publicité intempéstive , un virus?
Dernière réponse : dans Sécurité
Voila j'ai des publicités intempestives à chaque fois que j'ouvre une page si on peut m'aider^^
j'ai déja scan le rapport de isajis (ou un truc omme sa) sa ma donné ça:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:06:18, on 15/04/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\mdm.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\WINDOWS\system32\oodag.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\WinRAR\WinRAR.exe
C:\DOCUME~1\Loulou\LOCALS~1\Temp\Rar$EX00.562\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.fr/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.fr/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.google.fr/keyword/%s
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://windowsupdate.microsoft.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [amd_dc_opt] "C:\Program Files\AMD\amd_dc_opt\amd_dc_opt.exe"
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [OODefragTray] C:\WINDOWS\system32\oodtray.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [warn default inter for] C:\Documents and Settings\All Users\Application Data\Time Dead Warn Default\DART KIND.exe
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Type bend] C:\DOCUME~1\Loulou\APPLIC~1\CHICTH~1\Cash Iso.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'Default user')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/wi [...] 6299784718
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/ [...] wflash.cab
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
j'ai déja scan le rapport de isajis (ou un truc omme sa) sa ma donné ça:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:06:18, on 15/04/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\mdm.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\WINDOWS\system32\oodag.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\WinRAR\WinRAR.exe
C:\DOCUME~1\Loulou\LOCALS~1\Temp\Rar$EX00.562\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.fr/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.fr/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.google.fr/keyword/%s
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://windowsupdate.microsoft.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [amd_dc_opt] "C:\Program Files\AMD\amd_dc_opt\amd_dc_opt.exe"
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [OODefragTray] C:\WINDOWS\system32\oodtray.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [warn default inter for] C:\Documents and Settings\All Users\Application Data\Time Dead Warn Default\DART KIND.exe
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Type bend] C:\DOCUME~1\Loulou\APPLIC~1\CHICTH~1\Cash Iso.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'Default user')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/wi [...] 6299784718
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/ [...] wflash.cab
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
Autres pages sur : publicite intempestive virus
Lassé par la pub ? Créez un compte
Un bonjour ?
Télécharge Lop S&D.exe sur ton Bureau.
Double-clique dessus pour lancer l'installation
Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
Séléctionne la langue souhaitée , puis choisis l'option 1 (Recherche)
Patiente jusqu'à la fin du scan
Poste le rapport généré (C:\lopR.txt)
(Si le Bureau ne réapparait pas presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide)
Télécharge Lop S&D.exe sur ton Bureau.
(Si le Bureau ne réapparait pas presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide)
Salut^^
Voila j'ai fait la manip sa donne ça:
-----------------------[ Lop S&D 4.1.1-0 XP/Vista ]---------------------
[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : Loulou ] [ "C:\Lop SD" ]
[ 15/04/2008 | 16:46:17,98 ] [ PC : XPSP2-3F90AAB40 ]
[ MAJ : 14-04-2008 | 20:30 ]
-------------[ Listing des dossiers dans Application Data ]------------
[27/03/2008|21:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\.
[27/03/2008|21:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\..
[14/01/2008|20:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[01/12/2007|04:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[29/11/2007|04:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ATI
[01/12/2007|04:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[29/11/2007|04:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[01/12/2007|04:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ESET
[11/03/2008|20:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[11/03/2008|20:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hpzinstall.log
[11/04/2008|16:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\LauncherAccess.dt
[07/12/2007|21:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[09/04/2008|22:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Help
[29/11/2007|14:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Nero
[01/12/2007|04:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Real
[27/03/2008|21:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Time Dead Warn Default
[01/12/2007|04:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TuneUp Software
[29/11/2007|03:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[07/12/2007|20:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[29/11/2007|04:06] C:\DOCUME~1\DEFAUL~1\APPLIC~1\.
[29/11/2007|04:06] C:\DOCUME~1\DEFAUL~1\APPLIC~1\..
[29/11/2007|04:06] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[29/11/2007|03:15] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[29/11/2007|03:20] C:\DOCUME~1\LOCALS~1\APPLIC~1\.
[29/11/2007|03:20] C:\DOCUME~1\LOCALS~1\APPLIC~1\..
[29/11/2007|04:12] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[27/03/2008|21:46] C:\DOCUME~1\Loulou\APPLIC~1\.
[27/03/2008|21:46] C:\DOCUME~1\Loulou\APPLIC~1\..
[28/12/2007|00:58] C:\DOCUME~1\Loulou\APPLIC~1\Adobe
[29/11/2007|04:47] C:\DOCUME~1\Loulou\APPLIC~1\ATI
[27/03/2008|21:47] C:\DOCUME~1\Loulou\APPLIC~1\Chic This
[01/12/2007|04:11] C:\DOCUME~1\Loulou\APPLIC~1\CyberLink
[29/11/2007|04:06] C:\DOCUME~1\Loulou\APPLIC~1\desktop.ini
[26/03/2008|22:49] C:\DOCUME~1\Loulou\APPLIC~1\Hewlett-PackardHP PSC 1500 series1205259059_API.log
[26/03/2008|22:49] C:\DOCUME~1\Loulou\APPLIC~1\Hewlett-PackardHP PSC 1500 series1205259059_PROTOCOL.log
[26/03/2008|22:49] C:\DOCUME~1\Loulou\APPLIC~1\Hewlett-PackardHP PSC 1500 series1205259059_UI.log
[26/03/2008|22:49] C:\DOCUME~1\Loulou\APPLIC~1\HP
[29/11/2007|03:21] C:\DOCUME~1\Loulou\APPLIC~1\Identities
[06/04/2008|15:41] C:\DOCUME~1\Loulou\APPLIC~1\Image Zone Express
[29/11/2007|03:23] C:\DOCUME~1\Loulou\APPLIC~1\InstallShield
[06/01/2008|19:12] C:\DOCUME~1\Loulou\APPLIC~1\InterTrust
[29/11/2007|04:37] C:\DOCUME~1\Loulou\APPLIC~1\Macromedia
[01/12/2007|04:22] C:\DOCUME~1\Loulou\APPLIC~1\Media Player Classic
[25/02/2008|10:39] C:\DOCUME~1\Loulou\APPLIC~1\Microsoft
[29/11/2007|14:29] C:\DOCUME~1\Loulou\APPLIC~1\Mozilla
[29/11/2007|14:50] C:\DOCUME~1\Loulou\APPLIC~1\Nero
[04/04/2008|15:43] C:\DOCUME~1\Loulou\APPLIC~1\Real
[01/12/2007|04:05] C:\DOCUME~1\Loulou\APPLIC~1\Sun
[01/12/2007|04:14] C:\DOCUME~1\Loulou\APPLIC~1\TuneUp Software
[25/03/2008|18:43] C:\DOCUME~1\Loulou\APPLIC~1\U3
[29/11/2007|14:39] C:\DOCUME~1\Loulou\APPLIC~1\WinRAR
[29/11/2007|03:20] C:\DOCUME~1\NETWOR~1\APPLIC~1\.
