Pub CID
Résolu/Fermé
blondie336
Messages postés
20
Date d'inscription
jeudi 30 juillet 2009
Statut
Membre
Dernière intervention
7 août 2009
-
5 août 2009 à 17:57
blondie336 Messages postés 20 Date d'inscription jeudi 30 juillet 2009 Statut Membre Dernière intervention 7 août 2009 - 7 août 2009 à 19:17
blondie336 Messages postés 20 Date d'inscription jeudi 30 juillet 2009 Statut Membre Dernière intervention 7 août 2009 - 7 août 2009 à 19:17
A voir également:
- Pub CID
- Bloqueur de pub youtube - Guide
- Netflix standard avec pub - Guide
- Youtube sans pub - Guide
- YT Siphon : une extension pour contourner la pub sur YouTube - Guide
- Stop pub gratuit - Télécharger - Divers Utilitaires
14 réponses
hello,
telecharge et installe hijackthis https://forums.cnetfrance.fr/tutoriels-securite-informatique/1549-hijackthis-comment-l-utiliser
une fois installé créer un rapport et le poster sur le forum
telecharge et installe hijackthis https://forums.cnetfrance.fr/tutoriels-securite-informatique/1549-hijackthis-comment-l-utiliser
une fois installé créer un rapport et le poster sur le forum
toptitbal
Messages postés
25709
Date d'inscription
samedi 8 juillet 2006
Statut
Contributeur sécurité
Dernière intervention
4 mars 2010
2 229
6 août 2009 à 20:54
6 août 2009 à 20:54
Bonjour
On dirait que elmer t'a abandonné....
Désactive le contrôle des comptes utilisateurs
(tu le réactiveras après ta désinfection):
* Va dans démarrer puis panneau de configuration
* Double Clique sur l'icône "Comptes d'utilisateurs"
* Clique ensuite sur désactiver et valide.
Tuto : https://forum.malekal.com/viewtopic.php?f=59&t=6517
https://forum.pcastuces.com/navilog_de_il_mafioso_pour_vista-f31s12.htm
Télécharge Lop S&D.exe sur ton Bureau.
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
* Double-clique dessus pour lancer l'installation
* Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
* Séléctionne la langue souhaitée, puis choisis l'option 1 (Recherche)
* Patiente jusqu'à la fin du scan
* Poste le rapport généré (C:\lopR.txt)
Tutorial (aide) : http://bibou0007.com/outils-specifiques-f78/tuto-lop-sd-t956.htm
On dirait que elmer t'a abandonné....
Désactive le contrôle des comptes utilisateurs
(tu le réactiveras après ta désinfection):
* Va dans démarrer puis panneau de configuration
* Double Clique sur l'icône "Comptes d'utilisateurs"
* Clique ensuite sur désactiver et valide.
Tuto : https://forum.malekal.com/viewtopic.php?f=59&t=6517
https://forum.pcastuces.com/navilog_de_il_mafioso_pour_vista-f31s12.htm
Télécharge Lop S&D.exe sur ton Bureau.
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
* Double-clique dessus pour lancer l'installation
* Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
* Séléctionne la langue souhaitée, puis choisis l'option 1 (Recherche)
* Patiente jusqu'à la fin du scan
* Poste le rapport généré (C:\lopR.txt)
Tutorial (aide) : http://bibou0007.com/outils-specifiques-f78/tuto-lop-sd-t956.htm
blondie336
Messages postés
20
Date d'inscription
jeudi 30 juillet 2009
Statut
Membre
Dernière intervention
7 août 2009
5 août 2009 à 20:52
5 août 2009 à 20:52
Merci d'avance.
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:50:51, on 05/08/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v8.00 (8.00.6001.18813)
Boot mode: Normal
Running processes:
C:\Program Files\DigitalPersona\Bin\DpAgent.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Hp\QuickPlay\QPService.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
C:\Program Files\Hewlett-Packard\HP QuickTouch\HPKBDAPP.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Orange HSS\Systray\SystrayApp.exe
C:\Program Files\Hp\HP Software Update\hpwuSchd2.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Hp\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Panasonic\VideoCam Suite 2\VideoCamSuiteAutoStart.exe
C:\Windows\ehome\ehmsas.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Orange HSS\Launcher\Launcher.exe
C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Orange HSS\Deskboard\deskboard.exe
C:\Program Files\Orange HSS\connectivity\connectivitymanager.exe
C:\Program Files\Orange HSS\connectivity\CoreCom\CoreCom.exe
C:\Program Files\Orange HSS\connectivity\CoreCom\OraConfigRecover.exe
C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTCOMModule\0\FTCOMModule.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Windows\system32\Macromed\Flash\FlashUtil10c.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\MICHEL\AppData\Local\Temp\Temp1_hijackthis.zip\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr?cobrand=hp-notebook.msn.com&ocid=HPDHP&pc=HPNTDF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr?cobrand=hp-notebook.msn.com&ocid=HPDHP&pc=HPNTDF
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: NCO 2.0 IE BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.6\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\PROGRA~1\COMMON~1\SYMANT~1\IDS\IPSBHO.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Show Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.6\CoIEPlg.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe"
O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [OnScreenDisplay] C:\Program Files\Hewlett-Packard\HP QuickTouch\HPKBDAPP.exe
O4 - HKLM\..\Run: [UCam_Menu] "C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\YouCam" update "Software\CyberLink\YouCam\1.0"
O4 - HKLM\..\Run: [DpAgent] C:\Program Files\DigitalPersona\Bin\dpagent.exe
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [HP Health Check Scheduler] [ProgramFilesFolder]Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [WAWifiMessage] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [SystrayORAHSS] "C:\Program Files\Orange HSS\Systray\SystrayApp.exe"
O4 - HKLM\..\Run: [ORAHSSSessionManager] C:\Program Files\Orange HSS\SessionManager\SessionManager.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton 360\osCheck.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\Money Express.exe"
O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe"
O4 - HKCU\..\Run: [Poll Bias] "C:\ProgramData\move readme readme.7kolbhj"
O4 - HKCU\..\Run: [view load up cast] "C:\ProgramData\Web Dvd Site.l45yxac"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-18\..\Run: [Nokia.PCSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Nokia.PCSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog (User 'Default user')
O4 - Startup: DeezRip.lnk = C:\Program Files\DeezRip\DeezRip.exe
O4 - Global Startup: BTTray.lnk = ?
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\Hp\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: VideoCam Suite 2.0.lnk = ?
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O13 - Gopher Prefix:
O15 - Trusted Zone: https://www.orange.fr/portail
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Planificateur LiveUpdate automatique (Automatic LiveUpdate Scheduler) - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
O23 - Service: B's Recorder GOLD Library General Service (bgsvcgen) - B.H.A Corporation - C:\Windows\System32\bgsvcgen.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Com4Qlb - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: DeezRip service (DeezRipSvc) - Unknown owner - C:\Program Files\DeezRip\DeezRipSvc.exe
O23 - Service: Biometric Authentication Service (DpHost) - DigitalPersona, Inc. - C:\Program Files\DigitalPersona\Bin\DpHostW.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE
O23 - Service: LiveUpdate Notice - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: QuickPlay Background Capture Service (QBCS) (QPCapSvc) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\QPCapSvc.exe
O23 - Service: QuickPlay Task Scheduler (QTS) (QPSched) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\QPSched.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\system32\STacSV.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\PROGRA~1\COMMON~1\SYMANT~1\CCPD-LC\symlcsvc.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:50:51, on 05/08/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v8.00 (8.00.6001.18813)
Boot mode: Normal
Running processes:
C:\Program Files\DigitalPersona\Bin\DpAgent.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Hp\QuickPlay\QPService.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
C:\Program Files\Hewlett-Packard\HP QuickTouch\HPKBDAPP.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Orange HSS\Systray\SystrayApp.exe
C:\Program Files\Hp\HP Software Update\hpwuSchd2.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Hp\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Panasonic\VideoCam Suite 2\VideoCamSuiteAutoStart.exe
C:\Windows\ehome\ehmsas.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Orange HSS\Launcher\Launcher.exe
C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Orange HSS\Deskboard\deskboard.exe
C:\Program Files\Orange HSS\connectivity\connectivitymanager.exe
C:\Program Files\Orange HSS\connectivity\CoreCom\CoreCom.exe
C:\Program Files\Orange HSS\connectivity\CoreCom\OraConfigRecover.exe
C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTCOMModule\0\FTCOMModule.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Windows\system32\Macromed\Flash\FlashUtil10c.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\MICHEL\AppData\Local\Temp\Temp1_hijackthis.zip\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr?cobrand=hp-notebook.msn.com&ocid=HPDHP&pc=HPNTDF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr?cobrand=hp-notebook.msn.com&ocid=HPDHP&pc=HPNTDF
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: NCO 2.0 IE BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.6\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\PROGRA~1\COMMON~1\SYMANT~1\IDS\IPSBHO.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Show Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.6\CoIEPlg.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe"
O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [OnScreenDisplay] C:\Program Files\Hewlett-Packard\HP QuickTouch\HPKBDAPP.exe
O4 - HKLM\..\Run: [UCam_Menu] "C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\YouCam" update "Software\CyberLink\YouCam\1.0"
O4 - HKLM\..\Run: [DpAgent] C:\Program Files\DigitalPersona\Bin\dpagent.exe
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [HP Health Check Scheduler] [ProgramFilesFolder]Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [WAWifiMessage] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [SystrayORAHSS] "C:\Program Files\Orange HSS\Systray\SystrayApp.exe"
O4 - HKLM\..\Run: [ORAHSSSessionManager] C:\Program Files\Orange HSS\SessionManager\SessionManager.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton 360\osCheck.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\Money Express.exe"
O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe"
O4 - HKCU\..\Run: [Poll Bias] "C:\ProgramData\move readme readme.7kolbhj"
O4 - HKCU\..\Run: [view load up cast] "C:\ProgramData\Web Dvd Site.l45yxac"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-18\..\Run: [Nokia.PCSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Nokia.PCSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog (User 'Default user')
O4 - Startup: DeezRip.lnk = C:\Program Files\DeezRip\DeezRip.exe
O4 - Global Startup: BTTray.lnk = ?
