Posez votre question Signaler

PBM alerte virus

CHELMI18 34Messages postés 16 juillet 2008Date d'inscription 25 septembre 2011Dernière intervention - Dernière réponse le 17 juil. 2008 à 04:18

Bonjour,
Quelqu un pourait il m aider SVP !!
Voila j ai un souci depuis 2 jours : un message d alerte intempestif de antispycheck qui me dit
attack from: 195.219.71.63 , port 4314
attacecked port 1398
apparemment ca nen vient pas toujours de a meme IP, pour celle la j ai la localisatin suivante :IP address: 195.219.71.63 Location of this IP address: Iran in Chahar Mahall va Bakhtiari
j ai pas l impression d etre infecté plus que cela
De plus je ne peux pas effectuer un point de restauration, mon ordi me les refuse tous et je sais pas si on peut le forcer
j ai fait un scan hijackthis qui donne ceci
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:39:33, on 16/07/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16574)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\BitDefender\BitDefender Communicator\xcommsvr.exe
C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
C:\Program Files\BitDefender\BitDefender 2008\vsserv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\Rundll32.exe
C:\WINDOWS\system32\keyhook.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Apoint2K\Apoint.exe
C:\Program Files\MSI\Live Update 3\LMonitor.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\Program Files\Lemoncast\lemoncast.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\ClamWin\bin\ClamTray.exe
C:\WINDOWS\V0400Mon.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\ASC 2.1\asc 2.1.exe
C:\Program Files\BitDefender\BitDefender 2008\bdagent.exe
C:\Program Files\CyberLink\Power2Go\Power2GoExpress.exe
C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\WINDOWS\system32\ubpr01.exe
C:\Program Files\Softwin\BitDefender for Net Meeting\nmmon.exe
C:\Program Files\TribalWeb.net\tribalweb.exe
C:\Program Files\MSN Messenger\livecall.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.yahoo.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer fourni par Yahoo! France
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Microsoft MSJava 32 - {43F7497C-7687-4DEA-A057-F21BD81BC896} - C:\WINDOWS\system32\msjava32.dll
O2 - BHO: ASCWarningBHO Class - {58472BC6-BEA3-42d4-8917-7A8BCB0711B5} - C:\Program Files\ASC 2.1\ASCWarning32.dll (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: PDFCreator Toolbar Helper - {C451C08A-EC37-45DF-AAAD-18B51AB5E837} - C:\Program Files\PDFCreator Toolbar\v3.0.0.0\PDFCreator_Toolbar.dll
O2 - BHO: (no name) - {D46BEAA4-A304-40B3-A9DA-EC7F7F501F25} - C:\Program Files\Web Technologies\iebt.dll (file missing)
O2 - BHO: WebManager Class - {D5792AA9-D373-4039-8670-2CDAB6A71F15} - C:\Program Files\BitDownload\TorrentManager.dll
O3 - Toolbar: PDFCreator Toolbar - {31CF9EBE-5755-4A1D-AC25-2834D952D9B4} - C:\Program Files\PDFCreator Toolbar\v3.0.0.0\PDFCreator_Toolbar.dll
O3 - Toolbar: Internet Service - {65742936-8079-408B-9F3C-874B78030A72} - C:\Program Files\Web Technologies\iebr.dll
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2008\IEToolbar.dll
O4 - HKLM\..\Run: [SiSPower] Rundll32.exe SiSPower.dll,ModeAgent
O4 - HKLM\..\Run: [SiS Windows KeyHook] C:\WINDOWS\system32\keyhook.exe
O4 - HKLM\..\Run: [SiSUSBRG] C:\WINDOWS\SiSUSBrg.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [LiveMonitor] C:\Program Files\MSI\Live Update 3\LMonitor.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [EPSON Stylus CX6400] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE /P19 "EPSON Stylus CX6400" /O6 "USB001" /M "Stylus CX6400"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [carpediem] C:\Program Files\Lemoncast\lemoncast.exe
O4 - HKLM\..\Run: [PViever] "C:\Program Files\Gay-Lesbian-Photo\Gay-Lesbian-Photo.exe" hide
O4 - HKLM\..\Run: [DownloadAccelerator] "C:\Program Files\DAP\DAP.EXE" /STARTUP
O4 - HKLM\..\Run: [dc6_check] C:\Program Files\SystemDoctor 2006 Free\dcmon.exe
O4 - HKLM\..\Run: [USDR6cw] C:\Program Files\SystemDoctor 2006 Free\USDR6cw.exe -c
O4 - HKLM\..\Run: [pas_check] C:\Program Files\SystemDoctor 2006 Free\pasmon.exe
O4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [ClamWin] "C:\Program Files\ClamWin\bin\ClamTray.exe" --logon
O4 - HKLM\..\Run: [V0400Mon.exe] C:\WINDOWS\V0400Mon.exe
O4 - HKLM\..\Run: [asc32] "C:\Program Files\ASC 2.1\asc 2.1.exe"
O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2008\IEShow.exe"
O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\BitDefender\BitDefender 2008\bdagent.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Power2GoExpress] "C:\Program Files\CyberLink\Power2Go\Power2GoExpress.exe"
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Uniblue RegistryBooster 2] C:\Program Files\Uniblue\RegistryBooster 2\RegistryBooster.exe /S
O4 - HKCU\..\Run: [Weflirt] "C:\Program Files\Weflirt\weflirt.exe" -background
O4 - HKCU\..\Run: [Creative Live! Cam Manager] "C:\Program Files\Creative\Creative Live! Cam\Live! Cam Manager\CTLCMgr.exe"
O4 - HKCU\..\Run: [wblogon] C:\WINDOWS\system32\ubpr01.exe
O4 - HKCU\..\Run: [AUTORUN_VAL] C:\Program Files\ASC 2.1\asc 2.1.exe
O4 - HKLM\..\Policies\Explorer\Run: [some] C:\Program Files\Web Technologies\wcs.exe
O4 - HKLM\..\Policies\Explorer\Run: [start] C:\Program Files\Web Technologies\iebtm.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: TribalWeb.lnk = C:\Program Files\TribalWeb.net\tribalweb.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: BitDefender for Net Meeting.lnk = C:\Program Files\Softwin\BitDefender for Net Meeting\nmmon.exe
O4 - Global Startup: BitDefender_P2P_Startup.lnk = C:\WINDOWS\BitDefender_P2P_Startup.exe
O8 - Extra context menu item: &Clean Traces - C:\Program Files\DAP\Privacy Package\dapcleanerie.htm
O8 - Extra context menu item: &Download with &DAP - C:\Program Files\DAP\dapextie.htm
O8 - Extra context menu item: Download &all with DAP - C:\Program Files\DAP\dapextie2.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {9034A523-D068-4BE8-A284-9DF278BE776E} - http://www.ietoolsite.com/redirect.php (file missing)
O9 - Extra 'Tools' menuitem: IE Anti-Spyware - {9034A523-D068-4BE8-A284-9DF278BE776E} - http://www.ietoolsite.com/redirect.php (file missing)
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.msi.com.tw
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/...
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase9602.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {DFB5BCF1-06AE-4ABB-BFA8-1E228F41C50A} - http://bobtv.fr/download/cfweb_www.bobtv.fr-download_instmodule.exe
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://www.creative.com/softwareupdate/su2/ocx/15035/CTPID.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{639A49F5-9438-4FCE-9A1F-B4AAF192B47F}: NameServer = 85.255.116.52,85.255.112.106
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 85.255.116.52 85.255.112.106
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 85.255.116.52 85.255.112.106
O22 - SharedTaskScheduler: altigraph - {c96395b8-ab09-46a4-b539-7ddf6e061808} - (no file)
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender SRL - C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S.R.L. - C:\Program Files\BitDefender\BitDefender 2008\vsserv.exe
O23 - Service: BitDefender Communicator (XCOMM) - BitDefender - C:\Program Files\Fichiers communs\BitDefender\BitDefender Communicator\xcommsvr.exe

PBM alerte virus »

Suggestions

PBM alerte virus
Message d'alerte virus avec antivir (Résolu) » Forum
Probleme icone alert virus (Résolu) » Forum
Problèmes favoris, fenêtres, alertes virus (Résolu) » Forum
ALERTE Virus (Résolu) » Forum
Bulle system alert (virus ?) (Résolu) » Forum
Alerte virus par avast (Résolu) » Forum
Norton alerte virus intempestif (Résolu) » Forum
Gros virus qui s'appelle alert virus (Résolu) » Forum
Alerte virus/ver (Résolu) » Forum

Plus

Réponse

Destrio5 60133Messages postés 18 septembre 2005Date d'inscription 14 février 2012Dernière intervention 16 juil. 2008 à 17:49

Salut,

---> Télécharge FixWareout et enregistre-le sur le bureau:
http://downloads.subratam.org/Fixwareout.exe

---> Lance le fix : Clique sur Next, puis Install, puis assure-toi que "Run fixit" est activé puis clique sur Finish.

Le fix va commencer, suis les messages à l'écran. Il te sera demandé de redémarrer ton ordinateur, fais-le.
Ton système mettra un peu plus de temps au démarrage, c'est normal.

--> Poste (Copie/colle) le contenu du rapport qui va s'afficher à l'écran (report.txt)

Ajouter un commentaire

CHELMI18 - 16 juil. 2008 à 18:07

merci DESTRIO 5

Voici le rapport

Username "Client" - 16/07/2008 17:55:50 [Fixwareout edited 9/01/2007]

~~~~~ Prerun check

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters
"nameserver"="85.255.116.52 85.255.112.106" <Value cleared.
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\interfaces\{639A49F5-9438-4FCE-9A1F-B4AAF192B47F}
"nameserver"="85.255.116.52,85.255.112.106" <Value cleared.
HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\interfaces\{249E7637-DCD1-4364-873A-3FC0943E5FC5}
"DhcpNameServer"="85.255.116.52,85.255.112.106" <Value cleared.

Cache de résolution DNS vidé.

System was rebooted successfully.

~~~~~ Postrun check
HKLM\SOFTWARE\~\Winlogon\ "System"=""
....
....
~~~~~ Misc files.
C:\Documents and Settings\Client\Application Data\Install.dat Deleted
....
~~~~~ Checking for older varients.
....

C:\Program Files\SpyLocked 4.3 < Found
Additional tools are recommended.

~~~~~ Current runs (hklm hkcu "run" Keys Only)
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SiSPower"="Rundll32.exe SiSPower.dll,ModeAgent"
"SiS Windows KeyHook"="C:\\WINDOWS\\system32\\keyhook.exe"
"SiSUSBRG"="C:\\WINDOWS\\SiSUSBrg.exe"
"SoundMan"="SOUNDMAN.EXE"
"AGRSMMSG"="AGRSMMSG.exe"
"Apoint"="C:\\Program Files\\Apoint2K\\Apoint.exe"
"LiveMonitor"="C:\\Program Files\\MSI\\Live Update 3\\LMonitor.exe"
"RemoteControl"="\"C:\\Program Files\\CyberLink\\PowerDVD\\PDVDServ.exe\""
"EPSON Stylus CX6400"="C:\\WINDOWS\\System32\\spool\\DRIVERS\\W32X86\\3\\E_S10IC2.EXE /P19 \"EPSON Stylus CX6400\" /O6 \"USB001\" /M \"Stylus CX6400\""
"QuickTime Task"="\"C:\\Program Files\\QuickTime\\qttask.exe\" -atboottime"
"carpediem"="C:\\Program Files\\Lemoncast\\lemoncast.exe"
"PViever"="\"C:\\Program Files\\Gay-Lesbian-Photo\\Gay-Lesbian-Photo.exe\" hide"
"DownloadAccelerator"="\"C:\\Program Files\\DAP\\DAP.EXE\" /STARTUP"
"dc6_check"="C:\\Program Files\\SystemDoctor 2006 Free\\dcmon.exe"
"cmonitor"=""
"USDR6cw"="C:\\Program Files\\SystemDoctor 2006 Free\\USDR6cw.exe -c"
"pas_check"="C:\\Program Files\\SystemDoctor 2006 Free\\pasmon.exe"
"Zone Labs Client"="\"C:\\Program Files\\Zone Labs\\ZoneAlarm\\zlclient.exe\""
"ZoneAlarm Client"="\"C:\\Program Files\\Zone Labs\\ZoneAlarm\\zlclient.exe\""
"Picasa Media Detector"="C:\\Program Files\\Picasa2\\PicasaMediaDetector.exe"
"SunJavaUpdateSched"="\"C:\\Program Files\\Java\\jre1.6.0_05\\bin\\jusched.exe\""
"ClamWin"="\"C:\\Program Files\\ClamWin\\bin\\ClamTray.exe\" --logon"
"V0400Mon.exe"="C:\\WINDOWS\\V0400Mon.exe"
"asc32"="\"C:\\Program Files\\ASC 2.1\\asc 2.1.exe\""
"BitDefender Antiphishing Helper"="\"C:\\Program Files\\BitDefender\\BitDefender 2008\\IEShow.exe\""
"BDAgent"="\"C:\\Program Files\\BitDefender\\BitDefender 2008\\bdagent.exe\""

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\\WINDOWS\\system32\\ctfmon.exe"
"Power2GoExpress"="\"C:\\Program Files\\CyberLink\\Power2Go\\Power2GoExpress.exe\""
"Yahoo! Pager"="\"C:\\PROGRA~1\\Yahoo!\\MESSEN~1\\YAHOOM~1.EXE\" -quiet"
"MsnMsgr"="\"C:\\Program Files\\MSN Messenger\\MsnMsgr.Exe\" /background"
"SystemDoctor 2006 Free"=""
"Uniblue RegistryBooster 2"="C:\\Program Files\\Uniblue\\RegistryBooster 2\\RegistryBooster.exe /S"
"Weflirt"="\"C:\\Program Files\\Weflirt\\weflirt.exe\" -background"
"Creative Live! Cam Manager"="\"C:\\Program Files\\Creative\\Creative Live! Cam\\Live! Cam Manager\\CTLCMgr.exe\""
"wblogon"="C:\\WINDOWS\\system32\\ubpr01.exe"
"AUTORUN_VAL"="C:\\Program Files\\ASC 2.1\\asc 2.1.exe "
....
Hosts file was reset, If you use a custom hosts file please replace it...
~~~~~ End report ~~~~~

Réponse

Destrio5 60133Messages postés 18 septembre 2005Date d'inscription 14 février 2012Dernière intervention 16 juil. 2008 à 18:09

---> Désactive l'antivirus
---> Télécharge Lop S&D sur ton Bureau
http://eric.71.mespages.googlepages.com/LopSD.exe
---> Double-clique dessus pour lancer l'installation
---> Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
---> Séléctionne la langue souhaitée, puis choisis l'option 1 (Recherche)
---> Patiente jusqu'à la fin du scan
---> Poste le rapport généré (C:\lopR.txt)

(Si le Bureau ne réapparait pas, presse Ctrl+Alt+Suppr, Onglet Fichier, Nouvelle tâche, tape explorer.exe et valide)

Si tu as un problème pour utiliser Lop S&D, regarde dans le tutorial :
http://bibou0007.com/outils-specifiques-f78/tutorial-lop-sd-t956.htm#11431

Ajouter un commentaire

Réponse

CHELMI18 34Messages postés 16 juillet 2008Date d'inscription 25 septembre 2011Dernière intervention 16 juil. 2008 à 18:38

ca donne ca

-----------------------[ Lop S&D 4.2.2-1 XP/Vista ]---------------------

[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : Client ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 16/07/2008 | 18:35:16,42 ] [ PC : NOM-5167A8B9C83 ]
[ MAJ : 09-07-2008 | 21:02 ]

