Rapport hijackthis

bmw-93 Messages postés 157 Statut Membre -
bmw-93 Messages postés 157 Statut Membre - 14 nov. 2008 à 17:51

Salut a tous voila je pense que je suis infecté par un virus car il y a une fenêtre qui apparait quand je suis sur mozilla ou internet explorer cette fenêtre s'appelle " Contextual ads by Dcads " donc voila mon rapport hijackthis et merci pour vos réponses :

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:41:04, on 08/11/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\VM303_STI.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
D:\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://ww1.comalgerie.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://fr.rd.yahoo.com/customize/ie/defaults/su/msgr8/*https://fr.search.yahoo.com/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: dcads - {9ac1f717-7914-c2dd-d436-89a3c5953f11} - C:\WINDOWS\system32\nsx12F.dll
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - D:\Free Download Manager\iefdm2.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [BigDog303] C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC0301PLH)
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User 'Default user')
O8 - Extra context menu item: Analyser avec LeechGet - file://C:\Program Files\LeechGet 2007\\Parser.html
O8 - Extra context menu item: Tout télécharger avec Free Download Manager - file://D:\Free Download Manager\dlall.htm
O8 - Extra context menu item: Télécharger avec Free Download Manager - file://D:\Free Download Manager\dllink.htm
O8 - Extra context menu item: Télécharger en utilisant l'assistant LeechGet - file://C:\Program Files\LeechGet 2007\\Wizard.html
O8 - Extra context menu item: Télécharger en utilisant LeechGet - file://C:\Program Files\LeechGet 2007\\AddUrl.html
O8 - Extra context menu item: Télécharger la sélection avec Free Download Manager - file://D:\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Télécharger la vidéo avec Free Download Manager - file://D:\Free Download Manager\dlfvideo.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Run WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll
O9 - Extra 'Tools' menuitem: Launch WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Upload - {FD4E2FF8-973C-4A19-89BD-8E86B3CFCFE1} - D:\Free Download Manager\FUM\fumiebtn.dll
O16 - DPF: Yahoo! Pool 2 - http://origin.games.yahoo.net/games/clients/y/poti_x.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{327C305E-6A82-4F49-9D34-E18700AE82BC}: NameServer = 212.30.96.123
O23 - Service: Ares Chatroom server (AresChatServer) - Ares Development Group - C:\Program Files\Ares\chatServer.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Service de l'iPod (iPod Service) - Unknown owner - C:\Program Files\iPod\bin\iPodService.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

Afficher la suite

A voir également:

Rapport hijackthis
Hijackthis - Télécharger - Antivirus & Antimalwares
Plan rapport de stage - Guide
Rapport de crash windows - Guide
Impression rapport de stage ✓ - Forum Word
Modifier rapport d'échelle pdf xchange viewer ✓ - Forum PDF

28 réponses

Réponse 21 / 28

geoffrey5 Messages postés 14008 Statut Contributeur sécurité 10

Salut !!

C est pas grave... Maintenant fais ceci stp :

▶ Télécharger et enregistrer lopSD sur le Bureau

▶ Double-clic Lop S&D

▶ Faire l'installation

▶ Fermer toutes les applications

▶ Le lancer par un double-clic sur le raccourci qui est sur le bureau
Avec VISTA => clic-droit et => Exécuter en tant qu'administrateur

▶ Taper F pour français , puis presser entrée

▶ Taper 1

▶ Presser Entrée

▶ Le PC va redémarrer
Note= si l'antivirus annonce une infection dans TEMP , l'ignorer

▶ Attendre l'apparition du rapport
▶ Copier le rapport et le coller dans la réponse
le rapport se trouve aussi à C:\lopR

Réponse 22 / 28

bmw-93 Messages postés 157 Statut Membre 16

voila le rapport

--------------------\\ Lop S&D 4.2.4-9c XP/Vista

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : Intel(R) Pentium(R) 4 CPU 2.80GHz )
BIOS : Default System BIOS
USER : alpha ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 000000-0] 4.8.1229 (Not Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:38 Go (Free:1 Go)
D:\ (Local Disk) - NTFS - Total:38 Go (Free:9 Go)
E:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 01-11-2008|16:30 )
Option : [1] ( 11/11/2008|12:45 )

--------------------\\ Listing des dossiers dans APPLIC~1

[12/01/2008|09:05] C:\DOCUME~1\ADMINI~1\APPLIC~1\Adobe
[04/01/2008|15:12] C:\DOCUME~1\ADMINI~1\APPLIC~1\Apple Computer
[28/03/2008|14:17] C:\DOCUME~1\ADMINI~1\APPLIC~1\Free Download Manager
[04/01/2008|14:27] C:\DOCUME~1\ADMINI~1\APPLIC~1\Google
[04/01/2008|14:16] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[16/01/2008|16:52] C:\DOCUME~1\ADMINI~1\APPLIC~1\LimeWire
[04/01/2008|14:24] C:\DOCUME~1\ADMINI~1\APPLIC~1\Macromedia
[01/03/2008|20:48] C:\DOCUME~1\ADMINI~1\APPLIC~1\MegauploadToolbar
[17/01/2008|18:18] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[04/01/2008|14:17] C:\DOCUME~1\ADMINI~1\APPLIC~1\Mozilla
[11/01/2008|11:13] C:\DOCUME~1\ADMINI~1\APPLIC~1\Skype
[12/01/2008|11:47] C:\DOCUME~1\ADMINI~1\APPLIC~1\Sun
[11/01/2008|15:17] C:\DOCUME~1\ADMINI~1\APPLIC~1\vlc

[17/06/2007|09:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ACD Systems
[23/07/2008|19:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[20/02/2007|10:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe Systems
[07/09/2008|16:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[28/09/2008|10:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[19/01/2007|15:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[11/06/2006|16:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[31/08/2007|12:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FLEXnet
[18/05/2008|18:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FreeDownloadManager.ORG
[30/10/2007|17:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[19/09/2007|11:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
[21/11/2007|18:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[16/11/2007|13:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab
[16/01/2007|15:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macromedia
[16/11/2007|14:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MailFrontier
[24/07/2008|18:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[07/01/2008|15:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[12/05/2007|09:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Corporation
[18/11/2006|17:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN6
[20/06/2006|12:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSScanAppDataDir
[23/07/2008|19:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NOS
[28/02/2007|10:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
[09/09/2007|19:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\OnlineHtmBodyWeb
[15/01/2007|17:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[04/01/2007|15:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[28/07/2007|09:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TechSmith
[07/08/2008|08:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[19/02/2007|12:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TuneUp Software
[13/09/2008|16:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TVU Networks
[25/03/2007|12:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems
[09/06/2007|19:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WildTangent
[19/01/2007|15:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[01/02/2007|14:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[27/10/2006|12:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[27/01/2007|08:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo!

