOCALS~1\APPLIC~1\Symantec

[08/12/2006|01:47] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[27/09/2008 16:11][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[27/09/2008 18:53][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[26/09/2008 21:48][--a------] C:\WINDOWS\tasks\Norton AntiVirus - Effectuer une analyse complŠte du systŠme - laurencep.job
[07/12/2006 17:01][--a------] C:\WINDOWS\tasks\Rappel d'enregistrement 3.job
[27/09/2008 15:18][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 14:00][-rah-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[08/12/2006|01:47] C:\Program Files\Adobe
[29/05/2007|14:22] C:\Program Files\Ahead
[14/02/2007|16:31] C:\Program Files\Alcoda
[29/07/2007|10:55] C:\Program Files\Alwil Software
[08/12/2006|01:47] C:\Program Files\AMD
[15/12/2006|12:11] C:\Program Files\AOL 9.0
[08/12/2006|01:47] C:\Program Files\AOL Compagnon
[15/05/2008|11:54] C:\Program Files\Apple Software Update
[24/11/2007|18:50] C:\Program Files\Atari
[08/12/2006|01:47] C:\Program Files\ATI Technologies
[16/01/2008|12:06] C:\Program Files\Bonjour
[16/06/2008|15:21] C:\Program Files\Canon
[25/09/2008|18:26] C:\Program Files\CCleaner
[08/12/2006|01:47] C:\Program Files\ComPlus Applications
[21/04/2007|20:32] C:\Program Files\cyberiummedia
[08/12/2006|01:47] C:\Program Files\CyberLink
[07/05/2007|17:14] C:\Program Files\Disney Interactive
[24/03/2008|18:13] C:\Program Files\DivX
[08/12/2006|01:48] C:\Program Files\Dynamic Toolbar
[17/11/2007|16:04] C:\Program Files\EA GAMES
[16/08/2008|21:02] C:\Program Files\Electronic Arts
[24/11/2007|17:21] C:\Program Files\Emme
[26/09/2008|11:33] C:\Program Files\eMule
[15/03/2007|20:12] C:\Program Files\EPSON
[16/06/2008|15:06] C:\Program Files\Fichiers communs
[14/12/2006|15:19] C:\Program Files\FoneSync
[05/04/2008|14:30] C:\Program Files\GamesBar
[23/10/2007|13:38] C:\Program Files\Google
[21/04/2007|20:41] C:\Program Files\Infogrames
[01/03/2008|01:40] C:\Program Files\InstallShield Installation Information
[27/09/2008|14:51] C:\Program Files\Internet Explorer
[15/05/2008|12:05] C:\Program Files\iPod
[15/05/2008|12:06] C:\Program Files\iTunes
[11/04/2008|06:40] C:\Program Files\Java
[14/02/2007|18:30] C:\Program Files\Knowledge Adventure
[08/12/2006|01:47] C:\Program Files\Learn2.com
[03/03/2007|15:05] C:\Program Files\LG Electronics
[16/12/2007|21:43] C:\Program Files\LG PC Suite 2
[27/09/2008|18:46] C:\Program Files\Lopxp
[25/06/2008|16:46] C:\Program Files\McDonaldsDragons
[13/08/2008|21:13] C:\Program Files\Messenger
[10/06/2007|12:32] C:\Program Files\Micro Application
[14/12/2006|15:25] C:\Program Files\Microsoft AutoRoute
[05/07/2007|23:09] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[14/12/2006|15:31] C:\Program Files\Microsoft Encarta
[08/12/2006|01:47] C:\Program Files\microsoft frontpage
[14/12/2006|15:24] C:\Program Files\Microsoft Money
[14/12/2006|15:20] C:\Program Files\microsoft office
[07/06/2007|14:28] C:\Program Files\Microsoft Picture It! PhotoPub
[17/11/2007|20:53] C:\Program Files\Microsoft SQL Server Compact Edition
[08/12/2006|01:47] C:\Program Files\Microsoft Visual Studio
[14/12/2006|15:23] C:\Program Files\Microsoft Works
[14/12/2006|15:09] C:\Program Files\Microsoft Works Suite 2001
[14/02/2007|18:11] C:\Program Files\Mindscape
[31/07/2007|12:05] C:\Program Files\MinitelADSL
[08/12/2006|01:51] C:\Program Files\Movie Maker
[26/08/2007|19:45] C:\Program Files\Mozilla Firefox
[14/12/2006|19:38] C:\Program Files\MSN
[08/12/2006|01:47] C:\Program Files\MSN Gaming Zone
[17/12/2006|20:01] C:\Program Files\MSXML 4.0
[22/04/2007|15:55] C:\Program Files\NetMeeting
[29/07/2007|10:46] C:\Program Files\Norton AntiVirus
[31/03/2007|21:03] C:\Program Files\OLYMPUS
[08/12/2006|01:51] C:\Program Files\Online Services
[02/03/2008|20:29] C:\Program Files\orange
[13/06/2007|14:55] C:\Program Files\Outlook Express
[11/04/2008|07:46] C:\Program Files\Picasa2
[15/05/2008|12:02] C:\Program Files\QuickTime
[08/12/2006|01:47] C:\Program Files\Real
[08/12/2006|01:47] C:\Program Files\Realtek
[25/09/2008|18:39] C:\Program Files\RegCleaner
[07/06/2007|15:19] C:\Program Files\Seagrand
[20/07/2007|11:40] C:\Program Files\Securitoo
[08/12/2006|01:52] C:\Program Files\Services en ligne
[15/03/2007|20:09] C:\Program Files\Smart Panel
[08/12/2006|01:47] C:\Program Files\Sonic
[27/09/2008|15:40] C:\Program Files\Spyware Doctor
[07/07/2007|12:19] C:\Program Files\Symantec
[08/12/2006|01:47] C:\Program Files\Synaptics
[01/07/2008|17:00] C:\Program Files\TomTom DesktopSuite
[25/09/2008|19:34] C:\Program Files\TomTom HOME 2
[25/09/2008|20:53] C:\Program Files\Trend Micro
[08/12/2006|01:47] C:\Program Files\Uninstall Information
[31/08/2007|11:51] C:\Program Files\Virtualis
[27/02/2008|21:33] C:\Program Files\Windows Live
[17/11/2007|20:56] C:\Program Files\Windows Live Favorites
[30/11/2007|18:06] C:\Program Files\Windows Live Toolbar
[03/03/2007|14:51] C:\Program Files\Windows Media Player
[08/12/2006|01:53] C:\Program Files\Windows NT
[08/12/2006|01:47] C:\Program Files\WindowsUpdate
[08/12/2006|01:47] C:\Program Files\xerox
[24/03/2008|18:13] C:\Program Files\Yahoo!

