fenêtre CID : solution personnalisée ou solution générale ?
Forum Sécurité - Virus : fenêtre CID : solution personnalisée ou solution générale ?
Bonjour
j'ai posté il y a quelques jours ce post :
http://www.infos-du-net.com/forum/275827-11-fenetres
car j'essaie d'aider mon frère chez qui des fenetres de pub s'installe sans arrêt.
J'ai regarder sur ce forum ce que je devais faire car de nombreux sujets se rapportaient au mieux, mais je lisais à chaque fois d'attendre l'avis d'un expert avant de faire quoi que ce soit.
C'est la raison pour laquelle j'ai poste ma question.
Mais la seule reponse que j'ai eu, c'est quelqu'un qui me disait de regarder les questions et reponses dejà données sur ce sujet...
Je n'y comprends plus rien : dois-je me débrouiller seule ou demander l'aide de quelqu'un pour analyser le rapport poster dans le sujet cite ci-dessus ?
Merci pour votre aide
Franciane
Bonjour 
effectivement ton sujet à été oublié , et pour répondre à ta question , NON il ne faut pas se débrouiller seul , tu pourrais supprimer ce qu'il ne faut pas et ne pas voir la cause du problème
Tu es infectée par LOP :
Télécharge Lop S&D.exe sur ton bureau
- Double-clique dessus pour lancer l'installation
- Puis double-clique sur le raccourci Lop S&D présent sur ton bureau
- Séléctionne la langue souhaitée , puis choisis l'Option 1 ( Recherche )
- Patiente jusqu'à la fin du scan
- Poste le rapport généré ( C:\lopR.txt )
( Si le Bureau ne réapparait pas presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide )
- Mode Sans Echec -
Répondre à Eric_71
Merci beaucoup Eric puor ta réponse détaillée et précise.
Voici le résultat du rapoprt :
-----------------------------[ Lop S&D 2.0.1 ]---------------------------
Microsoft Windows XP [version 5.1.2600] [ OS : Windows_NT ]
"C:\Program Files\Lop SD"
[ 02/01/2008 | 17:42:24,00 ] [ UNKNOWN ]
-------------[ Listing des dossiers dans Application Data ]------------
C:\Documents and Settings\Administrateur\APPLIC~1\desktop.ini
C:\Documents and Settings\Administrateur\APPLIC~1\Microsoft
C:\Documents and Settings\All Users\APPLIC~1\two setup mode load
C:\Documents and Settings\All Users\APPLIC~1\Logishrd
C:\Documents and Settings\All Users\APPLIC~1\Logitech
C:\Documents and Settings\All Users\APPLIC~1\Microsoft
C:\Documents and Settings\All Users\APPLIC~1\WLInstaller
C:\Documents and Settings\All Users\APPLIC~1\Messenger Plus!
C:\Documents and Settings\All Users\APPLIC~1\SBT
C:\Documents and Settings\All Users\APPLIC~1\F-Secure
C:\Documents and Settings\All Users\APPLIC~1\fssg
C:\Documents and Settings\All Users\APPLIC~1\MSN6
C:\Documents and Settings\All Users\APPLIC~1\Google
C:\Documents and Settings\All Users\APPLIC~1\desktop.ini
C:\Documents and Settings\All Users\APPLIC~1\Adobe
C:\Documents and Settings\Default User\APPLIC~1\desktop.ini
C:\Documents and Settings\Default User\APPLIC~1\Microsoft
C:\Documents and Settings\LocalService\APPLIC~1\Microsoft
C:\Documents and Settings\MARINE ET QUENTIN\APPLIC~1\DumbBatFour
C:\Documents and Settings\MARINE ET QUENTIN\APPLIC~1\OpenOffice.org2
C:\Documents and Settings\MARINE ET QUENTIN\APPLIC~1\Microsoft
C:\Documents and Settings\MARINE ET QUENTIN\APPLIC~1\Lavasoft
C:\Documents and Settings\MARINE ET QUENTIN\APPLIC~1\MSN6
C:\Documents and Settings\MARINE ET QUENTIN\APPLIC~1\AdobeUM
C:\Documents and Settings\MARINE ET QUENTIN\APPLIC~1\F-Secure
C:\Documents and Settings\MARINE ET QUENTIN\APPLIC~1\Image Zone Express
C:\Documents and Settings\MARINE ET QUENTIN\APPLIC~1\Macromedia
C:\Documents and Settings\MARINE ET QUENTIN\APPLIC~1\Real
C:\Documents and Settings\MARINE ET QUENTIN\APPLIC~1\Adobe
C:\Documents and Settings\MARINE ET QUENTIN\APPLIC~1\Google
C:\Documents and Settings\MARINE ET QUENTIN\APPLIC~1\Identities
C:\Documents and Settings\MARINE ET QUENTIN\APPLIC~1\desktop.ini
C:\Documents and Settings\NetworkService\APPLIC~1\Microsoft
C:\Documents and Settings\Proprietaire\APPLIC~1\DumbBatFour
C:\Documents and Settings\Proprietaire\APPLIC~1\Microsoft
C:\Documents and Settings\Proprietaire\APPLIC~1\U3
C:\Documents and Settings\Proprietaire\APPLIC~1\F-Secure
C:\Documents and Settings\Proprietaire\APPLIC~1\AdobeUM
C:\Documents and Settings\Proprietaire\APPLIC~1\Microsoft Web Folders
C:\Documents and Settings\Proprietaire\APPLIC~1\Macromedia
C:\Documents and Settings\Proprietaire\APPLIC~1\Image Zone Express
C:\Documents and Settings\Proprietaire\APPLIC~1\Adobe
C:\Documents and Settings\Proprietaire\APPLIC~1\MSN6
C:\Documents and Settings\Proprietaire\APPLIC~1\Google
C:\Documents and Settings\Proprietaire\APPLIC~1\Mozilla
C:\Documents and Settings\Proprietaire\APPLIC~1\Real
C:\Documents and Settings\Proprietaire\APPLIC~1\desktop.ini
C:\Documents and Settings\Proprietaire\APPLIC~1\Lavasoft
C:\Documents and Settings\Proprietaire\APPLIC~1\Identities
----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------
[02/01/2008 17:00][--ah-----]C:\WINDOWS\tasks\AB6206CA9185B7BE.job
[02/01/2008 17:00][--ah-----]C:\WINDOWS\tasks\AF3BCC6891947E30.job
[02/01/2008 16:27][--ah-----]C:\WINDOWS\tasks\SA.DAT