[23/07/2008|16:30] C:\DOCUME~1\alpha\APPLIC~1\.purple
[16/01/2007|16:21] C:\DOCUME~1\alpha\APPLIC~1\ACD Systems
[27/10/2006|12:10] C:\DOCUME~1\alpha\APPLIC~1\Adobe
[06/06/2007|14:04] C:\DOCUME~1\alpha\APPLIC~1\AdobeUM
[27/07/2007|19:02] C:\DOCUME~1\alpha\APPLIC~1\ALLCapture
[28/03/2007|11:04] C:\DOCUME~1\alpha\APPLIC~1\Apple Computer
[15/01/2007|18:30] C:\DOCUME~1\alpha\APPLIC~1\Artweaver
[16/11/2007|13:41] C:\DOCUME~1\alpha\APPLIC~1\Bib Bore Meal
[08/09/2008|14:56] C:\DOCUME~1\alpha\APPLIC~1\BitTorrent
[29/09/2006|12:21] C:\DOCUME~1\alpha\APPLIC~1\Connectix
[01/01/2008|10:06] C:\DOCUME~1\alpha\APPLIC~1\Copernic
[05/06/2007|14:25] C:\DOCUME~1\alpha\APPLIC~1\DeskSoft
[03/11/2008|17:00] C:\DOCUME~1\alpha\APPLIC~1\DivX
[17/12/2007|15:30] C:\DOCUME~1\alpha\APPLIC~1\DMCache
[13/08/2008|17:46] C:\DOCUME~1\alpha\APPLIC~1\DNA
[08/06/2007|16:17] C:\DOCUME~1\alpha\APPLIC~1\EoRezo
[02/05/2007|15:43] C:\DOCUME~1\alpha\APPLIC~1\fltk.org
[26/09/2008|14:34] C:\DOCUME~1\alpha\APPLIC~1\FMZilla
[11/11/2008|12:44] C:\DOCUME~1\alpha\APPLIC~1\Free Download Manager
[16/07/2007|11:46] C:\DOCUME~1\alpha\APPLIC~1\GanymedeNet
[06/08/2008|14:46] C:\DOCUME~1\alpha\APPLIC~1\GetRightToGo
[19/01/2007|11:34] C:\DOCUME~1\alpha\APPLIC~1\Google
[25/09/2006|13:41] C:\DOCUME~1\alpha\APPLIC~1\Help
[11/06/2006|14:42] C:\DOCUME~1\alpha\APPLIC~1\Identities
[14/12/2007|16:27] C:\DOCUME~1\alpha\APPLIC~1\IDM
[03/04/2007|18:19] C:\DOCUME~1\alpha\APPLIC~1\Internet Download Accelerator
[06/05/2007|12:24] C:\DOCUME~1\alpha\APPLIC~1\ItsLabel
[29/03/2007|11:29] C:\DOCUME~1\alpha\APPLIC~1\Jasc
[11/03/2007|20:25] C:\DOCUME~1\alpha\APPLIC~1\Kazaa Lite
[03/08/2008|11:13] C:\DOCUME~1\alpha\APPLIC~1\LimeWire
[28/06/2007|13:48] C:\DOCUME~1\alpha\APPLIC~1\Macromedia
[24/07/2008|18:18] C:\DOCUME~1\alpha\APPLIC~1\Malwarebytes
[24/01/2008|20:17] C:\DOCUME~1\alpha\APPLIC~1\MEGAUPLOADTOOLBAR
[22/10/2008|21:04] C:\DOCUME~1\alpha\APPLIC~1\Microsoft
[11/06/2006|15:09] C:\DOCUME~1\alpha\APPLIC~1\Microsoft Games
[24/07/2008|08:57] C:\DOCUME~1\alpha\APPLIC~1\Mozilla
[04/08/2007|12:07] C:\DOCUME~1\alpha\APPLIC~1\NAMEHO~1
[05/08/2007|09:31] C:\DOCUME~1\alpha\APPLIC~1\NAMEHO~2
[28/07/2008|08:26] C:\DOCUME~1\alpha\APPLIC~1\Notepad++
[05/04/2007|14:03] C:\DOCUME~1\alpha\APPLIC~1\Opera
[07/08/2008|14:31] C:\DOCUME~1\alpha\APPLIC~1\OtakuSoftware
[06/07/2007|12:16] C:\DOCUME~1\alpha\APPLIC~1\PixelMetrics
[06/08/2008|21:05] C:\DOCUME~1\alpha\APPLIC~1\Publish Providers
[15/07/2007|15:11] C:\DOCUME~1\alpha\APPLIC~1\Real
[02/05/2007|15:30] C:\DOCUME~1\alpha\APPLIC~1\Samsung
[15/03/2007|07:59] C:\DOCUME~1\alpha\APPLIC~1\Screenshot Sender
[11/11/2008|12:31] C:\DOCUME~1\alpha\APPLIC~1\Skype
[19/08/2008|12:15] C:\DOCUME~1\alpha\APPLIC~1\Sony
[04/08/2008|12:48] C:\DOCUME~1\alpha\APPLIC~1\Sony Setup
[04/03/2007|17:02] C:\DOCUME~1\alpha\APPLIC~1\Sun
[08/11/2008|19:20] C:\DOCUME~1\alpha\APPLIC~1\tazebama
[19/02/2007|12:03] C:\DOCUME~1\alpha\APPLIC~1\TuneUp Software
[20/07/2007|16:15] C:\DOCUME~1\alpha\APPLIC~1\TuxPaint
[13/12/2007|14:47] C:\DOCUME~1\alpha\APPLIC~1\TVU Networks
[15/01/2007|18:43] C:\DOCUME~1\alpha\APPLIC~1\Ulead Systems
[16/08/2008|19:28] C:\DOCUME~1\alpha\APPLIC~1\uTorrent
[26/03/2007|11:22] C:\DOCUME~1\alpha\APPLIC~1\Vista Start Menu
[07/08/2008|18:46] C:\DOCUME~1\alpha\APPLIC~1\ViStart
[13/11/2006|18:52] C:\DOCUME~1\alpha\APPLIC~1\vlc
[13/04/2008|17:07] C:\DOCUME~1\alpha\APPLIC~1\V-Safe
[07/08/2008|15:15] C:\DOCUME~1\alpha\APPLIC~1\Webshots
[14/08/2008|10:04] C:\DOCUME~1\alpha\APPLIC~1\WinRAR
[03/09/2008|13:12] C:\DOCUME~1\alpha\APPLIC~1\Yahoo!
[27/09/2006|17:18] C:\DOCUME~1\alpha\APPLIC~1\Zoner

[01/12/2007|18:45] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[21/06/2008|13:42] C:\DOCUME~1\INVIT~1\APPLIC~1\Apple Computer
[09/09/2007|14:17] C:\DOCUME~1\INVIT~1\APPLIC~1\Bib Bore Meal
[23/10/2006|18:49] C:\DOCUME~1\INVIT~1\APPLIC~1\Identities
[24/10/2006|08:56] C:\DOCUME~1\INVIT~1\APPLIC~1\Macromedia
[11/11/2006|10:27] C:\DOCUME~1\INVIT~1\APPLIC~1\Microsoft
[21/06/2008|13:41] C:\DOCUME~1\INVIT~1\APPLIC~1\PixelMetrics
[11/11/2006|10:20] C:\DOCUME~1\INVIT~1\APPLIC~1\Real

[31/12/2006|13:43] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[15/07/2007|15:00] C:\DOCUME~1\mohamed\APPLIC~1\Microsoft
[30/04/2007|13:27] C:\DOCUME~1\mohamed\APPLIC~1\Mozilla
[28/12/2006|11:45] C:\DOCUME~1\mohamed\APPLIC~1\MSN6
[13/11/2006|16:23] C:\DOCUME~1\mohamed\APPLIC~1\Real
[17/03/2007|14:07] C:\DOCUME~1\mohamed\APPLIC~1\Skype
[15/01/2007|14:41] C:\DOCUME~1\mohamed\APPLIC~1\Ulead Systems
[16/01/2007|18:39] C:\DOCUME~1\mohamed\APPLIC~1\Webshots