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[17/12/2006|14:01] C:\Program Files\Fichiers communs\Adobe
[29/05/2007|14:21] C:\Program Files\Fichiers communs\Ahead
[08/12/2006|01:48] C:\Program Files\Fichiers communs\AOL
[08/12/2006|01:48] C:\Program Files\Fichiers communs\aolshare
[16/01/2008|12:00] C:\Program Files\Fichiers communs\Apple
[16/06/2008|15:06] C:\Program Files\Fichiers communs\Canon
[08/12/2006|01:48] C:\Program Files\Fichiers communs\Designer
[08/12/2006|01:47] C:\Program Files\Fichiers communs\InstallShield
[08/12/2006|01:47] C:\Program Files\Fichiers communs\Java
[17/11/2007|20:46] C:\Program Files\Fichiers communs\Microsoft Shared
[08/12/2006|01:47] C:\Program Files\Fichiers communs\MSSoap
[31/03/2007|21:08] C:\Program Files\Fichiers communs\muvee Technologies
[08/12/2006|01:47] C:\Program Files\Fichiers communs\Nullsoft
[13/06/2008|20:23] C:\Program Files\Fichiers communs\Oberon Media
[08/12/2006|01:47] C:\Program Files\Fichiers communs\ODBC
[08/12/2006|01:47] C:\Program Files\Fichiers communs\Real
[08/12/2006|01:49] C:\Program Files\Fichiers communs\Services
[08/12/2006|01:49] C:\Program Files\Fichiers communs\Sonic Shared
[08/12/2006|01:47] C:\Program Files\Fichiers communs\SpeechEngines
[08/12/2006|01:49] C:\Program Files\Fichiers communs\SureThing Shared
[27/09/2008|00:02] C:\Program Files\Fichiers communs\Symantec Shared
[13/06/2007|14:55] C:\Program Files\Fichiers communs\System
[17/11/2007|20:43] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[08/12/2006|01:47] C:\Program Files\Fichiers communs\xing shared