[29/11/2007|03:20] C:\DOCUME~1\NETWOR~1\APPLIC~1\..
[29/11/2007|03:15] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------
[11/04/2008 17:15][--a------] C:\WINDOWS\tasks\Maintenance en 1 clic.job
[15/04/2008 13:47][--ah-----] C:\WINDOWS\tasks\SA.DAT
[24/08/2001 16:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
---------------[ Listing des dossiers dans C:\Program Files ]--------------
[11/04/2008|16:17] C:\Program Files\.
[11/04/2008|16:17] C:\Program Files\..
[29/03/2008|20:47] C:\Program Files\3wPlayer
[14/01/2008|20:41] C:\Program Files\Adobe
[29/11/2007|04:55] C:\Program Files\AMD
[29/11/2007|04:46] C:\Program Files\ATI Technologies
[27/03/2008|21:48] C:\Program Files\BitTorrent Fastest Tool
[29/11/2007|14:37] C:\Program Files\CCleaner
[27/03/2008|21:46] C:\Program Files\Chic This
[29/11/2007|03:12] C:\Program Files\ComPlus Applications
[29/03/2008|20:49] C:\Program Files\CyberLink
[29/11/2007|04:53] C:\Program Files\DIFX
[01/12/2007|04:02] C:\Program Files\ESET
[11/03/2008|20:10] C:\Program Files\Fichiers communs
[11/03/2008|20:09] C:\Program Files\Hewlett-Packard
[11/03/2008|20:10] C:\Program Files\HP
[12/04/2008|12:48] C:\Program Files\InstallShield Installation Information
[09/04/2008|22:29] C:\Program Files\Internet Explorer
[01/12/2007|04:06] C:\Program Files\Java
[01/12/2007|04:20] C:\Program Files\K-Lite Codec Pack
[01/12/2007|04:28] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[29/11/2007|03:16] C:\Program Files\microsoft frontpage
[01/12/2007|03:53] C:\Program Files\Microsoft Office
[01/12/2007|03:53] C:\Program Files\Microsoft Visual Studio
[01/12/2007|03:50] C:\Program Files\Microsoft Visual Studio 8
[01/12/2007|03:53] C:\Program Files\Microsoft Works
[01/12/2007|03:52] C:\Program Files\Microsoft.NET
[29/11/2007|03:13] C:\Program Files\Movie Maker
[13/04/2008|23:19] C:\Program Files\Mozilla Firefox
[29/11/2007|03:53] C:\Program Files\MSBuild
[29/11/2007|03:16] C:\Program Files\msn gaming zone
[01/12/2007|04:32] C:\Program Files\MSXML 4.0
[29/11/2007|04:24] C:\Program Files\MSXML 6.0
[29/11/2007|14:48] C:\Program Files\Nero
[29/11/2007|03:16] C:\Program Files\netmeeting
[01/12/2007|04:07] C:\Program Files\OO Software
[29/11/2007|03:56] C:\Program Files\Outlook Express
[29/03/2008|20:50] C:\Program Files\QuickTime Alternative
[29/11/2007|04:49] C:\Program Files\Realtek
[29/11/2007|03:51] C:\Program Files\Reference Assemblies
[29/11/2007|03:14] C:\Program Files\Services en ligne
[01/12/2007|04:15] C:\Program Files\TuneUp Utilities 2007
[29/11/2007|03:21] C:\Program Files\Uninstall Information
[06/04/2008|18:45] C:\Program Files\Wesnoth
[07/12/2007|21:16] C:\Program Files\Windows Live
[09/03/2008|22:16] C:\Program Files\Windows Media Connect 2
[29/11/2007|03:49] C:\Program Files\Windows Media Player
[29/11/2007|03:16] C:\Program Files\Windows NT
[29/11/2007|03:14] C:\Program Files\WindowsUpdate
[29/11/2007|14:38] C:\Program Files\WinRAR
[29/11/2007|03:16] C:\Program Files\xerox
------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------
[11/03/2008|20:10] C:\Program Files\Fichiers communs\.
[11/03/2008|20:10] C:\Program Files\Fichiers communs\..
[14/01/2008|20:41] C:\Program Files\Fichiers communs\Adobe
[01/12/2007|03:53] C:\Program Files\Fichiers communs\DESIGNER
[11/03/2008|20:07] C:\Program Files\Fichiers communs\Hewlett-Packard
[11/03/2008|20:10] C:\Program Files\Fichiers communs\HP
[29/11/2007|04:45] C:\Program Files\Fichiers communs\InstallShield
[01/12/2007|04:05] C:\Program Files\Fichiers communs\Java
[07/12/2007|21:17] C:\Program Files\Fichiers communs\Microsoft Shared
[29/11/2007|03:13] C:\Program Files\Fichiers communs\MSSoap
[29/11/2007|14:49] C:\Program Files\Fichiers communs\Nero
[29/11/2007|04:06] C:\Program Files\Fichiers communs\ODBC
[29/03/2008|20:52] C:\Program Files\Fichiers communs\Services
[29/11/2007|04:06] C:\Program Files\Fichiers communs\SpeechEngines
[01/12/2007|03:49] C:\Program Files\Fichiers communs\System
[07/12/2007|21:16] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[01/12/2007|04:14] C:\Program Files\Fichiers communs\Wise Installation Wizard
----------------------[ Recherche avec S_Lop ]---------------------
C:\DOCUME~1\Loulou\APPLIC~1\CHICTH~1
C:\DOCUME~1\Loulou\APPLIC~1\CHICTH~1\Cash Iso.exe
C:\DOCUME~1\Loulou\APPLIC~1\CHICTH~1\qifnrept.exe
C:\DOCUME~1\Loulou\APPLIC~1\CHICTH~1\Site Team Option.exe
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Time Dead Warn Default
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Time Dead Warn Default\DART KIND.exe
C:\Program Files\BitTorrent Fastest Tool
C:\Program Files\BitTorrent Fastest Tool\3wPlayer-1.9.0.0-setup-0312.exe
C:\Program Files\BitTorrent Fastest Tool\BitDownload-4.5-setup.exe
C:\Program Files\BitTorrent Fastest Tool\BitP.exe
C:\Program Files\BitTorrent Fastest Tool\INSTALL.LOG
C:\Program Files\3wPlayer
----------------------[ Verification du Registre ]----------------------
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ford obj mpeg]
"DisplayName"="CiD Help"
"UninstallString"="C:\\DOCUME~1\\Loulou\\APPLIC~1\\CHICTH~1\\Cash Iso.exe -uninstall"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Type bend"="C:\\DOCUME~1\\Loulou\\APPLIC~1\\CHICTH~1\\Cash Iso.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"warn default inter for"="C:\\Documents and Settings\\All Users\\Application Data\\Time Dead Warn Default\\DART KIND.exe"
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts MODIFIE
127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD
127.0.0.1 download.errorsafe.com ## added by CiD
127.0.0.1 download.systemdoctor.com ## added by CiD
127.0.0.1 download.winantispyware.com ## added by CiD
127.0.0.1 download.windrivecleaner.com ## added by CiD
127.0.0.1 download.winfixer.com ## added by CiD