[24/04/2003 20:00][-r-h-----]C:\WINDOWS\tasks\desktop.ini
---------------[ Listing des dossiers dans C:\Program Files ]--------------
C:\Program Files\Adobe
C:\Program Files\ADSL Drivers
C:\Program Files\Alwil Software
C:\Program Files\Analog Devices
C:\Program Files\Ashampoo
C:\Program Files\CCleaner
C:\Program Files\ComPlus Applications
C:\Program Files\DivX
C:\Program Files\DumbBatFour
C:\Program Files\Fichiers communs
C:\Program Files\Google
C:\Program Files\HP
C:\Program Files\Internet Explorer
C:\Program Files\Lavasoft
C:\Program Files\Logitech
C:\Program Files\Lop SD
C:\Program Files\Messenger
C:\Program Files\Messenger Plus! Live
C:\Program Files\Microsoft Calculatrice Plus
C:\Program Files\Microsoft CAPICOM 2.1.0.2
C:\Program Files\microsoft frontpage
C:\Program Files\Microsoft Office
C:\Program Files\Microsoft Visual Studio
C:\Program Files\Movie Maker
C:\Program Files\Mozilla Firefox
C:\Program Files\MSN
C:\Program Files\MSN Gaming Zone
C:\Program Files\MSXML 4.0
C:\Program Files\NetMeeting
C:\Program Files\OpenOffice.org 2.0
C:\Program Files\Outlook Express
C:\Program Files\PDFCreator
C:\Program Files\Real
C:\Program Files\Services en ligne
C:\Program Files\Snapshot Viewer
C:\Program Files\Tele2
C:\Program Files\Trend Micro
C:\Program Files\Winamp
C:\Program Files\Windows Live
C:\Program Files\Windows Media Player
C:\Program Files\Windows NT
C:\Program Files\xerox
------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------
C:\Program Files\Fichiers communs\Adobe
C:\Program Files\Fichiers communs\Designer
C:\Program Files\Fichiers communs\HP
C:\Program Files\Fichiers communs\InstallShield
C:\Program Files\Fichiers communs\LogiShrd
C:\Program Files\Fichiers communs\Microsoft Shared
C:\Program Files\Fichiers communs\MSSoap
C:\Program Files\Fichiers communs\ODBC
C:\Program Files\Fichiers communs\Real
C:\Program Files\Fichiers communs\Services
C:\Program Files\Fichiers communs\SpeechEngines
C:\Program Files\Fichiers communs\Symantec Shared
C:\Program Files\Fichiers communs\System
C:\Program Files\Fichiers communs\xing shared
----------------------[ Recherche avec S_Lop ]---------------------
Aucun fichier / dossier Lop trouvé ! )
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
C:\WINDOWS\Tasks\AB6206CA9185B7BE.job
C:\WINDOWS\Tasks\AF3BCC6891947E30.job
----------------------[ Verification du Registre ]----------------------
..... OK !
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts MODIFIE
127.0.0.1 localhost
127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD
127.0.0.1 download.errorsafe.com ## added by CiD
127.0.0.1 download.systemdoctor.com ## added by CiD
127.0.0.1 download.winantispyware.com ## added by CiD
127.0.0.1 download.windrivecleaner.com ## added by CiD
127.0.0.1 download.winfixer.com ## added by CiD
127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 es.winantivirus.com ## added by CiD
127.0.0.1 fr.winantivirus.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 go.winantivirus.com ## added by CiD
127.0.0.1 hk.winantivirus.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 instlog.winantivirus.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 kb.winantivirus.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 secure.winantivirus.com ## added by CiD
127.0.0.1 support.winantivirus.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 ulog.winantivirus.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 utils.winantivirus.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winantivirus.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 www.drivecleaner.com ## added by CiD
127.0.0.1 www.errorprotector.com ## added by CiD
127.0.0.1 www.errorsafe.com ## added by CiD
127.0.0.1 www.systemdoctor.com ## added by CiD
127.0.0.1 www.utils.winfixer.com ## added by CiD
127.0.0.1 www.win-anti-virus-pro.com ## added by CiD
127.0.0.1 www.win-virus-pro.com ## added by CiD
127.0.0.1 www.winantispam.com ## added by CiD
127.0.0.1 www.winantispy.com ## added by CiD
127.0.0.1 www.winantispyware.com ## added by CiD
127.0.0.1 www.winantivirus.com ## added by CiD
127.0.0.1 www.winantiviruspro.com ## added by CiD
127.0.0.1 www.windrivecleaner.com ## added by CiD
127.0.0.1 www.windrivesafe.com ## added by CiD
127.0.0.1 www.winfixer.com ## added by CiD
127.0.0.1 www.winfixer2006.com ## added by CiD
127.0.0.1 www.winsoftware.com ## added by CiD
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-01-02 17:43:38
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden files ...
scan completed successfully
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
Aucune autre infection trouvée !
--------------------[ Fin du rapport a 17:43:48,35 ]----------------------
Re ,
Télécharge OTMoveIt <- ici
Sauvegarde-le sur ton Bureau
Séléctionne l'encadré ci-dessous , puis Clique droit , puis Copier :
C:\Documents and Settings\All Users\APPLIC~1\two setup mode load
|
Lance maintenant OTMoveIt en double cliquant sur OTMoveIt.exe
Deux cadres apparaissent , clique droit sur le cadre de gauche , puis Coller
Enfin , clique sur MoveIt!