--------------------\\ Process

( 70 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\DOCUME~1\LAUREN~1\Cookies\laurencep@advertising[1].txt

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE

--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-27 18:56:08
Windows 5.1.2600 Service Pack 2 NTFS
detected NTDLL code modification:
ZwClose
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 15

--------------------\\ Recherche d'autres infections

Aucune autre infection trouvée !

[F:5][D:4]-> C:\DOCUME~1\LAUREN~1\LOCALS~1\Temp
[F:152][D:0]-> C:\DOCUME~1\LAUREN~1\Cookies
[F:2492][D:4]-> C:\DOCUME~1\LAUREN~1\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 27/09/2008|18:40 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 27/09/2008|18:58 - Option : [2]

--------------------\\ Fin du rapport a 18:58:16
0
Réponse 12 / 31
Destrio5 Messages postés 99820 Statut Modérateur 10 305
 
Refais l'option 2.
0
Réponse 13 / 31
lola
 
escuse moi je viens d'arriver tu veux dire quoi par l'option 2
0
Réponse 14 / 31
Destrio5 Messages postés 99820 Statut Modérateur 10 305
 
Option 2 de Lop S&D.
0
Réponse 15 / 31
lola
 
ci joint le nouveau rapport

--------------------\\ Lop S&D 4.2.4-4 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : Mobile AMD Sempron(tm) Processor 3000+ )
BIOS : Insyde Software MobilePRO BIOS Version 4.20.10
USER : laurencep ( Administrator )
BOOT : Normal boot
Antivirus : Norton AntiVirus 2006 2005 (Activated)
Firewall : Norton Internet Security 2005 (Not Activated)
C:\ (Local Disk) - NTFS - Total : 68 Go Free : 20 Go
D:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 19-09-2008|22:20 )
Option : [2] ( 27/09/2008|22:22 )

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

--------------------\\ Listing des dossiers dans APPLIC~1

[08/12/2006|01:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[15/12/2006|12:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL
[16/01/2008|12:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[16/01/2008|12:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[16/12/2007|12:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[05/04/2008|14:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Flood Light Games
[02/03/2008|20:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FloodLightGames
[13/06/2008|14:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Friends Games
[27/09/2008|18:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar
[23/10/2007|13:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[26/09/2008|21:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
[13/06/2008|15:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\JollyBear
[17/11/2007|20:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[26/08/2007|19:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Mozilla
[09/06/2008|17:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PopCap
[08/12/2006|01:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[08/12/2006|01:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[07/07/2007|12:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[27/09/2008|22:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[01/07/2008|16:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TomTom
[15/03/2007|20:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\UDL
[27/03/2007|11:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[14/12/2006|20:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[04/07/2007|20:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WindowsLiveInstaller
[17/11/2007|20:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[24/03/2008|18:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion
[16/06/2008|15:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ZoomBrowser