-------------[ Listing des dossiers dans Application Data ]------------

[07/02/2007|23:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[22/05/2008|21:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adsl Software Limited
[15/07/2008|22:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BitDefender
[30/03/2008|18:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Creative
[16/05/2005|08:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[12/05/2005|13:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[15/07/2008|21:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[21/06/2008|01:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[07/01/2008|20:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Help
[24/05/2007|23:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSScanAppDataDir
[30/03/2008|17:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\muvee Technologies
[06/09/2007|00:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Real
[12/02/2007|19:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[16/07/2008|18:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[24/09/2006|17:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\UDL
[23/08/2006|14:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[13/11/2006|19:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[10/11/2006|23:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo!
[10/11/2006|18:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion

[22/02/2008|11:35] C:\DOCUME~1\Client\APPLIC~1\.clamwin
[09/03/2008|09:12] C:\DOCUME~1\Client\APPLIC~1\Adobe
[10/02/2007|22:06] C:\DOCUME~1\Client\APPLIC~1\AdobeAUM
[21/02/2007|01:37] C:\DOCUME~1\Client\APPLIC~1\AdobeUM
[11/05/2007|00:19] C:\DOCUME~1\Client\APPLIC~1\ArcSoft
[15/07/2008|22:40] C:\DOCUME~1\Client\APPLIC~1\BitDefender
[21/02/2007|19:05] C:\DOCUME~1\Client\APPLIC~1\BitDownload
[04/07/2008|19:29] C:\DOCUME~1\Client\APPLIC~1\CamfrogWEB
[30/03/2008|18:19] C:\DOCUME~1\Client\APPLIC~1\Creative
[09/09/2006|14:24] C:\DOCUME~1\Client\APPLIC~1\CyberLink
[12/05/2005|13:02] C:\DOCUME~1\Client\APPLIC~1\desktop.ini
[31/10/2006|15:12] C:\DOCUME~1\Client\APPLIC~1\DivX
[24/04/2008|19:16] C:\DOCUME~1\Client\APPLIC~1\dvdcss
[14/01/2007|20:32] C:\DOCUME~1\Client\APPLIC~1\EPSON
[11/11/2006|15:02] C:\DOCUME~1\Client\APPLIC~1\FrostWire
[06/04/2007|13:59] C:\DOCUME~1\Client\APPLIC~1\GDIPFONTCACHEV1.DAT
[20/04/2008|19:41] C:\DOCUME~1\Client\APPLIC~1\GetRightToGo
[08/05/2008|21:43] C:\DOCUME~1\Client\APPLIC~1\GigaTribe
[01/12/2006|01:14] C:\DOCUME~1\Client\APPLIC~1\Google
[03/03/2007|18:19] C:\DOCUME~1\Client\APPLIC~1\Help
[29/09/2006|22:40] C:\DOCUME~1\Client\APPLIC~1\HTML Executable
[12/05/2005|11:12] C:\DOCUME~1\Client\APPLIC~1\Identities
[16/03/2007|22:01] C:\DOCUME~1\Client\APPLIC~1\LaCie
[21/02/2007|22:08] C:\DOCUME~1\Client\APPLIC~1\Leadertech
[03/11/2006|00:02] C:\DOCUME~1\Client\APPLIC~1\Macromedia
[06/09/2007|00:31] C:\DOCUME~1\Client\APPLIC~1\Media Player Classic
[25/09/2007|19:25] C:\DOCUME~1\Client\APPLIC~1\Microsoft
[20/02/2007|01:15] C:\DOCUME~1\Client\APPLIC~1\Mozilla
[21/12/2007|01:18] C:\DOCUME~1\Client\APPLIC~1\Nokia
[07/01/2008|00:40] C:\DOCUME~1\Client\APPLIC~1\Real
[28/09/2006|19:58] C:\DOCUME~1\Client\APPLIC~1\RibbonSoft
[10/07/2007|20:20] C:\DOCUME~1\Client\APPLIC~1\ShoppingReport
[03/03/2007|10:18] C:\DOCUME~1\Client\APPLIC~1\SodeaSoft
[11/11/2006|14:23] C:\DOCUME~1\Client\APPLIC~1\Sun
[10/10/2006|23:25] C:\DOCUME~1\Client\APPLIC~1\Symantec
[05/01/2007|21:56] C:\DOCUME~1\Client\APPLIC~1\Talkback
[21/06/2008|07:27] C:\DOCUME~1\Client\APPLIC~1\TribalWeb
[10/02/2007|11:58] C:\DOCUME~1\Client\APPLIC~1\ultra
[31/07/2007|20:20] C:\DOCUME~1\Client\APPLIC~1\Uniblue
[08/01/2007|00:07] C:\DOCUME~1\Client\APPLIC~1\vlc
[16/12/2007|20:36] C:\DOCUME~1\Client\APPLIC~1\Weflirt
[14/02/2007|03:55] C:\DOCUME~1\Client\APPLIC~1\WinssCookie.txt

[12/05/2005|13:02] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[12/05/2005|11:12] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[01/12/2007|09:43] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[25/11/2006|20:21] C:\DOCUME~1\LOCALS~1\APPLIC~1\Google
[25/11/2006|20:21] C:\DOCUME~1\LOCALS~1\APPLIC~1\Macromedia
[15/11/2006|23:22] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[12/01/2007|23:34] C:\DOCUME~1\LOCALS~1\APPLIC~1\Symantec

[12/05/2005|11:12] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[02/11/2006|19:32] C:\DOCUME~1\NETWOR~1\APPLIC~1\Symantec

----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

[22/02/2008 11:16][--ah-----] C:\WINDOWS\tasks\MP Scheduled Quick Scan.job
[05/08/2004 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
[16/07/2008 17:59][--ah-----] C:\WINDOWS\tasks\SA.DAT

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[15/04/2007|21:20] C:\Program Files\ABBYY FineReader 5.0 Sprint
[27/05/2007|09:27] C:\Program Files\Adobe
[16/05/2005|08:51] C:\Program Files\AMD
[16/05/2005|08:55] C:\Program Files\Apoint2K
[24/09/2006|17:20] C:\Program Files\ArcSoft
[15/07/2008|21:49] C:\Program Files\ASC 2.1
[24/01/2007|00:41] C:\Program Files\AVI Constructor Pack Trial Version 7.4.3
[12/01/2007|12:05] C:\Program Files\AvRack
[03/03/2007|22:58] C:\Program Files\Backgrounds
[15/07/2008|22:24] C:\Program Files\BitDefender
[21/02/2007|19:05] C:\Program Files\BitDownload
[21/06/2008|01:21] C:\Program Files\Blogdefolie
[10/07/2007|21:54] C:\Program Files\BufferZone
[21/06/2008|01:22] C:\Program Files\CableRouting
[22/02/2008|11:34] C:\Program Files\ClamWin
[22/02/2008|11:32] C:\Program Files\clamwin-0.92-setup.exe
[12/05/2005|11:09] C:\Program Files\ComPlus Applications
[22/01/2007|20:34] C:\Program Files\Comptes First
[30/03/2008|17:47] C:\Program Files\Creative
[21/01/2007|17:37] C:\Program Files\CyberLink
[17/03/2007|13:59] C:\Program Files\DAP
[17/03/2007|13:47] C:\Program Files\Dial-Messenger
[10/08/2007|21:47] C:\Program Files\DivX
[15/07/2008|20:40] C:\Program Files\eMule
[05/09/2007|18:23] C:\Program Files\Emule Speed Booster
[22/02/2007|21:02] C:\Program Files\eMule.lnk
[21/03/2008|11:13] C:\Program Files\EPSON
[15/07/2008|23:54] C:\Program Files\Fichiers communs
[20/04/2008|19:42] C:\Program Files\FLV PlayerFCSetup.exe
[20/04/2008|19:41] C:\Program Files\FLV PlayerRCATSetup.exe
[20/04/2008|18:33] C:\Program Files\FLV PlayerRCSetup.exe
[24/01/2006|19:32] C:\Program Files\fpimage.dll
[03/03/2006|09:50] C:\Program Files\French.lng
[24/01/2006|19:32] C:\Program Files\gdiplus.dll
[21/06/2008|01:23] C:\Program Files\GigaTribe
[15/07/2008|21:50] C:\Program Files\Google
[12/01/2007|12:04] C:\Program Files\HardwareDetection
[03/03/2007|22:58] C:\Program Files\HelpBar
[24/01/2006|19:32] C:\Program Files\hts32.dll
[03/03/2007|23:03] C:\Program Files\I and A Research
[15/08/2006|11:27] C:\Program Files\ImportExportMM5.dll
[15/08/2006|11:26] C:\Program Files\ImportExportMOProject.dll
[15/08/2006|11:27] C:\Program Files\ImportJCVG.dll
[15/07/2008|23:54] C:\Program Files\InstallShield Installation Information
[11/12/2007|23:28] C:\Program Files\Internet Explorer
[29/03/2008|13:20] C:\Program Files\Java
[03/03/2007|22:58] C:\Program Files\JCV
[16/08/2006|13:30] C:\Program Files\JCVGanttChartControl.dll
[16/08/2006|13:31] C:\Program Files\JCVGanttDisplay.exe
[03/08/2006|19:51] C:\Program Files\JCVInterfaces.tlb
[15/08/2006|17:54] C:\Program Files\JCVMm5Adapter.dll
[15/08/2006|17:54] C:\Program Files\JCVMm5GanttDisplay.dll
[15/08/2006|17:53] C:\Program Files\JCVMm6Adapter.dll
[15/08/2006|17:54] C:\Program Files\JCVMm6GanttDisplay.dll
[15/08/2006|17:51] C:\Program Files\JCVSimpleGrid.dll
[15/08/2006|17:53] C:\Program Files\JCVThumbnail.dll
[15/08/2006|17:54] C:\Program Files\JCVXmlAdapter.dll
[19/02/2008|23:17] C:\Program Files\KIT_ADSL_CT56x_USB
[16/03/2007|21:58] C:\Program Files\LaCie
[03/03/2007|22:58] C:\Program Files\languages
[30/11/2006|00:55] C:\Program Files\Lemoncast
[03/03/2007|18:18] C:\Program Files\Ma Page Web v2.1
[03/03/2007|22:58] C:\Program Files\Manual
[22/02/2007|23:43] C:\Program Files\MaxiCompte
[06/09/2007|00:30] C:\Program Files\Media Player Classic
[17/03/2007|13:40] C:\Program Files\Mediafour
[16/05/2005|09:23] C:\Program Files\Messenger
[24/01/2006|19:32] C:\Program Files\MFC71u.dll
[20/04/2007|19:40] C:\Program Files\Micro Application
[10/05/2007|18:21] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[12/05/2005|11:12] C:\Program Files\microsoft frontpage
[07/01/2008|20:00] C:\Program Files\Microsoft Office
[23/08/2006|13:55] C:\Program Files\Microsoft Visual Studio
[21/06/2008|01:22] C:\Program Files\Movie Maker
[03/05/2008|07:52] C:\Program Files\Mozilla Firefox
[21/12/2007|00:57] C:\Program Files\MSBuild
[16/05/2005|08:57] C:\Program Files\MSI
[10/09/2006|13:09] C:\Program Files\MSN
[12/05/2005|11:07] C:\Program Files\MSN Gaming Zone
[08/02/2007|21:41] C:\Program Files\MSN Messenger
[24/01/2006|19:32] C:\Program Files\msvcp71.dll
[24/01/2006|19:32] C:\Program Files\msvcr71.dll
[14/02/2007|03:52] C:\Program Files\MSXML 4.0
[05/03/2007|18:44] C:\Program Files\Multi_Media_France
[28/02/2007|19:40] C:\Program Files\MUSK Codec Pack v5
[30/03/2008|17:39] C:\Program Files\muvee Technologies
[12/05/2005|11:09] C:\Program Files\NetMeeting
[19/02/2008|23:18] C:\Program Files\Neuf
[21/12/2007|01:02] C:\Program Files\Nokia
[21/12/2007|00:34] C:\Program Files\Nokia_Map_Loader_Setup.en.exe
[28/02/2007|18:20] C:\Program Files\nvu-1_1.0-win32-fr.zip
[12/05/2005|11:08] C:\Program Files\Online Services
[15/06/2007|01:26] C:\Program Files\Outlook Express
[25/11/2006|22:09] C:\Program Files\PDFCreator
[29/09/2006|22:38] C:\Program Files\PDFCreator Toolbar
[14/02/2007|19:36] C:\Program Files\Photo to Sketch Pro
[16/12/2007|20:07] C:\Program Files\planmgr.zip
[16/12/2007|20:05] C:\Program Files\Planning Manager
[06/04/2007|09:54] C:\Program Files\PViever
[12/11/2006|20:08] C:\Program Files\QuickTime
[04/09/2007|21:17] C:\Program Files\Real
[06/09/2007|00:31] C:\Program Files\Real Alternative
[04/09/2007|21:02] C:\Program Files\Real One Player v10_Gold_with crack
[06/09/2007|00:27] C:\Program Files\realalt152.exe
[06/09/2007|00:15] C:\Program Files\realplayer
[12/01/2007|12:05] C:\Program Files\Realtek Sound Manager
[21/12/2007|00:47] C:\Program Files\Reference Assemblies
[20/04/2008|19:42] C:\Program Files\Replay Media Catcher
[21/01/2007|17:31] C:\Program Files\Replay Radio 5
[24/07/2006|15:14] C:\Program Files\res_francais.exe
[15/08/2006|11:27] C:\Program Files\ResourcesPool.dll
[29/09/2006|22:38] C:\Program Files\Seagrand
[10/07/2007|21:51] C:\Program Files\Secured eMule
[12/05/2005|11:10] C:\Program Files\Services en ligne
[03/03/2007|22:59] C:\Program Files\Setup.log
[16/12/2007|20:36] C:\Program Files\SetupWeFlirt.exe
[16/05/2005|08:34] C:\Program Files\SiS VGA Utilities V3.62
[16/05/2005|08:48] C:\Program Files\SiSLan
[03/03/2007|22:58] C:\Program Files\Skins
[12/01/2008|11:47] C:\Program Files\Smart Panel
[03/08/2006|21:56] C:\Program Files\Snapshots.dll
[04/07/2007|23:11] C:\Program Files\SodeaSoft
[12/02/2007|19:29] C:\Program Files\Softwin
[27/06/2007|03:36] C:\Program Files\SpyLocked 4.3
[10/06/2007|16:59] C:\Program Files\SpywareRemover
[03/03/2007|22:58] C:\Program Files\sys
[24/01/2006|19:32] C:\Program Files\ter32.dll
[01/08/2007|20:20] C:\Program Files\the-gimp_the_gimp_2.2.17_francais_10178.exe
[15/08/2006|11:27] C:\Program Files\TotalCost.dll
[16/07/2008|17:38] C:\Program Files\Trend Micro
[21/06/2008|01:23] C:\Program Files\TribalWeb.net
[29/01/2007|18:35] C:\Program Files\TurnTool
[12/05/2005|11:16] C:\Program Files\Uninstall Information
[01/04/2006|09:39] C:\Program Files\UnInstall_31360.exe
[03/03/2007|22:59] C:\Program Files\UnInstall_31360.txt
[20/08/2007|23:44] C:\Program Files\Unlocker
[24/07/2006|15:14] C:\Program Files\Urls_francais.xml
[03/08/2006|21:56] C:\Program Files\UserSheets.dll
[07/01/2007|19:23] C:\Program Files\VideoLAN
[15/07/2008|22:57] C:\Program Files\Web Technologies
[21/06/2008|01:23] C:\Program Files\Windows Live Safety Center
[26/05/2007|17:01] C:\Program Files\Windows Live Toolbar
[07/11/2006|19:36] C:\Program Files\Windows Media Connect 2
[07/11/2006|19:36] C:\Program Files\Windows Media Player
[12/05/2005|11:07] C:\Program Files\Windows NT
[12/05/2005|11:10] C:\Program Files\WindowsUpdate
[12/05/2005|11:12] C:\Program Files\xerox
[10/11/2006|23:41] C:\Program Files\Yahoo!
[15/07/2008|21:49] C:\Program Files\YesMessenger
[26/11/2006|17:39] C:\Program Files\Zone Labs

------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------

[20/02/2007|23:29] C:\Program Files\Fichiers communs\Adobe
[15/07/2008|22:23] C:\Program Files\Fichiers communs\BitDefender
[23/08/2006|13:55] C:\Program Files\Fichiers communs\Designer
[02/03/2007|20:52] C:\Program Files\Fichiers communs\HTML Executable Viewer
[06/03/2007|22:30] C:\Program Files\Fichiers communs\I and A Research Inc
[16/05/2005|08:49] C:\Program Files\Fichiers communs\InstallShield
[25/09/2007|19:38] C:\Program Files\Fichiers communs\Java
[30/03/2008|17:38] C:\Program Files\Fichiers communs\Microsoft Shared
[12/05/2005|11:09] C:\Program Files\Fichiers communs\MSSoap
[12/05/2005|13:03] C:\Program Files\Fichiers communs\ODBC
[07/01/2008|00:40] C:\Program Files\Fichiers communs\Real
[12/05/2005|11:09] C:\Program Files\Fichiers communs\Services
[15/07/2008|22:21] C:\Program Files\Fichiers communs\Softwin
[12/05/2005|13:03] C:\Program Files\Fichiers communs\SpeechEngines
[12/02/2007|19:27] C:\Program Files\Fichiers communs\Symantec Shared
[15/06/2007|01:26] C:\Program Files\Fichiers communs\System

---------------------------[ Process ]--------------------------

... 53

iexplore.exe ~ [3032]
iexplore.exe ~ [2480]

----------------------[ Recherche avec S_Lop ]---------------------

Aucun fichier / dossier Lop trouvé !

