Fenetres cid avec vista
Résolu
yomar04
Messages postés
51
Date d'inscription
Statut
Membre
Dernière intervention
-
yomar04 Messages postés 51 Date d'inscription Statut Membre Dernière intervention -
yomar04 Messages postés 51 Date d'inscription Statut Membre Dernière intervention -
Bonjour,
Je souhaite me débarrasser des fenetres pub CID sur un ordi sous vista. J'ai pu faire un rapport hijackthis ci-joint mais lopxp n'est pas compatible, est ce qu'il y a un logiciel particulier pour vista? Merci
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:52:58, on 28/09/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\DellTPad\Apoint.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Dell Support Center\bin\sprtcmd.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Sigmatel\C-Major Audio\WDM\sttray.exe
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Microsoft Works\WkCalRem.exe
C:\Program Files\OpenOffice.org 2.4\program\soffice.exe
C:\Program Files\OpenOffice.org 2.4\program\soffice.BIN
C:\Program Files\DellTPad\HidFind.exe
C:\Program Files\DellTPad\Apntex.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\eMule\eMule.exe
C:\Windows\system32\conime.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Internet Explorer\IEUser.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\HP\Smart Web Printing\hpswp_clipbook.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Windows\system32\Macromed\Flash\FlashUtil9e.exe
C:\Users\mélanie\Downloads\HiJackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.lo.st/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.google.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer fourni par Dell
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Orange HSS\SearchURLHook\SearchPageURL.dll
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O1 - Hosts: ::1 localhost
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: HP Print Clips - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: GamesBar - {6F282B65-56BF-4BD1-A8B2-A4449A05863D} - C:\Program Files\GamesBar\oberontb.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Dell\BAE\BAE.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: GamesBar - {6F282B65-56BF-4BD1-A8B2-A4449A05863D} - C:\Program Files\GamesBar\oberontb.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
O4 - HKLM\..\Run: [dscactivate] "C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [SigmatelSysTrayApp] %ProgramFiles%\SigmaTel\C-Major Audio\WDM\sttray.exe
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NVHotkey] rundll32.exe C:\Windows\system32\nvHotkey.dll,Start
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [tool meal] "C:\ProgramData\coal team team.2rd4l8v"
O4 - HKCU\..\Run: [1 mags 16 more] "C:\ProgramData\Bend beep flag.26xnf4g"
O4 - Startup: OpenOffice.org 2.4.lnk = C:\Program Files\OpenOffice.org 2.4\program\quickstart.exe
O4 - Startup: wkcalrem.LNK = C:\Program Files\Microsoft Works\WkCalRem.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~2.0_0\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~2.0_0\bin\ssv.dll
O9 - Extra button: (no name) - {1A93C934-025B-4c3a-B38E-9654A7003239} - C:\Program Files\GamesBar\oberontb.dll
O9 - Extra 'Tools' menuitem: GamesBar - {1A93C934-025B-4c3a-B38E-9654A7003239} - C:\Program Files\GamesBar\oberontb.dll
O9 - Extra button: Livre de reliures HP - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: Sélection intelligente HP - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O13 - Gopher Prefix:
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\system32\aestsrv.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: SupportSoft Sprocket Service (dellsupportcenter) (sprtsvc_dellsupportcenter) - SupportSoft, Inc. - C:\Program Files\Dell Support Center\bin\sprtsvc.exe
O23 - Service: SigmaTel Audio Service (STacSV) - IDT, Inc. - C:\Windows\system32\STacSV.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe
Je souhaite me débarrasser des fenetres pub CID sur un ordi sous vista. J'ai pu faire un rapport hijackthis ci-joint mais lopxp n'est pas compatible, est ce qu'il y a un logiciel particulier pour vista? Merci
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:52:58, on 28/09/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\DellTPad\Apoint.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Dell Support Center\bin\sprtcmd.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Sigmatel\C-Major Audio\WDM\sttray.exe
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Microsoft Works\WkCalRem.exe
C:\Program Files\OpenOffice.org 2.4\program\soffice.exe
C:\Program Files\OpenOffice.org 2.4\program\soffice.BIN
C:\Program Files\DellTPad\HidFind.exe
C:\Program Files\DellTPad\Apntex.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\eMule\eMule.exe
C:\Windows\system32\conime.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Internet Explorer\IEUser.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\HP\Smart Web Printing\hpswp_clipbook.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Windows\system32\Macromed\Flash\FlashUtil9e.exe
C:\Users\mélanie\Downloads\HiJackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.lo.st/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.google.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer fourni par Dell
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Orange HSS\SearchURLHook\SearchPageURL.dll
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O1 - Hosts: ::1 localhost
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: HP Print Clips - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: GamesBar - {6F282B65-56BF-4BD1-A8B2-A4449A05863D} - C:\Program Files\GamesBar\oberontb.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Dell\BAE\BAE.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: GamesBar - {6F282B65-56BF-4BD1-A8B2-A4449A05863D} - C:\Program Files\GamesBar\oberontb.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
O4 - HKLM\..\Run: [dscactivate] "C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [SigmatelSysTrayApp] %ProgramFiles%\SigmaTel\C-Major Audio\WDM\sttray.exe
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NVHotkey] rundll32.exe C:\Windows\system32\nvHotkey.dll,Start
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [tool meal] "C:\ProgramData\coal team team.2rd4l8v"
O4 - HKCU\..\Run: [1 mags 16 more] "C:\ProgramData\Bend beep flag.26xnf4g"
O4 - Startup: OpenOffice.org 2.4.lnk = C:\Program Files\OpenOffice.org 2.4\program\quickstart.exe
O4 - Startup: wkcalrem.LNK = C:\Program Files\Microsoft Works\WkCalRem.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~2.0_0\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~2.0_0\bin\ssv.dll
O9 - Extra button: (no name) - {1A93C934-025B-4c3a-B38E-9654A7003239} - C:\Program Files\GamesBar\oberontb.dll
O9 - Extra 'Tools' menuitem: GamesBar - {1A93C934-025B-4c3a-B38E-9654A7003239} - C:\Program Files\GamesBar\oberontb.dll
O9 - Extra button: Livre de reliures HP - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: Sélection intelligente HP - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O13 - Gopher Prefix:
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\system32\aestsrv.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: SupportSoft Sprocket Service (dellsupportcenter) (sprtsvc_dellsupportcenter) - SupportSoft, Inc. - C:\Program Files\Dell Support Center\bin\sprtsvc.exe
O23 - Service: SigmaTel Audio Service (STacSV) - IDT, Inc. - C:\Windows\system32\STacSV.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe
A voir également:
- Fenetres cid avec vista
- Windows vista - Télécharger - Divers Utilitaires
- Clé windows vista - Guide
- Windows Vista SP1 - Télécharger - Divers Utilitaires
- Afficher toutes les fenetres ouvertes windows - Guide
- Pdf vista - Télécharger - PDF
7 réponses
Salut,
---> Désactive l'UAC le temps de la désinfection :
http://www.commentcamarche.net/faq/sujet 8343 vista desactiver l uac
---> Télécharge Lop S&D sur ton Bureau
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
---> Double-clique dessus pour lancer l'installation
---> Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
---> Séléctionne la langue souhaitée, puis choisis l'option 1 (Recherche)
---> Patiente jusqu'à la fin du scan
---> Poste le rapport généré (C:\lopR.txt)
---> Désactive l'UAC le temps de la désinfection :
http://www.commentcamarche.net/faq/sujet 8343 vista desactiver l uac
---> Télécharge Lop S&D sur ton Bureau
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
---> Double-clique dessus pour lancer l'installation
---> Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
---> Séléctionne la langue souhaitée, puis choisis l'option 1 (Recherche)
---> Patiente jusqu'à la fin du scan
---> Poste le rapport généré (C:\lopR.txt)
---> Relance Lop S&D
---> Choisis cette fois-ci l'option 2 (Suppression)
---> Ne ferme pas la fenêtre lors de la suppression !