[11/06/2006|14:40] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[07/11/2008 17:15][--a------] C:\WINDOWS\tasks\Maintenance en 1 clic.job
[11/11/2008 12:34][--ah-----] C:\WINDOWS\tasks\SA.DAT
[02/10/2001 18:18][-r-h-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[04/08/2008|08:45] C:\Program Files\adslTV
[09/09/2008|11:48] C:\Program Files\Alwil Software
[28/09/2008|10:25] C:\Program Files\Apple Software Update
[28/09/2008|10:25] C:\Program Files\Apple Software Update(2)
[26/07/2008|07:54] C:\Program Files\Ares Galaxy Turbo Booster
[09/11/2008|17:48] C:\Program Files\a-squared Free
[09/10/2008|13:16] C:\Program Files\Audacity
[28/09/2008|10:25] C:\Program Files\AVPersonal
[28/09/2008|10:24] C:\Program Files\Bonjour
[05/11/2008|23:43] C:\Program Files\CaptureWiz
[29/10/2007|20:43] C:\Program Files\CCleaner
[26/07/2008|07:38] C:\Program Files\Conduit
[05/06/2007|18:39] C:\Program Files\CursorXP
[05/06/2007|14:26] C:\Program Files\DesktopPlant
[19/09/2008|15:41] C:\Program Files\DivX
[11/08/2008|18:21] C:\Program Files\DNA
[09/11/2008|17:49] C:\Program Files\Fichiers communs
[18/05/2008|18:29] C:\Program Files\Free Download Manager
[28/09/2008|10:24] C:\Program Files\Free Music Zilla
[27/10/2008|16:48] C:\Program Files\freebird
[18/09/2008|13:53] C:\Program Files\Garena
[26/06/2008|09:48] C:\Program Files\Google
[05/04/2007|15:52] C:\Program Files\IDA
[27/10/2006|12:14] C:\Program Files\InstallShield Installation Information
[10/11/2008|23:34] C:\Program Files\Internet Explorer
[28/09/2008|10:24] C:\Program Files\iPod
[13/01/2007|19:05] C:\Program Files\IrfanView
[28/09/2008|10:24] C:\Program Files\iTunes
[23/06/2007|14:29] C:\Program Files\Jasc Software Inc
[25/07/2008|20:59] C:\Program Files\Java
[19/07/2008|09:54] C:\Program Files\Kikoo
[25/01/2008|13:58] C:\Program Files\LeechGet 2007
[01/11/2007|09:27] C:\Program Files\LimeWire
[11/09/2008|15:05] C:\Program Files\Malwarebytes' Anti-Malware
[16/08/2008|21:25] C:\Program Files\Messenger
[03/04/2007|17:57] C:\Program Files\MessengerPlus! 3
[11/06/2006|14:36] C:\Program Files\microsoft frontpage
[19/12/2007|19:20] C:\Program Files\Microsoft Office
[15/08/2008|13:11] C:\Program Files\Microsoft Reader
[18/08/2008|15:07] C:\Program Files\Microsoft SQL Server
[09/08/2008|11:56] C:\Program Files\Microsoft.NET
[27/10/2006|12:15] C:\Program Files\Movie Maker
[17/08/2008|14:56] C:\Program Files\Mozilla Firefox
[02/01/2007|11:03] C:\Program Files\msn gaming zone
[27/10/2006|13:04] C:\Program Files\MSN Messenger
[31/08/2007|12:34] C:\Program Files\MSXML 4.0
[04/08/2007|12:07] C:\Program Files\NAMEHO~1
[05/08/2007|09:31] C:\Program Files\NAMEHO~2
[20/06/2007|16:16] C:\Program Files\Namo
[11/11/2008|12:35] C:\Program Files\Navilog1
[27/07/2008|18:21] C:\Program Files\NetMeeting
[23/07/2008|19:38] C:\Program Files\NOS
[28/07/2008|08:26] C:\Program Files\Notepad++
[14/04/2008|18:07] C:\Program Files\Nouvelle Cible
[02/11/2008|09:37] C:\Program Files\Nuclear Coffee
[17/06/2007|09:42] C:\Program Files\Opera
[27/10/2006|12:15] C:\Program Files\Outlook Express
[26/07/2008|08:15] C:\Program Files\P2P_Torrent
[18/09/2008|13:51] C:\Program Files\Panda Security
[14/08/2007|11:47] C:\Program Files\payloads
[19/12/2007|11:45] C:\Program Files\PhotoFiltre
[25/07/2008|09:05] C:\Program Files\Pidgin
[10/08/2008|11:25] C:\Program Files\Pool Station
[27/06/2007|18:55] C:\Program Files\Power IE
[15/07/2007|15:29] C:\Program Files\Project64 1.6
[26/10/2006|15:59] C:\Program Files\Pvm
[28/09/2008|10:25] C:\Program Files\QuickTime
[28/09/2008|10:24] C:\Program Files\QuickTime(2)
[22/06/2007|16:14] C:\Program Files\Real
[20/02/2007|10:20] C:\Program Files\Realtek AC97
[19/02/2007|13:57] C:\Program Files\Realtek Sound Manager
[31/08/2007|12:32] C:\Program Files\redist
[14/08/2007|11:47] C:\Program Files\resources
[09/10/2008|13:17] C:\Program Files\rulesPlayer(2)
[25/07/2008|21:33] C:\Program Files\Serials 2000
[21/02/2008|17:48] C:\Program Files\Softick
[27/10/2008|15:21] C:\Program Files\SoftPerfect Network Protocol Analyzer
[18/08/2008|17:21] C:\Program Files\Sony
[01/09/2007|22:47] C:\Program Files\Sony Corporation
[25/07/2008|20:59] C:\Program Files\Sun
[20/07/2008|11:55] C:\Program Files\TechSmith
[16/06/2008|14:05] C:\Program Files\TranslateIt! 5.5 GEG
[24/07/2008|10:18] C:\Program Files\Trend Micro
[06/08/2008|14:46] C:\Program Files\Tropico
[10/09/2007|15:35] C:\Program Files\Ultralingua
[18/08/2008|15:08] C:\Program Files\Uninstall Information
[11/09/2008|14:46] C:\Program Files\Unlocker
[19/02/2007|13:51] C:\Program Files\VIA
[29/07/2008|15:18] C:\Program Files\VideoLAN
[01/09/2007|22:15] C:\Program Files\Vimicro
[20/07/2007|12:40] C:\Program Files\Visicom Media
[27/06/2007|18:52] C:\Program Files\WebCopier
[25/07/2008|09:17] C:\Program Files\Webshots
[29/10/2007|17:04] C:\Program Files\Winamp
[27/10/2006|12:50] C:\Program Files\Windows Live
[20/07/2007|20:21] C:\Program Files\Windows Media Connect 2
[27/10/2006|12:15] C:\Program Files\Windows Media Player
[06/01/2007|12:44] C:\Program Files\Windows NT
[02/01/2007|11:00] C:\Program Files\WindowsUpdate
[09/11/2008|17:49] C:\Program Files\Wingen
[17/10/2008|13:41] C:\Program Files\WinHTTrack
[08/11/2008|19:20] C:\Program Files\WinRAR
[11/06/2006|14:36] C:\Program Files\xerox
[18/09/2008|13:52] C:\Program Files\Yahoo!

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[17/06/2007|09:44] C:\Program Files\Fichiers communs\ACD Systems
[23/07/2008|19:41] C:\Program Files\Fichiers communs\Adobe
[25/09/2008|23:40] C:\Program Files\Fichiers communs\Apple
[14/12/2007|16:52] C:\Program Files\Fichiers communs\Blizzard Entertainment
[09/09/2007|10:09] C:\Program Files\Fichiers communs\DESIGNER
[14/07/2006|12:16] C:\Program Files\Fichiers communs\EPSON
[18/06/2007|09:01] C:\Program Files\Fichiers communs\eSellerate
[15/01/2007|17:01] C:\Program Files\Fichiers communs\FotoWare
[04/01/2007|15:19] C:\Program Files\Fichiers communs\InstallShield
[15/01/2007|13:10] C:\Program Files\Fichiers communs\Jasc Software Inc
[26/02/2007|14:14] C:\Program Files\Fichiers communs\Java
[15/08/2008|13:17] C:\Program Files\Fichiers communs\L&H
[14/08/2007|13:31] C:\Program Files\Fichiers communs\Macrovision Shared
[27/10/2006|12:45] C:\Program Files\Fichiers communs\Microsoft Shared
[11/06/2006|14:34] C:\Program Files\Fichiers communs\MSSoap
[01/09/2007|22:46] C:\Program Files\Fichiers communs\muvee Technologies
[15/01/2007|17:01] C:\Program Files\Fichiers communs\Nikon
[27/09/2006|17:13] C:\Program Files\Fichiers communs\Novell Shared
[11/06/2006|14:29] C:\Program Files\Fichiers communs\ODBC
[15/07/2007|15:12] C:\Program Files\Fichiers communs\Real
[11/06/2006|14:34] C:\Program Files\Fichiers communs\Services
[04/01/2007|15:31] C:\Program Files\Fichiers communs\Skype
[11/06/2006|14:29] C:\Program Files\Fichiers communs\SpeechEngines
[12/05/2007|09:50] C:\Program Files\Fichiers communs\Stardock
[27/09/2006|17:15] C:\Program Files\Fichiers communs\Symantec Shared
[07/09/2007|20:03] C:\Program Files\Fichiers communs\System
[21/03/2007|13:54] C:\Program Files\Fichiers communs\Vbox
[19/12/2007|13:12] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[09/10/2008|13:57] C:\Program Files\Fichiers communs\Wise Installation Wizard

--------------------\\ Process

( 28 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\DOCUME~1\alpha\Cookies\alpha@adin.bigpoint[2].txt
C:\DOCUME~1\alpha\Cookies\alpha@bigpoint[1].txt
C:\DOCUME~1\alpha\Cookies\alpha@fr1.seafight.bigpoint[1].txt
C:\DOCUME~1\alpha\Cookies\alpha@fr1.seafight.bigpoint[1].txt

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE

--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-11-11 12:46:12
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 14

--------------------\\ Recherche d'autres infections

--------------------\\ Cracks & Keygens ..