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

C:\DOCUME~1\Client\APPLIC~1\Bitdownload
C:\DOCUME~1\Client\APPLIC~1\Bitdownload\Data
C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\Bitdownload
C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\Bitdownload\BitDownload.lnk
C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\Bitdownload\Uninstall BitDownload.lnk
C:\Program Files\Bitdownload
C:\Program Files\Bitdownload\BitDownload.exe
C:\Program Files\Bitdownload\BitDownload.TRC
C:\Program Files\Bitdownload\settings.ini
C:\Program Files\Bitdownload\settings.stp
C:\Program Files\Bitdownload\SkinCrafterDll.dll
C:\Program Files\Bitdownload\Skins
C:\Program Files\Bitdownload\Support
C:\Program Files\Bitdownload\TorrentManager.dll
C:\Program Files\Bitdownload\unins000.dat
C:\Program Files\Bitdownload\unins000.exe
C:\Program Files\Bitdownload\ZM
C:\Program Files\Multi_Media_France
C:\Program Files\Multi_Media_France\INSTALL.LOG

----------------------[ Verification du Registre ]----------------------

..... OK !

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts PROPRE

----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-07-16 18:36:51
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------

=> C:\Documents and Settings\Client\Recent\300 Codes Allopass Gratuit R‚utilisable Plus Keygen Pour Cracker Allopass, Prizee, Auditel, Msn (Divx, Mp3, Star Warz, Webmaster, Kit Graphique, Rohf.lnk
=> C:\Documents and Settings\Client\Recent\300 codes allopass gratuit r‚utilisable plus keygen pour cracker allopass, prizee, auditel, msn (divx, mp3, star warz, webmaster, kit graphique, rohff,.lnk
=> C:\Documents and Settings\Client\Recent\300 Codes Allopass Gratuit R‚utilisable Plus Keygen Pour Cracker Allopass, Prizee, Auditel, Msn (Divx, Mp3, Star Warz, Webmaster, Kit Graphique, Rohf.lnk
=> C:\Documents and Settings\Client\Recent\300 codes allopass gratuit r‚utilisable plus keygen pour cracker allopass, prizee, auditel, msn (divx, mp3, star warz, webmaster, kit graphique, rohff,.lnk
=> C:\Documents and Settings\Client\Recent\Microsoft Office Project Professional 2007 Keygen.lnk

[F:4563][D:55]-> C:\DOCUME~1\Client\LOCALS~1\Temp
[F:62][D:0]-> C:\DOCUME~1\Client\Cookies
[F:128][D:152]-> C:\DOCUME~1\Client\LOCALS~1\TEMPOR~1\content.IE5

--------------------[ Fin du rapport a 18:37:59,50 ]----------------------

Ajouter un commentaire

Réponse

Destrio5 60133Messages postés 18 septembre 2005Date d'inscription 14 février 2012Dernière intervention 16 juil. 2008 à 18:40

Bitdownload est un rogue. Il ne faut pas l'installer.

Le logiciel va le virer :

---> Relance Lop S&D
---> Choisis cette fois-ci l'option 2 (Suppression)
---> Ne ferme pas la fenêtre lors de la suppression !
---> Poste le rapport généré (C:\lopR.txt)

(Si le Bureau ne réapparait pas, presse Ctrl+Alt+Suppr, Onglet Fichier, Nouvelle tâche, tape explorer.exe et valide)

Ajouter un commentaire

Réponse

CHELMI18 34Messages postés 16 juillet 2008Date d'inscription 25 septembre 2011Dernière intervention 16 juil. 2008 à 18:49

et voila

-----------------------[ Lop S&D 4.2.2-1 XP/Vista ]---------------------

[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : Client ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 16/07/2008 | 18:35:16,42 ] [ PC : NOM-5167A8B9C83 ]
[ MAJ : 09-07-2008 | 21:02 ]

-------------[ Listing des dossiers dans Application Data ]------------

[07/02/2007|23:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[22/05/2008|21:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adsl Software Limited
[15/07/2008|22:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BitDefender
[30/03/2008|18:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Creative
[16/05/2005|08:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[12/05/2005|13:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[15/07/2008|21:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[21/06/2008|01:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[07/01/2008|20:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Help
[24/05/2007|23:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSScanAppDataDir
[30/03/2008|17:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\muvee Technologies
[06/09/2007|00:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Real
[12/02/2007|19:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[16/07/2008|18:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[24/09/2006|17:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\UDL
[23/08/2006|14:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[13/11/2006|19:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[10/11/2006|23:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo!
[10/11/2006|18:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion

[22/02/2008|11:35] C:\DOCUME~1\Client\APPLIC~1\.clamwin
[09/03/2008|09:12] C:\DOCUME~1\Client\APPLIC~1\Adobe
[10/02/2007|22:06] C:\DOCUME~1\Client\APPLIC~1\AdobeAUM
[21/02/2007|01:37] C:\DOCUME~1\Client\APPLIC~1\AdobeUM
[11/05/2007|00:19] C:\DOCUME~1\Client\APPLIC~1\ArcSoft
[15/07/2008|22:40] C:\DOCUME~1\Client\APPLIC~1\BitDefender
[21/02/2007|19:05] C:\DOCUME~1\Client\APPLIC~1\BitDownload
[04/07/2008|19:29] C:\DOCUME~1\Client\APPLIC~1\CamfrogWEB
[30/03/2008|18:19] C:\DOCUME~1\Client\APPLIC~1\Creative
[09/09/2006|14:24] C:\DOCUME~1\Client\APPLIC~1\CyberLink
[12/05/2005|13:02] C:\DOCUME~1\Client\APPLIC~1\desktop.ini
[31/10/2006|15:12] C:\DOCUME~1\Client\APPLIC~1\DivX
[24/04/2008|19:16] C:\DOCUME~1\Client\APPLIC~1\dvdcss
[14/01/2007|20:32] C:\DOCUME~1\Client\APPLIC~1\EPSON
[11/11/2006|15:02] C:\DOCUME~1\Client\APPLIC~1\FrostWire
[06/04/2007|13:59] C:\DOCUME~1\Client\APPLIC~1\GDIPFONTCACHEV1.DAT
[20/04/2008|19:41] C:\DOCUME~1\Client\APPLIC~1\GetRightToGo
[08/05/2008|21:43] C:\DOCUME~1\Client\APPLIC~1\GigaTribe
[01/12/2006|01:14] C:\DOCUME~1\Client\APPLIC~1\Google
[03/03/2007|18:19] C:\DOCUME~1\Client\APPLIC~1\Help
[29/09/2006|22:40] C:\DOCUME~1\Client\APPLIC~1\HTML Executable
[12/05/2005|11:12] C:\DOCUME~1\Client\APPLIC~1\Identities
[16/03/2007|22:01] C:\DOCUME~1\Client\APPLIC~1\LaCie
[21/02/2007|22:08] C:\DOCUME~1\Client\APPLIC~1\Leadertech
[03/11/2006|00:02] C:\DOCUME~1\Client\APPLIC~1\Macromedia
[06/09/2007|00:31] C:\DOCUME~1\Client\APPLIC~1\Media Player Classic
[25/09/2007|19:25] C:\DOCUME~1\Client\APPLIC~1\Microsoft
[20/02/2007|01:15] C:\DOCUME~1\Client\APPLIC~1\Mozilla
[21/12/2007|01:18] C:\DOCUME~1\Client\APPLIC~1\Nokia
[07/01/2008|00:40] C:\DOCUME~1\Client\APPLIC~1\Real
[28/09/2006|19:58] C:\DOCUME~1\Client\APPLIC~1\RibbonSoft
[10/07/2007|20:20] C:\DOCUME~1\Client\APPLIC~1\ShoppingReport
[03/03/2007|10:18] C:\DOCUME~1\Client\APPLIC~1\SodeaSoft
[11/11/2006|14:23] C:\DOCUME~1\Client\APPLIC~1\Sun
[10/10/2006|23:25] C:\DOCUME~1\Client\APPLIC~1\Symantec
[05/01/2007|21:56] C:\DOCUME~1\Client\APPLIC~1\Talkback
[21/06/2008|07:27] C:\DOCUME~1\Client\APPLIC~1\TribalWeb
[10/02/2007|11:58] C:\DOCUME~1\Client\APPLIC~1\ultra
[31/07/2007|20:20] C:\DOCUME~1\Client\APPLIC~1\Uniblue
[08/01/2007|00:07] C:\DOCUME~1\Client\APPLIC~1\vlc
[16/12/2007|20:36] C:\DOCUME~1\Client\APPLIC~1\Weflirt
[14/02/2007|03:55] C:\DOCUME~1\Client\APPLIC~1\WinssCookie.txt

[12/05/2005|13:02] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[12/05/2005|11:12] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[01/12/2007|09:43] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[25/11/2006|20:21] C:\DOCUME~1\LOCALS~1\APPLIC~1\Google
[25/11/2006|20:21] C:\DOCUME~1\LOCALS~1\APPLIC~1\Macromedia
[15/11/2006|23:22] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[12/01/2007|23:34] C:\DOCUME~1\LOCALS~1\APPLIC~1\Symantec

[12/05/2005|11:12] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[02/11/2006|19:32] C:\DOCUME~1\NETWOR~1\APPLIC~1\Symantec

----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

[22/02/2008 11:16][--ah-----] C:\WINDOWS\tasks\MP Scheduled Quick Scan.job
[05/08/2004 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
[16/07/2008 17:59][--ah-----] C:\WINDOWS\tasks\SA.DAT

