Sujet Précédent Sujet Suivant

Comment enlever la pub CID

Fermé
romain35 Messages postés 67 Date d'inscription vendredi 29 octobre 2004 Statut Membre Dernière intervention 19 mars 2011 - 9 avril 2009 à 11:49
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 - 11 avril 2009 à 17:26
Bonjour,

A chaque fois une fenêtre de publicité qui vient à chaque fois qui est CID

Voici le scan !

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:46:41, on 09/04/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe
C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
C:\Program Files\Tele2\Common\FSMA32.EXE
C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLService.exe
c:\APPS\HIDSERVICE\HIDSERVICE.exe
C:\Program Files\Tele2\Common\FSMB32.EXE
C:\Program Files\Tele2\Common\FCH32.EXE
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Tele2\Common\FAMEH32.EXE
C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
c:\APPS\Powercinema\Kernel\TV\CLSched.exe
C:\Program Files\Tele2\FSPC\fspc.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Tele2\FSAUA\program\fsaua.exe
C:\Program Files\Tele2\FSAUA\program\fsus.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\PROGRA~1\GOTOSO~1\VADERE~1\Vaderetro_oe.exe
C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\monitor.exe
C:\Apps\Powercinema\PCMService.exe
C:\apps\ABoard\ABoard.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\QuickTime\qttask.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Tele2\Common\FSM32.EXE
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Nokia\Nokia Software Launcher\NSLauncher.exe
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe
C:\WINDOWS\system32\ctfmon.exe
C:\apps\ABoard\AOSD.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\OFFICE One6.5\OFFICE One Clock\ooneclockv65.exe
C:\Program Files\OFFICE One6.5\OFFICE One Notes\oonotesv65.exe
C:\Program Files\OFFICE One6.5\program\soffice.exe
C:\Program Files\Tele2\FSGUI\fsguidll.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Windows Live\Toolbar\wltuser.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Packard Bell
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: (no name) - {8F67E146-FB6C-418F-9FE5-37AA2206D92E} - C:\WINDOWS\system32\ljJBSklK.dll (file missing)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: {909041f4-f57c-4a9a-63c4-7ab5adffe8ca} - {ac8effda-5ba7-4c36-a9a4-c75f4f140909} - C:\WINDOWS\system32\hdjymr.dll
O2 - BHO: (no name) - {B5F6EB28-3B2C-47F0-B4EA-21FF267EF890} - C:\WINDOWS\system32\ddcAtsrq.dll (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [ATIPTA] "C:\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [Vade Retro Outlook Express] "C:\PROGRA~1\GOTOSO~1\VADERE~1\Vaderetro_oe.exe"
O4 - HKLM\..\Run: [Ulead AutoDetector v2] C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\monitor.exe
O4 - HKLM\..\Run: [PCMService] "c:\Apps\Powercinema\PCMService.exe"
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32"
O4 - HKLM\..\Run: [ACTIVBOARD] c:\apps\ABoard\ABoard.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [BOOT] C:\Program Files\ISSENDIS\ISSENDIS WebUpdate v6\issendiswebupdatev6.exe /BOOT
O4 - HKLM\..\Run: [delcourt] C:\delcourt\Pc.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\Tele2\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\Tele2\FSGUI\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKLM\..\Run: [e4e65373] rundll32.exe "C:\WINDOWS\system32\pozofohu.dll",b
O4 - HKLM\..\Run: [CPMe7d560ef] Rundll32.exe "c:\windows\system32\wayowemu.dll",a
O4 - HKLM\..\Run: [Flag Owns Live Grim] D:\Documents and Settings\All Users\Application Data\Software rule flag owns\lite curb.exe
O4 - HKLM\..\Run: [NSLauncher] C:\Program Files\Nokia\Nokia Software Launcher\NSLauncher.exe /startup
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [messengerskinner] D:\Documents and Settings\Mireille\Bureau\MessengerSkinner\MessengerSkinner.exe
O4 - HKCU\..\Run: [16Show] D:\DOCUME~1\Mireille\APPLIC~1\AXISOO~1\flag grey.exe
O4 - HKCU\..\Run: [qewmgai] "d:\documents and settings\mireille\local settings\application data\qewmgai.exe" qewmgai
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: OFFICE One 6.5.lnk = C:\Program Files\OFFICE One6.5\program\quickstart.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: OFFICE One Clock v6.5.lnk = C:\Program Files\OFFICE One6.5\OFFICE One Clock\ooneclockv65.exe
O4 - Global Startup: OFFICE One Notes v6.5.lnk = C:\Program Files\OFFICE One6.5\OFFICE One Notes\oonotesv65.exe
O9 - Extra button: Parental... - {200DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\Tele2\FSPC\fspcmsie.dll
O9 - Extra button: (no name) - {200DB664-75B5-47c0-8B45-A44ACCF73F01} - C:\Program Files\Tele2\FSPC\fspcmsie.dll
O9 - Extra 'Tools' menuitem: Parental... - {200DB664-75B5-47c0-8B45-A44ACCF73F01} - C:\Program Files\Tele2\FSPC\fspcmsie.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O14 - IERESET.INF: START_PAGE_URL=file://C:\APPS\IE\offline\fr.htm
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O20 - AppInit_DLLs: hdjymr.dll c:\windows\system32\wayowemu.dll c:\windows\system32\jihizeda.dll c:\windows\system32\pihenedo.dll
O20 - Winlogon Notify: ljJBSklK - ljJBSklK.dll (file missing)
O21 - SSODL: SSODL - {EC43E3FD-5C60-46a6-97D7-E0B85DBDD6C4} - c:\windows\system32\wayowemu.dll
O22 - SharedTaskScheduler: STS - {EC43E3FD-5C60-46a6-97D7-E0B85DBDD6C4} - c:\windows\system32\wayowemu.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLSched.exe
O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
O23 - Service: F-Secure Automatic Update Agent (FSAUA) - F-Secure Corporation - C:\Program Files\Tele2\FSAUA\program\fsaua.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\Tele2\Common\FSMA32.EXE
O23 - Service: Generic Service for HID Keyboard Input Collections (GenericHidService) - Unknown owner - c:\APPS\HIDSERVICE\HIDSERVICE.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LiveUpdate - Unknown owner - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE (file missing)
O23 - Service: MysqlInventime - Unknown owner - C:\Apps\INVENT~1\mysql\bin\mysqld-nt.exe
O23 - Service: Planificateur LiveUpdate automatique - Unknown owner - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (file missing)
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
A voir également:

68 réponses

Précédent
Réponse 61 / 68
romain35 Messages postés 67 Date d'inscription vendredi 29 octobre 2004 Statut Membre Dernière intervention 19 mars 2011 2
10 avril 2009 à 19:20
Voici le rapport

Info d'analyse
Fichiers scannés 142850
Infectés Fichiers 22

Virus Détectés
Adware.SpywareSecure.C 2
Trojan.Swizzor.2 3
Trojan.Swizzor.3 10
Gen:Adware.Heur.0141BEAEAE 2
Trojan.Swizzor.4 5

Cordialement,
romain
0
Réponse 62 / 68
Utilisateur anonyme
10 avril 2009 à 19:35
D'ou l'interet du scan en ligne (jlp ;) )

Il y a une infection Lop/Swizzor qui affiche des fenêtres de publicités "CiD". Elle s'installe via les logiciels suivants notamment, en contrepartie de leur dite « gratuité » :

Le sponsor de Messenger Plus!
Bittorent
BitDownload
BitGrabber
NetPumper
BitRoll
TorrentQ
Torrent101

Pour la supprimer, fais ceci :

Désactive ton antivirus.
Télécharge Lop S&D (créé par eric 71) sur ton Bureau : LOP SD
Double-clique dessus pour lancer l'installation
Double-clique sur le raccourci Lop S&D présent sur ton Bureau
Sélectionne la langue souhaitée, puis choisis l'option 1 (Recherche)
Patiente jusqu'à la fin du scan
Poste le rapport généré
Réactive ton antivirus

Tutoriel pour t’aider
0
Réponse 63 / 68
romain35 Messages postés 67 Date d'inscription vendredi 29 octobre 2004 Statut Membre Dernière intervention 19 mars 2011 2
10 avril 2009 à 19:41
re,

voici le rapport


--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) 64 Processor 3400+ )
BIOS : BIOS Date: 09/06/05 17:29:38 Ver: 08.00.12
USER : Mireille ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1296 [VPS 090409-0] 4.8.1296 (Not Activated)
C:\ (Local Disk) - NTFS - Total:29 Go (Free:18 Go)
D:\ (Local Disk) - NTFS - Total:148 Go (Free:144 Go)
E:\ (CD or DVD)
F:\ (USB)
G:\ (USB)
H:\ (USB)
I:\ (USB)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 10/04/2009|19:39 )

