Sujet Précédent Sujet Suivant

Faire un petit nettoyage de virus pour son pc

Résolu/Fermé
fullmetal-dav Messages postés 357 Date d'inscription mardi 19 février 2008 Statut Membre Dernière intervention 16 février 2017 - 29 août 2009 à 15:31
fullmetal-dav Messages postés 357 Date d'inscription mardi 19 février 2008 Statut Membre Dernière intervention 16 février 2017 - 7 sept. 2009 à 16:02
Bonjour,

depuis un certain temps mon antivirus me signale des messages disant que j'ai des virus détecté sur mon ordinateur

je voulais savoir si ça valait le coup de faire un petit nettoyage pour que mon ordi aille mieux et si oui comment

merci de m'aider
A voir également:

22 réponses

  • 1
  • 2
Réponse 1 / 22
Destrio5 Messages postés 85985 Date d'inscription dimanche 11 juillet 2010 Statut Modérateur Dernière intervention 17 février 2023 10 290
29 août 2009 à 16:50
Bonjour,

--> Télécharge Random's System Information Tool (RSIT) (par random/random) sur ton Bureau.

--> Double-clique sur RSIT.exe afin de lancer le programme.
(Sous Vista, il faut cliquer droit sur RSIT.exe et choisir Exécuter en tant qu'administrateur)

--> Clique sur Continue à l'écran Disclaimer.

--> Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.

--> Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt (c'est celui qui apparaît à l'écran) ainsi que de info.txt (que tu verras dans la barre des tâches).

Note : les rapports sont sauvegardés dans le dossier C:\rsit.
0
Réponse 2 / 22
fullmetal-dav Messages postés 357 Date d'inscription mardi 19 février 2008 Statut Membre Dernière intervention 16 février 2017 28
29 août 2009 à 18:23
ok merci

Logfile of random's system information tool 1.06 (written by random/random)
Run by David at 2009-08-29 18:20:30
Microsoft Windows XP Professionnel Service Pack 3
System drive C: has 175 GB (76%) free of 231 GB
Total RAM: 1022 MB (62% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:20:54, on 29/08/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\windows\System32\smss.exe
C:\windows\system32\winlogon.exe
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\svchost.exe
C:\windows\System32\svchost.exe
C:\windows\system32\svchost.exe
C:\windows\system32\spoolsv.exe
C:\windows\Explorer.EXE
C:\windows\RTHDCPL.EXE
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe
C:\Program Files\HP DigitalMedia Archive\DMAScheduler.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\McAfee\Common Framework\UdaterUI.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\windows\system32\rundll32.exe
C:\WINDOWS\PixArt\PAC207\Monitor.exe
C:\Program Files\Windows Live\Family Safety\fsui.exe
C:\Program Files\McAfee\Common Framework\McTray.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\SweetIM\Messenger\SweetIM.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\windows\system32\ctfmon.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Documents and Settings\David\Application Data\Microsoft\Notification de cadeaux MSN\lsnfier.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Fichiers communs\InterVideo\DeviceService\DevSvc.exe
C:\windows\system32\cisvc.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Windows Live\Family Safety\fsssvc.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe
C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\windows\system32\nvsvc32.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\windows\system32\svchost.exe
C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology Drivers\Elservice.exe
C:\Program Files\TeamSpeak 3\TeamSpeak 3.exe
C:\HP\KBD\KBD.EXE
c:\windows\system\hpsysdrv.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
C:\windows\system32\cidaemon.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\David\Mes documents\Téléchargements\RSIT.exe
C:\Program Files\trend micro\David.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://fr.search.yahoo.com/?fr=cb-hp06
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://fr.search.yahoo.com/?fr=cb-hp06
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://mystart.incredimail.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://fr.search.yahoo.com/?fr=cb-hp06
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.incredimail.com/en/thankyou?tag=page_app_welcome&lang=12&version=5853800&setup_id=12000002&aff_id=102&addon=incredimail
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Windows Live Family Safety Browser Helper - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\McAfee\VirusScan Enterprise\scriptcl.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll
O2 - BHO: myBabylon English Toolbar - {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} - C:\Program Files\myBabylon_English\tbmyBa.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O2 - BHO: MSN Toolbar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\MSN\Toolbar\3.0.0621.0\msneshellx.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\YTSingleInstance.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O3 - Toolbar: MSN Toolbar - {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - C:\Program Files\MSN\Toolbar\3.0.0621.0\msneshellx.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll
O3 - Toolbar: myBabylon English Toolbar - {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} - C:\Program Files\myBabylon_English\tbmyBa.dll
O4 - HKLM\..\Run: [ftutil2] rundll32.exe ftutil2.dll,SetWriteCacheMode
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect
O4 - HKLM\..\Run: [DMAScheduler] "c:\Program Files\HP DigitalMedia Archive\DMAScheduler.exe"
O4 - HKLM\..\Run: [HPBootOp] "C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe" /run
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [ShStatEXE] "C:\Program Files\McAfee\VirusScan Enterprise\SHSTAT.EXE" /STANDALONE
O4 - HKLM\..\Run: [McAfeeUpdaterUI] "C:\Program Files\McAfee\Common Framework\UdaterUI.exe" /StartedFromRunKey
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [Monitor] C:\WINDOWS\PixArt\PAC207\Monitor.exe
O4 - HKLM\..\Run: [fssui] "C:\Program Files\Windows Live\Family Safety\fsui.exe" -autorun
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SweetIM] C:\Program Files\SweetIM\Messenger\SweetIM.exe
O4 - HKLM\..\Run: [Amok Eggs Four Web] C:\Documents and Settings\All Users\Application Data\part dead amok eggs\meal less.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\windows\system32\ctfmon.exe
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [msnmsgr] ~"C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User 'Default user')
O4 - .DEFAULT User Startup: Pin.lnk = C:\hp\bin\CLOAKER.EXE (User 'Default user')
O4 - .DEFAULT User Startup: PinMcLnk.lnk = C:\hp\bin\cloaker.exe (User 'Default user')
O4 - Startup: hamachi.lnk = C:\Program Files\Hamachi\hamachi.exe
O4 - Startup: Notification de cadeaux MSN.lnk = C:\Documents and Settings\David\Application Data\Microsoft\Notification de cadeaux MSN\lsnfier.exe
O4 - Startup: Pin.lnk = C:\hp\bin\CLOAKER.EXE
O4 - Startup: PinMcLnk.lnk = C:\hp\bin\cloaker.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\windows\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\windows\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper200711281.dll
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab57213.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://jeuxentelechargement.orange.fr/Gameshell/GameHost/1.0/OberonGameHost.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E6187999-9FEC-46A1-A20F-F4CA977D5643} (ZoneChess Object) - http://messenger.zone.msn.com/binary/Chess.cab57176.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O16 - DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} (GoPetsWeb Control) - https://secure.gopetslive.com/dev/GoPetsWeb.cab
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: ASKUpgrade - Unknown owner - C:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: Capture Device Service - InterVideo Inc. - C:\Program Files\Fichiers communs\InterVideo\DeviceService\DevSvc.exe
O23 - Service: Intel(R) Quick Resume technology (ELService) - Intel Corporation - C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology Drivers\Elservice.exe
O23 - Service: Service Google Update (gupdate1c9b2b4a41951f0) (gupdate1c9b2b4a41951f0) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: McAfee Framework Service (McAfeeFramework) - McAfee, Inc. - C:\Program Files\McAfee\Common Framework\FrameworkService.exe
O23 - Service: McAfee McShield (McShield) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe
O23 - Service: McAfee Task Manager (McTaskManager) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\windows\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
0
Réponse 3 / 22
Destrio5 Messages postés 85985 Date d'inscription dimanche 11 juillet 2010 Statut Modérateur Dernière intervention 17 février 2023 10 290
29 août 2009 à 18:29
--> Désinstalle Ask Toolbar et SweetIM.

--> Télécharge Lop S&D (par Eric_71 & Angeldark) sur ton Bureau.

--> Double-clique dessus pour lancer l'installation.

--> Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau.
(Sous Vista, il faut cliquer droit sur le raccourci de Lop S&D et choisir Exécuter en tant qu'administrateur)

--> Sélectionne la langue souhaitée, puis choisis l'option 1 (Recherche).

--> Patiente jusqu'à la fin du scan.

--> Poste le rapport généré (C:\lopR.txt).
0
Réponse 4 / 22
fullmetal-dav Messages postés 357 Date d'inscription mardi 19 février 2008 Statut Membre Dernière intervention 16 février 2017 28
30 août 2009 à 18:41
ok voilà le rapport


--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) D CPU 3.00GHz )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : HP_Administrateur ( Administrator )
BOOT : Normal boot
Antivirus : VirusScan Enterprise + AntiSpyware Enterprise 8.5.0.781 (Activated)
Firewall : Norton Internet Worm Protection 2006 (Not Activated)
C:\ (Local Disk) - NTFS - Total:226 Go (Free:170 Go)
D:\ (Local Disk) - FAT32 - Total:6 Go (Free:1 Go)
E:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 30/08/2009|18:37 )

--------------------\\ Listing des dossiers dans APPLIC~1

[14/03/2009|17:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{00D89592-F643-4D8D-8F0F-AFAE0F14D4C3}
[30/08/2009|15:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[30/08/2009|12:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[30/08/2009|12:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Fugazo
[30/08/2009|12:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar
[30/08/2009|11:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[30/08/2009|11:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[30/08/2009|11:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee
[30/08/2009|11:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[30/08/2009|11:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[12/02/2009|13:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MissTeriTale2
[19/10/2008|20:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NannyMania
[29/04/2009|14:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NevoSoft Games
[26/05/2009|18:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Nokia
[29/09/2008|19:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
[28/01/2009|14:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Oberon Games
[13/08/2009|12:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\part dead amok eggs
[08/11/2008|19:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PC Suite
[10/11/2008|14:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle
[10/11/2008|14:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle VideoSpin
[22/12/2008|20:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\pixelStorm
[29/08/2009|13:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst
[13/02/2009|16:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sandlot Games
[02/01/2006|23:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[02/01/2006|23:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
[20/09/2008|12:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[30/08/2009|13:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[05/12/2008|19:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems
[10/11/2008|14:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\VideoSpin
[20/09/2008|13:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[15/06/2009|15:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WinZip
[19/11/2008|17:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[12/03/2009|19:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\yahoo!
[12/03/2009|19:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion
[23/12/2008|13:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom

[25/07/2009|14:58] C:\DOCUME~1\David\APPLIC~1\.#
[30/01/2009|19:18] C:\DOCUME~1\David\APPLIC~1\Adobe
[30/01/2009|19:19] C:\DOCUME~1\David\APPLIC~1\AdobeUM
[15/06/2009|15:58] C:\DOCUME~1\David\APPLIC~1\Apple Computer
[12/01/2009|11:50] C:\DOCUME~1\David\APPLIC~1\ArcSoft
[13/05/2009|19:42] C:\DOCUME~1\David\APPLIC~1\Atari
[08/02/2009|20:55] C:\DOCUME~1\David\APPLIC~1\DivX
[25/07/2009|13:39] C:\DOCUME~1\David\APPLIC~1\dvdbind
[02/04/2009|16:19] C:\DOCUME~1\David\APPLIC~1\dvdcss
[09/12/2008|18:06] C:\DOCUME~1\David\APPLIC~1\Google
[29/08/2009|15:46] C:\DOCUME~1\David\APPLIC~1\Hamachi
[09/12/2008|14:01] C:\DOCUME~1\David\APPLIC~1\HP
[11/06/2009|10:29] C:\DOCUME~1\David\APPLIC~1\HPQ
[15/11/2005|04:22] C:\DOCUME~1\David\APPLIC~1\Identities
[28/01/2009|14:50] C:\DOCUME~1\David\APPLIC~1\Image Zone Express
[21/02/2009|13:06] C:\DOCUME~1\David\APPLIC~1\ImTOO Software Studio
[23/07/2009|14:49] C:\DOCUME~1\David\APPLIC~1\InstallShield
[12/05/2009|17:45] C:\DOCUME~1\David\APPLIC~1\La Bataille pour la Terre du Milieu T II
[19/02/2009|16:33] C:\DOCUME~1\David\APPLIC~1\Leadertech
[10/12/2008|15:49] C:\DOCUME~1\David\APPLIC~1\LimeWire
[09/12/2008|14:18] C:\DOCUME~1\David\APPLIC~1\Macromedia
[01/04/2009|19:08] C:\DOCUME~1\David\APPLIC~1\Media Player Classic
[29/05/2009|18:08] C:\DOCUME~1\David\APPLIC~1\Microsoft
[09/12/2008|14:17] C:\DOCUME~1\David\APPLIC~1\Mozilla
[15/06/2009|15:06] C:\DOCUME~1\David\APPLIC~1\Nokia
[20/04/2009|19:25] C:\DOCUME~1\David\APPLIC~1\OpenOffice.org
[20/12/2008|19:26] C:\DOCUME~1\David\APPLIC~1\PC Suite
[19/12/2008|16:51] C:\DOCUME~1\David\APPLIC~1\Real
[02/03/2009|18:45] C:\DOCUME~1\David\APPLIC~1\SecuROM
[19/02/2009|16:33] C:\DOCUME~1\David\APPLIC~1\Sonic
[06/01/2009|12:13] C:\DOCUME~1\David\APPLIC~1\Sun
[09/12/2008|14:22] C:\DOCUME~1\David\APPLIC~1\teamspeak2
[26/08/2009|16:55] C:\DOCUME~1\David\APPLIC~1\uTorrent
[10/12/2008|18:34] C:\DOCUME~1\David\APPLIC~1\vlc
[15/06/2009|15:27] C:\DOCUME~1\David\APPLIC~1\WinRAR
[12/03/2009|19:04] C:\DOCUME~1\David\APPLIC~1\Yahoo!

[15/11/2005|04:22] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[03/01/2006|00:20] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[02/01/2006|23:42] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Real

[01/07/2009|14:27] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Adobe
[05/10/2008|17:54] C:\DOCUME~1\HP_ADM~1\APPLIC~1\AdobeUM
[15/11/2008|17:32] C:\DOCUME~1\HP_ADM~1\APPLIC~1\agi
[27/11/2008|18:39] C:\DOCUME~1\HP_ADM~1\APPLIC~1\AlterLab
[05/11/2008|17:02] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Amaranth Games
[19/03/2009|11:46] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Any Video Converter
[29/09/2008|19:17] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Apple Computer
[12/01/2009|12:20] C:\DOCUME~1\HP_ADM~1\APPLIC~1\ArcSoft
[01/10/2008|17:57] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Atari
[18/03/2009|20:33] C:\DOCUME~1\HP_ADM~1\APPLIC~1\AVS4YOU
[07/12/2008|15:32] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Bloom RU
[06/10/2008|19:53] C:\DOCUME~1\HP_ADM~1\APPLIC~1\CyberLink
[07/11/2008|16:17] C:\DOCUME~1\HP_ADM~1\APPLIC~1\DivX
[13/08/2009|12:13] C:\DOCUME~1\HP_ADM~1\APPLIC~1\dvdbind
[27/01/2009|19:06] C:\DOCUME~1\HP_ADM~1\APPLIC~1\dvdcss
[13/01/2009|13:04] C:\DOCUME~1\HP_ADM~1\APPLIC~1\EleFun Games
[27/01/2009|14:17] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Go Go Gourmet
[21/09/2008|15:28] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Google
[02/12/2008|14:06] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Home Sweet Home
[01/11/2008|16:25] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Home Sweet Home 2
[04/10/2008|15:40] C:\DOCUME~1\HP_ADM~1\APPLIC~1\HP
[21/09/2008|15:35] C:\DOCUME~1\HP_ADM~1\APPLIC~1\HPQ
[22/06/2009|19:57] C:\DOCUME~1\HP_ADM~1\APPLIC~1\HuruBeachParty
[15/11/2005|04:22] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Identities
[13/08/2009|17:56] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Image Zone Express
[21/03/2009|20:39] C:\DOCUME~1\HP_ADM~1\APPLIC~1\ImTOO Software Studio
[25/09/2008|11:29] C:\DOCUME~1\HP_ADM~1\APPLIC~1\InstallShield
[05/12/2008|20:45] C:\DOCUME~1\HP_ADM~1\APPLIC~1\iWin
[02/10/2008|20:21] C:\DOCUME~1\HP_ADM~1\APPLIC~1\La Bataille pour la Terre du Milieu T II
[08/10/2008|20:08] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Leadertech
[06/12/2008|21:37] C:\DOCUME~1\HP_ADM~1\APPLIC~1\LimeWire
[20/09/2008|13:11] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Macromedia
[10/11/2008|14:06] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Media Player Classic
[06/12/2008|20:40] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Microsoft
[22/09/2008|20:43] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Mozilla
[20/09/2008|17:22] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Nokia
[30/11/2008|19:39] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Oberon Games
[20/10/2008|12:57] C:\DOCUME~1\HP_ADM~1\APPLIC~1\OpenOffice.org
[20/09/2008|17:19] C:\DOCUME~1\HP_ADM~1\APPLIC~1\PC Suite
[07/12/2008|15:15] C:\DOCUME~1\HP_ADM~1\APPLIC~1\PetShowCraze
[30/11/2008|16:57] C:\DOCUME~1\HP_ADM~1\APPLIC~1\PlayFirst
[05/04/2009|14:28] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Playwize
[25/09/2008|11:29] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Pokerwize
[20/10/2008|20:03] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Real
[08/10/2008|20:09] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Sonic
[05/11/2008|16:58] C:\DOCUME~1\HP_ADM~1\APPLIC~1\SulusGames
[19/10/2008|12:40] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Sun
[20/09/2008|16:45] C:\DOCUME~1\HP_ADM~1\APPLIC~1\teamspeak2
[27/09/2008|21:28] C:\DOCUME~1\HP_ADM~1\APPLIC~1\TeamViewer
[19/10/2008|12:17] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Template
[10/11/2008|15:41] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Ulead Systems
[25/07/2009|19:54] C:\DOCUME~1\HP_ADM~1\APPLIC~1\uTorrent
[26/11/2008|18:33] C:\DOCUME~1\HP_ADM~1\APPLIC~1\ViquaSoft
[19/11/2008|20:34] C:\DOCUME~1\HP_ADM~1\APPLIC~1\vlc
[30/06/2009|19:23] C:\DOCUME~1\HP_ADM~1\APPLIC~1\WinRAR
[12/03/2009|20:05] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Yahoo!

