Aide plz CHEVAL DE TROIE !!!!!!!!!!!!!!!!
Résolu
ali_1905
Messages postés
195
Statut
Membre
-
ali_1905 Messages postés 195 Statut Membre -
ali_1905 Messages postés 195 Statut Membre -
Bonjour,
Bonjour, ali
mon bureau disparait, ctrl+alt+supp ne marche pas,
je ne peut aller dans la propiété de mon bureau !
me dit comme message : bloqué par votre administarateur !
et j ai AVG il me trouve cheval de troie plusieur fois je le éfface
apres avoir cliqué sur éffacé il me dit ""Fichier introuvable"" donc ne le éfface pas :S
pouvais vous m'aider svp merci d'avance !
voila bonne chance ^^
merci d'avoir m'aidé !
------------------------------------------------------------------------------------------------------------------------
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:10: VIRUS ALERT!, on 24/11/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32Ati2evxx.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:Program FilesLavasoftAd-Awareaawservice.exe
C:WINDOWSsystem32spoolsv.exe
C:Program FilesAviraAntiVir PersonalEdition Classicsched.exe
C:WINDOWSsystem32Ati2evxx.exe
C:WINDOWSExplorer.EXE
C:Program FilesFichiers communsRealUpdate_OBrealsched.exe
C:Program FilesAviraAntiVir PersonalEdition Classicavgnt.exe
C:PROGRA~1aVggAVGgg8avgtray.exe
C:Program FilesEsetnod32kui.exe
C:Program Filesa-squared Anti-Malwarea2service.exe
C:Program FilesAviraAntiVir PersonalEdition Classicavguard.exe
C:Program FilesFichiers communsAppleMobile Device SupportbinAppleMobileDeviceService.exe
C:PROGRA~1aVggAVGgg8avgwdsvc.exe
C:Program FilesBonjourmDNSResponder.exe
C:Program FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe
C:Program FilesEsetnod32krn.exe
C:WINDOWSsystem32svchost.exe
C:Program FilesGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe
C:PROGRA~1aVggAVGgg8avgrsx.exe
C:PROGRA~1aVggAVGgg8avgemc.exe
C:Program FilesMalwarebytes' Anti-Malwarembam.exe
C:WINDOWSsystem32wscntfy.exe
C:WINDOWSsystem32wuauclt.exe
C:Program FilesInternet Exploreriexplore.exe
C:PROGRA~1aVggAVGgg8aAvgApi.exe
C:Program FilesFichiers communsMicrosoft SharedWindows LiveWLLoginProxy.exe
C:Program FilesWindows Live Toolbarmsn_sl.exe
C:Program FilesTrend MicroHijackThisHijackThis.exe
R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://softwarereferral.com/jump.php?wmid=6010&mid=MjI6Ojg5&lid=2
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=66017
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=66017
R0 - HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www6.bedavafilmizle.org/?tdfs=1&kw=movies
R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Local Page =
R0 - HKLMSoftwareMicrosoftInternet ExplorerMain,Local Page =
R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Window Title = Microsoft Internet Explorer
R1 - HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,ProxyOverride = *.local
R3 - URLSearchHook: (no name) - {52A6D650-C7D5-4BE7-824F-875E0D733B61} - (no file)
O2 - BHO: (no name) - Software - (no file)
O2 - BHO: (no name) - {0000CC75-ACF3-4cac-A0A9-DD3868E06852} - (no file)
O2 - BHO: (no name) - {06663B51-0D73-4f9f-BCC5-4AA941470AFD} - (no file)
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:Program FilesFichiers communsAdobeAcrobatActiveXAcroIEHelper.dll
O2 - BHO: (no name) - {0DB0263F-A555-4853-AEF3-4D78331512B3} - (no file)
O2 - BHO: (no name) - {18830AFF-AD5A-416A-B266-7A7701242F6B} - (no file)
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:Program FilesRealRealPlayerrpbrowserrecordplugin.dll
O2 - BHO: (no name) - {3386737C-34C3-45D0-A29C-D57B1A8509DF} - (no file)
O2 - BHO: (no name) - {34C909A6-AC2A-4A62-A6F6-3848E5D3FB77} - (no file)
O2 - BHO: (no name) - {34ea1c70-42cc-42c5-aa29-ec58b95a343e} - (no file)
O2 - BHO: (no name) - {38D3FE60-3D53-4F37-BB0E-C7A97A26A156} - (no file)
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:Program FilesBitComettoolsBitCometBHO_1.2.1.2.dll
O2 - BHO: (no name) - {3C19AFC9-95E8-4A18-9802-9198A3C66EA5} - C:WINDOWSsystem32urqRJCTm.dll (file missing)
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:Program FilesaVggAVGgg8avgssie.dll
O2 - BHO: (no name) - {474597C5-AB09-49d6-A4D5-2E8D7341384E} - (no file)
O2 - BHO: (no name) - {4D15806D-1CF8-455B-B546-8F865ED8B5EE} - (no file)
O2 - BHO: (no name) - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - (no file)
O2 - BHO: (no name) - {51D29F4A-AFDB-4D44-9D43-D98AB230DF04} - C:WINDOWSsystem32opnNddaA.dll (file missing)
O2 - BHO: D - {52AD7576-71BC-3C74-856E-6D23415CA0D9} - C:WINDOWSsystem32mwb56438.dll (file missing)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:PROGRA~1SPYBOT~1SDHelper.dll
O2 - BHO: EoBho - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:Program FileseoRezoEoAdvEoRezoBHO.dll (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:Program FilesJavajre1.6.0_07binssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: (no name) - {84D9968B-B976-417F-BE1A-24BC791F137B} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:Program FilesFichiers communsMicrosoft SharedWindows LiveWindowsLiveLogin.dll
O2 - BHO: QXK Olive - {975AA88C-1F6F-4053-ADEB-78EB623090BD} - C:WINDOWSdqxstgfrswb.dll (file missing)
O2 - BHO: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:PROGRA~1aVggAVGgg8AVGTOO~1.DLL
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:program filesgooglegoogletoolbar1.dll
O2 - BHO: adzgalore - {af5f38b0-e1af-a502-cead-5f80cda2a3f5} - C:WINDOWSsystem32nsp8.dll (file missing)
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:Program FilesGoogleGoogleToolbarNotifier4.1.805.4472swg.dll
O2 - BHO: cpmsky browser optimizer - {b8d7758e-9cd0-5d88-a2d9-e1b832d7c50b} - C:WINDOWSsystem32{272e2272-cfd2-1eeb-ef16-8506e5cdc74a}.dll (file missing)
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:Program FilesWindows Live Toolbarmsntb.dll
O2 - BHO: (no name) - {C408D374-6BE1-4BBD-AC90-3FC0B5427B0A} - (no file)
O2 - BHO: TBSB01662 - {C85390F6-8A64-496C-9405-BFB673744B82} - C:Program FilesIEToolbarbirseyindiroyna55.dll (file missing)
O2 - BHO: (no name) - {D4CDC21D-43BE-4101-A1EF-E379F134771E} - (no file)
O2 - BHO: (no name) - {E3EA4FD1-CADE-4ae5-84F7-086EEE888BE4} - (no file)
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:Program FilesWindows Live Toolbarmsntb.dll
O3 - Toolbar: MEDIADICO Familial - {CEDDA62B-5FBE-4AB2-AE2E-5E069F444444} - C:Program FilesLAventureMDToolbarMdToolbar.dll (file missing)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:program filesgooglegoogletoolbar1.dll
O3 - Toolbar: vxanmgbt - {57382AC7-3171-409D-8C38-F6858D69E564} - C:WINDOWSvxanmgbt.dll
O3 - Toolbar: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:PROGRA~1aVggAVGgg8AVGTOO~1.DLL
O4 - HKLM..Run: [Reminder] C:Program FilesSecureExpertCleanerReminder.exe
O4 - HKLM..Run: [SecureExpertCleaner] C:Program FilesSecureExpertCleanersec.exe