---> Poste le rapport généré (C:\lopR.txt)
---> Choisis cette fois-ci l'option 2 (Suppression)
---> Ne ferme pas la fenêtre lors de la suppression !
---> Poste le rapport généré (C:\lopR.txt)
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-28 15:45:37
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 1
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:1624][D:327]-> C:\Users\MLANIE~1\AppData\Local\Temp
[F:1895][D:1]-> C:\Users\MLANIE~1\AppData\Roaming\MICROS~1\Windows\Cookies
[F:4152][D:9]-> C:\Users\MLANIE~1\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:57][D:8]-> C:\$Recycle.Bin
1 - "C:\Lop SD\LopR_1.txt" - 28/09/2008|15:26 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 28/09/2008|15:48 - Option : [2]
--------------------\\ Fin du rapport a 15:48:30
[ UAC => 1 ]
Rootkit scan 2008-09-28 15:45:37
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 1
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:1624][D:327]-> C:\Users\MLANIE~1\AppData\Local\Temp
[F:1895][D:1]-> C:\Users\MLANIE~1\AppData\Roaming\MICROS~1\Windows\Cookies
[F:4152][D:9]-> C:\Users\MLANIE~1\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:57][D:8]-> C:\$Recycle.Bin
1 - "C:\Lop SD\LopR_1.txt" - 28/09/2008|15:26 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 28/09/2008|15:48 - Option : [2]
--------------------\\ Fin du rapport a 15:48:30
[ UAC => 1 ]
---> Télécharge OTMoveIt2 à partir du lien ci-dessous :
http://download.bleepingcomputer.com/oldtimer/OTMoveIt2.exe
---> Enregistre le fichier sur le Bureau.
---> Double-clique sur le fichier OTMoveIt2.exe pour lancer l'outil.
Assure-toi que la case Unregister Dll's and Ocx's soit bien cochée.
---> Copie l'intégralité du texte ci-dessous et colle-le dans la fenêtre intitulée Paste List Of Files/Folders to Move.
C:\ProgramData\amok user hope\
C:\ProgramData\GamesBar\
---> Clique sur MoveIt! pour lancer la suppression.
Lorsqu'un résultat apparaît dans le cadre Results, clique sur Exit.
Note : Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer. Accepte en cliquant sur YES.
---> Poste le rapport de OTMoveIt qui se trouve dans C:\_OTMoveIt\MovedFiles.
http://download.bleepingcomputer.com/oldtimer/OTMoveIt2.exe
---> Enregistre le fichier sur le Bureau.
---> Double-clique sur le fichier OTMoveIt2.exe pour lancer l'outil.
Assure-toi que la case Unregister Dll's and Ocx's soit bien cochée.
---> Copie l'intégralité du texte ci-dessous et colle-le dans la fenêtre intitulée Paste List Of Files/Folders to Move.
C:\ProgramData\amok user hope\
C:\ProgramData\GamesBar\
---> Clique sur MoveIt! pour lancer la suppression.
Lorsqu'un résultat apparaît dans le cadre Results, clique sur Exit.
Note : Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer. Accepte en cliquant sur YES.
---> Poste le rapport de OTMoveIt qui se trouve dans C:\_OTMoveIt\MovedFiles.
Est ce celui là?
C:\ProgramData\amok user hope moved successfully.
C:\ProgramData\GamesBar\08-06-12-22-18-59 moved successfully.
C:\ProgramData\GamesBar\08-06-11-19-49-18 moved successfully.
C:\ProgramData\GamesBar moved successfully.
OTMoveIt2 by OldTimer - Version 1.0.4.3 log created on 09282008_162823
C:\ProgramData\amok user hope moved successfully.
C:\ProgramData\GamesBar\08-06-12-22-18-59 moved successfully.
C:\ProgramData\GamesBar\08-06-11-19-49-18 moved successfully.
C:\ProgramData\GamesBar moved successfully.
OTMoveIt2 by OldTimer - Version 1.0.4.3 log created on 09282008_162823
Oui, c'est celui-ci.
---> Fais un scan rapide avec MBAM, supprime tout ce qu'il trouve et poste le rapport :
http://www.download.com/Malwarebytes-Anti-Malware/3000-8022_4-10804572.htm
---> Fais un scan rapide avec MBAM, supprime tout ce qu'il trouve et poste le rapport :
http://www.download.com/Malwarebytes-Anti-Malware/3000-8022_4-10804572.htm
Malwarebytes' Anti-Malware 1.28
Version de la base de données: 1134
Windows 6.0.6001 Service Pack 1
28/09/2008 16:45:06
mbam-log-2008-09-28 (16-45-06).txt
Type de recherche: Examen rapide
Eléments examinés: 41785
Temps écoulé: 2 minute(s), 55 second(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 7
Valeur(s) du Registre infectée(s): 1
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 1
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\oberontb.band (Adware.Gamesbar) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{ad76633e-e50d-4844-9e7f-4dfbc7c18467} (Adware.Gamesbar) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{ec1a2105-5621-440f-987d-27ef428131d9} (Adware.Gamesbar) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{6f282b65-56bf-4bd1-a8b2-a4449a05863d} (Adware.Gamesbar) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6f282b65-56bf-4bd1-a8b2-a4449a05863d} (Adware.Gamesbar) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\oberontb.band.1 (Adware.Gamesbar) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{1a93c934-025b-4c3a-b38e-9654a7003239} (Adware.Gamesbar) -> Quarantined and deleted successfully.