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\Hp\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: VideoCam Suite 2.0.lnk = ?
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O13 - Gopher Prefix:
O15 - Trusted Zone: https://www.orange.fr/portail
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Planificateur LiveUpdate automatique (Automatic LiveUpdate Scheduler) - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
O23 - Service: B's Recorder GOLD Library General Service (bgsvcgen) - B.H.A Corporation - C:\Windows\System32\bgsvcgen.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Com4Qlb - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: DeezRip service (DeezRipSvc) - Unknown owner - C:\Program Files\DeezRip\DeezRipSvc.exe
O23 - Service: Biometric Authentication Service (DpHost) - DigitalPersona, Inc. - C:\Program Files\DigitalPersona\Bin\DpHostW.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE
O23 - Service: LiveUpdate Notice - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: QuickPlay Background Capture Service (QBCS) (QPCapSvc) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\QPCapSvc.exe
O23 - Service: QuickPlay Task Scheduler (QTS) (QPSched) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\QPSched.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\system32\STacSV.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\PROGRA~1\COMMON~1\SYMANT~1\CCPD-LC\symlcsvc.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
blondie336
Messages postés
20
Date d'inscription
jeudi 30 juillet 2009
Statut
Membre
Dernière intervention
7 août 2009
6 août 2009 à 20:43
6 août 2009 à 20:43
Est ce que quelqu'un peut m'aider à décrypter le rapport ?
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Utilisateur anonyme
6 août 2009 à 21:01
6 août 2009 à 21:01
OOOUUUUPPPPSSSS......
DSL toptibal.....!!!!!!
==>blondie336
--> fais ce que toptibal t'as demandé.....
a+
DSL toptibal.....!!!!!!
==>blondie336
--> fais ce que toptibal t'as demandé.....
a+
blondie336
Messages postés
20
Date d'inscription
jeudi 30 juillet 2009
Statut
Membre
Dernière intervention
7 août 2009
6 août 2009 à 21:40
6 août 2009 à 21:40
Est ce normal que ca bloque à "recherche de fichiers avec Catchme" ?
Merci beaucoup de l'aide précieuse !
Merci beaucoup de l'aide précieuse !
blondie336
Messages postés
20
Date d'inscription
jeudi 30 juillet 2009
Statut
Membre
Dernière intervention
7 août 2009
6 août 2009 à 22:37
6 août 2009 à 22:37
Merci de m'expliquer à quoi tout ca correspond. =)
--------------------\\ Lop S&D 4.2.5-0 XP/Vista
Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Intel(R) Core(TM)2 Duo CPU T8100 @ 2.10GHz )
BIOS : EPP runtime BIOS - Version 1.1
USER : MICHEL ( Administrator )
BOOT : Normal boot
C:\ (Local Disk) - NTFS - Total:221 Go (Free:134 Go)
D:\ (Local Disk) - NTFS - Total:232 Go (Free:232 Go)
E:\ (Local Disk) - NTFS - Total:11 Go (Free:2 Go)
F:\ (CD or DVD)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 06/08/2009|22:01 )
[ UAC => 0 ]
--------------------\\ Listing des dossiers dans Local
[17/11/2008|22:43] C:\Users\MICHEL\AppData\Local\Adobe
[26/02/2009|01:52] C:\Users\MICHEL\AppData\Local\Apple
[27/03/2009|15:04] C:\Users\MICHEL\AppData\Local\Apple Computer
[15/11/2008|22:59] C:\Users\MICHEL\AppData\Local\Application Data
[15/11/2008|23:13] C:\Users\MICHEL\AppData\Local\AtStart.txt
[10/01/2009|23:01] C:\Users\MICHEL\AppData\Local\d3d9caps.dat
[28/07/2009|19:30] C:\Users\MICHEL\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[15/11/2008|23:13] C:\Users\MICHEL\AppData\Local\DigitalPersona
[15/11/2008|23:03] C:\Users\MICHEL\AppData\Local\Downloaded Installations
[15/11/2008|23:13] C:\Users\MICHEL\AppData\Local\DSwitch.txt
[03/08/2009|08:15] C:\Users\MICHEL\AppData\Local\GDIPFONTCACHEV1.DAT
[15/06/2009|08:20] C:\Users\MICHEL\AppData\Local\Google
[15/11/2008|22:59] C:\Users\MICHEL\AppData\Local\Historique
[06/08/2009|21:22] C:\Users\MICHEL\AppData\Local\IconCache.db
[22/06/2009|10:58] C:\Users\MICHEL\AppData\Local\Microsoft
[19/04/2009|22:39] C:\Users\MICHEL\AppData\Local\Microsoft Games
[02/08/2009|22:53] C:\Users\MICHEL\AppData\Local\Microsoft Help
[27/04/2009|22:10] C:\Users\MICHEL\AppData\Local\Mozilla
[15/11/2008|23:13] C:\Users\MICHEL\AppData\Local\QSwitch.txt
[03/05/2009|22:59] C:\Users\MICHEL\AppData\Local\QuickPlay
[06/08/2009|22:01] C:\Users\MICHEL\AppData\Local\Temp
[15/11/2008|22:59] C:\Users\MICHEL\AppData\Local\Temporary Internet Files
[14/07/2009|21:11] C:\Users\MICHEL\AppData\Local\TomTom
[22/03/2009|19:57] C:\Users\MICHEL\AppData\Local\VirtualStore
--------------------\\ Tâches planifiées dans C:\Windows\tasks
[20/07/2009 20:00][--a------] C:\Windows\tasks\Norton Internet Security - Effectuer une analyse complŠte du systŠme - MICHEL.job
[06/08/2009 21:24][--ah-----] C:\Windows\tasks\SA.DAT
[06/08/2009 21:23][--a------] C:\Windows\tasks\SCHEDLGU.TXT
--------------------\\ Listing des dossiers dans C:\ProgramData
[04/03/2008|21:34] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[10/01/2009|23:26] C:\ProgramData\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[06/04/2009|21:59] C:\ProgramData\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[04/03/2008|21:35] C:\ProgramData\Adobe
[15/04/2009|23:40] C:\ProgramData\AOL
[26/02/2009|01:48] C:\ProgramData\Apple
[28/02/2009|12:16] C:\ProgramData\Apple Computer
[02/11/2006|15:02] C:\ProgramData\Application Data
[15/11/2008|22:51] C:\ProgramData\Bureau
[25/03/2009|19:35] C:\ProgramData\CyberLink
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[15/11/2008|23:04] C:\ProgramData\Electronic Arts
[15/11/2008|22:51] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[03/01/2009|23:27] C:\ProgramData\Google
[19/07/2009|20:03] C:\ProgramData\Gpl ooze view load
[16/08/2008|18:39] C:\ProgramData\Hewlett-Packard
[29/06/2009|08:25] C:\ProgramData\HP
[02/07/2009|19:09] C:\ProgramData\HP Product Assistant
[28/06/2009|21:42] C:\ProgramData\HPSSUPPLY
[02/07/2009|19:17] C:\ProgramData\hpzinstall.log
[27/07/2009|22:36] C:\ProgramData\Installations
[03/07/2009|21:37] C:\ProgramData\LauncherAccess.dt
[16/08/2008|18:39] C:\ProgramData\Macrovision
[05/08/2009|00:46] C:\ProgramData\mapi 2 burn
[15/11/2008|22:51] C:\ProgramData\Menu D‚marrer
[20/04/2009|21:46] C:\ProgramData\Micro Application
[17/12/2008|18:30] C:\ProgramData\Microsoft
[04/08/2009|16:58] C:\ProgramData\Microsoft Help
[15/11/2008|22:51] C:\ProgramData\ModŠles
[19/07/2009|20:03] C:\ProgramData\move readme readme.7kolbhj
[19/07/2009|20:03] C:\ProgramData\move readme readme.vbu0o