[08/12/2006|01:47] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[04/07/2007|20:21] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[08/12/2006|01:47] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Real
[08/12/2006|01:47] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Sun
[08/12/2006|01:47] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec
[08/12/2006|01:47] C:\DOCUME~1\DEFAUL~1\APPLIC~1\You've Got Pictures Screensaver

[23/08/2008|11:31] C:\DOCUME~1\LAUREN~1\APPLIC~1\Adobe
[04/09/2008|07:28] C:\DOCUME~1\LAUREN~1\APPLIC~1\AdobeUM
[16/01/2008|19:42] C:\DOCUME~1\LAUREN~1\APPLIC~1\Apple Computer
[16/06/2008|15:48] C:\DOCUME~1\LAUREN~1\APPLIC~1\Canon
[01/07/2007|13:40] C:\DOCUME~1\LAUREN~1\APPLIC~1\CyberLink
[08/01/2008|14:16] C:\DOCUME~1\LAUREN~1\APPLIC~1\DivX
[05/04/2008|14:30] C:\DOCUME~1\LAUREN~1\APPLIC~1\Flood Light Games
[02/03/2008|20:30] C:\DOCUME~1\LAUREN~1\APPLIC~1\FloodLightGames
[23/10/2007|13:38] C:\DOCUME~1\LAUREN~1\APPLIC~1\Google
[15/11/2007|13:53] C:\DOCUME~1\LAUREN~1\APPLIC~1\Help
[08/12/2006|01:47] C:\DOCUME~1\LAUREN~1\APPLIC~1\Identities
[16/12/2007|21:40] C:\DOCUME~1\LAUREN~1\APPLIC~1\InstallShield
[19/05/2007|20:41] C:\DOCUME~1\LAUREN~1\APPLIC~1\Leadertech
[06/10/2007|16:55] C:\DOCUME~1\LAUREN~1\APPLIC~1\LG Electronics
[16/12/2007|22:04] C:\DOCUME~1\LAUREN~1\APPLIC~1\LG Image Editor
[12/04/2008|21:34] C:\DOCUME~1\LAUREN~1\APPLIC~1\LimeWire
[07/12/2006|19:06] C:\DOCUME~1\LAUREN~1\APPLIC~1\Macromedia
[01/10/2007|21:36] C:\DOCUME~1\LAUREN~1\APPLIC~1\Micro Application
[01/10/2007|20:09] C:\DOCUME~1\LAUREN~1\APPLIC~1\Microsoft
[14/12/2006|15:20] C:\DOCUME~1\LAUREN~1\APPLIC~1\Microsoft Web Folders
[01/07/2008|16:24] C:\DOCUME~1\LAUREN~1\APPLIC~1\Mozilla
[14/12/2006|19:38] C:\DOCUME~1\LAUREN~1\APPLIC~1\MSNInstaller
[25/09/2008|19:28] C:\DOCUME~1\LAUREN~1\APPLIC~1\PC Tools
[08/12/2006|01:47] C:\DOCUME~1\LAUREN~1\APPLIC~1\Real
[17/11/2007|16:17] C:\DOCUME~1\LAUREN~1\APPLIC~1\SecuROM
[15/03/2007|20:21] C:\DOCUME~1\LAUREN~1\APPLIC~1\Smart Panel
[19/05/2007|20:41] C:\DOCUME~1\LAUREN~1\APPLIC~1\Sonic
[08/12/2006|01:47] C:\DOCUME~1\LAUREN~1\APPLIC~1\Sun
[08/03/2007|11:22] C:\DOCUME~1\LAUREN~1\APPLIC~1\Symantec
[26/08/2007|19:46] C:\DOCUME~1\LAUREN~1\APPLIC~1\Talkback
[11/11/2007|13:23] C:\DOCUME~1\LAUREN~1\APPLIC~1\Template
[01/07/2008|16:24] C:\DOCUME~1\LAUREN~1\APPLIC~1\TomTom
[07/08/2008|12:15] C:\DOCUME~1\LAUREN~1\APPLIC~1\U3
[24/03/2008|18:14] C:\DOCUME~1\LAUREN~1\APPLIC~1\Yahoo!
[08/12/2006|01:47] C:\DOCUME~1\LAUREN~1\APPLIC~1\You've Got Pictures Screensaver
[16/06/2008|16:01] C:\DOCUME~1\LAUREN~1\APPLIC~1\ZoomBrowser EX