O4 - HKLM..Run: [EoEngine] "C:Program FileseoRezoEoEngine.exe"
O4 - HKLM..Run: [QuickTime Task] "C:Program FilesQuickTimeqttask.exe" -atboottime
O4 - HKLM..Run: [TkBellExe] "C:Program FilesFichiers communsRealUpdate_OBrealsched.exe" -osboot
O4 - HKLM..Run: [C:WINDOWSsystem32kdtsj.exe] C:WINDOWSsystem32kdtsj.exe
O4 - HKLM..Run: [avgnt] "C:Program FilesAviraAntiVir PersonalEdition Classicavgnt.exe" /min
O4 - HKLM..Run: [AVG8_TRAY] C:PROGRA~1aVggAVGgg8avgtray.exe
O4 - HKLM..Run: [nod32kui] "C:Program FilesEsetnod32kui.exe" /WAITSERVICE
O4 - HKLM..Run: [a-squared] "C:Program Filesa-squared Anti-Malwarea2guard.exe"
O4 - HKLM..RunServices: [Update.exe] System.exe
O4 - HKLM..RunOnce: [FinishInstallation] "C:WINDOWSWinVerCheck.exe"
O4 - HKCU..Run: [swg] C:Program FilesGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe
O4 - HKCU..Run: [SpybotSD TeaTimer] C:Program FilesSpybot - Search & DestroyTeaTimer.exe
O4 - HKCU..Run: [67089] C:WINDOWS/67089.exe
O4 - HKCU..Run: [QuickInstallPack] "C:DOCUME~1HP_PRO~1LOCALS~1Temp3.exe" /autorun
O4 - HKCU..Run: [MSFox] C:DOCUME~1HP_PRO~1LOCALS~1Tempa.exe
O4 - HKCU..Run: [ares] "C:Program FilesAresAres.exe" -h
O4 - HKCU..RunServices: [Update.exe] System.exe
O4 - HKUSS-1-5-19..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUSS-1-5-20..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - .DEFAULT User Startup: Pin.lnk = C:hpbinCLOAKER.EXE (User 'Default user')
O4 - Startup: BB.exe
O4 - Startup: IMVU.lnk = C:Program FilesIMVUIMVUClient.exe
O4 - Global Startup: Logiciel Kodak EasyShare.lnk = C:Program FilesKodakKodak EasyShare softwarebinEasyShare.exe
O6 - HKCUSoftwarePoliciesMicrosoftInternet ExplorerRestrictions present
O6 - HKCUSoftwarePoliciesMicrosoftInternet ExplorerControl Panel present
O6 - HKLMSoftwarePoliciesMicrosoftInternet ExplorerControl Panel present
O8 - Extra context menu item: &D&ownload &with BitComet - res://C:Program FilesBitCometBitComet.exe/AddLink.htm
O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:Program FilesBitCometBitComet.exe/AddVideo.htm
O8 - Extra context menu item: &D&ownload all with BitComet - res://C:Program FilesBitCometBitComet.exe/AddAllLink.htm
O8 - Extra context menu item: &Windows Live Search - res://C:Program FilesWindows Live Toolbarmsntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:Program FilesWindows Live ToolbarComponentsfr-frmsntabres.dll.mui/229?6cfede6a382f4c1fae91c246b6775ab7
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:Program FilesWindows Live ToolbarComponentsfr-frmsntabres.dll.mui/230?6cfede6a382f4c1fae91c246b6775ab7
O9 - Extra button: (no name) - SOFTWARE - (no file)
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program FilesJavajre1.6.0_07binssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program FilesJavajre1.6.0_07binssv.dll
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:Program FilesPartyGamingPartyPokerRunApp.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:Program FilesPartyGamingPartyPokerRunApp.exe (file missing)
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:Program FilesBitComettoolsBitCometBHO_1.2.1.2.dll/206 (file missing)
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:Documents and SettingsHP_PropriétaireMenu DémarrerProgrammesIMVURun IMVU.lnk (file missing)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:PROGRA~1SPYBOT~1SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:PROGRA~1SPYBOT~1SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:Program FilesYahoo!Commonyinsthelper.dll
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w3/resources/MSNPUpld.cab
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab57213.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {C5E28B9D-0A68-4B50-94E9-E8F6B4697516} (NsvPlayX Control) - http://www.yayindayiz.biz/codec/nsvplayx_vp6_mp3.cab
O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) - http://www.adobe.com/products/acrobat/nos/gp.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O16 - DPF: {FFBB3F3B-0A5A-4106-BE53-DFE1E2340CB1} (Contrôleur de DownloadManager) - http://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.1.6.cab
O17 - HKLMSystemCCSServicesTcpip..{3C79267B-BF27-4BE9-BB65-5C8FC85B4ED4}: NameServer = 85.255.112.176;85.255.112.125
O17 - HKLMSystemCS1ServicesTcpip..{3C79267B-BF27-4BE9-BB65-5C8FC85B4ED4}: NameServer = 85.255.112.176;85.255.112.125
O17 - HKLMSystemCS4ServicesTcpip..{3C79267B-BF27-4BE9-BB65-5C8FC85B4ED4}: NameServer = 85.255.112.176;85.255.112.125
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:Program FilesaVggAVGgg8avgpp.dll
O20 - AppInit_DLLs: avgrsstx.dll
O20 - Winlogon Notify: tuvTLebX - C:WINDOWS
O20 - Winlogon Notify: yaywwVLF - C:WINDOWS
O21 - SSODL: WinBoot - {90567825-b721-4d9a-8687-fb9af69cd628} - C:WINDOWSInstaller{90567825-b721-4d9a-8687-fb9af69cd628}WinBoot.dll (file missing)
O23 - Service: a-squared Anti-Malware Service (a2AntiMalware) - Emsi Software GmbH - C:Program Filesa-squared Anti-Malwarea2service.exe
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:Program FilesLavasoftAd-Awareaawservice.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:Program FilesAviraAntiVir PersonalEdition Classicsched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:Program FilesAviraAntiVir PersonalEdition Classicavguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:Program FilesFichiers communsAppleMobile Device SupportbinAppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:WINDOWSsystem32Ati2evxx.exe
O23 - Service: AVG Free8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:PROGRA~1aVggAVGgg8avgemc.exe
O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:PROGRA~1aVggAVGgg8avgwdsvc.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:Program FilesBonjourmDNSResponder.exe
O23 - Service: Boonty Games - BOONTY - C:Program FilesFichiers communsBOONTY SharedServiceBoonty.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:Program FilesFichiers communsMacrovision SharedFLEXnet PublisherFNPLicensingService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:Program FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:Program FilesiPodbiniPodService.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:Program FilesEsetnod32krn.exe
End of file - 15986 bytes
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
Bonjour, ali
mon bureau disparait, ctrl+alt+supp ne marche pas,
je ne peut aller dans la propiété de mon bureau !
me dit comme message : bloqué par votre administarateur !
et j ai AVG il me trouve cheval de troie plusieur fois je le éfface
apres avoir cliqué sur éffacé il me dit ""Fichier introuvable"" donc ne le éfface pas :S
pouvais vous m'aider svp merci d'avance !
voila bonne chance ^^
merci d'avoir m'aidé !