[04/03/2008|21:21] C:\ProgramData\muvee Technologies
[03/08/2009|22:52] C:\ProgramData\NOS
[16/08/2008|18:41] C:\ProgramData\NVIDIA
[27/05/2009|19:07] C:\ProgramData\Panasonic
[27/07/2009|22:44] C:\ProgramData\PC Suite
[02/11/2006|15:02] C:\ProgramData\Start Menu
[28/01/2009|21:22] C:\ProgramData\Symantec
[10/01/2009|21:53] C:\ProgramData\Symantec Temporary Files
[02/11/2006|15:02] C:\ProgramData\Templates
[14/07/2009|21:11] C:\ProgramData\TomTom
[19/07/2009|20:03] C:\ProgramData\Web Dvd Site.l45yxac
[28/06/2009|21:49] C:\ProgramData\WEBREG
[19/04/2009|13:33] C:\ProgramData\WildTangent
[16/11/2008|00:41] C:\ProgramData\WLInstaller
--------------------\\ Listing des dossiers dans C:\Program Files
[04/03/2008|21:34] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[04/03/2008|21:35] C:\Program Files\Adobe
[26/02/2009|01:52] C:\Program Files\Apple Software Update
[16/08/2008|18:18] C:\Program Files\AVerMedia
[06/04/2009|21:57] C:\Program Files\Bonjour
[27/07/2009|22:41] C:\Program Files\Common Files
[16/08/2008|18:34] C:\Program Files\CyberLink
[28/07/2009|20:54] C:\Program Files\DeezRip
[27/07/2009|22:40] C:\Program Files\DIFX
[16/08/2008|18:39] C:\Program Files\DigitalPersona
[07/05/2009|18:45] C:\Program Files\Electronic Arts
[15/11/2008|22:51] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[16/08/2008|18:19] C:\Program Files\Fingerprint Sensor
[04/01/2009|00:45] C:\Program Files\Google
[23/11/2008|00:15] C:\Program Files\Hewlett-Packard
[28/06/2009|21:42] C:\Program Files\Hp
[16/08/2008|18:38] C:\Program Files\HP Games
[16/08/2008|18:23] C:\Program Files\IDT
[27/05/2009|18:49] C:\Program Files\InstallShield Installation Information
[16/08/2008|18:20] C:\Program Files\Intel
[03/08/2009|00:16] C:\Program Files\Internet Explorer
[25/07/2009|20:51] C:\Program Files\iPod
[25/07/2009|20:52] C:\Program Files\iTunes
[03/08/2009|00:06] C:\Program Files\Java
[16/08/2008|18:36] C:\Program Files\Marvell
[05/08/2009|17:42] C:\Program Files\Microsoft
[02/11/2006|14:37] C:\Program Files\Microsoft Games
[30/12/2008|13:54] C:\Program Files\Microsoft Money
[04/03/2008|21:33] C:\Program Files\Microsoft Office
[12/06/2009|08:37] C:\Program Files\Microsoft Works
[04/03/2008|21:33] C:\Program Files\Microsoft.NET
[05/03/2008|05:20] C:\Program Files\Movie Maker
[27/04/2009|22:10] C:\Program Files\Mozilla Firefox
[02/11/2006|14:37] C:\Program Files\MSBuild
[09/03/2009|19:03] C:\Program Files\MSECache
[16/11/2008|01:09] C:\Program Files\MSXML 4.0
[04/03/2008|21:21] C:\Program Files\muvee Technologies
[27/07/2009|22:40] C:\Program Files\Nokia
[11/04/2009|09:13] C:\Program Files\Norton 360
[03/08/2009|22:52] C:\Program Files\NOS
[15/11/2008|23:41] C:\Program Files\Orange HSS
[27/05/2009|18:49] C:\Program Files\Panasonic
[27/07/2009|22:39] C:\Program Files\PC Connectivity Solution
[03/06/2009|19:36] C:\Program Files\QuickTime
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[15/11/2008|23:33] C:\Program Files\SAGEM
[23/12/2008|22:05] C:\Program Files\Samsung
[15/11/2008|23:32] C:\Program Files\Securitoo
[16/08/2008|18:39] C:\Program Files\Services en ligne
[16/08/2008|18:19] C:\Program Files\Silicon Image
[11/01/2009|23:48] C:\Program Files\Symantec
[16/08/2008|18:16] C:\Program Files\Synaptics
[14/07/2009|21:10] C:\Program Files\TomTom HOME 2
[14/07/2009|21:11] C:\Program Files\TomTom International B.V
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[23/11/2008|22:22] C:\Program Files\VideoLAN
[16/08/2008|18:24] C:\Program Files\WIDCOMM
[05/03/2008|05:20] C:\Program Files\Windows Calendar
[05/03/2008|05:20] C:\Program Files\Windows Collaboration
[05/03/2008|05:20] C:\Program Files\Windows Defender
[05/03/2008|05:20] C:\Program Files\Windows Journal
[05/08/2009|17:42] C:\Program Files\Windows Live
[05/08/2009|17:42] C:\Program Files\Windows Live SkyDrive
[15/07/2009|08:35] C:\Program Files\Windows Mail
[12/03/2009|09:19] C:\Program Files\Windows Media Player
[15/11/2008|22:51] C:\Program Files\Windows NT
[05/03/2008|05:20] C:\Program Files\Windows Photo Gallery
[05/03/2008|05:20] C:\Program Files\Windows Sidebar
[14/07/2009|19:50] C:\Program Files\wletmin
--------------------\\ Listing des dossiers dans C:\Program Files\Common Files
[04/03/2008|21:35] C:\Program Files\Common Files\Adobe
[25/07/2009|20:51] C:\Program Files\Common Files\Apple
[04/03/2008|21:33] C:\Program Files\Common Files\DESIGNER
[15/11/2008|23:40] C:\Program Files\Common Files\France Telecom
[28/06/2009|21:38] C:\Program Files\Common Files\Hewlett-Packard
[28/06/2009|21:41] C:\Program Files\Common Files\HP
[04/03/2008|21:44] C:\Program Files\Common Files\InstallShield
[04/03/2008|21:49] C:\Program Files\Common Files\Java
[05/08/2009|17:42] C:\Program Files\Common Files\microsoft shared
[04/03/2008|21:21] C:\Program Files\Common Files\muvee Technologies
[27/07/2009|22:41] C:\Program Files\Common Files\Nokia
[27/07/2009|22:41] C:\Program Files\Common Files\PCSuite
[20/12/2008|15:33] C:\Program Files\Common Files\PX Storage Engine
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[27/02/2009|15:49] C:\Program Files\Common Files\Symantec Shared
[05/03/2008|05:20] C:\Program Files\Common Files\System
[17/12/2008|18:32] C:\Program Files\Common Files\Windows Live
[16/11/2008|00:46] C:\Program Files\Common Files\WindowsLiveInstaller
--------------------\\ Process
( 105 Processes )
iexplore.exe ~ [PID:3748]
iexplore.exe ~ [PID:3596]
iexplore.exe ~ [PID:4540]
iexplore.exe ~ [PID:3876]
iexplore.exe ~ [PID:4664]
iexplore.exe ~ [PID:1468]
iexplore.exe ~ [PID:2848]
iexplore.exe ~ [PID:3440]
--------------------\\ Recherche avec S_Lop
C:\ProgramData\move readme readme.vbu0o
C:\ProgramData\move readme readme.7kolbhj
C:\ProgramData\Web Dvd Site.l45yxac
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\ProgramData\Gpl ooze view load
C:\ProgramData\Gpl ooze view load\Roam barb.dat
C:\ProgramData\Gpl ooze view load\Roam barb.exe
C:\Users\MICHEL\AppData\Local\Temp\msgpl_da76.tmp
--------------------\\ Verification du Registre
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Poll Bias"="\"C:\\ProgramData\\move readme readme.7kolbhj\""
"view load up cast"="\"C:\\ProgramData\\Web Dvd Site.l45yxac\""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-08-06 21:31:00
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-08-06 22:01:50
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 121
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:65699][D:46]-> C:\Users\MICHEL\AppData\Local\Temp
[F:528][D:1]-> C:\Users\MICHEL\AppData\Roaming\MICROS~1\Windows\Cookies
