Raport Hijackthis
peace&love
Messages postés
68
Statut
Membre
-
peace&love Messages postés 68 Statut Membre -
peace&love Messages postés 68 Statut Membre -
Bonjour,
Une Amie a besoin d'aide elle est embêtée par ces pubs qui s'affichent sans arrêt quelles lignes il faut supprimer svp?
Merci d'avance.
Logfile of HijackThis v1.99.1
Scan saved at 00:44:45, on 28/09/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\vsnp2std.exe
C:\Program Files\Samsung\Samsung Media Studio 5\SMSTray.exe
C:\Program Files\MarkAny\ContentSafer\MAAgent.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\PROGRA~1\HELPAN~1\Presario\XPHWWRF4\plugin\bin\pchbutton.exe
C:\Program Files\Fichiers communs\AOL\Screensaver\ygpsstra.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Philips\SPC 200NC PC Camera\TrayMin200.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\MioNet\MioNetManager.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\MioNet\jvm\bin\MioNet.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\WinRAR\WinRAR.exe
C:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE
C:\WINDOWS\system32\SearchProtocolHost.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q404&bd=presario&pf=desktop
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q404&bd=presario&pf=desktop
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ww17.ads.eorezo.com/cgi-bin/advert/getads.cgi?x_format=redirect&x_dp_id=9
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://fr.rd.yahoo.com/customize/ie/defaults/su/msgr8/*https://fr.search.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\Userinit.exe
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: (no name) - {0494D0D1-F8E0-41ad-92A3-14154ECE70AC} - (no file)
O2 - BHO: (no name) - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O2 - BHO: (no name) - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - (no file)
O3 - Toolbar: (no name) - {0494D0D9-F8E0-41ad-92A3-14154ECE70AC} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [snp2std] C:\WINDOWS\vsnp2std.exe
O4 - HKLM\..\Run: [SMSTray] C:\Program Files\Samsung\Samsung Media Studio 5\SMSTray.exe
O4 - HKLM\..\Run: [MAAgent] C:\Program Files\MarkAny\ContentSafer\MAAgent.exe
O4 - HKLM\..\Run: [Bat Wave Base Dale] C:\Documents and Settings\All Users\Application Data\Link Axis Bat Wave\mags dead.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Acme.PCHButton] C:\PROGRA~1\HELPAN~1\Presario\XPHWWRF4\plugin\bin\pchbutton.exe
O4 - HKCU\..\Run: [Ecran de veille] C:\Program Files\Fichiers communs\AOL\Screensaver\ygpsstra.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Blue keep] C:\DOCUME~1\COMPAQ~1\APPLIC~1\ISOADM~1\Open thunk.exe
O4 - Global Startup: TrayMin300.exe.lnk = C:\Program Files\Philips\SPC 200NC PC Camera\TrayMin200.exe
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase5036.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {C79D3167-6133-4E7C-821C-5C114611022D} (CamImage Class) - http://visioweb.innovatys.fr/unicam/CameraControl.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Google Desktop Manager 5.7.801.1629 (GoogleDesktopManager-010108-205858) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: MioNet Service (MioNet) - Unknown owner - C:\Program Files\MioNet\MioNetManager.exe" -s "C:\Program Files\MioNet\wrapper.conf (file missing)
O23 - Service: OneCare Firewall (msfwsvc) - Unknown owner - C:\Program Files\Microsoft Windows OneCare Live\Firewall\msfwsvc.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: OneCare AntiSpyware and AntiVirus (OneCareMP) - Unknown owner - C:\Program Files\Microsoft Windows OneCare Live\Antivirus\MsMpEng.exe (file missing)
Une Amie a besoin d'aide elle est embêtée par ces pubs qui s'affichent sans arrêt quelles lignes il faut supprimer svp?
Merci d'avance.
Logfile of HijackThis v1.99.1
Scan saved at 00:44:45, on 28/09/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\vsnp2std.exe
C:\Program Files\Samsung\Samsung Media Studio 5\SMSTray.exe
C:\Program Files\MarkAny\ContentSafer\MAAgent.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\PROGRA~1\HELPAN~1\Presario\XPHWWRF4\plugin\bin\pchbutton.exe
C:\Program Files\Fichiers communs\AOL\Screensaver\ygpsstra.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Philips\SPC 200NC PC Camera\TrayMin200.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\MioNet\MioNetManager.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\MioNet\jvm\bin\MioNet.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\WinRAR\WinRAR.exe
C:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE
C:\WINDOWS\system32\SearchProtocolHost.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q404&bd=presario&pf=desktop
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=FR_FR&c=Q404&bd=presario&pf=desktop
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ww17.ads.eorezo.com/cgi-bin/advert/getads.cgi?x_format=redirect&x_dp_id=9
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://fr.rd.yahoo.com/customize/ie/defaults/su/msgr8/*https://fr.search.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\Userinit.exe
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: (no name) - {0494D0D1-F8E0-41ad-92A3-14154ECE70AC} - (no file)
O2 - BHO: (no name) - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O2 - BHO: (no name) - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - (no file)
O3 - Toolbar: (no name) - {0494D0D9-F8E0-41ad-92A3-14154ECE70AC} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [snp2std] C:\WINDOWS\vsnp2std.exe
O4 - HKLM\..\Run: [SMSTray] C:\Program Files\Samsung\Samsung Media Studio 5\SMSTray.exe
O4 - HKLM\..\Run: [MAAgent] C:\Program Files\MarkAny\ContentSafer\MAAgent.exe
O4 - HKLM\..\Run: [Bat Wave Base Dale] C:\Documents and Settings\All Users\Application Data\Link Axis Bat Wave\mags dead.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Acme.PCHButton] C:\PROGRA~1\HELPAN~1\Presario\XPHWWRF4\plugin\bin\pchbutton.exe
O4 - HKCU\..\Run: [Ecran de veille] C:\Program Files\Fichiers communs\AOL\Screensaver\ygpsstra.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Blue keep] C:\DOCUME~1\COMPAQ~1\APPLIC~1\ISOADM~1\Open thunk.exe
O4 - Global Startup: TrayMin300.exe.lnk = C:\Program Files\Philips\SPC 200NC PC Camera\TrayMin200.exe
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase5036.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {C79D3167-6133-4E7C-821C-5C114611022D} (CamImage Class) - http://visioweb.innovatys.fr/unicam/CameraControl.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Google Desktop Manager 5.7.801.1629 (GoogleDesktopManager-010108-205858) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: MioNet Service (MioNet) - Unknown owner - C:\Program Files\MioNet\MioNetManager.exe" -s "C:\Program Files\MioNet\wrapper.conf (file missing)
O23 - Service: OneCare Firewall (msfwsvc) - Unknown owner - C:\Program Files\Microsoft Windows OneCare Live\Firewall\msfwsvc.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: OneCare AntiSpyware and AntiVirus (OneCareMP) - Unknown owner - C:\Program Files\Microsoft Windows OneCare Live\Antivirus\MsMpEng.exe (file missing)
A voir également:
- Raport Hijackthis
- Hijackthis - Télécharger - Antivirus & Antimalwares
- Fastec raport page - Télécharger - Outils professionnels
- Rapport Hijackthis ✓ - Forum Virus
- Entraide Hijackthis ✓ - Forum Virus
- Analyse HiJackThis - Forum Virus
3 réponses
Salut,
---> Télécharge Lop S&D sur ton Bureau
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
---> Double-clique dessus pour lancer l'installation
---> Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
---> Séléctionne la langue souhaitée, puis choisis l'option 1 (Recherche)
---> Patiente jusqu'à la fin du scan
---> Poste le rapport généré (C:\lopR.txt)
---> Télécharge Lop S&D sur ton Bureau
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
---> Double-clique dessus pour lancer l'installation
---> Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
---> Séléctionne la langue souhaitée, puis choisis l'option 1 (Recherche)
---> Patiente jusqu'à la fin du scan
---> Poste le rapport généré (C:\lopR.txt)
---> Relance Lop S&D
---> Choisis cette fois-ci l'option 2 (Suppression)
---> Ne ferme pas la fenêtre lors de la suppression !
---> Poste le rapport généré (C:\lopR.txt)
---> Choisis cette fois-ci l'option 2 (Suppression)
---> Ne ferme pas la fenêtre lors de la suppression !
---> Poste le rapport généré (C:\lopR.txt)
Voila
merci
--------------------\\ Lop S&D 4.2.4-4 XP/Vista
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : AMD Sempron(tm) 3000+ )
BIOS : Rev. 3.11
USER : Compaq_Propriétaire ( Administrator )
BOOT : Normal boot
Antivirus : StopSign Antivirus FREE TRIAL diagnostic version 1.0.0.1 (Not Activated)
Firewall : Pare-feu Windows Live OneCare 1.0.0 (Not Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total : 144 Go Free : 110 Go
D:\ (Local Disk) - FAT32 - Total : 4 Go Free : 1 Go
E:\ (CD or DVD)
F:\ (CD or DVD)
"C:\Lop SD" ( MAJ : 19-09-2008|22:20 )
Option : [2] ( 29/09/2008|13:30 )
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION
Supprime! - C:\DOCUME~1\COMPAQ~1\APPLIC~1\isoadm~1\fecmmbch.exe
Supprime! - C:\DOCUME~1\COMPAQ~1\APPLIC~1\isoadm~1\GREATBONEVGA.exe
Supprime! - C:\DOCUME~1\COMPAQ~1\APPLIC~1\isoadm~1\Open thunk.exe
Supprime! - C:\DOCUME~1\COMPAQ~1\APPLIC~1\isoadm~1\qixgumfq.exe
Supprime! - C:\DOCUME~1\COMPAQ~1\APPLIC~1\isoadm~1\WARNMOVESIZEFUNK.exe
Supprime! - C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@advertising[1].txt
Supprime! - C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@bigpoint[1].txt
Supprime! - C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@fr.thepimps.bigpoint[2].txt
Supprime! - C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@adopt.euroclick[1].txt
Supprime! - C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@32vegas[1].txt
Supprime! - C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@banner.32vegas[2].txt
Supprime! - C:\WINDOWS\Tasks\A9A5A098918A56E0.job
Supprime! - C:\DOCUME~1\COMPAQ~1\APPLIC~1\isoadm~1
Supprime! - C:\Program Files\isoadm~1
Supprime! - C:\Program Files\Circle Developement
-
[ Fichier Hosts ] .. Restaure!