--------------------\\ Listing des dossiers dans APPLIC~1

[10/06/2008|18:23] D:\DOCUME~1\ALEXAN~1\APPLIC~1\Adobe
[01/11/2006|15:58] D:\DOCUME~1\ALEXAN~1\APPLIC~1\AdobeUM
[06/08/2006|12:27] D:\DOCUME~1\ALEXAN~1\APPLIC~1\CyberLink
[25/12/2007|15:47] D:\DOCUME~1\ALEXAN~1\APPLIC~1\Google
[05/04/2006|18:03] D:\DOCUME~1\ALEXAN~1\APPLIC~1\Help
[14/08/2008|13:02] D:\DOCUME~1\ALEXAN~1\APPLIC~1\HP
[29/11/2005|19:04] D:\DOCUME~1\ALEXAN~1\APPLIC~1\Identities
[22/02/2006|22:28] D:\DOCUME~1\ALEXAN~1\APPLIC~1\Image Zone Express
[02/05/2006|16:33] D:\DOCUME~1\ALEXAN~1\APPLIC~1\Leadertech
[26/07/2006|11:51] D:\DOCUME~1\ALEXAN~1\APPLIC~1\Macromedia
[01/03/2009|14:43] D:\DOCUME~1\ALEXAN~1\APPLIC~1\Microsoft
[15/07/2008|21:39] D:\DOCUME~1\ALEXAN~1\APPLIC~1\Mozilla
[07/04/2009|19:06] D:\DOCUME~1\ALEXAN~1\APPLIC~1\Nokia
[19/02/2006|18:14] D:\DOCUME~1\ALEXAN~1\APPLIC~1\OD2
[22/02/2006|22:08] D:\DOCUME~1\ALEXAN~1\APPLIC~1\OFFICE One v6
[07/04/2009|19:06] D:\DOCUME~1\ALEXAN~1\APPLIC~1\PC Suite
[02/04/2007|12:22] D:\DOCUME~1\ALEXAN~1\APPLIC~1\Real
[02/05/2006|16:33] D:\DOCUME~1\ALEXAN~1\APPLIC~1\Sonic
[22/12/2007|00:03] D:\DOCUME~1\ALEXAN~1\APPLIC~1\Sun
[19/04/2006|14:02] D:\DOCUME~1\ALEXAN~1\APPLIC~1\Symantec
[16/07/2007|16:26] D:\DOCUME~1\ALEXAN~1\APPLIC~1\VadeRetro
[03/02/2008|20:40] D:\DOCUME~1\ALEXAN~1\APPLIC~1\WildTangent
[29/11/2005|19:04] D:\DOCUME~1\ALEXAN~1\APPLIC~1\You've Got Pictures Screensaver

[05/03/2008|15:29] D:\DOCUME~1\Alicia\APPLIC~1\Adobe
[17/08/2006|17:45] D:\DOCUME~1\Alicia\APPLIC~1\AdobeUM
[09/03/2007|20:36] D:\DOCUME~1\Alicia\APPLIC~1\CyberLink
[26/01/2008|14:53] D:\DOCUME~1\Alicia\APPLIC~1\Google
[27/02/2006|18:11] D:\DOCUME~1\Alicia\APPLIC~1\Help
[03/02/2007|21:46] D:\DOCUME~1\Alicia\APPLIC~1\HP
[29/11/2005|19:04] D:\DOCUME~1\Alicia\APPLIC~1\Identities
[24/02/2006|21:15] D:\DOCUME~1\Alicia\APPLIC~1\Image Zone Express
[24/02/2006|18:51] D:\DOCUME~1\Alicia\APPLIC~1\Leadertech
[29/11/2005|19:04] D:\DOCUME~1\Alicia\APPLIC~1\Macromedia
[26/04/2008|14:48] D:\DOCUME~1\Alicia\APPLIC~1\Magic Academy
[19/12/2008|19:18] D:\DOCUME~1\Alicia\APPLIC~1\Microsoft
[18/07/2008|17:01] D:\DOCUME~1\Alicia\APPLIC~1\Mozilla
[16/02/2006|15:13] D:\DOCUME~1\Alicia\APPLIC~1\OD2
[22/02/2006|21:50] D:\DOCUME~1\Alicia\APPLIC~1\OFFICE One v6
[29/11/2005|19:04] D:\DOCUME~1\Alicia\APPLIC~1\Real
[24/02/2006|18:51] D:\DOCUME~1\Alicia\APPLIC~1\Sonic
[21/12/2007|22:59] D:\DOCUME~1\Alicia\APPLIC~1\Sun
[20/04/2006|18:24] D:\DOCUME~1\Alicia\APPLIC~1\Symantec
[18/03/2006|20:25] D:\DOCUME~1\Alicia\APPLIC~1\Ulead Systems
[29/11/2005|19:04] D:\DOCUME~1\Alicia\APPLIC~1\You've Got Pictures Screensaver

[22/03/2009|17:17] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[20/01/2008|20:56] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Alawar Stargaze
[29/01/2008|15:34] D:\DOCUME~1\ALLUSE~1\APPLIC~1\AlawarGameBox
[27/02/2008|18:28] D:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL
[08/08/2008|22:18] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Astar Games
[27/04/2008|16:55] D:\DOCUME~1\ALLUSE~1\APPLIC~1\BigFishGamesCache
[19/03/2008|10:28] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Christmasville
[15/02/2008|23:53] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Ciel
[29/11/2005|19:03] D:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[30/07/2008|16:22] D:\DOCUME~1\ALLUSE~1\APPLIC~1\eGames
[17/01/2008|10:46] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Enkord
[18/01/2008|10:21] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Escape From Paradise
[04/08/2008|21:59] D:\DOCUME~1\ALLUSE~1\APPLIC~1\EscapeTheMuseum
[23/06/2008|11:26] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Flood Light Games
[12/02/2008|17:32] D:\DOCUME~1\ALLUSE~1\APPLIC~1\FloodLightGames
[30/01/2008|19:04] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Friends Games
[01/03/2008|15:14] D:\DOCUME~1\ALLUSE~1\APPLIC~1\F-Secure
[01/03/2008|15:14] D:\DOCUME~1\ALLUSE~1\APPLIC~1\fssg
[15/08/2008|22:56] D:\DOCUME~1\ALLUSE~1\APPLIC~1\GameHouse
[07/07/2008|22:56] D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar
[25/06/2008|22:32] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Genimo
[16/09/2008|10:46] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Gogii
[24/07/2008|21:25] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Gogii Games
[22/12/2007|19:53] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[01/08/2008|23:11] D:\DOCUME~1\ALLUSE~1\APPLIC~1\HiddenSecretsNightmare
[11/02/2006|23:09] D:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[02/07/2008|16:35] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Intenium
[16/06/2008|15:02] D:\DOCUME~1\ALLUSE~1\APPLIC~1\JollyBear
[09/04/2009|17:05] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[09/04/2009|19:03] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[21/02/2009|13:15] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[08/04/2008|00:08] D:\DOCUME~1\ALLUSE~1\APPLIC~1\MonteCristo
[12/06/2008|16:07] D:\DOCUME~1\ALLUSE~1\APPLIC~1\MumboJumbo
[18/06/2008|16:40] D:\DOCUME~1\ALLUSE~1\APPLIC~1\My Games
[14/11/2008|12:24] D:\DOCUME~1\ALLUSE~1\APPLIC~1\MythPeople
[24/01/2009|19:52] D:\DOCUME~1\ALLUSE~1\APPLIC~1\NeptunesAdve
[22/03/2009|17:19] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Nokia
[23/06/2008|16:59] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Oberon Media
[29/11/2005|19:03] D:\DOCUME~1\ALLUSE~1\APPLIC~1\OD2
[09/04/2009|11:02] D:\DOCUME~1\ALLUSE~1\APPLIC~1\PC Suite
[05/08/2008|15:39] D:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst
[10/06/2008|21:48] D:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayPond
[29/11/2005|19:03] D:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[22/05/2008|17:09] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Sandlot Games
[29/11/2005|19:03] D:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[29/07/2008|22:14] D:\DOCUME~1\ALLUSE~1\APPLIC~1\ScreenSeven
[02/09/2007|18:42] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[27/08/2008|12:10] D:\DOCUME~1\ALLUSE~1\APPLIC~1\SpinTop Games
[08/08/2008|23:33] D:\DOCUME~1\ALLUSE~1\APPLIC~1\SugarGames
[03/02/2008|02:46] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[17/08/2008|15:53] D:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[10/02/2008|01:03] D:\DOCUME~1\ALLUSE~1\APPLIC~1\The Game Equation
[14/03/2008|10:35] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Trymedia
[29/11/2005|19:04] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems
[29/11/2005|19:04] D:\DOCUME~1\ALLUSE~1\APPLIC~1\VadeRetro
[16/02/2008|00:11] D:\DOCUME~1\ALLUSE~1\APPLIC~1\WildTangent
[22/12/2007|19:51] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[02/01/2009|18:56] D:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[04/03/2008|10:24] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom

[29/11/2005|19:04] D:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[29/11/2005|19:04] D:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
[29/11/2005|19:04] D:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[29/11/2005|19:04] D:\DOCUME~1\DEFAUL~1\APPLIC~1\Real
[28/11/2005|03:44] D:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec
[29/11/2005|19:04] D:\DOCUME~1\DEFAUL~1\APPLIC~1\You've Got Pictures Screensaver