127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 es.winantivirus.com ## added by CiD
127.0.0.1 fr.winantivirus.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 go.winantivirus.com ## added by CiD
127.0.0.1 hk.winantivirus.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 instlog.winantivirus.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 kb.winantivirus.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 secure.winantivirus.com ## added by CiD
127.0.0.1 support.winantivirus.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 ulog.winantivirus.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 utils.winantivirus.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winantivirus.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 www.drivecleaner.com ## added by CiD
127.0.0.1 www.errorprotector.com ## added by CiD
127.0.0.1 www.errorsafe.com ## added by CiD
127.0.0.1 www.systemdoctor.com ## added by CiD
127.0.0.1 www.utils.winfixer.com ## added by CiD
127.0.0.1 www.win-anti-virus-pro.com ## added by CiD
127.0.0.1 www.win-virus-pro.com ## added by CiD
127.0.0.1 www.winantispam.com ## added by CiD
127.0.0.1 www.winantispy.com ## added by CiD
127.0.0.1 www.winantispyware.com ## added by CiD
127.0.0.1 www.winantivirus.com ## added by CiD
127.0.0.1 www.winantiviruspro.com ## added by CiD
127.0.0.1 www.windrivecleaner.com ## added by CiD
127.0.0.1 www.windrivesafe.com ## added by CiD
127.0.0.1 www.winfixer.com ## added by CiD
127.0.0.1 www.winfixer2006.com ## added by CiD
127.0.0.1 www.winsoftware.com ## added by CiD
-> 72 ( 70 ## added by CiD )
/!\ 1 Not 127.0.0.1 !!
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-04-15 16:46:45
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
Aucune autre infection trouvée !
/!\ [Fich:92][Doss:33] C:\DOCUME~1\Loulou\LOCALS~1\Temp
/!\ [Fich:238][Doss:0] C:\DOCUME~1\Loulou\Cookies
/!\ [Fich:877][Doss:8] C:\DOCUME~1\Loulou\LOCALS~1\TEMPOR~1\content.IE5
--------------------[ Fin du rapport a 16:47:47,90 ]----------------------
Voila j'ai fait la manip sa donne ça:
-----------------------[ Lop S&D 4.1.1-0 XP/Vista ]---------------------
[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : Loulou ] [ "C:\Lop SD" ]
[ 15/04/2008 | 16:46:17,98 ] [ PC : XPSP2-3F90AAB40 ]
[ MAJ : 14-04-2008 | 20:30 ]
-------------[ Listing des dossiers dans Application Data ]------------
[27/03/2008|21:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\.
[27/03/2008|21:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\..
[14/01/2008|20:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[01/12/2007|04:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[29/11/2007|04:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ATI
[01/12/2007|04:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[29/11/2007|04:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[01/12/2007|04:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ESET
[11/03/2008|20:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[11/03/2008|20:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hpzinstall.log
[11/04/2008|16:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\LauncherAccess.dt
[07/12/2007|21:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[09/04/2008|22:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Help
[29/11/2007|14:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Nero
[01/12/2007|04:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Real
[27/03/2008|21:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Time Dead Warn Default
[01/12/2007|04:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TuneUp Software
[29/11/2007|03:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[07/12/2007|20:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[29/11/2007|04:06] C:\DOCUME~1\DEFAUL~1\APPLIC~1\.
[29/11/2007|04:06] C:\DOCUME~1\DEFAUL~1\APPLIC~1\..
[29/11/2007|04:06] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[29/11/2007|03:15] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[29/11/2007|03:20] C:\DOCUME~1\LOCALS~1\APPLIC~1\.
[29/11/2007|03:20] C:\DOCUME~1\LOCALS~1\APPLIC~1\..
[29/11/2007|04:12] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[27/03/2008|21:46] C:\DOCUME~1\Loulou\APPLIC~1\.
[27/03/2008|21:46] C:\DOCUME~1\Loulou\APPLIC~1\..
[28/12/2007|00:58] C:\DOCUME~1\Loulou\APPLIC~1\Adobe
[29/11/2007|04:47] C:\DOCUME~1\Loulou\APPLIC~1\ATI
[27/03/2008|21:47] C:\DOCUME~1\Loulou\APPLIC~1\Chic This
[01/12/2007|04:11] C:\DOCUME~1\Loulou\APPLIC~1\CyberLink
[29/11/2007|04:06] C:\DOCUME~1\Loulou\APPLIC~1\desktop.ini
[26/03/2008|22:49] C:\DOCUME~1\Loulou\APPLIC~1\Hewlett-PackardHP PSC 1500 series1205259059_API.log
[26/03/2008|22:49] C:\DOCUME~1\Loulou\APPLIC~1\Hewlett-PackardHP PSC 1500 series1205259059_PROTOCOL.log
[26/03/2008|22:49] C:\DOCUME~1\Loulou\APPLIC~1\Hewlett-PackardHP PSC 1500 series1205259059_UI.log
[26/03/2008|22:49] C:\DOCUME~1\Loulou\APPLIC~1\HP
[29/11/2007|03:21] C:\DOCUME~1\Loulou\APPLIC~1\Identities
[06/04/2008|15:41] C:\DOCUME~1\Loulou\APPLIC~1\Image Zone Express
[29/11/2007|03:23] C:\DOCUME~1\Loulou\APPLIC~1\InstallShield
[06/01/2008|19:12] C:\DOCUME~1\Loulou\APPLIC~1\InterTrust
[29/11/2007|04:37] C:\DOCUME~1\Loulou\APPLIC~1\Macromedia
[01/12/2007|04:22] C:\DOCUME~1\Loulou\APPLIC~1\Media Player Classic
[25/02/2008|10:39] C:\DOCUME~1\Loulou\APPLIC~1\Microsoft
[29/11/2007|14:29] C:\DOCUME~1\Loulou\APPLIC~1\Mozilla
[29/11/2007|14:50] C:\DOCUME~1\Loulou\APPLIC~1\Nero
[04/04/2008|15:43] C:\DOCUME~1\Loulou\APPLIC~1\Real
[01/12/2007|04:05] C:\DOCUME~1\Loulou\APPLIC~1\Sun
[01/12/2007|04:14] C:\DOCUME~1\Loulou\APPLIC~1\TuneUp Software
[25/03/2008|18:43] C:\DOCUME~1\Loulou\APPLIC~1\U3
[29/11/2007|14:39] C:\DOCUME~1\Loulou\APPLIC~1\WinRAR
[29/11/2007|03:20] C:\DOCUME~1\NETWOR~1\APPLIC~1\.