[15/11/2008|15:12] C:\DOCUME~1\LOCALS~1\APPLIC~1\agi
[21/09/2008|11:38] C:\DOCUME~1\LOCALS~1\APPLIC~1\DivX
[02/01/2006|23:08] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[24/07/2009|13:07] C:\DOCUME~1\MA4-DA~1\APPLIC~1\.#
[01/02/2009|21:10] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Adobe
[14/03/2009|17:27] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Apple Computer
[14/11/2008|14:10] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Atari
[30/03/2009|11:18] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Boolat Games
[15/04/2009|14:13] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Boontyv1002fr
[29/08/2009|11:02] C:\DOCUME~1\MA4-DA~1\APPLIC~1\CasualForge
[12/11/2008|13:43] C:\DOCUME~1\MA4-DA~1\APPLIC~1\DivX
[14/08/2009|14:16] C:\DOCUME~1\MA4-DA~1\APPLIC~1\dvdbind
[21/12/2008|19:08] C:\DOCUME~1\MA4-DA~1\APPLIC~1\EleFun Games
[05/04/2009|12:57] C:\DOCUME~1\MA4-DA~1\APPLIC~1\FarmerJane
[02/02/2009|13:25] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Free Download Manager
[24/06/2009|11:23] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Gaijin Ent
[29/04/2009|14:00] C:\DOCUME~1\MA4-DA~1\APPLIC~1\GameInvest
[11/03/2009|14:16] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Gamelab
[22/04/2009|13:00] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Gogii Games
[14/03/2009|18:37] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Google
[24/05/2009|21:27] C:\DOCUME~1\MA4-DA~1\APPLIC~1\HP
[16/07/2009|20:31] C:\DOCUME~1\MA4-DA~1\APPLIC~1\HPQ
[24/06/2009|11:19] C:\DOCUME~1\MA4-DA~1\APPLIC~1\HuruBeachParty
[23/12/2008|13:21] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Identities
[13/02/2009|16:21] C:\DOCUME~1\MA4-DA~1\APPLIC~1\ITTNord
[09/02/2009|12:50] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Jane s Hotel
[21/12/2008|18:20] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Jane s Hotel Family Hero
[11/08/2009|13:31] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Janes_Realty_Boonty
[12/11/2008|13:13] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Macromedia
[11/08/2009|17:27] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Meridian93
[21/06/2009|16:33] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Microsoft
[23/01/2009|18:31] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Mozilla
[12/11/2008|13:07] C:\DOCUME~1\MA4-DA~1\APPLIC~1\MSNInstaller
[17/01/2009|19:22] C:\DOCUME~1\MA4-DA~1\APPLIC~1\MysteryStudio
[28/01/2009|14:01] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Oberon Games
[04/02/2009|13:02] C:\DOCUME~1\MA4-DA~1\APPLIC~1\OpenOffice.org
[13/11/2008|13:17] C:\DOCUME~1\MA4-DA~1\APPLIC~1\PC Suite
[12/08/2009|13:47] C:\DOCUME~1\MA4-DA~1\APPLIC~1\PlayFirst
[20/12/2008|18:53] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Real
[10/02/2009|12:03] C:\DOCUME~1\MA4-DA~1\APPLIC~1\SecuROM
[04/04/2009|14:04] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Sun
[12/11/2008|13:03] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Ulead Systems
[04/02/2009|17:16] C:\DOCUME~1\MA4-DA~1\APPLIC~1\uTorrent
[10/02/2009|12:06] C:\DOCUME~1\MA4-DA~1\APPLIC~1\ViquaSoft
[25/11/2008|13:18] C:\DOCUME~1\MA4-DA~1\APPLIC~1\vlc
[13/03/2009|20:26] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Yahoo!
[23/12/2008|13:21] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Zylom

[02/01/2006|23:08] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[05/11/2008|13:38] C:\DOCUME~1\NETWOR~1\APPLIC~1\Xfire

--------------------\\ Tâches planifiées dans C:\windows\tasks

[30/08/2009 18:00][--ah-----] C:\windows\tasks\B1ECDFB3918B4EC3.job
[30/08/2009 17:48][--a------] C:\windows\tasks\GoogleUpdateTaskMachineUA.job
[30/08/2009 11:37][--a------] C:\windows\tasks\GoogleUpdateTaskMachineCore.job
[30/08/2009 18:34][--ah-----] C:\windows\tasks\User_Feed_Synchronization-{C2E7045A-85C5-4D8D-AE6E-3AAD3D0B1814}.job
[30/08/2009 18:35][--a------] C:\windows\tasks\Google Software Updater.job
[24/06/2009 10:02][--a------] C:\windows\tasks\AppleSoftwareUpdate.job
[30/08/2009 11:37][--ah-----] C:\windows\tasks\SA.DAT
[10/08/2004 13:00][-rah-----] C:\windows\tasks\desktop.ini

( B1ECDFB3918B4EC3.job )=( c:\docume~1\ma4-da~1\applic~1\dvdbind\nounthirdshim.exe )

--------------------\\ Listing des dossiers dans C:\Program Files

[30/01/2009|19:31] C:\Program Files\Adobe
[19/11/2008|14:02] C:\Program Files\adslTV
[29/09/2008|19:15] C:\Program Files\Apple Software Update
[13/01/2009|11:48] C:\Program Files\ArcSoft
[22/05/2009|13:06] C:\Program Files\Ask Search Assistant
[13/05/2009|19:19] C:\Program Files\Atari
[25/03/2009|21:30] C:\Program Files\AviSynth 2.5
[18/03/2009|20:39] C:\Program Files\AVS4YOU
[25/02/2009|11:03] C:\Program Files\Bonjour
[28/11/2008|18:41] C:\Program Files\Boonty
[30/08/2009|13:44] C:\Program Files\BoontyGames
[05/01/2009|15:17] C:\Program Files\CCleaner
[22/05/2009|13:05] C:\Program Files\Cicle Developement
[23/09/2008|10:59] C:\Program Files\Common Files
[12/11/2005|02:09] C:\Program Files\ComPlus Applications
[11/08/2009|12:06] C:\Program Files\Conduit
[20/09/2008|17:16] C:\Program Files\DIFX
[02/10/2008|19:58] C:\Program Files\directx
[01/04/2009|12:30] C:\Program Files\DivX
[13/08/2009|12:13] C:\Program Files\dvdbind
[03/01/2006|00:02] C:\Program Files\EasyBits
[27/10/2008|20:20] C:\Program Files\EasyBits For Kids
[02/10/2008|19:48] C:\Program Files\Electronic Arts
[25/07/2009|19:14] C:\Program Files\eMule
[21/07/2009|13:53] C:\Program Files\Fichiers communs
[30/08/2009|12:41] C:\Program Files\GamesBar
[06/04/2009|10:12] C:\Program Files\Google
[12/05/2009|17:52] C:\Program Files\Hamachi
[03/01/2006|00:02] C:\Program Files\Hewlett-Packard
[21/09/2008|16:53] C:\Program Files\HP
[02/01/2006|23:42] C:\Program Files\HP DigitalMedia Archive
[08/02/2009|17:49] C:\Program Files\Incredijeux
[20/08/2009|12:50] C:\Program Files\IncrediMail
[13/05/2009|19:33] C:\Program Files\InstallShield Installation Information
[02/01/2006|23:33] C:\Program Files\Intel
[02/02/2009|13:46] C:\Program Files\InterActual
[11/08/2009|12:01] C:\Program Files\Internet Explorer
[14/03/2009|17:15] C:\Program Files\iPod
[14/03/2009|17:16] C:\Program Files\iTunes
[12/08/2009|17:51] C:\Program Files\Java
[20/10/2008|12:55] C:\Program Files\JRE
[10/11/2008|14:06] C:\Program Files\K-Lite Codec Pack
[02/01/2006|23:34] C:\Program Files\MainConcept
[20/09/2008|12:55] C:\Program Files\McAfee
[21/09/2008|20:11] C:\Program Files\Messenger
[21/08/2009|12:09] C:\Program Files\Messenger Plus! Live
[17/12/2008|18:36] C:\Program Files\Microsoft
[21/09/2008|17:48] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[15/11/2005|04:24] C:\Program Files\microsoft frontpage
[11/08/2009|12:01] C:\Program Files\Microsoft Silverlight
[17/12/2008|18:38] C:\Program Files\Microsoft SQL Server Compact Edition
[22/02/2009|12:27] C:\Program Files\Microsoft Sync Framework
[28/12/2008|15:23] C:\Program Files\Microsoft Works
[02/10/2008|18:15] C:\Program Files\Mindscape
[11/10/2008|12:35] C:\Program Files\Movie Maker
[30/08/2009|18:36] C:\Program Files\Mozilla Firefox
[06/03/2009|18:33] C:\Program Files\MSBuild
[28/12/2008|15:24] C:\Program Files\MSN
[15/11/2005|04:25] C:\Program Files\MSN Gaming Zone
[21/09/2008|17:42] C:\Program Files\MSXML 4.0
[20/09/2008|12:40] C:\Program Files\muvee Technologies
[11/08/2009|12:06] C:\Program Files\myBabylon_English
[21/09/2008|20:04] C:\Program Files\NetMeeting
[26/05/2009|18:32] C:\Program Files\Nokia
[30/08/2009|12:41] C:\Program Files\Oberon Media
[15/11/2005|04:25] C:\Program Files\Online Services
[20/10/2008|12:55] C:\Program Files\OpenOffice.org 3
[27/11/2008|14:09] C:\Program Files\orange
[13/08/2009|12:03] C:\Program Files\Outlook Express
[28/09/2008|12:29] C:\Program Files\PartoucheWize
[20/01/2009|12:35] C:\Program Files\PC Connectivity Solution
[14/03/2009|17:10] C:\Program Files\QuickTime
[02/01/2006|23:42] C:\Program Files\Real
[23/07/2009|14:51] C:\Program Files\Red Kawa
[06/03/2009|18:33] C:\Program Files\Reference Assemblies
[01/02/2009|15:11] C:\Program Files\ReflexiveArcade
[14/03/2009|16:59] C:\Program Files\Safari
[03/01/2006|00:04] C:\Program Files\Services en ligne
[02/01/2006|23:44] C:\Program Files\Sonic
[20/09/2008|12:50] C:\Program Files\Symantec
[19/03/2009|11:41] C:\Program Files\TeamSpeak 3
[29/08/2009|18:20] C:\Program Files\trend micro
[28/09/2008|12:34] C:\Program Files\UbiSoft
[12/11/2005|02:09] C:\Program Files\Uninstall Information
[09/12/2008|14:20] C:\Program Files\uTorrent
[18/11/2008|22:19] C:\Program Files\VideoLAN
[12/01/2009|11:56] C:\Program Files\Webcam 1200
[05/04/2009|11:26] C:\Program Files\Windows Live
[17/12/2008|18:34] C:\Program Files\Windows Live SkyDrive
[10/11/2008|14:59] C:\Program Files\Windows Media Components
[07/11/2008|16:24] C:\Program Files\Windows Media Connect 2
[07/11/2008|16:28] C:\Program Files\Windows Media Player
[21/09/2008|20:04] C:\Program Files\Windows NT
[15/11/2005|04:25] C:\Program Files\Windows Plus
[12/11/2005|02:09] C:\Program Files\WindowsUpdate
[15/06/2009|15:19] C:\Program Files\WinRAR
[15/06/2009|15:21] C:\Program Files\WinZip
[21/08/2009|16:04] C:\Program Files\World of Warcraft
[15/11/2005|04:26] C:\Program Files\xerox
[12/03/2009|19:04] C:\Program Files\Yahoo!
[26/12/2008|13:39] C:\Program Files\Zylom Games