------------------------------------------------------------------------------------------------------------------------
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:10: VIRUS ALERT!, on 24/11/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32Ati2evxx.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:Program FilesLavasoftAd-Awareaawservice.exe
C:WINDOWSsystem32spoolsv.exe
C:Program FilesAviraAntiVir PersonalEdition Classicsched.exe
C:WINDOWSsystem32Ati2evxx.exe
C:WINDOWSExplorer.EXE
C:Program FilesFichiers communsRealUpdate_OBrealsched.exe
C:Program FilesAviraAntiVir PersonalEdition Classicavgnt.exe
C:PROGRA~1aVggAVGgg8avgtray.exe
C:Program FilesEsetnod32kui.exe
C:Program Filesa-squared Anti-Malwarea2service.exe
C:Program FilesAviraAntiVir PersonalEdition Classicavguard.exe
C:Program FilesFichiers communsAppleMobile Device SupportbinAppleMobileDeviceService.exe
C:PROGRA~1aVggAVGgg8avgwdsvc.exe
C:Program FilesBonjourmDNSResponder.exe
C:Program FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe
C:Program FilesEsetnod32krn.exe
C:WINDOWSsystem32svchost.exe
C:Program FilesGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe
C:PROGRA~1aVggAVGgg8avgrsx.exe
C:PROGRA~1aVggAVGgg8avgemc.exe
C:Program FilesMalwarebytes' Anti-Malwarembam.exe
C:WINDOWSsystem32wscntfy.exe
C:WINDOWSsystem32wuauclt.exe
C:Program FilesInternet Exploreriexplore.exe
C:PROGRA~1aVggAVGgg8aAvgApi.exe
C:Program FilesFichiers communsMicrosoft SharedWindows LiveWLLoginProxy.exe
C:Program FilesWindows Live Toolbarmsn_sl.exe
C:Program FilesTrend MicroHijackThisHijackThis.exe
R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://softwarereferral.com/jump.php?wmid=6010&mid=MjI6Ojg5&lid=2
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=66017
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=66017
R0 - HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www6.bedavafilmizle.org/?tdfs=1&kw=movies
R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Local Page =
R0 - HKLMSoftwareMicrosoftInternet ExplorerMain,Local Page =
R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Window Title = Microsoft Internet Explorer
R1 - HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,ProxyOverride = *.local
R3 - URLSearchHook: (no name) - {52A6D650-C7D5-4BE7-824F-875E0D733B61} - (no file)
O2 - BHO: (no name) - Software - (no file)
O2 - BHO: (no name) - {0000CC75-ACF3-4cac-A0A9-DD3868E06852} - (no file)
O2 - BHO: (no name) - {06663B51-0D73-4f9f-BCC5-4AA941470AFD} - (no file)
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:Program FilesFichiers communsAdobeAcrobatActiveXAcroIEHelper.dll
O2 - BHO: (no name) - {0DB0263F-A555-4853-AEF3-4D78331512B3} - (no file)
O2 - BHO: (no name) - {18830AFF-AD5A-416A-B266-7A7701242F6B} - (no file)
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:Program FilesRealRealPlayerrpbrowserrecordplugin.dll
O2 - BHO: (no name) - {3386737C-34C3-45D0-A29C-D57B1A8509DF} - (no file)
O2 - BHO: (no name) - {34C909A6-AC2A-4A62-A6F6-3848E5D3FB77} - (no file)
O2 - BHO: (no name) - {34ea1c70-42cc-42c5-aa29-ec58b95a343e} - (no file)
O2 - BHO: (no name) - {38D3FE60-3D53-4F37-BB0E-C7A97A26A156} - (no file)
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:Program FilesBitComettoolsBitCometBHO_1.2.1.2.dll
O2 - BHO: (no name) - {3C19AFC9-95E8-4A18-9802-9198A3C66EA5} - C:WINDOWSsystem32urqRJCTm.dll (file missing)
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:Program FilesaVggAVGgg8avgssie.dll
O2 - BHO: (no name) - {474597C5-AB09-49d6-A4D5-2E8D7341384E} - (no file)
O2 - BHO: (no name) - {4D15806D-1CF8-455B-B546-8F865ED8B5EE} - (no file)
O2 - BHO: (no name) - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - (no file)
O2 - BHO: (no name) - {51D29F4A-AFDB-4D44-9D43-D98AB230DF04} - C:WINDOWSsystem32opnNddaA.dll (file missing)
O2 - BHO: D - {52AD7576-71BC-3C74-856E-6D23415CA0D9} - C:WINDOWSsystem32mwb56438.dll (file missing)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:PROGRA~1SPYBOT~1SDHelper.dll
O2 - BHO: EoBho - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:Program FileseoRezoEoAdvEoRezoBHO.dll (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:Program FilesJavajre1.6.0_07binssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: (no name) - {84D9968B-B976-417F-BE1A-24BC791F137B} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:Program FilesFichiers communsMicrosoft SharedWindows LiveWindowsLiveLogin.dll
O2 - BHO: QXK Olive - {975AA88C-1F6F-4053-ADEB-78EB623090BD} - C:WINDOWSdqxstgfrswb.dll (file missing)
O2 - BHO: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:PROGRA~1aVggAVGgg8AVGTOO~1.DLL
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:program filesgooglegoogletoolbar1.dll
O2 - BHO: adzgalore - {af5f38b0-e1af-a502-cead-5f80cda2a3f5} - C:WINDOWSsystem32nsp8.dll (file missing)
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:Program FilesGoogleGoogleToolbarNotifier4.1.805.4472swg.dll
O2 - BHO: cpmsky browser optimizer - {b8d7758e-9cd0-5d88-a2d9-e1b832d7c50b} - C:WINDOWSsystem32{272e2272-cfd2-1eeb-ef16-8506e5cdc74a}.dll (file missing)
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:Program FilesWindows Live Toolbarmsntb.dll
O2 - BHO: (no name) - {C408D374-6BE1-4BBD-AC90-3FC0B5427B0A} - (no file)
O2 - BHO: TBSB01662 - {C85390F6-8A64-496C-9405-BFB673744B82} - C:Program FilesIEToolbarbirseyindiroyna55.dll (file missing)
O2 - BHO: (no name) - {D4CDC21D-43BE-4101-A1EF-E379F134771E} - (no file)
O2 - BHO: (no name) - {E3EA4FD1-CADE-4ae5-84F7-086EEE888BE4} - (no file)
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:Program FilesWindows Live Toolbarmsntb.dll
O3 - Toolbar: MEDIADICO Familial - {CEDDA62B-5FBE-4AB2-AE2E-5E069F444444} - C:Program FilesLAventureMDToolbarMdToolbar.dll (file missing)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:program filesgooglegoogletoolbar1.dll
O3 - Toolbar: vxanmgbt - {57382AC7-3171-409D-8C38-F6858D69E564} - C:WINDOWSvxanmgbt.dll
O3 - Toolbar: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:PROGRA~1aVggAVGgg8AVGTOO~1.DLL
O4 - HKLM..Run: [Reminder] C:Program FilesSecureExpertCleanerReminder.exe
O4 - HKLM..Run: [SecureExpertCleaner] C:Program FilesSecureExpertCleanersec.exe
O4 - HKLM..Run: [EoEngine] "C:Program FileseoRezoEoEngine.exe"
O4 - HKLM..Run: [QuickTime Task] "C:Program FilesQuickTimeqttask.exe" -atboottime
O4 - HKLM..Run: [TkBellExe] "C:Program FilesFichiers communsRealUpdate_OBrealsched.exe" -osboot
O4 - HKLM..Run: [C:WINDOWSsystem32kdtsj.exe] C:WINDOWSsystem32kdtsj.exe
O4 - HKLM..Run: [avgnt] "C:Program FilesAviraAntiVir PersonalEdition Classicavgnt.exe" /min
O4 - HKLM..Run: [AVG8_TRAY] C:PROGRA~1aVggAVGgg8avgtray.exe
O4 - HKLM..Run: [nod32kui] "C:Program FilesEsetnod32kui.exe" /WAITSERVICE
O4 - HKLM..Run: [a-squared] "C:Program Filesa-squared Anti-Malwarea2guard.exe"
O4 - HKLM..RunServices: [Update.exe] System.exe
O4 - HKLM..RunOnce: [FinishInstallation] "C:WINDOWSWinVerCheck.exe"
O4 - HKCU..Run: [swg] C:Program FilesGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe
O4 - HKCU..Run: [SpybotSD TeaTimer] C:Program FilesSpybot - Search & DestroyTeaTimer.exe
O4 - HKCU..Run: [67089] C:WINDOWS/67089.exe
O4 - HKCU..Run: [QuickInstallPack] "C:DOCUME~1HP_PRO~1LOCALS~1Temp3.exe" /autorun
O4 - HKCU..Run: [MSFox] C:DOCUME~1HP_PRO~1LOCALS~1Tempa.exe
O4 - HKCU..Run: [ares] "C:Program FilesAresAres.exe" -h
O4 - HKCU..RunServices: [Update.exe] System.exe
O4 - HKUSS-1-5-19..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUSS-1-5-20..Run: [CTFMON.EXE] C:WINDOWSsystem32CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - .DEFAULT User Startup: Pin.lnk = C:hpbinCLOAKER.EXE (User 'Default user')
O4 - Startup: BB.exe
O4 - Startup: IMVU.lnk = C:Program FilesIMVUIMVUClient.exe
O4 - Global Startup: Logiciel Kodak EasyShare.lnk = C:Program FilesKodakKodak EasyShare softwarebinEasyShare.exe
O6 - HKCUSoftwarePoliciesMicrosoftInternet ExplorerRestrictions present
O6 - HKCUSoftwarePoliciesMicrosoftInternet ExplorerControl Panel present
O6 - HKLMSoftwarePoliciesMicrosoftInternet ExplorerControl Panel present
O8 - Extra context menu item: &D&ownload &with BitComet - res://C:Program FilesBitCometBitComet.exe/AddLink.htm
O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:Program FilesBitCometBitComet.exe/AddVideo.htm
O8 - Extra context menu item: &D&ownload all with BitComet - res://C:Program FilesBitCometBitComet.exe/AddAllLink.htm
O8 - Extra context menu item: &Windows Live Search - res://C:Program FilesWindows Live Toolbarmsntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:Program FilesWindows Live ToolbarComponentsfr-frmsntabres.dll.mui/229?6cfede6a382f4c1fae91c246b6775ab7
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:Program FilesWindows Live ToolbarComponentsfr-frmsntabres.dll.mui/230?6cfede6a382f4c1fae91c246b6775ab7
O9 - Extra button: (no name) - SOFTWARE - (no file)
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program FilesJavajre1.6.0_07binssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program FilesJavajre1.6.0_07binssv.dll
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:Program FilesPartyGamingPartyPokerRunApp.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:Program FilesPartyGamingPartyPokerRunApp.exe (file missing)
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:Program FilesBitComettoolsBitCometBHO_1.2.1.2.dll/206 (file missing)
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:Documents and SettingsHP_PropriétaireMenu DémarrerProgrammesIMVURun IMVU.lnk (file missing)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:PROGRA~1SPYBOT~1SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:PROGRA~1SPYBOT~1SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:WINDOWSNetwork Diagnosticxpnetdiag.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:Program FilesYahoo!Commonyinsthelper.dll
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w3/resources/MSNPUpld.cab
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab57213.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {C5E28B9D-0A68-4B50-94E9-E8F6B4697516} (NsvPlayX Control) - http://www.yayindayiz.biz/codec/nsvplayx_vp6_mp3.cab
O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) - http://www.adobe.com/products/acrobat/nos/gp.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O16 - DPF: {FFBB3F3B-0A5A-4106-BE53-DFE1E2340CB1} (Contrôleur de DownloadManager) - http://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.1.6.cab
O17 - HKLMSystemCCSServicesTcpip..{3C79267B-BF27-4BE9-BB65-5C8FC85B4ED4}: NameServer = 85.255.112.176;85.255.112.125
O17 - HKLMSystemCS1ServicesTcpip..{3C79267B-BF27-4BE9-BB65-5C8FC85B4ED4}: NameServer = 85.255.112.176;85.255.112.125
O17 - HKLMSystemCS4ServicesTcpip..{3C79267B-BF27-4BE9-BB65-5C8FC85B4ED4}: NameServer = 85.255.112.176;85.255.112.125
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:Program FilesaVggAVGgg8avgpp.dll
O20 - AppInit_DLLs: avgrsstx.dll
O20 - Winlogon Notify: tuvTLebX - C:WINDOWS
O20 - Winlogon Notify: yaywwVLF - C:WINDOWS
O21 - SSODL: WinBoot - {90567825-b721-4d9a-8687-fb9af69cd628} - C:WINDOWSInstaller{90567825-b721-4d9a-8687-fb9af69cd628}WinBoot.dll (file missing)
O23 - Service: a-squared Anti-Malware Service (a2AntiMalware) - Emsi Software GmbH - C:Program Filesa-squared Anti-Malwarea2service.exe
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:Program FilesLavasoftAd-Awareaawservice.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:Program FilesAviraAntiVir PersonalEdition Classicsched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:Program FilesAviraAntiVir PersonalEdition Classicavguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:Program FilesFichiers communsAppleMobile Device SupportbinAppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:WINDOWSsystem32Ati2evxx.exe
O23 - Service: AVG Free8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:PROGRA~1aVggAVGgg8avgemc.exe
O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:PROGRA~1aVggAVGgg8avgwdsvc.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:Program FilesBonjourmDNSResponder.exe
O23 - Service: Boonty Games - BOONTY - C:Program FilesFichiers communsBOONTY SharedServiceBoonty.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:Program FilesFichiers communsMacrovision SharedFLEXnet PublisherFNPLicensingService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:Program FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:Program FilesiPodbiniPodService.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:Program FilesEsetnod32krn.exe
End of file - 15986 bytes
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
A voir également:
- Aide plz CHEVAL DE TROIE !!!!!!!!!!!!!!!!
- Antivirus cheval de troie gratuit - Télécharger - Antivirus & Antimalwares
- Ordinateur bloqué cheval de troie - Accueil - Arnaque
- Qu'est ce que le cheval au poker - Forum Virus
- Comment se débarrasser d'un cheval de troie ✓ - Forum Virus
- Retrouver son cheval skyrim - Forum Jeux PC
22 réponses
Roo les crack !! loll
▶ Relance Lop S&D
▶ Choisis cette fois-ci l'option 2 (Suppression)
▶ Ne ferme pas la fenêtre lors de la suppression !
▶ Poste le rapport généré (C:\lopR.txt)
* (Si le Bureau ne réapparait pas, presse Ctrl+Alt+Suppr, Onglet Fichier, Nouvelle tâche, tape explorer.exe et valide)
ensuite :
▶ Télécharge sur le bureau Navilog1
*Si ton antivirus s'affole , le désactiver
sous vista : Clic-droit sur le raccourci Navilog1 présent sur le bureau et choisis "Exécuter en tant qu'administrateur
sous XP : double-clic dessus pour l'installer et le lancer
▶ Quand installé
▶ taper F
▶ Appuyer sur une touche jusqu' arriver aux options
▶ Choisir Recherche ( = taper 1 )
▶ne pas utiliser les autres sans avis , il peut y avoir des processus légitimes
▶un rapport : fixnavi.txt dans ==> C:
▶le copier et le coller dans la réponse
▶ Relance Lop S&D
▶ Choisis cette fois-ci l'option 2 (Suppression)
▶ Ne ferme pas la fenêtre lors de la suppression !
