Ralentissement, spybot qui s'annule etc...
helium
-
helium -
helium -
Bonjour,
depuis j'ai quelques problemes: tout d'abord tout est lent, en particulier internet, mes pages se ferment souvent toutes seules, j'ai essayé de choper quelque chose avec spybot mais sil s'annule tout seul!
voici mon rapport
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:42:33, on 28/11/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\ICRAplus\ICRAplus\ICRAplus.exe
C:\Program Files\ICRAplus\RDFLabel\RDFLabel.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\nvraidservice.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Microsoft IntelliType Pro\type32.exe
C:\Program Files\Microsoft IntelliPoint\point32.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\SAGEM Wi-Fi USB 802.11g\WLANUTL.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgalry.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIEDE.EXE
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FAMTEDE.EXE
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Documents and Settings\Administrateur\Bureau\HiJackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O2 - BHO: WebManager Class - {D5792AA9-D373-4039-8670-2CDAB6A71F15} - C:\Program Files\BitDownload\TorrentManager.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O4 - HKLM\..\Run: [NVRaidService] C:\WINDOWS\system32\nvraidservice.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [type32] "C:\Program Files\Microsoft IntelliType Pro\type32.exe"
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\point32.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [compbags] C:\DOCUME~1\ADMINI~1\APPLIC~1\TRUSTC~1\64 Memo Ping.exe
O4 - HKCU\..\Run: [Dot1XCfg] C:\Program Files\Dot1XCfg\Dot1XCfg.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [EPSON SX100 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIEDE.EXE /FU "C:\WINDOWS\TEMP\E_S8C.tmp" /EF "HKCU"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-21-1659004503-796845957-725345543-501\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'Invité')
O4 - HKUS\S-1-5-21-1659004503-796845957-725345543-501\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe (User 'Invité')
O4 - HKUS\S-1-5-21-1659004503-796845957-725345543-501\..\Run: [qeaik] "c:\windows\system32\qeaik.exe" qeaik (User 'Invité')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Démarrage rapide du logiciel HP Image Zone.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Sagem - Utilitaire réseau pour Clé USB Wi-Fi 802.11g.lnk = ?
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {2357B3CF-7F8D-4451-8D81-FD6097610AEE} - http://activex.camfrogweb.com/advanced/2.0.2.3/cfweb_activex.camfrogweb.com-advanced-2.0.2.3_instmodule.exe
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.mail.live.com/mail/w1/resources/MSNPUpld.cab
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: ICRAplus - OPTENET - C:\Program Files\ICRAplus\ICRAplus\ICRAplus.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: RDFLabel - Unknown owner - C:\Program Files\ICRAplus\RDFLabel\RDFLabel.exe
depuis j'ai quelques problemes: tout d'abord tout est lent, en particulier internet, mes pages se ferment souvent toutes seules, j'ai essayé de choper quelque chose avec spybot mais sil s'annule tout seul!
voici mon rapport
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:42:33, on 28/11/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\ICRAplus\ICRAplus\ICRAplus.exe
C:\Program Files\ICRAplus\RDFLabel\RDFLabel.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\nvraidservice.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Microsoft IntelliType Pro\type32.exe
C:\Program Files\Microsoft IntelliPoint\point32.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\SAGEM Wi-Fi USB 802.11g\WLANUTL.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgalry.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIEDE.EXE
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FAMTEDE.EXE
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Documents and Settings\Administrateur\Bureau\HiJackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O2 - BHO: WebManager Class - {D5792AA9-D373-4039-8670-2CDAB6A71F15} - C:\Program Files\BitDownload\TorrentManager.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O4 - HKLM\..\Run: [NVRaidService] C:\WINDOWS\system32\nvraidservice.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [type32] "C:\Program Files\Microsoft IntelliType Pro\type32.exe"
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\point32.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [compbags] C:\DOCUME~1\ADMINI~1\APPLIC~1\TRUSTC~1\64 Memo Ping.exe
O4 - HKCU\..\Run: [Dot1XCfg] C:\Program Files\Dot1XCfg\Dot1XCfg.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [EPSON SX100 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIEDE.EXE /FU "C:\WINDOWS\TEMP\E_S8C.tmp" /EF "HKCU"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-21-1659004503-796845957-725345543-501\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'Invité')
O4 - HKUS\S-1-5-21-1659004503-796845957-725345543-501\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe (User 'Invité')
O4 - HKUS\S-1-5-21-1659004503-796845957-725345543-501\..\Run: [qeaik] "c:\windows\system32\qeaik.exe" qeaik (User 'Invité')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Démarrage rapide du logiciel HP Image Zone.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O4 - Global Startup: Sagem - Utilitaire réseau pour Clé USB Wi-Fi 802.11g.lnk = ?
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {2357B3CF-7F8D-4451-8D81-FD6097610AEE} - http://activex.camfrogweb.com/advanced/2.0.2.3/cfweb_activex.camfrogweb.com-advanced-2.0.2.3_instmodule.exe
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.mail.live.com/mail/w1/resources/MSNPUpld.cab
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: ICRAplus - OPTENET - C:\Program Files\ICRAplus\ICRAplus\ICRAplus.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: RDFLabel - Unknown owner - C:\Program Files\ICRAplus\RDFLabel\RDFLabel.exe
A voir également:
- Ralentissement, spybot qui s'annule etc...
- Ralentissement pc - Guide
- Spybot - Télécharger - Antivirus & Antimalwares
- Comment mettre en veille des programmes qui ralentissent l'ordinateur - Guide
- Train annulé - Accueil - Guide transports et cartes
- Appel annulé - Forum Mobile
55 réponses
========== PROCESSES ==========
Process explorer.exe killed successfully.
========== FILES ==========
File/Folder c:\program files\bitdownload\bitdownload.exe not found.
File/Folder c:\documents and settings\administrateur\bureau\msnmsgr.exe not found.
File/Folder c:\documents and settings\admini~1\locals~1\temp\services.exe not found.
========== COMMANDS ==========
File delete failed. C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\~DF2C24.tmp scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\~DF8D92.tmp scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\~DF8DB0.tmp scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\~DFC66E.tmp scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\~DFC684.tmp scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Temporary Internet Files folder emptied.
User's Internet Explorer cache folder emptied.
Local Service Temp folder emptied.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
Local Service Temporary Internet Files folder emptied.
File delete failed. C:\WINDOWS\temp\_avast4_\Webshlock.txt scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_7e0.dat scheduled to be deleted on reboot.
Windows Temp folder emptied.
Java cache emptied.
FireFox cache emptied.
Temp folders emptied.
Explorer started successfully
OTMoveIt3 by OldTimer - Version 1.0.7.2 log created on 12192008_210508
pas de detection detecté avec msnfix
Process explorer.exe killed successfully.
========== FILES ==========
File/Folder c:\program files\bitdownload\bitdownload.exe not found.
File/Folder c:\documents and settings\administrateur\bureau\msnmsgr.exe not found.
File/Folder c:\documents and settings\admini~1\locals~1\temp\services.exe not found.