[F:1536][D:4]-> C:\Users\MICHEL\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:8][D:3]-> C:\$Recycle.Bin
1 - "C:\Lop SD\LopR_1.txt" - 06/08/2009|22:36 - Option : [1]
--------------------\\ Fin du rapport a 22:36:00
[ UAC => 1 ]
--------------------\\ Lop S&D 4.2.5-0 XP/Vista
Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Intel(R) Core(TM)2 Duo CPU T8100 @ 2.10GHz )
BIOS : EPP runtime BIOS - Version 1.1
USER : MICHEL ( Administrator )
BOOT : Normal boot
C:\ (Local Disk) - NTFS - Total:221 Go (Free:134 Go)
D:\ (Local Disk) - NTFS - Total:232 Go (Free:232 Go)
E:\ (Local Disk) - NTFS - Total:11 Go (Free:2 Go)
F:\ (CD or DVD)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 06/08/2009|22:01 )
[ UAC => 0 ]
--------------------\\ Listing des dossiers dans Local
[17/11/2008|22:43] C:\Users\MICHEL\AppData\Local\Adobe
[26/02/2009|01:52] C:\Users\MICHEL\AppData\Local\Apple
[27/03/2009|15:04] C:\Users\MICHEL\AppData\Local\Apple Computer
[15/11/2008|22:59] C:\Users\MICHEL\AppData\Local\Application Data
[15/11/2008|23:13] C:\Users\MICHEL\AppData\Local\AtStart.txt
[10/01/2009|23:01] C:\Users\MICHEL\AppData\Local\d3d9caps.dat
[28/07/2009|19:30] C:\Users\MICHEL\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[15/11/2008|23:13] C:\Users\MICHEL\AppData\Local\DigitalPersona
[15/11/2008|23:03] C:\Users\MICHEL\AppData\Local\Downloaded Installations
[15/11/2008|23:13] C:\Users\MICHEL\AppData\Local\DSwitch.txt
[03/08/2009|08:15] C:\Users\MICHEL\AppData\Local\GDIPFONTCACHEV1.DAT
[15/06/2009|08:20] C:\Users\MICHEL\AppData\Local\Google
[15/11/2008|22:59] C:\Users\MICHEL\AppData\Local\Historique
[06/08/2009|21:22] C:\Users\MICHEL\AppData\Local\IconCache.db
[22/06/2009|10:58] C:\Users\MICHEL\AppData\Local\Microsoft
[19/04/2009|22:39] C:\Users\MICHEL\AppData\Local\Microsoft Games
[02/08/2009|22:53] C:\Users\MICHEL\AppData\Local\Microsoft Help
[27/04/2009|22:10] C:\Users\MICHEL\AppData\Local\Mozilla
[15/11/2008|23:13] C:\Users\MICHEL\AppData\Local\QSwitch.txt
[03/05/2009|22:59] C:\Users\MICHEL\AppData\Local\QuickPlay
[06/08/2009|22:01] C:\Users\MICHEL\AppData\Local\Temp
[15/11/2008|22:59] C:\Users\MICHEL\AppData\Local\Temporary Internet Files
[14/07/2009|21:11] C:\Users\MICHEL\AppData\Local\TomTom
[22/03/2009|19:57] C:\Users\MICHEL\AppData\Local\VirtualStore
--------------------\\ Tâches planifiées dans C:\Windows\tasks
[20/07/2009 20:00][--a------] C:\Windows\tasks\Norton Internet Security - Effectuer une analyse complŠte du systŠme - MICHEL.job
[06/08/2009 21:24][--ah-----] C:\Windows\tasks\SA.DAT
[06/08/2009 21:23][--a------] C:\Windows\tasks\SCHEDLGU.TXT
--------------------\\ Listing des dossiers dans C:\ProgramData
[04/03/2008|21:34] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[10/01/2009|23:26] C:\ProgramData\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[06/04/2009|21:59] C:\ProgramData\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[04/03/2008|21:35] C:\ProgramData\Adobe
[15/04/2009|23:40] C:\ProgramData\AOL
[26/02/2009|01:48] C:\ProgramData\Apple
[28/02/2009|12:16] C:\ProgramData\Apple Computer
[02/11/2006|15:02] C:\ProgramData\Application Data
[15/11/2008|22:51] C:\ProgramData\Bureau
[25/03/2009|19:35] C:\ProgramData\CyberLink
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[15/11/2008|23:04] C:\ProgramData\Electronic Arts
[15/11/2008|22:51] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[03/01/2009|23:27] C:\ProgramData\Google
[19/07/2009|20:03] C:\ProgramData\Gpl ooze view load
[16/08/2008|18:39] C:\ProgramData\Hewlett-Packard
[29/06/2009|08:25] C:\ProgramData\HP
[02/07/2009|19:09] C:\ProgramData\HP Product Assistant
[28/06/2009|21:42] C:\ProgramData\HPSSUPPLY
[02/07/2009|19:17] C:\ProgramData\hpzinstall.log
[27/07/2009|22:36] C:\ProgramData\Installations
[03/07/2009|21:37] C:\ProgramData\LauncherAccess.dt
[16/08/2008|18:39] C:\ProgramData\Macrovision
[05/08/2009|00:46] C:\ProgramData\mapi 2 burn
[15/11/2008|22:51] C:\ProgramData\Menu D‚marrer
[20/04/2009|21:46] C:\ProgramData\Micro Application
[17/12/2008|18:30] C:\ProgramData\Microsoft
[04/08/2009|16:58] C:\ProgramData\Microsoft Help
[15/11/2008|22:51] C:\ProgramData\ModŠles
[19/07/2009|20:03] C:\ProgramData\move readme readme.7kolbhj
[19/07/2009|20:03] C:\ProgramData\move readme readme.vbu0o
[04/03/2008|21:21] C:\ProgramData\muvee Technologies
[03/08/2009|22:52] C:\ProgramData\NOS
[16/08/2008|18:41] C:\ProgramData\NVIDIA
[27/05/2009|19:07] C:\ProgramData\Panasonic
[27/07/2009|22:44] C:\ProgramData\PC Suite
[02/11/2006|15:02] C:\ProgramData\Start Menu
[28/01/2009|21:22] C:\ProgramData\Symantec
[10/01/2009|21:53] C:\ProgramData\Symantec Temporary Files
[02/11/2006|15:02] C:\ProgramData\Templates
[14/07/2009|21:11] C:\ProgramData\TomTom
[19/07/2009|20:03] C:\ProgramData\Web Dvd Site.l45yxac
[28/06/2009|21:49] C:\ProgramData\WEBREG
[19/04/2009|13:33] C:\ProgramData\WildTangent
[16/11/2008|00:41] C:\ProgramData\WLInstaller
--------------------\\ Listing des dossiers dans C:\Program Files
[04/03/2008|21:34] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[04/03/2008|21:35] C:\Program Files\Adobe
[26/02/2009|01:52] C:\Program Files\Apple Software Update
[16/08/2008|18:18] C:\Program Files\AVerMedia
[06/04/2009|21:57] C:\Program Files\Bonjour
[27/07/2009|22:41] C:\Program Files\Common Files
[16/08/2008|18:34] C:\Program Files\CyberLink
[28/07/2009|20:54] C:\Program Files\DeezRip
[27/07/2009|22:40] C:\Program Files\DIFX
[16/08/2008|18:39] C:\Program Files\DigitalPersona
[07/05/2009|18:45] C:\Program Files\Electronic Arts
[15/11/2008|22:51] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[16/08/2008|18:19] C:\Program Files\Fingerprint Sensor
[04/01/2009|00:45] C:\Program Files\Google
[23/11/2008|00:15] C:\Program Files\Hewlett-Packard
[28/06/2009|21:42] C:\Program Files\Hp
[16/08/2008|18:38] C:\Program Files\HP Games
[16/08/2008|18:23] C:\Program Files\IDT
[27/05/2009|18:49] C:\Program Files\InstallShield Installation Information
[16/08/2008|18:20] C:\Program Files\Intel
[03/08/2009|00:16] C:\Program Files\Internet Explorer
[25/07/2009|20:51] C:\Program Files\iPod
[25/07/2009|20:52] C:\Program Files\iTunes
[03/08/2009|00:06] C:\Program Files\Java
[16/08/2008|18:36] C:\Program Files\Marvell
[05/08/2009|17:42] C:\Program Files\Microsoft
[02/11/2006|14:37] C:\Program Files\Microsoft Games
[30/12/2008|13:54] C:\Program Files\Microsoft Money
[04/03/2008|21:33] C:\Program Files\Microsoft Office
[12/06/2009|08:37] C:\Program Files\Microsoft Works
[04/03/2008|21:33] C:\Program Files\Microsoft.NET
[05/03/2008|05:20] C:\Program Files\Movie Maker
[27/04/2009|22:10] C:\Program Files\Mozilla Firefox