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[15/04/2007|21:20] C:\Program Files\ABBYY FineReader 5.0 Sprint
[27/05/2007|09:27] C:\Program Files\Adobe
[16/05/2005|08:51] C:\Program Files\AMD
[16/05/2005|08:55] C:\Program Files\Apoint2K
[24/09/2006|17:20] C:\Program Files\ArcSoft
[15/07/2008|21:49] C:\Program Files\ASC 2.1
[24/01/2007|00:41] C:\Program Files\AVI Constructor Pack Trial Version 7.4.3
[12/01/2007|12:05] C:\Program Files\AvRack
[03/03/2007|22:58] C:\Program Files\Backgrounds
[15/07/2008|22:24] C:\Program Files\BitDefender
[21/02/2007|19:05] C:\Program Files\BitDownload
[21/06/2008|01:21] C:\Program Files\Blogdefolie
[10/07/2007|21:54] C:\Program Files\BufferZone
[21/06/2008|01:22] C:\Program Files\CableRouting
[22/02/2008|11:34] C:\Program Files\ClamWin
[22/02/2008|11:32] C:\Program Files\clamwin-0.92-setup.exe
[12/05/2005|11:09] C:\Program Files\ComPlus Applications
[22/01/2007|20:34] C:\Program Files\Comptes First
[30/03/2008|17:47] C:\Program Files\Creative
[21/01/2007|17:37] C:\Program Files\CyberLink
[17/03/2007|13:59] C:\Program Files\DAP
[17/03/2007|13:47] C:\Program Files\Dial-Messenger
[10/08/2007|21:47] C:\Program Files\DivX
[15/07/2008|20:40] C:\Program Files\eMule
[05/09/2007|18:23] C:\Program Files\Emule Speed Booster
[22/02/2007|21:02] C:\Program Files\eMule.lnk
[21/03/2008|11:13] C:\Program Files\EPSON
[15/07/2008|23:54] C:\Program Files\Fichiers communs
[20/04/2008|19:42] C:\Program Files\FLV PlayerFCSetup.exe
[20/04/2008|19:41] C:\Program Files\FLV PlayerRCATSetup.exe
[20/04/2008|18:33] C:\Program Files\FLV PlayerRCSetup.exe
[24/01/2006|19:32] C:\Program Files\fpimage.dll
[03/03/2006|09:50] C:\Program Files\French.lng
[24/01/2006|19:32] C:\Program Files\gdiplus.dll
[21/06/2008|01:23] C:\Program Files\GigaTribe
[15/07/2008|21:50] C:\Program Files\Google
[12/01/2007|12:04] C:\Program Files\HardwareDetection
[03/03/2007|22:58] C:\Program Files\HelpBar
[24/01/2006|19:32] C:\Program Files\hts32.dll
[03/03/2007|23:03] C:\Program Files\I and A Research
[15/08/2006|11:27] C:\Program Files\ImportExportMM5.dll
[15/08/2006|11:26] C:\Program Files\ImportExportMOProject.dll
[15/08/2006|11:27] C:\Program Files\ImportJCVG.dll
[15/07/2008|23:54] C:\Program Files\InstallShield Installation Information
[11/12/2007|23:28] C:\Program Files\Internet Explorer
[29/03/2008|13:20] C:\Program Files\Java
[03/03/2007|22:58] C:\Program Files\JCV
[16/08/2006|13:30] C:\Program Files\JCVGanttChartControl.dll
[16/08/2006|13:31] C:\Program Files\JCVGanttDisplay.exe
[03/08/2006|19:51] C:\Program Files\JCVInterfaces.tlb
[15/08/2006|17:54] C:\Program Files\JCVMm5Adapter.dll
[15/08/2006|17:54] C:\Program Files\JCVMm5GanttDisplay.dll
[15/08/2006|17:53] C:\Program Files\JCVMm6Adapter.dll
[15/08/2006|17:54] C:\Program Files\JCVMm6GanttDisplay.dll
[15/08/2006|17:51] C:\Program Files\JCVSimpleGrid.dll
[15/08/2006|17:53] C:\Program Files\JCVThumbnail.dll
[15/08/2006|17:54] C:\Program Files\JCVXmlAdapter.dll
[19/02/2008|23:17] C:\Program Files\KIT_ADSL_CT56x_USB
[16/03/2007|21:58] C:\Program Files\LaCie
[03/03/2007|22:58] C:\Program Files\languages
[30/11/2006|00:55] C:\Program Files\Lemoncast
[03/03/2007|18:18] C:\Program Files\Ma Page Web v2.1
[03/03/2007|22:58] C:\Program Files\Manual
[22/02/2007|23:43] C:\Program Files\MaxiCompte
[06/09/2007|00:30] C:\Program Files\Media Player Classic
[17/03/2007|13:40] C:\Program Files\Mediafour
[16/05/2005|09:23] C:\Program Files\Messenger
[24/01/2006|19:32] C:\Program Files\MFC71u.dll
[20/04/2007|19:40] C:\Program Files\Micro Application
[10/05/2007|18:21] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[12/05/2005|11:12] C:\Program Files\microsoft frontpage
[07/01/2008|20:00] C:\Program Files\Microsoft Office
[23/08/2006|13:55] C:\Program Files\Microsoft Visual Studio
[21/06/2008|01:22] C:\Program Files\Movie Maker
[03/05/2008|07:52] C:\Program Files\Mozilla Firefox
[21/12/2007|00:57] C:\Program Files\MSBuild
[16/05/2005|08:57] C:\Program Files\MSI
[10/09/2006|13:09] C:\Program Files\MSN
[12/05/2005|11:07] C:\Program Files\MSN Gaming Zone
[08/02/2007|21:41] C:\Program Files\MSN Messenger
[24/01/2006|19:32] C:\Program Files\msvcp71.dll
[24/01/2006|19:32] C:\Program Files\msvcr71.dll
[14/02/2007|03:52] C:\Program Files\MSXML 4.0
[05/03/2007|18:44] C:\Program Files\Multi_Media_France
[28/02/2007|19:40] C:\Program Files\MUSK Codec Pack v5
[30/03/2008|17:39] C:\Program Files\muvee Technologies
[12/05/2005|11:09] C:\Program Files\NetMeeting
[19/02/2008|23:18] C:\Program Files\Neuf
[21/12/2007|01:02] C:\Program Files\Nokia
[21/12/2007|00:34] C:\Program Files\Nokia_Map_Loader_Setup.en.exe
[28/02/2007|18:20] C:\Program Files\nvu-1_1.0-win32-fr.zip
[12/05/2005|11:08] C:\Program Files\Online Services
[15/06/2007|01:26] C:\Program Files\Outlook Express
[25/11/2006|22:09] C:\Program Files\PDFCreator
[29/09/2006|22:38] C:\Program Files\PDFCreator Toolbar
[14/02/2007|19:36] C:\Program Files\Photo to Sketch Pro
[16/12/2007|20:07] C:\Program Files\planmgr.zip
[16/12/2007|20:05] C:\Program Files\Planning Manager
[06/04/2007|09:54] C:\Program Files\PViever
[12/11/2006|20:08] C:\Program Files\QuickTime
[04/09/2007|21:17] C:\Program Files\Real
[06/09/2007|00:31] C:\Program Files\Real Alternative
[04/09/2007|21:02] C:\Program Files\Real One Player v10_Gold_with crack
[06/09/2007|00:27] C:\Program Files\realalt152.exe
[06/09/2007|00:15] C:\Program Files\realplayer
[12/01/2007|12:05] C:\Program Files\Realtek Sound Manager
[21/12/2007|00:47] C:\Program Files\Reference Assemblies
[20/04/2008|19:42] C:\Program Files\Replay Media Catcher
[21/01/2007|17:31] C:\Program Files\Replay Radio 5
[24/07/2006|15:14] C:\Program Files\res_francais.exe
[15/08/2006|11:27] C:\Program Files\ResourcesPool.dll
[29/09/2006|22:38] C:\Program Files\Seagrand
[10/07/2007|21:51] C:\Program Files\Secured eMule
[12/05/2005|11:10] C:\Program Files\Services en ligne
[03/03/2007|22:59] C:\Program Files\Setup.log
[16/12/2007|20:36] C:\Program Files\SetupWeFlirt.exe
[16/05/2005|08:34] C:\Program Files\SiS VGA Utilities V3.62
[16/05/2005|08:48] C:\Program Files\SiSLan
[03/03/2007|22:58] C:\Program Files\Skins
[12/01/2008|11:47] C:\Program Files\Smart Panel
[03/08/2006|21:56] C:\Program Files\Snapshots.dll
[04/07/2007|23:11] C:\Program Files\SodeaSoft
[12/02/2007|19:29] C:\Program Files\Softwin
[27/06/2007|03:36] C:\Program Files\SpyLocked 4.3
[10/06/2007|16:59] C:\Program Files\SpywareRemover
[03/03/2007|22:58] C:\Program Files\sys
[24/01/2006|19:32] C:\Program Files\ter32.dll
[01/08/2007|20:20] C:\Program Files\the-gimp_the_gimp_2.2.17_francais_10178.exe
[15/08/2006|11:27] C:\Program Files\TotalCost.dll
[16/07/2008|17:38] C:\Program Files\Trend Micro
[21/06/2008|01:23] C:\Program Files\TribalWeb.net
[29/01/2007|18:35] C:\Program Files\TurnTool
[12/05/2005|11:16] C:\Program Files\Uninstall Information
[01/04/2006|09:39] C:\Program Files\UnInstall_31360.exe
[03/03/2007|22:59] C:\Program Files\UnInstall_31360.txt
[20/08/2007|23:44] C:\Program Files\Unlocker
[24/07/2006|15:14] C:\Program Files\Urls_francais.xml
[03/08/2006|21:56] C:\Program Files\UserSheets.dll
[07/01/2007|19:23] C:\Program Files\VideoLAN
[15/07/2008|22:57] C:\Program Files\Web Technologies
[21/06/2008|01:23] C:\Program Files\Windows Live Safety Center
[26/05/2007|17:01] C:\Program Files\Windows Live Toolbar
[07/11/2006|19:36] C:\Program Files\Windows Media Connect 2
[07/11/2006|19:36] C:\Program Files\Windows Media Player
[12/05/2005|11:07] C:\Program Files\Windows NT
[12/05/2005|11:10] C:\Program Files\WindowsUpdate
[12/05/2005|11:12] C:\Program Files\xerox
[10/11/2006|23:41] C:\Program Files\Yahoo!
[15/07/2008|21:49] C:\Program Files\YesMessenger
[26/11/2006|17:39] C:\Program Files\Zone Labs

------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------

[20/02/2007|23:29] C:\Program Files\Fichiers communs\Adobe
[15/07/2008|22:23] C:\Program Files\Fichiers communs\BitDefender
[23/08/2006|13:55] C:\Program Files\Fichiers communs\Designer
[02/03/2007|20:52] C:\Program Files\Fichiers communs\HTML Executable Viewer
[06/03/2007|22:30] C:\Program Files\Fichiers communs\I and A Research Inc
[16/05/2005|08:49] C:\Program Files\Fichiers communs\InstallShield
[25/09/2007|19:38] C:\Program Files\Fichiers communs\Java
[30/03/2008|17:38] C:\Program Files\Fichiers communs\Microsoft Shared
[12/05/2005|11:09] C:\Program Files\Fichiers communs\MSSoap
[12/05/2005|13:03] C:\Program Files\Fichiers communs\ODBC
[07/01/2008|00:40] C:\Program Files\Fichiers communs\Real
[12/05/2005|11:09] C:\Program Files\Fichiers communs\Services
[15/07/2008|22:21] C:\Program Files\Fichiers communs\Softwin
[12/05/2005|13:03] C:\Program Files\Fichiers communs\SpeechEngines
[12/02/2007|19:27] C:\Program Files\Fichiers communs\Symantec Shared
[15/06/2007|01:26] C:\Program Files\Fichiers communs\System

---------------------------[ Process ]--------------------------

... 53

iexplore.exe ~ [3032]
iexplore.exe ~ [2480]

----------------------[ Recherche avec S_Lop ]---------------------

Aucun fichier / dossier Lop trouvé !

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

C:\DOCUME~1\Client\APPLIC~1\Bitdownload
C:\DOCUME~1\Client\APPLIC~1\Bitdownload\Data
C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\Bitdownload
C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\Bitdownload\BitDownload.lnk
C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\Bitdownload\Uninstall BitDownload.lnk
C:\Program Files\Bitdownload
C:\Program Files\Bitdownload\BitDownload.exe
C:\Program Files\Bitdownload\BitDownload.TRC
C:\Program Files\Bitdownload\settings.ini
C:\Program Files\Bitdownload\settings.stp
C:\Program Files\Bitdownload\SkinCrafterDll.dll
C:\Program Files\Bitdownload\Skins
C:\Program Files\Bitdownload\Support
C:\Program Files\Bitdownload\TorrentManager.dll
C:\Program Files\Bitdownload\unins000.dat
C:\Program Files\Bitdownload\unins000.exe
C:\Program Files\Bitdownload\ZM
C:\Program Files\Multi_Media_France
C:\Program Files\Multi_Media_France\INSTALL.LOG

----------------------[ Verification du Registre ]----------------------

..... OK !

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts PROPRE

----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-07-16 18:36:51
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: FF

--------------------[ Recherche d'autres infections ]---------------------

=> C:\Documents and Settings\Client\Recent\300 Codes Allopass Gratuit R‚utilisable Plus Keygen Pour Cracker Allopass, Prizee, Auditel, Msn (Divx, Mp3, Star Warz, Webmaster, Kit Graphique, Rohf.lnk
=> C:\Documents and Settings\Client\Recent\300 codes allopass gratuit r‚utilisable plus keygen pour cracker allopass, prizee, auditel, msn (divx, mp3, star warz, webmaster, kit graphique, rohff,.lnk
=> C:\Documents and Settings\Client\Recent\300 Codes Allopass Gratuit R‚utilisable Plus Keygen Pour Cracker Allopass, Prizee, Auditel, Msn (Divx, Mp3, Star Warz, Webmaster, Kit Graphique, Rohf.lnk
=> C:\Documents and Settings\Client\Recent\300 codes allopass gratuit r‚utilisable plus keygen pour cracker allopass, prizee, auditel, msn (divx, mp3, star warz, webmaster, kit graphique, rohff,.lnk
=> C:\Documents and Settings\Client\Recent\Microsoft Office Project Professional 2007 Keygen.lnk

[F:4563][D:55]-> C:\DOCUME~1\Client\LOCALS~1\Temp
[F:62][D:0]-> C:\DOCUME~1\Client\Cookies
[F:128][D:152]-> C:\DOCUME~1\Client\LOCALS~1\TEMPOR~1\content.IE5

--------------------[ Fin du rapport a 18:37:59,50 ]----------------------
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////

Echec ! - C:\DOCUME~1\Client\APPLIC~1\Bitdownload\Data
Supprime! - C:\Program Files\Bitdownload\BitDownload.exe
Supprime! - C:\Program Files\Bitdownload\BitDownload.TRC
Supprime! - C:\Program Files\Bitdownload\settings.ini
Supprime! - C:\Program Files\Bitdownload\settings.stp
Supprime! - C:\Program Files\Bitdownload\SkinCrafterDll.dll
Supprime! - C:\Program Files\Bitdownload\Skins
Supprime! - C:\Program Files\Bitdownload\Support
Supprime! - C:\Program Files\Bitdownload\TorrentManager.dll
Supprime! - C:\Program Files\Bitdownload\unins000.dat
Supprime! - C:\Program Files\Bitdownload\unins000.exe
Supprime! - C:\Program Files\Bitdownload\ZM
Supprime! - C:\Program Files\Multi_Media_France\INSTALL.LOG
Supprime! - C:\DOCUME~1\Client\APPLIC~1\Bitdownload
Supprime! - C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\Bitdownload
Supprime! - C:\Program Files\Bitdownload
Supprime! - C:\Program Files\Multi_Media_France

//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

Supprime! - C:\DOCUME~1\Client\APPLIC~1\ShoppingReport

//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

-------------[ Listing des dossiers dans APPLIC~1 ]------------

[07/02/2007|23:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[22/05/2008|21:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adsl Software Limited
[15/07/2008|22:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BitDefender
[30/03/2008|18:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Creative
[16/05/2005|08:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[12/05/2005|13:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[15/07/2008|21:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[21/06/2008|01:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[07/01/2008|20:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Help
[24/05/2007|23:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSScanAppDataDir
[30/03/2008|17:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\muvee Technologies
[06/09/2007|00:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Real
[12/02/2007|19:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[16/07/2008|18:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[24/09/2006|17:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\UDL
[23/08/2006|14:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[13/11/2006|19:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[10/11/2006|23:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo!
[10/11/2006|18:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion

[22/02/2008|11:35] C:\DOCUME~1\Client\APPLIC~1\.clamwin
[09/03/2008|09:12] C:\DOCUME~1\Client\APPLIC~1\Adobe
[10/02/2007|22:06] C:\DOCUME~1\Client\APPLIC~1\AdobeAUM
[21/02/2007|01:37] C:\DOCUME~1\Client\APPLIC~1\AdobeUM
[11/05/2007|00:19] C:\DOCUME~1\Client\APPLIC~1\ArcSoft
[15/07/2008|22:40] C:\DOCUME~1\Client\APPLIC~1\BitDefender
[04/07/2008|19:29] C:\DOCUME~1\Client\APPLIC~1\CamfrogWEB
[30/03/2008|18:19] C:\DOCUME~1\Client\APPLIC~1\Creative
[09/09/2006|14:24] C:\DOCUME~1\Client\APPLIC~1\CyberLink
[12/05/2005|13:02] C:\DOCUME~1\Client\APPLIC~1\desktop.ini
[31/10/2006|15:12] C:\DOCUME~1\Client\APPLIC~1\DivX
[24/04/2008|19:16] C:\DOCUME~1\Client\APPLIC~1\dvdcss
[14/01/2007|20:32] C:\DOCUME~1\Client\APPLIC~1\EPSON
[11/11/2006|15:02] C:\DOCUME~1\Client\APPLIC~1\FrostWire
[06/04/2007|13:59] C:\DOCUME~1\Client\APPLIC~1\GDIPFONTCACHEV1.DAT
[20/04/2008|19:41] C:\DOCUME~1\Client\APPLIC~1\GetRightToGo
[08/05/2008|21:43] C:\DOCUME~1\Client\APPLIC~1\GigaTribe
[01/12/2006|01:14] C:\DOCUME~1\Client\APPLIC~1\Google
[03/03/2007|18:19] C:\DOCUME~1\Client\APPLIC~1\Help
[29/09/2006|22:40] C:\DOCUME~1\Client\APPLIC~1\HTML Executable
[12/05/2005|11:12] C:\DOCUME~1\Client\APPLIC~1\Identities
[16/03/2007|22:01] C:\DOCUME~1\Client\APPLIC~1\LaCie
[21/02/2007|22:08] C:\DOCUME~1\Client\APPLIC~1\Leadertech
[03/11/2006|00:02] C:\DOCUME~1\Client\APPLIC~1\Macromedia
[06/09/2007|00:31] C:\DOCUME~1\Client\APPLIC~1\Media Player Classic
[25/09/2007|19:25] C:\DOCUME~1\Client\APPLIC~1\Microsoft
[20/02/2007|01:15] C:\DOCUME~1\Client\APPLIC~1\Mozilla
[21/12/2007|01:18] C:\DOCUME~1\Client\APPLIC~1\Nokia
[07/01/2008|00:40] C:\DOCUME~1\Client\APPLIC~1\Real
[28/09/2006|19:58] C:\DOCUME~1\Client\APPLIC~1\RibbonSoft
[03/03/2007|10:18] C:\DOCUME~1\Client\APPLIC~1\SodeaSoft
[11/11/2006|14:23] C:\DOCUME~1\Client\APPLIC~1\Sun
[10/10/2006|23:25] C:\DOCUME~1\Client\APPLIC~1\Symantec
[05/01/2007|21:56] C:\DOCUME~1\Client\APPLIC~1\Talkback
[21/06/2008|07:27] C:\DOCUME~1\Client\APPLIC~1\TribalWeb
[10/02/2007|11:58] C:\DOCUME~1\Client\APPLIC~1\ultra
[31/07/2007|20:20] C:\DOCUME~1\Client\APPLIC~1\Uniblue
[08/01/2007|00:07] C:\DOCUME~1\Client\APPLIC~1\vlc
[16/12/2007|20:36] C:\DOCUME~1\Client\APPLIC~1\Weflirt
[14/02/2007|03:55] C:\DOCUME~1\Client\APPLIC~1\WinssCookie.txt