========== COMMANDS ==========
File delete failed. C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\~DF2C24.tmp scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\~DF8D92.tmp scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\~DF8DB0.tmp scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\~DFC66E.tmp scheduled to be deleted on reboot.
File delete failed. C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\~DFC684.tmp scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Temporary Internet Files folder emptied.
User's Internet Explorer cache folder emptied.
Local Service Temp folder emptied.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
Local Service Temporary Internet Files folder emptied.
File delete failed. C:\WINDOWS\temp\_avast4_\Webshlock.txt scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_7e0.dat scheduled to be deleted on reboot.
Windows Temp folder emptied.
Java cache emptied.
FireFox cache emptied.
Temp folders emptied.
Explorer started successfully
OTMoveIt3 by OldTimer - Version 1.0.7.2 log created on 12192008_210508
pas de detection detecté avec msnfix
Re,
Redémarre ton pc et reposte un RSIT:
==>Télécharge random's system information tool (RSIT) et enregistre le sur ton bureau.
==>Double clique sur RSIT.exe pour lancer l'outil.
==>Clique sur ' continue ' à l'écran Disclaimer.
==>Si l'outil HIjackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera et tu devras accepter la licence.
==>Une fois le scan fini , 2 rapports vont apparaitre. Poste le contenu des 2 rapports
( log.txt & info.txt )
(CTRL+A Pour tout selectionner , CTRL+C pour copier et CTRL+V pour coller )
Si un rapport ne passe pas faire une alerte à la conciergerie avec le /!\ jaune.
Redémarre ton pc et reposte un RSIT:
==>Télécharge random's system information tool (RSIT) et enregistre le sur ton bureau.
==>Double clique sur RSIT.exe pour lancer l'outil.
==>Clique sur ' continue ' à l'écran Disclaimer.
==>Si l'outil HIjackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera et tu devras accepter la licence.
==>Une fois le scan fini , 2 rapports vont apparaitre. Poste le contenu des 2 rapports
( log.txt & info.txt )
(CTRL+A Pour tout selectionner , CTRL+C pour copier et CTRL+V pour coller )
Si un rapport ne passe pas faire une alerte à la conciergerie avec le /!\ jaune.
je n'ai eu qu'un rapport! le log.txt
Logfile of random's system information tool 1.05 (written by random/random)
Run by Administrateur at 2008-12-22 16:13:47
Microsoft Windows XP Professionnel Service Pack 3
System drive C: has 11 GB (5%) free of 194 GB
Total RAM: 1023 MB (58% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:13:51, on 22/12/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\nvraidservice.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Microsoft IntelliType Pro\type32.exe
C:\Program Files\Microsoft IntelliPoint\point32.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Logitech\Video\LogiTray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgalry.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Documents and Settings\Administrateur\Bureau\RSIT.exe
C:\Documents and Settings\Administrateur\Bureau\virus et cie\Administrateur.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O4 - HKLM\..\Run: [NVRaidService] C:\WINDOWS\system32\nvraidservice.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [type32] "C:\Program Files\Microsoft IntelliType Pro\type32.exe"
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\point32.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [EPSON SX100 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIEDE.EXE /FU "C:\WINDOWS\TEMP\E_S8C.tmp" /EF "HKCU"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Démarrage rapide du logiciel HP Image Zone.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {2D8ED06D-3C30-438B-96AE-4D110FDC1FB8} (ActiveScan 2.0 Installer Class) - http://www.pandasecurity.com/activescan/cabs/as2stubie.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.mail.live.com/mail/w1/resources/MSNPUpld.cab
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
Logfile of random's system information tool 1.05 (written by random/random)
Run by Administrateur at 2008-12-22 16:13:47
Microsoft Windows XP Professionnel Service Pack 3
System drive C: has 11 GB (5%) free of 194 GB
Total RAM: 1023 MB (58% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:13:51, on 22/12/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\nvraidservice.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Microsoft IntelliType Pro\type32.exe
C:\Program Files\Microsoft IntelliPoint\point32.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Logitech\Video\LogiTray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgalry.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Documents and Settings\Administrateur\Bureau\RSIT.exe
C:\Documents and Settings\Administrateur\Bureau\virus et cie\Administrateur.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O4 - HKLM\..\Run: [NVRaidService] C:\WINDOWS\system32\nvraidservice.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [type32] "C:\Program Files\Microsoft IntelliType Pro\type32.exe"
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\point32.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [EPSON SX100 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIEDE.EXE /FU "C:\WINDOWS\TEMP\E_S8C.tmp" /EF "HKCU"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Démarrage rapide du logiciel HP Image Zone.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {2D8ED06D-3C30-438B-96AE-4D110FDC1FB8} (ActiveScan 2.0 Installer Class) - http://www.pandasecurity.com/activescan/cabs/as2stubie.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.mail.live.com/mail/w1/resources/MSNPUpld.cab
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
Re,
As tu passer MSNFIX?
passe le et poste moi le rapport et accepte la suppression si demander.
A++
As tu passer MSNFIX?
passe le et poste moi le rapport et accepte la suppression si demander.
A++
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Re,
1- Télécharges OTMoveIt3 (de Old_Timer) sur ton Bureau.
http://oldtimer.geekstogo.com/OTMoveIt3.exe
! Déconnectes toi et fermes toute tes applications en cours !
Double cliques sur "OTMoveIt3.exe" pour ouvrir le prg .
Puis copies ce qui se trouve en citation ci-dessous,
:Files
c:\program files\bitdownload\bitdownload.exe
c:\documents and settings\administrateur\bureau\msnmsgr.exe
c:\documents and settings\admini~1\locals~1\temp\services.exe
:Commands
[purity]
[emptytemp]
[reboot]
et colles le dans le cadre de gauche de OTMoveIt3 :
Paste Instructions for items to be moved.
(ne touche à rien d'autre !)
-> cliques sur MoveIt! pour lancer la suppression.
-> laisses travailler l'outil ...
( Note : ton bureau va disparaitre puis réapparaitre, c'est normal .)
-->Postes le contenu du rapport qui se trouve dans le dossier "C:\_OTMoveIt\MovedFiles"
( " xxxx2008_xxxxxx.log " où les "x" correspondent au jour et à l'heure de l'utilisation ).
1- Télécharges OTMoveIt3 (de Old_Timer) sur ton Bureau.
http://oldtimer.geekstogo.com/OTMoveIt3.exe
! Déconnectes toi et fermes toute tes applications en cours !
Double cliques sur "OTMoveIt3.exe" pour ouvrir le prg .
Puis copies ce qui se trouve en citation ci-dessous,
:Files
c:\program files\bitdownload\bitdownload.exe
c:\documents and settings\administrateur\bureau\msnmsgr.exe
c:\documents and settings\admini~1\locals~1\temp\services.exe
:Commands
[purity]
[emptytemp]
[reboot]
et colles le dans le cadre de gauche de OTMoveIt3 :
Paste Instructions for items to be moved.
(ne touche à rien d'autre !)
-> cliques sur MoveIt! pour lancer la suppression.
-> laisses travailler l'outil ...
( Note : ton bureau va disparaitre puis réapparaitre, c'est normal .)