Il est possible qu'il te demande de redemarrer , accepte en cliquant sur YES
Poste le rapport généré ( C:\_OTMoveIt\MovedFiles\ <~~ ici , la date de création ! )
-------------------------------------------------------------------------
Relance Lop S&D
- Choisis cette fois ci l'Option 2 ( Suppression )
- Ne ferme pas la fenêtre lors de la suppression !
- Poste le rapport généré ( C:\lopR.txt )
( Si le Bureau ne réapparît pas presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide )
Bonsoir
Désolée pour ma réponse un peu tardive.
Et encore merci pour votre aide
Voici donc le résultat de OtMoveIt :
Folder cleanup failed. C:\Documents and Settings\All Users\APPLIC~1\two setup mode load scheduled to be deleted on reboot.
C:\Documents and Settings\MARINE ET QUENTIN\APPLIC~1\DumbBatFour moved successfully.
C:\Documents and Settings\Proprietaire\APPLIC~1\DumbBatFour moved successfully.
C:\Program Files\DumbBatFour moved successfully.
Created on 01/10/2008 18:25:38
Et le LopR.txt
-----------------------------[ Lop S&D 2.0.1 ]---------------------------
Microsoft Windows XP [version 5.1.2600] [ OS : Windows_NT ]
"C:\Program Files\Lop SD"
[ 10/01/2008 | 18:32:44,67 ] [ UNKNOWN ]
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////
Restauré! - Fichier Hosts
//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
-------------[ Listing des dossiers dans Application Data ]------------
C:\Documents and Settings\Administrateur\APPLIC~1\desktop.ini
C:\Documents and Settings\Administrateur\APPLIC~1\Microsoft
C:\Documents and Settings\All Users\APPLIC~1\two setup mode load
C:\Documents and Settings\All Users\APPLIC~1\Logishrd
C:\Documents and Settings\All Users\APPLIC~1\Logitech
C:\Documents and Settings\All Users\APPLIC~1\Microsoft
C:\Documents and Settings\All Users\APPLIC~1\WLInstaller
C:\Documents and Settings\All Users\APPLIC~1\Messenger Plus!
C:\Documents and Settings\All Users\APPLIC~1\SBT
C:\Documents and Settings\All Users\APPLIC~1\F-Secure
C:\Documents and Settings\All Users\APPLIC~1\fssg
C:\Documents and Settings\All Users\APPLIC~1\MSN6
C:\Documents and Settings\All Users\APPLIC~1\Google
C:\Documents and Settings\All Users\APPLIC~1\desktop.ini
C:\Documents and Settings\All Users\APPLIC~1\Adobe
C:\Documents and Settings\Default User\APPLIC~1\desktop.ini
C:\Documents and Settings\Default User\APPLIC~1\Microsoft
C:\Documents and Settings\LocalService\APPLIC~1\Microsoft
C:\Documents and Settings\MARINE ET QUENTIN\APPLIC~1\OpenOffice.org2
C:\Documents and Settings\MARINE ET QUENTIN\APPLIC~1\Microsoft
C:\Documents and Settings\MARINE ET QUENTIN\APPLIC~1\Lavasoft
C:\Documents and Settings\MARINE ET QUENTIN\APPLIC~1\MSN6
C:\Documents and Settings\MARINE ET QUENTIN\APPLIC~1\AdobeUM
C:\Documents and Settings\MARINE ET QUENTIN\APPLIC~1\F-Secure
C:\Documents and Settings\MARINE ET QUENTIN\APPLIC~1\Image Zone Express
C:\Documents and Settings\MARINE ET QUENTIN\APPLIC~1\Macromedia
C:\Documents and Settings\MARINE ET QUENTIN\APPLIC~1\Real
C:\Documents and Settings\MARINE ET QUENTIN\APPLIC~1\Adobe
C:\Documents and Settings\MARINE ET QUENTIN\APPLIC~1\Google
C:\Documents and Settings\MARINE ET QUENTIN\APPLIC~1\Identities
C:\Documents and Settings\MARINE ET QUENTIN\APPLIC~1\desktop.ini
C:\Documents and Settings\NetworkService\APPLIC~1\Microsoft
C:\Documents and Settings\Proprietaire\APPLIC~1\Microsoft
C:\Documents and Settings\Proprietaire\APPLIC~1\U3
C:\Documents and Settings\Proprietaire\APPLIC~1\F-Secure
C:\Documents and Settings\Proprietaire\APPLIC~1\AdobeUM
C:\Documents and Settings\Proprietaire\APPLIC~1\Microsoft Web Folders
C:\Documents and Settings\Proprietaire\APPLIC~1\Macromedia
C:\Documents and Settings\Proprietaire\APPLIC~1\Image Zone Express
C:\Documents and Settings\Proprietaire\APPLIC~1\Adobe
C:\Documents and Settings\Proprietaire\APPLIC~1\MSN6
C:\Documents and Settings\Proprietaire\APPLIC~1\Google
C:\Documents and Settings\Proprietaire\APPLIC~1\Mozilla
C:\Documents and Settings\Proprietaire\APPLIC~1\Real
C:\Documents and Settings\Proprietaire\APPLIC~1\desktop.ini
C:\Documents and Settings\Proprietaire\APPLIC~1\Lavasoft
C:\Documents and Settings\Proprietaire\APPLIC~1\Identities
----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------
[10/01/2008 18:00][--ah-----]C:\WINDOWS\tasks\B0E0ECBC91A79AEC.job
[10/01/2008 18:00][--ah-----]C:\WINDOWS\tasks\AFDE6D02918A1E32.job
[10/01/2008 18:27][--ah-----]C:\WINDOWS\tasks\SA.DAT
[24/04/2003 20:00][-r-h-----]C:\WINDOWS\tasks\desktop.ini
---------------[ Listing des dossiers dans C:\Program Files ]--------------
C:\Program Files\Adobe
C:\Program Files\ADSL Drivers
C:\Program Files\Alwil Software
C:\Program Files\Analog Devices
C:\Program Files\Ashampoo
C:\Program Files\CCleaner
C:\Program Files\ComPlus Applications
C:\Program Files\DivX
C:\Program Files\Fichiers communs
C:\Program Files\Google
C:\Program Files\HP
C:\Program Files\Internet Explorer
C:\Program Files\Lavasoft
C:\Program Files\Logitech
C:\Program Files\Lop SD
C:\Program Files\Messenger
C:\Program Files\Messenger Plus! Live