[02/11/2006|14:37] C:\Program Files\MSBuild
[09/03/2009|19:03] C:\Program Files\MSECache
[16/11/2008|01:09] C:\Program Files\MSXML 4.0
[04/03/2008|21:21] C:\Program Files\muvee Technologies
[27/07/2009|22:40] C:\Program Files\Nokia
[11/04/2009|09:13] C:\Program Files\Norton 360
[03/08/2009|22:52] C:\Program Files\NOS
[15/11/2008|23:41] C:\Program Files\Orange HSS
[27/05/2009|18:49] C:\Program Files\Panasonic
[27/07/2009|22:39] C:\Program Files\PC Connectivity Solution
[03/06/2009|19:36] C:\Program Files\QuickTime
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[15/11/2008|23:33] C:\Program Files\SAGEM
[23/12/2008|22:05] C:\Program Files\Samsung
[15/11/2008|23:32] C:\Program Files\Securitoo
[16/08/2008|18:39] C:\Program Files\Services en ligne
[16/08/2008|18:19] C:\Program Files\Silicon Image
[11/01/2009|23:48] C:\Program Files\Symantec
[16/08/2008|18:16] C:\Program Files\Synaptics
[14/07/2009|21:10] C:\Program Files\TomTom HOME 2
[14/07/2009|21:11] C:\Program Files\TomTom International B.V
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[23/11/2008|22:22] C:\Program Files\VideoLAN
[16/08/2008|18:24] C:\Program Files\WIDCOMM
[05/03/2008|05:20] C:\Program Files\Windows Calendar
[05/03/2008|05:20] C:\Program Files\Windows Collaboration
[05/03/2008|05:20] C:\Program Files\Windows Defender
[05/03/2008|05:20] C:\Program Files\Windows Journal
[05/08/2009|17:42] C:\Program Files\Windows Live
[05/08/2009|17:42] C:\Program Files\Windows Live SkyDrive
[15/07/2009|08:35] C:\Program Files\Windows Mail
[12/03/2009|09:19] C:\Program Files\Windows Media Player
[15/11/2008|22:51] C:\Program Files\Windows NT
[05/03/2008|05:20] C:\Program Files\Windows Photo Gallery
[05/03/2008|05:20] C:\Program Files\Windows Sidebar
[14/07/2009|19:50] C:\Program Files\wletmin
--------------------\\ Listing des dossiers dans C:\Program Files\Common Files
[04/03/2008|21:35] C:\Program Files\Common Files\Adobe
[25/07/2009|20:51] C:\Program Files\Common Files\Apple
[04/03/2008|21:33] C:\Program Files\Common Files\DESIGNER
[15/11/2008|23:40] C:\Program Files\Common Files\France Telecom
[28/06/2009|21:38] C:\Program Files\Common Files\Hewlett-Packard
[28/06/2009|21:41] C:\Program Files\Common Files\HP
[04/03/2008|21:44] C:\Program Files\Common Files\InstallShield
[04/03/2008|21:49] C:\Program Files\Common Files\Java
[05/08/2009|17:42] C:\Program Files\Common Files\microsoft shared
[04/03/2008|21:21] C:\Program Files\Common Files\muvee Technologies
[27/07/2009|22:41] C:\Program Files\Common Files\Nokia
[27/07/2009|22:41] C:\Program Files\Common Files\PCSuite
[20/12/2008|15:33] C:\Program Files\Common Files\PX Storage Engine
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[27/02/2009|15:49] C:\Program Files\Common Files\Symantec Shared
[05/03/2008|05:20] C:\Program Files\Common Files\System
[17/12/2008|18:32] C:\Program Files\Common Files\Windows Live
[16/11/2008|00:46] C:\Program Files\Common Files\WindowsLiveInstaller
--------------------\\ Process
( 105 Processes )
iexplore.exe ~ [PID:3748]
iexplore.exe ~ [PID:3596]
iexplore.exe ~ [PID:4540]
iexplore.exe ~ [PID:3876]
iexplore.exe ~ [PID:4664]
iexplore.exe ~ [PID:1468]
iexplore.exe ~ [PID:2848]
iexplore.exe ~ [PID:3440]
--------------------\\ Recherche avec S_Lop
C:\ProgramData\move readme readme.vbu0o
C:\ProgramData\move readme readme.7kolbhj
C:\ProgramData\Web Dvd Site.l45yxac
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\ProgramData\Gpl ooze view load
C:\ProgramData\Gpl ooze view load\Roam barb.dat
C:\ProgramData\Gpl ooze view load\Roam barb.exe
C:\Users\MICHEL\AppData\Local\Temp\msgpl_da76.tmp
--------------------\\ Verification du Registre
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Poll Bias"="\"C:\\ProgramData\\move readme readme.7kolbhj\""
"view load up cast"="\"C:\\ProgramData\\Web Dvd Site.l45yxac\""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-08-06 21:31:00
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-08-06 22:01:50
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 121
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:65699][D:46]-> C:\Users\MICHEL\AppData\Local\Temp
[F:528][D:1]-> C:\Users\MICHEL\AppData\Roaming\MICROS~1\Windows\Cookies
[F:1536][D:4]-> C:\Users\MICHEL\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:8][D:3]-> C:\$Recycle.Bin
1 - "C:\Lop SD\LopR_1.txt" - 06/08/2009|22:36 - Option : [1]
--------------------\\ Fin du rapport a 22:36:00
[ UAC => 1 ]
toptitbal
Messages postés
25709
Date d'inscription
samedi 8 juillet 2006
Statut
Contributeur sécurité
Dernière intervention
4 mars 2010
2 229
6 août 2009 à 22:39
6 août 2009 à 22:39
On nettoie et je t'expliquerai tout à la fin :
Relance Lop S&D
* Choisis cette fois ci l'Option 2 (Suppression)
* Ne ferme pas la fenêtre lors de la suppression !
* Poste le rapport généré (C:\lopR.txt)
Relance Lop S&D
* Choisis cette fois ci l'Option 2 (Suppression)
* Ne ferme pas la fenêtre lors de la suppression !
* Poste le rapport généré (C:\lopR.txt)
blondie336
Messages postés
20
Date d'inscription
jeudi 30 juillet 2009
Statut
Membre
Dernière intervention
7 août 2009
6 août 2009 à 22:43
6 août 2009 à 22:43
Dois- je redésactiver le controle des comptes utilisateurs avant ?
toptitbal
Messages postés
25709
Date d'inscription
samedi 8 juillet 2006
Statut
Contributeur sécurité
Dernière intervention
4 mars 2010
2 229
6 août 2009 à 22:46
6 août 2009 à 22:46
Non !
Tu le feras quand tout sera fini.
Tu le feras quand tout sera fini.
blondie336
Messages postés
20
Date d'inscription
jeudi 30 juillet 2009
Statut
Membre
Dernière intervention
7 août 2009
6 août 2009 à 23:23
6 août 2009 à 23:23
--------------------\\ Lop S&D 4.2.5-0 XP/Vista
Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Intel(R) Core(TM)2 Duo CPU T8100 @ 2.10GHz )
BIOS : EPP runtime BIOS - Version 1.1
USER : MICHEL ( Administrator )
BOOT : Normal boot
C:\ (Local Disk) - NTFS - Total:221 Go (Free:134 Go)
D:\ (Local Disk) - NTFS - Total:232 Go (Free:232 Go)
E:\ (Local Disk) - NTFS - Total:11 Go (Free:2 Go)
F:\ (CD or DVD)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [2] ( 06/08/2009|22:49 )
[ UAC => 1 ]
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION
Supprime! - C:\ProgramData\Gpl ooze view load\Roam barb.dat
Supprime! - C:\ProgramData\Gpl ooze view load\Roam barb.exe
Supprime! - C:\Users\MICHEL\AppData\Local\Temp\msgpl_da76.tmp
Supprime! - C:\ProgramData\move readme readme.vbu0o
Supprime! - C:\ProgramData\move readme readme.7kolbhj
Supprime! - C:\ProgramData\Web Dvd Site.l45yxac
Supprime! - C:\ProgramData\Gpl ooze view load
-
[ Fichier Hosts ] .. Restaure!