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[30/03/2009|12:55] C:\Program Files\Fichiers communs\Adobe
[20/09/2008|12:57] C:\Program Files\Fichiers communs\AOL
[14/03/2009|17:15] C:\Program Files\Fichiers communs\Apple
[12/01/2009|11:44] C:\Program Files\Fichiers communs\ArcSoft
[18/03/2009|20:39] C:\Program Files\Fichiers communs\AVSMedia
[15/05/2009|18:01] C:\Program Files\Fichiers communs\Blizzard Entertainment
[28/11/2008|18:42] C:\Program Files\Fichiers communs\BOONTY Shared
[20/09/2008|12:55] C:\Program Files\Fichiers communs\Cisco Systems
[01/04/2009|12:28] C:\Program Files\Fichiers communs\DivX Shared
[21/09/2008|16:50] C:\Program Files\Fichiers communs\Hewlett-Packard
[02/01/2006|23:38] C:\Program Files\Fichiers communs\HP
[01/10/2008|17:52] C:\Program Files\Fichiers communs\InstallShield
[10/11/2008|15:00] C:\Program Files\Fichiers communs\InterVideo
[02/01/2006|23:18] C:\Program Files\Fichiers communs\Java
[02/01/2006|23:45] C:\Program Files\Fichiers communs\LightScribe
[02/01/2006|23:44] C:\Program Files\Fichiers communs\LS Getting Started
[20/09/2008|12:55] C:\Program Files\Fichiers communs\McAfee
[22/02/2009|12:21] C:\Program Files\Fichiers communs\Microsoft Shared
[15/11/2005|04:24] C:\Program Files\Fichiers communs\MSSoap
[26/05/2009|18:32] C:\Program Files\Fichiers communs\Nokia
[19/10/2008|18:46] C:\Program Files\Fichiers communs\Oberon Media
[15/11/2005|04:24] C:\Program Files\Fichiers communs\ODBC
[20/01/2009|12:36] C:\Program Files\Fichiers communs\PCSuite
[13/05/2009|19:26] C:\Program Files\Fichiers communs\PocketSoft
[23/10/2008|11:27] C:\Program Files\Fichiers communs\Real
[13/02/2009|16:15] C:\Program Files\Fichiers communs\Sandlot Shared
[15/11/2005|04:24] C:\Program Files\Fichiers communs\Services
[02/01/2006|23:43] C:\Program Files\Fichiers communs\Sonic Shared
[15/11/2005|04:24] C:\Program Files\Fichiers communs\SpeechEngines
[02/01/2006|23:43] C:\Program Files\Fichiers communs\SureThing Shared
[21/07/2009|13:53] C:\Program Files\Fichiers communs\SWF Studio
[20/09/2008|12:51] C:\Program Files\Fichiers communs\Symantec Shared
[21/09/2008|20:04] C:\Program Files\Fichiers communs\System
[02/01/2006|23:44] C:\Program Files\Fichiers communs\TiVo Shared
[17/12/2008|18:27] C:\Program Files\Fichiers communs\Windows Live
[20/09/2008|13:22] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[23/10/2008|11:27] C:\Program Files\Fichiers communs\xing shared

--------------------\\ Process

( 72 Processes )

IEXPLORE.EXE ~ [PID:1444]
IEXPLORE.EXE ~ [PID:3764]
IEXPLORE.EXE ~ [PID:5056]

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\DOCUME~1\ALLUSE~1\APPLIC~1\part dead amok eggs
C:\DOCUME~1\ALLUSE~1\APPLIC~1\part dead amok eggs\Draw dupe.dat
C:\DOCUME~1\ALLUSE~1\APPLIC~1\part dead amok eggs\Draw dupe.exe
C:\DOCUME~1\ALLUSE~1\APPLIC~1\part dead amok eggs\meal less.dat
C:\DOCUME~1\ALLUSE~1\APPLIC~1\part dead amok eggs\meal less.exe
C:\DOCUME~1\David\APPLIC~1\dvdbind
C:\DOCUME~1\HP_ADM~1\APPLIC~1\dvdbind
C:\DOCUME~1\HP_ADM~1\APPLIC~1\dvdbind\Plus htm.exe
C:\DOCUME~1\HP_ADM~1\APPLIC~1\dvdbind\wxljtmmw.exe
C:\DOCUME~1\HP_ADM~1\APPLIC~1\dvdbind\zqvvixcw.exe
C:\DOCUME~1\MA4-DA~1\APPLIC~1\dvdbind
C:\DOCUME~1\MA4-DA~1\APPLIC~1\dvdbind\noun third shim.exe
C:\DOCUME~1\MA4-DA~1\APPLIC~1\dvdbind\peafqraf.exe
C:\DOCUME~1\MA4-DA~1\APPLIC~1\dvdbind\Plus htm.exe
C:\DOCUME~1\MA4-DA~1\APPLIC~1\dvdbind\pozyoncx.exe
C:\DOCUME~1\MA4-DA~1\APPLIC~1\dvdbind\Ref Play Math Bash.exe
C:\DOCUME~1\MA4-DA~1\APPLIC~1\dvdbind\twudamju.exe
C:\Program Files\dvdbind
C:\DOCUME~1\HP_ADM~1\Cookies\hp_administrateur@www.adserver5[2].txt
C:\DOCUME~1\HP_ADM~1\Cookies\hp_administrateur@banner.cotedazurpalace[2].txt
C:\DOCUME~1\HP_ADM~1\Cookies\hp_administrateur@cotedazurpalace[1].txt
C:\DOCUME~1\HP_ADM~1\Cookies\hp_administrateur@www.cotedazurpalace[2].txt
C:\DOCUME~1\HP_ADM~1\Cookies\hp_administrateur@partypoker[2].txt
C:\DOCUME~1\HP_ADM~1\Cookies\hp_administrateur@888[1].txt
C:\windows\Tasks\B1ECDFB3918B4EC3.job

--------------------\\ Verification du Registre

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Mp3media"="C:\\DOCUME~1\\HP_ADM~1\\APPLIC~1\\dvdbind\\Plus htm.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Amok Eggs Four Web"="C:\\Documents and Settings\\All Users\\Application Data\\part dead amok eggs\\meal less.exe"

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-08-30 18:39:49
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 26

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:62][D:8]-> C:\DOCUME~1\HP_ADM~1\LOCALS~1\Temp
[F:87][D:0]-> C:\DOCUME~1\HP_ADM~1\Cookies
[F:1270][D:4]-> C:\DOCUME~1\HP_ADM~1\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 24/07/2009|18:22 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 25/07/2009|19:06 - Option : [2]
3 - "C:\Lop SD\LopR_3.txt" - 30/08/2009|18:40 - Option : [1]

--------------------\\ Fin du rapport a 18:40:58
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 22
Destrio5 Messages postés 85985 Date d'inscription dimanche 11 juillet 2010 Statut Modérateur Dernière intervention 17 février 2023 10 290
30 août 2009 à 18:42
--> Double-clique sur le raccourci de Lop S&D pour le lancer.
(Sous Vista, il faut cliquer droit sur le raccourci de Lop S&D et choisir Exécuter en tant qu'administrateur)

--> Choisis cette fois-ci l'option 2 (Suppression).

--> Ne ferme pas la fenêtre lors de la suppression !

--> Poste le rapport généré (C:\lopR.txt).

(Si le Bureau ne réapparaît pas, presse Ctrl+Alt+Suppr, Onglet Fichier, Nouvelle tâche, tape explorer.exe et valide)
0
Réponse 6 / 22
fullmetal-dav Messages postés 357 Date d'inscription mardi 19 février 2008 Statut Membre Dernière intervention 16 février 2017 28
30 août 2009 à 19:55
le voilà


--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) D CPU 3.00GHz )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : HP_Administrateur ( Administrator )
BOOT : Normal boot
Antivirus : VirusScan Enterprise + AntiSpyware Enterprise 8.5.0.781 (Activated)
Firewall : Norton Internet Worm Protection 2006 (Not Activated)
C:\ (Local Disk) - NTFS - Total:226 Go (Free:170 Go)
D:\ (Local Disk) - FAT32 - Total:6 Go (Free:1 Go)
E:\ (CD or DVD) - UDF - Total:5 Go (Free:0 Go)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [2] ( 30/08/2009|19:51 )


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\part dead amok eggs\Draw dupe.dat
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\part dead amok eggs\Draw dupe.exe
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\part dead amok eggs\meal less.dat
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\part dead amok eggs\meal less.exe
Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\dvdbind\Plus htm.exe
Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\dvdbind\wxljtmmw.exe
Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\dvdbind\zqvvixcw.exe
Supprime! - C:\DOCUME~1\MA4-DA~1\APPLIC~1\dvdbind\noun third shim.exe
Supprime! - C:\DOCUME~1\MA4-DA~1\APPLIC~1\dvdbind\peafqraf.exe
Supprime! - C:\DOCUME~1\MA4-DA~1\APPLIC~1\dvdbind\Plus htm.exe
Supprime! - C:\DOCUME~1\MA4-DA~1\APPLIC~1\dvdbind\pozyoncx.exe
Supprime! - C:\DOCUME~1\MA4-DA~1\APPLIC~1\dvdbind\Ref Play Math Bash.exe
Supprime! - C:\DOCUME~1\MA4-DA~1\APPLIC~1\dvdbind\twudamju.exe
Supprime! - C:\DOCUME~1\HP_ADM~1\Cookies\hp_administrateur@www.adserver5[2].txt
Supprime! - C:\DOCUME~1\HP_ADM~1\Cookies\hp_administrateur@banner.cotedazurpalace[2].txt
Supprime! - C:\DOCUME~1\HP_ADM~1\Cookies\hp_administrateur@cotedazurpalace[1].txt
Supprime! - C:\DOCUME~1\HP_ADM~1\Cookies\hp_administrateur@www.cotedazurpalace[2].txt
Supprime! - C:\DOCUME~1\HP_ADM~1\Cookies\hp_administrateur@partypoker[2].txt
Supprime! - C:\DOCUME~1\HP_ADM~1\Cookies\hp_administrateur@888[1].txt
Supprime! - C:\windows\Tasks\B1ECDFB3918B4EC3.job
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\part dead amok eggs
Supprime! - C:\DOCUME~1\David\APPLIC~1\dvdbind
Supprime! - C:\DOCUME~1\HP_ADM~1\APPLIC~1\dvdbind
Supprime! - C:\DOCUME~1\MA4-DA~1\APPLIC~1\dvdbind
Supprime! - C:\Program Files\dvdbind