C:\Program Files\Microsoft Calculatrice Plus
C:\Program Files\Microsoft CAPICOM 2.1.0.2
C:\Program Files\microsoft frontpage
C:\Program Files\Microsoft Office
C:\Program Files\Microsoft Visual Studio
C:\Program Files\Movie Maker
C:\Program Files\Mozilla Firefox
C:\Program Files\MSN
C:\Program Files\MSN Gaming Zone
C:\Program Files\MSXML 4.0
C:\Program Files\NetMeeting
C:\Program Files\OpenOffice.org 2.0
C:\Program Files\Outlook Express
C:\Program Files\PDFCreator
C:\Program Files\Real
C:\Program Files\Services en ligne
C:\Program Files\Snapshot Viewer
C:\Program Files\Tele2
C:\Program Files\Trend Micro
C:\Program Files\Winamp
C:\Program Files\Windows Live
C:\Program Files\Windows Media Player
C:\Program Files\Windows NT
C:\Program Files\xerox
------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------
C:\Program Files\Fichiers communs\Adobe
C:\Program Files\Fichiers communs\Designer
C:\Program Files\Fichiers communs\HP
C:\Program Files\Fichiers communs\InstallShield
C:\Program Files\Fichiers communs\LogiShrd
C:\Program Files\Fichiers communs\Microsoft Shared
C:\Program Files\Fichiers communs\MSSoap
C:\Program Files\Fichiers communs\ODBC
C:\Program Files\Fichiers communs\Real
C:\Program Files\Fichiers communs\Services
C:\Program Files\Fichiers communs\SpeechEngines
C:\Program Files\Fichiers communs\Symantec Shared
C:\Program Files\Fichiers communs\System
C:\Program Files\Fichiers communs\xing shared
----------------------[ Recherche avec S_Lop ]---------------------
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
C:\WINDOWS\Tasks\AFDE6D02918A1E32.job
C:\WINDOWS\Tasks\B0E0ECBC91A79AEC.job
----------------------[ Verification du Registre ]----------------------
..... OK !
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts PROPRE
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-01-10 18:33:47
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden files ...
scan completed successfully
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
Aucune autre infection trouvée !
--------------------[ Fin du rapport a 18:33:55,92 ]----------------------
Bonjour
Suite à mon dernier rapport posté, il y a t il d'autres opérations à effectuer ?
merci
Bonjour
effectivement ça date un peu .. on va vérifier
Supprime ta version de Lop S&D , puis
Désactive tes protections résidentes ( Antivirus , ... ) tu les réactivera après le scan
Télécharge Lop S&D ![[:eric_71:17]](http://img.infos-du-net.com/forum/images/perso/17/eric_71.gif "[:eric_71:17]")
< ici
Double-clique dessus pour lancer l'installation
Puis double-clique sur le raccourci Lop S&D présent sur ton bureau
Séléctionne la langue souhaitée , puis choisis l'Option 1 ( Recherche )
Patiente jusqu'à la fin du scan
Poste le rapport généré ( C:\lopR.txt )
( Si le Bureau ne réapparait pas presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide )
Bonjour Eric
Voici le rapport :
-----------------------------[ Lop S&D 2.1.0 ]---------------------------
[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : Proprietaire ] [ "C:\Program Files\Lop SD" ]
[ 22/01/2008 | 18:51:14,50 ] [ PC : UNKNOWN ]
[ MAJ : 22-01-2008 | 1:40 ]
-------------[ Listing des dossiers dans Application Data ]------------
[08/09/2007|09:05] C:\DOCUME~1\ADMINI~1\APPLIC~1\.
[08/09/2007|09:05] C:\DOCUME~1\ADMINI~1\APPLIC~1\..
[08/09/2007|09:05] C:\DOCUME~1\ADMINI~1\APPLIC~1\desktop.ini
[13/01/2008|21:30] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[29/12/2007|17:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\.
[29/12/2007|17:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\..
[08/09/2007|08:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[08/09/2007|09:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[30/11/2007|19:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\F-Secure
[30/11/2007|19:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\fssg
[08/09/2007|10:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[29/12/2007|17:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logishrd
[29/12/2007|17:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logitech
[11/12/2007|21:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[29/12/2007|17:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[08/09/2007|12:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN6
[11/12/2007|10:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBT
[10/01/2008|18:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\two setup mode load
[13/12/2007|16:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[08/09/2007|09:05] C:\DOCUME~1\DEFAUL~1\APPLIC~1\.
[08/09/2007|09:05] C:\DOCUME~1\DEFAUL~1\APPLIC~1\..
[08/09/2007|09:05] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[08/09/2007|08:12] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[08/09/2007|08:16] C:\DOCUME~1\LOCALS~1\APPLIC~1\.
[08/09/2007|08:16] C:\DOCUME~1\LOCALS~1\APPLIC~1\..
[08/09/2007|08:16] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[27/12/2007|16:07] C:\DOCUME~1\MARINE~1\APPLIC~1\.
[27/12/2007|16:07] C:\DOCUME~1\MARINE~1\APPLIC~1\..