▶ Poste le rapport généré (C:\lopR.txt)
* (Si le Bureau ne réapparait pas, presse Ctrl+Alt+Suppr, Onglet Fichier, Nouvelle tâche, tape explorer.exe et valide)
ensuite :
▶ Télécharge sur le bureau Navilog1
*Si ton antivirus s'affole , le désactiver
sous vista : Clic-droit sur le raccourci Navilog1 présent sur le bureau et choisis "Exécuter en tant qu'administrateur
sous XP : double-clic dessus pour l'installer et le lancer
▶ Quand installé
▶ taper F
▶ Appuyer sur une touche jusqu' arriver aux options
▶ Choisir Recherche ( = taper 1 )
▶ne pas utiliser les autres sans avis , il peut y avoir des processus légitimes
▶un rapport : fixnavi.txt dans ==> C:
▶le copier et le coller dans la réponse
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) 64 Processor 3200+ )
BIOS : Phoenix - Award BIOS v6.00PG
USER : HP_Propriétaire ( Administrator )
BOOT : Normal boot
Antivirus : AVG Anti-Virus Free 8.0 (Activated)
C:\ (Local Disk) - NTFS - Total:143 Go (Free:83 Go)
D:\ (Local Disk) - FAT32 - Total:5 Go (Free:0 Go)
E:\ (CD or DVD)
G:\ (USB)
H:\ (USB)
I:\ (USB)
J:\ (USB)
"C:\Lop SD" ( MAJ : 01-11-2008|16:30 )
Option : [1] ( 04/12/2008|17:09 )
--------------------\\ Listing des dossiers dans APPLIC~1
[19/11/2008|19:18] C:\DOCUME~1\ADMINI~1\APPLIC~1\Apple Computer
[26/10/2005|23:34] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[03/10/2007|22:08] C:\DOCUME~1\ADMINI~1\APPLIC~1\Macromedia
[24/11/2008|23:22] C:\DOCUME~1\ADMINI~1\APPLIC~1\Malwarebytes
[01/12/2008|08:49] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[01/01/2005|19:50] C:\DOCUME~1\ADMINI~1\APPLIC~1\Real
[05/04/2008|18:00] C:\DOCUME~1\Ali\APPLIC~1\Google
[05/04/2008|17:31] C:\DOCUME~1\Ali\APPLIC~1\Grisoft
[26/10/2005|23:34] C:\DOCUME~1\Ali\APPLIC~1\Identities
[03/10/2007|22:08] C:\DOCUME~1\Ali\APPLIC~1\Macromedia
[01/12/2008|08:49] C:\DOCUME~1\Ali\APPLIC~1\Microsoft
[05/04/2008|17:31] C:\DOCUME~1\Ali\APPLIC~1\PC Tools
[01/01/2005|19:50] C:\DOCUME~1\Ali\APPLIC~1\Real
[05/04/2008|17:36] C:\DOCUME~1\Ali\APPLIC~1\Shareaza
[27/11/2008|20:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[03/07/2007|11:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe Systems
[22/07/2007|22:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
[24/01/2008|17:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[25/06/2008|18:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[01/12/2008|08:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\avg8
[01/12/2008|08:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avira
[16/04/2007|17:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[11/04/2007|23:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[20/02/2008|15:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Elaborate Bytes
[07/09/2008|13:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\EmailNotifier
[16/03/2008|19:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Emjysoft
[22/10/2008|21:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ESET
[03/12/2008|20:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FLEXnet
[03/02/2008|00:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Flood Light Games
[02/06/2008|19:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FRISK Software
[22/12/2007|18:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Fugazo
[07/12/2007|14:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[02/12/2008|23:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
[02/06/2008|19:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
[11/07/2008|02:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HipSoft
[01/01/2005|19:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[01/01/2005|19:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[10/02/2008|02:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InterAction studios
[18/12/2007|22:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\iWin
[24/07/2007|20:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\JollyBear
[19/09/2008|19:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab Setup Files
[13/08/2008|21:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kodak
[02/06/2008|20:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
[21/12/2007|15:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Legacy Interactive
[16/04/2007|20:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
[24/11/2008|20:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[07/09/2008|13:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Megaupload
[05/10/2007|17:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[27/06/2008|11:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[18/12/2007|22:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MumboJumbo
[19/07/2006|20:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\muvee Technologies
[18/10/2007|20:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NannyMania
[13/02/2008|23:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NCH Swift Sound
[08/10/2008|20:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Nero
[27/11/2008|20:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NOS
[18/12/2007|23:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Oberon Games
[21/12/2007|19:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\pixelStorm
[23/12/2007|17:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst
[22/06/2008|16:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Poker Mania
[06/03/2008|23:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\reparateurdesysteme
[19/08/2007|18:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sandlot Games
[01/01/2005|19:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[12/07/2008|23:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[25/11/2008|12:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Software Licensors
[08/11/2007|22:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Software rule flag owns
[01/01/2005|19:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
[25/10/2008|11:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[20/04/2008|20:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SUPERAntiSpyware.com
[24/03/2008|11:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[09/11/2008|22:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[16/04/2007|20:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TERMINAL Studio
[04/12/2008|14:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TrackMania
[23/07/2008|20:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TrackMania United
[16/08/2007|20:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Trymedia
[09/08/2008|22:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Viewpoint
[29/04/2007|17:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[08/04/2007|14:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[06/07/2007|18:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WindowsLiveInstaller
[09/04/2007|09:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Winferno
[06/12/2007|23:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WinZip
[08/10/2008|18:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[09/11/2007|23:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo!
[18/10/2007|20:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom
[26/10/2005|23:34] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[03/10/2007|22:08] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
[01/01/2005|20:24] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[01/01/2005|19:50] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Real
[17/06/2007|22:58] C:\DOCUME~1\HP_PRO~1\APPLIC~1\.ABC
[01/12/2008|12:10] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Adobe
[18/07/2006|19:55] C:\DOCUME~1\HP_PRO~1\APPLIC~1\AdobeUM
[06/08/2007|17:27] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Ahead
[16/03/2008|19:43] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Anthropics
[24/01/2008|18:06] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Apple Computer
[20/12/2007|23:46] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Aquapark
[19/11/2008|19:29] C:\DOCUME~1\HP_PRO~1\APPLIC~1\AVGTOOLBAR
[17/05/2008|21:35] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Azureus
[19/09/2008|21:37] C:\DOCUME~1\HP_PRO~1\APPLIC~1\BitTorrent
[18/08/2007|16:33] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Chicken Chase
[18/07/2006|19:05] C:\DOCUME~1\HP_PRO~1\APPLIC~1\CyberLink
[20/02/2008|15:37] C:\DOCUME~1\HP_PRO~1\APPLIC~1\DAEMON Tools
[10/07/2008|02:27] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Deusty
[11/07/2008|21:56] C:\DOCUME~1\HP_PRO~1\APPLIC~1\DivX
[04/12/2008|17:08] C:\DOCUME~1\HP_PRO~1\APPLIC~1\DMCache
[09/11/2008|11:14] C:\DOCUME~1\HP_PRO~1\APPLIC~1\DNA
[20/05/2007|11:44] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Documents and Settings
[12/09/2007|21:50] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Download Manager
[21/01/2008|22:20] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Dr. DivX 2.0 OSS
[07/09/2008|13:30] C:\DOCUME~1\HP_PRO~1\APPLIC~1\EmailNotifier
[12/11/2008|19:57] C:\DOCUME~1\HP_PRO~1\APPLIC~1\EoRezo
[23/01/2008|22:29] C:\DOCUME~1\HP_PRO~1\APPLIC~1\FastStone