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


--------------------\\ Listing des dossiers dans APPLIC~1

[14/03/2009|17:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{00D89592-F643-4D8D-8F0F-AFAE0F14D4C3}
[30/08/2009|15:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[30/08/2009|12:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[30/08/2009|12:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Fugazo
[30/08/2009|12:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\GamesBar
[30/08/2009|18:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[30/08/2009|18:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
[30/08/2009|11:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[30/08/2009|11:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee
[30/08/2009|11:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[30/08/2009|11:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[12/02/2009|13:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MissTeriTale2
[19/10/2008|20:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NannyMania
[29/04/2009|14:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NevoSoft Games
[26/05/2009|18:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Nokia
[29/09/2008|19:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
[28/01/2009|14:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Oberon Games
[08/11/2008|19:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PC Suite
[10/11/2008|14:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle
[10/11/2008|14:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle VideoSpin
[22/12/2008|20:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\pixelStorm
[29/08/2009|13:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PlayFirst
[13/02/2009|16:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sandlot Games
[02/01/2006|23:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[02/01/2006|23:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
[20/09/2008|12:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[30/08/2009|13:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[05/12/2008|19:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems
[10/11/2008|14:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\VideoSpin
[20/09/2008|13:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[15/06/2009|15:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WinZip
[19/11/2008|17:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[12/03/2009|19:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\yahoo!
[12/03/2009|19:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion
[23/12/2008|13:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom

[25/07/2009|14:58] C:\DOCUME~1\David\APPLIC~1\.#
[30/01/2009|19:18] C:\DOCUME~1\David\APPLIC~1\Adobe
[30/01/2009|19:19] C:\DOCUME~1\David\APPLIC~1\AdobeUM
[15/06/2009|15:58] C:\DOCUME~1\David\APPLIC~1\Apple Computer
[12/01/2009|11:50] C:\DOCUME~1\David\APPLIC~1\ArcSoft
[13/05/2009|19:42] C:\DOCUME~1\David\APPLIC~1\Atari
[08/02/2009|20:55] C:\DOCUME~1\David\APPLIC~1\DivX
[02/04/2009|16:19] C:\DOCUME~1\David\APPLIC~1\dvdcss
[09/12/2008|18:06] C:\DOCUME~1\David\APPLIC~1\Google
[29/08/2009|15:46] C:\DOCUME~1\David\APPLIC~1\Hamachi
[09/12/2008|14:01] C:\DOCUME~1\David\APPLIC~1\HP
[11/06/2009|10:29] C:\DOCUME~1\David\APPLIC~1\HPQ
[15/11/2005|04:22] C:\DOCUME~1\David\APPLIC~1\Identities
[28/01/2009|14:50] C:\DOCUME~1\David\APPLIC~1\Image Zone Express
[21/02/2009|13:06] C:\DOCUME~1\David\APPLIC~1\ImTOO Software Studio
[23/07/2009|14:49] C:\DOCUME~1\David\APPLIC~1\InstallShield
[12/05/2009|17:45] C:\DOCUME~1\David\APPLIC~1\La Bataille pour la Terre du Milieu T II
[19/02/2009|16:33] C:\DOCUME~1\David\APPLIC~1\Leadertech
[10/12/2008|15:49] C:\DOCUME~1\David\APPLIC~1\LimeWire
[09/12/2008|14:18] C:\DOCUME~1\David\APPLIC~1\Macromedia
[01/04/2009|19:08] C:\DOCUME~1\David\APPLIC~1\Media Player Classic
[29/05/2009|18:08] C:\DOCUME~1\David\APPLIC~1\Microsoft
[09/12/2008|14:17] C:\DOCUME~1\David\APPLIC~1\Mozilla
[15/06/2009|15:06] C:\DOCUME~1\David\APPLIC~1\Nokia
[20/04/2009|19:25] C:\DOCUME~1\David\APPLIC~1\OpenOffice.org
[20/12/2008|19:26] C:\DOCUME~1\David\APPLIC~1\PC Suite
[19/12/2008|16:51] C:\DOCUME~1\David\APPLIC~1\Real
[02/03/2009|18:45] C:\DOCUME~1\David\APPLIC~1\SecuROM
[19/02/2009|16:33] C:\DOCUME~1\David\APPLIC~1\Sonic
[06/01/2009|12:13] C:\DOCUME~1\David\APPLIC~1\Sun
[09/12/2008|14:22] C:\DOCUME~1\David\APPLIC~1\teamspeak2
[26/08/2009|16:55] C:\DOCUME~1\David\APPLIC~1\uTorrent
[10/12/2008|18:34] C:\DOCUME~1\David\APPLIC~1\vlc
[15/06/2009|15:27] C:\DOCUME~1\David\APPLIC~1\WinRAR
[12/03/2009|19:04] C:\DOCUME~1\David\APPLIC~1\Yahoo!

[15/11/2005|04:22] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[03/01/2006|00:20] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[02/01/2006|23:42] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Real

[01/07/2009|14:27] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Adobe
[05/10/2008|17:54] C:\DOCUME~1\HP_ADM~1\APPLIC~1\AdobeUM
[15/11/2008|17:32] C:\DOCUME~1\HP_ADM~1\APPLIC~1\agi
[27/11/2008|18:39] C:\DOCUME~1\HP_ADM~1\APPLIC~1\AlterLab
[05/11/2008|17:02] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Amaranth Games
[19/03/2009|11:46] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Any Video Converter
[29/09/2008|19:17] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Apple Computer
[12/01/2009|12:20] C:\DOCUME~1\HP_ADM~1\APPLIC~1\ArcSoft
[01/10/2008|17:57] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Atari
[18/03/2009|20:33] C:\DOCUME~1\HP_ADM~1\APPLIC~1\AVS4YOU
[07/12/2008|15:32] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Bloom RU
[06/10/2008|19:53] C:\DOCUME~1\HP_ADM~1\APPLIC~1\CyberLink
[07/11/2008|16:17] C:\DOCUME~1\HP_ADM~1\APPLIC~1\DivX
[27/01/2009|19:06] C:\DOCUME~1\HP_ADM~1\APPLIC~1\dvdcss
[13/01/2009|13:04] C:\DOCUME~1\HP_ADM~1\APPLIC~1\EleFun Games
[27/01/2009|14:17] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Go Go Gourmet
[21/09/2008|15:28] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Google
[02/12/2008|14:06] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Home Sweet Home
[01/11/2008|16:25] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Home Sweet Home 2
[04/10/2008|15:40] C:\DOCUME~1\HP_ADM~1\APPLIC~1\HP
[21/09/2008|15:35] C:\DOCUME~1\HP_ADM~1\APPLIC~1\HPQ
[22/06/2009|19:57] C:\DOCUME~1\HP_ADM~1\APPLIC~1\HuruBeachParty
[15/11/2005|04:22] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Identities
[13/08/2009|17:56] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Image Zone Express
[21/03/2009|20:39] C:\DOCUME~1\HP_ADM~1\APPLIC~1\ImTOO Software Studio
[25/09/2008|11:29] C:\DOCUME~1\HP_ADM~1\APPLIC~1\InstallShield
[05/12/2008|20:45] C:\DOCUME~1\HP_ADM~1\APPLIC~1\iWin
[02/10/2008|20:21] C:\DOCUME~1\HP_ADM~1\APPLIC~1\La Bataille pour la Terre du Milieu T II
[08/10/2008|20:08] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Leadertech
[06/12/2008|21:37] C:\DOCUME~1\HP_ADM~1\APPLIC~1\LimeWire
[20/09/2008|13:11] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Macromedia
[10/11/2008|14:06] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Media Player Classic
[06/12/2008|20:40] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Microsoft
[22/09/2008|20:43] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Mozilla
[20/09/2008|17:22] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Nokia
[30/11/2008|19:39] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Oberon Games
[20/10/2008|12:57] C:\DOCUME~1\HP_ADM~1\APPLIC~1\OpenOffice.org
[20/09/2008|17:19] C:\DOCUME~1\HP_ADM~1\APPLIC~1\PC Suite
[07/12/2008|15:15] C:\DOCUME~1\HP_ADM~1\APPLIC~1\PetShowCraze
[30/11/2008|16:57] C:\DOCUME~1\HP_ADM~1\APPLIC~1\PlayFirst
[05/04/2009|14:28] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Playwize
[25/09/2008|11:29] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Pokerwize
[20/10/2008|20:03] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Real
[08/10/2008|20:09] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Sonic
[05/11/2008|16:58] C:\DOCUME~1\HP_ADM~1\APPLIC~1\SulusGames
[19/10/2008|12:40] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Sun
[20/09/2008|16:45] C:\DOCUME~1\HP_ADM~1\APPLIC~1\teamspeak2
[27/09/2008|21:28] C:\DOCUME~1\HP_ADM~1\APPLIC~1\TeamViewer
[19/10/2008|12:17] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Template
[10/11/2008|15:41] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Ulead Systems
[25/07/2009|19:54] C:\DOCUME~1\HP_ADM~1\APPLIC~1\uTorrent
[26/11/2008|18:33] C:\DOCUME~1\HP_ADM~1\APPLIC~1\ViquaSoft
[19/11/2008|20:34] C:\DOCUME~1\HP_ADM~1\APPLIC~1\vlc
[30/06/2009|19:23] C:\DOCUME~1\HP_ADM~1\APPLIC~1\WinRAR
[12/03/2009|20:05] C:\DOCUME~1\HP_ADM~1\APPLIC~1\Yahoo!