C:\DOCUME~1\alpha\Atomix Virtual DJ 4.0 Full + crack
C:\DOCUME~1\alpha\crack generico
C:\DOCUME~1\alpha\Atomix Virtual DJ 4.0 Full + crack\install_virtualdj_v4.0.exe
C:\DOCUME~1\alpha\Atomix Virtual DJ 4.0 Full + crack\virtualdj.exe
C:\DOCUME~1\alpha\crack generico\emu.dll
C:\DOCUME~1\alpha\crack generico\MMxpt.dll
C:\DOCUME~1\alpha\Local Settings\Application Data\Opera\opera\profile\images\http%3A%2F%2Fwww.keygen.cc%2Ffavicon.ico
C:\DOCUME~1\alpha\Local Settings\Application Data\Opera\opera\profile\images\www.keygen.cc.idx
C:\DOCUME~1\alpha\Mes documents\PC GAME - PES - Pro Evolution Soccer 2008 - CRACK NO CD + [TEST OK] + KEYGEN
C:\DOCUME~1\alpha\Mes documents\PC GAME - PES - Pro Evolution Soccer 2008 - CRACK NO CD + [TEST OK] + KEYGEN\25_euros_par_mail.html
C:\DOCUME~1\alpha\Mes documents\PC GAME - PES - Pro Evolution Soccer 2008 - CRACK NO CD + [TEST OK] + KEYGEN\Gagner beaucoup d'argent facile avec Paypal - AderynR.doc
C:\DOCUME~1\alpha\Mes documents\PC GAME - PES - Pro Evolution Soccer 2008 - CRACK NO CD + [TEST OK] + KEYGEN\Keygen.txt
C:\DOCUME~1\alpha\Mes documents\PC GAME - PES - Pro Evolution Soccer 2008 - CRACK NO CD + [TEST OK] + KEYGEN\Readme.txt
C:\DOCUME~1\alpha\Mes documents\WINNING ELEVEN 10\Winning eleven 10 crack (active multilanguage), keygen, patch [NoCD] Tested.zip
C:\DOCUME~1\alpha\WINNING ELEVEN 10\Winning eleven 10 crack (active multilanguage), keygen, patch [NoCD] Tested.zip

[F:6][D:0]-> C:\DOCUME~1\alpha\LOCALS~1\Temp
[F:444][D:0]-> C:\DOCUME~1\alpha\Cookies
[F:254][D:4]-> C:\DOCUME~1\alpha\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 11/11/2008|12:48 - Option : [1]

--------------------\\ Fin du rapport a 12:48:46

Réponse 23 / 28

geoffrey5 Messages postés 14008 Statut Contributeur sécurité 10

ok maintenant :

▶ Relance Lop S&D

▶ Choisis cette fois-ci l'option 2 (Suppression)

▶ Ne ferme pas la fenêtre lors de la suppression !

▶ Poste le rapport généré (C:\lopR.txt)

* (Si le Bureau ne réapparait pas, presse Ctrl+Alt+Suppr, Onglet Fichier, Nouvelle tâche, tape explorer.exe et valide)

ensuite :

▶ Télécharger SDFix (créé par AndyManchesta) et sauvegarde le sur ton Bureau.

▶ Double cliquer sur SDFix.exe et choisir Install pour l'extraire dans un dossier dédié sur ton disque C:.

/!\ Démarre en mode sans échec : après le bip et avant le logo windows tapoter sur la touche F8 (ou F5): menu M.S.E..

▶ Choisir son compte, pas celui de l'Administrateur ou autre.

Dérouler la liste des instructions ci-dessous :

• Ouvrir le dossier SDFix qui vient d'être créé dans le répertoire C:\ et double clique sur RunThis.bat pour lancer le script.
• Appuyer sur Y pour commencer le processus de nettoyage.
• Il va supprimer les services et les entrées du Registre de certains trojans trouvés puis te demandera d'appuyer sur une touche pour redémarrer.
• Appuyer sur une touche pour redémarrer le PC.
• Le système sera plus long pour redémarrer qu'à l'accoutumée car l'outil va continuer à s'exécuter et supprimer des fichiers.
• Après le chargement du Bureau, l'outil terminera son travail et affichera Finished.
• Appuyer sur une touche pour finir l'exécution du script et charger les icônes du Bureau.
• Les icônes du Bureau affichées, le rapport SDFix s'ouvrira à l'écran et s'enregistrera aussi dans le dossier SDFix sous le nom Report.txt.
• Enfin, copier/coller le contenu du fichier Report.txt dans la prochaine réponse sur le forum

Réponse 24 / 28

bmw-93 Messages postés 157 Statut Membre 16

bon pour l'instant voici le rapport lop : je posterai la suite a 17h

--------------------\\ Lop S&D 4.2.4-9c XP/Vista

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : Intel(R) Pentium(R) 4 CPU 2.80GHz )
BIOS : Default System BIOS
USER : alpha ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 000000-0] 4.8.1229 (Not Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:38 Go (Free:1 Go)
D:\ (Local Disk) - NTFS - Total:38 Go (Free:9 Go)
E:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 01-11-2008|16:30 )
Option : [2] ( 11/11/2008|13:01 )

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

Supprime! - C:\DOCUME~1\alpha\Cookies\alpha@adin.bigpoint[2].txt
Supprime! - C:\DOCUME~1\alpha\Cookies\alpha@bigpoint[1].txt
Supprime! - C:\DOCUME~1\alpha\Cookies\alpha@fr1.seafight.bigpoint[1].txt

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

--------------------\\ Listing des dossiers dans APPLIC~1

[12/01/2008|09:05] C:\DOCUME~1\ADMINI~1\APPLIC~1\Adobe
[04/01/2008|15:12] C:\DOCUME~1\ADMINI~1\APPLIC~1\Apple Computer
[28/03/2008|14:17] C:\DOCUME~1\ADMINI~1\APPLIC~1\Free Download Manager
[04/01/2008|14:27] C:\DOCUME~1\ADMINI~1\APPLIC~1\Google
[04/01/2008|14:16] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[16/01/2008|16:52] C:\DOCUME~1\ADMINI~1\APPLIC~1\LimeWire
[04/01/2008|14:24] C:\DOCUME~1\ADMINI~1\APPLIC~1\Macromedia
[01/03/2008|20:48] C:\DOCUME~1\ADMINI~1\APPLIC~1\MegauploadToolbar
[17/01/2008|18:18] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[04/01/2008|14:17] C:\DOCUME~1\ADMINI~1\APPLIC~1\Mozilla
[11/01/2008|11:13] C:\DOCUME~1\ADMINI~1\APPLIC~1\Skype
[12/01/2008|11:47] C:\DOCUME~1\ADMINI~1\APPLIC~1\Sun
[11/01/2008|15:17] C:\DOCUME~1\ADMINI~1\APPLIC~1\vlc

[17/06/2007|09:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ACD Systems
[23/07/2008|19:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[20/02/2007|10:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe Systems
[07/09/2008|16:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[28/09/2008|10:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[19/01/2007|15:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[11/06/2006|16:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[31/08/2007|12:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FLEXnet
[18/05/2008|18:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FreeDownloadManager.ORG
[30/10/2007|17:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[19/09/2007|11:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
[21/11/2007|18:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[16/11/2007|13:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab
[16/01/2007|15:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macromedia
[16/11/2007|14:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MailFrontier
[24/07/2008|18:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[07/01/2008|15:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[12/05/2007|09:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Corporation
[18/11/2006|17:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN6
[20/06/2006|12:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSScanAppDataDir
[23/07/2008|19:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NOS
[28/02/2007|10:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
[09/09/2007|19:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\OnlineHtmBodyWeb
[15/01/2007|17:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[04/01/2007|15:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[28/07/2007|09:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TechSmith
[07/08/2008|08:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[19/02/2007|12:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TuneUp Software
[13/09/2008|16:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TVU Networks
[25/03/2007|12:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems
[09/06/2007|19:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WildTangent
[19/01/2007|15:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[01/02/2007|14:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[27/10/2006|12:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[27/01/2007|08:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo!