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing des dossiers dans APPLIC~1
[22/08/2008|17:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[19/07/2007|17:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL
[21/03/2008|15:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[27/12/2006|15:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[23/01/2008|14:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\avg7
[22/02/2007|17:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink
[31/03/2008|14:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\eAcceleration
[09/06/2007|11:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[23/01/2008|14:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
[02/01/2004|01:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InterVideo
[11/08/2007|22:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\lieslovemeetplatform
[27/09/2008|17:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MailFrontier
[28/09/2008|21:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[11/12/2007|20:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[22/04/2008|22:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[02/01/2004|02:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Motive
[05/06/2007|21:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Mozilla
[08/03/2006|21:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN Search Toolbar
[01/05/2008|16:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NannyMania
[20/05/2005|23:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
[15/03/2008|20:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst
[02/01/2004|02:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[01/01/2004|23:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[31/03/2008|14:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[05/05/2008|22:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[10/12/2006|18:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[12/08/2007|18:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WindowsLiveInstaller
[12/11/2007|21:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[10/03/2008|14:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo!
[28/09/2008|00:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion
[15/03/2008|19:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom
[22/08/2008|17:41] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Adobe
[10/04/2005|15:51] C:\DOCUME~1\COMPAQ~1\APPLIC~1\AdobeUM
[06/01/2007|21:35] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Ahead
[16/06/2007|18:13] C:\DOCUME~1\COMPAQ~1\APPLIC~1\AOL
[26/07/2007|15:48] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Apple Computer
[16/10/2007|21:12] C:\DOCUME~1\COMPAQ~1\APPLIC~1\ArcSoft
[23/01/2008|13:53] C:\DOCUME~1\COMPAQ~1\APPLIC~1\AVG7
[27/02/2008|15:33] C:\DOCUME~1\COMPAQ~1\APPLIC~1\ConvertTemp
[24/06/2008|11:25] C:\DOCUME~1\COMPAQ~1\APPLIC~1\DataCast
[11/04/2007|12:06] C:\DOCUME~1\COMPAQ~1\APPLIC~1\DeepBurner
[28/12/2006|16:18] C:\DOCUME~1\COMPAQ~1\APPLIC~1\eAcceleration
[31/03/2008|15:02] C:\DOCUME~1\COMPAQ~1\APPLIC~1\EoRezo
[15/03/2008|20:39] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Gamelab
[18/07/2007|19:35] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Google
[12/05/2008|12:52] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Help
[15/03/2008|19:51] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Identities
[16/10/2007|22:33] C:\DOCUME~1\COMPAQ~1\APPLIC~1\InstallShield
[12/03/2005|13:59] C:\DOCUME~1\COMPAQ~1\APPLIC~1\InterTrust
[10/03/2005|21:20] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Intervideo
[31/03/2008|14:32] C:\DOCUME~1\COMPAQ~1\APPLIC~1\ItsLabel
[30/03/2005|22:39] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Leadertech
[27/03/2005|20:43] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Macromedia
[28/09/2008|21:34] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Malwarebytes
[20/02/2008|17:04] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Microsoft
[22/03/2005|17:06] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Motive
[06/06/2007|11:14] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Mozilla
[08/03/2006|21:26] C:\DOCUME~1\COMPAQ~1\APPLIC~1\MSN Search Toolbar
[27/08/2007|22:23] C:\DOCUME~1\COMPAQ~1\APPLIC~1\MSNInstaller
[15/03/2008|20:28] C:\DOCUME~1\COMPAQ~1\APPLIC~1\PlayFirst
[09/06/2007|11:35] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Real
[02/01/2004|02:38] C:\DOCUME~1\COMPAQ~1\APPLIC~1\SampleView
[27/02/2008|15:13] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Samsung
[30/03/2005|22:40] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Sonic
[02/01/2004|01:08] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Sun
[01/01/2004|22:38] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Symantec
[06/06/2007|11:14] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Talkback
[10/03/2005|18:47] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Template
[27/02/2008|15:16] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Temporary
[27/02/2008|15:16] C:\DOCUME~1\COMPAQ~1\APPLIC~1\TransRender
[20/10/2007|15:19] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Windows Desktop Search
[30/06/2008|19:31] C:\DOCUME~1\COMPAQ~1\APPLIC~1\WinRAR
[27/03/2005|20:10] C:\DOCUME~1\COMPAQ~1\APPLIC~1\You've Got Pictures Screensaver
[15/03/2008|19:51] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Zylom
[02/01/2004|02:04] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Apple Computer
[01/01/2004|23:51] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[02/01/2004|01:55] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Intervideo
[12/08/2007|18:50] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[02/01/2004|02:38] C:\DOCUME~1\DEFAUL~1\APPLIC~1\SampleView
[02/01/2004|01:08] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Sun
[01/01/2004|22:38] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec
[24/07/2008|19:26] C:\DOCUME~1\hasan\APPLIC~1\Adobe
[16/06/2007|18:13] C:\DOCUME~1\hasan\APPLIC~1\AOL
[02/01/2004|02:04] C:\DOCUME~1\hasan\APPLIC~1\Apple Computer
[02/01/2007|14:46] C:\DOCUME~1\hasan\APPLIC~1\eAcceleration
[30/05/2005|22:00] C:\DOCUME~1\hasan\APPLIC~1\Ecran de veille
[01/02/2007|15:51] C:\DOCUME~1\hasan\APPLIC~1\Google
[15/02/2008|21:01] C:\DOCUME~1\hasan\APPLIC~1\Grisoft
[27/03/2005|18:32] C:\DOCUME~1\hasan\APPLIC~1\Help
[01/01/2004|23:51] C:\DOCUME~1\hasan\APPLIC~1\Identities
[15/07/2005|00:05] C:\DOCUME~1\hasan\APPLIC~1\Intervideo
[06/09/2005|12:18] C:\DOCUME~1\hasan\APPLIC~1\Leadertech
[29/03/2005|17:25] C:\DOCUME~1\hasan\APPLIC~1\Macromedia
[23/01/2008|14:13] C:\DOCUME~1\hasan\APPLIC~1\Microsoft
[29/03/2006|12:42] C:\DOCUME~1\hasan\APPLIC~1\MSN Search Toolbar
[02/01/2004|02:38] C:\DOCUME~1\hasan\APPLIC~1\SampleView
[06/09/2005|12:18] C:\DOCUME~1\hasan\APPLIC~1\Sonic
[02/01/2004|01:08] C:\DOCUME~1\hasan\APPLIC~1\Sun
[01/01/2004|22:38] C:\DOCUME~1\hasan\APPLIC~1\Symantec
[05/11/2007|20:46] C:\DOCUME~1\hasan\APPLIC~1\Windows Desktop Search
[09/06/2007|12:57] C:\DOCUME~1\INVIT~1\APPLIC~1\Adobe
[16/06/2007|18:13] C:\DOCUME~1\INVIT~1\APPLIC~1\AOL
[02/01/2004|02:04] C:\DOCUME~1\INVIT~1\APPLIC~1\Apple Computer
[11/02/2007|12:24] C:\DOCUME~1\INVIT~1\APPLIC~1\eAcceleration
[11/02/2007|12:12] C:\DOCUME~1\INVIT~1\APPLIC~1\Google
[01/01/2004|23:51] C:\DOCUME~1\INVIT~1\APPLIC~1\Identities
[02/01/2004|01:55] C:\DOCUME~1\INVIT~1\APPLIC~1\Intervideo
[23/01/2008|14:13] C:\DOCUME~1\INVIT~1\APPLIC~1\Microsoft
[22/11/2006|22:27] C:\DOCUME~1\INVIT~1\APPLIC~1\MSN Search Toolbar
[02/01/2004|02:38] C:\DOCUME~1\INVIT~1\APPLIC~1\SampleView
[02/01/2004|01:08] C:\DOCUME~1\INVIT~1\APPLIC~1\Sun
[01/01/2004|22:38] C:\DOCUME~1\INVIT~1\APPLIC~1\Symantec
[22/01/2008|20:07] C:\DOCUME~1\LOCALS~1\APPLIC~1\AVG7