[26/06/2007|14:35] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[10/03/2007|09:30] C:\DOCUME~1\LOCALS~1\APPLIC~1\Symantec

[08/12/2006|01:47] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[27/09/2008 16:11][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[27/09/2008 18:53][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[26/09/2008 21:48][--a------] C:\WINDOWS\tasks\Norton AntiVirus - Effectuer une analyse complŠte du systŠme - laurencep.job
[07/12/2006 17:01][--a------] C:\WINDOWS\tasks\Rappel d'enregistrement 3.job
[27/09/2008 22:01][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 14:00][-rah-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[08/12/2006|01:47] C:\Program Files\Adobe
[29/05/2007|14:22] C:\Program Files\Ahead
[14/02/2007|16:31] C:\Program Files\Alcoda
[29/07/2007|10:55] C:\Program Files\Alwil Software
[08/12/2006|01:47] C:\Program Files\AMD
[15/12/2006|12:11] C:\Program Files\AOL 9.0
[08/12/2006|01:47] C:\Program Files\AOL Compagnon
[15/05/2008|11:54] C:\Program Files\Apple Software Update
[24/11/2007|18:50] C:\Program Files\Atari
[08/12/2006|01:47] C:\Program Files\ATI Technologies
[16/01/2008|12:06] C:\Program Files\Bonjour
[16/06/2008|15:21] C:\Program Files\Canon
[25/09/2008|18:26] C:\Program Files\CCleaner
[08/12/2006|01:47] C:\Program Files\ComPlus Applications
[21/04/2007|20:32] C:\Program Files\cyberiummedia
[08/12/2006|01:47] C:\Program Files\CyberLink
[07/05/2007|17:14] C:\Program Files\Disney Interactive
[24/03/2008|18:13] C:\Program Files\DivX
[08/12/2006|01:48] C:\Program Files\Dynamic Toolbar
[17/11/2007|16:04] C:\Program Files\EA GAMES
[16/08/2008|21:02] C:\Program Files\Electronic Arts
[24/11/2007|17:21] C:\Program Files\Emme
[26/09/2008|11:33] C:\Program Files\eMule
[15/03/2007|20:12] C:\Program Files\EPSON
[16/06/2008|15:06] C:\Program Files\Fichiers communs
[14/12/2006|15:19] C:\Program Files\FoneSync
[05/04/2008|14:30] C:\Program Files\GamesBar
[23/10/2007|13:38] C:\Program Files\Google
[21/04/2007|20:41] C:\Program Files\Infogrames
[01/03/2008|01:40] C:\Program Files\InstallShield Installation Information
[27/09/2008|14:51] C:\Program Files\Internet Explorer
[15/05/2008|12:05] C:\Program Files\iPod
[15/05/2008|12:06] C:\Program Files\iTunes
[11/04/2008|06:40] C:\Program Files\Java
[14/02/2007|18:30] C:\Program Files\Knowledge Adventure
[08/12/2006|01:47] C:\Program Files\Learn2.com
[03/03/2007|15:05] C:\Program Files\LG Electronics
[16/12/2007|21:43] C:\Program Files\LG PC Suite 2
[27/09/2008|18:46] C:\Program Files\Lopxp
[25/06/2008|16:46] C:\Program Files\McDonaldsDragons
[13/08/2008|21:13] C:\Program Files\Messenger