[29/11/2007|03:20] C:\DOCUME~1\NETWOR~1\APPLIC~1\..
[29/11/2007|03:15] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------
[11/04/2008 17:15][--a------] C:\WINDOWS\tasks\Maintenance en 1 clic.job
[15/04/2008 13:47][--ah-----] C:\WINDOWS\tasks\SA.DAT
[24/08/2001 16:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
---------------[ Listing des dossiers dans C:\Program Files ]--------------
[11/04/2008|16:17] C:\Program Files\.
[11/04/2008|16:17] C:\Program Files\..
[29/03/2008|20:47] C:\Program Files\3wPlayer
[14/01/2008|20:41] C:\Program Files\Adobe
[29/11/2007|04:55] C:\Program Files\AMD
[29/11/2007|04:46] C:\Program Files\ATI Technologies
[27/03/2008|21:48] C:\Program Files\BitTorrent Fastest Tool
[29/11/2007|14:37] C:\Program Files\CCleaner
[27/03/2008|21:46] C:\Program Files\Chic This
[29/11/2007|03:12] C:\Program Files\ComPlus Applications
[29/03/2008|20:49] C:\Program Files\CyberLink
[29/11/2007|04:53] C:\Program Files\DIFX
[01/12/2007|04:02] C:\Program Files\ESET
[11/03/2008|20:10] C:\Program Files\Fichiers communs
[11/03/2008|20:09] C:\Program Files\Hewlett-Packard
[11/03/2008|20:10] C:\Program Files\HP
[12/04/2008|12:48] C:\Program Files\InstallShield Installation Information
[09/04/2008|22:29] C:\Program Files\Internet Explorer
[01/12/2007|04:06] C:\Program Files\Java
[01/12/2007|04:20] C:\Program Files\K-Lite Codec Pack
[01/12/2007|04:28] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[29/11/2007|03:16] C:\Program Files\microsoft frontpage
[01/12/2007|03:53] C:\Program Files\Microsoft Office
[01/12/2007|03:53] C:\Program Files\Microsoft Visual Studio
[01/12/2007|03:50] C:\Program Files\Microsoft Visual Studio 8
[01/12/2007|03:53] C:\Program Files\Microsoft Works
[01/12/2007|03:52] C:\Program Files\Microsoft.NET
[29/11/2007|03:13] C:\Program Files\Movie Maker
[13/04/2008|23:19] C:\Program Files\Mozilla Firefox
[29/11/2007|03:53] C:\Program Files\MSBuild
[29/11/2007|03:16] C:\Program Files\msn gaming zone
[01/12/2007|04:32] C:\Program Files\MSXML 4.0
[29/11/2007|04:24] C:\Program Files\MSXML 6.0
[29/11/2007|14:48] C:\Program Files\Nero
[29/11/2007|03:16] C:\Program Files\netmeeting
[01/12/2007|04:07] C:\Program Files\OO Software
[29/11/2007|03:56] C:\Program Files\Outlook Express
[29/03/2008|20:50] C:\Program Files\QuickTime Alternative
[29/11/2007|04:49] C:\Program Files\Realtek
[29/11/2007|03:51] C:\Program Files\Reference Assemblies
[29/11/2007|03:14] C:\Program Files\Services en ligne
[01/12/2007|04:15] C:\Program Files\TuneUp Utilities 2007
[29/11/2007|03:21] C:\Program Files\Uninstall Information
[06/04/2008|18:45] C:\Program Files\Wesnoth
[07/12/2007|21:16] C:\Program Files\Windows Live
[09/03/2008|22:16] C:\Program Files\Windows Media Connect 2
[29/11/2007|03:49] C:\Program Files\Windows Media Player
[29/11/2007|03:16] C:\Program Files\Windows NT
[29/11/2007|03:14] C:\Program Files\WindowsUpdate
[29/11/2007|14:38] C:\Program Files\WinRAR
[29/11/2007|03:16] C:\Program Files\xerox
------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------
[11/03/2008|20:10] C:\Program Files\Fichiers communs\.
[11/03/2008|20:10] C:\Program Files\Fichiers communs\..