[23/01/2008|14:13] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[23/01/2008|14:13] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[30/09/2006|14:38] C:\DOCUME~1\NETWOR~1\APPLIC~1\Symantec
[17/04/2008|19:41] C:\DOCUME~1\sevil\APPLIC~1\Adobe
[29/12/2006|22:45] C:\DOCUME~1\sevil\APPLIC~1\AdobeUM
[16/06/2007|18:13] C:\DOCUME~1\sevil\APPLIC~1\AOL
[03/08/2007|13:08] C:\DOCUME~1\sevil\APPLIC~1\Apple Computer
[29/12/2006|18:12] C:\DOCUME~1\sevil\APPLIC~1\eAcceleration
[29/05/2005|12:32] C:\DOCUME~1\sevil\APPLIC~1\Ecran de veille
[26/12/2006|00:02] C:\DOCUME~1\sevil\APPLIC~1\Google
[01/01/2004|23:51] C:\DOCUME~1\sevil\APPLIC~1\Identities
[10/10/2005|19:24] C:\DOCUME~1\sevil\APPLIC~1\Intervideo
[06/04/2005|13:34] C:\DOCUME~1\sevil\APPLIC~1\Macromedia
[23/01/2008|14:13] C:\DOCUME~1\sevil\APPLIC~1\Microsoft
[05/03/2007|19:00] C:\DOCUME~1\sevil\APPLIC~1\Motive
[23/04/2006|21:19] C:\DOCUME~1\sevil\APPLIC~1\MSN Search Toolbar
[02/01/2004|02:38] C:\DOCUME~1\sevil\APPLIC~1\SampleView
[02/01/2004|01:08] C:\DOCUME~1\sevil\APPLIC~1\Sun
[01/01/2004|22:38] C:\DOCUME~1\sevil\APPLIC~1\Symantec
[19/03/2005|12:25] C:\DOCUME~1\sevil\APPLIC~1\Template
[15/12/2007|20:41] C:\DOCUME~1\sevil\APPLIC~1\Windows Desktop Search
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[28/09/2008 22:58][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[09/05/2007 15:32][--ah-----] C:\WINDOWS\tasks\MP Scheduled Signature Update.job
[09/05/2007 15:32][--ah-----] C:\WINDOWS\tasks\MP Scheduled Quick Scan.job
[24/04/2008 01:33][--ah-----] C:\WINDOWS\tasks\MP Scheduled Scan.job
[12/09/2008 15:22][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[17/07/2005 16:17][--a------] C:\WINDOWS\tasks\Connexion facile … Internet.job
[05/08/2004 12:00][-rah-----] C:\WINDOWS\tasks\desktop.ini
[29/09/2008 13:26][--ah-----] C:\WINDOWS\tasks\SA.DAT
--------------------\\ Listing des dossiers dans C:\Program Files
[28/12/2006|16:16] C:\Program Files\Acceleration Software
[27/09/2008|12:20] C:\Program Files\Adobe
[15/10/2006|21:16] C:\Program Files\Ahead
[28/05/2007|13:23] C:\Program Files\Alwil Software
[31/03/2008|13:57] C:\Program Files\Antipub
[21/03/2008|15:07] C:\Program Files\Apple Software Update
[26/09/2007|19:36] C:\Program Files\ArcSoft
[18/07/2007|19:35] C:\Program Files\Astonsoft
[22/01/2008|20:01] C:\Program Files\AxBx
[27/09/2008|23:44] C:\Program Files\CCleaner
[10/03/2008|14:14] C:\Program Files\Common Files
[01/01/2004|23:49] C:\Program Files\ComPlus Applications
[31/12/2007|15:32] C:\Program Files\directx
[06/07/2008|19:18] C:\Program Files\Dofus
[31/03/2008|14:52] C:\Program Files\eAcceleration
[28/05/2005|21:17] C:\Program Files\Easy Internet signup
[31/03/2008|15:02] C:\Program Files\EoRezo
[14/03/2005|19:43] C:\Program Files\EPSON
[22/04/2008|22:34] C:\Program Files\Fichiers communs
[09/05/2007|14:01] C:\Program Files\Free
[20/05/2008|10:14] C:\Program Files\Gamenext
[22/04/2008|22:34] C:\Program Files\GamesBar
[27/09/2008|12:20] C:\Program Files\Google
[31/03/2008|20:08] C:\Program Files\Grisoft
[02/01/2004|02:13] C:\Program Files\Help and Support Additions
[28/09/2008|00:44] C:\Program Files\Hijackthis Version Fran‡aise
[24/06/2008|11:24] C:\Program Files\InstallShield Installation Information
[01/11/2005|20:16] C:\Program Files\InterActual
[22/08/2008|22:32] C:\Program Files\Internet Explorer
[03/03/2005|16:00] C:\Program Files\InterVideo
[27/12/2006|15:01] C:\Program Files\iPod
[27/12/2006|15:01] C:\Program Files\iTunes
[16/02/2007|19:34] C:\Program Files\Java
[27/03/2005|20:10] C:\Program Files\Learn2.com
[06/08/2007|17:57] C:\Program Files\LGGSM
[20/05/2008|10:18] C:\Program Files\LimeWire
[28/09/2008|21:34] C:\Program Files\Malwarebytes' Anti-Malware
[24/06/2008|11:24] C:\Program Files\MarkAny
[22/06/2008|20:01] C:\Program Files\MarkAny(2)
[24/03/2005|17:52] C:\Program Files\Maxis
[22/08/2008|22:32] C:\Program Files\Messenger
[22/09/2008|20:39] C:\Program Files\Messenger Plus! Live
[28/12/2007|19:01] C:\Program Files\Micro Application
[09/05/2007|17:45] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[01/01/2004|23:51] C:\Program Files\microsoft frontpage
[19/10/2007|22:34] C:\Program Files\Microsoft SQL Server Compact Edition
[16/06/2007|18:09] C:\Program Files\Microsoft Windows OneCare Live
[24/03/2005|23:11] C:\Program Files\Microsoft Works
[24/08/2008|12:42] C:\Program Files\MioNet
[01/01/2004|23:49] C:\Program Files\Movie Maker
[09/03/2008|17:25] C:\Program Files\Mozilla Firefox
[10/03/2005|21:10] C:\Program Files\MSN
[08/03/2006|21:25] C:\Program Files\MSN Apps
[01/01/2004|23:48] C:\Program Files\MSN Gaming Zone
[16/10/2007|21:05] C:\Program Files\MSN Messenger
[31/12/2007|15:32] C:\Program Files\MSXML 4.0
[27/12/2006|16:04] C:\Program Files\Nero
[26/11/2004|04:40] C:\Program Files\NetMeeting
[22/08/2008|17:39] C:\Program Files\Nokia
[19/10/2007|22:08] C:\Program Files\Norton AntiVirus
[01/01/2004|23:48] C:\Program Files\Online Services
[18/07/2007|19:36] C:\Program Files\Outlook Express
[15/10/2006|21:15] C:\Program Files\Philips
[27/12/2006|14:59] C:\Program Files\QuickTime
[27/03/2005|20:09] C:\Program Files\Real
[09/04/2005|22:23] C:\Program Files\Rockstar Games
[22/06/2008|15:29] C:\Program Files\Samsung
[02/01/2004|02:20] C:\Program Files\Services en ligne
[01/01/2004|21:33] C:\Program Files\SiS VGA Utilities V3.59e
[31/03/2008|14:54] C:\Program Files\Symantec
[23/01/2008|18:44] C:\Program Files\Trend Micro
[27/09/2007|17:34] C:\Program Files\TubeMaster
[01/01/2004|23:54] C:\Program Files\Uninstall Information
[22/06/2008|20:01] C:\Program Files\Wanadoo
[19/10/2007|22:34] C:\Program Files\Windows Desktop Search
[20/02/2008|17:42] C:\Program Files\Windows Live
[27/09/2008|12:28] C:\Program Files\Windows Live Safety Center
[19/10/2007|22:24] C:\Program Files\Windows Live Toolbar
[31/01/2007|16:48] C:\Program Files\Windows Media Connect 2
[11/10/2007|19:48] C:\Program Files\Windows Media Player
[26/11/2004|04:40] C:\Program Files\Windows NT
[01/01/2004|23:50] C:\Program Files\WindowsUpdate
[30/06/2008|19:31] C:\Program Files\WinRAR
[01/01/2004|23:51] C:\Program Files\xerox
[27/09/2008|23:44] C:\Program Files\Yahoo!
[16/03/2008|18:45] C:\Program Files\Zylom Games
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[06/08/2007|17:53] C:\Program Files\Fichiers communs\Adobe
[11/04/2007|12:31] C:\Program Files\Fichiers communs\Ahead
[19/07/2007|17:09] C:\Program Files\Fichiers communs\AOL
[27/03/2005|20:10] C:\Program Files\Fichiers communs\aolback
[19/10/2007|22:07] C:\Program Files\Fichiers communs\ArcSoft
[06/09/2005|19:47] C:\Program Files\Fichiers communs\DirectX
[31/03/2008|14:49] C:\Program Files\Fichiers communs\eAcceleration
[01/01/2004|21:33] C:\Program Files\Fichiers communs\InstallShield
[02/01/2004|01:08] C:\Program Files\Fichiers communs\Java
[20/02/2008|17:12] C:\Program Files\Fichiers communs\Microsoft Shared
[01/01/2004|23:49] C:\Program Files\Fichiers communs\MSSoap
[27/03/2005|20:09] C:\Program Files\Fichiers communs\Nullsoft
[22/04/2008|22:34] C:\Program Files\Fichiers communs\Oberon Media
[02/01/2004|00:45] C:\Program Files\Fichiers communs\ODBC
[18/07/2007|19:35] C:\Program Files\Fichiers communs\Real
[26/11/2004|04:40] C:\Program Files\Fichiers communs\Services
[19/10/2007|22:06] C:\Program Files\Fichiers communs\snp2std
[02/01/2004|00:45] C:\Program Files\Fichiers communs\SpeechEngines
[31/03/2008|14:58] C:\Program Files\Fichiers communs\Symantec Shared
[18/07/2007|19:36] C:\Program Files\Fichiers communs\System
[12/11/2007|21:28] C:\Program Files\Fichiers communs\WindowsLiveInstaller
--------------------\\ Process
( 43 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-29 13:31:10
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 287
--------------------\\ Recherche d'autres infections
--------------------\\ Cracks & Keygens ..