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing des dossiers dans Local
[17/11/2008|22:43] C:\Users\MICHEL\AppData\Local\Adobe
[26/02/2009|01:52] C:\Users\MICHEL\AppData\Local\Apple
[27/03/2009|15:04] C:\Users\MICHEL\AppData\Local\Apple Computer
[15/11/2008|22:59] C:\Users\MICHEL\AppData\Local\Application Data
[15/11/2008|23:13] C:\Users\MICHEL\AppData\Local\AtStart.txt
[10/01/2009|23:01] C:\Users\MICHEL\AppData\Local\d3d9caps.dat
[28/07/2009|19:30] C:\Users\MICHEL\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[15/11/2008|23:13] C:\Users\MICHEL\AppData\Local\DigitalPersona
[15/11/2008|23:03] C:\Users\MICHEL\AppData\Local\Downloaded Installations
[15/11/2008|23:13] C:\Users\MICHEL\AppData\Local\DSwitch.txt
[03/08/2009|08:15] C:\Users\MICHEL\AppData\Local\GDIPFONTCACHEV1.DAT
[15/06/2009|08:20] C:\Users\MICHEL\AppData\Local\Google
[15/11/2008|22:59] C:\Users\MICHEL\AppData\Local\Historique
[06/08/2009|21:22] C:\Users\MICHEL\AppData\Local\IconCache.db
[22/06/2009|10:58] C:\Users\MICHEL\AppData\Local\Microsoft
[19/04/2009|22:39] C:\Users\MICHEL\AppData\Local\Microsoft Games
[02/08/2009|22:53] C:\Users\MICHEL\AppData\Local\Microsoft Help
[27/04/2009|22:10] C:\Users\MICHEL\AppData\Local\Mozilla
[15/11/2008|23:13] C:\Users\MICHEL\AppData\Local\QSwitch.txt
[03/05/2009|22:59] C:\Users\MICHEL\AppData\Local\QuickPlay
[06/08/2009|22:49] C:\Users\MICHEL\AppData\Local\Temp
[15/11/2008|22:59] C:\Users\MICHEL\AppData\Local\Temporary Internet Files
[14/07/2009|21:11] C:\Users\MICHEL\AppData\Local\TomTom
[22/03/2009|19:57] C:\Users\MICHEL\AppData\Local\VirtualStore
--------------------\\ Tâches planifiées dans C:\Windows\tasks
[20/07/2009 20:00][--a------] C:\Windows\tasks\Norton Internet Security - Effectuer une analyse complŠte du systŠme - MICHEL.job
[06/08/2009 21:24][--ah-----] C:\Windows\tasks\SA.DAT
[06/08/2009 21:23][--a------] C:\Windows\tasks\SCHEDLGU.TXT
--------------------\\ Listing des dossiers dans C:\ProgramData
[04/03/2008|21:34] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[10/01/2009|23:26] C:\ProgramData\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[06/04/2009|21:59] C:\ProgramData\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[04/03/2008|21:35] C:\ProgramData\Adobe
[15/04/2009|23:40] C:\ProgramData\AOL
[26/02/2009|01:48] C:\ProgramData\Apple
[28/02/2009|12:16] C:\ProgramData\Apple Computer
[02/11/2006|15:02] C:\ProgramData\Application Data
[15/11/2008|22:51] C:\ProgramData\Bureau
[25/03/2009|19:35] C:\ProgramData\CyberLink
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[15/11/2008|23:04] C:\ProgramData\Electronic Arts
[15/11/2008|22:51] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[03/01/2009|23:27] C:\ProgramData\Google
[16/08/2008|18:39] C:\ProgramData\Hewlett-Packard
[29/06/2009|08:25] C:\ProgramData\HP
[02/07/2009|19:09] C:\ProgramData\HP Product Assistant
[28/06/2009|21:42] C:\ProgramData\HPSSUPPLY
[02/07/2009|19:17] C:\ProgramData\hpzinstall.log
[27/07/2009|22:36] C:\ProgramData\Installations
[03/07/2009|21:37] C:\ProgramData\LauncherAccess.dt
[16/08/2008|18:39] C:\ProgramData\Macrovision
[05/08/2009|00:46] C:\ProgramData\mapi 2 burn
[15/11/2008|22:51] C:\ProgramData\Menu D‚marrer
[20/04/2009|21:46] C:\ProgramData\Micro Application
[17/12/2008|18:30] C:\ProgramData\Microsoft
[04/08/2009|16:58] C:\ProgramData\Microsoft Help
[15/11/2008|22:51] C:\ProgramData\ModŠles
[04/03/2008|21:21] C:\ProgramData\muvee Technologies
[03/08/2009|22:52] C:\ProgramData\NOS
[16/08/2008|18:41] C:\ProgramData\NVIDIA
[27/05/2009|19:07] C:\ProgramData\Panasonic
[27/07/2009|22:44] C:\ProgramData\PC Suite
[02/11/2006|15:02] C:\ProgramData\Start Menu
[28/01/2009|21:22] C:\ProgramData\Symantec
[10/01/2009|21:53] C:\ProgramData\Symantec Temporary Files
[02/11/2006|15:02] C:\ProgramData\Templates
[14/07/2009|21:11] C:\ProgramData\TomTom
[28/06/2009|21:49] C:\ProgramData\WEBREG
[19/04/2009|13:33] C:\ProgramData\WildTangent
[16/11/2008|00:41] C:\ProgramData\WLInstaller
--------------------\\ Listing des dossiers dans C:\Program Files
[04/03/2008|21:34] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[04/03/2008|21:35] C:\Program Files\Adobe
[26/02/2009|01:52] C:\Program Files\Apple Software Update
[16/08/2008|18:18] C:\Program Files\AVerMedia
[06/04/2009|21:57] C:\Program Files\Bonjour
[27/07/2009|22:41] C:\Program Files\Common Files
[16/08/2008|18:34] C:\Program Files\CyberLink
[28/07/2009|20:54] C:\Program Files\DeezRip
[27/07/2009|22:40] C:\Program Files\DIFX
[16/08/2008|18:39] C:\Program Files\DigitalPersona
[07/05/2009|18:45] C:\Program Files\Electronic Arts
[15/11/2008|22:51] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[16/08/2008|18:19] C:\Program Files\Fingerprint Sensor
[04/01/2009|00:45] C:\Program Files\Google
[23/11/2008|00:15] C:\Program Files\Hewlett-Packard
[28/06/2009|21:42] C:\Program Files\Hp
[16/08/2008|18:38] C:\Program Files\HP Games
[16/08/2008|18:23] C:\Program Files\IDT
[27/05/2009|18:49] C:\Program Files\InstallShield Installation Information
[16/08/2008|18:20] C:\Program Files\Intel
[03/08/2009|00:16] C:\Program Files\Internet Explorer
[25/07/2009|20:51] C:\Program Files\iPod
[25/07/2009|20:52] C:\Program Files\iTunes
[03/08/2009|00:06] C:\Program Files\Java
[16/08/2008|18:36] C:\Program Files\Marvell
[05/08/2009|17:42] C:\Program Files\Microsoft
[02/11/2006|14:37] C:\Program Files\Microsoft Games
[30/12/2008|13:54] C:\Program Files\Microsoft Money
[04/03/2008|21:33] C:\Program Files\Microsoft Office
[12/06/2009|08:37] C:\Program Files\Microsoft Works
[04/03/2008|21:33] C:\Program Files\Microsoft.NET
[05/03/2008|05:20] C:\Program Files\Movie Maker
[27/04/2009|22:10] C:\Program Files\Mozilla Firefox
[02/11/2006|14:37] C:\Program Files\MSBuild
[09/03/2009|19:03] C:\Program Files\MSECache
[16/11/2008|01:09] C:\Program Files\MSXML 4.0
[04/03/2008|21:21] C:\Program Files\muvee Technologies
[27/07/2009|22:40] C:\Program Files\Nokia
[11/04/2009|09:13] C:\Program Files\Norton 360
[03/08/2009|22:52] C:\Program Files\NOS
[15/11/2008|23:41] C:\Program Files\Orange HSS
[27/05/2009|18:49] C:\Program Files\Panasonic
[27/07/2009|22:39] C:\Program Files\PC Connectivity Solution
[03/06/2009|19:36] C:\Program Files\QuickTime
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[15/11/2008|23:33] C:\Program Files\SAGEM
[23/12/2008|22:05] C:\Program Files\Samsung
[15/11/2008|23:32] C:\Program Files\Securitoo
[16/08/2008|18:39] C:\Program Files\Services en ligne
[16/08/2008|18:19] C:\Program Files\Silicon Image
[11/01/2009|23:48] C:\Program Files\Symantec
[16/08/2008|18:16] C:\Program Files\Synaptics
[14/07/2009|21:10] C:\Program Files\TomTom HOME 2
[14/07/2009|21:11] C:\Program Files\TomTom International B.V
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[23/11/2008|22:22] C:\Program Files\VideoLAN
[16/08/2008|18:24] C:\Program Files\WIDCOMM
[05/03/2008|05:20] C:\Program Files\Windows Calendar
[05/03/2008|05:20] C:\Program Files\Windows Collaboration
[05/03/2008|05:20] C:\Program Files\Windows Defender