[15/11/2008|15:12] C:\DOCUME~1\LOCALS~1\APPLIC~1\agi
[21/09/2008|11:38] C:\DOCUME~1\LOCALS~1\APPLIC~1\DivX
[02/01/2006|23:08] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[24/07/2009|13:07] C:\DOCUME~1\MA4-DA~1\APPLIC~1\.#
[01/02/2009|21:10] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Adobe
[14/03/2009|17:27] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Apple Computer
[14/11/2008|14:10] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Atari
[30/03/2009|11:18] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Boolat Games
[15/04/2009|14:13] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Boontyv1002fr
[29/08/2009|11:02] C:\DOCUME~1\MA4-DA~1\APPLIC~1\CasualForge
[12/11/2008|13:43] C:\DOCUME~1\MA4-DA~1\APPLIC~1\DivX
[21/12/2008|19:08] C:\DOCUME~1\MA4-DA~1\APPLIC~1\EleFun Games
[05/04/2009|12:57] C:\DOCUME~1\MA4-DA~1\APPLIC~1\FarmerJane
[02/02/2009|13:25] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Free Download Manager
[24/06/2009|11:23] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Gaijin Ent
[29/04/2009|14:00] C:\DOCUME~1\MA4-DA~1\APPLIC~1\GameInvest
[11/03/2009|14:16] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Gamelab
[22/04/2009|13:00] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Gogii Games
[14/03/2009|18:37] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Google
[24/05/2009|21:27] C:\DOCUME~1\MA4-DA~1\APPLIC~1\HP
[16/07/2009|20:31] C:\DOCUME~1\MA4-DA~1\APPLIC~1\HPQ
[24/06/2009|11:19] C:\DOCUME~1\MA4-DA~1\APPLIC~1\HuruBeachParty
[23/12/2008|13:21] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Identities
[13/02/2009|16:21] C:\DOCUME~1\MA4-DA~1\APPLIC~1\ITTNord
[09/02/2009|12:50] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Jane s Hotel
[21/12/2008|18:20] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Jane s Hotel Family Hero
[11/08/2009|13:31] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Janes_Realty_Boonty
[12/11/2008|13:13] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Macromedia
[11/08/2009|17:27] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Meridian93
[30/08/2009|15:26] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Microsoft
[23/01/2009|18:31] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Mozilla
[12/11/2008|13:07] C:\DOCUME~1\MA4-DA~1\APPLIC~1\MSNInstaller
[17/01/2009|19:22] C:\DOCUME~1\MA4-DA~1\APPLIC~1\MysteryStudio
[28/01/2009|14:01] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Oberon Games
[04/02/2009|13:02] C:\DOCUME~1\MA4-DA~1\APPLIC~1\OpenOffice.org
[13/11/2008|13:17] C:\DOCUME~1\MA4-DA~1\APPLIC~1\PC Suite
[12/08/2009|13:47] C:\DOCUME~1\MA4-DA~1\APPLIC~1\PlayFirst
[20/12/2008|18:53] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Real
[10/02/2009|12:03] C:\DOCUME~1\MA4-DA~1\APPLIC~1\SecuROM
[04/04/2009|14:04] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Sun
[12/11/2008|13:03] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Ulead Systems
[04/02/2009|17:16] C:\DOCUME~1\MA4-DA~1\APPLIC~1\uTorrent
[10/02/2009|12:06] C:\DOCUME~1\MA4-DA~1\APPLIC~1\ViquaSoft
[25/11/2008|13:18] C:\DOCUME~1\MA4-DA~1\APPLIC~1\vlc
[13/03/2009|20:26] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Yahoo!
[23/12/2008|13:21] C:\DOCUME~1\MA4-DA~1\APPLIC~1\Zylom

[02/01/2006|23:08] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[05/11/2008|13:38] C:\DOCUME~1\NETWOR~1\APPLIC~1\Xfire

--------------------\\ Tâches planifiées dans C:\windows\tasks

[30/08/2009 19:48][--a------] C:\windows\tasks\GoogleUpdateTaskMachineUA.job
[30/08/2009 19:45][--a------] C:\windows\tasks\GoogleUpdateTaskMachineCore.job
[30/08/2009 19:49][--ah-----] C:\windows\tasks\User_Feed_Synchronization-{C2E7045A-85C5-4D8D-AE6E-3AAD3D0B1814}.job
[30/08/2009 19:46][--a------] C:\windows\tasks\Google Software Updater.job
[24/06/2009 10:02][--a------] C:\windows\tasks\AppleSoftwareUpdate.job
[30/08/2009 19:45][--ah-----] C:\windows\tasks\SA.DAT
[10/08/2004 13:00][-rah-----] C:\windows\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[30/01/2009|19:31] C:\Program Files\Adobe
[19/11/2008|14:02] C:\Program Files\adslTV
[29/09/2008|19:15] C:\Program Files\Apple Software Update
[13/01/2009|11:48] C:\Program Files\ArcSoft
[22/05/2009|13:06] C:\Program Files\Ask Search Assistant
[13/05/2009|19:19] C:\Program Files\Atari
[25/03/2009|21:30] C:\Program Files\AviSynth 2.5
[18/03/2009|20:39] C:\Program Files\AVS4YOU
[25/02/2009|11:03] C:\Program Files\Bonjour
[28/11/2008|18:41] C:\Program Files\Boonty
[30/08/2009|13:44] C:\Program Files\BoontyGames
[05/01/2009|15:17] C:\Program Files\CCleaner
[22/05/2009|13:05] C:\Program Files\Cicle Developement
[23/09/2008|10:59] C:\Program Files\Common Files
[12/11/2005|02:09] C:\Program Files\ComPlus Applications
[11/08/2009|12:06] C:\Program Files\Conduit
[20/09/2008|17:16] C:\Program Files\DIFX
[02/10/2008|19:58] C:\Program Files\directx
[01/04/2009|12:30] C:\Program Files\DivX
[03/01/2006|00:02] C:\Program Files\EasyBits
[27/10/2008|20:20] C:\Program Files\EasyBits For Kids
[02/10/2008|19:48] C:\Program Files\Electronic Arts
[25/07/2009|19:14] C:\Program Files\eMule
[21/07/2009|13:53] C:\Program Files\Fichiers communs
[30/08/2009|12:41] C:\Program Files\GamesBar
[06/04/2009|10:12] C:\Program Files\Google
[12/05/2009|17:52] C:\Program Files\Hamachi
[03/01/2006|00:02] C:\Program Files\Hewlett-Packard
[21/09/2008|16:53] C:\Program Files\HP
[02/01/2006|23:42] C:\Program Files\HP DigitalMedia Archive
[08/02/2009|17:49] C:\Program Files\Incredijeux
[20/08/2009|12:50] C:\Program Files\IncrediMail
[13/05/2009|19:33] C:\Program Files\InstallShield Installation Information
[02/01/2006|23:33] C:\Program Files\Intel
[02/02/2009|13:46] C:\Program Files\InterActual
[11/08/2009|12:01] C:\Program Files\Internet Explorer
[14/03/2009|17:15] C:\Program Files\iPod
[14/03/2009|17:16] C:\Program Files\iTunes
[12/08/2009|17:51] C:\Program Files\Java
[20/10/2008|12:55] C:\Program Files\JRE
[10/11/2008|14:06] C:\Program Files\K-Lite Codec Pack
[02/01/2006|23:34] C:\Program Files\MainConcept
[20/09/2008|12:55] C:\Program Files\McAfee
[21/09/2008|20:11] C:\Program Files\Messenger
[21/08/2009|12:09] C:\Program Files\Messenger Plus! Live
[17/12/2008|18:36] C:\Program Files\Microsoft
[21/09/2008|17:48] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[15/11/2005|04:24] C:\Program Files\microsoft frontpage
[11/08/2009|12:01] C:\Program Files\Microsoft Silverlight
[17/12/2008|18:38] C:\Program Files\Microsoft SQL Server Compact Edition
[22/02/2009|12:27] C:\Program Files\Microsoft Sync Framework
[28/12/2008|15:23] C:\Program Files\Microsoft Works
[02/10/2008|18:15] C:\Program Files\Mindscape
[11/10/2008|12:35] C:\Program Files\Movie Maker
[30/08/2009|19:48] C:\Program Files\Mozilla Firefox
[06/03/2009|18:33] C:\Program Files\MSBuild
[28/12/2008|15:24] C:\Program Files\MSN
[15/11/2005|04:25] C:\Program Files\MSN Gaming Zone
[21/09/2008|17:42] C:\Program Files\MSXML 4.0
[20/09/2008|12:40] C:\Program Files\muvee Technologies
[11/08/2009|12:06] C:\Program Files\myBabylon_English
[21/09/2008|20:04] C:\Program Files\NetMeeting
[26/05/2009|18:32] C:\Program Files\Nokia
[30/08/2009|12:41] C:\Program Files\Oberon Media
[15/11/2005|04:25] C:\Program Files\Online Services
[20/10/2008|12:55] C:\Program Files\OpenOffice.org 3
[27/11/2008|14:09] C:\Program Files\orange
[13/08/2009|12:03] C:\Program Files\Outlook Express
[28/09/2008|12:29] C:\Program Files\PartoucheWize
[20/01/2009|12:35] C:\Program Files\PC Connectivity Solution
[30/08/2009|19:43] C:\Program Files\QuickTime
[02/01/2006|23:42] C:\Program Files\Real
[23/07/2009|14:51] C:\Program Files\Red Kawa
[06/03/2009|18:33] C:\Program Files\Reference Assemblies
[01/02/2009|15:11] C:\Program Files\ReflexiveArcade
[14/03/2009|16:59] C:\Program Files\Safari
[03/01/2006|00:04] C:\Program Files\Services en ligne
[02/01/2006|23:44] C:\Program Files\Sonic
[20/09/2008|12:50] C:\Program Files\Symantec
[19/03/2009|11:41] C:\Program Files\TeamSpeak 3
[29/08/2009|18:20] C:\Program Files\trend micro
[28/09/2008|12:34] C:\Program Files\UbiSoft
[12/11/2005|02:09] C:\Program Files\Uninstall Information
[09/12/2008|14:20] C:\Program Files\uTorrent
[18/11/2008|22:19] C:\Program Files\VideoLAN
[12/01/2009|11:56] C:\Program Files\Webcam 1200
[05/04/2009|11:26] C:\Program Files\Windows Live
[17/12/2008|18:34] C:\Program Files\Windows Live SkyDrive
[10/11/2008|14:59] C:\Program Files\Windows Media Components
[07/11/2008|16:24] C:\Program Files\Windows Media Connect 2
[07/11/2008|16:28] C:\Program Files\Windows Media Player
[21/09/2008|20:04] C:\Program Files\Windows NT
[15/11/2005|04:25] C:\Program Files\Windows Plus
[12/11/2005|02:09] C:\Program Files\WindowsUpdate
[15/06/2009|15:19] C:\Program Files\WinRAR
[15/06/2009|15:21] C:\Program Files\WinZip
[21/08/2009|16:04] C:\Program Files\World of Warcraft
[15/11/2005|04:26] C:\Program Files\xerox
[12/03/2009|19:04] C:\Program Files\Yahoo!
[26/12/2008|13:39] C:\Program Files\Zylom Games