C:\DOCUME~1\COMPAQ~1\Local Settings\Temporary Internet Files\Content.IE5\4WTM66ZH\keyGen[1].htm
[F:43][D:3]-> C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp
[F:131][D:0]-> C:\DOCUME~1\COMPAQ~1\Cookies
[F:4061][D:8]-> C:\DOCUME~1\COMPAQ~1\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 28/09/2008|21:35 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 29/09/2008|13:33 - Option : [2]
--------------------\\ Fin du rapport a 13:33:32
merci
--------------------\\ Lop S&D 4.2.4-4 XP/Vista
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : AMD Sempron(tm) 3000+ )
BIOS : Rev. 3.11
USER : Compaq_Propriétaire ( Administrator )
BOOT : Normal boot
Antivirus : StopSign Antivirus FREE TRIAL diagnostic version 1.0.0.1 (Not Activated)
Firewall : Pare-feu Windows Live OneCare 1.0.0 (Not Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total : 144 Go Free : 110 Go
D:\ (Local Disk) - FAT32 - Total : 4 Go Free : 1 Go
E:\ (CD or DVD)
F:\ (CD or DVD)
"C:\Lop SD" ( MAJ : 19-09-2008|22:20 )
Option : [2] ( 29/09/2008|13:30 )
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION
Supprime! - C:\DOCUME~1\COMPAQ~1\APPLIC~1\isoadm~1\fecmmbch.exe
Supprime! - C:\DOCUME~1\COMPAQ~1\APPLIC~1\isoadm~1\GREATBONEVGA.exe
Supprime! - C:\DOCUME~1\COMPAQ~1\APPLIC~1\isoadm~1\Open thunk.exe
Supprime! - C:\DOCUME~1\COMPAQ~1\APPLIC~1\isoadm~1\qixgumfq.exe
Supprime! - C:\DOCUME~1\COMPAQ~1\APPLIC~1\isoadm~1\WARNMOVESIZEFUNK.exe
Supprime! - C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@advertising[1].txt
Supprime! - C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@bigpoint[1].txt
Supprime! - C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@fr.thepimps.bigpoint[2].txt
Supprime! - C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@adopt.euroclick[1].txt
Supprime! - C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@32vegas[1].txt
Supprime! - C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@banner.32vegas[2].txt
Supprime! - C:\WINDOWS\Tasks\A9A5A098918A56E0.job
Supprime! - C:\DOCUME~1\COMPAQ~1\APPLIC~1\isoadm~1
Supprime! - C:\Program Files\isoadm~1
Supprime! - C:\Program Files\Circle Developement
-
[ Fichier Hosts ] .. Restaure!
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing des dossiers dans APPLIC~1
[22/08/2008|17:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[19/07/2007|17:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL
[21/03/2008|15:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[27/12/2006|15:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[23/01/2008|14:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\avg7
[22/02/2007|17:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink
[31/03/2008|14:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\eAcceleration
[09/06/2007|11:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[23/01/2008|14:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
[02/01/2004|01:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InterVideo
[11/08/2007|22:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\lieslovemeetplatform
[27/09/2008|17:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MailFrontier
[28/09/2008|21:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[11/12/2007|20:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[22/04/2008|22:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[02/01/2004|02:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Motive
[05/06/2007|21:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Mozilla
[08/03/2006|21:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN Search Toolbar
[01/05/2008|16:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NannyMania
[20/05/2005|23:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
[15/03/2008|20:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst
[02/01/2004|02:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[01/01/2004|23:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[31/03/2008|14:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[05/05/2008|22:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[10/12/2006|18:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[12/08/2007|18:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WindowsLiveInstaller
[12/11/2007|21:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[10/03/2008|14:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo!
[28/09/2008|00:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion
[15/03/2008|19:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom
[22/08/2008|17:41] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Adobe
[10/04/2005|15:51] C:\DOCUME~1\COMPAQ~1\APPLIC~1\AdobeUM
[06/01/2007|21:35] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Ahead
[16/06/2007|18:13] C:\DOCUME~1\COMPAQ~1\APPLIC~1\AOL
[26/07/2007|15:48] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Apple Computer
[16/10/2007|21:12] C:\DOCUME~1\COMPAQ~1\APPLIC~1\ArcSoft
[23/01/2008|13:53] C:\DOCUME~1\COMPAQ~1\APPLIC~1\AVG7
[27/02/2008|15:33] C:\DOCUME~1\COMPAQ~1\APPLIC~1\ConvertTemp
[24/06/2008|11:25] C:\DOCUME~1\COMPAQ~1\APPLIC~1\DataCast
[11/04/2007|12:06] C:\DOCUME~1\COMPAQ~1\APPLIC~1\DeepBurner
[28/12/2006|16:18] C:\DOCUME~1\COMPAQ~1\APPLIC~1\eAcceleration
[31/03/2008|15:02] C:\DOCUME~1\COMPAQ~1\APPLIC~1\EoRezo
[15/03/2008|20:39] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Gamelab
[18/07/2007|19:35] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Google
[12/05/2008|12:52] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Help
[15/03/2008|19:51] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Identities
[16/10/2007|22:33] C:\DOCUME~1\COMPAQ~1\APPLIC~1\InstallShield
[12/03/2005|13:59] C:\DOCUME~1\COMPAQ~1\APPLIC~1\InterTrust
[10/03/2005|21:20] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Intervideo
[31/03/2008|14:32] C:\DOCUME~1\COMPAQ~1\APPLIC~1\ItsLabel
[30/03/2005|22:39] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Leadertech
[27/03/2005|20:43] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Macromedia
[28/09/2008|21:34] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Malwarebytes
[20/02/2008|17:04] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Microsoft
[22/03/2005|17:06] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Motive
[06/06/2007|11:14] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Mozilla
[08/03/2006|21:26] C:\DOCUME~1\COMPAQ~1\APPLIC~1\MSN Search Toolbar
[27/08/2007|22:23] C:\DOCUME~1\COMPAQ~1\APPLIC~1\MSNInstaller
[15/03/2008|20:28] C:\DOCUME~1\COMPAQ~1\APPLIC~1\PlayFirst
[09/06/2007|11:35] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Real
[02/01/2004|02:38] C:\DOCUME~1\COMPAQ~1\APPLIC~1\SampleView
[27/02/2008|15:13] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Samsung
[30/03/2005|22:40] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Sonic
[02/01/2004|01:08] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Sun
[01/01/2004|22:38] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Symantec
[06/06/2007|11:14] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Talkback
[10/03/2005|18:47] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Template
[27/02/2008|15:16] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Temporary
[27/02/2008|15:16] C:\DOCUME~1\COMPAQ~1\APPLIC~1\TransRender
[20/10/2007|15:19] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Windows Desktop Search
[30/06/2008|19:31] C:\DOCUME~1\COMPAQ~1\APPLIC~1\WinRAR
[27/03/2005|20:10] C:\DOCUME~1\COMPAQ~1\APPLIC~1\You've Got Pictures Screensaver
[15/03/2008|19:51] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Zylom
[02/01/2004|02:04] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Apple Computer
[01/01/2004|23:51] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[02/01/2004|01:55] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Intervideo
[12/08/2007|18:50] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[02/01/2004|02:38] C:\DOCUME~1\DEFAUL~1\APPLIC~1\SampleView
[02/01/2004|01:08] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Sun