Valeur(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{6f282b65-56bf-4bd1-a8b2-a4449a05863d} (Adware.Gamesbar) -> Quarantined and deleted successfully.
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
C:\Program Files\GamesBar\oberontb.dll (Adware.Gamesbar) -> Quarantined and deleted successfully.
Version de la base de données: 1134
Windows 6.0.6001 Service Pack 1
28/09/2008 16:45:06
mbam-log-2008-09-28 (16-45-06).txt
Type de recherche: Examen rapide
Eléments examinés: 41785
Temps écoulé: 2 minute(s), 55 second(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 7
Valeur(s) du Registre infectée(s): 1
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 1
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\oberontb.band (Adware.Gamesbar) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{ad76633e-e50d-4844-9e7f-4dfbc7c18467} (Adware.Gamesbar) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{ec1a2105-5621-440f-987d-27ef428131d9} (Adware.Gamesbar) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{6f282b65-56bf-4bd1-a8b2-a4449a05863d} (Adware.Gamesbar) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6f282b65-56bf-4bd1-a8b2-a4449a05863d} (Adware.Gamesbar) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\oberontb.band.1 (Adware.Gamesbar) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{1a93c934-025b-4c3a-b38e-9654a7003239} (Adware.Gamesbar) -> Quarantined and deleted successfully.
Valeur(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{6f282b65-56bf-4bd1-a8b2-a4449a05863d} (Adware.Gamesbar) -> Quarantined and deleted successfully.
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
C:\Program Files\GamesBar\oberontb.dll (Adware.Gamesbar) -> Quarantined and deleted successfully.
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
---> Supprime OTMoveIt2, Lop S&D
---> Supprime le dossier LopSD et _OTMoveIt situé dans C:\
---> Relance MBAM, va dans Quarantaine et supprime tout
---> Désinstalle HijackThis
---> Télécharge CCleaner (N'installe pas la Yahoo Toolbar) :
https://www.ccleaner.com/ccleaner/download
---> Lance-le. Va dans "Options" puis "Avancé", tu décoches la case "Effacer uniquement les fichiers etc...". Tu vas dans "Nettoyeur", tu fais "Analyse". Une fois terminé, tu lances le nettoyage. Puis tu vas dans "Registre", tu fais "Chercher des erreurs". Une fois terminé, tu répares toutes les erreurs sans sauvegarder la base de registre.
---> Il est nécessaire de désactiver puis réactiver la restauration système pour la purger :
http://www.commentcamarche.net/faq/sujet 13214 desactiver reactiver la restauration systeme de vista
---> Je te conseille de créer un point de restauration que tu pourras utiliser plus tard si tu as un problème :
https://forums.cnetfrance.fr
---> Supprime le dossier LopSD et _OTMoveIt situé dans C:\
---> Relance MBAM, va dans Quarantaine et supprime tout
---> Désinstalle HijackThis
---> Télécharge CCleaner (N'installe pas la Yahoo Toolbar) :
https://www.ccleaner.com/ccleaner/download
---> Lance-le. Va dans "Options" puis "Avancé", tu décoches la case "Effacer uniquement les fichiers etc...". Tu vas dans "Nettoyeur", tu fais "Analyse". Une fois terminé, tu lances le nettoyage. Puis tu vas dans "Registre", tu fais "Chercher des erreurs". Une fois terminé, tu répares toutes les erreurs sans sauvegarder la base de registre.
---> Il est nécessaire de désactiver puis réactiver la restauration système pour la purger :
http://www.commentcamarche.net/faq/sujet 13214 desactiver reactiver la restauration systeme de vista
---> Je te conseille de créer un point de restauration que tu pourras utiliser plus tard si tu as un problème :
https://forums.cnetfrance.fr
Le rapport est incomplet.
désolée, je ne sais pas ce qu'il s'est passé!
--------------------\\ Lop S&D 4.2.4-4 XP/Vista
Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Intel(R) Core(TM)2 Duo CPU T5550 @ 1.83GHz )
BIOS : Phoenix ROM BIOS PLUS Version 1.10 A07
USER : mélanie ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 080927-0] 4.8.1229 (Activated)
C:\ (Local Disk) - NTFS - Total : 136 Go Free : 44 Go
D:\ (Local Disk) - NTFS - Total : 9 Go Free : 5 Go
E:\ (CD or DVD)
"C:\Lop SD" ( MAJ : 19-09-2008|22:20 )
Option : [2] ( 28/09/2008|16:18 )
[ UAC => 1 ]
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing des dossiers dans Local
[08/06/2008|10:43] C:\Users\MLANIE~1\AppData\Local\Adobe
[19/05/2008|18:43] C:\Users\MLANIE~1\AppData\Local\Application Data
[21/05/2008|21:18] C:\Users\MLANIE~1\AppData\Local\Apps
[14/09/2008|12:31] C:\Users\MLANIE~1\AppData\Local\Axialis
[28/09/2008|14:46] C:\Users\MLANIE~1\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[18/07/2008|23:03] C:\Users\MLANIE~1\AppData\Local\GDIPFONTCACHEV1.DAT
[02/06/2008|23:49] C:\Users\MLANIE~1\AppData\Local\Google
[19/05/2008|18:43] C:\Users\MLANIE~1\AppData\Local\Historique
[19/07/2008|22:23] C:\Users\MLANIE~1\AppData\Local\HP
[28/09/2008|15:18] C:\Users\MLANIE~1\AppData\Local\IconCache.db
[23/05/2008|21:56] C:\Users\MLANIE~1\AppData\Local\MediaDirect
[14/06/2008|15:46] C:\Users\MLANIE~1\AppData\Local\Microsoft
[14/08/2008|13:35] C:\Users\MLANIE~1\AppData\Local\Microsoft Games
[07/09/2008|20:01] C:\Users\MLANIE~1\AppData\Local\Mozilla
[13/08/2008|13:13] C:\Users\MLANIE~1\AppData\Local\Powercinema
[20/05/2008|19:27] C:\Users\MLANIE~1\AppData\Local\SupportSoft
[28/09/2008|16:18] C:\Users\MLANIE~1\AppData\Local\Temp
[19/05/2008|18:43] C:\Users\MLANIE~1\AppData\Local\Temporary Internet Files
[28/05/2008|17:59] C:\Users\MLANIE~1\AppData\Local\VirtualStore
--------------------\\ Tâches planifiées dans C:\Windows\tasks
[28/09/2008 00:54][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{2E5A63C6-B4F0-44EA-B236-9DD944E7139C}.job
[28/09/2008 15:19][--ah-----] C:\Windows\tasks\SA.DAT
[28/09/2008 15:18][--a------] C:\Windows\tasks\SCHEDLGU.TXT
--------------------\\ Listing des dossiers dans C:\ProgramData
[24/06/2008|22:09] C:\ProgramData\Adobe
[19/09/2008|20:15] C:\ProgramData\amok user hope
[19/05/2008|18:42] C:\ProgramData\Application Data
[29/05/2008|15:53] C:\ProgramData\AVS4YOU
[19/05/2008|18:42] C:\ProgramData\Bureau
[08/06/2008|10:44] C:\ProgramData\CyberLink
[07/06/2008|23:40] C:\ProgramData\Dell
[19/05/2008|18:42] C:\ProgramData\Documents
[08/06/2008|00:05] C:\ProgramData\Fashion Solitaire 1.2
[19/05/2008|18:42] C:\ProgramData\Favoris
[12/06/2008|22:19] C:\ProgramData\GamesBar
[28/03/2008|16:32] C:\ProgramData\Google
[19/07/2008|22:17] C:\ProgramData\Hewlett-Packard
[19/07/2008|22:17] C:\ProgramData\HP
[19/07/2008|22:14] C:\ProgramData\HP Product Assistant
[20/07/2008|00:38] C:\ProgramData\HPSSUPPLY
[19/07/2008|22:18] C:\ProgramData\hpzinstall.log
[28/03/2008|16:37] C:\ProgramData\InstallShield
[14/09/2008|20:58] C:\ProgramData\LauncherAccess.dt
[05/06/2008|19:42] C:\ProgramData\McAfee
[19/05/2008|18:42] C:\ProgramData\Menu D‚marrer
[05/06/2008|22:05] C:\ProgramData\Messenger Plus!