[22/09/2007|08:06] C:\DOCUME~1\MARINE~1\APPLIC~1\Adobe
[03/12/2007|18:42] C:\DOCUME~1\MARINE~1\APPLIC~1\AdobeUM
[08/09/2007|09:05] C:\DOCUME~1\MARINE~1\APPLIC~1\desktop.ini
[30/11/2007|19:40] C:\DOCUME~1\MARINE~1\APPLIC~1\F-Secure
[08/09/2007|17:04] C:\DOCUME~1\MARINE~1\APPLIC~1\Google
[08/09/2007|10:41] C:\DOCUME~1\MARINE~1\APPLIC~1\Identities
[20/11/2007|12:29] C:\DOCUME~1\MARINE~1\APPLIC~1\Image Zone Express
[18/12/2007|18:05] C:\DOCUME~1\MARINE~1\APPLIC~1\Lavasoft
[02/11/2007|13:40] C:\DOCUME~1\MARINE~1\APPLIC~1\Macromedia
[18/01/2008|18:36] C:\DOCUME~1\MARINE~1\APPLIC~1\Microsoft
[16/12/2007|14:37] C:\DOCUME~1\MARINE~1\APPLIC~1\MSN6
[26/12/2007|14:19] C:\DOCUME~1\MARINE~1\APPLIC~1\OpenOffice.org2
[23/10/2007|19:39] C:\DOCUME~1\MARINE~1\APPLIC~1\Real
[08/09/2007|08:16] C:\DOCUME~1\NETWOR~1\APPLIC~1\.
[08/09/2007|08:16] C:\DOCUME~1\NETWOR~1\APPLIC~1\..
[08/09/2007|08:16] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[20/12/2007|20:42] C:\DOCUME~1\PROPRI~1\APPLIC~1\.
[20/12/2007|20:42] C:\DOCUME~1\PROPRI~1\APPLIC~1\..
[09/09/2007|08:28] C:\DOCUME~1\PROPRI~1\APPLIC~1\Adobe
[27/11/2007|15:29] C:\DOCUME~1\PROPRI~1\APPLIC~1\AdobeUM
[08/09/2007|09:05] C:\DOCUME~1\PROPRI~1\APPLIC~1\desktop.ini
[30/11/2007|19:28] C:\DOCUME~1\PROPRI~1\APPLIC~1\F-Secure
[08/09/2007|11:04] C:\DOCUME~1\PROPRI~1\APPLIC~1\Google
[08/09/2007|08:16] C:\DOCUME~1\PROPRI~1\APPLIC~1\Identities
[24/09/2007|19:19] C:\DOCUME~1\PROPRI~1\APPLIC~1\Image Zone Express
[08/09/2007|08:46] C:\DOCUME~1\PROPRI~1\APPLIC~1\Lavasoft
[18/10/2007|20:18] C:\DOCUME~1\PROPRI~1\APPLIC~1\Macromedia
[26/12/2007|18:03] C:\DOCUME~1\PROPRI~1\APPLIC~1\Microsoft
[01/11/2007|09:15] C:\DOCUME~1\PROPRI~1\APPLIC~1\Microsoft Web Folders
[08/09/2007|09:17] C:\DOCUME~1\PROPRI~1\APPLIC~1\Mozilla
[08/09/2007|12:29] C:\DOCUME~1\PROPRI~1\APPLIC~1\MSN6
[08/09/2007|09:14] C:\DOCUME~1\PROPRI~1\APPLIC~1\Real
[20/12/2007|21:25] C:\DOCUME~1\PROPRI~1\APPLIC~1\U3
----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------
[22/01/2008 18:00][--ah-----] C:\WINDOWS\tasks\B0E0ECBC91A79AEC.job [--288--]
[22/01/2008 18:00][--ah-----] C:\WINDOWS\tasks\AFDE6D02918A1E32.job [--298--]
[22/01/2008 09:37][--ah-----] C:\WINDOWS\tasks\SA.DAT [--6--]
[24/04/2003 20:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini [--65--]
---------------[ Listing des dossiers dans C:\Program Files ]--------------
[22/01/2008|18:51] C:\Program Files\Lop SD
[10/01/2008|18:25] C:\Program Files\..
[10/01/2008|18:25] C:\Program Files\.
[31/12/2007|10:53] C:\Program Files\Trend Micro
[29/12/2007|21:22] C:\Program Files\Messenger Plus! Live
[29/12/2007|17:36] C:\Program Files\Logitech
[28/12/2007|08:40] C:\Program Files\Ashampoo
[27/12/2007|15:22] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[27/12/2007|15:22] C:\Program Files\MSXML 4.0
[26/12/2007|10:38] C:\Program Files\InstallShield Installation Information
[26/12/2007|10:35] C:\Program Files\Fichiers communs
[16/12/2007|14:37] C:\Program Files\MSN
[12/12/2007|23:11] C:\Program Files\Internet Explorer
[11/12/2007|10:30] C:\Program Files\Microsoft Office
[11/12/2007|10:30] C:\Program Files\Snapshot Viewer
[11/12/2007|10:29] C:\Program Files\microsoft frontpage
[30/11/2007|19:23] C:\Program Files\Tele2
[23/11/2007|17:13] C:\Program Files\Windows Live
[17/11/2007|00:03] C:\Program Files\Messenger
[17/11/2007|00:02] C:\Program Files\Outlook Express
[15/11/2007|15:20] C:\Program Files\Windows Media Player
[15/11/2007|15:18] C:\Program Files\Movie Maker
[15/11/2007|15:16] C:\Program Files\NetMeeting
[15/11/2007|15:16] C:\Program Files\Windows NT
[01/11/2007|09:17] C:\Program Files\Microsoft Visual Studio
[18/09/2007|22:38] C:\Program Files\Winamp
[08/09/2007|11:11] C:\Program Files\WindowsUpdate
[08/09/2007|11:02] C:\Program Files\Google
[08/09/2007|10:47] C:\Program Files\ADSL Drivers
[08/09/2007|09:17] C:\Program Files\Mozilla Firefox
[08/09/2007|09:17] C:\Program Files\Alwil Software
[08/09/2007|09:16] C:\Program Files\CCleaner
[08/09/2007|09:16] C:\Program Files\OpenOffice.org 2.0
[08/09/2007|09:16] C:\Program Files\PDFCreator
[08/09/2007|09:13] C:\Program Files\Real
[08/09/2007|08:57] C:\Program Files\DivX
[08/09/2007|08:55] C:\Program Files\HP
[08/09/2007|08:52] C:\Program Files\Adobe
[08/09/2007|08:46] C:\Program Files\Microsoft Calculatrice Plus
[08/09/2007|08:45] C:\Program Files\Lavasoft
[08/09/2007|08:40] C:\Program Files\Analog Devices
[08/09/2007|08:16] C:\Program Files\Uninstall Information
[08/09/2007|08:12] C:\Program Files\xerox
[08/09/2007|08:11] C:\Program Files\Services en ligne
[08/09/2007|08:09] C:\Program Files\ComPlus Applications
[08/09/2007|08:09] C:\Program Files\MSN Gaming Zone
------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------
[29/12/2007|17:36] C:\Program Files\Fichiers communs\LogiShrd
[26/12/2007|10:35] C:\Program Files\Fichiers communs\..