[17/03/2008|22:10] D:\DOCUME~1\DOMINI~1\APPLIC~1\Adobe
[29/07/2008|21:49] D:\DOCUME~1\DOMINI~1\APPLIC~1\Big Fish Games
[22/02/2006|19:06] D:\DOCUME~1\DOMINI~1\APPLIC~1\CyberLink
[31/07/2008|17:46] D:\DOCUME~1\DOMINI~1\APPLIC~1\eGames
[02/03/2008|12:13] D:\DOCUME~1\DOMINI~1\APPLIC~1\F-Secure
[28/02/2006|20:23] D:\DOCUME~1\DOMINI~1\APPLIC~1\Help
[22/02/2006|19:33] D:\DOCUME~1\DOMINI~1\APPLIC~1\HP
[19/12/2008|14:21] D:\DOCUME~1\DOMINI~1\APPLIC~1\Identities
[22/02/2006|22:46] D:\DOCUME~1\DOMINI~1\APPLIC~1\Image Zone Express
[20/02/2006|01:14] D:\DOCUME~1\DOMINI~1\APPLIC~1\Leadertech
[05/01/2008|23:30] D:\DOCUME~1\DOMINI~1\APPLIC~1\LimeWire
[29/11/2005|19:04] D:\DOCUME~1\DOMINI~1\APPLIC~1\Macromedia
[01/03/2009|21:40] D:\DOCUME~1\DOMINI~1\APPLIC~1\Microsoft
[07/07/2008|14:33] D:\DOCUME~1\DOMINI~1\APPLIC~1\Mozilla
[29/03/2009|10:24] D:\DOCUME~1\DOMINI~1\APPLIC~1\Nokia
[12/02/2006|13:19] D:\DOCUME~1\DOMINI~1\APPLIC~1\OD2
[22/02/2006|20:45] D:\DOCUME~1\DOMINI~1\APPLIC~1\OFFICE One v6
[29/03/2009|10:24] D:\DOCUME~1\DOMINI~1\APPLIC~1\PC Suite
[29/11/2005|19:04] D:\DOCUME~1\DOMINI~1\APPLIC~1\Real
[31/07/2008|17:46] D:\DOCUME~1\DOMINI~1\APPLIC~1\SecuROM
[22/02/2006|19:10] D:\DOCUME~1\DOMINI~1\APPLIC~1\Sonic
[22/02/2006|19:37] D:\DOCUME~1\DOMINI~1\APPLIC~1\Sun
[12/02/2006|13:15] D:\DOCUME~1\DOMINI~1\APPLIC~1\Symantec
[14/05/2006|17:19] D:\DOCUME~1\DOMINI~1\APPLIC~1\VadeRetro
[29/11/2005|19:04] D:\DOCUME~1\DOMINI~1\APPLIC~1\You've Got Pictures Screensaver
[19/12/2008|14:21] D:\DOCUME~1\DOMINI~1\APPLIC~1\Zylom

[23/12/2007|21:20] D:\DOCUME~1\Floriane\APPLIC~1\Adobe
[28/02/2006|17:28] D:\DOCUME~1\Floriane\APPLIC~1\AdobeUM
[16/03/2006|22:06] D:\DOCUME~1\Floriane\APPLIC~1\CyberLink
[28/02/2006|17:00] D:\DOCUME~1\Floriane\APPLIC~1\Help
[22/05/2006|18:11] D:\DOCUME~1\Floriane\APPLIC~1\HP
[29/11/2005|19:04] D:\DOCUME~1\Floriane\APPLIC~1\Identities
[27/12/2006|18:56] D:\DOCUME~1\Floriane\APPLIC~1\Macromedia
[26/02/2008|20:24] D:\DOCUME~1\Floriane\APPLIC~1\Microsoft
[05/12/2008|23:30] D:\DOCUME~1\Floriane\APPLIC~1\Mozilla
[12/02/2006|20:34] D:\DOCUME~1\Floriane\APPLIC~1\OD2
[05/05/2007|16:13] D:\DOCUME~1\Floriane\APPLIC~1\Real
[16/02/2006|10:46] D:\DOCUME~1\Floriane\APPLIC~1\Sun
[21/04/2006|16:21] D:\DOCUME~1\Floriane\APPLIC~1\Symantec
[25/05/2006|22:37] D:\DOCUME~1\Floriane\APPLIC~1\Ulead Systems
[16/03/2006|23:05] D:\DOCUME~1\Floriane\APPLIC~1\VadeRetro
[29/11/2005|19:04] D:\DOCUME~1\Floriane\APPLIC~1\You've Got Pictures Screensaver

[29/11/2005|19:04] D:\DOCUME~1\INVIT~1\APPLIC~1\Identities
[29/11/2005|19:04] D:\DOCUME~1\INVIT~1\APPLIC~1\Macromedia
[29/11/2005|19:04] D:\DOCUME~1\INVIT~1\APPLIC~1\Microsoft
[29/11/2005|19:04] D:\DOCUME~1\INVIT~1\APPLIC~1\Real
[28/11/2005|03:44] D:\DOCUME~1\INVIT~1\APPLIC~1\Symantec
[29/11/2005|19:04] D:\DOCUME~1\INVIT~1\APPLIC~1\You've Got Pictures Screensaver

[29/11/2005|19:04] D:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[11/02/2008|00:45] D:\DOCUME~1\Mireille\APPLIC~1\Abra Academy2
[22/03/2009|17:17] D:\DOCUME~1\Mireille\APPLIC~1\Adobe
[27/02/2006|15:53] D:\DOCUME~1\Mireille\APPLIC~1\AdobeUM
[03/06/2008|16:13] D:\DOCUME~1\Mireille\APPLIC~1\AlwaysNeat
[19/08/2008|12:38] D:\DOCUME~1\Mireille\APPLIC~1\Ancient Quest of Saqqarah__reflexive
[02/07/2008|16:24] D:\DOCUME~1\Mireille\APPLIC~1\Big Fish Games
[02/11/2008|17:15] D:\DOCUME~1\Mireille\APPLIC~1\BloodTies
[05/02/2008|17:17] D:\DOCUME~1\Mireille\APPLIC~1\Boomzap
[25/11/2008|00:35] D:\DOCUME~1\Mireille\APPLIC~1\Canvas Multi-Media
[07/02/2008|17:49] D:\DOCUME~1\Mireille\APPLIC~1\CaribbeanHideaway
[26/07/2008|18:45] D:\DOCUME~1\Mireille\APPLIC~1\cerasus.media
[21/04/2006|14:43] D:\DOCUME~1\Mireille\APPLIC~1\CyberLink
[09/02/2008|23:44] D:\DOCUME~1\Mireille\APPLIC~1\DiVision Studios - Escaping Atlantis
[08/05/2008|14:42] D:\DOCUME~1\Mireille\APPLIC~1\DivX
[30/07/2008|16:21] D:\DOCUME~1\Mireille\APPLIC~1\eGames
[23/06/2008|11:26] D:\DOCUME~1\Mireille\APPLIC~1\Flood Light Games
[12/02/2008|17:32] D:\DOCUME~1\Mireille\APPLIC~1\FloodLightGames
[01/03/2008|15:21] D:\DOCUME~1\Mireille\APPLIC~1\F-Secure
[07/06/2008|12:21] D:\DOCUME~1\Mireille\APPLIC~1\funkitron
[02/07/2008|15:06] D:\DOCUME~1\Mireille\APPLIC~1\Gaijin Ent
[19/06/2008|14:33] D:\DOCUME~1\Mireille\APPLIC~1\gemsweeperextractedgfx
[25/06/2008|22:28] D:\DOCUME~1\Mireille\APPLIC~1\Genimo
[24/07/2008|21:25] D:\DOCUME~1\Mireille\APPLIC~1\Gogii Games
[23/12/2007|22:27] D:\DOCUME~1\Mireille\APPLIC~1\Google
[28/02/2006|14:48] D:\DOCUME~1\Mireille\APPLIC~1\Help
[29/05/2006|13:37] D:\DOCUME~1\Mireille\APPLIC~1\HP
[26/02/2009|11:21] D:\DOCUME~1\Mireille\APPLIC~1\Identities
[11/06/2008|11:29] D:\DOCUME~1\Mireille\APPLIC~1\Image Zone Express
[16/10/2008|21:31] D:\DOCUME~1\Mireille\APPLIC~1\iWin
[15/02/2006|11:43] D:\DOCUME~1\Mireille\APPLIC~1\Leadertech
[01/03/2008|00:05] D:\DOCUME~1\Mireille\APPLIC~1\LimeWire
[07/05/2008|15:57] D:\DOCUME~1\Mireille\APPLIC~1\Macromedia
[15/05/2008|23:37] D:\DOCUME~1\Mireille\APPLIC~1\Magic Academy
[09/04/2009|17:05] D:\DOCUME~1\Mireille\APPLIC~1\Malwarebytes
[22/02/2009|13:51] D:\DOCUME~1\Mireille\APPLIC~1\Microsoft
[09/04/2009|13:37] D:\DOCUME~1\Mireille\APPLIC~1\Mozilla
[02/01/2009|18:40] D:\DOCUME~1\Mireille\APPLIC~1\MSNInstaller
[03/06/2008|14:56] D:\DOCUME~1\Mireille\APPLIC~1\MythicPearls
[22/03/2009|17:47] D:\DOCUME~1\Mireille\APPLIC~1\Nokia
[25/02/2008|18:11] D:\DOCUME~1\Mireille\APPLIC~1\Notepad++
[12/02/2006|21:02] D:\DOCUME~1\Mireille\APPLIC~1\OD2
[22/01/2007|14:18] D:\DOCUME~1\Mireille\APPLIC~1\OFFICE One v6
[22/03/2009|17:16] D:\DOCUME~1\Mireille\APPLIC~1\PC Suite
[28/06/2008|19:52] D:\DOCUME~1\Mireille\APPLIC~1\Pirateville
[09/07/2008|21:48] D:\DOCUME~1\Mireille\APPLIC~1\PlayFirst
[22/03/2008|23:44] D:\DOCUME~1\Mireille\APPLIC~1\Pogo Games
[19/03/2009|16:00] D:\DOCUME~1\Mireille\APPLIC~1\PowerChallenge
[15/03/2008|20:04] D:\DOCUME~1\Mireille\APPLIC~1\Printer Info Cache
[01/10/2006|13:48] D:\DOCUME~1\Mireille\APPLIC~1\Real
[16/11/2008|17:00] D:\DOCUME~1\Mireille\APPLIC~1\RealArcade
[28/06/2008|12:09] D:\DOCUME~1\Mireille\APPLIC~1\SecuROM
[12/01/2009|11:28] D:\DOCUME~1\Mireille\APPLIC~1\Skip-Bo
[21/04/2006|14:36] D:\DOCUME~1\Mireille\APPLIC~1\Sonic
[19/09/2008|14:20] D:\DOCUME~1\Mireille\APPLIC~1\SpinTop Games
[22/09/2008|15:43] D:\DOCUME~1\Mireille\APPLIC~1\SprillBermudeEng
[27/06/2008|10:55] D:\DOCUME~1\Mireille\APPLIC~1\SprillBermudeFr
[19/12/2007|01:19] D:\DOCUME~1\Mireille\APPLIC~1\Sun
[18/04/2006|09:26] D:\DOCUME~1\Mireille\APPLIC~1\Symantec
[01/08/2008|16:36] D:\DOCUME~1\Mireille\APPLIC~1\TheScruffs
[27/12/2006|18:05] D:\DOCUME~1\Mireille\APPLIC~1\Ulead Systems
[01/02/2008|08:54] D:\DOCUME~1\Mireille\APPLIC~1\URSE Games
[13/04/2006|13:52] D:\DOCUME~1\Mireille\APPLIC~1\VadeRetro
[10/04/2009|11:50] D:\DOCUME~1\Mireille\APPLIC~1\vlc
[29/11/2005|19:04] D:\DOCUME~1\Mireille\APPLIC~1\You've Got Pictures Screensaver
[26/02/2009|11:21] D:\DOCUME~1\Mireille\APPLIC~1\Zylom