[12/05/2005|13:02] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[12/05/2005|11:12] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[01/12/2007|09:43] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[25/11/2006|20:21] C:\DOCUME~1\LOCALS~1\APPLIC~1\Google
[25/11/2006|20:21] C:\DOCUME~1\LOCALS~1\APPLIC~1\Macromedia
[15/11/2006|23:22] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[12/01/2007|23:34] C:\DOCUME~1\LOCALS~1\APPLIC~1\Symantec

[12/05/2005|11:12] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[02/11/2006|19:32] C:\DOCUME~1\NETWOR~1\APPLIC~1\Symantec

----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

[22/02/2008 11:16][--ah-----] C:\WINDOWS\tasks\MP Scheduled Quick Scan.job
[05/08/2004 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
[16/07/2008 17:59][--ah-----] C:\WINDOWS\tasks\SA.DAT

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[15/04/2007|21:20] C:\Program Files\ABBYY FineReader 5.0 Sprint
[27/05/2007|09:27] C:\Program Files\Adobe
[16/05/2005|08:51] C:\Program Files\AMD
[16/05/2005|08:55] C:\Program Files\Apoint2K
[24/09/2006|17:20] C:\Program Files\ArcSoft
[15/07/2008|21:49] C:\Program Files\ASC 2.1
[24/01/2007|00:41] C:\Program Files\AVI Constructor Pack Trial Version 7.4.3
[12/01/2007|12:05] C:\Program Files\AvRack
[03/03/2007|22:58] C:\Program Files\Backgrounds
[15/07/2008|22:24] C:\Program Files\BitDefender
[21/06/2008|01:21] C:\Program Files\Blogdefolie
[10/07/2007|21:54] C:\Program Files\BufferZone
[21/06/2008|01:22] C:\Program Files\CableRouting
[22/02/2008|11:34] C:\Program Files\ClamWin
[22/02/2008|11:32] C:\Program Files\clamwin-0.92-setup.exe
[12/05/2005|11:09] C:\Program Files\ComPlus Applications
[22/01/2007|20:34] C:\Program Files\Comptes First
[30/03/2008|17:47] C:\Program Files\Creative
[21/01/2007|17:37] C:\Program Files\CyberLink
[17/03/2007|13:59] C:\Program Files\DAP
[17/03/2007|13:47] C:\Program Files\Dial-Messenger
[10/08/2007|21:47] C:\Program Files\DivX
[15/07/2008|20:40] C:\Program Files\eMule
[05/09/2007|18:23] C:\Program Files\Emule Speed Booster
[22/02/2007|21:02] C:\Program Files\eMule.lnk
[21/03/2008|11:13] C:\Program Files\EPSON
[15/07/2008|23:54] C:\Program Files\Fichiers communs
[20/04/2008|19:42] C:\Program Files\FLV PlayerFCSetup.exe
[20/04/2008|19:41] C:\Program Files\FLV PlayerRCATSetup.exe
[20/04/2008|18:33] C:\Program Files\FLV PlayerRCSetup.exe
[24/01/2006|19:32] C:\Program Files\fpimage.dll
[03/03/2006|09:50] C:\Program Files\French.lng
[24/01/2006|19:32] C:\Program Files\gdiplus.dll
[21/06/2008|01:23] C:\Program Files\GigaTribe
[15/07/2008|21:50] C:\Program Files\Google
[12/01/2007|12:04] C:\Program Files\HardwareDetection
[03/03/2007|22:58] C:\Program Files\HelpBar
[24/01/2006|19:32] C:\Program Files\hts32.dll
[03/03/2007|23:03] C:\Program Files\I and A Research
[15/08/2006|11:27] C:\Program Files\ImportExportMM5.dll
[15/08/2006|11:26] C:\Program Files\ImportExportMOProject.dll
[15/08/2006|11:27] C:\Program Files\ImportJCVG.dll
[15/07/2008|23:54] C:\Program Files\InstallShield Installation Information
[11/12/2007|23:28] C:\Program Files\Internet Explorer
[29/03/2008|13:20] C:\Program Files\Java
[03/03/2007|22:58] C:\Program Files\JCV
[16/08/2006|13:30] C:\Program Files\JCVGanttChartControl.dll
[16/08/2006|13:31] C:\Program Files\JCVGanttDisplay.exe
[03/08/2006|19:51] C:\Program Files\JCVInterfaces.tlb
[15/08/2006|17:54] C:\Program Files\JCVMm5Adapter.dll
[15/08/2006|17:54] C:\Program Files\JCVMm5GanttDisplay.dll
[15/08/2006|17:53] C:\Program Files\JCVMm6Adapter.dll
[15/08/2006|17:54] C:\Program Files\JCVMm6GanttDisplay.dll
[15/08/2006|17:51] C:\Program Files\JCVSimpleGrid.dll
[15/08/2006|17:53] C:\Program Files\JCVThumbnail.dll
[15/08/2006|17:54] C:\Program Files\JCVXmlAdapter.dll
[19/02/2008|23:17] C:\Program Files\KIT_ADSL_CT56x_USB
[16/03/2007|21:58] C:\Program Files\LaCie
[03/03/2007|22:58] C:\Program Files\languages
[30/11/2006|00:55] C:\Program Files\Lemoncast
[03/03/2007|18:18] C:\Program Files\Ma Page Web v2.1
[03/03/2007|22:58] C:\Program Files\Manual
[22/02/2007|23:43] C:\Program Files\MaxiCompte
[06/09/2007|00:30] C:\Program Files\Media Player Classic
[17/03/2007|13:40] C:\Program Files\Mediafour
[16/05/2005|09:23] C:\Program Files\Messenger
[24/01/2006|19:32] C:\Program Files\MFC71u.dll
[20/04/2007|19:40] C:\Program Files\Micro Application
[10/05/2007|18:21] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[12/05/2005|11:12] C:\Program Files\microsoft frontpage
[07/01/2008|20:00] C:\Program Files\Microsoft Office
[23/08/2006|13:55] C:\Program Files\Microsoft Visual Studio
[21/06/2008|01:22] C:\Program Files\Movie Maker
[03/05/2008|07:52] C:\Program Files\Mozilla Firefox
[21/12/2007|00:57] C:\Program Files\MSBuild
[16/05/2005|08:57] C:\Program Files\MSI
[10/09/2006|13:09] C:\Program Files\MSN
[12/05/2005|11:07] C:\Program Files\MSN Gaming Zone
[08/02/2007|21:41] C:\Program Files\MSN Messenger
[24/01/2006|19:32] C:\Program Files\msvcp71.dll
[24/01/2006|19:32] C:\Program Files\msvcr71.dll
[14/02/2007|03:52] C:\Program Files\MSXML 4.0
[28/02/2007|19:40] C:\Program Files\MUSK Codec Pack v5
[30/03/2008|17:39] C:\Program Files\muvee Technologies
[12/05/2005|11:09] C:\Program Files\NetMeeting
[19/02/2008|23:18] C:\Program Files\Neuf
[21/12/2007|01:02] C:\Program Files\Nokia
[21/12/2007|00:34] C:\Program Files\Nokia_Map_Loader_Setup.en.exe
[28/02/2007|18:20] C:\Program Files\nvu-1_1.0-win32-fr.zip
[12/05/2005|11:08] C:\Program Files\Online Services
[15/06/2007|01:26] C:\Program Files\Outlook Express
[25/11/2006|22:09] C:\Program Files\PDFCreator
[29/09/2006|22:38] C:\Program Files\PDFCreator Toolbar
[14/02/2007|19:36] C:\Program Files\Photo to Sketch Pro
[16/12/2007|20:07] C:\Program Files\planmgr.zip
[16/12/2007|20:05] C:\Program Files\Planning Manager
[06/04/2007|09:54] C:\Program Files\PViever
[12/11/2006|20:08] C:\Program Files\QuickTime
[04/09/2007|21:17] C:\Program Files\Real
[06/09/2007|00:31] C:\Program Files\Real Alternative
[04/09/2007|21:02] C:\Program Files\Real One Player v10_Gold_with crack
[06/09/2007|00:27] C:\Program Files\realalt152.exe
[06/09/2007|00:15] C:\Program Files\realplayer
[12/01/2007|12:05] C:\Program Files\Realtek Sound Manager
[21/12/2007|00:47] C:\Program Files\Reference Assemblies
[20/04/2008|19:42] C:\Program Files\Replay Media Catcher
[21/01/2007|17:31] C:\Program Files\Replay Radio 5
[24/07/2006|15:14] C:\Program Files\res_francais.exe
[15/08/2006|11:27] C:\Program Files\ResourcesPool.dll
[29/09/2006|22:38] C:\Program Files\Seagrand
[10/07/2007|21:51] C:\Program Files\Secured eMule
[12/05/2005|11:10] C:\Program Files\Services en ligne
[03/03/2007|22:59] C:\Program Files\Setup.log
[16/12/2007|20:36] C:\Program Files\SetupWeFlirt.exe
[16/05/2005|08:34] C:\Program Files\SiS VGA Utilities V3.62
[16/05/2005|08:48] C:\Program Files\SiSLan
[03/03/2007|22:58] C:\Program Files\Skins
[12/01/2008|11:47] C:\Program Files\Smart Panel
[03/08/2006|21:56] C:\Program Files\Snapshots.dll
[04/07/2007|23:11] C:\Program Files\SodeaSoft
[12/02/2007|19:29] C:\Program Files\Softwin
[27/06/2007|03:36] C:\Program Files\SpyLocked 4.3
[10/06/2007|16:59] C:\Program Files\SpywareRemover
[03/03/2007|22:58] C:\Program Files\sys
[24/01/2006|19:32] C:\Program Files\ter32.dll
[01/08/2007|20:20] C:\Program Files\the-gimp_the_gimp_2.2.17_francais_10178.exe
[15/08/2006|11:27] C:\Program Files\TotalCost.dll
[16/07/2008|17:38] C:\Program Files\Trend Micro
[21/06/2008|01:23] C:\Program Files\TribalWeb.net
[29/01/2007|18:35] C:\Program Files\TurnTool
[12/05/2005|11:16] C:\Program Files\Uninstall Information
[01/04/2006|09:39] C:\Program Files\UnInstall_31360.exe
[03/03/2007|22:59] C:\Program Files\UnInstall_31360.txt
[20/08/2007|23:44] C:\Program Files\Unlocker
[24/07/2006|15:14] C:\Program Files\Urls_francais.xml
[03/08/2006|21:56] C:\Program Files\UserSheets.dll
[07/01/2007|19:23] C:\Program Files\VideoLAN
[15/07/2008|22:57] C:\Program Files\Web Technologies
[21/06/2008|01:23] C:\Program Files\Windows Live Safety Center
[26/05/2007|17:01] C:\Program Files\Windows Live Toolbar
[07/11/2006|19:36] C:\Program Files\Windows Media Connect 2
[07/11/2006|19:36] C:\Program Files\Windows Media Player
[12/05/2005|11:07] C:\Program Files\Windows NT
[12/05/2005|11:10] C:\Program Files\WindowsUpdate
[12/05/2005|11:12] C:\Program Files\xerox
[10/11/2006|23:41] C:\Program Files\Yahoo!
[15/07/2008|21:49] C:\Program Files\YesMessenger
[26/11/2006|17:39] C:\Program Files\Zone Labs

------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------

[20/02/2007|23:29] C:\Program Files\Fichiers communs\Adobe
[15/07/2008|22:23] C:\Program Files\Fichiers communs\BitDefender
[23/08/2006|13:55] C:\Program Files\Fichiers communs\Designer
[02/03/2007|20:52] C:\Program Files\Fichiers communs\HTML Executable Viewer
[06/03/2007|22:30] C:\Program Files\Fichiers communs\I and A Research Inc
[16/05/2005|08:49] C:\Program Files\Fichiers communs\InstallShield
[25/09/2007|19:38] C:\Program Files\Fichiers communs\Java
[30/03/2008|17:38] C:\Program Files\Fichiers communs\Microsoft Shared
[12/05/2005|11:09] C:\Program Files\Fichiers communs\MSSoap
[12/05/2005|13:03] C:\Program Files\Fichiers communs\ODBC
[07/01/2008|00:40] C:\Program Files\Fichiers communs\Real
[12/05/2005|11:09] C:\Program Files\Fichiers communs\Services
[15/07/2008|22:21] C:\Program Files\Fichiers communs\Softwin
[12/05/2005|13:03] C:\Program Files\Fichiers communs\SpeechEngines
[12/02/2007|19:27] C:\Program Files\Fichiers communs\Symantec Shared
[15/06/2007|01:26] C:\Program Files\Fichiers communs\System

---------------------------[ Process ]--------------------------

... 52

... OK !

----------------------[ Recherche avec S_Lop ]---------------------

Aucun fichier / dossier Lop trouvé !

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

Aucun fichier / dossier Lop trouvé !

----------------------[ Verification du Registre ]----------------------

..... OK !

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts PROPRE

----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-07-16 18:46:45
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------

=> C:\Documents and Settings\Client\Recent\300 Codes Allopass Gratuit R‚utilisable Plus Keygen Pour Cracker Allopass, Prizee, Auditel, Msn (Divx, Mp3, Star Warz, Webmaster, Kit Graphique, Rohf.lnk
=> C:\Documents and Settings\Client\Recent\300 codes allopass gratuit r‚utilisable plus keygen pour cracker allopass, prizee, auditel, msn (divx, mp3, star warz, webmaster, kit graphique, rohff,.lnk
=> C:\Documents and Settings\Client\Recent\300 Codes Allopass Gratuit R‚utilisable Plus Keygen Pour Cracker Allopass, Prizee, Auditel, Msn (Divx, Mp3, Star Warz, Webmaster, Kit Graphique, Rohf.lnk
=> C:\Documents and Settings\Client\Recent\300 codes allopass gratuit r‚utilisable plus keygen pour cracker allopass, prizee, auditel, msn (divx, mp3, star warz, webmaster, kit graphique, rohff,.lnk
=> C:\Documents and Settings\Client\Recent\Microsoft Office Project Professional 2007 Keygen.lnk

[F:4563][D:55]-> C:\DOCUME~1\Client\LOCALS~1\Temp
[F:62][D:0]-> C:\DOCUME~1\Client\Cookies
[F:151][D:152]-> C:\DOCUME~1\Client\LOCALS~1\TEMPOR~1\content.IE5

--------------------[ Fin du rapport a 18:47:53,35 ]----------------------

Ajouter un commentaire

Réponse

Destrio5 60133Messages postés 18 septembre 2005Date d'inscription 14 février 2012Dernière intervention 16 juil. 2008 à 18:52

Redémarre ton PC et refais l'option 2.

Ne poste que le rapport de l'option 2.