[16/07/2008|20:59] C:\ProgramData\Microsoft
[19/05/2008|18:42] C:\ProgramData\ModŠles
[28/09/2008|15:19] C:\ProgramData\NVIDIA
[06/09/2008|21:28] C:\ProgramData\Roxio
[28/03/2008|16:38] C:\ProgramData\Sonic
[28/03/2008|16:33] C:\ProgramData\SupportSoft
[08/06/2008|00:05] C:\ProgramData\TEMP
[28/03/2008|16:38] C:\ProgramData\Uninstall
[19/07/2008|22:18] C:\ProgramData\WEBREG
[27/05/2008|19:12] C:\ProgramData\WLInstaller
[12/08/2008|18:22] C:\ProgramData\Yahoo! Companion
--------------------\\ Listing des dossiers dans C:\Program Files
[07/07/2008|14:50] C:\Program Files\Adobe
[05/06/2008|19:51] C:\Program Files\Alwil Software
[29/05/2008|16:06] C:\Program Files\AVS4YOU
[28/03/2008|16:28] C:\Program Files\Broadcom
[28/03/2008|16:31] C:\Program Files\Cisco
[19/07/2008|22:14] C:\Program Files\Common Files
[28/03/2008|16:15] C:\Program Files\CONEXANT
[28/03/2008|16:29] C:\Program Files\Creative
[28/03/2008|16:28] C:\Program Files\Creative Live! Cam
[28/03/2008|16:34] C:\Program Files\CyberLink
[28/03/2008|16:42] C:\Program Files\Dell
[28/03/2008|16:33] C:\Program Files\Dell Support Center
[29/03/2008|00:09] C:\Program Files\DellTPad
[28/03/2008|16:28] C:\Program Files\Digital Line Detect
[12/08/2008|18:20] C:\Program Files\DivX
[15/07/2008|22:28] C:\Program Files\eMule
[19/05/2008|18:42] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[08/06/2008|00:03] C:\Program Files\GamesBar
[02/06/2008|23:48] C:\Program Files\Google
[19/07/2008|22:13] C:\Program Files\Hewlett-Packard
[19/07/2008|22:15] C:\Program Files\HP
[09/09/2008|18:15] C:\Program Files\InstallShield Installation Information
[19/07/2008|21:45] C:\Program Files\Internet Explorer
[19/07/2008|22:00] C:\Program Files\Java
[28/05/2008|20:30] C:\Program Files\LimeWire
[28/03/2008|16:42] C:\Program Files\MAKEMSI Package Documentation
[12/09/2008|21:49] C:\Program Files\Messenger Plus! Live
[02/11/2006|14:37] C:\Program Files\Microsoft Games
[28/03/2008|16:35] C:\Program Files\Microsoft Office
[28/03/2008|16:36] C:\Program Files\Microsoft Works
[28/03/2008|16:27] C:\Program Files\Modem Diagnostic Tool
[19/07/2008|21:45] C:\Program Files\Movie Maker
[28/09/2008|15:20] C:\Program Files\Mozilla Firefox
[02/11/2006|14:37] C:\Program Files\MSBuild
[29/05/2008|14:07] C:\Program Files\MSXML 4.0
[28/03/2008|16:27] C:\Program Files\NetWaiting
[18/07/2008|21:48] C:\Program Files\OpenOffice.org 2.4
[08/06/2008|00:02] C:\Program Files\Orange
[27/05/2008|18:38] C:\Program Files\Orange HSS
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[28/03/2008|16:38] C:\Program Files\Roxio
[12/07/2008|13:49] C:\Program Files\Samsung
[28/03/2008|16:14] C:\Program Files\Sigmatel
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[16/07/2008|22:24] C:\Program Files\VideoLAN
[19/07/2008|21:45] C:\Program Files\Windows Calendar
[19/07/2008|21:45] C:\Program Files\Windows Collaboration
[19/07/2008|21:45] C:\Program Files\Windows Defender
[19/07/2008|21:45] C:\Program Files\Windows Journal
[27/05/2008|19:18] C:\Program Files\Windows Live
[16/08/2008|11:16] C:\Program Files\Windows Mail
[19/07/2008|21:45] C:\Program Files\Windows Media Player
[19/05/2008|18:42] C:\Program Files\Windows NT
[19/07/2008|21:45] C:\Program Files\Windows Photo Gallery
[19/07/2008|21:45] C:\Program Files\Windows Sidebar
[12/08/2008|18:20] C:\Program Files\Yahoo!