[23/07/2008|16:30] C:\DOCUME~1\alpha\APPLIC~1\.purple
[16/01/2007|16:21] C:\DOCUME~1\alpha\APPLIC~1\ACD Systems
[27/10/2006|12:10] C:\DOCUME~1\alpha\APPLIC~1\Adobe
[06/06/2007|14:04] C:\DOCUME~1\alpha\APPLIC~1\AdobeUM
[27/07/2007|19:02] C:\DOCUME~1\alpha\APPLIC~1\ALLCapture
[28/03/2007|11:04] C:\DOCUME~1\alpha\APPLIC~1\Apple Computer
[15/01/2007|18:30] C:\DOCUME~1\alpha\APPLIC~1\Artweaver
[16/11/2007|13:41] C:\DOCUME~1\alpha\APPLIC~1\Bib Bore Meal
[08/09/2008|14:56] C:\DOCUME~1\alpha\APPLIC~1\BitTorrent
[29/09/2006|12:21] C:\DOCUME~1\alpha\APPLIC~1\Connectix
[01/01/2008|10:06] C:\DOCUME~1\alpha\APPLIC~1\Copernic
[05/06/2007|14:25] C:\DOCUME~1\alpha\APPLIC~1\DeskSoft
[03/11/2008|17:00] C:\DOCUME~1\alpha\APPLIC~1\DivX
[17/12/2007|15:30] C:\DOCUME~1\alpha\APPLIC~1\DMCache
[13/08/2008|17:46] C:\DOCUME~1\alpha\APPLIC~1\DNA
[08/06/2007|16:17] C:\DOCUME~1\alpha\APPLIC~1\EoRezo
[02/05/2007|15:43] C:\DOCUME~1\alpha\APPLIC~1\fltk.org
[26/09/2008|14:34] C:\DOCUME~1\alpha\APPLIC~1\FMZilla
[11/11/2008|12:44] C:\DOCUME~1\alpha\APPLIC~1\Free Download Manager
[16/07/2007|11:46] C:\DOCUME~1\alpha\APPLIC~1\GanymedeNet
[06/08/2008|14:46] C:\DOCUME~1\alpha\APPLIC~1\GetRightToGo
[19/01/2007|11:34] C:\DOCUME~1\alpha\APPLIC~1\Google
[25/09/2006|13:41] C:\DOCUME~1\alpha\APPLIC~1\Help
[11/06/2006|14:42] C:\DOCUME~1\alpha\APPLIC~1\Identities
[14/12/2007|16:27] C:\DOCUME~1\alpha\APPLIC~1\IDM
[03/04/2007|18:19] C:\DOCUME~1\alpha\APPLIC~1\Internet Download Accelerator
[06/05/2007|12:24] C:\DOCUME~1\alpha\APPLIC~1\ItsLabel
[29/03/2007|11:29] C:\DOCUME~1\alpha\APPLIC~1\Jasc
[11/03/2007|20:25] C:\DOCUME~1\alpha\APPLIC~1\Kazaa Lite
[03/08/2008|11:13] C:\DOCUME~1\alpha\APPLIC~1\LimeWire
[28/06/2007|13:48] C:\DOCUME~1\alpha\APPLIC~1\Macromedia
[24/07/2008|18:18] C:\DOCUME~1\alpha\APPLIC~1\Malwarebytes
[24/01/2008|20:17] C:\DOCUME~1\alpha\APPLIC~1\MEGAUPLOADTOOLBAR
[22/10/2008|21:04] C:\DOCUME~1\alpha\APPLIC~1\Microsoft
[11/06/2006|15:09] C:\DOCUME~1\alpha\APPLIC~1\Microsoft Games
[24/07/2008|08:57] C:\DOCUME~1\alpha\APPLIC~1\Mozilla
[04/08/2007|12:07] C:\DOCUME~1\alpha\APPLIC~1\NAMEHO~1
[05/08/2007|09:31] C:\DOCUME~1\alpha\APPLIC~1\NAMEHO~2
[28/07/2008|08:26] C:\DOCUME~1\alpha\APPLIC~1\Notepad++
[05/04/2007|14:03] C:\DOCUME~1\alpha\APPLIC~1\Opera
[07/08/2008|14:31] C:\DOCUME~1\alpha\APPLIC~1\OtakuSoftware
[06/07/2007|12:16] C:\DOCUME~1\alpha\APPLIC~1\PixelMetrics
[06/08/2008|21:05] C:\DOCUME~1\alpha\APPLIC~1\Publish Providers
[15/07/2007|15:11] C:\DOCUME~1\alpha\APPLIC~1\Real
[02/05/2007|15:30] C:\DOCUME~1\alpha\APPLIC~1\Samsung
[15/03/2007|07:59] C:\DOCUME~1\alpha\APPLIC~1\Screenshot Sender
[11/11/2008|12:31] C:\DOCUME~1\alpha\APPLIC~1\Skype
[19/08/2008|12:15] C:\DOCUME~1\alpha\APPLIC~1\Sony
[04/08/2008|12:48] C:\DOCUME~1\alpha\APPLIC~1\Sony Setup
[04/03/2007|17:02] C:\DOCUME~1\alpha\APPLIC~1\Sun
[08/11/2008|19:20] C:\DOCUME~1\alpha\APPLIC~1\tazebama
[19/02/2007|12:03] C:\DOCUME~1\alpha\APPLIC~1\TuneUp Software
[20/07/2007|16:15] C:\DOCUME~1\alpha\APPLIC~1\TuxPaint
[13/12/2007|14:47] C:\DOCUME~1\alpha\APPLIC~1\TVU Networks
[15/01/2007|18:43] C:\DOCUME~1\alpha\APPLIC~1\Ulead Systems
[16/08/2008|19:28] C:\DOCUME~1\alpha\APPLIC~1\uTorrent
[26/03/2007|11:22] C:\DOCUME~1\alpha\APPLIC~1\Vista Start Menu
[07/08/2008|18:46] C:\DOCUME~1\alpha\APPLIC~1\ViStart
[13/11/2006|18:52] C:\DOCUME~1\alpha\APPLIC~1\vlc
[13/04/2008|17:07] C:\DOCUME~1\alpha\APPLIC~1\V-Safe
[07/08/2008|15:15] C:\DOCUME~1\alpha\APPLIC~1\Webshots
[14/08/2008|10:04] C:\DOCUME~1\alpha\APPLIC~1\WinRAR
[03/09/2008|13:12] C:\DOCUME~1\alpha\APPLIC~1\Yahoo!
[27/09/2006|17:18] C:\DOCUME~1\alpha\APPLIC~1\Zoner