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[30/03/2009|12:55] C:\Program Files\Fichiers communs\Adobe
[20/09/2008|12:57] C:\Program Files\Fichiers communs\AOL
[14/03/2009|17:15] C:\Program Files\Fichiers communs\Apple
[12/01/2009|11:44] C:\Program Files\Fichiers communs\ArcSoft
[18/03/2009|20:39] C:\Program Files\Fichiers communs\AVSMedia
[15/05/2009|18:01] C:\Program Files\Fichiers communs\Blizzard Entertainment
[28/11/2008|18:42] C:\Program Files\Fichiers communs\BOONTY Shared
[20/09/2008|12:55] C:\Program Files\Fichiers communs\Cisco Systems
[01/04/2009|12:28] C:\Program Files\Fichiers communs\DivX Shared
[21/09/2008|16:50] C:\Program Files\Fichiers communs\Hewlett-Packard
[02/01/2006|23:38] C:\Program Files\Fichiers communs\HP
[01/10/2008|17:52] C:\Program Files\Fichiers communs\InstallShield
[10/11/2008|15:00] C:\Program Files\Fichiers communs\InterVideo
[02/01/2006|23:18] C:\Program Files\Fichiers communs\Java
[02/01/2006|23:45] C:\Program Files\Fichiers communs\LightScribe
[02/01/2006|23:44] C:\Program Files\Fichiers communs\LS Getting Started
[20/09/2008|12:55] C:\Program Files\Fichiers communs\McAfee
[22/02/2009|12:21] C:\Program Files\Fichiers communs\Microsoft Shared
[15/11/2005|04:24] C:\Program Files\Fichiers communs\MSSoap
[26/05/2009|18:32] C:\Program Files\Fichiers communs\Nokia
[19/10/2008|18:46] C:\Program Files\Fichiers communs\Oberon Media
[15/11/2005|04:24] C:\Program Files\Fichiers communs\ODBC
[20/01/2009|12:36] C:\Program Files\Fichiers communs\PCSuite
[13/05/2009|19:26] C:\Program Files\Fichiers communs\PocketSoft
[23/10/2008|11:27] C:\Program Files\Fichiers communs\Real
[13/02/2009|16:15] C:\Program Files\Fichiers communs\Sandlot Shared
[15/11/2005|04:24] C:\Program Files\Fichiers communs\Services
[02/01/2006|23:43] C:\Program Files\Fichiers communs\Sonic Shared
[15/11/2005|04:24] C:\Program Files\Fichiers communs\SpeechEngines
[02/01/2006|23:43] C:\Program Files\Fichiers communs\SureThing Shared
[21/07/2009|13:53] C:\Program Files\Fichiers communs\SWF Studio
[20/09/2008|12:51] C:\Program Files\Fichiers communs\Symantec Shared
[21/09/2008|20:04] C:\Program Files\Fichiers communs\System
[02/01/2006|23:44] C:\Program Files\Fichiers communs\TiVo Shared
[17/12/2008|18:27] C:\Program Files\Fichiers communs\Windows Live
[20/09/2008|13:22] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[23/10/2008|11:27] C:\Program Files\Fichiers communs\xing shared

--------------------\\ Process

( 71 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-08-30 19:53:47
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 26

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:69][D:9]-> C:\DOCUME~1\HP_ADM~1\LOCALS~1\Temp
[F:91][D:0]-> C:\DOCUME~1\HP_ADM~1\Cookies
[F:1514][D:4]-> C:\DOCUME~1\HP_ADM~1\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 24/07/2009|18:22 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 25/07/2009|19:06 - Option : [2]
3 - "C:\Lop SD\LopR_3.txt" - 30/08/2009|18:40 - Option : [1]
4 - "C:\Lop SD\LopR_4.txt" - 30/08/2009|19:55 - Option : [2]

--------------------\\ Fin du rapport a 19:55:01
0
Réponse 7 / 22
Destrio5 Messages postés 85985 Date d'inscription dimanche 11 juillet 2010 Statut Modérateur Dernière intervention 17 février 2023 10 290
30 août 2009 à 19:58
Bien.

---> Télécharge Malwarebytes' Anti-Malware (MBAM) sur ton Bureau.
---> Double-clique sur le fichier téléchargé pour lancer le processus d'installation.
---> Dans l'onglet Mise à jour, clique sur le bouton Recherche de mise à jour : si le pare-feu demande l'autorisation à MBAM de se connecter à Internet, accepte.
---> Une fois la mise à jour terminée, rends-toi dans l'onglet Recherche.
---> Sélectionne Exécuter un examen rapide.
---> Clique sur Rechercher. L'analyse démarre.

A la fin de l'analyse, un message s'affiche :

L'examen s'est terminé normalement. Cliquez sur 'Afficher les résultats' pour afficher tous les objets trouvés.

---> Clique sur OK pour poursuivre. Si MBAM n'a rien trouvé, il te le dira aussi.
---> Ferme tes navigateurs.
Si des malwares ont été détectés, clique sur Afficher les résultats.
---> Sélectionne tout (ou laisse coché) et clique sur Supprimer la sélection, MBAM va détruire les fichiers et clés de registre infectés et en mettre une copie dans la quarantaine.
---> MBAM va ouvrir le Bloc-notes et y copier le rapport d'analyse. Copie-colle ce rapport dans ta prochaine réponse.
0
Réponse 8 / 22
fullmetal-dav Messages postés 357 Date d'inscription mardi 19 février 2008 Statut Membre Dernière intervention 16 février 2017 28
31 août 2009 à 19:38
salut alors j'ai fait comme tu m'a dit mais quand le bloc note s'est affiché ben mon ordi a redémarrer et donc je n'arrive plus à retrouver le texte

je sais que 17éléments ont été supprimés par contre
0
Réponse 9 / 22
Destrio5 Messages postés 85985 Date d'inscription dimanche 11 juillet 2010 Statut Modérateur Dernière intervention 17 février 2023 10 290
31 août 2009 à 19:41
Regarde dans l'onglet Rapports/Logs de MBAM.
0
Réponse 10 / 22
fullmetal-dav Messages postés 357 Date d'inscription mardi 19 février 2008 Statut Membre Dernière intervention 16 février 2017 28
31 août 2009 à 19:41
ha oui le voilà

Malwarebytes' Anti-Malware 1.40
Version de la base de données: 2722
Windows 5.1.2600 Service Pack 3

31/08/2009 19:30:36
mbam-log-2009-08-31 (19-30-36).txt

Type de recherche: Examen rapide
Eléments examinés: 124104
Temps écoulé: 22 minute(s), 24 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 11
Valeur(s) du Registre infectée(s): 1
Elément(s) de données du Registre infecté(s): 2
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 8

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\oberontb.band (Adware.Gamesbar) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{ad76633e-e50d-4844-9e7f-4dfbc7c18467} (Adware.Gamesbar) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{daa37aad-f156-4c2c-ac48-3c22ef92ae2f} (Adware.Gamesbar) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{6f282b65-56bf-4bd1-a8b2-a4449a05863d} (Adware.Gamesbar) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{6f282b65-56bf-4bd1-a8b2-a4449a05863d} (Adware.Gamesbar) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{cb0d163c-e9f4-4236-9496-0597e24b23a5} (Adware.Gamesbar) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{cb0d163c-e9f4-4236-9496-0597e24b23a5} (Adware.Gamesbar) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{cb0d163c-e9f4-4236-9496-0597e24b23a5} (Adware.Gamesbar) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\oberontb.band.1 (Adware.Gamesbar) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1a93c934-025b-4c3a-b38e-9654a7003239} (Adware.Gamesbar) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{1a93c934-025b-4c3a-b38e-9654a7003239} (Adware.Gamesbar) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{6f282b65-56bf-4bd1-a8b2-a4449a05863d} (Adware.Gamesbar) -> Quarantined and deleted successfully.

Elément(s) de données du Registre infecté(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
C:\Documents and Settings\Ma4-Da4Me-X3\Local Settings\Application Data\dyndbol_navps.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\Ma4-Da4Me-X3\Local Settings\Application Data\dyndbol_nav.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\Ma4-Da4Me-X3\Local Settings\Application Data\dyndbol.dat (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Documents and Settings\Ma4-Da4Me-X3\Local Settings\Application Data\dyndbol.exe (Adware.Navipromo.H) -> Quarantined and deleted successfully.
C:\Program Files\GamesBar\oberontb.dll (Adware.Gamesbar) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ovfsthnpteoqommqhbscwfwqlpdccllsdkmvng.dat (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ovfsthbthruncklsosrnfbcdduiiubwvdighnd.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ovfsthkdaaxjeoydscysigkhxltyawxorqfkst.dll (Trojan.Agent) -> Quarantined and deleted successfully.
0
Réponse 11 / 22
Destrio5 Messages postés 85985 Date d'inscription dimanche 11 juillet 2010 Statut Modérateur Dernière intervention 17 février 2023 10 290
31 août 2009 à 19:44
--> Relance MBAM, va dans Quarantaine et supprime tout.

--> Désinstalle les programmes suivants :
- J2SE Runtime Environment 5.0 Update 6
- Java(TM) 6 Update 13
- Java(TM) 6 Update 7

--> Mets à jour Java.