[01/01/2004|22:38] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec
[24/07/2008|19:26] C:\DOCUME~1\hasan\APPLIC~1\Adobe
[16/06/2007|18:13] C:\DOCUME~1\hasan\APPLIC~1\AOL
[02/01/2004|02:04] C:\DOCUME~1\hasan\APPLIC~1\Apple Computer
[02/01/2007|14:46] C:\DOCUME~1\hasan\APPLIC~1\eAcceleration
[30/05/2005|22:00] C:\DOCUME~1\hasan\APPLIC~1\Ecran de veille
[01/02/2007|15:51] C:\DOCUME~1\hasan\APPLIC~1\Google
[15/02/2008|21:01] C:\DOCUME~1\hasan\APPLIC~1\Grisoft
[27/03/2005|18:32] C:\DOCUME~1\hasan\APPLIC~1\Help
[01/01/2004|23:51] C:\DOCUME~1\hasan\APPLIC~1\Identities
[15/07/2005|00:05] C:\DOCUME~1\hasan\APPLIC~1\Intervideo
[06/09/2005|12:18] C:\DOCUME~1\hasan\APPLIC~1\Leadertech
[29/03/2005|17:25] C:\DOCUME~1\hasan\APPLIC~1\Macromedia
[23/01/2008|14:13] C:\DOCUME~1\hasan\APPLIC~1\Microsoft
[29/03/2006|12:42] C:\DOCUME~1\hasan\APPLIC~1\MSN Search Toolbar
[02/01/2004|02:38] C:\DOCUME~1\hasan\APPLIC~1\SampleView
[06/09/2005|12:18] C:\DOCUME~1\hasan\APPLIC~1\Sonic
[02/01/2004|01:08] C:\DOCUME~1\hasan\APPLIC~1\Sun
[01/01/2004|22:38] C:\DOCUME~1\hasan\APPLIC~1\Symantec
[05/11/2007|20:46] C:\DOCUME~1\hasan\APPLIC~1\Windows Desktop Search
[09/06/2007|12:57] C:\DOCUME~1\INVIT~1\APPLIC~1\Adobe
[16/06/2007|18:13] C:\DOCUME~1\INVIT~1\APPLIC~1\AOL
[02/01/2004|02:04] C:\DOCUME~1\INVIT~1\APPLIC~1\Apple Computer
[11/02/2007|12:24] C:\DOCUME~1\INVIT~1\APPLIC~1\eAcceleration
[11/02/2007|12:12] C:\DOCUME~1\INVIT~1\APPLIC~1\Google
[01/01/2004|23:51] C:\DOCUME~1\INVIT~1\APPLIC~1\Identities
[02/01/2004|01:55] C:\DOCUME~1\INVIT~1\APPLIC~1\Intervideo
[23/01/2008|14:13] C:\DOCUME~1\INVIT~1\APPLIC~1\Microsoft
[22/11/2006|22:27] C:\DOCUME~1\INVIT~1\APPLIC~1\MSN Search Toolbar
[02/01/2004|02:38] C:\DOCUME~1\INVIT~1\APPLIC~1\SampleView
[02/01/2004|01:08] C:\DOCUME~1\INVIT~1\APPLIC~1\Sun
[01/01/2004|22:38] C:\DOCUME~1\INVIT~1\APPLIC~1\Symantec
[22/01/2008|20:07] C:\DOCUME~1\LOCALS~1\APPLIC~1\AVG7
[23/01/2008|14:13] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[23/01/2008|14:13] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[30/09/2006|14:38] C:\DOCUME~1\NETWOR~1\APPLIC~1\Symantec
[17/04/2008|19:41] C:\DOCUME~1\sevil\APPLIC~1\Adobe
[29/12/2006|22:45] C:\DOCUME~1\sevil\APPLIC~1\AdobeUM
[16/06/2007|18:13] C:\DOCUME~1\sevil\APPLIC~1\AOL
[03/08/2007|13:08] C:\DOCUME~1\sevil\APPLIC~1\Apple Computer
[29/12/2006|18:12] C:\DOCUME~1\sevil\APPLIC~1\eAcceleration
[29/05/2005|12:32] C:\DOCUME~1\sevil\APPLIC~1\Ecran de veille
[26/12/2006|00:02] C:\DOCUME~1\sevil\APPLIC~1\Google
[01/01/2004|23:51] C:\DOCUME~1\sevil\APPLIC~1\Identities
[10/10/2005|19:24] C:\DOCUME~1\sevil\APPLIC~1\Intervideo
[06/04/2005|13:34] C:\DOCUME~1\sevil\APPLIC~1\Macromedia
[23/01/2008|14:13] C:\DOCUME~1\sevil\APPLIC~1\Microsoft
[05/03/2007|19:00] C:\DOCUME~1\sevil\APPLIC~1\Motive
[23/04/2006|21:19] C:\DOCUME~1\sevil\APPLIC~1\MSN Search Toolbar
[02/01/2004|02:38] C:\DOCUME~1\sevil\APPLIC~1\SampleView
[02/01/2004|01:08] C:\DOCUME~1\sevil\APPLIC~1\Sun
[01/01/2004|22:38] C:\DOCUME~1\sevil\APPLIC~1\Symantec
[19/03/2005|12:25] C:\DOCUME~1\sevil\APPLIC~1\Template
[15/12/2007|20:41] C:\DOCUME~1\sevil\APPLIC~1\Windows Desktop Search
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[28/09/2008 22:58][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[09/05/2007 15:32][--ah-----] C:\WINDOWS\tasks\MP Scheduled Signature Update.job
[09/05/2007 15:32][--ah-----] C:\WINDOWS\tasks\MP Scheduled Quick Scan.job
[24/04/2008 01:33][--ah-----] C:\WINDOWS\tasks\MP Scheduled Scan.job
[12/09/2008 15:22][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[17/07/2005 16:17][--a------] C:\WINDOWS\tasks\Connexion facile … Internet.job
[05/08/2004 12:00][-rah-----] C:\WINDOWS\tasks\desktop.ini
[29/09/2008 13:26][--ah-----] C:\WINDOWS\tasks\SA.DAT
--------------------\\ Listing des dossiers dans C:\Program Files
[28/12/2006|16:16] C:\Program Files\Acceleration Software
[27/09/2008|12:20] C:\Program Files\Adobe
[15/10/2006|21:16] C:\Program Files\Ahead
[28/05/2007|13:23] C:\Program Files\Alwil Software
[31/03/2008|13:57] C:\Program Files\Antipub
[21/03/2008|15:07] C:\Program Files\Apple Software Update
[26/09/2007|19:36] C:\Program Files\ArcSoft
[18/07/2007|19:35] C:\Program Files\Astonsoft
[22/01/2008|20:01] C:\Program Files\AxBx
[27/09/2008|23:44] C:\Program Files\CCleaner
[10/03/2008|14:14] C:\Program Files\Common Files
[01/01/2004|23:49] C:\Program Files\ComPlus Applications
[31/12/2007|15:32] C:\Program Files\directx
[06/07/2008|19:18] C:\Program Files\Dofus
[31/03/2008|14:52] C:\Program Files\eAcceleration
[28/05/2005|21:17] C:\Program Files\Easy Internet signup
[31/03/2008|15:02] C:\Program Files\EoRezo
[14/03/2005|19:43] C:\Program Files\EPSON
[22/04/2008|22:34] C:\Program Files\Fichiers communs
[09/05/2007|14:01] C:\Program Files\Free
[20/05/2008|10:14] C:\Program Files\Gamenext
[22/04/2008|22:34] C:\Program Files\GamesBar
[27/09/2008|12:20] C:\Program Files\Google
[31/03/2008|20:08] C:\Program Files\Grisoft
[02/01/2004|02:13] C:\Program Files\Help and Support Additions
[28/09/2008|00:44] C:\Program Files\Hijackthis Version Fran‡aise
[24/06/2008|11:24] C:\Program Files\InstallShield Installation Information
[01/11/2005|20:16] C:\Program Files\InterActual
[22/08/2008|22:32] C:\Program Files\Internet Explorer
[03/03/2005|16:00] C:\Program Files\InterVideo
[27/12/2006|15:01] C:\Program Files\iPod
[27/12/2006|15:01] C:\Program Files\iTunes
[16/02/2007|19:34] C:\Program Files\Java
[27/03/2005|20:10] C:\Program Files\Learn2.com
[06/08/2007|17:57] C:\Program Files\LGGSM
[20/05/2008|10:18] C:\Program Files\LimeWire
[28/09/2008|21:34] C:\Program Files\Malwarebytes' Anti-Malware
[24/06/2008|11:24] C:\Program Files\MarkAny
[22/06/2008|20:01] C:\Program Files\MarkAny(2)
[24/03/2005|17:52] C:\Program Files\Maxis
[22/08/2008|22:32] C:\Program Files\Messenger
[22/09/2008|20:39] C:\Program Files\Messenger Plus! Live
[28/12/2007|19:01] C:\Program Files\Micro Application
[09/05/2007|17:45] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[01/01/2004|23:51] C:\Program Files\microsoft frontpage
[19/10/2007|22:34] C:\Program Files\Microsoft SQL Server Compact Edition
[16/06/2007|18:09] C:\Program Files\Microsoft Windows OneCare Live
[24/03/2005|23:11] C:\Program Files\Microsoft Works
[24/08/2008|12:42] C:\Program Files\MioNet
[01/01/2004|23:49] C:\Program Files\Movie Maker
[09/03/2008|17:25] C:\Program Files\Mozilla Firefox
[10/03/2005|21:10] C:\Program Files\MSN
[08/03/2006|21:25] C:\Program Files\MSN Apps
[01/01/2004|23:48] C:\Program Files\MSN Gaming Zone
[16/10/2007|21:05] C:\Program Files\MSN Messenger
[31/12/2007|15:32] C:\Program Files\MSXML 4.0
[27/12/2006|16:04] C:\Program Files\Nero
[26/11/2004|04:40] C:\Program Files\NetMeeting
[22/08/2008|17:39] C:\Program Files\Nokia
[19/10/2007|22:08] C:\Program Files\Norton AntiVirus
[01/01/2004|23:48] C:\Program Files\Online Services
[18/07/2007|19:36] C:\Program Files\Outlook Express
[15/10/2006|21:15] C:\Program Files\Philips
[27/12/2006|14:59] C:\Program Files\QuickTime
[27/03/2005|20:09] C:\Program Files\Real
[09/04/2005|22:23] C:\Program Files\Rockstar Games
[22/06/2008|15:29] C:\Program Files\Samsung
[02/01/2004|02:20] C:\Program Files\Services en ligne
[01/01/2004|21:33] C:\Program Files\SiS VGA Utilities V3.59e
[31/03/2008|14:54] C:\Program Files\Symantec
[23/01/2008|18:44] C:\Program Files\Trend Micro
[27/09/2007|17:34] C:\Program Files\TubeMaster
[01/01/2004|23:54] C:\Program Files\Uninstall Information
[22/06/2008|20:01] C:\Program Files\Wanadoo
[19/10/2007|22:34] C:\Program Files\Windows Desktop Search
[20/02/2008|17:42] C:\Program Files\Windows Live
[27/09/2008|12:28] C:\Program Files\Windows Live Safety Center
[19/10/2007|22:24] C:\Program Files\Windows Live Toolbar
[31/01/2007|16:48] C:\Program Files\Windows Media Connect 2
[11/10/2007|19:48] C:\Program Files\Windows Media Player
[26/11/2004|04:40] C:\Program Files\Windows NT
[01/01/2004|23:50] C:\Program Files\WindowsUpdate
[30/06/2008|19:31] C:\Program Files\WinRAR
[01/01/2004|23:51] C:\Program Files\xerox
[27/09/2008|23:44] C:\Program Files\Yahoo!