[01/12/2007|18:45] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[21/06/2008|13:42] C:\DOCUME~1\INVIT~1\APPLIC~1\Apple Computer
[09/09/2007|14:17] C:\DOCUME~1\INVIT~1\APPLIC~1\Bib Bore Meal
[23/10/2006|18:49] C:\DOCUME~1\INVIT~1\APPLIC~1\Identities
[24/10/2006|08:56] C:\DOCUME~1\INVIT~1\APPLIC~1\Macromedia
[11/11/2006|10:27] C:\DOCUME~1\INVIT~1\APPLIC~1\Microsoft
[21/06/2008|13:41] C:\DOCUME~1\INVIT~1\APPLIC~1\PixelMetrics
[11/11/2006|10:20] C:\DOCUME~1\INVIT~1\APPLIC~1\Real

[31/12/2006|13:43] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[15/07/2007|15:00] C:\DOCUME~1\mohamed\APPLIC~1\Microsoft
[30/04/2007|13:27] C:\DOCUME~1\mohamed\APPLIC~1\Mozilla
[28/12/2006|11:45] C:\DOCUME~1\mohamed\APPLIC~1\MSN6
[13/11/2006|16:23] C:\DOCUME~1\mohamed\APPLIC~1\Real
[17/03/2007|14:07] C:\DOCUME~1\mohamed\APPLIC~1\Skype
[15/01/2007|14:41] C:\DOCUME~1\mohamed\APPLIC~1\Ulead Systems
[16/01/2007|18:39] C:\DOCUME~1\mohamed\APPLIC~1\Webshots

[11/06/2006|14:40] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[07/11/2008 17:15][--a------] C:\WINDOWS\tasks\Maintenance en 1 clic.job
[11/11/2008 12:34][--ah-----] C:\WINDOWS\tasks\SA.DAT
[02/10/2001 18:18][-r-h-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[04/08/2008|08:45] C:\Program Files\adslTV
[09/09/2008|11:48] C:\Program Files\Alwil Software
[28/09/2008|10:25] C:\Program Files\Apple Software Update
[28/09/2008|10:25] C:\Program Files\Apple Software Update(2)
[26/07/2008|07:54] C:\Program Files\Ares Galaxy Turbo Booster
[09/11/2008|17:48] C:\Program Files\a-squared Free
[09/10/2008|13:16] C:\Program Files\Audacity
[28/09/2008|10:25] C:\Program Files\AVPersonal
[28/09/2008|10:24] C:\Program Files\Bonjour
[05/11/2008|23:43] C:\Program Files\CaptureWiz
[29/10/2007|20:43] C:\Program Files\CCleaner
[26/07/2008|07:38] C:\Program Files\Conduit
[05/06/2007|18:39] C:\Program Files\CursorXP
[05/06/2007|14:26] C:\Program Files\DesktopPlant
[19/09/2008|15:41] C:\Program Files\DivX
[11/08/2008|18:21] C:\Program Files\DNA
[09/11/2008|17:49] C:\Program Files\Fichiers communs
[18/05/2008|18:29] C:\Program Files\Free Download Manager
[28/09/2008|10:24] C:\Program Files\Free Music Zilla
[27/10/2008|16:48] C:\Program Files\freebird
[18/09/2008|13:53] C:\Program Files\Garena
[26/06/2008|09:48] C:\Program Files\Google
[05/04/2007|15:52] C:\Program Files\IDA
[27/10/2006|12:14] C:\Program Files\InstallShield Installation Information
[10/11/2008|23:34] C:\Program Files\Internet Explorer
[28/09/2008|10:24] C:\Program Files\iPod
[13/01/2007|19:05] C:\Program Files\IrfanView
[28/09/2008|10:24] C:\Program Files\iTunes
[23/06/2007|14:29] C:\Program Files\Jasc Software Inc
[25/07/2008|20:59] C:\Program Files\Java
[19/07/2008|09:54] C:\Program Files\Kikoo
[25/01/2008|13:58] C:\Program Files\LeechGet 2007
[01/11/2007|09:27] C:\Program Files\LimeWire
[11/09/2008|15:05] C:\Program Files\Malwarebytes' Anti-Malware
[16/08/2008|21:25] C:\Program Files\Messenger
[03/04/2007|17:57] C:\Program Files\MessengerPlus! 3
[11/06/2006|14:36] C:\Program Files\microsoft frontpage
[19/12/2007|19:20] C:\Program Files\Microsoft Office
[15/08/2008|13:11] C:\Program Files\Microsoft Reader
[18/08/2008|15:07] C:\Program Files\Microsoft SQL Server
[09/08/2008|11:56] C:\Program Files\Microsoft.NET
[27/10/2006|12:15] C:\Program Files\Movie Maker
[17/08/2008|14:56] C:\Program Files\Mozilla Firefox
[02/01/2007|11:03] C:\Program Files\msn gaming zone
[27/10/2006|13:04] C:\Program Files\MSN Messenger
[31/08/2007|12:34] C:\Program Files\MSXML 4.0
[04/08/2007|12:07] C:\Program Files\NAMEHO~1
[05/08/2007|09:31] C:\Program Files\NAMEHO~2
[20/06/2007|16:16] C:\Program Files\Namo
[11/11/2008|12:35] C:\Program Files\Navilog1
[27/07/2008|18:21] C:\Program Files\NetMeeting
[23/07/2008|19:38] C:\Program Files\NOS
[28/07/2008|08:26] C:\Program Files\Notepad++
[14/04/2008|18:07] C:\Program Files\Nouvelle Cible
[02/11/2008|09:37] C:\Program Files\Nuclear Coffee
[17/06/2007|09:42] C:\Program Files\Opera
[27/10/2006|12:15] C:\Program Files\Outlook Express
[26/07/2008|08:15] C:\Program Files\P2P_Torrent
[18/09/2008|13:51] C:\Program Files\Panda Security
[14/08/2007|11:47] C:\Program Files\payloads
[19/12/2007|11:45] C:\Program Files\PhotoFiltre
[25/07/2008|09:05] C:\Program Files\Pidgin
[10/08/2008|11:25] C:\Program Files\Pool Station
[27/06/2007|18:55] C:\Program Files\Power IE
[15/07/2007|15:29] C:\Program Files\Project64 1.6
[26/10/2006|15:59] C:\Program Files\Pvm
[28/09/2008|10:25] C:\Program Files\QuickTime
[28/09/2008|10:24] C:\Program Files\QuickTime(2)
[22/06/2007|16:14] C:\Program Files\Real
[20/02/2007|10:20] C:\Program Files\Realtek AC97
[19/02/2007|13:57] C:\Program Files\Realtek Sound Manager
[31/08/2007|12:32] C:\Program Files\redist
[14/08/2007|11:47] C:\Program Files\resources
[09/10/2008|13:17] C:\Program Files\rulesPlayer(2)
[25/07/2008|21:33] C:\Program Files\Serials 2000
[21/02/2008|17:48] C:\Program Files\Softick
[27/10/2008|15:21] C:\Program Files\SoftPerfect Network Protocol Analyzer
[18/08/2008|17:21] C:\Program Files\Sony
[01/09/2007|22:47] C:\Program Files\Sony Corporation
[25/07/2008|20:59] C:\Program Files\Sun
[20/07/2008|11:55] C:\Program Files\TechSmith
[16/06/2008|14:05] C:\Program Files\TranslateIt! 5.5 GEG
[24/07/2008|10:18] C:\Program Files\Trend Micro
[06/08/2008|14:46] C:\Program Files\Tropico
[10/09/2007|15:35] C:\Program Files\Ultralingua
[18/08/2008|15:08] C:\Program Files\Uninstall Information
[11/09/2008|14:46] C:\Program Files\Unlocker
[19/02/2007|13:51] C:\Program Files\VIA
[29/07/2008|15:18] C:\Program Files\VideoLAN
[01/09/2007|22:15] C:\Program Files\Vimicro
[20/07/2007|12:40] C:\Program Files\Visicom Media
[27/06/2007|18:52] C:\Program Files\WebCopier
[25/07/2008|09:17] C:\Program Files\Webshots
[29/10/2007|17:04] C:\Program Files\Winamp
[27/10/2006|12:50] C:\Program Files\Windows Live
[20/07/2007|20:21] C:\Program Files\Windows Media Connect 2
[27/10/2006|12:15] C:\Program Files\Windows Media Player
[06/01/2007|12:44] C:\Program Files\Windows NT
[02/01/2007|11:00] C:\Program Files\WindowsUpdate
[09/11/2008|17:49] C:\Program Files\Wingen
[17/10/2008|13:41] C:\Program Files\WinHTTrack
[08/11/2008|19:20] C:\Program Files\WinRAR
[11/06/2006|14:36] C:\Program Files\xerox
[18/09/2008|13:52] C:\Program Files\Yahoo!