[26/12/2007|10:35] C:\Program Files\Fichiers communs\.
[11/12/2007|10:31] C:\Program Files\Fichiers communs\Microsoft Shared
[11/12/2007|10:30] C:\Program Files\Fichiers communs\System
[23/11/2007|17:12] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[01/11/2007|09:17] C:\Program Files\Fichiers communs\Designer
[21/10/2007|18:21] C:\Program Files\Fichiers communs\Symantec Shared
[09/09/2007|08:28] C:\Program Files\Fichiers communs\Adobe
[08/09/2007|09:14] C:\Program Files\Fichiers communs\xing shared
[08/09/2007|09:14] C:\Program Files\Fichiers communs\Real
[08/09/2007|09:05] C:\Program Files\Fichiers communs\ODBC
[08/09/2007|09:05] C:\Program Files\Fichiers communs\SpeechEngines
[08/09/2007|08:55] C:\Program Files\Fichiers communs\HP
[08/09/2007|08:40] C:\Program Files\Fichiers communs\InstallShield
[08/09/2007|08:10] C:\Program Files\Fichiers communs\Services
[08/09/2007|08:10] C:\Program Files\Fichiers communs\MSSoap
----------------------[ Recherche avec S_Lop ]---------------------
Commande ECHO d‚sactiv‚e.
\App-Prog.lsd
\autrinf.cmd
\Back.cmd
\Backup-Lop
\catchme.exe
\Doss.lsd
\FichKill.txt
\Key.txt
\KILL.cmd
\Langues.cmd
\Lop S&D.cmd
\Lop S&D.lnk
\Menu.cmd
\osVer.exe
\paths.bat
\Process.exe
\RegLop.reg
\S-DossKill.txt
\setpath.exe
\swreg.exe
\S_Lop.cmd
\Uninstal.exe
C:\Program Files\\Adobe
C:\Program Files\\ADSL Drivers
C:\Program Files\\Alwil Software
C:\Program Files\\Analog Devices
C:\Program Files\\Ashampoo
C:\Program Files\\CCleaner
C:\Program Files\\ComPlus Applications
C:\Program Files\\DivX
C:\Program Files\\Fichiers communs
C:\Program Files\\Google
C:\Program Files\\HP
C:\Program Files\\Internet Explorer
C:\Program Files\\Lavasoft
C:\Program Files\\Logitech
C:\Program Files\\Lop SD
C:\Program Files\\Messenger
C:\Program Files\\Messenger Plus! Live
C:\Program Files\\Microsoft Calculatrice Plus
C:\Program Files\\Microsoft CAPICOM 2.1.0.2
C:\Program Files\\microsoft frontpage
C:\Program Files\\Microsoft Office
C:\Program Files\\Microsoft Visual Studio
C:\Program Files\\Movie Maker
C:\Program Files\\Mozilla Firefox
C:\Program Files\\MSN
C:\Program Files\\MSN Gaming Zone
C:\Program Files\\MSXML 4.0
C:\Program Files\\NetMeeting
C:\Program Files\\OpenOffice.org 2.0
C:\Program Files\\Outlook Express
C:\Program Files\\PDFCreator
C:\Program Files\\Real
C:\Program Files\\Services en ligne
C:\Program Files\\Snapshot Viewer
C:\Program Files\\Tele2
C:\Program Files\\Trend Micro
C:\Program Files\\Winamp
C:\Program Files\\Windows Live
C:\Program Files\\Windows Media Player
C:\Program Files\\Windows NT
C:\Program Files\\xerox
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
C:\DOCUME~1\ALLUSE~1\APPLIC~1\two setup mode load
C:\DOCUME~1\ALLUSE~1\APPLIC~1\two setup mode load\mpeg for.exe
C:\WINDOWS\Tasks\AFDE6D02918A1E32.job
C:\WINDOWS\Tasks\B0E0ECBC91A79AEC.job
----------------------[ Verification du Registre ]----------------------
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Mode Load Mpeg Less"="C:\\Documents and Settings\\All Users\\Application Data\\two setup mode load\\mpeg for.exe"
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts PROPRE
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-01-22 18:51:59
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden files ...
scan completed successfully
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
Aucune autre infection trouvée !
/!\ [Fich:2][Doss:5] C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp
/!\ [Fich:7232][Doss:8] C:\DOCUME~1\PROPRI~1\LOCALS~1\TEMPOR~1\content.IE5
--------------------[ Fin du rapport a 18:52:38,37 ]----------------------
Merci pour ton aide !
Re ,
Désinstalle cette version de Lop S&D et télécharge celle ci :
Désactive tes protections résidentes ( Antivirus , ... ) tu les réactivera après le scan
Télécharge Lop S&D < ici
Double-clique dessus pour lancer l'installation
Puis double-clique sur le raccourci Lop S&D présent sur ton bureau
Séléctionne la langue souhaitée , puis choisis l'Option 1 ( Recherche )
Patiente jusqu'à la fin du scan
Poste le rapport généré ( C:\lopR.txt )
( Si le Bureau ne réapparait pas presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide )
Bonjour Eric
Voici le dernier rapport demande
-----------------------------[ Lop S&D 2.2.2 ]---------------------------
[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : Proprietaire ] [ "C:\Program Files\Lop SD" ]
[ 01/02/2008 | 18:19:28,56 ] [ PC : UNKNOWN ]
[ MAJ : 31-01-2008 | 22:40 ]
-------------[ Listing des dossiers dans Application Data ]------------
[08/09/2007|09:05] C:\DOCUME~1\ADMINI~1\APPLIC~1\.