[19/12/2007|22:28] D:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[18/12/2007|13:17] D:\DOCUME~1\NETWOR~1\APPLIC~1\Symantec

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[10/04/2009 11:19][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 15:00][-rah-c---] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[17/08/2008|15:28] C:\Program Files\10 Jours Sous Les Mers
[24/07/2007|14:51] C:\Program Files\3DRTBrickBlaster
[27/04/2008|15:41] C:\Program Files\absolutist.com
[27/04/2008|15:44] C:\Program Files\Absolutist_Games
[22/03/2009|17:17] C:\Program Files\Adobe
[09/04/2009|18:36] C:\Program Files\Ad-remover
[10/04/2009|11:50] C:\Program Files\adslTV
[15/02/2008|23:56] C:\Program Files\Alawar
[22/12/2007|19:00] C:\Program Files\Alwil Software
[29/11/2005|18:56] C:\Program Files\AMD
[16/05/2006|17:49] C:\Program Files\Another Day
[01/05/2008|14:57] C:\Program Files\AOL Games
[27/04/2008|16:54] C:\Program Files\bfgclient
[09/04/2009|18:24] C:\Program Files\CCleaner
[29/11/2005|18:56] C:\Program Files\ComPlus Applications
[25/05/2008|18:11] C:\Program Files\Cossacks
[29/11/2005|18:56] C:\Program Files\CyberLink
[22/03/2009|17:14] C:\Program Files\DIFX
[14/03/2006|11:48] C:\Program Files\directx
[03/01/2009|16:00] C:\Program Files\DivX
[23/10/2007|20:08] C:\Program Files\DK
[23/03/2008|01:44] C:\Program Files\DXBall2
[15/02/2008|23:55] C:\Program Files\Escape From Paradise
[09/04/2009|20:00] C:\Program Files\Fichiers communs
[05/11/2006|15:47] C:\Program Files\Firaxis Games
[09/04/2009|19:39] C:\Program Files\GamesBar
[29/11/2005|18:56] C:\Program Files\GMixon
[29/11/2005|18:56] C:\Program Files\Goto Software
[11/02/2006|23:08] C:\Program Files\Hewlett-Packard
[01/01/2008|16:11] C:\Program Files\HP
[02/01/2009|20:52] C:\Program Files\InstallShield Installation Information
[10/04/2009|01:40] C:\Program Files\Internet Explorer
[22/02/2006|20:22] C:\Program Files\ISSENDIS
[09/04/2009|11:09] C:\Program Files\Java
[22/04/2006|14:08] C:\Program Files\Kristanix
[28/11/2006|19:13] C:\Program Files\Lasermedia
[29/11/2005|18:56] C:\Program Files\Learn2.com
[10/02/2009|19:12] C:\Program Files\Maxis
[10/04/2009|01:26] C:\Program Files\Messenger
[09/04/2009|18:47] C:\Program Files\Messenger Plus! Live
[30/01/2009|23:49] C:\Program Files\Micro Application
[02/01/2009|19:07] C:\Program Files\Microsoft
[22/12/2007|21:47] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[29/11/2005|18:56] C:\Program Files\microsoft frontpage
[10/04/2009|01:43] C:\Program Files\Microsoft Silverlight
[21/02/2009|13:15] C:\Program Files\Microsoft SQL Server Compact Edition
[21/02/2009|13:16] C:\Program Files\Microsoft Sync Framework
[14/08/2008|20:00] C:\Program Files\Mindscape
[08/08/2006|11:57] C:\Program Files\Montparnasse multimedia - GEO
[10/04/2009|01:26] C:\Program Files\Movie Maker
[10/04/2009|19:33] C:\Program Files\Mozilla Firefox
[02/01/2009|18:40] C:\Program Files\MSN
[29/11/2005|18:56] C:\Program Files\MSN Gaming Zone
[09/04/2009|11:51] C:\Program Files\MSN Messenger
[19/12/2007|22:25] C:\Program Files\MSXML 4.0
[09/04/2009|15:33] C:\Program Files\Navilog1
[10/04/2009|01:23] C:\Program Files\NetMeeting
[22/03/2009|17:19] C:\Program Files\Nokia
[29/11/2005|18:56] C:\Program Files\Norman
[25/02/2008|18:11] C:\Program Files\Notepad++
[16/02/2008|00:08] C:\Program Files\OFFICE One6.5
[20/03/2008|11:24] C:\Program Files\orange
[10/04/2009|01:23] C:\Program Files\Outlook Express
[18/11/2008|22:09] C:\Program Files\Oxygene V14a
[22/03/2009|17:14] C:\Program Files\PC Connectivity Solution
[26/02/2008|11:28] C:\Program Files\PopUp Destroy
[09/12/2007|13:34] C:\Program Files\QuickTime
[16/02/2008|00:13] C:\Program Files\Readiris Pro 8
[22/04/2006|14:18] C:\Program Files\Real
[17/01/2008|10:44] C:\Program Files\ReflexiveArcade
[27/02/2006|16:32] C:\Program Files\Rockstar Games
[12/06/2007|21:58] C:\Program Files\Services en ligne
[29/11/2005|19:00] C:\Program Files\ShowTime
[22/03/2009|17:18] C:\Program Files\SimpleCenter
[29/11/2005|18:56] C:\Program Files\Sonic
[03/02/2008|02:44] C:\Program Files\Symantec
[09/04/2009|13:21] C:\Program Files\TELE2
[25/02/2008|01:44] C:\Program Files\Téléchargeur de FlatOut2
[24/05/2006|12:50] C:\Program Files\TFC
[16/02/2008|00:11] C:\Program Files\The Wonderful Wizard Of Oz
[09/04/2009|11:46] C:\Program Files\Trend Micro
[29/11/2005|18:56] C:\Program Files\Ulead Systems
[29/11/2005|18:56] C:\Program Files\Uninstall Information
[20/02/2007|11:49] C:\Program Files\Wanadoo Edition
[09/04/2009|13:36] C:\Program Files\Windows Live
[02/01/2009|19:06] C:\Program Files\Windows Live SkyDrive
[29/11/2005|18:56] C:\Program Files\Windows Media Components
[27/02/2008|18:23] C:\Program Files\Windows Media Connect 2
[10/04/2009|01:23] C:\Program Files\Windows Media Player
[03/01/2009|18:01] C:\Program Files\Windows NT
[29/11/2005|18:56] C:\Program Files\WindowsUpdate
[29/11/2005|18:56] C:\Program Files\xerox
[09/04/2009|18:37] C:\Program Files\Zylom Games

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[13/04/2008|14:20] C:\Program Files\Fichiers communs\Adobe
[27/02/2008|18:28] C:\Program Files\Fichiers communs\AOL
[22/02/2006|20:21] C:\Program Files\Fichiers communs\Borland Shared
[11/02/2006|23:07] C:\Program Files\Fichiers communs\Hewlett-Packard
[01/01/2008|16:11] C:\Program Files\Fichiers communs\HP
[22/03/2009|17:18] C:\Program Files\Fichiers communs\i4j_jres
[16/10/2007|17:29] C:\Program Files\Fichiers communs\InstallShield
[29/11/2005|18:56] C:\Program Files\Fichiers communs\Java
[09/04/2009|19:50] C:\Program Files\Fichiers communs\MainConcept
[21/02/2009|13:14] C:\Program Files\Fichiers communs\Microsoft Shared
[29/11/2005|18:56] C:\Program Files\Fichiers communs\MSSoap
[22/03/2009|17:19] C:\Program Files\Fichiers communs\Nokia
[29/11/2005|18:56] C:\Program Files\Fichiers communs\Nullsoft
[10/06/2008|22:50] C:\Program Files\Fichiers communs\Oberon Media
[29/11/2005|18:56] C:\Program Files\Fichiers communs\ODBC
[22/03/2009|17:15] C:\Program Files\Fichiers communs\PCSuite
[29/11/2005|18:56] C:\Program Files\Fichiers communs\Real
[29/11/2005|18:58] C:\Program Files\Fichiers communs\Services
[29/11/2005|18:58] C:\Program Files\Fichiers communs\Sonic Shared
[29/11/2005|18:56] C:\Program Files\Fichiers communs\SpeechEngines
[29/11/2005|18:58] C:\Program Files\Fichiers communs\SureThing Shared
[03/02/2008|02:46] C:\Program Files\Fichiers communs\Symantec Shared
[10/04/2009|01:23] C:\Program Files\Fichiers communs\System
[29/11/2005|18:56] C:\Program Files\Fichiers communs\Ulead Systems
[02/01/2009|18:59] C:\Program Files\Fichiers communs\Windows Live
[22/12/2007|19:00] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[29/11/2005|18:56] C:\Program Files\Fichiers communs\xing shared