--------------------\\ Listing des dossiers dans C:\Program Files\Common Files
[24/06/2008|22:09] C:\Program Files\Common Files\Adobe
[29/05/2008|16:03] C:\Program Files\Common Files\AVSMedia
[28/03/2008|16:29] C:\Program Files\Common Files\Creative
[27/05/2008|18:34] C:\Program Files\Common Files\France Telecom
[19/07/2008|22:13] C:\Program Files\Common Files\Hewlett-Packard
[19/07/2008|22:14] C:\Program Files\Common Files\HP
[28/03/2008|16:37] C:\Program Files\Common Files\InstallShield
[28/03/2008|16:24] C:\Program Files\Common Files\Java
[27/05/2008|19:20] C:\Program Files\Common Files\microsoft shared
[08/06/2008|00:02] C:\Program Files\Common Files\Oberon Media
[16/07/2008|22:20] C:\Program Files\Common Files\PX Storage Engine
[28/03/2008|16:29] C:\Program Files\Common Files\Reallusion
[28/03/2008|16:37] C:\Program Files\Common Files\Roxio Shared
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[28/03/2008|16:37] C:\Program Files\Common Files\Sonic Shared
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[28/03/2008|16:33] C:\Program Files\Common Files\supportsoft
[28/03/2008|16:38] C:\Program Files\Common Files\SureThing Shared
[19/07/2008|21:45] C:\Program Files\Common Files\System
[27/05/2008|19:18] C:\Program Files\Common Files\WindowsLiveInstaller
--------------------\\ Process
( 70 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-28 16:18:45
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 1
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:1624][D:327]-> C:\Users\MLANIE~1\AppData\Local\Temp
[F:1895][D:1]-> C:\Users\MLANIE~1\AppData\Roaming\MICROS~1\Windows\Cookies
[F:4152][D:9]-> C:\Users\MLANIE~1\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:57][D:8]-> C:\$Recycle.Bin
1 - "C:\Lop SD\LopR_1.txt" - 28/09/2008|15:26 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 28/09/2008|15:48 - Option : [2]
3 - "C:\Lop SD\LopR_3.txt" - 28/09/2008|16:21 - Option : [2]
--------------------\\ Fin du rapport a 16:21:47
[ UAC => 1 ]
--------------------\\ Lop S&D 4.2.4-4 XP/Vista
Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Intel(R) Core(TM)2 Duo CPU T5550 @ 1.83GHz )
BIOS : Phoenix ROM BIOS PLUS Version 1.10 A07
USER : mélanie ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 080927-0] 4.8.1229 (Activated)
C:\ (Local Disk) - NTFS - Total : 136 Go Free : 44 Go
D:\ (Local Disk) - NTFS - Total : 9 Go Free : 5 Go
E:\ (CD or DVD)
"C:\Lop SD" ( MAJ : 19-09-2008|22:20 )
Option : [2] ( 28/09/2008|16:18 )
[ UAC => 1 ]
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing des dossiers dans Local
[08/06/2008|10:43] C:\Users\MLANIE~1\AppData\Local\Adobe
[19/05/2008|18:43] C:\Users\MLANIE~1\AppData\Local\Application Data
[21/05/2008|21:18] C:\Users\MLANIE~1\AppData\Local\Apps
[14/09/2008|12:31] C:\Users\MLANIE~1\AppData\Local\Axialis
[28/09/2008|14:46] C:\Users\MLANIE~1\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[18/07/2008|23:03] C:\Users\MLANIE~1\AppData\Local\GDIPFONTCACHEV1.DAT
[02/06/2008|23:49] C:\Users\MLANIE~1\AppData\Local\Google
[19/05/2008|18:43] C:\Users\MLANIE~1\AppData\Local\Historique
[19/07/2008|22:23] C:\Users\MLANIE~1\AppData\Local\HP
[28/09/2008|15:18] C:\Users\MLANIE~1\AppData\Local\IconCache.db
[23/05/2008|21:56] C:\Users\MLANIE~1\AppData\Local\MediaDirect
[14/06/2008|15:46] C:\Users\MLANIE~1\AppData\Local\Microsoft
[14/08/2008|13:35] C:\Users\MLANIE~1\AppData\Local\Microsoft Games
[07/09/2008|20:01] C:\Users\MLANIE~1\AppData\Local\Mozilla
[13/08/2008|13:13] C:\Users\MLANIE~1\AppData\Local\Powercinema
[20/05/2008|19:27] C:\Users\MLANIE~1\AppData\Local\SupportSoft
[28/09/2008|16:18] C:\Users\MLANIE~1\AppData\Local\Temp
[19/05/2008|18:43] C:\Users\MLANIE~1\AppData\Local\Temporary Internet Files
[28/05/2008|17:59] C:\Users\MLANIE~1\AppData\Local\VirtualStore
--------------------\\ Tâches planifiées dans C:\Windows\tasks
[28/09/2008 00:54][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{2E5A63C6-B4F0-44EA-B236-9DD944E7139C}.job
[28/09/2008 15:19][--ah-----] C:\Windows\tasks\SA.DAT
[28/09/2008 15:18][--a------] C:\Windows\tasks\SCHEDLGU.TXT
--------------------\\ Listing des dossiers dans C:\ProgramData
[24/06/2008|22:09] C:\ProgramData\Adobe
[19/09/2008|20:15] C:\ProgramData\amok user hope
[19/05/2008|18:42] C:\ProgramData\Application Data
[29/05/2008|15:53] C:\ProgramData\AVS4YOU
[19/05/2008|18:42] C:\ProgramData\Bureau
[08/06/2008|10:44] C:\ProgramData\CyberLink
[07/06/2008|23:40] C:\ProgramData\Dell
[19/05/2008|18:42] C:\ProgramData\Documents
[08/06/2008|00:05] C:\ProgramData\Fashion Solitaire 1.2
[19/05/2008|18:42] C:\ProgramData\Favoris
[12/06/2008|22:19] C:\ProgramData\GamesBar
[28/03/2008|16:32] C:\ProgramData\Google
[19/07/2008|22:17] C:\ProgramData\Hewlett-Packard
[19/07/2008|22:17] C:\ProgramData\HP
[19/07/2008|22:14] C:\ProgramData\HP Product Assistant
[20/07/2008|00:38] C:\ProgramData\HPSSUPPLY
[19/07/2008|22:18] C:\ProgramData\hpzinstall.log
[28/03/2008|16:37] C:\ProgramData\InstallShield
[14/09/2008|20:58] C:\ProgramData\LauncherAccess.dt
[05/06/2008|19:42] C:\ProgramData\McAfee
[19/05/2008|18:42] C:\ProgramData\Menu D‚marrer
[05/06/2008|22:05] C:\ProgramData\Messenger Plus!