[16/03/2008|18:45] C:\Program Files\Zylom Games
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[06/08/2007|17:53] C:\Program Files\Fichiers communs\Adobe
[11/04/2007|12:31] C:\Program Files\Fichiers communs\Ahead
[19/07/2007|17:09] C:\Program Files\Fichiers communs\AOL
[27/03/2005|20:10] C:\Program Files\Fichiers communs\aolback
[19/10/2007|22:07] C:\Program Files\Fichiers communs\ArcSoft
[06/09/2005|19:47] C:\Program Files\Fichiers communs\DirectX
[31/03/2008|14:49] C:\Program Files\Fichiers communs\eAcceleration
[01/01/2004|21:33] C:\Program Files\Fichiers communs\InstallShield
[02/01/2004|01:08] C:\Program Files\Fichiers communs\Java
[20/02/2008|17:12] C:\Program Files\Fichiers communs\Microsoft Shared
[01/01/2004|23:49] C:\Program Files\Fichiers communs\MSSoap
[27/03/2005|20:09] C:\Program Files\Fichiers communs\Nullsoft
[22/04/2008|22:34] C:\Program Files\Fichiers communs\Oberon Media
[02/01/2004|00:45] C:\Program Files\Fichiers communs\ODBC
[18/07/2007|19:35] C:\Program Files\Fichiers communs\Real
[26/11/2004|04:40] C:\Program Files\Fichiers communs\Services
[19/10/2007|22:06] C:\Program Files\Fichiers communs\snp2std
[02/01/2004|00:45] C:\Program Files\Fichiers communs\SpeechEngines
[31/03/2008|14:58] C:\Program Files\Fichiers communs\Symantec Shared
[18/07/2007|19:36] C:\Program Files\Fichiers communs\System
[12/11/2007|21:28] C:\Program Files\Fichiers communs\WindowsLiveInstaller
--------------------\\ Process
( 43 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-29 13:31:10
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 287
--------------------\\ Recherche d'autres infections
--------------------\\ Cracks & Keygens ..
C:\DOCUME~1\COMPAQ~1\Local Settings\Temporary Internet Files\Content.IE5\4WTM66ZH\keyGen[1].htm
[F:43][D:3]-> C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp
[F:131][D:0]-> C:\DOCUME~1\COMPAQ~1\Cookies
[F:4061][D:8]-> C:\DOCUME~1\COMPAQ~1\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 28/09/2008|21:35 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 29/09/2008|13:33 - Option : [2]
--------------------\\ Fin du rapport a 13:33:32
merci de ton aide
je lui fais faire aussi un scane avec le logiciel Malwarebytes Anti Malwere
voici les deux raport :
--------------------\\ Lop S&D 4.2.4-4 XP/Vista
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : AMD Sempron(tm) 3000+ )
BIOS : Rev. 3.11
USER : Compaq_Propriétaire ( Administrator )
BOOT : Normal boot
Antivirus : StopSign Antivirus FREE TRIAL diagnostic version 1.0.0.1 (Not Activated)
Firewall : Pare-feu Windows Live OneCare 1.0.0 (Not Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total : 144 Go Free : 110 Go
D:\ (Local Disk) - FAT32 - Total : 4 Go Free : 1 Go
E:\ (CD or DVD)
F:\ (CD or DVD)
"C:\Lop SD" ( MAJ : 19-09-2008|22:20 )
Option : [1] ( 28/09/2008|21:29 )
--------------------\\ Listing des dossiers dans APPLIC~1
[22/08/2008|17:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[19/07/2007|17:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL
[21/03/2008|15:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[27/12/2006|15:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[23/01/2008|14:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\avg7
[22/02/2007|17:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink
[31/03/2008|14:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\eAcceleration
[09/06/2007|11:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[23/01/2008|14:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
[02/01/2004|01:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InterVideo
[11/08/2007|22:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\lieslovemeetplatform
[27/09/2008|18:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Link Axis Bat Wave
[27/09/2008|17:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MailFrontier
[11/12/2007|20:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[22/04/2008|22:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[02/01/2004|02:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Motive
[05/06/2007|21:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Mozilla
[08/03/2006|21:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN Search Toolbar
[01/05/2008|16:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NannyMania
[20/05/2005|23:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
[15/03/2008|20:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst
[02/01/2004|02:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[01/01/2004|23:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[31/03/2008|14:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[05/05/2008|22:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[10/12/2006|18:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[12/08/2007|18:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WindowsLiveInstaller
[12/11/2007|21:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[10/03/2008|14:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo!
[28/09/2008|00:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion
[15/03/2008|19:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom
[22/08/2008|17:41] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Adobe
[10/04/2005|15:51] C:\DOCUME~1\COMPAQ~1\APPLIC~1\AdobeUM
[06/01/2007|21:35] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Ahead
[16/06/2007|18:13] C:\DOCUME~1\COMPAQ~1\APPLIC~1\AOL
[26/07/2007|15:48] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Apple Computer
[16/10/2007|21:12] C:\DOCUME~1\COMPAQ~1\APPLIC~1\ArcSoft
[23/01/2008|13:53] C:\DOCUME~1\COMPAQ~1\APPLIC~1\AVG7
[27/02/2008|15:33] C:\DOCUME~1\COMPAQ~1\APPLIC~1\ConvertTemp
[24/06/2008|11:25] C:\DOCUME~1\COMPAQ~1\APPLIC~1\DataCast
[11/04/2007|12:06] C:\DOCUME~1\COMPAQ~1\APPLIC~1\DeepBurner
[28/12/2006|16:18] C:\DOCUME~1\COMPAQ~1\APPLIC~1\eAcceleration
[31/03/2008|15:02] C:\DOCUME~1\COMPAQ~1\APPLIC~1\EoRezo
[15/03/2008|20:39] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Gamelab
[18/07/2007|19:35] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Google
[12/05/2008|12:52] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Help
[15/03/2008|19:51] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Identities
[16/10/2007|22:33] C:\DOCUME~1\COMPAQ~1\APPLIC~1\InstallShield
[12/03/2005|13:59] C:\DOCUME~1\COMPAQ~1\APPLIC~1\InterTrust
[10/03/2005|21:20] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Intervideo
[27/09/2008|18:27] C:\DOCUME~1\COMPAQ~1\APPLIC~1\IsoAdminWindow
[31/03/2008|14:32] C:\DOCUME~1\COMPAQ~1\APPLIC~1\ItsLabel
[30/03/2005|22:39] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Leadertech
[27/03/2005|20:43] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Macromedia
[20/02/2008|17:04] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Microsoft
[22/03/2005|17:06] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Motive
[06/06/2007|11:14] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Mozilla
[08/03/2006|21:26] C:\DOCUME~1\COMPAQ~1\APPLIC~1\MSN Search Toolbar
[27/08/2007|22:23] C:\DOCUME~1\COMPAQ~1\APPLIC~1\MSNInstaller
[15/03/2008|20:28] C:\DOCUME~1\COMPAQ~1\APPLIC~1\PlayFirst
[09/06/2007|11:35] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Real
[02/01/2004|02:38] C:\DOCUME~1\COMPAQ~1\APPLIC~1\SampleView
[27/02/2008|15:13] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Samsung
[30/03/2005|22:40] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Sonic
[02/01/2004|01:08] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Sun
[01/01/2004|22:38] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Symantec
[06/06/2007|11:14] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Talkback
[10/03/2005|18:47] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Template
[27/02/2008|15:16] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Temporary
[27/02/2008|15:16] C:\DOCUME~1\COMPAQ~1\APPLIC~1\TransRender
[20/10/2007|15:19] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Windows Desktop Search
[30/06/2008|19:31] C:\DOCUME~1\COMPAQ~1\APPLIC~1\WinRAR
[27/03/2005|20:10] C:\DOCUME~1\COMPAQ~1\APPLIC~1\You've Got Pictures Screensaver
[15/03/2008|19:51] C:\DOCUME~1\COMPAQ~1\APPLIC~1\Zylom
[02/01/2004|02:04] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Apple Computer
[01/01/2004|23:51] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[02/01/2004|01:55] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Intervideo