[14/01/2008|20:41] C:\Program Files\Fichiers communs\Adobe
[01/12/2007|03:53] C:\Program Files\Fichiers communs\DESIGNER
[11/03/2008|20:07] C:\Program Files\Fichiers communs\Hewlett-Packard
[11/03/2008|20:10] C:\Program Files\Fichiers communs\HP
[29/11/2007|04:45] C:\Program Files\Fichiers communs\InstallShield
[01/12/2007|04:05] C:\Program Files\Fichiers communs\Java
[07/12/2007|21:17] C:\Program Files\Fichiers communs\Microsoft Shared
[29/11/2007|03:13] C:\Program Files\Fichiers communs\MSSoap
[29/11/2007|14:49] C:\Program Files\Fichiers communs\Nero
[29/11/2007|04:06] C:\Program Files\Fichiers communs\ODBC
[29/03/2008|20:52] C:\Program Files\Fichiers communs\Services
[29/11/2007|04:06] C:\Program Files\Fichiers communs\SpeechEngines
[01/12/2007|03:49] C:\Program Files\Fichiers communs\System
[07/12/2007|21:16] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[01/12/2007|04:14] C:\Program Files\Fichiers communs\Wise Installation Wizard
----------------------[ Recherche avec S_Lop ]---------------------
C:\DOCUME~1\Loulou\APPLIC~1\CHICTH~1
C:\DOCUME~1\Loulou\APPLIC~1\CHICTH~1\Cash Iso.exe
C:\DOCUME~1\Loulou\APPLIC~1\CHICTH~1\qifnrept.exe
C:\DOCUME~1\Loulou\APPLIC~1\CHICTH~1\Site Team Option.exe
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Time Dead Warn Default
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Time Dead Warn Default\DART KIND.exe
C:\Program Files\BitTorrent Fastest Tool
C:\Program Files\BitTorrent Fastest Tool\3wPlayer-1.9.0.0-setup-0312.exe
C:\Program Files\BitTorrent Fastest Tool\BitDownload-4.5-setup.exe
C:\Program Files\BitTorrent Fastest Tool\BitP.exe
C:\Program Files\BitTorrent Fastest Tool\INSTALL.LOG
C:\Program Files\3wPlayer
----------------------[ Verification du Registre ]----------------------
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ford obj mpeg]
"DisplayName"="CiD Help"
"UninstallString"="C:\\DOCUME~1\\Loulou\\APPLIC~1\\CHICTH~1\\Cash Iso.exe -uninstall"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Type bend"="C:\\DOCUME~1\\Loulou\\APPLIC~1\\CHICTH~1\\Cash Iso.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"warn default inter for"="C:\\Documents and Settings\\All Users\\Application Data\\Time Dead Warn Default\\DART KIND.exe"
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts MODIFIE
127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD
127.0.0.1 download.errorsafe.com ## added by CiD
127.0.0.1 download.systemdoctor.com ## added by CiD
127.0.0.1 download.winantispyware.com ## added by CiD
127.0.0.1 download.windrivecleaner.com ## added by CiD
127.0.0.1 download.winfixer.com ## added by CiD
127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 es.winantivirus.com ## added by CiD
127.0.0.1 fr.winantivirus.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 go.winantivirus.com ## added by CiD
127.0.0.1 hk.winantivirus.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 instlog.winantivirus.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 kb.winantivirus.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 secure.winantivirus.com ## added by CiD
127.0.0.1 support.winantivirus.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 ulog.winantivirus.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 utils.winantivirus.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winantivirus.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 www.drivecleaner.com ## added by CiD
127.0.0.1 www.errorprotector.com ## added by CiD
127.0.0.1 www.errorsafe.com ## added by CiD
127.0.0.1 www.systemdoctor.com ## added by CiD
127.0.0.1 www.utils.winfixer.com ## added by CiD
127.0.0.1 www.win-anti-virus-pro.com ## added by CiD
127.0.0.1 www.win-virus-pro.com ## added by CiD
127.0.0.1 www.winantispam.com ## added by CiD
127.0.0.1 www.winantispy.com ## added by CiD
127.0.0.1 www.winantispyware.com ## added by CiD
127.0.0.1 www.winantivirus.com ## added by CiD
127.0.0.1 www.winantiviruspro.com ## added by CiD
127.0.0.1 www.windrivecleaner.com ## added by CiD
127.0.0.1 www.windrivesafe.com ## added by CiD
127.0.0.1 www.winfixer.com ## added by CiD
127.0.0.1 www.winfixer2006.com ## added by CiD
127.0.0.1 www.winsoftware.com ## added by CiD
-> 72 ( 70 ## added by CiD )
/!\ 1 Not 127.0.0.1 !!
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-04-15 16:46:45
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
Aucune autre infection trouvée !
/!\ [Fich:92][Doss:33] C:\DOCUME~1\Loulou\LOCALS~1\Temp
/!\ [Fich:238][Doss:0] C:\DOCUME~1\Loulou\Cookies
/!\ [Fich:877][Doss:8] C:\DOCUME~1\Loulou\LOCALS~1\TEMPOR~1\content.IE5
--------------------[ Fin du rapport a 16:47:47,90 ]----------------------
On dirai que y a plus de fenetre publicitaire merci beaucoup en tout cas^^
-----------------------[ Lop S&D 4.1.1-0 XP/Vista ]---------------------
[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : Loulou ] [ "C:\Lop SD" ]
[ 15/04/2008 | 18:18:48,65 ] [ PC : XPSP2-3F90AAB40 ]
[ MAJ : 14-04-2008 | 20:30 ]
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////
Echec ! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Time Dead Warn Default\DART KIND.exe
Supprimé! - C:\Program Files\BitTorrent Fastest Tool\3wPlayer-1.9.0.0-setup-0312.exe
Supprimé! - C:\Program Files\BitTorrent Fastest Tool\BitDownload-4.5-setup.exe
Supprimé! - C:\Program Files\BitTorrent Fastest Tool\BitP.exe
Supprimé! - C:\Program Files\BitTorrent Fastest Tool\INSTALL.LOG
Supprimé! - C:\DOCUME~1\Loulou\APPLIC~1\CHICTH~1\Cash Iso.exe
Supprimé! - C:\DOCUME~1\Loulou\APPLIC~1\CHICTH~1\qifnrept.exe
Supprimé! - C:\DOCUME~1\Loulou\APPLIC~1\CHICTH~1\Site Team Option.exe
Echec ! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Time Dead Warn Default
Supprimé! - C:\Program Files\BitTorrent Fastest Tool
Supprimé! - C:\Program Files\3wPlayer
Supprimé! - C:\DOCUME~1\Loulou\APPLIC~1\CHICTH~1
Supprimé! - C:\Program Files\CHICTH~1
Restauré! - Fichier Hosts
\\\\\\\\\\\\\\\\\\\\\\\\\\\ DEUXIEME PASSAGE ///////////////////////////
Echec ! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Time Dead Warn Default\DART KIND.exe
Echec ! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Time Dead Warn Default
//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
-------------[ Listing des dossiers dans Application Data ]------------
[27/03/2008|21:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\.
[27/03/2008|21:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\..