-->Postes le contenu du rapport qui se trouve dans le dossier "C:\_OTMoveIt\MovedFiles"
( " xxxx2008_xxxxxx.log " où les "x" correspondent au jour et à l'heure de l'utilisation ).
========== FILES ==========
File/Folder c:\program files\bitdownload\bitdownload.exe not found.
File/Folder c:\documents and settings\administrateur\bureau\msnmsgr.exe not found.
File/Folder c:\documents and settings\admini~1\locals~1\temp\services.exe not found.
========== COMMANDS ==========
File delete failed. C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\~DF78F6.tmp scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Temporary Internet Files folder emptied.
User's Internet Explorer cache folder emptied.
Local Service Temp folder emptied.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
Local Service Temporary Internet Files folder emptied.
File delete failed. C:\WINDOWS\temp\_avast4_\Webshlock.txt scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_7ec.dat scheduled to be deleted on reboot.
Windows Temp folder emptied.
Java cache emptied.
FireFox cache emptied.
Temp folders emptied.
OTMoveIt3 by OldTimer - Version 1.0.7.2 log created on 12222008_235308
File/Folder c:\program files\bitdownload\bitdownload.exe not found.
File/Folder c:\documents and settings\administrateur\bureau\msnmsgr.exe not found.
File/Folder c:\documents and settings\admini~1\locals~1\temp\services.exe not found.
========== COMMANDS ==========
File delete failed. C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\~DF78F6.tmp scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Temporary Internet Files folder emptied.
User's Internet Explorer cache folder emptied.
Local Service Temp folder emptied.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
Local Service Temporary Internet Files folder emptied.
File delete failed. C:\WINDOWS\temp\_avast4_\Webshlock.txt scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_7ec.dat scheduled to be deleted on reboot.
Windows Temp folder emptied.
Java cache emptied.
FireFox cache emptied.
Temp folders emptied.
OTMoveIt3 by OldTimer - Version 1.0.7.2 log created on 12222008_235308
Logfile of random's system information tool 1.05 (written by random/random)
Run by Administrateur at 2008-12-23 00:45:00
Microsoft Windows XP Professionnel Service Pack 3
System drive C: has 11 GB (6%) free of 194 GB
Total RAM: 1023 MB (56% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 00:45:16, on 23/12/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\nvraidservice.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Microsoft IntelliType Pro\type32.exe
C:\Program Files\Microsoft IntelliPoint\point32.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Logitech\Video\LogiTray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgalry.exe
C:\Documents and Settings\Administrateur\Bureau\RSIT.exe
C:\Documents and Settings\Administrateur\Bureau\virus et cie\Administrateur.exe
C:\WINDOWS\system32\wuauclt.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O4 - HKLM\..\Run: [NVRaidService] C:\WINDOWS\system32\nvraidservice.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [type32] "C:\Program Files\Microsoft IntelliType Pro\type32.exe"
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\point32.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [EPSON SX100 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIEDE.EXE /FU "C:\WINDOWS\TEMP\E_S8C.tmp" /EF "HKCU"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Démarrage rapide du logiciel HP Image Zone.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {2D8ED06D-3C30-438B-96AE-4D110FDC1FB8} (ActiveScan 2.0 Installer Class) - http://www.pandasecurity.com/activescan/cabs/as2stubie.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.mail.live.com/mail/w1/resources/MSNPUpld.cab
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
Run by Administrateur at 2008-12-23 00:45:00
Microsoft Windows XP Professionnel Service Pack 3
System drive C: has 11 GB (6%) free of 194 GB
Total RAM: 1023 MB (56% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 00:45:16, on 23/12/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\nvraidservice.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Microsoft IntelliType Pro\type32.exe
C:\Program Files\Microsoft IntelliPoint\point32.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Logitech\Video\LogiTray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgalry.exe
C:\Documents and Settings\Administrateur\Bureau\RSIT.exe
C:\Documents and Settings\Administrateur\Bureau\virus et cie\Administrateur.exe
C:\WINDOWS\system32\wuauclt.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O4 - HKLM\..\Run: [NVRaidService] C:\WINDOWS\system32\nvraidservice.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [type32] "C:\Program Files\Microsoft IntelliType Pro\type32.exe"
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\point32.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [EPSON SX100 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIEDE.EXE /FU "C:\WINDOWS\TEMP\E_S8C.tmp" /EF "HKCU"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Démarrage rapide du logiciel HP Image Zone.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {2D8ED06D-3C30-438B-96AE-4D110FDC1FB8} (ActiveScan 2.0 Installer Class) - http://www.pandasecurity.com/activescan/cabs/as2stubie.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.mail.live.com/mail/w1/resources/MSNPUpld.cab
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
Re,
Télécharge Lop S&D :
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
▶ Double-clique dessus pour lancer l'installation
▶ Puis double-clique sur le raccourci Lop S&D présent sur ton bureau
▶ Séléctionne la langue souhaitée
▶ Puis choisis l'Option 1 ( Recherche )
▶ Patiente jusqu'à la fin du scan
▶ Poste le rapport généré ( C:lopR.txt )
tutoriel
Si un rapport ne passe pas faire une alerte à la conciergerie avec le /!\ jaune.
Télécharge Lop S&D :
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
▶ Double-clique dessus pour lancer l'installation
▶ Puis double-clique sur le raccourci Lop S&D présent sur ton bureau
▶ Séléctionne la langue souhaitée
▶ Puis choisis l'Option 1 ( Recherche )
▶ Patiente jusqu'à la fin du scan
▶ Poste le rapport généré ( C:lopR.txt )
tutoriel
Si un rapport ne passe pas faire une alerte à la conciergerie avec le /!\ jaune.