[12/08/2007|18:50] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[02/01/2004|02:38] C:\DOCUME~1\DEFAUL~1\APPLIC~1\SampleView
[02/01/2004|01:08] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Sun
[01/01/2004|22:38] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec
[24/07/2008|19:26] C:\DOCUME~1\hasan\APPLIC~1\Adobe
[16/06/2007|18:13] C:\DOCUME~1\hasan\APPLIC~1\AOL
[02/01/2004|02:04] C:\DOCUME~1\hasan\APPLIC~1\Apple Computer
[02/01/2007|14:46] C:\DOCUME~1\hasan\APPLIC~1\eAcceleration
[30/05/2005|22:00] C:\DOCUME~1\hasan\APPLIC~1\Ecran de veille
[01/02/2007|15:51] C:\DOCUME~1\hasan\APPLIC~1\Google
[15/02/2008|21:01] C:\DOCUME~1\hasan\APPLIC~1\Grisoft
[27/03/2005|18:32] C:\DOCUME~1\hasan\APPLIC~1\Help
[01/01/2004|23:51] C:\DOCUME~1\hasan\APPLIC~1\Identities
[15/07/2005|00:05] C:\DOCUME~1\hasan\APPLIC~1\Intervideo
[06/09/2005|12:18] C:\DOCUME~1\hasan\APPLIC~1\Leadertech
[29/03/2005|17:25] C:\DOCUME~1\hasan\APPLIC~1\Macromedia
[23/01/2008|14:13] C:\DOCUME~1\hasan\APPLIC~1\Microsoft
[29/03/2006|12:42] C:\DOCUME~1\hasan\APPLIC~1\MSN Search Toolbar
[02/01/2004|02:38] C:\DOCUME~1\hasan\APPLIC~1\SampleView
[06/09/2005|12:18] C:\DOCUME~1\hasan\APPLIC~1\Sonic
[02/01/2004|01:08] C:\DOCUME~1\hasan\APPLIC~1\Sun
[01/01/2004|22:38] C:\DOCUME~1\hasan\APPLIC~1\Symantec
[29/03/2006|12:15] C:\DOCUME~1\hasan\APPLIC~1\WinAntiVirus Pro 2006
[05/11/2007|20:46] C:\DOCUME~1\hasan\APPLIC~1\Windows Desktop Search
[09/06/2007|12:57] C:\DOCUME~1\INVIT~1\APPLIC~1\Adobe
[16/06/2007|18:13] C:\DOCUME~1\INVIT~1\APPLIC~1\AOL
[02/01/2004|02:04] C:\DOCUME~1\INVIT~1\APPLIC~1\Apple Computer
[11/02/2007|12:24] C:\DOCUME~1\INVIT~1\APPLIC~1\eAcceleration
[11/02/2007|12:12] C:\DOCUME~1\INVIT~1\APPLIC~1\Google
[01/01/2004|23:51] C:\DOCUME~1\INVIT~1\APPLIC~1\Identities
[02/01/2004|01:55] C:\DOCUME~1\INVIT~1\APPLIC~1\Intervideo
[23/01/2008|14:13] C:\DOCUME~1\INVIT~1\APPLIC~1\Microsoft
[22/11/2006|22:27] C:\DOCUME~1\INVIT~1\APPLIC~1\MSN Search Toolbar
[02/01/2004|02:38] C:\DOCUME~1\INVIT~1\APPLIC~1\SampleView
[02/01/2004|01:08] C:\DOCUME~1\INVIT~1\APPLIC~1\Sun
[01/01/2004|22:38] C:\DOCUME~1\INVIT~1\APPLIC~1\Symantec
[22/01/2008|20:07] C:\DOCUME~1\LOCALS~1\APPLIC~1\AVG7
[23/01/2008|14:13] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[23/01/2008|14:13] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[30/09/2006|14:38] C:\DOCUME~1\NETWOR~1\APPLIC~1\Symantec
[17/04/2008|19:41] C:\DOCUME~1\sevil\APPLIC~1\Adobe
[29/12/2006|22:45] C:\DOCUME~1\sevil\APPLIC~1\AdobeUM
[16/06/2007|18:13] C:\DOCUME~1\sevil\APPLIC~1\AOL
[03/08/2007|13:08] C:\DOCUME~1\sevil\APPLIC~1\Apple Computer
[29/12/2006|18:12] C:\DOCUME~1\sevil\APPLIC~1\eAcceleration
[29/05/2005|12:32] C:\DOCUME~1\sevil\APPLIC~1\Ecran de veille
[26/12/2006|00:02] C:\DOCUME~1\sevil\APPLIC~1\Google
[01/01/2004|23:51] C:\DOCUME~1\sevil\APPLIC~1\Identities
[10/10/2005|19:24] C:\DOCUME~1\sevil\APPLIC~1\Intervideo
[06/04/2005|13:34] C:\DOCUME~1\sevil\APPLIC~1\Macromedia
[23/01/2008|14:13] C:\DOCUME~1\sevil\APPLIC~1\Microsoft
[05/03/2007|19:00] C:\DOCUME~1\sevil\APPLIC~1\Motive
[23/04/2006|21:19] C:\DOCUME~1\sevil\APPLIC~1\MSN Search Toolbar
[02/01/2004|02:38] C:\DOCUME~1\sevil\APPLIC~1\SampleView
[02/01/2004|01:08] C:\DOCUME~1\sevil\APPLIC~1\Sun
[01/01/2004|22:38] C:\DOCUME~1\sevil\APPLIC~1\Symantec
[19/03/2005|12:25] C:\DOCUME~1\sevil\APPLIC~1\Template
[15/12/2007|20:41] C:\DOCUME~1\sevil\APPLIC~1\Windows Desktop Search
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[28/09/2008 21:00][--ah-----] C:\WINDOWS\tasks\A9A5A098918A56E0.job
[28/09/2008 20:58][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[09/05/2007 15:32][--ah-----] C:\WINDOWS\tasks\MP Scheduled Signature Update.job
[09/05/2007 15:32][--ah-----] C:\WINDOWS\tasks\MP Scheduled Quick Scan.job
[24/04/2008 01:33][--ah-----] C:\WINDOWS\tasks\MP Scheduled Scan.job
[12/09/2008 15:22][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[17/07/2005 16:17][--a------] C:\WINDOWS\tasks\Connexion facile … Internet.job
[05/08/2004 12:00][-rah-----] C:\WINDOWS\tasks\desktop.ini
[28/09/2008 20:26][--ah-----] C:\WINDOWS\tasks\SA.DAT
( A9A5A098918A56E0.job )=( c:\docume~1\compaq~1\applic~1\isoadm~1\GREATBONEVGA.exe )
--------------------\\ Listing des dossiers dans C:\Program Files
[28/12/2006|16:16] C:\Program Files\Acceleration Software
[27/09/2008|12:20] C:\Program Files\Adobe
[15/10/2006|21:16] C:\Program Files\Ahead
[28/05/2007|13:23] C:\Program Files\Alwil Software
[31/03/2008|13:57] C:\Program Files\Antipub
[21/03/2008|15:07] C:\Program Files\Apple Software Update
[26/09/2007|19:36] C:\Program Files\ArcSoft
[18/07/2007|19:35] C:\Program Files\Astonsoft
[22/01/2008|20:01] C:\Program Files\AxBx
[27/09/2008|23:44] C:\Program Files\CCleaner
[24/09/2008|19:01] C:\Program Files\Circle Developement
[10/03/2008|14:14] C:\Program Files\Common Files
[01/01/2004|23:49] C:\Program Files\ComPlus Applications
[31/12/2007|15:32] C:\Program Files\directx
[06/07/2008|19:18] C:\Program Files\Dofus
[31/03/2008|14:52] C:\Program Files\eAcceleration
[28/05/2005|21:17] C:\Program Files\Easy Internet signup
[31/03/2008|15:02] C:\Program Files\EoRezo
[14/03/2005|19:43] C:\Program Files\EPSON
[22/04/2008|22:34] C:\Program Files\Fichiers communs
[09/05/2007|14:01] C:\Program Files\Free
[20/05/2008|10:14] C:\Program Files\Gamenext
[22/04/2008|22:34] C:\Program Files\GamesBar
[27/09/2008|12:20] C:\Program Files\Google
[31/03/2008|20:08] C:\Program Files\Grisoft
[02/01/2004|02:13] C:\Program Files\Help and Support Additions
[28/09/2008|00:44] C:\Program Files\Hijackthis Version Fran‡aise
[24/06/2008|11:24] C:\Program Files\InstallShield Installation Information
[01/11/2005|20:16] C:\Program Files\InterActual
[22/08/2008|22:32] C:\Program Files\Internet Explorer
[03/03/2005|16:00] C:\Program Files\InterVideo
[27/12/2006|15:01] C:\Program Files\iPod
[27/09/2008|18:25] C:\Program Files\IsoAdminWindow
[27/12/2006|15:01] C:\Program Files\iTunes
[16/02/2007|19:34] C:\Program Files\Java
[27/03/2005|20:10] C:\Program Files\Learn2.com
[06/08/2007|17:57] C:\Program Files\LGGSM
[20/05/2008|10:18] C:\Program Files\LimeWire
[24/06/2008|11:24] C:\Program Files\MarkAny
[22/06/2008|20:01] C:\Program Files\MarkAny(2)
[24/03/2005|17:52] C:\Program Files\Maxis
[22/08/2008|22:32] C:\Program Files\Messenger
[22/09/2008|20:39] C:\Program Files\Messenger Plus! Live
[28/12/2007|19:01] C:\Program Files\Micro Application
[09/05/2007|17:45] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[01/01/2004|23:51] C:\Program Files\microsoft frontpage
[19/10/2007|22:34] C:\Program Files\Microsoft SQL Server Compact Edition
[16/06/2007|18:09] C:\Program Files\Microsoft Windows OneCare Live
[24/03/2005|23:11] C:\Program Files\Microsoft Works
[24/08/2008|12:42] C:\Program Files\MioNet
[01/01/2004|23:49] C:\Program Files\Movie Maker
[09/03/2008|17:25] C:\Program Files\Mozilla Firefox
[10/03/2005|21:10] C:\Program Files\MSN
[08/03/2006|21:25] C:\Program Files\MSN Apps
[01/01/2004|23:48] C:\Program Files\MSN Gaming Zone
[16/10/2007|21:05] C:\Program Files\MSN Messenger
[31/12/2007|15:32] C:\Program Files\MSXML 4.0
[27/03/2005|21:37] C:\Program Files\MyWay
[27/12/2006|16:04] C:\Program Files\Nero
[26/11/2004|04:40] C:\Program Files\NetMeeting
[22/08/2008|17:39] C:\Program Files\Nokia
[19/10/2007|22:08] C:\Program Files\Norton AntiVirus
[01/01/2004|23:48] C:\Program Files\Online Services
[18/07/2007|19:36] C:\Program Files\Outlook Express
[15/10/2006|21:15] C:\Program Files\Philips
[27/12/2006|14:59] C:\Program Files\QuickTime
[27/03/2005|20:09] C:\Program Files\Real
[09/04/2005|22:23] C:\Program Files\Rockstar Games
[22/06/2008|15:29] C:\Program Files\Samsung
[02/01/2004|02:20] C:\Program Files\Services en ligne
[01/01/2004|21:33] C:\Program Files\SiS VGA Utilities V3.59e
[31/03/2008|14:54] C:\Program Files\Symantec
[23/01/2008|18:44] C:\Program Files\Trend Micro
[27/09/2007|17:34] C:\Program Files\TubeMaster
[01/01/2004|23:54] C:\Program Files\Uninstall Information
[22/06/2008|20:01] C:\Program Files\Wanadoo
[19/10/2007|22:34] C:\Program Files\Windows Desktop Search
[20/02/2008|17:42] C:\Program Files\Windows Live
[27/09/2008|12:28] C:\Program Files\Windows Live Safety Center
[19/10/2007|22:24] C:\Program Files\Windows Live Toolbar
[31/01/2007|16:48] C:\Program Files\Windows Media Connect 2
[11/10/2007|19:48] C:\Program Files\Windows Media Player
[26/11/2004|04:40] C:\Program Files\Windows NT
[01/01/2004|23:50] C:\Program Files\WindowsUpdate
[30/06/2008|19:31] C:\Program Files\WinRAR
[01/01/2004|23:51] C:\Program Files\xerox
[27/09/2008|23:44] C:\Program Files\Yahoo!