[16/07/2008|20:59] C:\ProgramData\Microsoft
[19/05/2008|18:42] C:\ProgramData\ModŠles
[28/09/2008|15:19] C:\ProgramData\NVIDIA
[06/09/2008|21:28] C:\ProgramData\Roxio
[28/03/2008|16:38] C:\ProgramData\Sonic
[28/03/2008|16:33] C:\ProgramData\SupportSoft
[08/06/2008|00:05] C:\ProgramData\TEMP
[28/03/2008|16:38] C:\ProgramData\Uninstall
[19/07/2008|22:18] C:\ProgramData\WEBREG
[27/05/2008|19:12] C:\ProgramData\WLInstaller
[12/08/2008|18:22] C:\ProgramData\Yahoo! Companion
--------------------\\ Listing des dossiers dans C:\Program Files
[07/07/2008|14:50] C:\Program Files\Adobe
[05/06/2008|19:51] C:\Program Files\Alwil Software
[29/05/2008|16:06] C:\Program Files\AVS4YOU
[28/03/2008|16:28] C:\Program Files\Broadcom
[28/03/2008|16:31] C:\Program Files\Cisco
[19/07/2008|22:14] C:\Program Files\Common Files
[28/03/2008|16:15] C:\Program Files\CONEXANT
[28/03/2008|16:29] C:\Program Files\Creative
[28/03/2008|16:28] C:\Program Files\Creative Live! Cam
[28/03/2008|16:34] C:\Program Files\CyberLink
[28/03/2008|16:42] C:\Program Files\Dell
[28/03/2008|16:33] C:\Program Files\Dell Support Center
[29/03/2008|00:09] C:\Program Files\DellTPad
[28/03/2008|16:28] C:\Program Files\Digital Line Detect
[12/08/2008|18:20] C:\Program Files\DivX
[15/07/2008|22:28] C:\Program Files\eMule
[19/05/2008|18:42] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[08/06/2008|00:03] C:\Program Files\GamesBar
[02/06/2008|23:48] C:\Program Files\Google
[19/07/2008|22:13] C:\Program Files\Hewlett-Packard
[19/07/2008|22:15] C:\Program Files\HP
[09/09/2008|18:15] C:\Program Files\InstallShield Installation Information
[19/07/2008|21:45] C:\Program Files\Internet Explorer
[19/07/2008|22:00] C:\Program Files\Java
[28/05/2008|20:30] C:\Program Files\LimeWire
[28/03/2008|16:42] C:\Program Files\MAKEMSI Package Documentation
[12/09/2008|21:49] C:\Program Files\Messenger Plus! Live
[02/11/2006|14:37] C:\Program Files\Microsoft Games
[28/03/2008|16:35] C:\Program Files\Microsoft Office
[28/03/2008|16:36] C:\Program Files\Microsoft Works
[28/03/2008|16:27] C:\Program Files\Modem Diagnostic Tool
[19/07/2008|21:45] C:\Program Files\Movie Maker
[28/09/2008|15:20] C:\Program Files\Mozilla Firefox
[02/11/2006|14:37] C:\Program Files\MSBuild
[29/05/2008|14:07] C:\Program Files\MSXML 4.0
[28/03/2008|16:27] C:\Program Files\NetWaiting
[18/07/2008|21:48] C:\Program Files\OpenOffice.org 2.4
[08/06/2008|00:02] C:\Program Files\Orange
[27/05/2008|18:38] C:\Program Files\Orange HSS
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[28/03/2008|16:38] C:\Program Files\Roxio
[12/07/2008|13:49] C:\Program Files\Samsung
[28/03/2008|16:14] C:\Program Files\Sigmatel
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[16/07/2008|22:24] C:\Program Files\VideoLAN
[19/07/2008|21:45] C:\Program Files\Windows Calendar
[19/07/2008|21:45] C:\Program Files\Windows Collaboration
[19/07/2008|21:45] C:\Program Files\Windows Defender
[19/07/2008|21:45] C:\Program Files\Windows Journal
[27/05/2008|19:18] C:\Program Files\Windows Live
[16/08/2008|11:16] C:\Program Files\Windows Mail
[19/07/2008|21:45] C:\Program Files\Windows Media Player
[19/05/2008|18:42] C:\Program Files\Windows NT
[19/07/2008|21:45] C:\Program Files\Windows Photo Gallery
[19/07/2008|21:45] C:\Program Files\Windows Sidebar
[12/08/2008|18:20] C:\Program Files\Yahoo!
--------------------\\ Listing des dossiers dans C:\Program Files\Common Files
[24/06/2008|22:09] C:\Program Files\Common Files\Adobe
[29/05/2008|16:03] C:\Program Files\Common Files\AVSMedia
[28/03/2008|16:29] C:\Program Files\Common Files\Creative
[27/05/2008|18:34] C:\Program Files\Common Files\France Telecom
[19/07/2008|22:13] C:\Program Files\Common Files\Hewlett-Packard
[19/07/2008|22:14] C:\Program Files\Common Files\HP
[28/03/2008|16:37] C:\Program Files\Common Files\InstallShield
[28/03/2008|16:24] C:\Program Files\Common Files\Java
[27/05/2008|19:20] C:\Program Files\Common Files\microsoft shared
[08/06/2008|00:02] C:\Program Files\Common Files\Oberon Media
[16/07/2008|22:20] C:\Program Files\Common Files\PX Storage Engine
[28/03/2008|16:29] C:\Program Files\Common Files\Reallusion
[28/03/2008|16:37] C:\Program Files\Common Files\Roxio Shared
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[28/03/2008|16:37] C:\Program Files\Common Files\Sonic Shared