--------------------\\ Lop S&D 4.2.4-9c XP/Vista
Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Sempron(tm) Processor 2600+ )
BIOS : Default System BIOS
USER : Administrateur ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1296 [VPS 081222-0] 4.8.1296 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:189 Go (Free:10 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)
F:\ (USB)
G:\ (USB)
H:\ (USB)
I:\ (USB)
J:\ (USB) - FAT32 - Total:1928 Mo (Free:0 Go)
"C:\Lop SD" ( MAJ : 01-11-2008|16:30 )
Option : [1] ( 23/12/2008| 2:09 )
--------------------\\ Listing des dossiers dans APPLIC~1
[17/01/2008|12:15] C:\DOCUME~1\ADMINI~1\APPLIC~1\Adobe
[12/03/2006|20:13] C:\DOCUME~1\ADMINI~1\APPLIC~1\Ahead
[08/12/2005|20:16] C:\DOCUME~1\ADMINI~1\APPLIC~1\Apple Computer
[08/12/2005|16:13] C:\DOCUME~1\ADMINI~1\APPLIC~1\ATI
[22/04/2007|22:20] C:\DOCUME~1\ADMINI~1\APPLIC~1\Azureus
[14/10/2007|22:20] C:\DOCUME~1\ADMINI~1\APPLIC~1\Camfrog
[10/03/2008|16:37] C:\DOCUME~1\ADMINI~1\APPLIC~1\CamfrogWEB
[24/11/2008|19:42] C:\DOCUME~1\ADMINI~1\APPLIC~1\dvdcss
[19/12/2005|22:45] C:\DOCUME~1\ADMINI~1\APPLIC~1\FotoWire
[30/04/2007|17:31] C:\DOCUME~1\ADMINI~1\APPLIC~1\Google
[08/02/2006|17:35] C:\DOCUME~1\ADMINI~1\APPLIC~1\Help
[23/08/2007|12:31] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[24/11/2008|20:21] C:\DOCUME~1\ADMINI~1\APPLIC~1\InstallShield
[07/12/2005|17:22] C:\DOCUME~1\ADMINI~1\APPLIC~1\InterTrust
[20/10/2006|23:50] C:\DOCUME~1\ADMINI~1\APPLIC~1\iShell
[21/12/2005|00:04] C:\DOCUME~1\ADMINI~1\APPLIC~1\Lavasoft
[09/01/2006|03:57] C:\DOCUME~1\ADMINI~1\APPLIC~1\LogProtect
[26/05/2008|23:49] C:\DOCUME~1\ADMINI~1\APPLIC~1\LucasArts
[14/02/2006|15:40] C:\DOCUME~1\ADMINI~1\APPLIC~1\Macromedia
[28/11/2008|20:44] C:\DOCUME~1\ADMINI~1\APPLIC~1\Malwarebytes
[18/03/2008|22:34] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[01/04/2006|02:13] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft Games
[20/10/2008|12:49] C:\DOCUME~1\ADMINI~1\APPLIC~1\Mozilla
[07/12/2005|20:54] C:\DOCUME~1\ADMINI~1\APPLIC~1\MSNInstaller
[13/04/2008|22:20] C:\DOCUME~1\ADMINI~1\APPLIC~1\NCH Swift Sound
[08/08/2008|18:12] C:\DOCUME~1\ADMINI~1\APPLIC~1\Real
[31/07/2008|02:05] C:\DOCUME~1\ADMINI~1\APPLIC~1\Samsung
[25/05/2007|22:38] C:\DOCUME~1\ADMINI~1\APPLIC~1\Screenshot Sender
[30/07/2007|15:59] C:\DOCUME~1\ADMINI~1\APPLIC~1\ScummVM
[28/03/2007|22:09] C:\DOCUME~1\ADMINI~1\APPLIC~1\Skype
[26/06/2007|15:21] C:\DOCUME~1\ADMINI~1\APPLIC~1\STOIK
[12/12/2005|02:58] C:\DOCUME~1\ADMINI~1\APPLIC~1\Sun
[19/03/2006|22:28] C:\DOCUME~1\ADMINI~1\APPLIC~1\teamspeak2
[13/06/2006|05:23] C:\DOCUME~1\ADMINI~1\APPLIC~1\Ulead Systems
[09/01/2006|18:36] C:\DOCUME~1\ADMINI~1\APPLIC~1\vlc
[02/12/2008|00:40] C:\DOCUME~1\ADMINI~1\APPLIC~1\WinRAR
[23/08/2007|12:31] C:\DOCUME~1\ADMINI~1\APPLIC~1\Zylom
[21/10/2007|20:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Age of Empires 3
[08/12/2005|19:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[22/04/2007|22:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Azureus
[26/10/2008|00:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Blizzard
[14/07/2006|19:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[24/11/2008|20:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\EPSON
[30/04/2007|18:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[30/11/2008|19:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grid Blue Memo Site
[14/07/2006|19:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
[28/11/2008|20:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[03/12/2008|18:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[12/01/2008|19:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[13/04/2008|22:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NCH Swift Sound
[01/06/2007|13:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\OrbNetworks
[02/10/2007|08:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\rkfree
[22/08/2007|22:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sandlot Games
[25/01/2006|12:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[01/12/2008|19:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[22/08/2007|15:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Trymedia
[24/11/2008|20:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\UDL
[31/07/2008|02:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems
[16/08/2006|01:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WhiteCap (Holiday Edition)
[11/01/2006|02:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[31/07/2008|02:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WindowsLiveInstaller
[16/01/2008|17:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[23/08/2007|12:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom
[05/07/2007|10:10] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[04/08/2007|09:06] C:\DOCUME~1\INVIT~1\APPLIC~1\Identities
[04/08/2007|09:08] C:\DOCUME~1\INVIT~1\APPLIC~1\Macromedia
[04/08/2007|09:07] C:\DOCUME~1\INVIT~1\APPLIC~1\Microsoft
[04/08/2007|09:06] C:\DOCUME~1\INVIT~1\APPLIC~1\Real
[10/12/2006|13:26] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[07/12/2005|16:58] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[21/12/2008 18:03][--a------] C:\WINDOWS\tasks\Norton Security Scan.job
[23/12/2008 00:44][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 13:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ Listing des dossiers dans C:\Program Files
[01/12/2007|20:24] C:\Program Files\1964
[31/07/2008|02:17] C:\Program Files\7-Zip
[18/08/2006|00:34] C:\Program Files\aaascreensavers
[18/08/2006|00:34] C:\Program Files\AAAScreenSavers_WhenUSaveNow_Installer
[24/11/2008|20:24] C:\Program Files\ABBYY FineReader 6.0 Sprint
[08/11/2006|17:42] C:\Program Files\Activision
[09/12/2005|23:02] C:\Program Files\Adobe
[26/06/2007|12:30] C:\Program Files\Agfa
[12/03/2006|20:01] C:\Program Files\Ahead
[07/12/2005|21:36] C:\Program Files\Alwil Software
[07/12/2005|17:27] C:\Program Files\AMD
[30/11/2008|19:23] C:\Program Files\Another World
[01/05/2007|14:07] C:\Program Files\Anuman Interactive
[27/05/2008|18:42] C:\Program Files\Audacity
[22/04/2007|22:14] C:\Program Files\Azureus
[24/09/2007|21:45] C:\Program Files\BlackIsle