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[17/06/2007|09:44] C:\Program Files\Fichiers communs\ACD Systems
[23/07/2008|19:41] C:\Program Files\Fichiers communs\Adobe
[25/09/2008|23:40] C:\Program Files\Fichiers communs\Apple
[14/12/2007|16:52] C:\Program Files\Fichiers communs\Blizzard Entertainment
[09/09/2007|10:09] C:\Program Files\Fichiers communs\DESIGNER
[14/07/2006|12:16] C:\Program Files\Fichiers communs\EPSON
[18/06/2007|09:01] C:\Program Files\Fichiers communs\eSellerate
[15/01/2007|17:01] C:\Program Files\Fichiers communs\FotoWare
[04/01/2007|15:19] C:\Program Files\Fichiers communs\InstallShield
[15/01/2007|13:10] C:\Program Files\Fichiers communs\Jasc Software Inc
[26/02/2007|14:14] C:\Program Files\Fichiers communs\Java
[15/08/2008|13:17] C:\Program Files\Fichiers communs\L&H
[14/08/2007|13:31] C:\Program Files\Fichiers communs\Macrovision Shared
[27/10/2006|12:45] C:\Program Files\Fichiers communs\Microsoft Shared
[11/06/2006|14:34] C:\Program Files\Fichiers communs\MSSoap
[01/09/2007|22:46] C:\Program Files\Fichiers communs\muvee Technologies
[15/01/2007|17:01] C:\Program Files\Fichiers communs\Nikon
[27/09/2006|17:13] C:\Program Files\Fichiers communs\Novell Shared
[11/06/2006|14:29] C:\Program Files\Fichiers communs\ODBC
[15/07/2007|15:12] C:\Program Files\Fichiers communs\Real
[11/06/2006|14:34] C:\Program Files\Fichiers communs\Services
[04/01/2007|15:31] C:\Program Files\Fichiers communs\Skype
[11/06/2006|14:29] C:\Program Files\Fichiers communs\SpeechEngines
[12/05/2007|09:50] C:\Program Files\Fichiers communs\Stardock
[27/09/2006|17:15] C:\Program Files\Fichiers communs\Symantec Shared
[07/09/2007|20:03] C:\Program Files\Fichiers communs\System
[21/03/2007|13:54] C:\Program Files\Fichiers communs\Vbox
[19/12/2007|13:12] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[09/10/2008|13:57] C:\Program Files\Fichiers communs\Wise Installation Wizard

--------------------\\ Process

( 28 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE

--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-11-11 13:02:22
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 14

--------------------\\ Recherche d'autres infections

--------------------\\ Cracks & Keygens ..

C:\DOCUME~1\alpha\Atomix Virtual DJ 4.0 Full + crack
C:\DOCUME~1\alpha\crack generico
C:\DOCUME~1\alpha\Atomix Virtual DJ 4.0 Full + crack\install_virtualdj_v4.0.exe
C:\DOCUME~1\alpha\Atomix Virtual DJ 4.0 Full + crack\virtualdj.exe
C:\DOCUME~1\alpha\crack generico\emu.dll
C:\DOCUME~1\alpha\crack generico\MMxpt.dll
C:\DOCUME~1\alpha\Local Settings\Application Data\Opera\opera\profile\images\http%3A%2F%2Fwww.keygen.cc%2Ffavicon.ico
C:\DOCUME~1\alpha\Local Settings\Application Data\Opera\opera\profile\images\www.keygen.cc.idx
C:\DOCUME~1\alpha\Mes documents\PC GAME - PES - Pro Evolution Soccer 2008 - CRACK NO CD + [TEST OK] + KEYGEN
C:\DOCUME~1\alpha\Mes documents\PC GAME - PES - Pro Evolution Soccer 2008 - CRACK NO CD + [TEST OK] + KEYGEN\25_euros_par_mail.html
C:\DOCUME~1\alpha\Mes documents\PC GAME - PES - Pro Evolution Soccer 2008 - CRACK NO CD + [TEST OK] + KEYGEN\Gagner beaucoup d'argent facile avec Paypal - AderynR.doc
C:\DOCUME~1\alpha\Mes documents\PC GAME - PES - Pro Evolution Soccer 2008 - CRACK NO CD + [TEST OK] + KEYGEN\Keygen.txt
C:\DOCUME~1\alpha\Mes documents\PC GAME - PES - Pro Evolution Soccer 2008 - CRACK NO CD + [TEST OK] + KEYGEN\Readme.txt
C:\DOCUME~1\alpha\Mes documents\WINNING ELEVEN 10\Winning eleven 10 crack (active multilanguage), keygen, patch [NoCD] Tested.zip
C:\DOCUME~1\alpha\WINNING ELEVEN 10\Winning eleven 10 crack (active multilanguage), keygen, patch [NoCD] Tested.zip

[F:7][D:0]-> C:\DOCUME~1\alpha\LOCALS~1\Temp
[F:441][D:0]-> C:\DOCUME~1\alpha\Cookies
[F:254][D:4]-> C:\DOCUME~1\alpha\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 11/11/2008|12:48 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 11/11/2008|13:04 - Option : [2]

--------------------\\ Fin du rapport a 13:04:47

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question

Réponse 25 / 28

geoffrey5 Messages postés 14008 Statut Contributeur sécurité 10

Ok pas de problèmes ;-)

@+

Réponse 26 / 28

bmw-93 Messages postés 157 Statut Membre 16

salut je viens de terminé l'analyse voici le rapport :

[b]SDFix: Version 1.240 [/b]
Run by alpha on 11/11/2008 at 17:37

Microsoft Windows XP [version 5.1.2600]
Running From: C:\SDFix

[b]Checking Services [/b]:

Restoring Default Security Values
Restoring Default Hosts File

Rebooting

[b]Checking Files [/b]:

No Trojan Files Found

Removing Temp Files

[b]ADS Check [/b]:

[b]Final Check [/b]:

catchme 0.3.1361.2 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-11-11 17:54:49
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden services & system hive ...

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\BTHPORT\Parameters\Keys\001060b2eb42]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\BTHPORT\Parameters\Keys\001060b2eb42]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\001060b2eb42]

scanning hidden registry entries ...

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{5E6073B7-60B0-E0C7-2C2E-AF0184191BAB}]
"paibmjcbfbcdfnloiebkboijdamncakm"=hex:69,61,68,6f,6b,63,64,65,67,70,63,68,69,64,69,6f,61,63,00,00
"oaoackoimehebpcknmpijppcehegab"=hex:69,61,68,6f,6b,63,64,65,67,70,63,68,69,64,69,6f,61,63,00,00

scanning hidden files ...

scan completed successfully
hidden processes: 0
hidden services: 0
hidden files: 0

[b]Remaining Services [/b]:

Authorized Application Key Export:

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\\Documents and Settings\\Administrateur\\Mes documents\\Mes documents\\utorrent.exe"="C:\\Documents and Settings\\Administrateur\\Mes documents\\Mes documents\\utorrent.exe:*:Enabled:æTorrent"
"C:\\Program Files\\Ares\\Ares.exe"="C:\\Program Files\\Ares\\Ares.exe:*:Enabled:Ares p2p for windows"
"C:\\WINDOWS\\system32\\sessmgr.exe"="C:\\WINDOWS\\system32\\sessmgr.exe:*:Enabled:@xpsp2res.dll,-22019"
"C:\\Documents and Settings\\alpha\\Bureau\\shared\\WoW-2.0.0-enUS-Installer-downloader.exe"="C:\\Documents and Settings\\alpha\\Bureau\\shared\\WoW-2.0.0-enUS-Installer-downloader.exe:*:Enabled:Blizzard Downloader"
"D:\\LimeWire\\LimeWire.exe"="D:\\LimeWire\\LimeWire.exe:*:Enabled:LimeWire"
"C:\\StubInstaller.exe"="C:\\StubInstaller.exe:*:Enabled:LimeWire swarmed installer"
"C:\\WINDOWS\\system32\\dpvsetup.exe"="C:\\WINDOWS\\system32\\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\\Program Files\\DNA\\btdna.exe"="C:\\Program Files\\DNA\\btdna.exe:*:Enabled:DNA"
"D:\\BitTorrent\\bittorrent.exe"="D:\\BitTorrent\\bittorrent.exe:*:Enabled:BitTorrent"
"C:\\Program Files\\Yahoo!\\Messenger\\YahooMessenger.exe"="C:\\Program Files\\Yahoo!\\Messenger\\YahooMessenger.exe:*:Enabled:Yahoo! Messenger"
"C:\\Program Files\\Yahoo!\\Messenger\\YServer.exe"="C:\\Program Files\\Yahoo!\\Messenger\\YServer.exe:*:Enabled:Yahoo! FT Server"
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\\Documents and Settings\\mohamed\\Bureau\\Skype.exe"="C:\\Documents and Settings\\mohamed\\Bureau\\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"="C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"="C:\\Program Files\\Windows Live\\Messenger\\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"

[b]Remaining Files [/b]:

[b]Files with Hidden Attributes [/b]:

Mon 27 Oct 2008 1,004,248 A..H. --- "C:\Downloads\MsnMonitorPro_trial_setup.exe"
Sun 3 Aug 2008 0 A..H. --- "C:\Downloads\nfsps_pcdemo.zip"
Mon 6 Oct 2008 1,135,366,783 A..H. --- "C:\Downloads\pes2009_demofr_JeuxVideo.com_13877.zip"
Tue 30 Sep 2008 972,984 A..H. --- "C:\Downloads\SR-X4000DSUPER_SR-X4200DSUPER_by tani1_30.09.08.zip"
Sat 2 Aug 2008 1,200,929 A..H. --- "C:\Downloads\SUPER_ONLY_SR-X4000DSUPER_SR-X4200DSUPER_230708.zip"
Tue 9 Sep 2008 2,402,832 A..H. --- "C:\Downloads\WLinstaller.exe"
Mon 10 Nov 2008 334,848 A..H. --- "C:\Downloads\Software\OTMoveIt3.exe"
Mon 20 Oct 2008 1,137,848,643 A..H. --- "C:\Downloads\Software\pes_2009_demo_jouable_1_multi-langues_262084.exe"
Tue 9 Sep 2008 2,402,832 A..H. --- "C:\Downloads\Software\WLinstaller.exe"
Tue 20 Aug 2002 1,511,453 A..H. --- "C:\Program Files\Messenger\msmsgs.exe"
Fri 14 Jul 2006 4,348 ..SH. --- "C:\Documents and Settings\All Users\DRM\DRMv1.bak"
Fri 14 Jul 2006 401 ..SH. --- "C:\Documents and Settings\All Users\DRM\DRMv11.bak"
Mon 25 Sep 2006 400 A.SH. --- "C:\Documents and Settings\All Users\DRM\v2ks.bla.bak"
Mon 25 Sep 2006 48 A.SH. --- "C:\Documents and Settings\All Users\DRM\v2ks.sec.bak"
Sat 19 Jan 2008 38,912 ...H. --- "C:\Documents and Settings\alpha\Bureau\~WRL0004.tmp"
Mon 22 Jul 2002 418,816 ...HR --- "C:\WINDOWS\system32\Tools\All.exe"
Fri 19 Jul 2002 390,144 ...HR --- "C:\WINDOWS\system32\Tools\Change.exe"
Fri 19 Jul 2002 574,464 ...HR --- "C:\WINDOWS\system32\Tools\CheckPath.exe"
Tue 20 Aug 2002 430,592 ...HR --- "C:\WINDOWS\system32\Tools\Counter.exe"
Tue 23 Jul 2002 390,656 ...HR --- "C:\WINDOWS\system32\Tools\DelFolders.exe"
Fri 22 Nov 2002 399,872 ...HR --- "C:\WINDOWS\system32\Tools\DirectSetup.exe"
Fri 19 Jul 2002 388,096 ...HR --- "C:\WINDOWS\system32\Tools\RegClean.exe"
Fri 19 Jul 2002 388,608 ...HR --- "C:\WINDOWS\system32\Tools\Regexe.exe"
Mon 2 Dec 2002 431,616 ...HR --- "C:\WINDOWS\system32\Tools\Restart.exe"
Fri 19 Jul 2002 388,096 ...HR --- "C:\WINDOWS\system32\Tools\RunRegexe.exe"
Wed 11 Jul 2007 0 A.SH. --- "C:\Documents and Settings\All Users\DRM\Cache\Indiv01.tmp"
Mon 7 Apr 2008 2,273,280 A.SH. --- "C:\Documents and Settings\alpha\Mes documents\Fian‡ailles Souad\SIV2B.tmp"
Sat 31 May 2008 0 A.SH. --- "C:\Documents and Settings\alpha\Mes documents\Fian‡ailles Souad\SIV3.tmp"
Sat 31 May 2008 4,096 A.SH. --- "C:\Documents and Settings\alpha\Mes documents\Fian‡ailles Souad\SIV4.tmp"
Tue 6 May 2008 1,503,232 A.SH. --- "C:\Documents and Settings\alpha\Mes documents\Fian‡ailles Souad\SIV48.tmp"
Sat 6 Oct 2007 69,632 A.SH. --- "C:\Documents and Settings\alpha\Mes documents\Fian‡ailles Souad\SIV8E.tmp"
Sat 6 Oct 2007 163,840 A.SH. --- "C:\Documents and Settings\alpha\Mes documents\Fian‡ailles Souad\SIV91.tmp"
Tue 24 Oct 2006 21,504 A..H. --- "C:\Documents and Settings\alpha\Application Data\Connectix\Virtual PC\VPCKeyboard.dll"
Fri 14 Jul 2006 4,348 ...H. --- "C:\Documents and Settings\alpha\Mes documents\Ma musique\Sauvegarde de la licence\drmv1key.bak"
Thu 27 Mar 2008 401 A..H. --- "C:\Documents and Settings\alpha\Mes documents\Ma musique\Sauvegarde de la licence\drmv1lic.bak"
Wed 25 Jul 2007 488 ...H. --- "C:\Documents and Settings\alpha\Mes documents\Ma musique\Sauvegarde de la licence\drmv2key.bak"
Thu 27 Mar 2008 10,752 A..H. --- "C:\Documents and Settings\alpha\Mes documents\Ma musique\Sauvegarde de la licence\drmv2lic.bak"
Thu 22 Nov 2007 43,428 A..H. --- "C:\Documents and Settings\Administrateur\Mes documents\Mes documents\Downloads\bolshoi\hts-cache\new.zip"

[b]Finished![/b]

Réponse 27 / 28

geoffrey5 Messages postés 14008 Statut Contributeur sécurité 10

ok maintenant refais mise à jour et une analyse complète avec malwarebytes stp

et poste le rapport si infection

Réponse 28 / 28

bmw-93 Messages postés 157 Statut Membre 16

salut et désolé je n'ai vraiment pas u le temps de faire une analyse avec mbam mais le gros problème c'est que hier quand je travaillé sur un doc word mon PC a planté et j'ai u un écran bleu avec l'erreur Kernel_Stack_Inpage_Error
svp aider moi

Discussions similaires

Impossible d'afficher le rapport de tableau croisé dynamique sur un rapport

écrire un rapport de travail

impossible d'afficher le tableau dynamique sur un rapport existant

Problém affichage du tableau croisé dynamique

Theme de rapport de stage option comptabilité

Rapport hijackthis

28 réponses

Votre réponse

Discussions similaires

Newsletters