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[28/03/2008|16:33] C:\Program Files\Common Files\supportsoft
[28/03/2008|16:38] C:\Program Files\Common Files\SureThing Shared
[19/07/2008|21:45] C:\Program Files\Common Files\System
[27/05/2008|19:18] C:\Program Files\Common Files\WindowsLiveInstaller
--------------------\\ Process
( 70 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-28 16:18:45
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 1
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:1624][D:327]-> C:\Users\MLANIE~1\AppData\Local\Temp
[F:1895][D:1]-> C:\Users\MLANIE~1\AppData\Roaming\MICROS~1\Windows\Cookies
[F:4152][D:9]-> C:\Users\MLANIE~1\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:57][D:8]-> C:\$Recycle.Bin
1 - "C:\Lop SD\LopR_1.txt" - 28/09/2008|15:26 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 28/09/2008|15:48 - Option : [2]
3 - "C:\Lop SD\LopR_3.txt" - 28/09/2008|16:21 - Option : [2]
--------------------\\ Fin du rapport a 16:21:47
[ UAC => 1 ]
--------------------\\ Lop S&D 4.2.4-4 XP/Vista
Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Intel(R) Core(TM)2 Duo CPU T5550 @ 1.83GHz )
BIOS : Phoenix ROM BIOS PLUS Version 1.10 A07
USER : mélanie ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 080927-0] 4.8.1229 (Activated)
C:\ (Local Disk) - NTFS - Total : 136 Go Free : 44 Go
D:\ (Local Disk) - NTFS - Total : 9 Go Free : 5 Go
E:\ (CD or DVD)
"C:\Lop SD" ( MAJ : 19-09-2008|22:20 )
Option : [1] ( 28/09/2008|15:22 )
[ UAC => 0 ]
--------------------\\ Listing des dossiers dans Local
[08/06/2008|10:43] C:\Users\MLANIE~1\AppData\Local\Adobe
[19/05/2008|18:43] C:\Users\MLANIE~1\AppData\Local\Application Data
[21/05/2008|21:18] C:\Users\MLANIE~1\AppData\Local\Apps
[14/09/2008|12:31] C:\Users\MLANIE~1\AppData\Local\Axialis
[28/09/2008|14:46] C:\Users\MLANIE~1\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[18/07/2008|23:03] C:\Users\MLANIE~1\AppData\Local\GDIPFONTCACHEV1.DAT
[02/06/2008|23:49] C:\Users\MLANIE~1\AppData\Local\Google
[19/05/2008|18:43] C:\Users\MLANIE~1\AppData\Local\Historique
[19/07/2008|22:23] C:\Users\MLANIE~1\AppData\Local\HP
[28/09/2008|15:18] C:\Users\MLANIE~1\AppData\Local\IconCache.db
[23/05/2008|21:56] C:\Users\MLANIE~1\AppData\Local\MediaDirect
[14/06/2008|15:46] C:\Users\MLANIE~1\AppData\Local\Microsoft
[14/08/2008|13:35] C:\Users\MLANIE~1\AppData\Local\Microsoft Games
[07/09/2008|20:01] C:\Users\MLANIE~1\AppData\Local\Mozilla
[13/08/2008|13:13] C:\Users\MLANIE~1\AppData\Local\Powercinema
[20/05/2008|19:27] C:\Users\MLANIE~1\AppData\Local\SupportSoft
[28/09/2008|15:21] C:\Users\MLANIE~1\AppData\Local\Temp
[19/05/2008|18:43] C:\Users\MLANIE~1\AppData\Local\Temporary Internet Files
[28/05/2008|17:59] C:\Users\MLANIE~1\AppData\Local\VirtualStore
--------------------\\ Tâches planifiées dans C:\Windows\tasks
[28/09/2008 00:54][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{2E5A63C6-B4F0-44EA-B236-9DD944E7139C}.job
[28/09/2008 15:19][--ah-----] C:\Windows\tasks\SA.DAT
[28/09/2008 15:18][--a------] C:\Windows\tasks\SCHEDLGU.TXT
--------------------\\ Listing des dossiers dans C:\ProgramData
[12/09/2008|21:49] C:\ProgramData\Admin Inter 1 Mags
[24/06/2008|22:09] C:\ProgramData\Adobe
[19/09/2008|20:15] C:\ProgramData\amok user hope
[19/05/2008|18:42] C:\ProgramData\Application Data
[29/05/2008|15:53] C:\ProgramData\AVS4YOU
[12/09/2008|21:49] C:\ProgramData\Bend beep flag.26xnf4g
[19/05/2008|18:42] C:\ProgramData\Bureau
[12/09/2008|21:49] C:\ProgramData\coal team team.2rd4l8v
[12/09/2008|21:49] C:\ProgramData\coal team team.alfz7q
[08/06/2008|10:44] C:\ProgramData\CyberLink
[07/06/2008|23:40] C:\ProgramData\Dell
[19/05/2008|18:42] C:\ProgramData\Documents
[08/06/2008|00:05] C:\ProgramData\Fashion Solitaire 1.2
[19/05/2008|18:42] C:\ProgramData\Favoris
[12/06/2008|22:19] C:\ProgramData\GamesBar
[28/03/2008|16:32] C:\ProgramData\Google
[19/07/2008|22:17] C:\ProgramData\Hewlett-Packard
[19/07/2008|22:17] C:\ProgramData\HP
[19/07/2008|22:14] C:\ProgramData\HP Product Assistant
[20/07/2008|00:38] C:\ProgramData\HPSSUPPLY
[19/07/2008|22:18] C:\ProgramData\hpzinstall.log
[28/03/2008|16:37] C:\ProgramData\InstallShield
[14/09/2008|20:58] C:\ProgramData\LauncherAccess.dt
[05/06/2008|19:42] C:\ProgramData\McAfee
[19/05/2008|18:42] C:\ProgramData\Menu D‚marrer
[05/06/2008|22:05] C:\ProgramData\Messenger Plus!