[17/07/2006|14:55] C:\Program Files\Boonty
[09/11/2006|15:40] C:\Program Files\BoontyGames
[10/12/2005|03:19] C:\Program Files\Bullfrog
[15/10/2007|18:18] C:\Program Files\Camfrog
[31/07/2008|02:15] C:\Program Files\CamStudio
[05/04/2006|22:21] C:\Program Files\CCleaner
[23/12/2005|23:58] C:\Program Files\Common Files
[07/12/2005|16:55] C:\Program Files\ComPlus Applications
[31/07/2008|02:13] C:\Program Files\DAP
[01/12/2007|21:01] C:\Program Files\DeliPlayer2
[28/06/2006|17:50] C:\Program Files\Diablo II
[12/12/2005|04:38] C:\Program Files\directx
[16/11/2007|00:05] C:\Program Files\DivX
[31/10/2007|18:46] C:\Program Files\DOSBox-0.63
[05/11/2007|18:02] C:\Program Files\Dreamcatcher Interactive
[15/02/2006|22:36] C:\Program Files\EA Games
[16/02/2006|21:04] C:\Program Files\Eidos Interactive
[10/09/2008|11:57] C:\Program Files\ElcomSoft
[18/12/2008|09:05] C:\Program Files\eMule
[24/11/2008|20:24] C:\Program Files\epson
[24/11/2008|20:25] C:\Program Files\Epson Software
[30/11/2008|20:28] C:\Program Files\ewido anti-malware
[07/11/2008|18:28] C:\Program Files\Fichiers communs
[28/06/2006|17:49] C:\Program Files\Giants
[01/05/2007|12:20] C:\Program Files\Google
[17/04/2006|23:28] C:\Program Files\Hewlett-Packard
[31/07/2008|01:55] C:\Program Files\HomeKeylogger
[16/01/2006|21:26] C:\Program Files\HP
[08/01/2006|18:32] C:\Program Files\HyperSnap 6
[30/11/2008|19:09] C:\Program Files\ICRAplus
[09/12/2005|22:11] C:\Program Files\Illustrate
[03/06/2006|23:16] C:\Program Files\Information Update
[01/12/2008|17:49] C:\Program Files\InstallShield Installation Information
[11/12/2008|14:08] C:\Program Files\Internet Explorer
[20/01/2006|18:21] C:\Program Files\INVENTEL
[08/12/2005|19:35] C:\Program Files\iPod
[08/12/2005|19:35] C:\Program Files\iTunes
[28/07/2008|15:19] C:\Program Files\Java
[17/11/2006|20:21] C:\Program Files\KAIN
[11/12/2005|18:37] C:\Program Files\Kpe
[21/12/2005|00:04] C:\Program Files\Lavasoft
[29/12/2005|02:23] C:\Program Files\Lionhead Studios Ltd
[04/06/2008|19:57] C:\Program Files\Logitech
[09/01/2006|04:20] C:\Program Files\LogProtect
[07/09/2006|19:50] C:\Program Files\LucasArts
[19/12/2008|01:10] C:\Program Files\Malwarebytes' Anti-Malware
[07/12/2007|18:53] C:\Program Files\Maxis
[14/07/2006|19:05] C:\Program Files\Mes Jeux T‚l‚charg‚s
[14/08/2008|11:07] C:\Program Files\Messenger
[30/11/2008|19:06] C:\Program Files\Messenger Plus! Live
[16/08/2006|17:30] C:\Program Files\Micro Application
[31/07/2008|02:00] C:\Program Files\Microids
[06/07/2007|11:06] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[07/12/2005|16:59] C:\Program Files\microsoft frontpage
[09/11/2006|15:39] C:\Program Files\Microsoft Games
[09/03/2007|06:46] C:\Program Files\Microsoft IntelliPoint
[09/03/2007|06:46] C:\Program Files\Microsoft IntelliType Pro
[18/03/2008|22:33] C:\Program Files\Microsoft Office
[16/01/2008|17:20] C:\Program Files\Microsoft SQL Server Compact Edition
[26/03/2007|20:36] C:\Program Files\Microsoft Works
[03/02/2006|15:00] C:\Program Files\Microsoft.NET
[05/08/2008|17:51] C:\Program Files\Movie Maker
[19/12/2008|21:41] C:\Program Files\Mozilla Firefox
[31/07/2008|02:07] C:\Program Files\MSECACHE
[07/12/2005|20:53] C:\Program Files\MSN
[07/12/2005|16:55] C:\Program Files\MSN Gaming Zone
[29/02/2008|00:47] C:\Program Files\MSN Messenger
[18/01/2006|18:58] C:\Program Files\Musetools
[28/11/2008|20:23] C:\Program Files\Navilog1
[31/07/2008|01:58] C:\Program Files\NCH Swift Sound
[12/09/2006|23:38] C:\Program Files\Neoact
[05/08/2008|17:48] C:\Program Files\NetMeeting
[21/12/2008|18:00] C:\Program Files\Norton Security Scan
[03/02/2006|15:52] C:\Program Files\OfficeUpdate11
[07/12/2005|16:55] C:\Program Files\Online Services
[23/10/2006|00:04] C:\Program Files\Ontrack
[01/06/2007|13:18] C:\Program Files\Orb Networks
[05/08/2008|17:48] C:\Program Files\Outlook Express
[01/12/2008|16:19] C:\Program Files\Panda Security
[31/07/2008|02:04] C:\Program Files\Philips
[21/12/2005|01:27] C:\Program Files\Plus!
[03/12/2007|22:44] C:\Program Files\Project64 1.6
[08/12/2005|19:35] C:\Program Files\QuickTime
[10/12/2005|16:06] C:\Program Files\Real
[10/01/2008|10:38] C:\Program Files\RKFree
[31/07/2008|01:56] C:\Program Files\Rumble Box
[02/01/2006|19:28] C:\Program Files\SAGEM
[31/07/2008|21:21] C:\Program Files\SAGEM Wi-Fi USB 802.11g
[20/09/2008|16:51] C:\Program Files\ScummVM
[25/09/2007|12:37] C:\Program Files\Securitoo
[07/12/2005|16:57] C:\Program Files\Services en ligne
[24/12/2005|20:20] C:\Program Files\Shiny
[25/01/2006|12:57] C:\Program Files\Skype
[15/03/2008|13:52] C:\Program Files\Slayers Online
[17/02/2007|00:56] C:\Program Files\Small Rockets
[27/03/2006|23:55] C:\Program Files\Smart Projects
[21/01/2007|17:46] C:\Program Files\Spybot - Search & Destroy
[31/07/2008|02:01] C:\Program Files\StepMania
[31/07/2008|01:58] C:\Program Files\Teamspeak2_RC2
[01/08/2007|11:36] C:\Program Files\The Silver Lining Demo RC1
[14/07/2006|19:18] C:\Program Files\Ubisoft
[13/06/2006|05:22] C:\Program Files\Ulead Systems
[07/12/2005|17:06] C:\Program Files\Uninstall Information
[21/09/2008|01:20] C:\Program Files\Unity
[02/12/2008|20:10] C:\Program Files\UsbFix
[08/07/2007|17:36] C:\Program Files\Vampire The Masquerade - Redemption
[09/01/2006|18:32] C:\Program Files\VideoLAN
[24/12/2005|03:51] C:\Program Files\VUGames
[23/12/2008|00:44] C:\Program Files\Wanadoo
[04/06/2007|17:21] C:\Program Files\Warcraft II BNE
[19/12/2005|08:03] C:\Program Files\Webteh
[31/07/2008|02:08] C:\Program Files\Winamp
[21/12/2005|00:39] C:\Program Files\WinCustomize
[27/02/2008|16:32] C:\Program Files\Windows Live
[20/07/2006|20:05] C:\Program Files\Windows Live Safety Center
[10/12/2006|01:02] C:\Program Files\Windows Media Connect 2
[05/08/2008|17:48] C:\Program Files\Windows Media Player
[05/08/2008|17:48] C:\Program Files\Windows NT
[07/12/2005|16:57] C:\Program Files\WindowsUpdate
[11/07/2006|13:32] C:\Program Files\WinRAR
[16/12/2008|00:10] C:\Program Files\World of Warcraft
[07/12/2005|16:59] C:\Program Files\xerox
[04/05/2007|08:58] C:\Program Files\YesMessenger
[08/12/2008|09:15] C:\Program Files\YouTUBE (TM) movie downloader
[31/07/2008|01:57] C:\Program Files\Zoom Player