Ajouter un commentaire

Réponse

CHELMI18 34Messages postés 16 juillet 2008Date d'inscription 25 septembre 2011Dernière intervention 16 juil. 2008 à 19:16

et voila le rapport mais pendant le scan j ai eu une fenetre me disant qu il ne trvait pas le fichier "regedit.exe" ou un truc comme a j ai fais ok quand meme

-----------------------[ Lop S&D 4.2.2-1 XP/Vista ]---------------------

[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : Client ] [ "C:\Lop SD" ] [ Selection : 2 ]
[ 16/07/2008 | 19:01:07,85 ] [ PC : NOM-5167A8B9C83 ]
[ MAJ : 09-07-2008 | 21:02 ]

//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

-------------[ Listing des dossiers dans Application Data ]------------

[07/02/2007|23:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[22/05/2008|21:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adsl Software Limited
[15/07/2008|22:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BitDefender
[30/03/2008|18:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Creative
[16/05/2005|08:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[12/05/2005|13:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[15/07/2008|21:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[21/06/2008|01:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[07/01/2008|20:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Help
[24/05/2007|23:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSScanAppDataDir
[30/03/2008|17:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\muvee Technologies
[06/09/2007|00:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Real
[12/02/2007|19:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[16/07/2008|18:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[24/09/2006|17:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\UDL
[23/08/2006|14:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[13/11/2006|19:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[10/11/2006|23:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo!
[10/11/2006|18:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion

[22/02/2008|11:35] C:\DOCUME~1\Client\APPLIC~1\.clamwin
[09/03/2008|09:12] C:\DOCUME~1\Client\APPLIC~1\Adobe
[10/02/2007|22:06] C:\DOCUME~1\Client\APPLIC~1\AdobeAUM
[21/02/2007|01:37] C:\DOCUME~1\Client\APPLIC~1\AdobeUM
[11/05/2007|00:19] C:\DOCUME~1\Client\APPLIC~1\ArcSoft
[15/07/2008|22:40] C:\DOCUME~1\Client\APPLIC~1\BitDefender
[04/07/2008|19:29] C:\DOCUME~1\Client\APPLIC~1\CamfrogWEB
[30/03/2008|18:19] C:\DOCUME~1\Client\APPLIC~1\Creative
[09/09/2006|14:24] C:\DOCUME~1\Client\APPLIC~1\CyberLink
[12/05/2005|13:02] C:\DOCUME~1\Client\APPLIC~1\desktop.ini
[31/10/2006|15:12] C:\DOCUME~1\Client\APPLIC~1\DivX
[24/04/2008|19:16] C:\DOCUME~1\Client\APPLIC~1\dvdcss
[14/01/2007|20:32] C:\DOCUME~1\Client\APPLIC~1\EPSON
[11/11/2006|15:02] C:\DOCUME~1\Client\APPLIC~1\FrostWire
[06/04/2007|13:59] C:\DOCUME~1\Client\APPLIC~1\GDIPFONTCACHEV1.DAT
[20/04/2008|19:41] C:\DOCUME~1\Client\APPLIC~1\GetRightToGo
[08/05/2008|21:43] C:\DOCUME~1\Client\APPLIC~1\GigaTribe
[01/12/2006|01:14] C:\DOCUME~1\Client\APPLIC~1\Google
[03/03/2007|18:19] C:\DOCUME~1\Client\APPLIC~1\Help
[29/09/2006|22:40] C:\DOCUME~1\Client\APPLIC~1\HTML Executable
[12/05/2005|11:12] C:\DOCUME~1\Client\APPLIC~1\Identities
[16/03/2007|22:01] C:\DOCUME~1\Client\APPLIC~1\LaCie
[21/02/2007|22:08] C:\DOCUME~1\Client\APPLIC~1\Leadertech
[03/11/2006|00:02] C:\DOCUME~1\Client\APPLIC~1\Macromedia
[06/09/2007|00:31] C:\DOCUME~1\Client\APPLIC~1\Media Player Classic
[25/09/2007|19:25] C:\DOCUME~1\Client\APPLIC~1\Microsoft
[20/02/2007|01:15] C:\DOCUME~1\Client\APPLIC~1\Mozilla
[21/12/2007|01:18] C:\DOCUME~1\Client\APPLIC~1\Nokia
[07/01/2008|00:40] C:\DOCUME~1\Client\APPLIC~1\Real
[28/09/2006|19:58] C:\DOCUME~1\Client\APPLIC~1\RibbonSoft
[03/03/2007|10:18] C:\DOCUME~1\Client\APPLIC~1\SodeaSoft
[11/11/2006|14:23] C:\DOCUME~1\Client\APPLIC~1\Sun
[10/10/2006|23:25] C:\DOCUME~1\Client\APPLIC~1\Symantec
[05/01/2007|21:56] C:\DOCUME~1\Client\APPLIC~1\Talkback
[21/06/2008|07:27] C:\DOCUME~1\Client\APPLIC~1\TribalWeb
[10/02/2007|11:58] C:\DOCUME~1\Client\APPLIC~1\ultra
[31/07/2007|20:20] C:\DOCUME~1\Client\APPLIC~1\Uniblue
[08/01/2007|00:07] C:\DOCUME~1\Client\APPLIC~1\vlc
[16/12/2007|20:36] C:\DOCUME~1\Client\APPLIC~1\Weflirt
[14/02/2007|03:55] C:\DOCUME~1\Client\APPLIC~1\WinssCookie.txt

[12/05/2005|13:02] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[12/05/2005|11:12] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[01/12/2007|09:43] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[25/11/2006|20:21] C:\DOCUME~1\LOCALS~1\APPLIC~1\Google
[25/11/2006|20:21] C:\DOCUME~1\LOCALS~1\APPLIC~1\Macromedia
[15/11/2006|23:22] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[12/01/2007|23:34] C:\DOCUME~1\LOCALS~1\APPLIC~1\Symantec

[12/05/2005|11:12] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[02/11/2006|19:32] C:\DOCUME~1\NETWOR~1\APPLIC~1\Symantec

----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

[22/02/2008 11:16][--ah-----] C:\WINDOWS\tasks\MP Scheduled Quick Scan.job
[05/08/2004 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
[16/07/2008 18:57][--ah-----] C:\WINDOWS\tasks\SA.DAT

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[15/04/2007|21:20] C:\Program Files\ABBYY FineReader 5.0 Sprint
[27/05/2007|09:27] C:\Program Files\Adobe
[16/05/2005|08:51] C:\Program Files\AMD
[16/05/2005|08:55] C:\Program Files\Apoint2K
[24/09/2006|17:20] C:\Program Files\ArcSoft
[15/07/2008|21:49] C:\Program Files\ASC 2.1
[24/01/2007|00:41] C:\Program Files\AVI Constructor Pack Trial Version 7.4.3
[12/01/2007|12:05] C:\Program Files\AvRack
[03/03/2007|22:58] C:\Program Files\Backgrounds
[15/07/2008|22:24] C:\Program Files\BitDefender
[21/06/2008|01:21] C:\Program Files\Blogdefolie
[10/07/2007|21:54] C:\Program Files\BufferZone
[21/06/2008|01:22] C:\Program Files\CableRouting
[22/02/2008|11:34] C:\Program Files\ClamWin
[22/02/2008|11:32] C:\Program Files\clamwin-0.92-setup.exe
[12/05/2005|11:09] C:\Program Files\ComPlus Applications
[22/01/2007|20:34] C:\Program Files\Comptes First
[30/03/2008|17:47] C:\Program Files\Creative
[21/01/2007|17:37] C:\Program Files\CyberLink
[17/03/2007|13:59] C:\Program Files\DAP
[17/03/2007|13:47] C:\Program Files\Dial-Messenger
[10/08/2007|21:47] C:\Program Files\DivX
[15/07/2008|20:40] C:\Program Files\eMule
[05/09/2007|18:23] C:\Program Files\Emule Speed Booster
[22/02/2007|21:02] C:\Program Files\eMule.lnk
[21/03/2008|11:13] C:\Program Files\EPSON
[15/07/2008|23:54] C:\Program Files\Fichiers communs
[20/04/2008|19:42] C:\Program Files\FLV PlayerFCSetup.exe
[20/04/2008|19:41] C:\Program Files\FLV PlayerRCATSetup.exe
[20/04/2008|18:33] C:\Program Files\FLV PlayerRCSetup.exe
[24/01/2006|19:32] C:\Program Files\fpimage.dll
[03/03/2006|09:50] C:\Program Files\French.lng
[24/01/2006|19:32] C:\Program Files\gdiplus.dll
[21/06/2008|01:23] C:\Program Files\GigaTribe
[15/07/2008|21:50] C:\Program Files\Google
[12/01/2007|12:04] C:\Program Files\HardwareDetection
[03/03/2007|22:58] C:\Program Files\HelpBar
[24/01/2006|19:32] C:\Program Files\hts32.dll
[03/03/2007|23:03] C:\Program Files\I and A Research
[15/08/2006|11:27] C:\Program Files\ImportExportMM5.dll
[15/08/2006|11:26] C:\Program Files\ImportExportMOProject.dll
[15/08/2006|11:27] C:\Program Files\ImportJCVG.dll
[15/07/2008|23:54] C:\Program Files\InstallShield Installation Information
[11/12/2007|23:28] C:\Program Files\Internet Explorer
[29/03/2008|13:20] C:\Program Files\Java
[03/03/2007|22:58] C:\Program Files\JCV
[16/08/2006|13:30] C:\Program Files\JCVGanttChartControl.dll
[16/08/2006|13:31] C:\Program Files\JCVGanttDisplay.exe
[03/08/2006|19:51] C:\Program Files\JCVInterfaces.tlb
[15/08/2006|17:54] C:\Program Files\JCVMm5Adapter.dll
[15/08/2006|17:54] C:\Program Files\JCVMm5GanttDisplay.dll
[15/08/2006|17:53] C:\Program Files\JCVMm6Adapter.dll
[15/08/2006|17:54] C:\Program Files\JCVMm6GanttDisplay.dll
[15/08/2006|17:51] C:\Program Files\JCVSimpleGrid.dll
[15/08/2006|17:53] C:\Program Files\JCVThumbnail.dll
[15/08/2006|17:54] C:\Program Files\JCVXmlAdapter.dll
[19/02/2008|23:17] C:\Program Files\KIT_ADSL_CT56x_USB
[16/03/2007|21:58] C:\Program Files\LaCie
[03/03/2007|22:58] C:\Program Files\languages
[30/11/2006|00:55] C:\Program Files\Lemoncast
[03/03/2007|18:18] C:\Program Files\Ma Page Web v2.1
[03/03/2007|22:58] C:\Program Files\Manual
[22/02/2007|23:43] C:\Program Files\MaxiCompte
[06/09/2007|00:30] C:\Program Files\Media Player Classic
[17/03/2007|13:40] C:\Program Files\Mediafour
[16/05/2005|09:23] C:\Program Files\Messenger
[24/01/2006|19:32] C:\Program Files\MFC71u.dll
[20/04/2007|19:40] C:\Program Files\Micro Application
[10/05/2007|18:21] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[12/05/2005|11:12] C:\Program Files\microsoft frontpage
[07/01/2008|20:00] C:\Program Files\Microsoft Office
[23/08/2006|13:55] C:\Program Files\Microsoft Visual Studio
[21/06/2008|01:22] C:\Program Files\Movie Maker
[03/05/2008|07:52] C:\Program Files\Mozilla Firefox
[21/12/2007|00:57] C:\Program Files\MSBuild
[16/05/2005|08:57] C:\Program Files\MSI
[10/09/2006|13:09] C:\Program Files\MSN
[12/05/2005|11:07] C:\Program Files\MSN Gaming Zone
[08/02/2007|21:41] C:\Program Files\MSN Messenger
[24/01/2006|19:32] C:\Program Files\msvcp71.dll
[24/01/2006|19:32] C:\Program Files\msvcr71.dll
[14/02/2007|03:52] C:\Program Files\MSXML 4.0
[28/02/2007|19:40] C:\Program Files\MUSK Codec Pack v5
[30/03/2008|17:39] C:\Program Files\muvee Technologies
[12/05/2005|11:09] C:\Program Files\NetMeeting
[19/02/2008|23:18] C:\Program Files\Neuf
[21/12/2007|01:02] C:\Program Files\Nokia
[21/12/2007|00:34] C:\Program Files\Nokia_Map_Loader_Setup.en.exe
[28/02/2007|18:20] C:\Program Files\nvu-1_1.0-win32-fr.zip
[12/05/2005|11:08] C:\Program Files\Online Services
[15/06/2007|01:26] C:\Program Files\Outlook Express
[25/11/2006|22:09] C:\Program Files\PDFCreator
[29/09/2006|22:38] C:\Program Files\PDFCreator Toolbar
[14/02/2007|19:36] C:\Program Files\Photo to Sketch Pro
[16/12/2007|20:07] C:\Program Files\planmgr.zip
[16/12/2007|20:05] C:\Program Files\Planning Manager
[06/04/2007|09:54] C:\Program Files\PViever
[12/11/2006|20:08] C:\Program Files\QuickTime
[04/09/2007|21:17] C:\Program Files\Real
[06/09/2007|00:31] C:\Program Files\Real Alternative
[04/09/2007|21:02] C:\Program Files\Real One Player v10_Gold_with crack
[06/09/2007|00:27] C:\Program Files\realalt152.exe
[06/09/2007|00:15] C:\Program Files\realplayer
[12/01/2007|12:05] C:\Program Files\Realtek Sound Manager
[21/12/2007|00:47] C:\Program Files\Reference Assemblies
[20/04/2008|19:42] C:\Program Files\Replay Media Catcher
[21/01/2007|17:31] C:\Program Files\Replay Radio 5
[24/07/2006|15:14] C:\Program Files\res_francais.exe
[15/08/2006|11:27] C:\Program Files\ResourcesPool.dll
[29/09/2006|22:38] C:\Program Files\Seagrand
[10/07/2007|21:51] C:\Program Files\Secured eMule
[12/05/2005|11:10] C:\Program Files\Services en ligne
[03/03/2007|22:59] C:\Program Files\Setup.log
[16/12/2007|20:36] C:\Program Files\SetupWeFlirt.exe
[16/05/2005|08:34] C:\Program Files\SiS VGA Utilities V3.62
[16/05/2005|08:48] C:\Program Files\SiSLan
[03/03/2007|22:58] C:\Program Files\Skins
[12/01/2008|11:47] C:\Program Files\Smart Panel
[03/08/2006|21:56] C:\Program Files\Snapshots.dll
[04/07/2007|23:11] C:\Program Files\SodeaSoft
[12/02/2007|19:29] C:\Program Files\Softwin
[27/06/2007|03:36] C:\Program Files\SpyLocked 4.3
[10/06/2007|16:59] C:\Program Files\SpywareRemover
[03/03/2007|22:58] C:\Program Files\sys
[24/01/2006|19:32] C:\Program Files\ter32.dll
[01/08/2007|20:20] C:\Program Files\the-gimp_the_gimp_2.2.17_francais_10178.exe
[15/08/2006|11:27] C:\Program Files\TotalCost.dll
[16/07/2008|17:38] C:\Program Files\Trend Micro
[21/06/2008|01:23] C:\Program Files\TribalWeb.net
[29/01/2007|18:35] C:\Program Files\TurnTool
[12/05/2005|11:16] C:\Program Files\Uninstall Information
[01/04/2006|09:39] C:\Program Files\UnInstall_31360.exe
[03/03/2007|22:59] C:\Program Files\UnInstall_31360.txt
[20/08/2007|23:44] C:\Program Files\Unlocker
[24/07/2006|15:14] C:\Program Files\Urls_francais.xml
[03/08/2006|21:56] C:\Program Files\UserSheets.dll
[07/01/2007|19:23] C:\Program Files\VideoLAN
[15/07/2008|22:57] C:\Program Files\Web Technologies
[21/06/2008|01:23] C:\Program Files\Windows Live Safety Center
[26/05/2007|17:01] C:\Program Files\Windows Live Toolbar
[07/11/2006|19:36] C:\Program Files\Windows Media Connect 2
[07/11/2006|19:36] C:\Program Files\Windows Media Player
[12/05/2005|11:07] C:\Program Files\Windows NT
[12/05/2005|11:10] C:\Program Files\WindowsUpdate
[12/05/2005|11:12] C:\Program Files\xerox
[10/11/2006|23:41] C:\Program Files\Yahoo!
[15/07/2008|21:49] C:\Program Files\YesMessenger
[26/11/2006|17:39] C:\Program Files\Zone Labs

------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------

[20/02/2007|23:29] C:\Program Files\Fichiers communs\Adobe
[15/07/2008|22:23] C:\Program Files\Fichiers communs\BitDefender
[23/08/2006|13:55] C:\Program Files\Fichiers communs\Designer
[02/03/2007|20:52] C:\Program Files\Fichiers communs\HTML Executable Viewer
[06/03/2007|22:30] C:\Program Files\Fichiers communs\I and A Research Inc
[16/05/2005|08:49] C:\Program Files\Fichiers communs\InstallShield
[25/09/2007|19:38] C:\Program Files\Fichiers communs\Java
[30/03/2008|17:38] C:\Program Files\Fichiers communs\Microsoft Shared
[12/05/2005|11:09] C:\Program Files\Fichiers communs\MSSoap
[12/05/2005|13:03] C:\Program Files\Fichiers communs\ODBC
[07/01/2008|00:40] C:\Program Files\Fichiers communs\Real
[12/05/2005|11:09] C:\Program Files\Fichiers communs\Services
[15/07/2008|22:21] C:\Program Files\Fichiers communs\Softwin
[12/05/2005|13:03] C:\Program Files\Fichiers communs\SpeechEngines
[12/02/2007|19:27] C:\Program Files\Fichiers communs\Symantec Shared
[15/06/2007|01:26] C:\Program Files\Fichiers communs\System

---------------------------[ Process ]--------------------------

... 53

... OK !