[10/06/2007|12:32] C:\Program Files\Micro Application
[14/12/2006|15:25] C:\Program Files\Microsoft AutoRoute
[05/07/2007|23:09] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[14/12/2006|15:31] C:\Program Files\Microsoft Encarta
[08/12/2006|01:47] C:\Program Files\microsoft frontpage
[14/12/2006|15:24] C:\Program Files\Microsoft Money
[14/12/2006|15:20] C:\Program Files\microsoft office
[07/06/2007|14:28] C:\Program Files\Microsoft Picture It! PhotoPub
[17/11/2007|20:53] C:\Program Files\Microsoft SQL Server Compact Edition
[08/12/2006|01:47] C:\Program Files\Microsoft Visual Studio
[14/12/2006|15:23] C:\Program Files\Microsoft Works
[14/12/2006|15:09] C:\Program Files\Microsoft Works Suite 2001
[14/02/2007|18:11] C:\Program Files\Mindscape
[31/07/2007|12:05] C:\Program Files\MinitelADSL
[08/12/2006|01:51] C:\Program Files\Movie Maker
[26/08/2007|19:45] C:\Program Files\Mozilla Firefox
[14/12/2006|19:38] C:\Program Files\MSN
[08/12/2006|01:47] C:\Program Files\MSN Gaming Zone
[17/12/2006|20:01] C:\Program Files\MSXML 4.0
[22/04/2007|15:55] C:\Program Files\NetMeeting
[29/07/2007|10:46] C:\Program Files\Norton AntiVirus
[31/03/2007|21:03] C:\Program Files\OLYMPUS
[08/12/2006|01:51] C:\Program Files\Online Services
[02/03/2008|20:29] C:\Program Files\orange
[13/06/2007|14:55] C:\Program Files\Outlook Express
[11/04/2008|07:46] C:\Program Files\Picasa2
[15/05/2008|12:02] C:\Program Files\QuickTime
[08/12/2006|01:47] C:\Program Files\Real
[08/12/2006|01:47] C:\Program Files\Realtek
[25/09/2008|18:39] C:\Program Files\RegCleaner
[07/06/2007|15:19] C:\Program Files\Seagrand
[20/07/2007|11:40] C:\Program Files\Securitoo
[08/12/2006|01:52] C:\Program Files\Services en ligne
[15/03/2007|20:09] C:\Program Files\Smart Panel
[08/12/2006|01:47] C:\Program Files\Sonic
[27/09/2008|15:40] C:\Program Files\Spyware Doctor
[07/07/2007|12:19] C:\Program Files\Symantec
[08/12/2006|01:47] C:\Program Files\Synaptics
[01/07/2008|17:00] C:\Program Files\TomTom DesktopSuite
[25/09/2008|19:34] C:\Program Files\TomTom HOME 2
[25/09/2008|20:53] C:\Program Files\Trend Micro
[08/12/2006|01:47] C:\Program Files\Uninstall Information
[31/08/2007|11:51] C:\Program Files\Virtualis
[27/02/2008|21:33] C:\Program Files\Windows Live
[17/11/2007|20:56] C:\Program Files\Windows Live Favorites
[30/11/2007|18:06] C:\Program Files\Windows Live Toolbar
[03/03/2007|14:51] C:\Program Files\Windows Media Player
[08/12/2006|01:53] C:\Program Files\Windows NT
[08/12/2006|01:47] C:\Program Files\WindowsUpdate
[08/12/2006|01:47] C:\Program Files\xerox
[24/03/2008|18:13] C:\Program Files\Yahoo!