[06/10/2007|20:49] C:\Program Files\Zylom Games
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[31/08/2007|22:42] C:\Program Files\Fichiers communs\Adobe
[12/03/2006|20:00] C:\Program Files\Fichiers communs\Ahead
[23/05/2008|14:24] C:\Program Files\Fichiers communs\Blizzard Entertainment
[03/02/2006|15:01] C:\Program Files\Fichiers communs\DESIGNER
[24/11/2008|19:53] C:\Program Files\Fichiers communs\EPSON
[19/12/2005|22:45] C:\Program Files\Fichiers communs\FotoWire
[16/01/2006|21:26] C:\Program Files\Fichiers communs\HP
[07/12/2005|17:23] C:\Program Files\Fichiers communs\InstallShield
[12/12/2005|02:55] C:\Program Files\Fichiers communs\Java
[19/12/2005|22:44] C:\Program Files\Fichiers communs\Logitech
[28/05/2008|15:30] C:\Program Files\Fichiers communs\Microsoft Shared
[07/12/2005|16:56] C:\Program Files\Fichiers communs\MSSoap
[08/12/2005|00:47] C:\Program Files\Fichiers communs\ODBC
[10/12/2005|16:06] C:\Program Files\Fichiers communs\Real
[07/12/2005|16:56] C:\Program Files\Fichiers communs\Services
[08/12/2005|00:47] C:\Program Files\Fichiers communs\SpeechEngines
[21/12/2005|00:39] C:\Program Files\Fichiers communs\Stardock
[09/11/2008|18:01] C:\Program Files\Fichiers communs\Symantec Shared
[05/08/2008|17:48] C:\Program Files\Fichiers communs\System
[16/01/2008|17:12] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[18/01/2006|18:51] C:\Program Files\Fichiers communs\Wise Installation Wizard
[10/12/2005|16:06] C:\Program Files\Fichiers communs\xing shared
--------------------\\ Process
( 47 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grid Blue Memo Site
--------------------\\ Verification du Registre
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-12-23 02:10:41
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 176
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:35][D:3]-> C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp
[F:105][D:0]-> C:\DOCUME~1\ADMINI~1\Cookies
[F:3579][D:22]-> C:\DOCUME~1\ADMINI~1\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 28/11/2008|18:01 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 28/11/2008|19:30 - Option : [2]
3 - "C:\Lop SD\LopR_3.txt" - 23/12/2008| 2:12 - Option : [1]
--------------------\\ Fin du rapport a 2:12:44
Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Sempron(tm) Processor 2600+ )
BIOS : Default System BIOS
USER : Administrateur ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1296 [VPS 081222-0] 4.8.1296 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:189 Go (Free:10 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)
F:\ (USB)
G:\ (USB)
H:\ (USB)
I:\ (USB)
J:\ (USB) - FAT32 - Total:1928 Mo (Free:0 Go)
"C:\Lop SD" ( MAJ : 01-11-2008|16:30 )
Option : [1] ( 23/12/2008| 2:09 )
--------------------\\ Listing des dossiers dans APPLIC~1
[17/01/2008|12:15] C:\DOCUME~1\ADMINI~1\APPLIC~1\Adobe
[12/03/2006|20:13] C:\DOCUME~1\ADMINI~1\APPLIC~1\Ahead
[08/12/2005|20:16] C:\DOCUME~1\ADMINI~1\APPLIC~1\Apple Computer
[08/12/2005|16:13] C:\DOCUME~1\ADMINI~1\APPLIC~1\ATI
[22/04/2007|22:20] C:\DOCUME~1\ADMINI~1\APPLIC~1\Azureus
[14/10/2007|22:20] C:\DOCUME~1\ADMINI~1\APPLIC~1\Camfrog
[10/03/2008|16:37] C:\DOCUME~1\ADMINI~1\APPLIC~1\CamfrogWEB
[24/11/2008|19:42] C:\DOCUME~1\ADMINI~1\APPLIC~1\dvdcss
[19/12/2005|22:45] C:\DOCUME~1\ADMINI~1\APPLIC~1\FotoWire
[30/04/2007|17:31] C:\DOCUME~1\ADMINI~1\APPLIC~1\Google
[08/02/2006|17:35] C:\DOCUME~1\ADMINI~1\APPLIC~1\Help
[23/08/2007|12:31] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[24/11/2008|20:21] C:\DOCUME~1\ADMINI~1\APPLIC~1\InstallShield
[07/12/2005|17:22] C:\DOCUME~1\ADMINI~1\APPLIC~1\InterTrust
[20/10/2006|23:50] C:\DOCUME~1\ADMINI~1\APPLIC~1\iShell
[21/12/2005|00:04] C:\DOCUME~1\ADMINI~1\APPLIC~1\Lavasoft
[09/01/2006|03:57] C:\DOCUME~1\ADMINI~1\APPLIC~1\LogProtect
[26/05/2008|23:49] C:\DOCUME~1\ADMINI~1\APPLIC~1\LucasArts
[14/02/2006|15:40] C:\DOCUME~1\ADMINI~1\APPLIC~1\Macromedia
[28/11/2008|20:44] C:\DOCUME~1\ADMINI~1\APPLIC~1\Malwarebytes
[18/03/2008|22:34] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[01/04/2006|02:13] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft Games
[20/10/2008|12:49] C:\DOCUME~1\ADMINI~1\APPLIC~1\Mozilla
[07/12/2005|20:54] C:\DOCUME~1\ADMINI~1\APPLIC~1\MSNInstaller
[13/04/2008|22:20] C:\DOCUME~1\ADMINI~1\APPLIC~1\NCH Swift Sound
[08/08/2008|18:12] C:\DOCUME~1\ADMINI~1\APPLIC~1\Real
[31/07/2008|02:05] C:\DOCUME~1\ADMINI~1\APPLIC~1\Samsung
[25/05/2007|22:38] C:\DOCUME~1\ADMINI~1\APPLIC~1\Screenshot Sender
[30/07/2007|15:59] C:\DOCUME~1\ADMINI~1\APPLIC~1\ScummVM
[28/03/2007|22:09] C:\DOCUME~1\ADMINI~1\APPLIC~1\Skype
[26/06/2007|15:21] C:\DOCUME~1\ADMINI~1\APPLIC~1\STOIK
[12/12/2005|02:58] C:\DOCUME~1\ADMINI~1\APPLIC~1\Sun
[19/03/2006|22:28] C:\DOCUME~1\ADMINI~1\APPLIC~1\teamspeak2
[13/06/2006|05:23] C:\DOCUME~1\ADMINI~1\APPLIC~1\Ulead Systems
[09/01/2006|18:36] C:\DOCUME~1\ADMINI~1\APPLIC~1\vlc
[02/12/2008|00:40] C:\DOCUME~1\ADMINI~1\APPLIC~1\WinRAR
[23/08/2007|12:31] C:\DOCUME~1\ADMINI~1\APPLIC~1\Zylom
[21/10/2007|20:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Age of Empires 3
[08/12/2005|19:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[22/04/2007|22:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Azureus
[26/10/2008|00:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Blizzard
[14/07/2006|19:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[24/11/2008|20:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\EPSON
[30/04/2007|18:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[30/11/2008|19:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grid Blue Memo Site
[14/07/2006|19:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
[28/11/2008|20:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[03/12/2008|18:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[12/01/2008|19:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[13/04/2008|22:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NCH Swift Sound
[01/06/2007|13:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\OrbNetworks
[02/10/2007|08:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\rkfree
[22/08/2007|22:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sandlot Games