[05/03/2008|05:20] C:\Program Files\Windows Journal
[05/08/2009|17:42] C:\Program Files\Windows Live
[05/08/2009|17:42] C:\Program Files\Windows Live SkyDrive
[15/07/2009|08:35] C:\Program Files\Windows Mail
[12/03/2009|09:19] C:\Program Files\Windows Media Player
[15/11/2008|22:51] C:\Program Files\Windows NT
[05/03/2008|05:20] C:\Program Files\Windows Photo Gallery
[05/03/2008|05:20] C:\Program Files\Windows Sidebar
[14/07/2009|19:50] C:\Program Files\wletmin
--------------------\\ Listing des dossiers dans C:\Program Files\Common Files
[04/03/2008|21:35] C:\Program Files\Common Files\Adobe
[25/07/2009|20:51] C:\Program Files\Common Files\Apple
[04/03/2008|21:33] C:\Program Files\Common Files\DESIGNER
[15/11/2008|23:40] C:\Program Files\Common Files\France Telecom
[28/06/2009|21:38] C:\Program Files\Common Files\Hewlett-Packard
[28/06/2009|21:41] C:\Program Files\Common Files\HP
[04/03/2008|21:44] C:\Program Files\Common Files\InstallShield
[04/03/2008|21:49] C:\Program Files\Common Files\Java
[05/08/2009|17:42] C:\Program Files\Common Files\microsoft shared
[04/03/2008|21:21] C:\Program Files\Common Files\muvee Technologies
[27/07/2009|22:41] C:\Program Files\Common Files\Nokia
[27/07/2009|22:41] C:\Program Files\Common Files\PCSuite
[20/12/2008|15:33] C:\Program Files\Common Files\PX Storage Engine
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[27/02/2009|15:49] C:\Program Files\Common Files\Symantec Shared
[05/03/2008|05:20] C:\Program Files\Common Files\System
[17/12/2008|18:32] C:\Program Files\Common Files\Windows Live
[16/11/2008|00:46] C:\Program Files\Common Files\WindowsLiveInstaller
--------------------\\ Process
( 96 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-08-06 22:49:47
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 121
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:65690][D:46]-> C:\Users\MICHEL\AppData\Local\Temp
[F:539][D:1]-> C:\Users\MICHEL\AppData\Roaming\MICROS~1\Windows\Cookies
[F:2134][D:4]-> C:\Users\MICHEL\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:8][D:3]-> C:\$Recycle.Bin
1 - "C:\Lop SD\LopR_1.txt" - 06/08/2009|22:36 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 06/08/2009|23:20 - Option : [2]
--------------------\\ Fin du rapport a 23:20:49
[ UAC => 1 ]
Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Intel(R) Core(TM)2 Duo CPU T8100 @ 2.10GHz )
BIOS : EPP runtime BIOS - Version 1.1
USER : MICHEL ( Administrator )
BOOT : Normal boot
C:\ (Local Disk) - NTFS - Total:221 Go (Free:134 Go)
D:\ (Local Disk) - NTFS - Total:232 Go (Free:232 Go)
E:\ (Local Disk) - NTFS - Total:11 Go (Free:2 Go)
F:\ (CD or DVD)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [2] ( 06/08/2009|22:49 )
[ UAC => 1 ]
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION
Supprime! - C:\ProgramData\Gpl ooze view load\Roam barb.dat
Supprime! - C:\ProgramData\Gpl ooze view load\Roam barb.exe
Supprime! - C:\Users\MICHEL\AppData\Local\Temp\msgpl_da76.tmp
Supprime! - C:\ProgramData\move readme readme.vbu0o
Supprime! - C:\ProgramData\move readme readme.7kolbhj
Supprime! - C:\ProgramData\Web Dvd Site.l45yxac
Supprime! - C:\ProgramData\Gpl ooze view load
-
[ Fichier Hosts ] .. Restaure!
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing des dossiers dans Local
[17/11/2008|22:43] C:\Users\MICHEL\AppData\Local\Adobe
[26/02/2009|01:52] C:\Users\MICHEL\AppData\Local\Apple
[27/03/2009|15:04] C:\Users\MICHEL\AppData\Local\Apple Computer
[15/11/2008|22:59] C:\Users\MICHEL\AppData\Local\Application Data
[15/11/2008|23:13] C:\Users\MICHEL\AppData\Local\AtStart.txt
[10/01/2009|23:01] C:\Users\MICHEL\AppData\Local\d3d9caps.dat
[28/07/2009|19:30] C:\Users\MICHEL\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[15/11/2008|23:13] C:\Users\MICHEL\AppData\Local\DigitalPersona
[15/11/2008|23:03] C:\Users\MICHEL\AppData\Local\Downloaded Installations
[15/11/2008|23:13] C:\Users\MICHEL\AppData\Local\DSwitch.txt
[03/08/2009|08:15] C:\Users\MICHEL\AppData\Local\GDIPFONTCACHEV1.DAT
[15/06/2009|08:20] C:\Users\MICHEL\AppData\Local\Google
[15/11/2008|22:59] C:\Users\MICHEL\AppData\Local\Historique
[06/08/2009|21:22] C:\Users\MICHEL\AppData\Local\IconCache.db
[22/06/2009|10:58] C:\Users\MICHEL\AppData\Local\Microsoft
[19/04/2009|22:39] C:\Users\MICHEL\AppData\Local\Microsoft Games
[02/08/2009|22:53] C:\Users\MICHEL\AppData\Local\Microsoft Help
[27/04/2009|22:10] C:\Users\MICHEL\AppData\Local\Mozilla
[15/11/2008|23:13] C:\Users\MICHEL\AppData\Local\QSwitch.txt
[03/05/2009|22:59] C:\Users\MICHEL\AppData\Local\QuickPlay
[06/08/2009|22:49] C:\Users\MICHEL\AppData\Local\Temp
[15/11/2008|22:59] C:\Users\MICHEL\AppData\Local\Temporary Internet Files
[14/07/2009|21:11] C:\Users\MICHEL\AppData\Local\TomTom
[22/03/2009|19:57] C:\Users\MICHEL\AppData\Local\VirtualStore
--------------------\\ Tâches planifiées dans C:\Windows\tasks
[20/07/2009 20:00][--a------] C:\Windows\tasks\Norton Internet Security - Effectuer une analyse complŠte du systŠme - MICHEL.job
[06/08/2009 21:24][--ah-----] C:\Windows\tasks\SA.DAT
[06/08/2009 21:23][--a------] C:\Windows\tasks\SCHEDLGU.TXT
--------------------\\ Listing des dossiers dans C:\ProgramData
[04/03/2008|21:34] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[10/01/2009|23:26] C:\ProgramData\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[06/04/2009|21:59] C:\ProgramData\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[04/03/2008|21:35] C:\ProgramData\Adobe
[15/04/2009|23:40] C:\ProgramData\AOL
[26/02/2009|01:48] C:\ProgramData\Apple
[28/02/2009|12:16] C:\ProgramData\Apple Computer
[02/11/2006|15:02] C:\ProgramData\Application Data
[15/11/2008|22:51] C:\ProgramData\Bureau
[25/03/2009|19:35] C:\ProgramData\CyberLink
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[15/11/2008|23:04] C:\ProgramData\Electronic Arts
[15/11/2008|22:51] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[03/01/2009|23:27] C:\ProgramData\Google
[16/08/2008|18:39] C:\ProgramData\Hewlett-Packard
[29/06/2009|08:25] C:\ProgramData\HP
[02/07/2009|19:09] C:\ProgramData\HP Product Assistant
[28/06/2009|21:42] C:\ProgramData\HPSSUPPLY
[02/07/2009|19:17] C:\ProgramData\hpzinstall.log
[27/07/2009|22:36] C:\ProgramData\Installations
[03/07/2009|21:37] C:\ProgramData\LauncherAccess.dt
[16/08/2008|18:39] C:\ProgramData\Macrovision
[05/08/2009|00:46] C:\ProgramData\mapi 2 burn
[15/11/2008|22:51] C:\ProgramData\Menu D‚marrer
[20/04/2009|21:46] C:\ProgramData\Micro Application
[17/12/2008|18:30] C:\ProgramData\Microsoft
[04/08/2009|16:58] C:\ProgramData\Microsoft Help
[15/11/2008|22:51] C:\ProgramData\ModŠles
[04/03/2008|21:21] C:\ProgramData\muvee Technologies
[03/08/2009|22:52] C:\ProgramData\NOS
[16/08/2008|18:41] C:\ProgramData\NVIDIA
[27/05/2009|19:07] C:\ProgramData\Panasonic
[27/07/2009|22:44] C:\ProgramData\PC Suite
[02/11/2006|15:02] C:\ProgramData\Start Menu
[28/01/2009|21:22] C:\ProgramData\Symantec
[10/01/2009|21:53] C:\ProgramData\Symantec Temporary Files