----------------------[ Recherche avec S_Lop ]---------------------

Aucun fichier / dossier Lop trouvé !

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

Aucun fichier / dossier Lop trouvé !

----------------------[ Verification du Registre ]----------------------

..... OK !

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts PROPRE

----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-07-16 19:09:23
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------

=> C:\Documents and Settings\Client\Recent\300 Codes Allopass Gratuit R‚utilisable Plus Keygen Pour Cracker Allopass, Prizee, Auditel, Msn (Divx, Mp3, Star Warz, Webmaster, Kit Graphique, Rohf.lnk
=> C:\Documents and Settings\Client\Recent\300 codes allopass gratuit r‚utilisable plus keygen pour cracker allopass, prizee, auditel, msn (divx, mp3, star warz, webmaster, kit graphique, rohff,.lnk
=> C:\Documents and Settings\Client\Recent\300 Codes Allopass Gratuit R‚utilisable Plus Keygen Pour Cracker Allopass, Prizee, Auditel, Msn (Divx, Mp3, Star Warz, Webmaster, Kit Graphique, Rohf.lnk
=> C:\Documents and Settings\Client\Recent\300 codes allopass gratuit r‚utilisable plus keygen pour cracker allopass, prizee, auditel, msn (divx, mp3, star warz, webmaster, kit graphique, rohff,.lnk
=> C:\Documents and Settings\Client\Recent\Microsoft Office Project Professional 2007 Keygen.lnk

[F:4565][D:55]-> C:\DOCUME~1\Client\LOCALS~1\Temp
[F:62][D:0]-> C:\DOCUME~1\Client\Cookies
[F:189][D:152]-> C:\DOCUME~1\Client\LOCALS~1\TEMPOR~1\content.IE5

--------------------[ Fin du rapport a 19:10:37,04 ]----------------------

Ajouter un commentaire

Réponse

Destrio5 60133Messages postés 18 septembre 2005Date d'inscription 14 février 2012Dernière intervention 16 juil. 2008 à 19:19

Tu peux désinstaller Lop S&D.

Fais ceci :

- Télécharge et installe MalwareByte's Anti-Malware :
http://www.download.com/Malwarebytes-Anti-Malware/3000-8022_4-10804572.htm

- Mets-le à jour

- Redémarre en mode sans échec (Recommandé) :
http://www.malekal.com/modesansechec.php

- Choisis ta session habituelle

- Fais un scan complet avec MalwareByte's Anti-Malware

- Supprime tout ce que le logiciel trouve, enregistre le rapport

- Redémarre en mode normal et poste le rapport ici

Tutorial :
http://www.malekal.com/tutorial_MalwareBytes_AntiMalware.php

Ajouter un commentaire

Réponse

CHELMI18 34Messages postés 16 juillet 2008Date d'inscription 25 septembre 2011Dernière intervention 16 juil. 2008 à 19:32

j ai une reunion la je reviens dans 2 - 3 heures deja merci pour cette aide

a toute a l heure

Ajouter un commentaire

Réponse

Destrio5 60133Messages postés 18 septembre 2005Date d'inscription 14 février 2012Dernière intervention 16 juil. 2008 à 19:36

Sans problème.

Le scan de MAM peut prendre 2-3 heures également.

Ajouter un commentaire

Réponse

CHELMI18 34Messages postés 16 juillet 2008Date d'inscription 25 septembre 2011Dernière intervention 17 juil. 2008 à 02:38

reunion plus longue que prevue ....voici le rapport

Malwarebytes' Anti-Malware 1.20
Version de la base de données: 960
Windows 5.1.2600 Service Pack 2

02:36:45 17/07/2008
mbam-log-7-17-2008 (02-36-45).txt

Type de recherche: Examen complet (C:\|D:\|)
Eléments examinés: 95600
Temps écoulé: 2 hour(s), 32 minute(s), 23 second(s)

Processus mémoire infecté(s): 2
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 26
Valeur(s) du Registre infectée(s): 11
Elément(s) de données du Registre infecté(s): 1
Dossier(s) infecté(s): 14
Fichier(s) infecté(s): 167

Processus mémoire infecté(s):
C:\Program Files\ASC 2.1\asc 2.1.exe (Rogue.VirusHeat) -> Unloaded process successfully.
C:\WINDOWS\system32\ubpr01.exe (Trojan.Zlob) -> Unloaded process successfully.

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\CLSID\{65742936-8079-408b-9f3c-874b78030a72} (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{967a494a-6aec-4555-9caf-fa6eb00acf91} (Rogue.PestPatrol) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{9692be2f-eb8f-49d9-a11c-c24c1ef734d5} (Rogue.PestPatrol) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{a8954909-1f0f-41a5-a7fa-3b376d69e226} (Rogue.PestPatrol) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{9034a523-d068-4be8-a284-9df278be776e} (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{d2608046-dd09-a225-01bf-70c1edd8b2e8} (Rogue.AntiSpyCheck) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{daed9266-8c28-4c1c-8b58-5c66eff1d302} (Search.Hijack) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{d46beaa4-a304-40b3-a9da-ec7f7f501f25} (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d46beaa4-a304-40b3-a9da-ec7f7f501f25} (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ascwarning32.warningbho (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\ascwarning32.warningbho.1 (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{58472bc6-bea3-42d4-8917-7a8bcb0711b5} (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{58472bc6-bea3-42d4-8917-7a8bcb0711b5} (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\udcpchk.udcpchk (Rogue.DriveCleaner) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\udcpchk.udcpchk.1 (Rogue.DriveCleaner) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{943b96a4-9bf6-42fe-8d0b-4bca71c3632f} (Rogue.DriveCleaner) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{5954b2db-09a7-4023-847c-107539dc560d} (Rogue.DriveCleaner) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{4f43b1f3-0ce8-493b-96d2-990cec05edbb} (Rogue.DriveCleaner) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\asc 2.1 (Rogue.AntiSpyCheck) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\WakeNet (Trojan.Adware) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Web Technologies (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IEBrowse Tool (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IExplorer Bar (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Warning Center (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\SpywareRemover (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\multimediaControls.chl (Trojan.Zlob) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\asc32 (Rogue.VirusHeat) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{65742936-8079-408b-9f3c-874b78030a72} (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{65742936-8079-408b-9f3c-874b78030a72} (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\autorun_val (Rogue.VirusHeat) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\{c96395b8-ab09-46a4-b539-7ddf6e061808} (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\wblogon (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow\*.securewebinfo.com (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow\*.safetyincludes.com (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow\*.securemanaging.com (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\some (Trojan.Zlob) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\start (Trojan.Zlob) -> Quarantined and deleted successfully.

Elément(s) de données du Registre infecté(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\ForceActiveDesktopOn (Hijack.Desktop) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.

Dossier(s) infecté(s):
C:\Program Files\Web Technologies (Trojan.Zlob) -> Quarantined and deleted successfully.
C:\Program Files\CableRouting (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\Program Files\SpyLocked 4.3 (Rogue.SpywareLocked) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Quarantine (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Registry Backups (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Settings (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\ASC 2.1 (Rogue.AntiSpyCheck) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\Adsl Software Limited (Rogue.MalWarrior) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\Adsl Software Limited\WinSpywareProtect (Rogue.MalWarrior) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\Adsl Software Limited\WinSpywareProtect\LOG (Rogue.MalWarrior) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\784953 (Trojan.BHO) -> Quarantined and deleted successfully.
C:\Documents and Settings\Client\Application Data\ultra (Rogue.Multiple) -> Quarantined and deleted successfully.

Fichier(s) infecté(s):
C:\Program Files\ASC 2.1\asc 2.1.exe (Rogue.VirusHeat) -> Quarantined and deleted successfully.
C:\Program Files\Web Technologies\iebr.dll (Trojan.Zlob) -> Quarantined and deleted successfully.
C:\Program Files\Web Technologies\iebtmm.exe (Trojan.Zlob) -> Quarantined and deleted successfully.
C:\Program Files\Web Technologies\myd.ico (Trojan.Zlob) -> Quarantined and deleted successfully.
C:\Program Files\Web Technologies\mym.ico (Trojan.Zlob) -> Quarantined and deleted successfully.
C:\Program Files\Web Technologies\myp.ico (Trojan.Zlob) -> Quarantined and deleted successfully.
C:\Program Files\Web Technologies\myv.ico (Trojan.Zlob) -> Quarantined and deleted successfully.
C:\Program Files\Web Technologies\ot.ico (Trojan.Zlob) -> Quarantined and deleted successfully.
C:\Program Files\Web Technologies\ts.ico (Trojan.Zlob) -> Quarantined and deleted successfully.
C:\Program Files\Web Technologies\wcm.exe (Trojan.Zlob) -> Quarantined and deleted successfully.
C:\Program Files\ASC 2.1\asc 2.1.exe (Rogue.VirusHeat) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{AC453ECF-54CE-44CB-AD27-92FE0CDCC09A}\RP571\A0091593.exe (Rogue.VirusHeat) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{AC453ECF-54CE-44CB-AD27-92FE0CDCC09A}\RP572\A0091801.exe (Rogue.VirusHeat) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{AC453ECF-54CE-44CB-AD27-92FE0CDCC09A}\RP574\A0092052.exe (Rogue.VirusHeat) -> Quarantined and deleted successfully.
C:\Program Files\CableRouting\uninstall.dat (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\Program Files\SpyLocked 4.3\blacklist.txt (Rogue.SpywareLocked) -> Quarantined and deleted successfully.
C:\Program Files\SpyLocked 4.3\sl.dat (Rogue.SpywareLocked) -> Quarantined and deleted successfully.
C:\Program Files\SpyLocked 4.3\SpyLocked 4.3.url (Rogue.SpywareLocked) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\DataBaseNew.ref (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_02_14_18_27_05.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_02_14_18_38_34.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_02_15_18_50_07.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_02_19_00_21_49.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_02_19_17_03_15.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_02_20_17_34_05.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_02_21_17_04_54.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_02_22_17_38_28.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_02_22_21_24_00.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_02_22_21_50_24.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_02_23_21_00_25.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_02_24_20_09_08.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_02_25_23_17_01.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_02_26_14_24_33.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_02_27_17_52_41.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_02_28_17_04_55.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_03_01_18_30_15.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_03_02_17_01_48.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_03_02_22_05_40.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_03_03_07_56_13.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_03_04_08_12_53.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_03_05_17_05_38.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_03_06_18_10_51.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_03_07_18_18_07.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_03_08_18_39_18.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_03_09_07_04_17.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_03_10_08_32_04.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_03_11_16_15_44.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_03_12_17_47_11.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_03_13_17_02_45.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_03_14_17_34_50.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_03_15_20_17_12.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_03_16_17_16_10.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_03_16_18_58_23.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_03_17_07_41_48.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_03_17_11_43_59.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_03_17_15_40_11.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_03_17_23_40_17.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_03_18_14_48_54.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_03_19_17_05_33.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_03_20_18_19_50.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_03_21_17_10_44.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_03_22_17_48_38.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_03_24_09_14_50.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_03_25_08_46_20.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_03_26_17_37_49.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_03_27_17_28_37.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_03_29_17_39_35.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_03_30_17_33_27.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_03_31_11_17_04.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_03_31_22_05_03.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_04_01_22_08_28.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_04_02_17_19_13.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_04_03_20_01_30.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_04_04_17_48_34.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_04_04_18_10_00.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_04_05_16_51_06.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_04_06_09_54_29.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_04_08_21_08_12.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_04_09_21_25_08.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_04_10_12_17_23.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_04_10_22_02_38.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_04_11_05_30_22.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_04_12_18_41_43.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_04_13_17_12_14.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_04_14_08_36_34.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_04_15_07_28_38.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_04_16_17_31_16.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_04_17_17_45_30.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_04_18_18_27_19.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_04_19_19_54_40.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_04_20_07_20_46.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_04_20_19_59_39.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_04_21_07_41_17.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_04_22_07_25_08.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_04_23_17_21_10.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_04_24_18_05_55.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_04_25_23_56_04.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_04_26_21_03_09.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_04_29_21_48_42.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_04_30_17_47_25.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_05_01_08_37_55.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_05_02_07_17_54.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_05_02_18_43_15.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_05_03_19_31_35.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_05_04_07_34_22.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_05_05_07_27_54.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_05_06_08_45_38.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_05_07_17_20_20.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_05_08_09_28_32.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_05_09_19_09_53.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_05_10_18_08_33.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_05_10_19_22_51.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_05_11_17_56_00.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_05_12_06_59_40.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_05_13_07_59_10.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_05_14_17_45_31.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_05_15_20_34_07.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_05_16_17_55_54.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_05_20_22_44_16.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_05_21_17_11_05.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_05_22_19_33_44.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_05_23_18_28_21.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_05_23_19_01_16.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_05_24_21_24_52.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_05_25_18_42_01.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_05_26_06_48_16.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_05_26_17_04_06.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_05_27_08_08_15.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_05_29_07_18_34.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_05_29_15_18_00.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_05_31_23_06_58.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_06_01_09_51_39.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_06_01_10_41_21.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_06_01_11_16_25.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_06_01_11_55_29.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_06_01_13_38_21.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_06_01_13_58_47.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_06_01_16_12_23.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_06_01_17_58_00.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_06_01_20_09_34.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_06_01_20_33_22.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_06_01_20_43_56.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_06_01_22_33_48.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_06_01_22_38_07.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_06_02_08_48_23.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_06_03_00_11_36.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_06_03_21_03_18.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_06_06_19_44_19.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_06_06_20_16_02.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_06_06_20_36_50.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_06_07_18_52_53.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_06_08_19_24_28.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_06_09_12_08_50.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Log\log_2007_06_10_07_39_25.log (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Settings\CustomScan.stg (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Settings\IgnoreList.stg (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Settings\ScanInfo.stg (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Settings\ScanResults.stg (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Settings\SelectedFolders.stg (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Program Files\SpywareRemover\Settings\Settings.stg (Rogue.Spyware.Remover) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\Adsl Software Limited\WinSpywareProtect\LOG\20080522213236671.log (Rogue.MalWarrior) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\Adsl Software Limited\WinSpywareProtect\LOG\20080522213610937.log (Rogue.MalWarrior) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\Adsl Software Limited\WinSpywareProtect\LOG\20080522225859796.log (Rogue.MalWarrior) -> Quarantined and deleted successfully.
C:\Documents and Settings\Client\Application Data\ultra\uninstall.bat (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\WINDOWS\inf\ultra.PNF (Malware.Trace) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\cxbrk.dll (Trojan.Zlob) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ubpr01.exe (Trojan.Zlob) -> Quarantined and deleted successfully.