[14/01/2008|20:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[01/12/2007|04:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[29/11/2007|04:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ATI
[01/12/2007|04:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[29/11/2007|04:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[01/12/2007|04:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ESET
[11/03/2008|20:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[11/03/2008|20:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hpzinstall.log
[11/04/2008|16:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\LauncherAccess.dt
[07/12/2007|21:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[09/04/2008|22:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Help
[29/11/2007|14:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Nero
[01/12/2007|04:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Real
[27/03/2008|21:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Time Dead Warn Default
[01/12/2007|04:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TuneUp Software
[29/11/2007|03:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[07/12/2007|20:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
-----------------------[ Lop S&D 4.1.1-0 XP/Vista ]---------------------
[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : Loulou ] [ "C:\Lop SD" ]
[ 15/04/2008 | 18:18:48,65 ] [ PC : XPSP2-3F90AAB40 ]
[ MAJ : 14-04-2008 | 20:30 ]
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////
Echec ! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Time Dead Warn Default\DART KIND.exe
Supprimé! - C:\Program Files\BitTorrent Fastest Tool\3wPlayer-1.9.0.0-setup-0312.exe
Supprimé! - C:\Program Files\BitTorrent Fastest Tool\BitDownload-4.5-setup.exe
Supprimé! - C:\Program Files\BitTorrent Fastest Tool\BitP.exe
Supprimé! - C:\Program Files\BitTorrent Fastest Tool\INSTALL.LOG
Supprimé! - C:\DOCUME~1\Loulou\APPLIC~1\CHICTH~1\Cash Iso.exe
Supprimé! - C:\DOCUME~1\Loulou\APPLIC~1\CHICTH~1\qifnrept.exe
Supprimé! - C:\DOCUME~1\Loulou\APPLIC~1\CHICTH~1\Site Team Option.exe
Echec ! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Time Dead Warn Default
Supprimé! - C:\Program Files\BitTorrent Fastest Tool
Supprimé! - C:\Program Files\3wPlayer
Supprimé! - C:\DOCUME~1\Loulou\APPLIC~1\CHICTH~1
Supprimé! - C:\Program Files\CHICTH~1
Restauré! - Fichier Hosts
\\\\\\\\\\\\\\\\\\\\\\\\\\\ DEUXIEME PASSAGE ///////////////////////////
Echec ! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Time Dead Warn Default\DART KIND.exe
Echec ! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Time Dead Warn Default
//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
-------------[ Listing des dossiers dans Application Data ]------------
[27/03/2008|21:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\.
[27/03/2008|21:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\..
[14/01/2008|20:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[01/12/2007|04:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[29/11/2007|04:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ATI
[01/12/2007|04:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[29/11/2007|04:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[01/12/2007|04:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ESET
[11/03/2008|20:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[11/03/2008|20:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hpzinstall.log
[11/04/2008|16:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\LauncherAccess.dt
[07/12/2007|21:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[09/04/2008|22:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Help
[29/11/2007|14:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Nero
[01/12/2007|04:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Real
[27/03/2008|21:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Time Dead Warn Default
[01/12/2007|04:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TuneUp Software
[29/11/2007|03:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[07/12/2007|20:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
ups désoler^^. En plus y a mon anti-virus qui s'affole^^ à chaque fois que je lance l'opération^^:
-----------------------[ Lop S&D 4.1.1-1 XP/Vista ]---------------------
[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : Loulou ] [ "C:\Lop SD" ]
[ 16/04/2008 | 11:02:46,39 ] [ PC : XPSP2-3F90AAB40 ]
[ MAJ : 15-04-2008 | 20:20 ]
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////
Supprimé! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Time Dead Warn Default\DART KIND.exe
Supprimé! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Time Dead Warn Default
//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
-------------[ Listing des dossiers dans Application Data ]------------
[16/04/2008|11:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\.
[16/04/2008|11:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\..
[14/01/2008|20:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[01/12/2007|04:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[29/11/2007|04:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ATI
[01/12/2007|04:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[29/11/2007|04:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[01/12/2007|04:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ESET
[11/03/2008|20:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[11/03/2008|20:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hpzinstall.log
[11/04/2008|16:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\LauncherAccess.dt
[07/12/2007|21:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[09/04/2008|22:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Help
[29/11/2007|14:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Nero
[01/12/2007|04:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Real
[01/12/2007|04:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TuneUp Software
[29/11/2007|03:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[07/12/2007|20:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[29/11/2007|04:06] C:\DOCUME~1\DEFAUL~1\APPLIC~1\.
[29/11/2007|04:06] C:\DOCUME~1\DEFAUL~1\APPLIC~1\..
[29/11/2007|04:06] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[29/11/2007|03:15] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[29/11/2007|03:20] C:\DOCUME~1\LOCALS~1\APPLIC~1\.
[29/11/2007|03:20] C:\DOCUME~1\LOCALS~1\APPLIC~1\..
[29/11/2007|04:12] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[15/04/2008|18:18] C:\DOCUME~1\Loulou\APPLIC~1\.
[15/04/2008|18:18] C:\DOCUME~1\Loulou\APPLIC~1\..
[28/12/2007|00:58] C:\DOCUME~1\Loulou\APPLIC~1\Adobe
[29/11/2007|04:47] C:\DOCUME~1\Loulou\APPLIC~1\ATI
[01/12/2007|04:11] C:\DOCUME~1\Loulou\APPLIC~1\CyberLink
[29/11/2007|04:06] C:\DOCUME~1\Loulou\APPLIC~1\desktop.ini
[26/03/2008|22:49] C:\DOCUME~1\Loulou\APPLIC~1\Hewlett-PackardHP PSC 1500 series1205259059_API.log
[26/03/2008|22:49] C:\DOCUME~1\Loulou\APPLIC~1\Hewlett-PackardHP PSC 1500 series1205259059_PROTOCOL.log
[26/03/2008|22:49] C:\DOCUME~1\Loulou\APPLIC~1\Hewlett-PackardHP PSC 1500 series1205259059_UI.log
[26/03/2008|22:49] C:\DOCUME~1\Loulou\APPLIC~1\HP
[29/11/2007|03:21] C:\DOCUME~1\Loulou\APPLIC~1\Identities
[06/04/2008|15:41] C:\DOCUME~1\Loulou\APPLIC~1\Image Zone Express
[29/11/2007|03:23] C:\DOCUME~1\Loulou\APPLIC~1\InstallShield
[06/01/2008|19:12] C:\DOCUME~1\Loulou\APPLIC~1\InterTrust
[29/11/2007|04:37] C:\DOCUME~1\Loulou\APPLIC~1\Macromedia
[01/12/2007|04:22] C:\DOCUME~1\Loulou\APPLIC~1\Media Player Classic
[25/02/2008|10:39] C:\DOCUME~1\Loulou\APPLIC~1\Microsoft
[29/11/2007|14:29] C:\DOCUME~1\Loulou\APPLIC~1\Mozilla
[29/11/2007|14:50] C:\DOCUME~1\Loulou\APPLIC~1\Nero
[04/04/2008|15:43] C:\DOCUME~1\Loulou\APPLIC~1\Real
[01/12/2007|04:05] C:\DOCUME~1\Loulou\APPLIC~1\Sun
[01/12/2007|04:14] C:\DOCUME~1\Loulou\APPLIC~1\TuneUp Software
[16/04/2008|10:00] C:\DOCUME~1\Loulou\APPLIC~1\U3
[29/11/2007|14:39] C:\DOCUME~1\Loulou\APPLIC~1\WinRAR
[29/11/2007|03:20] C:\DOCUME~1\NETWOR~1\APPLIC~1\.