[25/01/2006|12:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[01/12/2008|19:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[22/08/2007|15:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Trymedia
[24/11/2008|20:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\UDL
[31/07/2008|02:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems
[16/08/2006|01:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WhiteCap (Holiday Edition)
[11/01/2006|02:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[31/07/2008|02:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WindowsLiveInstaller
[16/01/2008|17:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[23/08/2007|12:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom
[05/07/2007|10:10] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[04/08/2007|09:06] C:\DOCUME~1\INVIT~1\APPLIC~1\Identities
[04/08/2007|09:08] C:\DOCUME~1\INVIT~1\APPLIC~1\Macromedia
[04/08/2007|09:07] C:\DOCUME~1\INVIT~1\APPLIC~1\Microsoft
[04/08/2007|09:06] C:\DOCUME~1\INVIT~1\APPLIC~1\Real
[10/12/2006|13:26] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[07/12/2005|16:58] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[21/12/2008 18:03][--a------] C:\WINDOWS\tasks\Norton Security Scan.job
[23/12/2008 00:44][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 13:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ Listing des dossiers dans C:\Program Files
[01/12/2007|20:24] C:\Program Files\1964
[31/07/2008|02:17] C:\Program Files\7-Zip
[18/08/2006|00:34] C:\Program Files\aaascreensavers
[18/08/2006|00:34] C:\Program Files\AAAScreenSavers_WhenUSaveNow_Installer
[24/11/2008|20:24] C:\Program Files\ABBYY FineReader 6.0 Sprint
[08/11/2006|17:42] C:\Program Files\Activision
[09/12/2005|23:02] C:\Program Files\Adobe
[26/06/2007|12:30] C:\Program Files\Agfa
[12/03/2006|20:01] C:\Program Files\Ahead
[07/12/2005|21:36] C:\Program Files\Alwil Software
[07/12/2005|17:27] C:\Program Files\AMD
[30/11/2008|19:23] C:\Program Files\Another World
[01/05/2007|14:07] C:\Program Files\Anuman Interactive
[27/05/2008|18:42] C:\Program Files\Audacity
[22/04/2007|22:14] C:\Program Files\Azureus
[24/09/2007|21:45] C:\Program Files\BlackIsle
[17/07/2006|14:55] C:\Program Files\Boonty
[09/11/2006|15:40] C:\Program Files\BoontyGames
[10/12/2005|03:19] C:\Program Files\Bullfrog
[15/10/2007|18:18] C:\Program Files\Camfrog
[31/07/2008|02:15] C:\Program Files\CamStudio
[05/04/2006|22:21] C:\Program Files\CCleaner
[23/12/2005|23:58] C:\Program Files\Common Files
[07/12/2005|16:55] C:\Program Files\ComPlus Applications
[31/07/2008|02:13] C:\Program Files\DAP
[01/12/2007|21:01] C:\Program Files\DeliPlayer2
[28/06/2006|17:50] C:\Program Files\Diablo II
[12/12/2005|04:38] C:\Program Files\directx
[16/11/2007|00:05] C:\Program Files\DivX
[31/10/2007|18:46] C:\Program Files\DOSBox-0.63
[05/11/2007|18:02] C:\Program Files\Dreamcatcher Interactive
[15/02/2006|22:36] C:\Program Files\EA Games
[16/02/2006|21:04] C:\Program Files\Eidos Interactive
[10/09/2008|11:57] C:\Program Files\ElcomSoft
[18/12/2008|09:05] C:\Program Files\eMule
[24/11/2008|20:24] C:\Program Files\epson
[24/11/2008|20:25] C:\Program Files\Epson Software
[30/11/2008|20:28] C:\Program Files\ewido anti-malware
[07/11/2008|18:28] C:\Program Files\Fichiers communs
[28/06/2006|17:49] C:\Program Files\Giants
[01/05/2007|12:20] C:\Program Files\Google
[17/04/2006|23:28] C:\Program Files\Hewlett-Packard
[31/07/2008|01:55] C:\Program Files\HomeKeylogger
[16/01/2006|21:26] C:\Program Files\HP
[08/01/2006|18:32] C:\Program Files\HyperSnap 6
[30/11/2008|19:09] C:\Program Files\ICRAplus
[09/12/2005|22:11] C:\Program Files\Illustrate
[03/06/2006|23:16] C:\Program Files\Information Update
[01/12/2008|17:49] C:\Program Files\InstallShield Installation Information
[11/12/2008|14:08] C:\Program Files\Internet Explorer
[20/01/2006|18:21] C:\Program Files\INVENTEL
[08/12/2005|19:35] C:\Program Files\iPod
[08/12/2005|19:35] C:\Program Files\iTunes
[28/07/2008|15:19] C:\Program Files\Java
[17/11/2006|20:21] C:\Program Files\KAIN
[11/12/2005|18:37] C:\Program Files\Kpe
[21/12/2005|00:04] C:\Program Files\Lavasoft
[29/12/2005|02:23] C:\Program Files\Lionhead Studios Ltd
[04/06/2008|19:57] C:\Program Files\Logitech
[09/01/2006|04:20] C:\Program Files\LogProtect
[07/09/2006|19:50] C:\Program Files\LucasArts
[19/12/2008|01:10] C:\Program Files\Malwarebytes' Anti-Malware
[07/12/2007|18:53] C:\Program Files\Maxis
[14/07/2006|19:05] C:\Program Files\Mes Jeux T‚l‚charg‚s
[14/08/2008|11:07] C:\Program Files\Messenger
[30/11/2008|19:06] C:\Program Files\Messenger Plus! Live
[16/08/2006|17:30] C:\Program Files\Micro Application
[31/07/2008|02:00] C:\Program Files\Microids
[06/07/2007|11:06] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[07/12/2005|16:59] C:\Program Files\microsoft frontpage
[09/11/2006|15:39] C:\Program Files\Microsoft Games
[09/03/2007|06:46] C:\Program Files\Microsoft IntelliPoint
[09/03/2007|06:46] C:\Program Files\Microsoft IntelliType Pro
[18/03/2008|22:33] C:\Program Files\Microsoft Office
[16/01/2008|17:20] C:\Program Files\Microsoft SQL Server Compact Edition
[26/03/2007|20:36] C:\Program Files\Microsoft Works
[03/02/2006|15:00] C:\Program Files\Microsoft.NET
[05/08/2008|17:51] C:\Program Files\Movie Maker
[19/12/2008|21:41] C:\Program Files\Mozilla Firefox
[31/07/2008|02:07] C:\Program Files\MSECACHE
[07/12/2005|20:53] C:\Program Files\MSN
[07/12/2005|16:55] C:\Program Files\MSN Gaming Zone
[29/02/2008|00:47] C:\Program Files\MSN Messenger
[18/01/2006|18:58] C:\Program Files\Musetools
[28/11/2008|20:23] C:\Program Files\Navilog1
[31/07/2008|01:58] C:\Program Files\NCH Swift Sound
[12/09/2006|23:38] C:\Program Files\Neoact
[05/08/2008|17:48] C:\Program Files\NetMeeting
[21/12/2008|18:00] C:\Program Files\Norton Security Scan
[03/02/2006|15:52] C:\Program Files\OfficeUpdate11
[07/12/2005|16:55] C:\Program Files\Online Services
[23/10/2006|00:04] C:\Program Files\Ontrack
[01/06/2007|13:18] C:\Program Files\Orb Networks
[05/08/2008|17:48] C:\Program Files\Outlook Express
[01/12/2008|16:19] C:\Program Files\Panda Security
[31/07/2008|02:04] C:\Program Files\Philips
[21/12/2005|01:27] C:\Program Files\Plus!