--> Refais un scan RSIT et poste le rapport log.
0
Réponse 12 / 22
fullmetal-dav Messages postés 357 Date d'inscription mardi 19 février 2008 Statut Membre Dernière intervention 16 février 2017 28
31 août 2009 à 19:54
ok j'ai désinstalle

Logfile of random's system information tool 1.06 (written by random/random)
Run by David at 2009-08-31 19:53:15
Microsoft Windows XP Professionnel Service Pack 3
System drive C: has 174 GB (75%) free of 231 GB
Total RAM: 1022 MB (36% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:53:27, on 31/08/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\windows\System32\smss.exe
C:\windows\system32\winlogon.exe
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\svchost.exe
C:\windows\System32\svchost.exe
C:\windows\system32\svchost.exe
C:\windows\system32\spoolsv.exe
C:\windows\Explorer.EXE
C:\windows\RTHDCPL.EXE
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe
C:\Program Files\HP DigitalMedia Archive\DMAScheduler.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\McAfee\Common Framework\UdaterUI.exe
C:\windows\system32\rundll32.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\WINDOWS\PixArt\PAC207\Monitor.exe
C:\Program Files\Windows Live\Family Safety\fsui.exe
C:\Program Files\McAfee\Common Framework\McTray.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\windows\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Hamachi\hamachi.exe
C:\Documents and Settings\David\Application Data\Microsoft\Notification de cadeaux MSN\lsnfier.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Fichiers communs\InterVideo\DeviceService\DevSvc.exe
C:\windows\system32\cisvc.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Windows Live\Family Safety\fsssvc.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe
C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe
C:\windows\system32\nvsvc32.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\windows\system32\svchost.exe
C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology Drivers\Elservice.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\HP\KBD\KBD.EXE
c:\windows\system\hpsysdrv.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
C:\windows\system32\cidaemon.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Documents and Settings\David\Mes documents\Téléchargements\RSIT.exe
C:\Program Files\trend micro\David.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://fr.search.yahoo.com/?fr=cb-hp06
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://fr.search.yahoo.com/?fr=cb-hp06
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://mystart.incredimail.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://fr.search.yahoo.com/?fr=cb-hp06
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.incredimail.com/en/thankyou?tag=page_app_welcome&lang=12&version=5853800&setup_id=12000002&aff_id=102&addon=incredimail
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
R3 - URLSearchHook: (no name) - {EEE6C35D-6118-11DC-9C72-001320C79847} - (no file)
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Windows Live Family Safety Browser Helper - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\McAfee\VirusScan Enterprise\scriptcl.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll
O2 - BHO: myBabylon English Toolbar - {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} - C:\Program Files\myBabylon_English\tbmyBa.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O2 - BHO: MSN Toolbar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\MSN\Toolbar\3.0.0621.0\msneshellx.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\YTSingleInstance.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O3 - Toolbar: MSN Toolbar - {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - C:\Program Files\MSN\Toolbar\3.0.0621.0\msneshellx.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O3 - Toolbar: myBabylon English Toolbar - {b2e293ee-fd7e-4c71-a714-5f4750d8d7b7} - C:\Program Files\myBabylon_English\tbmyBa.dll
O4 - HKLM\..\Run: [ftutil2] rundll32.exe ftutil2.dll,SetWriteCacheMode
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect
O4 - HKLM\..\Run: [DMAScheduler] "c:\Program Files\HP DigitalMedia Archive\DMAScheduler.exe"
O4 - HKLM\..\Run: [HPBootOp] "C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe" /run
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [ShStatEXE] "C:\Program Files\McAfee\VirusScan Enterprise\SHSTAT.EXE" /STANDALONE
O4 - HKLM\..\Run: [McAfeeUpdaterUI] "C:\Program Files\McAfee\Common Framework\UdaterUI.exe" /StartedFromRunKey
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [Monitor] C:\WINDOWS\PixArt\PAC207\Monitor.exe
O4 - HKLM\..\Run: [fssui] "C:\Program Files\Windows Live\Family Safety\fsui.exe" -autorun
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\windows\system32\ctfmon.exe
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User 'Default user')
O4 - .DEFAULT User Startup: Pin.lnk = C:\hp\bin\CLOAKER.EXE (User 'Default user')
O4 - .DEFAULT User Startup: PinMcLnk.lnk = C:\hp\bin\cloaker.exe (User 'Default user')
O4 - Startup: hamachi.lnk = C:\Program Files\Hamachi\hamachi.exe
O4 - Startup: Notification de cadeaux MSN.lnk = C:\Documents and Settings\David\Application Data\Microsoft\Notification de cadeaux MSN\lsnfier.exe
O4 - Startup: Pin.lnk = C:\hp\bin\CLOAKER.EXE
O4 - Startup: PinMcLnk.lnk = C:\hp\bin\cloaker.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\windows\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\windows\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper200711281.dll
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab57213.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://jeuxentelechargement.orange.fr/Gameshell/GameHost/1.0/OberonGameHost.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E6187999-9FEC-46A1-A20F-F4CA977D5643} (ZoneChess Object) - http://messenger.zone.msn.com/binary/Chess.cab57176.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O16 - DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} (GoPetsWeb Control) - https://secure.gopetslive.com/dev/GoPetsWeb.cab
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: Capture Device Service - InterVideo Inc. - C:\Program Files\Fichiers communs\InterVideo\DeviceService\DevSvc.exe
O23 - Service: Intel(R) Quick Resume technology (ELService) - Intel Corporation - C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology Drivers\Elservice.exe
O23 - Service: Service Google Update (gupdate1c9b2b4a41951f0) (gupdate1c9b2b4a41951f0) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: McAfee Framework Service (McAfeeFramework) - McAfee, Inc. - C:\Program Files\McAfee\Common Framework\FrameworkService.exe
O23 - Service: McAfee McShield (McShield) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe
O23 - Service: McAfee Task Manager (McTaskManager) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\windows\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
0
Réponse 13 / 22
Destrio5 Messages postés 85985 Date d'inscription dimanche 11 juillet 2010 Statut Modérateur Dernière intervention 17 février 2023 10 290
31 août 2009 à 19:55
Plus de souci ?
0
Réponse 14 / 22
fullmetal-dav Messages postés 357 Date d'inscription mardi 19 février 2008 Statut Membre Dernière intervention 16 février 2017 28
1 sept. 2009 à 18:36
et bien non plus aucun^^

je n'ai plus de pub CID qui s'affiche pour couronner le tout

merci beaucoup à toi
tu es l'un des inscrit qui répond le plus vite et de la manière la plus efficace!

merci !!
0
Réponse 15 / 22
Destrio5 Messages postés 85985 Date d'inscription dimanche 11 juillet 2010 Statut Modérateur Dernière intervention 17 février 2023 10 290
2 sept. 2009 à 02:52
1/

---> Supprime ce dossier : C:\Program Files\Cicle Developement.

---> Désinstalle HijackThis.

---> Télécharge ToolsCleaner2 sur ton Bureau.
* Double-clique sur ToolsCleaner2.exe pour le lancer.
* Clique sur Recherche et laisse le scan agir.
* Clique sur Suppression pour finaliser.
* Tu peux, si tu le souhaites, te servir des Options Facultatives.
* Clique sur Quitter pour obtenir le rapport.
* Poste le rapport (TCleaner.txt) qui se trouve à la racine de ton disque dur (C:\).


2/

---> Télécharge et installe CCleaner Slim.
* Lance-le. Va dans Options puis Avancé et décoche la case Effacer uniquement les fichiers etc....
* Va dans Nettoyeur, choisis Analyse. Une fois terminé, lance le nettoyage.


3/

---> Il est nécessaire de désactiver puis réactiver la restauration système pour la purger.


==Prévention==

Conserve MBAM. Il te servira à scanner les fichiers douteux en complément de l'antivirus et scanne le disque dur régulièrement.

Vérifie que les mises à jour automatiques sont bien activées (Menu Démarrer, clique droit sur Poste de travail, Propriétés, onglet Mises à jour automatiques).

Par rapport au P2P : Lien

Voici un dossier complet (A lire avec Adobe Reader ou Foxit Reader) : Lien


Sois plus vigilant(e) sur Internet ;)
0
Réponse 16 / 22
fullmetal-dav Messages postés 357 Date d'inscription mardi 19 février 2008 Statut Membre Dernière intervention 16 février 2017 28
2 sept. 2009 à 12:57
voici pour le rapport

[ Rapport ToolsCleaner version 2.3.10 (par A.Rothstein & dj QUIOU) ]

--> Recherche:

C:\lopR.txt: trouvé !
C:\Lop SD: trouvé !
C:\Rsit: trouvé !
C:\Documents and Settings\HP_Administrateur\Mes documents\Téléchargements\LopSD.exe: trouvé !
C:\Lop SD\catchme.exe: trouvé !
C:\Lop SD\catchme.log: trouvé !
C:\Program Files\trend micro\HijackThis.exe: trouvé !
C:\Program Files\trend micro\hijackthis.log: trouvé !

---------------------------------
--> Suppression:

C:\Documents and Settings\HP_Administrateur\Mes documents\Téléchargements\LopSD.exe: supprimé !
C:\Lop SD\catchme.exe: supprimé !
C:\Program Files\trend micro\HijackThis.exe: supprimé !
C:\lopR.txt: supprimé !
C:\Lop SD\catchme.log: supprimé !
C:\Program Files\trend micro\hijackthis.log: supprimé !
C:\Lop SD: supprimé !
C:\Rsit: supprimé !
0
Réponse 17 / 22
fullmetal-dav Messages postés 357 Date d'inscription mardi 19 février 2008 Statut Membre Dernière intervention 16 février 2017 28
2 sept. 2009 à 13:02
oui je vais essayer d'être plus prudent mais aussi ma soeur me soule en téléchargeant des jeux gratuit pourri de games bar là


aussi avec emulesi on ne télécharge pas avec il ne peux rien arriver comme virus?
0
Réponse 18 / 22
Destrio5 Messages postés 85985 Date d'inscription dimanche 11 juillet 2010 Statut Modérateur Dernière intervention 17 février 2023 10 290
2 sept. 2009 à 15:13
Tu peux supprimer ToolsCleaner.
0
Réponse 19 / 22
fullmetal-dav Messages postés 357 Date d'inscription mardi 19 février 2008 Statut Membre Dernière intervention 16 février 2017 28
3 sept. 2009 à 12:19
ok c'est fait
0
Réponse 20 / 22
fullmetal-dav Messages postés 357 Date d'inscription mardi 19 février 2008 Statut Membre Dernière intervention 16 février 2017 28
4 sept. 2009 à 12:49
he mon antivirus à été périmé c'était mc afee

je l'ai changer donc par avast c'est un bon antivirus?
0