[16/03/2008|18:45] C:\Program Files\Zylom Games
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[06/08/2007|17:53] C:\Program Files\Fichiers communs\Adobe
[11/04/2007|12:31] C:\Program Files\Fichiers communs\Ahead
[19/07/2007|17:09] C:\Program Files\Fichiers communs\AOL
[27/03/2005|20:10] C:\Program Files\Fichiers communs\aolback
[19/10/2007|22:07] C:\Program Files\Fichiers communs\ArcSoft
[06/09/2005|19:47] C:\Program Files\Fichiers communs\DirectX
[31/03/2008|14:49] C:\Program Files\Fichiers communs\eAcceleration
[01/01/2004|21:33] C:\Program Files\Fichiers communs\InstallShield
[02/01/2004|01:08] C:\Program Files\Fichiers communs\Java
[20/02/2008|17:12] C:\Program Files\Fichiers communs\Microsoft Shared
[01/01/2004|23:49] C:\Program Files\Fichiers communs\MSSoap
[27/03/2005|20:09] C:\Program Files\Fichiers communs\Nullsoft
[22/04/2008|22:34] C:\Program Files\Fichiers communs\Oberon Media
[02/01/2004|00:45] C:\Program Files\Fichiers communs\ODBC
[18/07/2007|19:35] C:\Program Files\Fichiers communs\Real
[26/11/2004|04:40] C:\Program Files\Fichiers communs\Services
[19/10/2007|22:06] C:\Program Files\Fichiers communs\snp2std
[02/01/2004|00:45] C:\Program Files\Fichiers communs\SpeechEngines
[31/03/2008|14:58] C:\Program Files\Fichiers communs\Symantec Shared
[18/07/2007|19:36] C:\Program Files\Fichiers communs\System
[12/11/2007|21:28] C:\Program Files\Fichiers communs\WindowsLiveInstaller
--------------------\\ Process
( 46 Processes )
IEXPLORE.EXE ~ [PID:176]
IEXPLORE.EXE ~ [PID:596]
IEXPLORE.EXE ~ [PID:664]
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Link Axis Bat Wave
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Link Axis Bat Wave\mags dead.exe
C:\DOCUME~1\COMPAQ~1\APPLIC~1\isoadm~1
C:\DOCUME~1\COMPAQ~1\APPLIC~1\isoadm~1\fecmmbch.exe
C:\DOCUME~1\COMPAQ~1\APPLIC~1\isoadm~1\GREATBONEVGA.exe
C:\DOCUME~1\COMPAQ~1\APPLIC~1\isoadm~1\Open thunk.exe
C:\DOCUME~1\COMPAQ~1\APPLIC~1\isoadm~1\qixgumfq.exe
C:\DOCUME~1\COMPAQ~1\APPLIC~1\isoadm~1\WARNMOVESIZEFUNK.exe
C:\Program Files\isoadm~1
C:\Program Files\Circle Developement
C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@advertising[1].txt
C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@bigpoint[1].txt
C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@fr.thepimps.bigpoint[2].txt
C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@adopt.euroclick[1].txt
C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@32vegas[1].txt
C:\DOCUME~1\COMPAQ~1\Cookies\compaq_propriétaire@banner.32vegas[2].txt
C:\WINDOWS\Tasks\A9A5A098918A56E0.job
--------------------\\ Verification du Registre
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Blue keep"="C:\\DOCUME~1\\COMPAQ~1\\APPLIC~1\\ISOADM~1\\Open thunk.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Bat Wave Base Dale"="C:\\Documents and Settings\\All Users\\Application Data\\Link Axis Bat Wave\\mags dead.exe"
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-28 21:31:01
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 287
--------------------\\ Recherche d'autres infections
--------------------\\ Cracks & Keygens ..
C:\DOCUME~1\COMPAQ~1\Local Settings\Temporary Internet Files\Content.IE5\4WTM66ZH\keyGen[1].htm
[F:38][D:3]-> C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp
[F:130][D:0]-> C:\DOCUME~1\COMPAQ~1\Cookies
[F:3903][D:8]-> C:\DOCUME~1\COMPAQ~1\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 28/09/2008|21:35 - Option : [1]
--------------------\\ Fin du rapport a 21:35:32
Malwarebytes' Anti-Malware 1.28
Version de la base de données: 1221
Windows 5.1.2600 Service Pack 2
28/09/2008 22:32:08
mbam-log-2008-09-28 (22-32-08).txt
Type de recherche: Examen rapide
Eléments examinés: 77667
Temps écoulé: 35 minute(s), 46 second(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 5
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 9
Fichier(s) infecté(s): 40
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Valeur(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\bat wave base dale (Trojan.Downloader) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow\host-domain-lookup.com (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow\mysearchnow.com (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow\www.host-domain-lookup.com (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow\www.mysearchnow.com (Malware.Trace) -> Quarantined and deleted successfully.
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
C:\Documents and Settings\All Users\Application Data\Link Axis Bat Wave (Trojan.Downloader) -> Delete on reboot.
C:\Program Files\MyWay (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\1.bin (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Cache (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\History (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Settings (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Documents and Settings\hasan\Application Data\WinAntiVirus Pro 2006 (Rogue.WinAntivirus) -> Quarantined and deleted successfully.
C:\Documents and Settings\hasan\Application Data\WinAntiVirus Pro 2006\Logs (Rogue.WinAntivirus) -> Quarantined and deleted successfully.
Fichier(s) infecté(s):
C:\Documents and Settings\All Users\Application Data\Link Axis Bat Wave\mags dead.exe (Trojan.Downloader) -> Delete on reboot.
C:\Program Files\MyWay\myBar\1.bin\MYWAYPLUGINPROXY.CLASS (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\1.bin\PARTNER.BMP (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\1.bin\PARTNER.DAT (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\1.bin\PARTNER2.DAT (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\1.bin\PARTNER3.DAT (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\1.bin\PARTNER4.DAT (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\1.bin\PARTNER5.DAT (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\1.bin\PARTNER6.DAT (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Cache\0002894A (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Cache\0002C8B5 (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Cache\0002D586 (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Cache\000366D9 (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Cache\00037427 (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Cache\000409FF (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Cache\000466A5 (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Cache\00058FD4 (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Cache\0006E2F0 (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Cache\0009908C (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Cache\0010AD2A (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Cache\001888E2 (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Cache\0021A75B (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Cache\0021AB04 (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Cache\0025340C (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Cache\0035D33C (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Cache\00436B08.bin (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Cache\00436F4E.bin (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Cache\00437336.bin (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Cache\0052E485 (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Cache\00629CEF (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Cache\006FB54A (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Cache\0079575A (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Cache\00925415 (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Cache\00B2E6B4 (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Cache\013DE5C6 (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Cache\015884C7 (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Cache\016F405B (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Cache\files.ini (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\History\search (Adware.MyWay) -> Quarantined and deleted successfully.
C:\Program Files\MyWay\myBar\Settings\prevcfg.htm (Adware.MyWay) -> Quarantined and deleted successfully.