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[17/12/2006|14:01] C:\Program Files\Fichiers communs\Adobe
[29/05/2007|14:21] C:\Program Files\Fichiers communs\Ahead
[08/12/2006|01:48] C:\Program Files\Fichiers communs\AOL
[08/12/2006|01:48] C:\Program Files\Fichiers communs\aolshare
[16/01/2008|12:00] C:\Program Files\Fichiers communs\Apple
[16/06/2008|15:06] C:\Program Files\Fichiers communs\Canon
[08/12/2006|01:48] C:\Program Files\Fichiers communs\Designer
[08/12/2006|01:47] C:\Program Files\Fichiers communs\InstallShield
[08/12/2006|01:47] C:\Program Files\Fichiers communs\Java
[17/11/2007|20:46] C:\Program Files\Fichiers communs\Microsoft Shared
[08/12/2006|01:47] C:\Program Files\Fichiers communs\MSSoap
[31/03/2007|21:08] C:\Program Files\Fichiers communs\muvee Technologies
[08/12/2006|01:47] C:\Program Files\Fichiers communs\Nullsoft
[13/06/2008|20:23] C:\Program Files\Fichiers communs\Oberon Media
[08/12/2006|01:47] C:\Program Files\Fichiers communs\ODBC
[08/12/2006|01:47] C:\Program Files\Fichiers communs\Real
[08/12/2006|01:49] C:\Program Files\Fichiers communs\Services
[08/12/2006|01:49] C:\Program Files\Fichiers communs\Sonic Shared
[08/12/2006|01:47] C:\Program Files\Fichiers communs\SpeechEngines
[08/12/2006|01:49] C:\Program Files\Fichiers communs\SureThing Shared
[27/09/2008|00:02] C:\Program Files\Fichiers communs\Symantec Shared
[13/06/2007|14:55] C:\Program Files\Fichiers communs\System
[17/11/2007|20:43] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[08/12/2006|01:47] C:\Program Files\Fichiers communs\xing shared

--------------------\\ Process

( 71 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\DOCUME~1\LAUREN~1\Cookies\laurencep@advertising[2].txt

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE

--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-27 22:25:17
Windows 5.1.2600 Service Pack 2 NTFS
detected NTDLL code modification:
ZwClose
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 15

--------------------\\ Recherche d'autres infections

Aucune autre infection trouvée !

[F:7][D:4]-> C:\DOCUME~1\LAUREN~1\LOCALS~1\Temp
[F:152][D:0]-> C:\DOCUME~1\LAUREN~1\Cookies
[F:2947][D:4]-> C:\DOCUME~1\LAUREN~1\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 27/09/2008|18:40 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 27/09/2008|18:58 - Option : [2]
3 - "C:\Lop SD\LopR_3.txt" - 27/09/2008|22:28 - Option : [2]

--------------------\\ Fin du rapport a 22:28:03

je peux fermer la fenetre?
0
Réponse 16 / 31
Destrio5 Messages postés 99820 Statut Modérateur 10 305
 
---> Supprime Lop S&D

---> Fais un scan rapide avec MBAM, supprime tout ce qu'il trouve et poste le rapport :
http://www.download.com/Malwarebytes-Anti-Malware/3000-8022_4-10804572.htm
0
Réponse 17 / 31
lola
 
c'est quoi MBAM?
0
Réponse 18 / 31
Destrio5 Messages postés 99820 Statut Modérateur 10 305
 
MalwareBytes' Anti-Malware
0
Réponse 19 / 31
lola
 
Malwarebytes' Anti-Malware 1.28
Version de la base de données: 1215
Windows 5.1.2600 Service Pack 2

27/09/2008 23:22:00
mbam-log-2008-09-27 (23-21-49).txt

Type de recherche: Examen rapide
Eléments examinés: 50355
Temps écoulé: 8 minute(s), 25 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 11
Valeur(s) du Registre infectée(s): 1
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 4
Fichier(s) infecté(s): 45