[03/02/2008|00:13] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Flood Light Games
[06/05/2008|19:47] C:\DOCUME~1\HP_PRO~1\APPLIC~1\FRISK Software
[01/12/2008|11:50] C:\DOCUME~1\HP_PRO~1\APPLIC~1\gadcom
[06/11/2007|19:56] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Gaijin Ent
[01/04/2008|23:54] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Gamelab
[22/04/2008|00:24] C:\DOCUME~1\HP_PRO~1\APPLIC~1\GetRightToGo
[08/04/2007|08:44] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Google
[25/10/2008|11:10] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Grisoft
[01/03/2007|22:03] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Help
[08/11/2007|22:45] C:\DOCUME~1\HP_PRO~1\APPLIC~1\hole soap bib
[20/12/2007|23:13] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Home Sweet Home
[09/03/2007|23:49] C:\DOCUME~1\HP_PRO~1\APPLIC~1\HP
[17/07/2006|21:54] C:\DOCUME~1\HP_PRO~1\APPLIC~1\HPQ
[11/07/2008|01:05] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Identities
[02/12/2008|23:49] C:\DOCUME~1\HP_PRO~1\APPLIC~1\IDM
[28/11/2008|22:11] C:\DOCUME~1\HP_PRO~1\APPLIC~1\iMesh
[01/07/2007|15:13] C:\DOCUME~1\HP_PRO~1\APPLIC~1\InstallShield
[07/08/2007|21:29] C:\DOCUME~1\HP_PRO~1\APPLIC~1\ItsLabel
[27/04/2007|17:58] C:\DOCUME~1\HP_PRO~1\APPLIC~1\iWin
[18/04/2008|20:37] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Kazaa Lite
[22/04/2008|00:24] C:\DOCUME~1\HP_PRO~1\APPLIC~1\LCt
[17/07/2006|20:35] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Leadertech
[21/04/2008|13:34] C:\DOCUME~1\HP_PRO~1\APPLIC~1\LimeWire
[01/09/2007|18:07] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Macromedia
[14/06/2008|15:24] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Magic Seeds
[24/11/2008|20:00] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Malwarebytes
[01/12/2008|08:49] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Microsoft
[08/04/2008|21:52] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Morpheus Software
[17/11/2008|20:08] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Mostick
[13/11/2008|20:14] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Mozilla
[08/07/2007|21:37] C:\DOCUME~1\HP_PRO~1\APPLIC~1\MSNInstaller
[19/07/2006|20:51] C:\DOCUME~1\HP_PRO~1\APPLIC~1\muvee Technologies
[24/07/2007|20:53] C:\DOCUME~1\HP_PRO~1\APPLIC~1\My Games
[13/02/2008|23:12] C:\DOCUME~1\HP_PRO~1\APPLIC~1\NCH Swift Sound
[21/11/2007|00:12] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Nero
[21/10/2008|22:36] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Notepad++
[18/08/2007|22:05] C:\DOCUME~1\HP_PRO~1\APPLIC~1\OpenArena
[17/10/2008|17:23] C:\DOCUME~1\HP_PRO~1\APPLIC~1\OpenOffice.org2
[03/07/2007|11:26] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Opera
[18/11/2008|22:59] C:\DOCUME~1\HP_PRO~1\APPLIC~1\PingTesterDataBas
[23/12/2007|17:18] C:\DOCUME~1\HP_PRO~1\APPLIC~1\PlayFirst
[24/07/2007|00:55] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Real
[13/02/2008|23:12] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Recordpad
[06/03/2008|23:41] C:\DOCUME~1\HP_PRO~1\APPLIC~1\reparateurdesysteme
[21/11/2008|21:09] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Samsung
[19/08/2007|18:46] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Sandlot Games
[20/05/2007|21:42] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Screenshot Sender
[19/08/2007|12:26] C:\DOCUME~1\HP_PRO~1\APPLIC~1\SecuROM
[26/04/2008|22:42] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Shareaza
[12/07/2008|11:53] C:\DOCUME~1\HP_PRO~1\APPLIC~1\skypePM
[04/04/2008|16:10] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Smart PC Solutions
[20/04/2008|20:44] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Software Informer
[17/07/2006|20:36] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Sonic
[11/03/2008|20:27] C:\DOCUME~1\HP_PRO~1\APPLIC~1\SPAMfighter
[08/04/2007|01:39] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Sun
[20/04/2008|20:52] C:\DOCUME~1\HP_PRO~1\APPLIC~1\SUPERAntiSpyware.com
[27/11/2008|22:59] C:\DOCUME~1\HP_PRO~1\APPLIC~1\temp
[17/07/2006|21:58] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Template
[18/11/2008|13:48] C:\DOCUME~1\HP_PRO~1\APPLIC~1\TmpRecentIcons
[02/10/2008|16:12] C:\DOCUME~1\HP_PRO~1\APPLIC~1\uTorrent
[09/08/2008|22:29] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Viewpoint
[07/10/2007|13:15] C:\DOCUME~1\HP_PRO~1\APPLIC~1\VirusGarde
[04/12/2008|12:15] C:\DOCUME~1\HP_PRO~1\APPLIC~1\vlc
[02/06/2008|19:46] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Vso
[22/03/2008|21:09] C:\DOCUME~1\HP_PRO~1\APPLIC~1\WebCompiler3
[14/07/2008|17:20] C:\DOCUME~1\HP_PRO~1\APPLIC~1\WellCraftedWhiteBoard
[17/06/2007|21:05] C:\DOCUME~1\HP_PRO~1\APPLIC~1\WinRAR
[04/09/2008|21:53] C:\DOCUME~1\HP_PRO~1\APPLIC~1\XnView
[02/09/2008|23:15] C:\DOCUME~1\HP_PRO~1\APPLIC~1\Zylom
[03/10/2007|22:08] C:\DOCUME~1\JUSTEA~1\APPLIC~1\Macromedia
[15/03/2008|13:55] C:\DOCUME~1\LOCALS~1\APPLIC~1\Adobe
[22/11/2008|10:31] C:\DOCUME~1\LOCALS~1\APPLIC~1\Google
[01/12/2008|08:49] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[01/12/2008|08:49] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[04/12/2008 15:45][--a------] C:\WINDOWS\tasks\GoogleUpdateTaskUser.job
[03/12/2008 21:06][--a------] C:\WINDOWS\tasks\Malwarebytes' Scheduled Update for HP_Propri‚taire.job
[25/10/2008 13:26][--a------] C:\WINDOWS\tasks\Spybot - Search & Destroy - Scheduled Task.job
[27/11/2008 21:15][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[04/12/2008 16:53][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[04/12/2008 17:00][--ah-----] C:\WINDOWS\tasks\AA75DD25918A51C5.job
[04/12/2008 13:05][--ah-----] C:\WINDOWS\tasks\SA.DAT
[24/03/2007 17:56][-rah-----] C:\WINDOWS\tasks\desktop.ini
( AA75DD25918A51C5.job )=( c:\docume~1\hp_pro~1\applic~1\holeso~1\boldcamp32.exe )
--------------------\\ Listing des dossiers dans C:\Program Files
[18/08/2007|16:25] C:\Program Files\3D Groove
[05/01/2008|17:22] C:\Program Files\7-Zip
[03/09/2007|11:17] C:\Program Files\ABC
[12/09/2008|20:06] C:\Program Files\Adobe
[20/08/2007|19:28] C:\Program Files\AstroAvenger
[20/08/2007|19:28] C:\Program Files\Astrobatics
[03/09/2007|11:13] C:\Program Files\Atari-Infogrames
[25/10/2008|02:19] C:\Program Files\ATI Technologies
[17/05/2008|11:32] C:\Program Files\ATS2
[06/07/2007|23:46] C:\Program Files\Auran
[25/10/2008|11:25] C:\Program Files\AVG
[19/11/2008|19:25] C:\Program Files\aVgg
[01/12/2008|08:50] C:\Program Files\Avira
[02/06/2008|19:48] C:\Program Files\Azureus
[25/10/2008|10:27] C:\Program Files\BitComet
[26/03/2007|17:40] C:\Program Files\BladeXTC
[22/11/2008|23:46] C:\Program Files\bmoworld
[25/06/2008|18:07] C:\Program Files\Bonjour
[26/09/2008|17:14] C:\Program Files\Cheating-Death
[07/08/2008|20:17] C:\Program Files\Conduit
[03/10/2008|21:39] C:\Program Files\Counter-Strike 1.6
[01/01/2005|19:54] C:\Program Files\CyberLink
[27/10/2008|17:50] C:\Program Files\DAP
[07/04/2008|17:55] C:\Program Files\DD-soft.com
[21/11/2008|20:01] C:\Program Files\DIFX
[03/03/2007|17:02] C:\Program Files\directx
[20/02/2008|11:16] C:\Program Files\DNA
[16/10/2007|21:46] C:\Program Files\DnD Networks
[04/05/2007|17:12] C:\Program Files\Examaids
[02/12/2008|13:04] C:\Program Files\Fichiers communs
[02/10/2008|11:58] C:\Program Files\FlashGet
[30/03/2007|18:07] C:\Program Files\Free
[07/06/2008|15:49] C:\Program Files\free-downloads.net
[28/07/2008|16:49] C:\Program Files\Frets on Fire
[08/06/2008|01:06] C:\Program Files\Game Accelerator
[02/12/2008|15:59] C:\Program Files\Google
[25/10/2008|11:33] C:\Program Files\Grisoft
[01/01/2005|20:20] C:\Program Files\Hewlett-Packard
[25/12/2007|20:41] C:\Program Files\HLSW
[09/10/2007|19:17] C:\Program Files\hole soap bib
[01/01/2005|19:53] C:\Program Files\HP
[07/06/2008|15:46] C:\Program Files\hugin
[10/11/2008|18:01] C:\Program Files\iMesh Applications
[21/11/2008|19:50] C:\Program Files\InstallShield Installation Information
[16/10/2008|01:01] C:\Program Files\Internet Explorer
[25/07/2008|12:21] C:\Program Files\iPod
[25/07/2008|12:21] C:\Program Files\iTunes
[27/11/2008|18:56] C:\Program Files\Java
[26/03/2007|17:42] C:\Program Files\JoWooD Productions
[13/07/2008|00:25] C:\Program Files\JPEGCompress
[13/08/2008|21:01] C:\Program Files\Kodak
[02/06/2008|20:56] C:\Program Files\Lavasoft
[26/08/2007|17:00] C:\Program Files\Law & Order Double or Nothing Demo
[28/04/2007|23:27] C:\Program Files\LingoCom
[20/08/2007|00:48] C:\Program Files\Loco
[26/01/2007|13:22] C:\Program Files\Logitech
[25/11/2008|13:07] C:\Program Files\Malwarebytes' Anti-Malware
[23/09/2008|18:09] C:\Program Files\Messenger
[16/11/2008|01:09] C:\Program Files\Messenger Plus! Live
[18/11/2008|22:57] C:\Program Files\MessengerDiscovery
[23/01/2008|22:29] C:\Program Files\Microsoft ActiveSync
[10/05/2007|00:54] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[26/10/2005|23:36] C:\Program Files\microsoft frontpage
[16/07/2008|13:47] C:\Program Files\Microsoft Office
[24/05/2008|15:30] C:\Program Files\Microsoft SQL Server Compact Edition
[30/07/2008|21:07] C:\Program Files\Microsoft Windows OneCare Live
[01/02/2007|17:59] C:\Program Files\Microsoft Works