[02/11/2006|15:02] C:\ProgramData\Templates
[14/07/2009|21:11] C:\ProgramData\TomTom
[28/06/2009|21:49] C:\ProgramData\WEBREG
[19/04/2009|13:33] C:\ProgramData\WildTangent
[16/11/2008|00:41] C:\ProgramData\WLInstaller
--------------------\\ Listing des dossiers dans C:\Program Files
[04/03/2008|21:34] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[04/03/2008|21:35] C:\Program Files\Adobe
[26/02/2009|01:52] C:\Program Files\Apple Software Update
[16/08/2008|18:18] C:\Program Files\AVerMedia
[06/04/2009|21:57] C:\Program Files\Bonjour
[27/07/2009|22:41] C:\Program Files\Common Files
[16/08/2008|18:34] C:\Program Files\CyberLink
[28/07/2009|20:54] C:\Program Files\DeezRip
[27/07/2009|22:40] C:\Program Files\DIFX
[16/08/2008|18:39] C:\Program Files\DigitalPersona
[07/05/2009|18:45] C:\Program Files\Electronic Arts
[15/11/2008|22:51] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[16/08/2008|18:19] C:\Program Files\Fingerprint Sensor
[04/01/2009|00:45] C:\Program Files\Google
[23/11/2008|00:15] C:\Program Files\Hewlett-Packard
[28/06/2009|21:42] C:\Program Files\Hp
[16/08/2008|18:38] C:\Program Files\HP Games
[16/08/2008|18:23] C:\Program Files\IDT
[27/05/2009|18:49] C:\Program Files\InstallShield Installation Information
[16/08/2008|18:20] C:\Program Files\Intel
[03/08/2009|00:16] C:\Program Files\Internet Explorer
[25/07/2009|20:51] C:\Program Files\iPod
[25/07/2009|20:52] C:\Program Files\iTunes
[03/08/2009|00:06] C:\Program Files\Java
[16/08/2008|18:36] C:\Program Files\Marvell
[05/08/2009|17:42] C:\Program Files\Microsoft
[02/11/2006|14:37] C:\Program Files\Microsoft Games
[30/12/2008|13:54] C:\Program Files\Microsoft Money
[04/03/2008|21:33] C:\Program Files\Microsoft Office
[12/06/2009|08:37] C:\Program Files\Microsoft Works
[04/03/2008|21:33] C:\Program Files\Microsoft.NET
[05/03/2008|05:20] C:\Program Files\Movie Maker
[27/04/2009|22:10] C:\Program Files\Mozilla Firefox
[02/11/2006|14:37] C:\Program Files\MSBuild
[09/03/2009|19:03] C:\Program Files\MSECache
[16/11/2008|01:09] C:\Program Files\MSXML 4.0
[04/03/2008|21:21] C:\Program Files\muvee Technologies
[27/07/2009|22:40] C:\Program Files\Nokia
[11/04/2009|09:13] C:\Program Files\Norton 360
[03/08/2009|22:52] C:\Program Files\NOS
[15/11/2008|23:41] C:\Program Files\Orange HSS
[27/05/2009|18:49] C:\Program Files\Panasonic
[27/07/2009|22:39] C:\Program Files\PC Connectivity Solution
[03/06/2009|19:36] C:\Program Files\QuickTime
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[15/11/2008|23:33] C:\Program Files\SAGEM
[23/12/2008|22:05] C:\Program Files\Samsung
[15/11/2008|23:32] C:\Program Files\Securitoo
[16/08/2008|18:39] C:\Program Files\Services en ligne
[16/08/2008|18:19] C:\Program Files\Silicon Image
[11/01/2009|23:48] C:\Program Files\Symantec
[16/08/2008|18:16] C:\Program Files\Synaptics
[14/07/2009|21:10] C:\Program Files\TomTom HOME 2
[14/07/2009|21:11] C:\Program Files\TomTom International B.V
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[23/11/2008|22:22] C:\Program Files\VideoLAN
[16/08/2008|18:24] C:\Program Files\WIDCOMM
[05/03/2008|05:20] C:\Program Files\Windows Calendar
[05/03/2008|05:20] C:\Program Files\Windows Collaboration
[05/03/2008|05:20] C:\Program Files\Windows Defender
[05/03/2008|05:20] C:\Program Files\Windows Journal
[05/08/2009|17:42] C:\Program Files\Windows Live
[05/08/2009|17:42] C:\Program Files\Windows Live SkyDrive
[15/07/2009|08:35] C:\Program Files\Windows Mail
[12/03/2009|09:19] C:\Program Files\Windows Media Player
[15/11/2008|22:51] C:\Program Files\Windows NT
[05/03/2008|05:20] C:\Program Files\Windows Photo Gallery
[05/03/2008|05:20] C:\Program Files\Windows Sidebar
[14/07/2009|19:50] C:\Program Files\wletmin
--------------------\\ Listing des dossiers dans C:\Program Files\Common Files
[04/03/2008|21:35] C:\Program Files\Common Files\Adobe
[25/07/2009|20:51] C:\Program Files\Common Files\Apple
[04/03/2008|21:33] C:\Program Files\Common Files\DESIGNER
[15/11/2008|23:40] C:\Program Files\Common Files\France Telecom
[28/06/2009|21:38] C:\Program Files\Common Files\Hewlett-Packard
[28/06/2009|21:41] C:\Program Files\Common Files\HP
[04/03/2008|21:44] C:\Program Files\Common Files\InstallShield
[04/03/2008|21:49] C:\Program Files\Common Files\Java
[05/08/2009|17:42] C:\Program Files\Common Files\microsoft shared
[04/03/2008|21:21] C:\Program Files\Common Files\muvee Technologies
[27/07/2009|22:41] C:\Program Files\Common Files\Nokia
[27/07/2009|22:41] C:\Program Files\Common Files\PCSuite
[20/12/2008|15:33] C:\Program Files\Common Files\PX Storage Engine
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[27/02/2009|15:49] C:\Program Files\Common Files\Symantec Shared
[05/03/2008|05:20] C:\Program Files\Common Files\System
[17/12/2008|18:32] C:\Program Files\Common Files\Windows Live
[16/11/2008|00:46] C:\Program Files\Common Files\WindowsLiveInstaller
--------------------\\ Process
( 96 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-08-06 22:49:47
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 121
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:65690][D:46]-> C:\Users\MICHEL\AppData\Local\Temp
[F:539][D:1]-> C:\Users\MICHEL\AppData\Roaming\MICROS~1\Windows\Cookies
[F:2134][D:4]-> C:\Users\MICHEL\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:8][D:3]-> C:\$Recycle.Bin
1 - "C:\Lop SD\LopR_1.txt" - 06/08/2009|22:36 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 06/08/2009|23:20 - Option : [2]
--------------------\\ Fin du rapport a 23:20:49
[ UAC => 1 ]
blondie336
Messages postés
20
Date d'inscription
jeudi 30 juillet 2009
Statut
Membre
Dernière intervention
7 août 2009
7 août 2009 à 11:41
7 août 2009 à 11:41
Merci infiniment, les pubs ont disparues !
toptitbal
Messages postés
25709
Date d'inscription
samedi 8 juillet 2006
Statut
Contributeur sécurité
Dernière intervention
4 mars 2010
2 229
7 août 2009 à 11:50
7 août 2009 à 11:50
Bien.
Pour répondre à ta question :
Les publicités CiD sont dues à une infection Lop/Swizzor qui s'installe via les logiciels suivants :
• Le sponsor de Messenger Plus!
• Bittorent
• BitDownload
• BitGrabber
• NetPumper
• BitRoll
• TorrentQ
• Torrent101
Donc, attention à ce que tu installes :-)
Fais un nouvel Hijackthis pour vérifier que tout va bien.
Pour répondre à ta question :
Les publicités CiD sont dues à une infection Lop/Swizzor qui s'installe via les logiciels suivants :
• Le sponsor de Messenger Plus!
• Bittorent
• BitDownload
• BitGrabber
• NetPumper
• BitRoll
• TorrentQ
• Torrent101
Donc, attention à ce que tu installes :-)
Fais un nouvel Hijackthis pour vérifier que tout va bien.
blondie336
Messages postés
20
Date d'inscription
jeudi 30 juillet 2009
Statut
Membre
Dernière intervention
7 août 2009
7 août 2009 à 19:17
7 août 2009 à 19:17
Une dernière question, est ce normal qu'après ces analyses mes ports usb ne détectent plus rien ?
Est ce possible de les remettre en marche normal ?
Est ce possible de les remettre en marche normal ?