--------------------\\ Process

( 52 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-04-10 19:40:13
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
folder error: D:\DOCUME~1\Mireille\LOCALS~1\APPLIC~1

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:4][D:2]-> D:\DOCUME~1\Mireille\LOCALS~1\Temp
[F:2][D:0]-> D:\DOCUME~1\Mireille\Cookies
[F:2][D:1]-> D:\DOCUME~1\Mireille\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 10/04/2009|19:40 - Option : [1]

--------------------\\ Fin du rapport a 19:40:56


Cordialement,
romain
0
Réponse 64 / 68
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 5 040
10 avril 2009 à 21:55
je passe après le boulot chargé! et demain ne sera peut etre pas mieux :)

tout est dis par lyonnais92



si je n'oublie rien:
____________________

analyse ce fichier

c:\windows\system32\sirenacm.dll

sur virus total , si impossible sur un des deux liens suivant et colle le rapport

https://www.virustotal.com/gui/
https://virusscan.jotti.org/
http://scanner.virus.org/


et si infecté tu le rajoute dans la partie :files de otmovit3
_______________________

télécharge OTMoveIt
http://oldtimer.geekstogo.com/OTMoveIt3.exe (de Old_Timer) sur ton Bureau.

double-clique sur OTMoveIt.exe pour le lancer.
copie la liste qui se trouve en citation ci-dessous,
et colle-la dans le cadre de gauche de OTMoveIt :Paste instruction for items to be moved.
(attention bien mettre :files)

:files
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar
c:\windows\system32\nmwcdcls.dll
c:\windows\system32\fokitape.dll
c:\windows\system32\litikusi.dll
c:\windows\system32\teyesiti.dll
c:\windows\system32\wayebomi.dll
c:\windows\system32\fibikavi.dll
c:\windows\system32\sidehole.dll
c:\windows\system32\birokone.dll
c:\windows\system32\refadojo.dll
C:\WINDOWS\system32\dulosilo.dll.tmp
c:\windows\system32\hedafatu.dll
c:\windows\system32\dulosilo.dll
c:\windows\system32\yupabuse.dll
c:\windows\system32\tubiwewa.dll
c:\windows\system32\godidusa.dll
c:\windows\system32\gotafahu.dll
c:\windows\system32\lejivaya.dll
c:\windows\system32\nahilifo.dll
c:\windows\system32\nonowoda.dll
:commands
[purity]
[emptytemp]
[start explorer]


clique sur MoveIt! pour lancer la suppression.
le résultat apparaitra dans le cadre "Results".
clique sur Exit pour fermer.
poste le rapport situé dans C:\_OTMoveIt\MovedFiles.

il te sera peut-être demander de redémarrer le pc pour achever la suppression.si c'est le cas accepte par Yes.

_______________



pour le rapport du message 63 il faudrait le rapport complet pour voir le lieu des infections ! car les infections sont peu être dans la restauration ou ont été mises en quarantaine par combofix...




si il reste des infections CID/lop non trouvées par lop sd il faudra passer lop xp par exemple ou les virer avec otmovit mais il faudrait un rapport complet


bonne suite
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 65 / 68
Utilisateur anonyme
10 avril 2009 à 22:03
slt lyonnais
je viens de voir ton post :) car il y'en avait eu entre temps

je m'immisce car 15 mn de recherche sur le web résolvent la majorité des fichiers

autant pour moi, dsl de ne pas avoir passé 15 min sur le web :(
la prochaine fois , je ferais attention :)



0
Réponse 66 / 68
romain35 Messages postés 67 Date d'inscription vendredi 29 octobre 2004 Statut Membre Dernière intervention 19 mars 2011 2
11 avril 2009 à 08:02
Bonjour,

voici le rapport pour c:\windows\system32\sirenacm.dll

MD5: e5830533c13f30407e76c0584778aa4d
First received: -
Date 2009.03.25 23:14:09 (CET) [>16D]
Résultats 0/40
Permalink: http://www.virustotal.com/fr/analisis/1d09165186c842a557fdd290dc8f9b6c

EDIT voici le rapport

========== FILES ==========
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-07-07-22-56-01 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-07-07-14-47-38 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-07-04-17-16-40 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-07-03-17-25-22 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-07-01-17-43-40 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-07-01-17-31-03 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-06-30-17-08-43 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-06-26-18-15-10 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-06-25-14-11-07 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-06-25-12-25-32 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-06-24-11-02-18 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-06-22-18-17-37 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-06-14-18-19-12 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-06-14-13-33-35 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-06-14-13-33-33 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-06-12-18-30-42 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-06-11-12-41-06 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-06-10-18-21-00 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-06-09-00-13-17 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-06-08-23-05-31 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-06-06-23-16-45 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-06-03-17-38-06 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-06-03-11-20-53 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-06-02-10-49-42 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-05-31-13-08-03 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-05-29-18-10-43 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-05-26-18-00-24 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-05-25-17-15-18 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-05-22-12-53-15 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-05-22-12-44-52 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-05-22-12-43-54 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-05-22-12-43-52 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-05-19-20-28-21 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-05-18-21-02-48 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-05-17-11-23-21 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-05-15-11-08-08 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-05-15-11-07-46 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-05-13-21-52-53 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-05-13-21-52-52 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-05-13-21-50-12 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-05-13-09-30-19 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-05-13-09-30-18 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-05-12-19-35-17 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-05-12-19-35-07 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-05-12-14-20-36 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-05-04-20-47-07 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-05-04-19-15-40 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-02-05-18-02-31 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar\08-02-04-18-44-16 moved successfully.
D:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar moved successfully.
LoadLibrary failed for c:\windows\system32\nmwcdcls.dll
c:\windows\system32\nmwcdcls.dll NOT unregistered.
c:\windows\system32\nmwcdcls.dll moved successfully.
LoadLibrary failed for c:\windows\system32\fokitape.dll
c:\windows\system32\fokitape.dll NOT unregistered.
c:\windows\system32\fokitape.dll moved successfully.
LoadLibrary failed for c:\windows\system32\litikusi.dll
c:\windows\system32\litikusi.dll NOT unregistered.
c:\windows\system32\litikusi.dll moved successfully.
LoadLibrary failed for c:\windows\system32\teyesiti.dll
c:\windows\system32\teyesiti.dll NOT unregistered.
c:\windows\system32\teyesiti.dll moved successfully.
LoadLibrary failed for c:\windows\system32\wayebomi.dll
c:\windows\system32\wayebomi.dll NOT unregistered.
c:\windows\system32\wayebomi.dll moved successfully.
LoadLibrary failed for c:\windows\system32\fibikavi.dll
c:\windows\system32\fibikavi.dll NOT unregistered.
c:\windows\system32\fibikavi.dll moved successfully.
LoadLibrary failed for c:\windows\system32\sidehole.dll
c:\windows\system32\sidehole.dll NOT unregistered.
c:\windows\system32\sidehole.dll moved successfully.
LoadLibrary failed for c:\windows\system32\birokone.dll
c:\windows\system32\birokone.dll NOT unregistered.
c:\windows\system32\birokone.dll moved successfully.
LoadLibrary failed for c:\windows\system32\refadojo.dll
c:\windows\system32\refadojo.dll NOT unregistered.
c:\windows\system32\refadojo.dll moved successfully.
File/Folder C:\WINDOWS\system32\dulosilo.dll.tmp not found.
LoadLibrary failed for c:\windows\system32\hedafatu.dll
c:\windows\system32\hedafatu.dll NOT unregistered.
c:\windows\system32\hedafatu.dll moved successfully.
LoadLibrary failed for c:\windows\system32\dulosilo.dll
c:\windows\system32\dulosilo.dll NOT unregistered.
c:\windows\system32\dulosilo.dll moved successfully.
LoadLibrary failed for c:\windows\system32\yupabuse.dll
c:\windows\system32\yupabuse.dll NOT unregistered.
c:\windows\system32\yupabuse.dll moved successfully.
LoadLibrary failed for c:\windows\system32\tubiwewa.dll
c:\windows\system32\tubiwewa.dll NOT unregistered.
c:\windows\system32\tubiwewa.dll moved successfully.
LoadLibrary failed for c:\windows\system32\godidusa.dll
c:\windows\system32\godidusa.dll NOT unregistered.
c:\windows\system32\godidusa.dll moved successfully.
LoadLibrary failed for c:\windows\system32\gotafahu.dll
c:\windows\system32\gotafahu.dll NOT unregistered.
c:\windows\system32\gotafahu.dll moved successfully.
LoadLibrary failed for c:\windows\system32\lejivaya.dll
c:\windows\system32\lejivaya.dll NOT unregistered.
c:\windows\system32\lejivaya.dll moved successfully.
LoadLibrary failed for c:\windows\system32\nahilifo.dll
c:\windows\system32\nahilifo.dll NOT unregistered.
c:\windows\system32\nahilifo.dll moved successfully.
LoadLibrary failed for c:\windows\system32\nonowoda.dll
c:\windows\system32\nonowoda.dll NOT unregistered.
c:\windows\system32\nonowoda.dll moved successfully.
========== COMMANDS ==========
File delete failed. D:\DOCUME~1\Mireille\LOCALS~1\Temp\etilqs_NCr9zdVXaNkM4PjyNuD9 scheduled to be deleted on reboot.
File delete failed. D:\DOCUME~1\Mireille\LOCALS~1\Temp\hpodvd09.log scheduled to be deleted on reboot.
File delete failed. D:\DOCUME~1\Mireille\LOCALS~1\Temp\~DF9C92.tmp scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Internet Explorer cache folder emptied.
File delete failed. D:\Documents and Settings\Mireille\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
User's Temporary Internet Files folder emptied.
File delete failed. D:\Documents and Settings\LocalService\Local Settings\Temp\History\History.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. D:\Documents and Settings\LocalService\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\index.dat scheduled to be deleted on reboot.
File delete failed. D:\Documents and Settings\LocalService\Local Settings\Temp\Cookies\index.dat scheduled to be deleted on reboot.
Local Service Temp folder emptied.
File delete failed. D:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
Local Service Temporary Internet Files folder emptied.
Network Service Temp folder emptied.
Network Service Temporary Internet Files folder emptied.
File delete failed. C:\WINDOWS\temp\_avast4_\Webshlock.txt scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_46c.dat scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\Perflib_Perfdata_4d8.dat scheduled to be deleted on reboot.
Windows Temp folder emptied.
Java cache emptied.
File delete failed. D:\Documents and Settings\Mireille\Local Settings\Application Data\Mozilla\Firefox\Profiles\rssxuudy.default\Cache\_CACHE_001_ scheduled to be deleted on reboot.
File delete failed. D:\Documents and Settings\Mireille\Local Settings\Application Data\Mozilla\Firefox\Profiles\rssxuudy.default\Cache\_CACHE_002_ scheduled to be deleted on reboot.
File delete failed. D:\Documents and Settings\Mireille\Local Settings\Application Data\Mozilla\Firefox\Profiles\rssxuudy.default\Cache\_CACHE_003_ scheduled to be deleted on reboot.
File delete failed. D:\Documents and Settings\Mireille\Local Settings\Application Data\Mozilla\Firefox\Profiles\rssxuudy.default\Cache\_CACHE_MAP_ scheduled to be deleted on reboot.
File delete failed. D:\Documents and Settings\Mireille\Local Settings\Application Data\Mozilla\Firefox\Profiles\rssxuudy.default\urlclassifier3.sqlite scheduled to be deleted on reboot.
File delete failed. D:\Documents and Settings\Mireille\Local Settings\Application Data\Mozilla\Firefox\Profiles\rssxuudy.default\XUL.mfl scheduled to be deleted on reboot.
FireFox cache emptied.
Temp folders emptied.
Explorer started successfully