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\oberontb.band (Adware.Gamesbar) -> No action taken.
HKEY_CLASSES_ROOT\oberontb.band.1 (Adware.Gamesbar) -> No action taken.
HKEY_CLASSES_ROOT\pbfrv2.pbfrv2 (Adware.2020Search) -> No action taken.
HKEY_CLASSES_ROOT\popcaploader.popcaploaderctrl2 (Adware.PopCap) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\c:/windows/downloaded program files/popcaploader.dll (Adware.PopCap) -> No action taken.
HKEY_CLASSES_ROOT\TypeLib\{c9c5deaf-0a1f-4660-8279-9edfad6fefe1} (Adware.PopCap) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{e4e3e0f8-cd30-4380-8ce9-b96904bdefca} (Adware.PopCap) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{fe8a736f-4124-4d9c-b4b1-3b12381efabe} (Adware.PopCap) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{df780f87-ff2b-4df8-92d0-73db16a1543a} (Adware.PopCap) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{df780f87-ff2b-4df8-92d0-73db16a1543a} (Adware.PopCap) -> No action taken.
HKEY_CLASSES_ROOT\popcaploader.popcaploaderctrl2.1 (Adware.PopCap) -> No action taken.

Valeur(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\C:\WINDOWS\Downloaded Program Files\popcaploader.dll (Adware.PopCap) -> No action taken.

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
C:\Program Files\dynamic toolbar (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\Cache (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\PBFRV2 (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\PBFRV2\Cache (Adware.2020search) -> No action taken.

Fichier(s) infecté(s):
C:\WINDOWS\Downloaded Program Files\popcaploader.dll (Adware.PopCap) -> No action taken.
C:\Program Files\dynamic toolbar\batch.bat (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\unins000.dat (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\unins000.exe (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\Cache\go.bmp (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\Cache\home.bmp (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\Cache\logo_pb.bmp (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\Cache\parent_off.bmp (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\Cache\parent_on.bmp (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\Cache\pbfrv2tb0200.cfg (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\Cache\popup_off.bmp (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\Cache\popup_on.bmp (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\Cache\search.bmp (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\Cache\services.bmp (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\Cache\skin.bmp (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\Cache\skin1.bmp (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\Cache\skin2.bmp (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\Cache\skin3.bmp (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\Cache\skin4.bmp (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\Cache\skin5.bmp (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\Cache\store.bmp (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\Cache\style.css (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\Cache\support.bmp (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\Cache\ticker.xml (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\PBFRV2\Cache\ErrorLog.txt (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\PBFRV2\Cache\go.bmp (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\PBFRV2\Cache\home.bmp (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\PBFRV2\Cache\logo_pb.bmp (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\PBFRV2\Cache\parent_off.bmp (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\PBFRV2\Cache\parent_on.bmp (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\PBFRV2\Cache\PBFRV2TB0200.cfg (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\PBFRV2\Cache\popup_off.bmp (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\PBFRV2\Cache\popup_on.bmp (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\PBFRV2\Cache\search.bmp (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\PBFRV2\Cache\services.bmp (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\PBFRV2\Cache\skin.bmp (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\PBFRV2\Cache\skin1.bmp (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\PBFRV2\Cache\skin2.bmp (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\PBFRV2\Cache\skin3.bmp (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\PBFRV2\Cache\skin4.bmp (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\PBFRV2\Cache\skin5.bmp (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\PBFRV2\Cache\store.bmp (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\PBFRV2\Cache\style.css (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\PBFRV2\Cache\support.bmp (Adware.2020search) -> No action taken.
C:\Program Files\dynamic toolbar\PBFRV2\Cache\ticker.xml (Adware.2020search) -> No action taken.
0
Réponse 20 / 31
Destrio5 Messages postés 99820 Statut Modérateur 10 305
 
Tu peux cliquer sur Supprimer la sélection.
0

Discussions similaires

Ouvrir un fichier .pub sans Publisher
baissaoui -
baissaoui -

0 réponse
Ouvrir document Publisher sans Publisher
Curtis Hayes -
Curtis Hayes -

7 réponses
lire un fichier .pub
xycoco -
Valou -

38 réponses
Lire, afficher, exécuter un fichier *.pub sans Publisher
jeannoellaurenti -
informatique_fujitsu -

1 réponse
Recherche nom acteur Pub
Visu -
Lorenzo -

4 réponses