[29/11/2007|03:20] C:\DOCUME~1\NETWOR~1\APPLIC~1\..
[29/11/2007|03:15] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------
[11/04/2008 17:15][--a------] C:\WINDOWS\tasks\Maintenance en 1 clic.job
[16/04/2008 10:53][--ah-----] C:\WINDOWS\tasks\SA.DAT
[24/08/2001 16:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
---------------[ Listing des dossiers dans C:\Program Files ]--------------
[15/04/2008|18:18] C:\Program Files\.
[15/04/2008|18:18] C:\Program Files\..
[14/01/2008|20:41] C:\Program Files\Adobe
[29/11/2007|04:55] C:\Program Files\AMD
[29/11/2007|04:46] C:\Program Files\ATI Technologies
[29/11/2007|14:37] C:\Program Files\CCleaner
[29/11/2007|03:12] C:\Program Files\ComPlus Applications
[29/03/2008|20:49] C:\Program Files\CyberLink
[29/11/2007|04:53] C:\Program Files\DIFX
[01/12/2007|04:02] C:\Program Files\ESET
[11/03/2008|20:10] C:\Program Files\Fichiers communs
[11/03/2008|20:09] C:\Program Files\Hewlett-Packard
[11/03/2008|20:10] C:\Program Files\HP
[12/04/2008|12:48] C:\Program Files\InstallShield Installation Information
[09/04/2008|22:29] C:\Program Files\Internet Explorer
[01/12/2007|04:06] C:\Program Files\Java
[01/12/2007|04:20] C:\Program Files\K-Lite Codec Pack
[01/12/2007|04:28] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[29/11/2007|03:16] C:\Program Files\microsoft frontpage
[01/12/2007|03:53] C:\Program Files\Microsoft Office
[01/12/2007|03:53] C:\Program Files\Microsoft Visual Studio
[01/12/2007|03:50] C:\Program Files\Microsoft Visual Studio 8
[01/12/2007|03:53] C:\Program Files\Microsoft Works
[01/12/2007|03:52] C:\Program Files\Microsoft.NET
[29/11/2007|03:13] C:\Program Files\Movie Maker
[15/04/2008|23:16] C:\Program Files\Mozilla Firefox
[29/11/2007|03:53] C:\Program Files\MSBuild
[29/11/2007|03:16] C:\Program Files\msn gaming zone
[01/12/2007|04:32] C:\Program Files\MSXML 4.0
[29/11/2007|04:24] C:\Program Files\MSXML 6.0
[29/11/2007|14:48] C:\Program Files\Nero
[29/11/2007|03:16] C:\Program Files\netmeeting
[01/12/2007|04:07] C:\Program Files\OO Software
[29/11/2007|03:56] C:\Program Files\Outlook Express
[29/03/2008|20:50] C:\Program Files\QuickTime Alternative
[29/11/2007|04:49] C:\Program Files\Realtek
[29/11/2007|03:51] C:\Program Files\Reference Assemblies
[29/11/2007|03:14] C:\Program Files\Services en ligne
[01/12/2007|04:15] C:\Program Files\TuneUp Utilities 2007
[29/11/2007|03:21] C:\Program Files\Uninstall Information
[06/04/2008|18:45] C:\Program Files\Wesnoth
[07/12/2007|21:16] C:\Program Files\Windows Live
[09/03/2008|22:16] C:\Program Files\Windows Media Connect 2
[29/11/2007|03:49] C:\Program Files\Windows Media Player
[29/11/2007|03:16] C:\Program Files\Windows NT
[29/11/2007|03:14] C:\Program Files\WindowsUpdate
[29/11/2007|14:38] C:\Program Files\WinRAR
[29/11/2007|03:16] C:\Program Files\xerox
------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------
[11/03/2008|20:10] C:\Program Files\Fichiers communs\.
[11/03/2008|20:10] C:\Program Files\Fichiers communs\..
[14/01/2008|20:41] C:\Program Files\Fichiers communs\Adobe
[01/12/2007|03:53] C:\Program Files\Fichiers communs\DESIGNER
[11/03/2008|20:07] C:\Program Files\Fichiers communs\Hewlett-Packard
[11/03/2008|20:10] C:\Program Files\Fichiers communs\HP
[29/11/2007|04:45] C:\Program Files\Fichiers communs\InstallShield
[01/12/2007|04:05] C:\Program Files\Fichiers communs\Java
[07/12/2007|21:17] C:\Program Files\Fichiers communs\Microsoft Shared
[29/11/2007|03:13] C:\Program Files\Fichiers communs\MSSoap
[29/11/2007|14:49] C:\Program Files\Fichiers communs\Nero
[29/11/2007|04:06] C:\Program Files\Fichiers communs\ODBC
[29/03/2008|20:52] C:\Program Files\Fichiers communs\Services
[29/11/2007|04:06] C:\Program Files\Fichiers communs\SpeechEngines
[01/12/2007|03:49] C:\Program Files\Fichiers communs\System
[07/12/2007|21:16] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[01/12/2007|04:14] C:\Program Files\Fichiers communs\Wise Installation Wizard
----------------------[ Recherche avec S_Lop ]---------------------
Aucun fichier / dossier Lop trouvé !
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
Aucun fichier / dossier Lop trouvé !
----------------------[ Verification du Registre ]----------------------
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ford obj mpeg]
"DisplayName"="CiD Help"
"UninstallString"="C:\\DOCUME~1\\Loulou\\APPLIC~1\\CHICTH~1\\Cash Iso.exe -uninstall"
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts PROPRE
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-04-16 11:03:11
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
Aucune autre infection trouvée !
/!\ [Fich:100][Doss:33] C:\DOCUME~1\Loulou\LOCALS~1\Temp
/!\ [Fich:242][Doss:0] C:\DOCUME~1\Loulou\Cookies
/!\ [Fich:1307][Doss:8] C:\DOCUME~1\Loulou\LOCALS~1\TEMPOR~1\content.IE5
--------------------[ Fin du rapport a 11:04:18,28 ]----------------------
-----------------------[ Lop S&D 4.1.1-1 XP/Vista ]---------------------
[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : Loulou ] [ "C:\Lop SD" ]
[ 16/04/2008 | 11:02:46,39 ] [ PC : XPSP2-3F90AAB40 ]
[ MAJ : 15-04-2008 | 20:20 ]
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////
Supprimé! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Time Dead Warn Default\DART KIND.exe
Supprimé! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Time Dead Warn Default
//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
-------------[ Listing des dossiers dans Application Data ]------------
[16/04/2008|11:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\.