OTMoveIt3 by OldTimer - Version 1.0.10.0 log created on 04112009_080442

Files moved on Reboot...
File move failed. D:\DOCUME~1\Mireille\LOCALS~1\Temp\etilqs_NCr9zdVXaNkM4PjyNuD9 scheduled to be moved on reboot.
File move failed. D:\DOCUME~1\Mireille\LOCALS~1\Temp\hpodvd09.log scheduled to be moved on reboot.
File move failed. D:\DOCUME~1\Mireille\LOCALS~1\Temp\~DF9C92.tmp scheduled to be moved on reboot.
File move failed. C:\WINDOWS\temp\_avast4_\Webshlock.txt scheduled to be moved on reboot.
File move failed. C:\WINDOWS\temp\Perflib_Perfdata_46c.dat scheduled to be moved on reboot.
File move failed. C:\WINDOWS\temp\Perflib_Perfdata_4d8.dat scheduled to be moved on reboot.
File move failed. D:\Documents and Settings\Mireille\Local Settings\Application Data\Mozilla\Firefox\Profiles\rssxuudy.default\Cache\_CACHE_001_ scheduled to be moved on reboot.
File move failed. D:\Documents and Settings\Mireille\Local Settings\Application Data\Mozilla\Firefox\Profiles\rssxuudy.default\Cache\_CACHE_002_ scheduled to be moved on reboot.
File move failed. D:\Documents and Settings\Mireille\Local Settings\Application Data\Mozilla\Firefox\Profiles\rssxuudy.default\Cache\_CACHE_003_ scheduled to be moved on reboot.
File move failed. D:\Documents and Settings\Mireille\Local Settings\Application Data\Mozilla\Firefox\Profiles\rssxuudy.default\Cache\_CACHE_MAP_ scheduled to be moved on reboot.
File move failed. D:\Documents and Settings\Mireille\Local Settings\Application Data\Mozilla\Firefox\Profiles\rssxuudy.default\urlclassifier3.sqlite scheduled to be moved on reboot.
File move failed. D:\Documents and Settings\Mireille\Local Settings\Application Data\Mozilla\Firefox\Profiles\rssxuudy.default\XUL.mfl scheduled to be moved on reboot.


Cordialement,
romain
0
Réponse 67 / 68
romain35 Messages postés 67 Date d'inscription vendredi 29 octobre 2004 Statut Membre Dernière intervention 19 mars 2011 2
11 avril 2009 à 09:10
Bonjour,

voici un rapport complet de Lopxp

# Rapport Lopxp fait le 11/04/2009 à 9:07:40
# Exécuté dans : C:\Program Files\Lopxp
# Version 3.06 - Maj du 05/02/2008



========== Listing des dossiers Application Data

+- D:\Documents and Settings\Alexandre\Application Data

2008-06-10 à 16:23:20 - Adobe
2006-11-01 à 13:58:15 - AdobeUM
2006-08-06 à 10:27:26 - CyberLink
2007-12-25 à 13:47:08 - Google
2006-04-05 à 16:03:01 - Help
2008-08-14 à 11:02:14 - HP
2005-11-29 à 17:04:05 - Identities
2006-02-22 à 20:28:15 - Image Zone Express
2006-05-02 à 14:33:00 - Leadertech
2006-07-26 à 09:51:53 - Macromedia
2009-03-01 à 12:43:13 - Microsoft
2008-07-15 à 19:39:28 - Mozilla
2009-04-07 à 17:06:55 - Nokia
2006-02-19 à 16:14:22 - OD2
2006-02-22 à 20:08:28 - OFFICE One v6
2009-04-07 à 17:06:31 - PC Suite
2007-04-02 à 10:22:08 - Real
2006-05-02 à 14:33:00 - Sonic
2007-12-21 à 22:03:40 - Sun
2006-04-19 à 12:02:35 - Symantec
2007-07-16 à 14:26:28 - VadeRetro
2008-02-03 à 18:40:30 - WildTangent
2005-11-29 à 17:04:06 - You've Got Pictures Screensaver

+- D:\Documents and Settings\Alexandre\Local Settings\Application Data

2006-11-01 à 13:57:56 - Adobe
2008-01-05 à 23:52:59 - ApplicationHistory
2007-12-25 à 13:47:08 - Google
2006-12-24 à 13:45:35 - Help
2007-07-16 à 14:24:15 - Identities
2009-03-01 à 12:43:12 - Microsoft
2007-12-23 à 12:05:57 - Mozilla
2006-08-06 à 16:04:33 - PowerCinema
2007-12-26 à 11:39:17 - Turbine
2006-06-05 à 11:29:59 - WMTools Downloaded Files
2005-11-29 à 17:04:06 - {3248F0A6-6813-11D6-A77B-00B0D0150020}

+- D:\Documents and Settings\Alicia\Application Data

2008-03-05 à 13:29:09 - Adobe
2006-08-17 à 15:45:17 - AdobeUM
2007-03-09 à 18:36:05 - CyberLink
2008-01-26 à 12:53:13 - Google
2006-02-27 à 16:11:29 - Help
2007-02-03 à 19:46:41 - HP
2005-11-29 à 17:04:05 - Identities
2006-02-24 à 19:15:34 - Image Zone Express
2006-02-24 à 16:51:49 - Leadertech
2005-11-29 à 17:04:05 - Macromedia
2008-04-26 à 12:48:46 - Magic Academy
2008-12-19 à 17:18:58 - Microsoft
2008-07-18 à 15:01:44 - Mozilla
2006-02-16 à 13:13:07 - OD2
2006-02-22 à 19:50:55 - OFFICE One v6
2005-11-29 à 17:04:06 - Real
2006-02-24 à 16:51:50 - Sonic
2007-12-21 à 20:59:49 - Sun
2006-04-20 à 16:24:16 - Symantec
2006-03-18 à 18:25:27 - Ulead Systems
2005-11-29 à 17:04:06 - You've Got Pictures Screensaver

+- D:\Documents and Settings\Alicia\Local Settings\Application Data

2006-08-17 à 15:44:51 - Adobe
2005-11-29 à 17:04:06 - ApplicationHistory
2008-01-26 à 12:53:13 - Google
2006-02-27 à 16:11:29 - Help
2006-03-25 à 12:55:15 - Identities
2008-12-19 à 17:18:58 - Microsoft
2007-12-26 à 12:53:19 - Mozilla
2007-03-09 à 19:30:01 - PowerCinema
2005-11-29 à 17:04:06 - {3248F0A6-6813-11D6-A77B-00B0D0150020}