[23/09/2008|13:03] C:\Program Files\Movie Maker
[02/12/2008|13:51] C:\Program Files\Mozilla Firefox
[20/06/2008|18:24] C:\Program Files\MP3
[15/11/2008|00:14] C:\Program Files\MSN
[09/08/2007|19:30] C:\Program Files\MSN Adder
[26/10/2005|23:36] C:\Program Files\MSN Gaming Zone
[08/04/2007|12:05] C:\Program Files\MSXML 4.0
[01/01/2005|19:59] C:\Program Files\muvee Technologies
[04/10/2008|09:16] C:\Program Files\myBabylon
[13/07/2008|00:01] C:\Program Files\MyHeritage
[13/02/2008|23:12] C:\Program Files\NCH Software
[07/07/2007|23:32] C:\Program Files\Neoact
[23/09/2008|13:03] C:\Program Files\NetMeeting
[08/02/2008|23:55] C:\Program Files\NewtonPlayGround
[27/11/2008|20:08] C:\Program Files\NOS
[21/10/2008|22:36] C:\Program Files\Notepad++
[08/02/2008|23:26] C:\Program Files\Oberon Media
[20/08/2007|19:29] C:\Program Files\Off Road Arena
[26/10/2005|23:36] C:\Program Files\Online Services
[28/07/2007|00:03] C:\Program Files\Openciel Interactive
[17/02/2008|20:54] C:\Program Files\OpenOffice.org 2.3
[23/09/2008|13:03] C:\Program Files\Outlook Express
[29/11/2008|20:57] C:\Program Files\PC-Doctor 5 for Windows
[05/10/2008|19:29] C:\Program Files\Picasa2
[03/03/2008|00:16] C:\Program Files\PrintKey 2000 Fr
[25/06/2008|18:07] C:\Program Files\QuickTime
[14/07/2007|16:34] C:\Program Files\Raven
[24/07/2007|01:03] C:\Program Files\Real
[07/08/2007|18:33] C:\Program Files\Rocket Division Software
[19/11/2008|23:19] C:\Program Files\Samsung
[25/10/2008|16:28] C:\Program Files\SelectRebates
[04/12/2008|11:55] C:\Program Files\ServerMania
[01/01/2005|20:08] C:\Program Files\Services en ligne
[03/06/2007|21:31] C:\Program Files\Sonic
[29/11/2008|16:31] C:\Program Files\Spybot - Search & Destroy
[02/12/2008|15:41] C:\Program Files\SUPERAntiSpyware
[07/01/2007|00:46] C:\Program Files\The Adventure Company
[04/12/2008|14:04] C:\Program Files\TmNationsForever
[02/12/2008|22:23] C:\Program Files\TmSunriseDemoBeta1
[03/12/2008|00:12] C:\Program Files\TmSunriseDemoMag
[28/10/2008|19:10] C:\Program Files\TmUnitedForever
[27/10/2008|00:28] C:\Program Files\TrackMania Nations ESWC
[23/07/2008|20:42] C:\Program Files\TrackMania United
[24/11/2008|20:42] C:\Program Files\Trend Micro
[16/08/2007|21:10] C:\Program Files\TryMedia
[20/10/2008|12:49] C:\Program Files\Ulead Systems
[20/10/2005|20:06] C:\Program Files\Uninstall Information
[05/07/2008|22:59] C:\Program Files\uTorrent
[03/09/2007|11:05] C:\Program Files\Valusoft
[15/11/2008|00:14] C:\Program Files\VCW VicMan's Photo Editor
[05/03/2008|17:58] C:\Program Files\Vexira Antivirus
[02/09/2007|17:22] C:\Program Files\VideoLAN
[25/06/2008|22:43] C:\Program Files\Viewpoint
[02/06/2008|19:47] C:\Program Files\Web Media Player
[27/03/2008|18:55] C:\Program Files\Windows Journal Viewer
[10/11/2008|17:56] C:\Program Files\Windows Live
[27/06/2008|11:09] C:\Program Files\Windows Live Favorites
[03/12/2007|00:06] C:\Program Files\Windows Live Toolbar
[08/08/2007|00:18] C:\Program Files\Windows Media Connect 2
[23/09/2008|13:03] C:\Program Files\Windows Media Player
[23/09/2008|13:03] C:\Program Files\Windows NT
[20/10/2005|20:05] C:\Program Files\WindowsUpdate
[16/04/2008|11:41] C:\Program Files\WinRAR
[22/04/2008|00:40] C:\Program Files\Wondershare
[26/10/2005|23:37] C:\Program Files\xerox
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[14/07/2008|18:24] C:\Program Files\Fichiers communs\Adobe
[03/07/2007|11:19] C:\Program Files\Fichiers communs\Adobe Systems Shared
[14/08/2006|21:03] C:\Program Files\Fichiers communs\AOL
[24/01/2008|17:48] C:\Program Files\Fichiers communs\Apple
[16/04/2007|17:27] C:\Program Files\Fichiers communs\BOONTY Shared
[07/11/2007|11:33] C:\Program Files\Fichiers communs\DirectX
[01/01/2005|19:37] C:\Program Files\Fichiers communs\Hewlett-Packard
[24/03/2008|00:48] C:\Program Files\Fichiers communs\IdiomaX Uninstall
[03/11/2007|19:21] C:\Program Files\Fichiers communs\InstallShield
[17/02/2008|20:52] C:\Program Files\Fichiers communs\Java
[13/08/2008|21:00] C:\Program Files\Fichiers communs\Kodak
[26/01/2007|13:22] C:\Program Files\Fichiers communs\Labtec
[19/04/2007|00:50] C:\Program Files\Fichiers communs\Macrovision Shared
[11/10/2008|02:35] C:\Program Files\Fichiers communs\Microsoft Shared
[26/10/2005|23:35] C:\Program Files\Fichiers communs\MSSoap
[01/01/2005|19:59] C:\Program Files\Fichiers communs\muvee Technologies
[08/10/2008|20:17] C:\Program Files\Fichiers communs\Nero
[24/11/2008|23:47] C:\Program Files\Fichiers communs\NSV
[17/05/2008|20:36] C:\Program Files\Fichiers communs\Oberon Media
[26/10/2005|23:35] C:\Program Files\Fichiers communs\ODBC
[02/04/2008|16:58] C:\Program Files\Fichiers communs\Panda Software
[12/03/2008|17:36] C:\Program Files\Fichiers communs\PC Tools
[22/03/2008|21:28] C:\Program Files\Fichiers communs\Real
[26/03/2008|16:49] C:\Program Files\Fichiers communs\ReparateurDeSysteme
[26/10/2005|23:35] C:\Program Files\Fichiers communs\Services
[26/07/2007|18:04] C:\Program Files\Fichiers communs\Sonic Shared
[26/10/2005|23:35] C:\Program Files\Fichiers communs\SpeechEngines
[25/01/2008|15:25] C:\Program Files\Fichiers communs\Stardock
[12/04/2008|03:15] C:\Program Files\Fichiers communs\Symantec Shared
[23/09/2008|13:03] C:\Program Files\Fichiers communs\System
[01/01/2005|19:52] C:\Program Files\Fichiers communs\TiVo Shared
[25/06/2008|22:43] C:\Program Files\Fichiers communs\Vbox
[09/11/2007|00:27] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[02/12/2008|15:40] C:\Program Files\Fichiers communs\Wise Installation Wizard
[22/03/2008|21:28] C:\Program Files\Fichiers communs\xing shared
--------------------\\ Process
( 50 Processes )
iexplore.exe ~ [PID:5596]
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Software rule flag owns
C:\DOCUME~1\HP_PRO~1\APPLIC~1\holeso~1
C:\Program Files\holeso~1
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\msgpl_990b.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsa17C.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsa49D.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsaFF.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsb3.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsb42.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsc1F.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsc71.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsd51.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nse3.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nse4.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsf1C4.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsf3.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsg3BC.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsi27CD.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsi7.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsj184.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsk17.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsk1E.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsk3.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsk332.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsk4.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsk99.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsl4A2.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsl4AD.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsl7BE.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsm636.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsn26.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsn3.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsn31E.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsn339.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nso3.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nso32C.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsr27.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsr3.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsr37B.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nss27C8.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nss3.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nstmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsv378.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsw3.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsx27CB.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsx3.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsx33F.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsx8E.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsy434.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsz2F1.tmp
C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp\nsz420.tmp
C:\WINDOWS\Tasks\AA75DD25918A51C5.job
--------------------\\ Verification du Registre
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-12-04 17:12:41
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 298
--------------------\\ Recherche d'autres infections
C:\WINDOWS\Pack.epk
[b]==> EGDACCESS <==/b
C:\WINDOWS\system32\AaddNnpo.ini
C:\WINDOWS\system32\AaddNnpo.ini2
C:\WINDOWS\system32\mTCJRqru.ini
C:\WINDOWS\system32\mTCJRqru.ini2
[b]==> VUNDO <==/b
--------------------\\ Suspect ..