[08/09/2007|09:05] C:\DOCUME~1\ADMINI~1\APPLIC~1\..
[08/09/2007|09:05] C:\DOCUME~1\ADMINI~1\APPLIC~1\desktop.ini
[13/01/2008|21:30] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[29/12/2007|17:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\.
[29/12/2007|17:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\..
[08/09/2007|08:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[08/09/2007|09:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[30/11/2007|19:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\F-Secure
[30/11/2007|19:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\fssg
[08/09/2007|10:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[29/12/2007|17:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logishrd
[29/12/2007|17:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logitech
[11/12/2007|21:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[29/12/2007|17:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[08/09/2007|12:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN6
[11/12/2007|10:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBT
[10/01/2008|18:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\two setup mode load
[13/12/2007|16:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[08/09/2007|09:05] C:\DOCUME~1\DEFAUL~1\APPLIC~1\.
[08/09/2007|09:05] C:\DOCUME~1\DEFAUL~1\APPLIC~1\..
[08/09/2007|09:05] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[08/09/2007|08:12] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[08/09/2007|08:16] C:\DOCUME~1\LOCALS~1\APPLIC~1\.
[08/09/2007|08:16] C:\DOCUME~1\LOCALS~1\APPLIC~1\..
[08/09/2007|08:16] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[27/12/2007|16:07] C:\DOCUME~1\MARINE~1\APPLIC~1\.
[27/12/2007|16:07] C:\DOCUME~1\MARINE~1\APPLIC~1\..
[22/09/2007|08:06] C:\DOCUME~1\MARINE~1\APPLIC~1\Adobe
[03/12/2007|18:42] C:\DOCUME~1\MARINE~1\APPLIC~1\AdobeUM
[08/09/2007|09:05] C:\DOCUME~1\MARINE~1\APPLIC~1\desktop.ini
[30/11/2007|19:40] C:\DOCUME~1\MARINE~1\APPLIC~1\F-Secure
[08/09/2007|17:04] C:\DOCUME~1\MARINE~1\APPLIC~1\Google
[08/09/2007|10:41] C:\DOCUME~1\MARINE~1\APPLIC~1\Identities
[20/11/2007|12:29] C:\DOCUME~1\MARINE~1\APPLIC~1\Image Zone Express
[18/12/2007|18:05] C:\DOCUME~1\MARINE~1\APPLIC~1\Lavasoft
[02/11/2007|13:40] C:\DOCUME~1\MARINE~1\APPLIC~1\Macromedia
[18/01/2008|18:36] C:\DOCUME~1\MARINE~1\APPLIC~1\Microsoft
[16/12/2007|14:37] C:\DOCUME~1\MARINE~1\APPLIC~1\MSN6
[26/12/2007|14:19] C:\DOCUME~1\MARINE~1\APPLIC~1\OpenOffice.org2
[23/10/2007|19:39] C:\DOCUME~1\MARINE~1\APPLIC~1\Real
[08/09/2007|08:16] C:\DOCUME~1\NETWOR~1\APPLIC~1\.
[08/09/2007|08:16] C:\DOCUME~1\NETWOR~1\APPLIC~1\..
[08/09/2007|08:16] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[20/12/2007|20:42] C:\DOCUME~1\PROPRI~1\APPLIC~1\.
[20/12/2007|20:42] C:\DOCUME~1\PROPRI~1\APPLIC~1\..
[09/09/2007|08:28] C:\DOCUME~1\PROPRI~1\APPLIC~1\Adobe
[01/02/2008|17:32] C:\DOCUME~1\PROPRI~1\APPLIC~1\AdobeUM
[08/09/2007|09:05] C:\DOCUME~1\PROPRI~1\APPLIC~1\desktop.ini
[30/11/2007|19:28] C:\DOCUME~1\PROPRI~1\APPLIC~1\F-Secure
[08/09/2007|11:04] C:\DOCUME~1\PROPRI~1\APPLIC~1\Google
[08/09/2007|08:16] C:\DOCUME~1\PROPRI~1\APPLIC~1\Identities
[24/09/2007|19:19] C:\DOCUME~1\PROPRI~1\APPLIC~1\Image Zone Express
[08/09/2007|08:46] C:\DOCUME~1\PROPRI~1\APPLIC~1\Lavasoft
[18/10/2007|20:18] C:\DOCUME~1\PROPRI~1\APPLIC~1\Macromedia
[26/12/2007|18:03] C:\DOCUME~1\PROPRI~1\APPLIC~1\Microsoft
[01/11/2007|09:15] C:\DOCUME~1\PROPRI~1\APPLIC~1\Microsoft Web Folders
[08/09/2007|09:17] C:\DOCUME~1\PROPRI~1\APPLIC~1\Mozilla
[08/09/2007|12:29] C:\DOCUME~1\PROPRI~1\APPLIC~1\MSN6
[08/09/2007|09:14] C:\DOCUME~1\PROPRI~1\APPLIC~1\Real
[20/12/2007|21:25] C:\DOCUME~1\PROPRI~1\APPLIC~1\U3
----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------
[01/02/2008 18:00][--ah-----] C:\WINDOWS\tasks\B0E0ECBC91A79AEC.job [--288--]
[01/02/2008 18:00][--ah-----] C:\WINDOWS\tasks\AFDE6D02918A1E32.job [--298--]
[01/02/2008 16:46][--ah-----] C:\WINDOWS\tasks\SA.DAT [--6--]
[24/04/2003 20:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini [--65--]
---------------[ Listing des dossiers dans C:\Program Files ]--------------
[01/02/2008|18:19] C:\Program Files\Lop SD
[10/01/2008|18:25] C:\Program Files\..