[03/12/2007|22:44] C:\Program Files\Project64 1.6
[08/12/2005|19:35] C:\Program Files\QuickTime
[10/12/2005|16:06] C:\Program Files\Real
[10/01/2008|10:38] C:\Program Files\RKFree
[31/07/2008|01:56] C:\Program Files\Rumble Box
[02/01/2006|19:28] C:\Program Files\SAGEM
[31/07/2008|21:21] C:\Program Files\SAGEM Wi-Fi USB 802.11g
[20/09/2008|16:51] C:\Program Files\ScummVM
[25/09/2007|12:37] C:\Program Files\Securitoo
[07/12/2005|16:57] C:\Program Files\Services en ligne
[24/12/2005|20:20] C:\Program Files\Shiny
[25/01/2006|12:57] C:\Program Files\Skype
[15/03/2008|13:52] C:\Program Files\Slayers Online
[17/02/2007|00:56] C:\Program Files\Small Rockets
[27/03/2006|23:55] C:\Program Files\Smart Projects
[21/01/2007|17:46] C:\Program Files\Spybot - Search & Destroy
[31/07/2008|02:01] C:\Program Files\StepMania
[31/07/2008|01:58] C:\Program Files\Teamspeak2_RC2
[01/08/2007|11:36] C:\Program Files\The Silver Lining Demo RC1
[14/07/2006|19:18] C:\Program Files\Ubisoft
[13/06/2006|05:22] C:\Program Files\Ulead Systems
[07/12/2005|17:06] C:\Program Files\Uninstall Information
[21/09/2008|01:20] C:\Program Files\Unity
[02/12/2008|20:10] C:\Program Files\UsbFix
[08/07/2007|17:36] C:\Program Files\Vampire The Masquerade - Redemption
[09/01/2006|18:32] C:\Program Files\VideoLAN
[24/12/2005|03:51] C:\Program Files\VUGames
[23/12/2008|00:44] C:\Program Files\Wanadoo
[04/06/2007|17:21] C:\Program Files\Warcraft II BNE
[19/12/2005|08:03] C:\Program Files\Webteh
[31/07/2008|02:08] C:\Program Files\Winamp
[21/12/2005|00:39] C:\Program Files\WinCustomize
[27/02/2008|16:32] C:\Program Files\Windows Live
[20/07/2006|20:05] C:\Program Files\Windows Live Safety Center
[10/12/2006|01:02] C:\Program Files\Windows Media Connect 2
[05/08/2008|17:48] C:\Program Files\Windows Media Player
[05/08/2008|17:48] C:\Program Files\Windows NT
[07/12/2005|16:57] C:\Program Files\WindowsUpdate
[11/07/2006|13:32] C:\Program Files\WinRAR
[16/12/2008|00:10] C:\Program Files\World of Warcraft
[07/12/2005|16:59] C:\Program Files\xerox
[04/05/2007|08:58] C:\Program Files\YesMessenger
[08/12/2008|09:15] C:\Program Files\YouTUBE (TM) movie downloader
[31/07/2008|01:57] C:\Program Files\Zoom Player
[06/10/2007|20:49] C:\Program Files\Zylom Games
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[31/08/2007|22:42] C:\Program Files\Fichiers communs\Adobe
[12/03/2006|20:00] C:\Program Files\Fichiers communs\Ahead
[23/05/2008|14:24] C:\Program Files\Fichiers communs\Blizzard Entertainment
[03/02/2006|15:01] C:\Program Files\Fichiers communs\DESIGNER
[24/11/2008|19:53] C:\Program Files\Fichiers communs\EPSON
[19/12/2005|22:45] C:\Program Files\Fichiers communs\FotoWire
[16/01/2006|21:26] C:\Program Files\Fichiers communs\HP
[07/12/2005|17:23] C:\Program Files\Fichiers communs\InstallShield
[12/12/2005|02:55] C:\Program Files\Fichiers communs\Java
[19/12/2005|22:44] C:\Program Files\Fichiers communs\Logitech
[28/05/2008|15:30] C:\Program Files\Fichiers communs\Microsoft Shared
[07/12/2005|16:56] C:\Program Files\Fichiers communs\MSSoap
[08/12/2005|00:47] C:\Program Files\Fichiers communs\ODBC
[10/12/2005|16:06] C:\Program Files\Fichiers communs\Real
[07/12/2005|16:56] C:\Program Files\Fichiers communs\Services
[08/12/2005|00:47] C:\Program Files\Fichiers communs\SpeechEngines
[21/12/2005|00:39] C:\Program Files\Fichiers communs\Stardock
[09/11/2008|18:01] C:\Program Files\Fichiers communs\Symantec Shared
[05/08/2008|17:48] C:\Program Files\Fichiers communs\System
[16/01/2008|17:12] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[18/01/2006|18:51] C:\Program Files\Fichiers communs\Wise Installation Wizard
[10/12/2005|16:06] C:\Program Files\Fichiers communs\xing shared
--------------------\\ Process
( 47 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grid Blue Memo Site
--------------------\\ Verification du Registre
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-12-23 02:10:41
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 176
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:35][D:3]-> C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp
[F:105][D:0]-> C:\DOCUME~1\ADMINI~1\Cookies
[F:3579][D:22]-> C:\DOCUME~1\ADMINI~1\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 28/11/2008|18:01 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 28/11/2008|19:30 - Option : [2]
3 - "C:\Lop SD\LopR_3.txt" - 23/12/2008| 2:12 - Option : [1]
--------------------\\ Fin du rapport a 2:12:44
Re,
Tu la passer combien de fois?
1 - "C:\Lop SD\LopR_1.txt" - 28/11/2008|18:01 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 28/11/2008|19:30 - Option : [2]
3 - "C:\Lop SD\LopR_3.txt" - 23/12/2008| 2:12 - Option : [1]
Tu la passer combien de fois?
1 - "C:\Lop SD\LopR_1.txt" - 28/11/2008|18:01 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 28/11/2008|19:30 - Option : [2]
3 - "C:\Lop SD\LopR_3.txt" - 23/12/2008| 2:12 - Option : [1]