[16/07/2008|20:59] C:\ProgramData\Microsoft
[19/05/2008|18:42] C:\ProgramData\ModŠles
[28/09/2008|15:19] C:\ProgramData\NVIDIA
[06/09/2008|21:28] C:\ProgramData\Roxio
[28/03/2008|16:38] C:\ProgramData\Sonic
[28/03/2008|16:33] C:\ProgramData\SupportSoft
[08/06/2008|00:05] C:\ProgramData\TEMP
[28/03/2008|16:38] C:\ProgramData\Uninstall
[19/07/2008|22:18] C:\ProgramData\WEBREG
[27/05/2008|19:12] C:\ProgramData\WLInstaller
[12/08/2008|18:22] C:\ProgramData\Yahoo! Companion
--------------------\\ Listing des dossiers dans C:\Program Files
[07/07/2008|14:50] C:\Program Files\Adobe
[05/06/2008|19:51] C:\Program Files\Alwil Software
[29/05/2008|16:06] C:\Program Files\AVS4YOU
[28/03/2008|16:28] C:\Program Files\Broadcom
[12/09/2008|21:49] C:\Program Files\Circle Developement
[28/03/2008|16:31] C:\Program Files\Cisco
[19/07/2008|22:14] C:\Program Files\Common Files
[28/03/2008|16:15] C:\Program Files\CONEXANT
[28/03/2008|16:29] C:\Program Files\Creative
[28/03/2008|16:28] C:\Program Files\Creative Live! Cam
[28/03/2008|16:34] C:\Program Files\CyberLink
[28/03/2008|16:42] C:\Program Files\Dell
[28/03/2008|16:33] C:\Program Files\Dell Support Center
[29/03/2008|00:09] C:\Program Files\DellTPad
[28/03/2008|16:28] C:\Program Files\Digital Line Detect
[12/08/2008|18:20] C:\Program Files\DivX
[15/07/2008|22:28] C:\Program Files\eMule
[19/05/2008|18:42] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[08/06/2008|00:03] C:\Program Files\GamesBar
[02/06/2008|23:48] C:\Program Files\Google
[19/07/2008|22:13] C:\Program Files\Hewlett-Packard
[19/07/2008|22:15] C:\Program Files\HP
[09/09/2008|18:15] C:\Program Files\InstallShield Installation Information
[19/07/2008|21:45] C:\Program Files\Internet Explorer
[19/07/2008|22:00] C:\Program Files\Java
[28/05/2008|20:30] C:\Program Files\LimeWire
[28/03/2008|16:42] C:\Program Files\MAKEMSI Package Documentation
[12/09/2008|21:49] C:\Program Files\Messenger Plus! Live
[02/11/2006|14:37] C:\Program Files\Microsoft Games
[28/03/2008|16:35] C:\Program Files\Microsoft Office
[28/03/2008|16:36] C:\Program Files\Microsoft Works
[28/03/2008|16:27] C:\Program Files\Modem Diagnostic Tool
[19/07/2008|21:45] C:\Program Files\Movie Maker
[28/09/2008|15:20] C:\Program Files\Mozilla Firefox
[02/11/2006|14:37] C:\Program Files\MSBuild
[29/05/2008|14:07] C:\Program Files\MSXML 4.0
[28/03/2008|16:27] C:\Program Files\NetWaiting
[18/07/2008|21:48] C:\Program Files\OpenOffice.org 2.4
[08/06/2008|00:02] C:\Program Files\Orange
[27/05/2008|18:38] C:\Program Files\Orange HSS
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[28/03/2008|16:38] C:\Program Files\Roxio
[12/07/2008|13:49] C:\Program Files\Samsung
[28/03/2008|16:14] C:\Program Files\Sigmatel
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[16/07/2008|22:24] C:\Program Files\VideoLAN
[19/07/2008|21:45] C:\Program Files\Windows Calendar
[19/07/2008|21:45] C:\Program Files\Windows Collaboration
[19/07/2008|21:45] C:\Program Files\Windows Defender
[19/07/2008|21:45] C:\Program Files\Windows Journal
[27/05/2008|19:18] C:\Program Files\Windows Live
[16/08/2008|11:16] C:\Program Files\Windows Mail
[19/07/2008|21:45] C:\Program Files\Windows Media Player
[19/05/2008|18:42] C:\Program Files\Windows NT
[19/07/2008|21:45] C:\Program Files\Windows Photo Gallery
[19/07/2008|21:45] C:\Program Files\Windows Sidebar
[12/08/2008|18:20] C:\Program Files\Yahoo!
--------------------\\ Listing des dossiers dans C:\Program Files\Common Files
[24/06/2008|22:09] C:\Program Files\Common Files\Adobe
[29/05/2008|16:03] C:\Program Files\Common Files\AVSMedia
[28/03/2008|16:29] C:\Program Files\Common Files\Creative
[27/05/2008|18:34] C:\Program Files\Common Files\France Telecom
[19/07/2008|22:13] C:\Program Files\Common Files\Hewlett-Packard
[19/07/2008|22:14] C:\Program Files\Common Files\HP
[28/03/2008|16:37] C:\Program Files\Common Files\InstallShield
[28/03/2008|16:24] C:\Program Files\Common Files\Java
[27/05/2008|19:20] C:\Program Files\Common Files\microsoft shared
[08/06/2008|00:02] C:\Program Files\Common Files\Oberon Media
[16/07/2008|22:20] C:\Program Files\Common Files\PX Storage Engine
[28/03/2008|16:29] C:\Program Files\Common Files\Reallusion
[28/03/2008|16:37] C:\Program Files\Common Files\Roxio Shared
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[28/03/2008|16:37] C:\Program Files\Common Files\Sonic Shared
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[28/03/2008|16:33] C:\Program Files\Common Files\supportsoft
[28/03/2008|16:38] C:\Program Files\Common Files\SureThing Shared
[19/07/2008|21:45] C:\Program Files\Common Files\System
[27/05/2008|19:18] C:\Program Files\Common Files\WindowsLiveInstaller
--------------------\\ Process
( 73 Processes )
iexplore.exe ~ [PID:2512]
--------------------\\ Recherche avec S_Lop
C:\ProgramData\coal team team.alfz7q
C:\ProgramData\Bend beep flag.26xnf4g
C:\ProgramData\coal team team.2rd4l8v
C:\Users\MLANIE~1\AppData\Local\Temp\bisA19E.exe
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\ProgramData\Admin Inter 1 Mags
C:\ProgramData\Admin Inter 1 Mags\Bat Chic.exe
C:\Users\MLANIE~1\AppData\Local\Temp\msgpl_3435.tmp
C:\Users\MLANIE~1\AppData\Local\Temp\msgpl_9c33.tmp
C:\Users\MLANIE~1\AppData\Local\Temp\msgpl_b730.tmp
C:\Users\MLANIE~1\AppData\Local\Temp\msgpl_c359.tmp
C:\Program Files\Circle Developement
C:\Program Files\Circle Developement\Uninstall.exe
C:\Users\MLANIE~1\AppData\Roaming\MICROS~1\Windows\Cookies\mélanie@advertstream[1].txt
C:\Users\MLANIE~1\AppData\Roaming\MICROS~1\Windows\Cookies\mélanie@adultfriendfinder[2].txt
C:\Users\MLANIE~1\AppData\Roaming\MICROS~1\Windows\Cookies\mélanie@advertising[2].txt
C:\Users\MLANIE~1\AppData\Roaming\MICROS~1\Windows\Cookies\mélanie@adopt.euroclick[2].txt
--------------------\\ Verification du Registre
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"tool meal"="\"C:\\ProgramData\\coal team team.2rd4l8v\""
"1 mags 16 more"="\"C:\\ProgramData\\Bend beep flag.26xnf4g\""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-28 15:22:16
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 1
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:1627][D:331]-> C:\Users\MLANIE~1\AppData\Local\Temp
[F:1899][D:1]-> C:\Users\MLANIE~1\AppData\Roaming\MICROS~1\Windows\Cookies
[F:4030][D:9]-> C:\Users\MLANIE~1\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:55][D:8]-> C:\$Recycle.Bin
1 - "C:\Lop SD\LopR_1.txt" - 28/09/2008|15:26 - Option : [1]
--------------------\\ Fin du rapport a 15:26:41
[ UAC => 1 ]