+- D:\Documents and Settings\All Users\Application Data

2009-03-22 à 15:17:03 - Adobe
2008-01-20 à 18:56:01 - Alawar Stargaze
2008-01-29 à 13:34:44 - AlawarGameBox
2008-02-27 à 16:28:33 - AOL
2008-08-08 à 20:18:45 - Astar Games
2008-04-27 à 14:55:37 - BigFishGamesCache
2008-03-19 à 08:28:23 - Christmasville
2008-02-15 à 21:53:18 - Ciel
2005-11-29 à 17:03:56 - CyberLink
2008-07-30 à 14:22:31 - eGames
2008-01-17 à 08:46:09 - Enkord
2008-01-18 à 08:21:38 - Escape From Paradise
2008-08-04 à 19:59:19 - EscapeTheMuseum
2008-03-01 à 13:14:33 - F-Secure
2008-06-23 à 09:26:51 - Flood Light Games
2008-02-12 à 15:32:39 - FloodLightGames
2008-01-30 à 17:04:40 - Friends Games
2008-03-01 à 13:14:24 - fssg
2008-08-15 à 20:56:22 - GameHouse
2008-06-25 à 20:32:31 - Genimo
2008-09-16 à 08:46:38 - Gogii
2008-07-24 à 19:25:49 - Gogii Games
2007-12-22 à 17:53:26 - Google
2008-08-01 à 21:11:30 - HiddenSecretsNightmare
2006-02-11 à 21:09:56 - HP
2008-07-02 à 14:35:22 - Intenium
2008-06-16 à 13:02:15 - JollyBear
2009-04-09 à 15:05:01 - Malwarebytes
2009-04-09 à 17:03:09 - Messenger Plus!
2009-02-21 à 11:15:58 - Microsoft
2008-04-07 à 22:08:18 - MonteCristo
2008-06-12 à 14:07:58 - MumboJumbo
2008-06-18 à 14:40:46 - My Games
2008-11-14 à 10:24:15 - MythPeople
2009-01-24 à 17:52:12 - NeptunesAdve
2009-03-22 à 15:19:17 - Nokia
2008-06-23 à 14:59:47 - Oberon Media
2005-11-29 à 17:03:57 - OD2
2009-04-09 à 09:02:56 - PC Suite
2008-08-05 à 13:39:57 - PlayFirst
2008-06-10 à 19:48:27 - PlayPond
2005-11-29 à 17:03:57 - QuickTime
2008-05-22 à 15:09:20 - Sandlot Games
2005-11-29 à 17:03:57 - SBSI
2008-07-29 à 20:14:30 - ScreenSeven
2007-09-02 à 16:42:43 - Skype
2008-08-27 à 10:10:51 - SpinTop Games
2008-08-08 à 21:33:03 - SugarGames
2008-02-03 à 00:46:37 - Symantec
2008-08-17 à 13:53:01 - TEMP
2008-02-09 à 23:03:04 - The Game Equation
2008-03-14 à 08:35:57 - Trymedia
2005-11-29 à 17:04:05 - Ulead Systems
2005-11-29 à 17:04:05 - VadeRetro
2008-02-15 à 22:11:34 - WildTangent
2007-12-22 à 17:51:57 - Windows Genuine Advantage
2009-01-02 à 16:56:51 - WLInstaller
2008-03-04 à 08:24:51 - Zylom

+- D:\Documents and Settings\Dominique\Application Data

2008-03-17 à 20:10:12 - Adobe
2008-07-29 à 19:49:38 - Big Fish Games
2006-02-22 à 17:06:26 - CyberLink
2008-07-31 à 15:46:33 - eGames
2008-03-02 à 10:13:10 - F-Secure
2006-02-28 à 18:23:48 - Help
2006-02-22 à 17:33:32 - HP
2008-12-19 à 12:21:50 - Identities
2006-02-22 à 20:46:41 - Image Zone Express
2006-02-19 à 23:14:36 - Leadertech
2008-01-05 à 21:30:53 - LimeWire
2005-11-29 à 17:04:05 - Macromedia
2009-03-01 à 19:40:42 - Microsoft
2008-07-07 à 12:33:27 - Mozilla
2009-03-29 à 08:24:17 - Nokia
2006-02-12 à 11:19:51 - OD2
2006-02-22 à 18:45:43 - OFFICE One v6
2009-03-29 à 08:24:44 - PC Suite
2005-11-29 à 17:04:06 - Real
2008-07-31 à 15:46:18 - SecuROM
2006-02-22 à 17:10:05 - Sonic
2006-02-22 à 17:37:58 - Sun
2006-02-12 à 11:15:55 - Symantec
2006-05-14 à 15:19:13 - VadeRetro
2005-11-29 à 17:04:06 - You've Got Pictures Screensaver
2008-12-19 à 12:21:50 - Zylom

+- D:\Documents and Settings\Dominique\Local Settings\Application Data

2008-03-17 à 20:10:31 - Adobe
2005-11-29 à 17:04:06 - ApplicationHistory
2006-02-28 à 18:23:48 - Help
2006-05-14 à 15:19:01 - Identities
2009-03-01 à 19:40:41 - Microsoft
2007-12-23 à 18:02:23 - Mozilla
2006-02-22 à 17:06:57 - PowerCinema
2005-11-29 à 17:04:06 - {3248F0A6-6813-11D6-A77B-00B0D0150020}

+- D:\Documents and Settings\Floriane\Application Data

2007-12-23 à 19:20:16 - Adobe
2006-02-28 à 15:28:07 - AdobeUM
2006-03-16 à 20:06:15 - CyberLink
2006-02-28 à 15:00:22 - Help
2006-05-22 à 16:11:36 - HP
2005-11-29 à 17:04:05 - Identities
2006-12-27 à 16:56:27 - Macromedia
2008-02-26 à 18:24:27 - Microsoft
2008-12-05 à 21:30:43 - Mozilla
2006-02-12 à 18:34:52 - OD2
2007-05-05 à 14:13:06 - Real
2006-02-16 à 08:46:49 - Sun
2006-04-21 à 14:21:47 - Symantec
2006-05-25 à 20:37:35 - Ulead Systems
2006-03-16 à 21:05:03 - VadeRetro
2005-11-29 à 17:04:06 - You've Got Pictures Screensaver

+- D:\Documents and Settings\Floriane\Local Settings\Application Data

2006-02-16 à 11:53:20 - Adobe
2005-11-29 à 17:04:06 - ApplicationHistory
2007-01-22 à 18:32:55 - Help
2006-03-16 à 21:04:51 - Identities
2008-05-04 à 20:50:57 - Microsoft
2007-12-23 à 12:57:00 - Mozilla
2006-12-09 à 18:12:24 - PowerCinema
2006-05-14 à 12:46:32 - WMTools Downloaded Files
2005-11-29 à 17:04:06 - {3248F0A6-6813-11D6-A77B-00B0D0150020}

+- D:\Documents and Settings\Invité\Application Data

2005-11-29 à 17:04:05 - Identities
2005-11-29 à 17:04:05 - Macromedia
2005-11-29 à 17:04:05 - Microsoft
2005-11-29 à 17:04:06 - Real
2005-11-28 à 01:44:22 - Symantec
2005-11-29 à 17:04:06 - You've Got Pictures Screensaver

+- D:\Documents and Settings\Invité\Local Settings\Application Data

2005-11-29 à 17:04:06 - ApplicationHistory
2005-11-29 à 17:04:06 - Microsoft
2005-11-29 à 17:04:06 - PowerCinema
2005-11-29 à 17:04:06 - {3248F0A6-6813-11D6-A77B-00B0D0150020}

+- D:\Documents and Settings\Mireille\Application Data

2008-02-10 à 22:45:09 - Abra Academy2
2009-03-22 à 15:17:13 - Adobe
2006-02-27 à 13:53:51 - AdobeUM
2008-06-03 à 14:13:03 - AlwaysNeat
2008-08-19 à 10:38:51 - Ancient Quest of Saqqarah__reflexive
2008-07-02 à 14:24:21 - Big Fish Games
2008-11-02 à 15:15:38 - BloodTies
2008-02-05 à 15:17:44 - Boomzap
2008-11-24 à 22:35:51 - Canvas Multi-Media
2008-02-07 à 15:49:40 - CaribbeanHideaway
2008-07-26 à 16:45:03 - cerasus.media
2006-04-21 à 12:43:30 - CyberLink
2008-02-09 à 21:44:00 - DiVision Studios - Escaping Atlantis
2008-05-08 à 12:42:56 - DivX
2008-07-30 à 14:21:56 - eGames
2008-03-01 à 13:21:51 - F-Secure
2008-06-23 à 09:26:51 - Flood Light Games
2008-02-12 à 15:32:39 - FloodLightGames
2008-06-07 à 10:21:33 - funkitron
2008-07-02 à 13:06:53 - Gaijin Ent
2008-06-19 à 12:33:28 - gemsweeperextractedgfx
2008-06-25 à 20:28:03 - Genimo
2008-07-24 à 19:25:49 - Gogii Games
2007-12-23 à 20:27:22 - Google
2006-02-28 à 12:48:45 - Help
2006-05-29 à 11:37:09 - HP
2009-02-26 à 09:21:16 - Identities
2008-06-11 à 09:29:59 - Image Zone Express
2008-10-16 à 19:31:50 - iWin
2006-02-15 à 09:43:23 - Leadertech
2008-02-29 à 22:05:35 - LimeWire
2008-05-07 à 13:57:07 - Macromedia
2008-05-15 à 21:37:29 - Magic Academy
2009-04-09 à 15:05:05 - Malwarebytes
2009-02-22 à 11:51:52 - Microsoft
2009-04-09 à 11:37:03 - Mozilla
2009-01-02 à 16:40:29 - MSNInstaller
2008-06-03 à 12:56:23 - MythicPearls
2009-03-22 à 15:47:19 - Nokia
2008-02-25 à 16:11:13 - Notepad++
2006-02-12 à 19:02:09 - OD2
2007-01-22 à 12:18:36 - OFFICE One v6
2009-03-22 à 15:16:12 - PC Suite
2008-06-28 à 17:52:45 - Pirateville
2008-07-09 à 19:48:26 - PlayFirst
2008-03-22 à 21:44:37 - Pogo Games
2009-03-19 à 14:00:24 - PowerChallenge
2008-03-15 à 18:04:09 - Printer Info Cache
2006-10-01 à 11:48:14 - Real
2008-11-16 à 15:00:10 - RealArcade
2008-06-28 à 10:09:33 - SecuROM
2009-01-12 à 09:28:12 - Skip-Bo
2006-04-21 à 12:36:44 - Sonic
2008-09-19 à 12:20:24 - SpinTop Games
2008-09-22 à 13:43:59 - SprillBermudeEng
2008-06-27 à 08:55:39 - SprillBermudeFr
2007-12-18 à 23:19:52 - Sun
2006-04-18 à 07:26:54 - Symantec
2008-08-01 à 14:36:34 - TheScruffs
2006-12-27 à 16:05:27 - Ulead Systems
2008-02-01 à 06:54:20 - URSE Games
2006-04-13 à 11:52:40 - VadeRetro
2009-04-10 à 09:50:44 - vlc
2005-11-29 à 17:04:06 - You've Got Pictures Screensaver
2009-02-26 à 09:21:16 - Zylom