C:\WINDOWS\system32\TDSSebij.dat
C:\WINDOWS\system32\TDSSelxk.dll
C:\WINDOWS\system32\TDSSeqni.dll
C:\WINDOWS\system32\TDSShhbn.dll
C:\WINDOWS\system32\TDSShpqn.dll
C:\WINDOWS\system32\TDSShuqh.dat
C:\WINDOWS\system32\TDSSjkwl.log
C:\WINDOWS\system32\TDSSkilr.dll
C:\WINDOWS\system32\TDSSmtvd.dat
C:\WINDOWS\system32\TDSSobmy.dll
C:\WINDOWS\system32\TDSSoiqt.dll
C:\WINDOWS\system32\TDSSokym.dll
C:\WINDOWS\system32\TDSSupok.log
C:\WINDOWS\system32\TDSSutvn.dll
C:\WINDOWS\system32\TDSSwlmp.dll
C:\WINDOWS\system32\TDSSyfld.dll
--------------------\\ Cracks & Keygens ..
C:\DOCUME~1\HP_PRO~1\Application Data\Real\RealPlayer\History\se busca- No-CD crack para TRACKMANIA - psicofxp.com.lnk
C:\DOCUME~1\HP_PRO~1\Bureau\keygen's
C:\DOCUME~1\HP_PRO~1\Bureau\keygen's\Counter-Strike KeyGen.exe
C:\DOCUME~1\HP_PRO~1\Bureau\keygen's\fff-ea145.exe
C:\DOCUME~1\HP_PRO~1\Bureau\keygen's\fff-ea160.exe
C:\DOCUME~1\HP_PRO~1\Bureau\keygen's\fff-ea166.exe
C:\DOCUME~1\HP_PRO~1\Bureau\keygen's\Half Life CDkeygen.exe
C:\DOCUME~1\HP_PRO~1\Bureau\keygen's\Keygen photo filtre .exe
C:\DOCUME~1\HP_PRO~1\Bureau\keygen's\keygen.exe
C:\DOCUME~1\HP_PRO~1\Bureau\Mbam\Keygen.exe
C:\DOCUME~1\HP_PRO~1\Local Settings\Application Data\Ares\My Shared Folder\gta san andreas jeux pc complet fr avec crack.exe
C:\DOCUME~1\HP_PRO~1\Local Settings\Application Data\Ares\My Shared Folder\ea games - gran turismo 4 pc game\CRACK
C:\DOCUME~1\HP_PRO~1\Local Settings\Application Data\Ares\My Shared Folder\ea games - gran turismo 4 pc game\CRACK\CRACK.EXE
C:\DOCUME~1\HP_PRO~1\Local Settings\Application Data\Ares\My Shared Folder\ea games - gran turismo 4 pc game\CRACK\evc.nfo
C:\DOCUME~1\HP_PRO~1\Local Settings\Application Data\Ares\My Shared Folder\SPORTS CAR GT\CRACK
C:\DOCUME~1\HP_PRO~1\Local Settings\Application Data\Ares\My Shared Folder\SPORTS CAR GT\CRACK\CRACK.EXE
C:\DOCUME~1\HP_PRO~1\Local Settings\Application Data\Ares\My Shared Folder\SPORTS CAR GT\CRACK\evc.nfo
C:\DOCUME~1\HP_PRO~1\Local Settings\Temp\crack
C:\DOCUME~1\HP_PRO~1\Local Settings\Temp\R‚pertoire temporaire 1 pour Les Sims en vacances FRan‡ais bien sur+ serial (clonecd+clonyxxl2.0.0.3a french image)+crack si besoin est by Zen_Gilg@ ok.ZIP
C:\DOCUME~1\HP_PRO~1\Local Settings\Temp\R‚pertoire temporaire 1 pour SpeedConnect_v751_Setup_Full_with_Keygen.zip
C:\DOCUME~1\HP_PRO~1\Local Settings\Temp\R‚pertoire temporaire 1 pour TrackMania Sunrise - eXtreme v.1.0 Crack No-DVD.zip
C:\DOCUME~1\HP_PRO~1\Local Settings\Temp\R‚pertoire temporaire 2 pour SpeedConnect_v751_Setup_Full_with_Keygen.zip
C:\DOCUME~1\HP_PRO~1\Local Settings\Temp\R‚pertoire temporaire 3 pour SpeedConnect_v751_Setup_Full_with_Keygen.zip
C:\DOCUME~1\HP_PRO~1\Local Settings\Temp\R‚pertoire temporaire 1 pour Les Sims en vacances FRan‡ais bien sur+ serial (clonecd+clonyxxl2.0.0.3a french image)+crack si besoin est by Zen_Gilg@ ok.ZIP\crack
C:\DOCUME~1\HP_PRO~1\Local Settings\Temp\R‚pertoire temporaire 1 pour Les Sims en vacances FRan‡ais bien sur+ serial (clonecd+clonyxxl2.0.0.3a french image)+crack si besoin est by Zen_Gilg@ ok.ZIP\crack\crack
C:\DOCUME~1\HP_PRO~1\Local Settings\Temp\R‚pertoire temporaire 1 pour Les Sims en vacances FRan‡ais bien sur+ serial (clonecd+clonyxxl2.0.0.3a french image)+crack si besoin est by Zen_Gilg@ ok.ZIP\crack\crack\sims.exe
C:\DOCUME~1\HP_PRO~1\Local Settings\Temp\R‚pertoire temporaire 1 pour SpeedConnect_v751_Setup_Full_with_Keygen.zip\SpeedConnect Keygen.exe
C:\DOCUME~1\HP_PRO~1\Local Settings\Temp\R‚pertoire temporaire 2 pour SpeedConnect_v751_Setup_Full_with_Keygen.zip\SpeedConnect Keygen.exe
C:\DOCUME~1\HP_PRO~1\Local Settings\Temp\R‚pertoire temporaire 3 pour SpeedConnect_v751_Setup_Full_with_Keygen.zip\SpeedConnect Keygen.exe
C:\DOCUME~1\HP_PRO~1\Recent\140_EA_Keygen_2007_by moreno.rar.lnk
C:\DOCUME~1\HP_PRO~1\Recent\90 Keygen logiciels.rar.lnk
C:\DOCUME~1\HP_PRO~1\Recent\Crack&Mini.Image.rar.lnk
C:\DOCUME~1\HP_PRO~1\Recent\Les.Sims.2.-.Fr.-.4CD.-.Serial.+.Crack.par.www.emule-mania.com.lnk
C:\DOCUME~1\HP_PRO~1\Recent\Nero Ultra 8 3 6 0 Keygen - [www torrentparty com][1][1].torrent -moNova.org- .torrent.lnk
C:\DOCUME~1\HP_PRO~1\Recent\PC - Los Sims 2 Mascotas - Crack + Serial.lnk
C:\DOCUME~1\HP_PRO~1\Recent\Trackmania Sunrise CD-Key + Info Crack No-CD.zip.lnk
[F:2314][D:1822]-> C:\DOCUME~1\HP_PRO~1\LOCALS~1\Temp
[F:121][D:0]-> C:\DOCUME~1\HP_PRO~1\Cookies
[F:2683][D:121]-> C:\DOCUME~1\HP_PRO~1\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 04/12/2008|17:29 - Option : [1]