Ajouter un commentaire

Réponse

Destrio5 60133Messages postés 18 septembre 2005Date d'inscription 14 février 2012Dernière intervention 17 juil. 2008 à 02:41

---> Relance MAM, va dans Quarantaine et supprime tout

---> Poste un nouveau rapport HijackThis

Ajouter un commentaire

Réponse

CHELMI18 34Messages postés 16 juillet 2008Date d'inscription 25 septembre 2011Dernière intervention 17 juil. 2008 à 02:51

rapport MAM

Malwarebytes' Anti-Malware 1.20
Version de la base de données: 960
Windows 5.1.2600 Service Pack 2

02:48:17 17/07/2008
mbam-log-7-17-2008 (02-48-17).txt

Type de recherche: Examen rapide
Eléments examinés: 1
Temps écoulé: 1 minute(s), 30 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)

rapport hijack

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 02:47:53, on 17/07/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16574)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\BitDefender\BitDefender Communicator\xcommsvr.exe
C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
C:\WINDOWS\system32\Rundll32.exe
C:\WINDOWS\system32\keyhook.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Apoint2K\Apoint.exe
C:\Program Files\MSI\Live Update 3\LMonitor.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Lemoncast\lemoncast.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\ClamWin\bin\ClamTray.exe
C:\WINDOWS\V0400Mon.exe
C:\Program Files\BitDefender\BitDefender 2008\bdagent.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\CyberLink\Power2Go\Power2GoExpress.exe
C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Creative\Creative Live! Cam\Live! Cam Manager\CTLCMgr.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\Program Files\Softwin\BitDefender for Net Meeting\nmmon.exe
C:\Program Files\TribalWeb.net\tribalweb.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\MSN Messenger\livecall.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.yahoo.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer fourni par Yahoo! France
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Microsoft MSJava 32 - {43F7497C-7687-4DEA-A057-F21BD81BC896} - C:\WINDOWS\system32\msjava32.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: PDFCreator Toolbar Helper - {C451C08A-EC37-45DF-AAAD-18B51AB5E837} - C:\Program Files\PDFCreator Toolbar\v3.0.0.0\PDFCreator_Toolbar.dll
O2 - BHO: WebManager Class - {D5792AA9-D373-4039-8670-2CDAB6A71F15} - C:\Program Files\BitDownload\TorrentManager.dll (file missing)
O3 - Toolbar: PDFCreator Toolbar - {31CF9EBE-5755-4A1D-AC25-2834D952D9B4} - C:\Program Files\PDFCreator Toolbar\v3.0.0.0\PDFCreator_Toolbar.dll
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2008\IEToolbar.dll
O4 - HKLM\..\Run: [SiSPower] Rundll32.exe SiSPower.dll,ModeAgent
O4 - HKLM\..\Run: [SiS Windows KeyHook] C:\WINDOWS\system32\keyhook.exe
O4 - HKLM\..\Run: [SiSUSBRG] C:\WINDOWS\SiSUSBrg.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [LiveMonitor] C:\Program Files\MSI\Live Update 3\LMonitor.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [EPSON Stylus CX6400] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE /P19 "EPSON Stylus CX6400" /O6 "USB001" /M "Stylus CX6400"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [carpediem] C:\Program Files\Lemoncast\lemoncast.exe
O4 - HKLM\..\Run: [PViever] "C:\Program Files\Gay-Lesbian-Photo\Gay-Lesbian-Photo.exe" hide
O4 - HKLM\..\Run: [DownloadAccelerator] "C:\Program Files\DAP\DAP.EXE" /STARTUP
O4 - HKLM\..\Run: [dc6_check] C:\Program Files\SystemDoctor 2006 Free\dcmon.exe
O4 - HKLM\..\Run: [USDR6cw] C:\Program Files\SystemDoctor 2006 Free\USDR6cw.exe -c
O4 - HKLM\..\Run: [pas_check] C:\Program Files\SystemDoctor 2006 Free\pasmon.exe
O4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [ClamWin] "C:\Program Files\ClamWin\bin\ClamTray.exe" --logon
O4 - HKLM\..\Run: [V0400Mon.exe] C:\WINDOWS\V0400Mon.exe
O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2008\IEShow.exe"
O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\BitDefender\BitDefender 2008\bdagent.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Power2GoExpress] "C:\Program Files\CyberLink\Power2Go\Power2GoExpress.exe"
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Uniblue RegistryBooster 2] C:\Program Files\Uniblue\RegistryBooster 2\RegistryBooster.exe /S
O4 - HKCU\..\Run: [Weflirt] "C:\Program Files\Weflirt\weflirt.exe" -background
O4 - HKCU\..\Run: [Creative Live! Cam Manager] "C:\Program Files\Creative\Creative Live! Cam\Live! Cam Manager\CTLCMgr.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - S-1-5-18 Startup: TribalWeb.lnk = C:\Program Files\TribalWeb.net\tribalweb.exe (User 'SYSTEM')
O4 - .DEFAULT Startup: TribalWeb.lnk = C:\Program Files\TribalWeb.net\tribalweb.exe (User 'Default user')
O4 - Startup: TribalWeb.lnk = C:\Program Files\TribalWeb.net\tribalweb.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: BitDefender for Net Meeting.lnk = C:\Program Files\Softwin\BitDefender for Net Meeting\nmmon.exe
O4 - Global Startup: BitDefender_P2P_Startup.lnk = C:\WINDOWS\BitDefender_P2P_Startup.exe
O8 - Extra context menu item: &Clean Traces - C:\Program Files\DAP\Privacy Package\dapcleanerie.htm
O8 - Extra context menu item: &Download with &DAP - C:\Program Files\DAP\dapextie.htm
O8 - Extra context menu item: Download &all with DAP - C:\Program Files\DAP\dapextie2.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.msi.com.tw
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/...
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase9602.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {DFB5BCF1-06AE-4ABB-BFA8-1E228F41C50A} - http://bobtv.fr/download/cfweb_www.bobtv.fr-download_instmodule.exe
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://www.creative.com/softwareupdate/su2/ocx/15035/CTPID.cab
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender SRL - C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
O23 - Service: BitDefender Communicator (XCOMM) - BitDefender - C:\Program Files\Fichiers communs\BitDefender\BitDefender Communicator\xcommsvr.exe

Ajouter un commentaire

Réponse

Destrio5 60133Messages postés 18 septembre 2005Date d'inscription 14 février 2012Dernière intervention 17 juil. 2008 à 02:55

O4 - HKLM\..\Run: [carpediem] C:\Program Files\Lemoncast\lemoncast.exe
O4 - HKLM\..\Run: [PViever] "C:\Program Files\Gay-Lesbian-Photo\Gay-Lesbian-Photo.exe" hide
O4 - HKLM\..\Run: [dc6_check] C:\Program Files\SystemDoctor 2006 Free\dcmon.exe

---> Ça te dérange pas que je supprime toutes ces choses ?

Ajouter un commentaire

Réponse

CHELMI18 34Messages postés 16 juillet 2008Date d'inscription 25 septembre 2011Dernière intervention 17 juil. 2008 à 02:58

euh non
juste une curiosité c est quoi ces choses ?

Ajouter un commentaire

Réponse

Destrio5 60133Messages postés 18 septembre 2005Date d'inscription 14 février 2012Dernière intervention 17 juil. 2008 à 03:00

C'est sur ton PC.

Ajouter un commentaire

Réponse

CHELMI18 34Messages postés 16 juillet 2008Date d'inscription 25 septembre 2011Dernière intervention 17 juil. 2008 à 03:02

???????
ah bon ??
faut que j arrete de le preter allors ?
bien sur tu peux effacer , bien au contraire , ca a l air chelou
un grand merci en tout cas
Bon vent

Ajouter un commentaire

Réponse

Destrio5 60133Messages postés 18 septembre 2005Date d'inscription 14 février 2012Dernière intervention 17 juil. 2008 à 03:07

---> Mets à jour Java :
http://www.java.com/fr/download/manual.jsp

---> Relance HijackThis et choisis Do a system scan only

---> Coche les cases qui sont devant les lignes suivantes :

O2 - BHO: Microsoft MSJava 32 - {43F7497C-7687-4DEA-A057-F21BD81BC896} - C:\WINDOWS\system32\msjava32.dll

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O2 - BHO: WebManager Class - {D5792AA9-D373-4039-8670-2CDAB6A71F15} - C:\Program Files\BitDownload\TorrentManager.dll (file missing)

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime

O4 - HKLM\..\Run: [carpediem] C:\Program Files\Lemoncast\lemoncast.exe

O4 - HKLM\..\Run: [PViever] "C:\Program Files\Gay-Lesbian-Photo\Gay-Lesbian-Photo.exe" hide

O4 - HKLM\..\Run: [dc6_check] C:\Program Files\SystemDoctor 2006 Free\dcmon.exe

O4 - HKLM\..\Run: [USDR6cw] C:\Program Files\SystemDoctor 2006 Free\USDR6cw.exe -c

O4 - HKLM\..\Run: [pas_check] C:\Program Files\SystemDoctor 2006 Free\pasmon.exe

O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"

O4 - HKLM\..\Run: [V0400Mon.exe] C:\WINDOWS\V0400Mon.exe

O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe

O16 - DPF: {DFB5BCF1-06AE-4ABB-BFA8-1E228F41C50A} - http://bobtv.fr/download/cfweb_www.bobtv.fr-download_instmodule.exe

---> Clique en bas sur Fix checked. Mets oui si HijackThis te demande quelque chose.

---> Télécharge OTMoveIt2 à partir du lien ci-dessous :
http://download.bleepingcomputer.com/oldtimer/OTMoveIt2.exe

---> Enregistre le fichier sur le Bureau.

---> Double-clique sur le fichier OTMoveIt2.exe pour lancer l'outil.
Assure-toi que la case Unregister Dll's and Ocx's soit bien cochée.

---> Copie l'intégralité du texte ci-dessous et colle-le dans la fenêtre intitulée Paste Standard List of Files/Folders to be moved.

C:\WINDOWS\system32\msjava32.dll
C:\Program Files\BitDownload\
C:\Program Files\Lemoncast\
C:\Program Files\Gay-Lesbian-Photo\
C:\Program Files\SystemDoctor 2006 Free\

---> Clique sur MoveIt! pour lancer la suppression.
Lorsqu'un résultat apparaît dans le cadre Results, clique sur Exit.

Note : Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer. Accepte en cliquant sur YES.

---> Poste le rapport de OTMoveIt qui se trouve dans C:\_OTMoveIt\MovedFiles.

---> Poste un nouveau rapport HijackThis

Ajouter un commentaire

Réponse

chelmi18 17 juil. 2008 à 03:40

rapport OTMoveIt

OTMoveIt2 by OldTimer - Version 1.0.4.3 log created on 07172008_032622

rapport hijack

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 03:38:50, on 17/07/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16574)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\BitDefender\BitDefender Communicator\xcommsvr.exe
C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
C:\WINDOWS\system32\Rundll32.exe
C:\WINDOWS\system32\keyhook.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Apoint2K\Apoint.exe
C:\Program Files\MSI\Live Update 3\LMonitor.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\ClamWin\bin\ClamTray.exe
C:\Program Files\BitDefender\BitDefender 2008\bdagent.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\CyberLink\Power2Go\Power2GoExpress.exe
C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Creative\Creative Live! Cam\Live! Cam Manager\CTLCMgr.exe
C:\Program Files\Softwin\BitDefender for Net Meeting\nmmon.exe
C:\Program Files\TribalWeb.net\tribalweb.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\Program Files\MSN Messenger\livecall.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.911.3380\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.yahoo.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer fourni par Yahoo! France
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: PDFCreator Toolbar Helper - {C451C08A-EC37-45DF-AAAD-18B51AB5E837} - C:\Program Files\PDFCreator Toolbar\v3.0.0.0\PDFCreator_Toolbar.dll
O3 - Toolbar: PDFCreator Toolbar - {31CF9EBE-5755-4A1D-AC25-2834D952D9B4} - C:\Program Files\PDFCreator Toolbar\v3.0.0.0\PDFCreator_Toolbar.dll
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2008\IEToolbar.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [SiSPower] Rundll32.exe SiSPower.dll,ModeAgent
O4 - HKLM\..\Run: [SiS Windows KeyHook] C:\WINDOWS\system32\keyhook.exe
O4 - HKLM\..\Run: [SiSUSBRG] C:\WINDOWS\SiSUSBrg.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [LiveMonitor] C:\Program Files\MSI\Live Update 3\LMonitor.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [EPSON Stylus CX6400] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE /P19 "EPSON Stylus CX6400" /O6 "USB001" /M "Stylus CX6400"
O4 - HKLM\..\Run: [DownloadAccelerator] "C:\Program Files\DAP\DAP.EXE" /STARTUP
O4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe
O4 - HKLM\..\Run: [ClamWin] "C:\Program Files\ClamWin\bin\ClamTray.exe" --logon
O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2008\IEShow.exe"
O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\BitDefender\BitDefender 2008\bdagent.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Power2GoExpress] "C:\Program Files\CyberLink\Power2Go\Power2GoExpress.exe"
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Uniblue RegistryBooster 2] C:\Program Files\Uniblue\RegistryBooster 2\RegistryBooster.exe /S
O4 - HKCU\..\Run: [Creative Live! Cam Manager] "C:\Program Files\Creative\Creative Live! Cam\Live! Cam Manager\CTLCMgr.exe"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.911.3380\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - S-1-5-18 Startup: TribalWeb.lnk = C:\Program Files\TribalWeb.net\tribalweb.exe (User 'SYSTEM')
O4 - .DEFAULT Startup: TribalWeb.lnk = C:\Program Files\TribalWeb.net\tribalweb.exe (User 'Default user')
O4 - Startup: TribalWeb.lnk = C:\Program Files\TribalWeb.net\tribalweb.exe
O4 - Global Startup: BitDefender for Net Meeting.lnk = C:\Program Files\Softwin\BitDefender for Net Meeting\nmmon.exe
O4 - Global Startup: BitDefender_P2P_Startup.lnk = C:\WINDOWS\BitDefender_P2P_Startup.exe
O8 - Extra context menu item: &Clean Traces - C:\Program Files\DAP\Privacy Package\dapcleanerie.htm
O8 - Extra context menu item: &Download with &DAP - C:\Program Files\DAP\dapextie.htm
O8 - Extra context menu item: Download &all with DAP - C:\Program Files\DAP\dapextie2.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.msi.com.tw
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/...
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase9602.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://www.creative.com/softwareupdate/su2/ocx/15035/CTPID.cab
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender SRL - C:\Program Files\Fichiers communs\BitDefender\BitDefender Update Service\livesrv.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
O23 - Service: BitDefender Communicator (XCOMM) - BitDefender - C:\Program Files\Fichiers communs\BitDefender\BitDefender Communicator\xcommsvr.exe

Ajouter un commentaire

Réponse

Destrio5 60133Messages postés 18 septembre 2005Date d'inscription 14 février 2012Dernière intervention 17 juil. 2008 à 03:41

OTMoveIt2 by OldTimer - Version 1.0.4.3 log created on 07172008_032622

---> Il manque un morceau xD

Ajouter un commentaire

1 2

Répondre au sujet

Posez votre question

Dossier à la une

5 extensions si vous voulez revenir à l'ancien Facebook

5 extensions si vous voulez revenir à l'ancien Facebook

Vous n'aimez pas le lifting de Facebook ? Le site Mashable propose cinq étapes pour revenir à l'ancienne présentation du réseau social.

Les interviews exclusives

Bazando fidélise ses clients avec les Facebook credits

Toutes les interviews

Collection CommentÇaMarche.net

J-F Pillou / Jean-Philippe Bay

Tout sur la sécurité informatique (2e édition) : Comprendre les menaces pour mieux s’en protéger

Plus de livres

PBM alerte virus

PBM alerte virus »

5 extensions si vous voulez revenir à l'ancien Facebook

"un outil vraiment simple à la portée de tous"

Tout sur le C++

Tout sur la sécurité informatique (2e édition) : Comprendre les menaces pour mieux s’en protéger

Tout pour bien utiliser Excel 2010

Tout sur les systèmes d’information : Grandes, moyennes et petites entreprises

Tout sur le hardware PC (2e édition) : Comprendre avant de s’équiper, Faire évoluer son PC