[10/01/2008|18:25] C:\Program Files\.
[31/12/2007|10:53] C:\Program Files\Trend Micro
[29/12/2007|21:22] C:\Program Files\Messenger Plus! Live
[29/12/2007|17:36] C:\Program Files\Logitech
[28/12/2007|08:40] C:\Program Files\Ashampoo
[27/12/2007|15:22] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[27/12/2007|15:22] C:\Program Files\MSXML 4.0
[26/12/2007|10:38] C:\Program Files\InstallShield Installation Information
[26/12/2007|10:35] C:\Program Files\Fichiers communs
[16/12/2007|14:37] C:\Program Files\MSN
[12/12/2007|23:11] C:\Program Files\Internet Explorer
[11/12/2007|10:30] C:\Program Files\Microsoft Office
[11/12/2007|10:30] C:\Program Files\Snapshot Viewer
[11/12/2007|10:29] C:\Program Files\microsoft frontpage
[30/11/2007|19:23] C:\Program Files\Tele2
[23/11/2007|17:13] C:\Program Files\Windows Live
[17/11/2007|00:03] C:\Program Files\Messenger
[17/11/2007|00:02] C:\Program Files\Outlook Express
[15/11/2007|15:20] C:\Program Files\Windows Media Player
[15/11/2007|15:18] C:\Program Files\Movie Maker
[15/11/2007|15:16] C:\Program Files\NetMeeting
[15/11/2007|15:16] C:\Program Files\Windows NT
[01/11/2007|09:17] C:\Program Files\Microsoft Visual Studio
[18/09/2007|22:38] C:\Program Files\Winamp
[08/09/2007|11:11] C:\Program Files\WindowsUpdate
[08/09/2007|11:02] C:\Program Files\Google
[08/09/2007|10:47] C:\Program Files\ADSL Drivers
[08/09/2007|09:17] C:\Program Files\Mozilla Firefox
[08/09/2007|09:17] C:\Program Files\Alwil Software
[08/09/2007|09:16] C:\Program Files\CCleaner
[08/09/2007|09:16] C:\Program Files\OpenOffice.org 2.0
[08/09/2007|09:16] C:\Program Files\PDFCreator
[08/09/2007|09:13] C:\Program Files\Real
[08/09/2007|08:57] C:\Program Files\DivX
[08/09/2007|08:55] C:\Program Files\HP
[08/09/2007|08:52] C:\Program Files\Adobe
[08/09/2007|08:46] C:\Program Files\Microsoft Calculatrice Plus
[08/09/2007|08:45] C:\Program Files\Lavasoft
[08/09/2007|08:40] C:\Program Files\Analog Devices
[08/09/2007|08:16] C:\Program Files\Uninstall Information
[08/09/2007|08:12] C:\Program Files\xerox
[08/09/2007|08:11] C:\Program Files\Services en ligne
[08/09/2007|08:09] C:\Program Files\ComPlus Applications
[08/09/2007|08:09] C:\Program Files\MSN Gaming Zone
------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------
[29/12/2007|17:36] C:\Program Files\Fichiers communs\LogiShrd
[26/12/2007|10:35] C:\Program Files\Fichiers communs\..
[26/12/2007|10:35] C:\Program Files\Fichiers communs\.
[11/12/2007|10:31] C:\Program Files\Fichiers communs\Microsoft Shared
[11/12/2007|10:30] C:\Program Files\Fichiers communs\System
[23/11/2007|17:12] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[01/11/2007|09:17] C:\Program Files\Fichiers communs\Designer
[21/10/2007|18:21] C:\Program Files\Fichiers communs\Symantec Shared
[09/09/2007|08:28] C:\Program Files\Fichiers communs\Adobe
[08/09/2007|09:14] C:\Program Files\Fichiers communs\xing shared
[08/09/2007|09:14] C:\Program Files\Fichiers communs\Real
[08/09/2007|09:05] C:\Program Files\Fichiers communs\ODBC
[08/09/2007|09:05] C:\Program Files\Fichiers communs\SpeechEngines
[08/09/2007|08:55] C:\Program Files\Fichiers communs\HP
[08/09/2007|08:40] C:\Program Files\Fichiers communs\InstallShield
[08/09/2007|08:10] C:\Program Files\Fichiers communs\Services
[08/09/2007|08:10] C:\Program Files\Fichiers communs\MSSoap
----------------------[ Recherche avec S_Lop ]---------------------
Aucun fichier / dossier Lop trouvé !
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
C:\DOCUME~1\ALLUSE~1\APPLIC~1\two setup mode load
C:\DOCUME~1\ALLUSE~1\APPLIC~1\two setup mode load\mpeg for.exe
C:\WINDOWS\Tasks\AFDE6D02918A1E32.job
C:\WINDOWS\Tasks\B0E0ECBC91A79AEC.job
----------------------[ Verification du Registre ]----------------------
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Mode Load Mpeg Less"="C:\\Documents and Settings\\All Users\\Application Data\\two setup mode load\\mpeg for.exe"
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts PROPRE
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-02-01 18:20:35
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden files ...
scan completed successfully
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
Aucune autre infection trouvée !
/!\ [Fich:4][Doss:9] C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp
/!\ [Fich:190][Doss:0] C:\DOCUME~1\PROPRI~1\Cookies
/!\ [Fich:10121][Doss:12] C:\DOCUME~1\PROPRI~1\LOCALS~1\TEMPOR~1\content.IE5
--------------------[ Fin du rapport a 18:20:54,59 ]----------------------
Re ,
Relance Lop S&D
Choisis cette fois ci l'Option 2 ( Suppression )
Ne ferme pas la fenêtre lors de la suppression !
Poste le rapport généré ( C:\lopR.txt )
( Si le Bureau ne réapparît pas presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide )
Il y a 2513 utilisateurs connus et inconnus. Pour voir la liste des connectés connus, cliquez ici.