+- D:\Documents and Settings\Mireille\Local Settings\Application Data

2008-02-04 à 22:47:39 - 7Wonders2
2008-02-02 à 18:25:18 - Adobe
2007-12-30 à 11:56:57 - ApplicationHistory
2009-04-09 à 14:13:30 - Google
2007-11-23 à 23:08:23 - Help
2006-04-13 à 11:52:25 - Identities
2008-06-16 à 13:02:15 - JollyBear
2009-04-09 à 10:50:53 - Microsoft
2007-07-31 à 14:53:32 - MicroVision Applications
2007-12-22 à 16:30:28 - Mozilla
2008-06-23 à 22:13:18 - Oberon Games
2008-06-23 à 14:59:47 - Oberon Media
2009-01-02 à 16:58:22 - PCHealth
2006-10-01 à 11:54:06 - PowerCinema
2008-06-17 à 08:27:11 - Powerhouse Games
2008-07-08 à 21:08:12 - SpookyManor
2009-01-07 à 20:58:21 - TimeParadox
2007-12-30 à 11:57:02 - Turbine
2005-11-29 à 17:04:06 - {3248F0A6-6813-11D6-A77B-00B0D0150020}

========== Listing du dossier Program Files

+- C:\Program Files

2008-08-17 à 13:28:08 - 10 Jours Sous Les Mers
2007-07-24 à 12:51:15 - 3DRTBrickBlaster
2008-04-27 à 13:41:22 - absolutist.com
2008-04-27 à 13:44:40 - Absolutist_Games
2009-04-09 à 16:36:50 - Ad-remover
2009-03-22 à 15:17:03 - Adobe
2009-04-10 à 09:50:51 - adslTV
2008-02-15 à 21:56:34 - Alawar
2007-12-22 à 17:00:51 - Alwil Software
2005-11-29 à 16:56:55 - AMD
2006-05-16 à 15:49:53 - Another Day
2008-05-01 à 12:57:51 - AOL Games
2008-04-27 à 14:54:49 - bfgclient
2009-04-09 à 16:24:12 - CCleaner
2005-11-29 à 16:56:55 - ComPlus Applications
2008-05-25 à 16:11:08 - Cossacks
2005-11-29 à 16:56:55 - CyberLink
2009-03-22 à 15:14:59 - DIFX
2006-03-14 à 09:48:19 - directx
2009-01-03 à 14:00:25 - DivX
2007-10-23 à 18:08:26 - DK
2008-03-22 à 23:44:44 - DXBall2
2008-02-15 à 21:55:14 - Escape From Paradise
2009-04-09 à 18:00:39 - Fichiers communs
2006-11-05 à 13:47:15 - Firaxis Games
2009-04-09 à 17:39:15 - GamesBar
2005-11-29 à 16:56:55 - GMixon
2005-11-29 à 16:56:55 - Goto Software
2006-02-11 à 21:08:33 - Hewlett-Packard
2008-01-01 à 14:11:27 - HP
2009-01-02 à 18:52:03 - InstallShield Installation Information
2009-04-11 à 06:39:12 - Internet Explorer
2006-02-22 à 18:22:06 - ISSENDIS
2009-04-09 à 09:09:46 - Java
2006-04-22 à 12:08:59 - Kristanix
2006-11-28 à 17:13:33 - Lasermedia
2005-11-29 à 16:56:55 - Learn2.com
2009-04-11 à 07:07:46 - Lopxp
2009-02-10 à 17:12:33 - Maxis
2009-04-10 à 21:51:59 - Messenger
2009-04-09 à 16:47:49 - Messenger Plus! Live
2009-01-30 à 21:49:03 - Micro Application
2009-01-02 à 17:07:21 - Microsoft
2007-12-22 à 19:47:58 - Microsoft CAPICOM 2.1.0.2
2005-11-29 à 16:56:55 - microsoft frontpage
2009-04-09 à 23:43:24 - Microsoft Silverlight
2009-02-21 à 11:15:20 - Microsoft SQL Server Compact Edition
2009-02-21 à 11:16:07 - Microsoft Sync Framework
2008-08-14 à 18:00:14 - Mindscape
2006-08-08 à 09:57:14 - Montparnasse multimedia - GEO
2009-04-09 à 23:26:01 - Movie Maker
2009-04-11 à 06:49:03 - Mozilla Firefox
2009-01-02 à 16:40:31 - MSN
2005-11-29 à 16:56:55 - MSN Gaming Zone
2009-04-09 à 09:51:19 - MSN Messenger
2007-12-19 à 20:25:35 - MSXML 4.0
2009-04-09 à 13:33:31 - Navilog1
2009-04-09 à 23:23:43 - NetMeeting
2009-03-22 à 15:19:14 - Nokia
2005-11-29 à 16:56:55 - Norman
2008-02-25 à 16:11:13 - Notepad++
2008-02-15 à 22:08:32 - OFFICE One6.5
2008-03-20 à 09:24:44 - orange
2009-04-09 à 23:23:39 - Outlook Express
2008-11-18 à 20:09:24 - Oxygene V14a
2009-03-22 à 15:14:41 - PC Connectivity Solution
2008-02-26 à 09:28:25 - PopUp Destroy
2007-12-09 à 11:34:10 - QuickTime
2008-02-15 à 22:13:14 - Readiris Pro 8
2006-04-22 à 12:18:43 - Real
2008-01-17 à 08:44:37 - ReflexiveArcade
2006-02-27 à 14:32:58 - Rockstar Games
2007-06-12 à 19:58:20 - Services en ligne
2005-11-29 à 17:00:43 - ShowTime
2009-03-22 à 15:18:56 - SimpleCenter
2005-11-29 à 16:56:55 - Sonic
2008-02-03 à 00:44:48 - Symantec
2009-04-09 à 11:21:45 - TELE2
2006-05-24 à 10:50:45 - TFC
2008-02-15 à 22:11:04 - The Wonderful Wizard Of Oz
2009-04-09 à 09:46:28 - Trend Micro
2008-02-24 à 23:44:59 - Téléchargeur de FlatOut2
2005-11-29 à 16:56:55 - Ulead Systems
2005-11-29 à 16:56:55 - Uninstall Information
2007-02-20 à 09:49:34 - Wanadoo Edition
2009-04-09 à 11:36:06 - Windows Live
2009-01-02 à 17:06:52 - Windows Live SkyDrive
2005-11-29 à 16:56:55 - Windows Media Components
2008-02-27 à 16:23:08 - Windows Media Connect 2
2009-04-09 à 23:23:40 - Windows Media Player
2009-01-03 à 16:01:55 - Windows NT
2005-11-29 à 16:56:55 - WindowsUpdate
2005-11-29 à 16:56:55 - xerox
2009-04-09 à 16:37:19 - Zylom Games

========== Tâches planifiées

Aucune tâche planifiée détecté.

========== Clés registre


========== Bloqueur popups Internet Explorer

Blocage des popups non géré par cette version du navigateur.

========== Suggestion ( /!\ Nécessite une interprétation.) ==========


+- Registre : Aucune suggestion.


- Fin du rapport -


Cordialement,
romain
0
Réponse 68 / 68
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 5 040
11 avril 2009 à 17:26
colle le rapport d'un scan en ligne
avec un des suivants:


et cette fois mets le rapport entier pour voir les fichiers infectés et dis tes soucis actuels

bitdefender en ligne :
http://www.bitdefender.fr/scan_fr/scan8/ie.html
0

Discussions similaires

M6 Replay désactiver le bloqueur de publicité
katydel88 -
Mathieu -

14 réponses
Comment désactiver le mode sécurisé de la Freebox POP.
Cycy -
munstef676 -

11 réponses
Musique pub Skoda IV
SkodaIV -
Duck -

16 réponses
Cherche chanteur et titre chanson pub kinder noel 2023
Herme80 -
trekipat -

16 réponses