[16/04/2008|11:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\..
[14/01/2008|20:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[01/12/2007|04:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[29/11/2007|04:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ATI
[01/12/2007|04:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[29/11/2007|04:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[01/12/2007|04:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ESET
[11/03/2008|20:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[11/03/2008|20:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hpzinstall.log
[11/04/2008|16:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\LauncherAccess.dt
[07/12/2007|21:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[09/04/2008|22:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Help
[29/11/2007|14:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Nero
[01/12/2007|04:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Real
[01/12/2007|04:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TuneUp Software
[29/11/2007|03:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[07/12/2007|20:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[29/11/2007|04:06] C:\DOCUME~1\DEFAUL~1\APPLIC~1\.
[29/11/2007|04:06] C:\DOCUME~1\DEFAUL~1\APPLIC~1\..
[29/11/2007|04:06] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[29/11/2007|03:15] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[29/11/2007|03:20] C:\DOCUME~1\LOCALS~1\APPLIC~1\.
[29/11/2007|03:20] C:\DOCUME~1\LOCALS~1\APPLIC~1\..
[29/11/2007|04:12] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[15/04/2008|18:18] C:\DOCUME~1\Loulou\APPLIC~1\.
[15/04/2008|18:18] C:\DOCUME~1\Loulou\APPLIC~1\..
[28/12/2007|00:58] C:\DOCUME~1\Loulou\APPLIC~1\Adobe
[29/11/2007|04:47] C:\DOCUME~1\Loulou\APPLIC~1\ATI
[01/12/2007|04:11] C:\DOCUME~1\Loulou\APPLIC~1\CyberLink
[29/11/2007|04:06] C:\DOCUME~1\Loulou\APPLIC~1\desktop.ini
[26/03/2008|22:49] C:\DOCUME~1\Loulou\APPLIC~1\Hewlett-PackardHP PSC 1500 series1205259059_API.log
[26/03/2008|22:49] C:\DOCUME~1\Loulou\APPLIC~1\Hewlett-PackardHP PSC 1500 series1205259059_PROTOCOL.log
[26/03/2008|22:49] C:\DOCUME~1\Loulou\APPLIC~1\Hewlett-PackardHP PSC 1500 series1205259059_UI.log
[26/03/2008|22:49] C:\DOCUME~1\Loulou\APPLIC~1\HP
[29/11/2007|03:21] C:\DOCUME~1\Loulou\APPLIC~1\Identities
[06/04/2008|15:41] C:\DOCUME~1\Loulou\APPLIC~1\Image Zone Express
[29/11/2007|03:23] C:\DOCUME~1\Loulou\APPLIC~1\InstallShield
[06/01/2008|19:12] C:\DOCUME~1\Loulou\APPLIC~1\InterTrust
[29/11/2007|04:37] C:\DOCUME~1\Loulou\APPLIC~1\Macromedia
[01/12/2007|04:22] C:\DOCUME~1\Loulou\APPLIC~1\Media Player Classic
[25/02/2008|10:39] C:\DOCUME~1\Loulou\APPLIC~1\Microsoft
[29/11/2007|14:29] C:\DOCUME~1\Loulou\APPLIC~1\Mozilla
[29/11/2007|14:50] C:\DOCUME~1\Loulou\APPLIC~1\Nero
[04/04/2008|15:43] C:\DOCUME~1\Loulou\APPLIC~1\Real
[01/12/2007|04:05] C:\DOCUME~1\Loulou\APPLIC~1\Sun
[01/12/2007|04:14] C:\DOCUME~1\Loulou\APPLIC~1\TuneUp Software
[16/04/2008|10:00] C:\DOCUME~1\Loulou\APPLIC~1\U3
[29/11/2007|14:39] C:\DOCUME~1\Loulou\APPLIC~1\WinRAR
[29/11/2007|03:20] C:\DOCUME~1\NETWOR~1\APPLIC~1\.
[29/11/2007|03:20] C:\DOCUME~1\NETWOR~1\APPLIC~1\..
[29/11/2007|03:15] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------
[11/04/2008 17:15][--a------] C:\WINDOWS\tasks\Maintenance en 1 clic.job
[16/04/2008 10:53][--ah-----] C:\WINDOWS\tasks\SA.DAT
[24/08/2001 16:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
---------------[ Listing des dossiers dans C:\Program Files ]--------------
[15/04/2008|18:18] C:\Program Files\.
[15/04/2008|18:18] C:\Program Files\..
[14/01/2008|20:41] C:\Program Files\Adobe
[29/11/2007|04:55] C:\Program Files\AMD
[29/11/2007|04:46] C:\Program Files\ATI Technologies
[29/11/2007|14:37] C:\Program Files\CCleaner
[29/11/2007|03:12] C:\Program Files\ComPlus Applications
[29/03/2008|20:49] C:\Program Files\CyberLink
[29/11/2007|04:53] C:\Program Files\DIFX
[01/12/2007|04:02] C:\Program Files\ESET
[11/03/2008|20:10] C:\Program Files\Fichiers communs
[11/03/2008|20:09] C:\Program Files\Hewlett-Packard
[11/03/2008|20:10] C:\Program Files\HP
[12/04/2008|12:48] C:\Program Files\InstallShield Installation Information
[09/04/2008|22:29] C:\Program Files\Internet Explorer
[01/12/2007|04:06] C:\Program Files\Java
[01/12/2007|04:20] C:\Program Files\K-Lite Codec Pack
[01/12/2007|04:28] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[29/11/2007|03:16] C:\Program Files\microsoft frontpage
[01/12/2007|03:53] C:\Program Files\Microsoft Office
[01/12/2007|03:53] C:\Program Files\Microsoft Visual Studio
[01/12/2007|03:50] C:\Program Files\Microsoft Visual Studio 8
[01/12/2007|03:53] C:\Program Files\Microsoft Works
[01/12/2007|03:52] C:\Program Files\Microsoft.NET
[29/11/2007|03:13] C:\Program Files\Movie Maker
[15/04/2008|23:16] C:\Program Files\Mozilla Firefox
[29/11/2007|03:53] C:\Program Files\MSBuild
[29/11/2007|03:16] C:\Program Files\msn gaming zone
[01/12/2007|04:32] C:\Program Files\MSXML 4.0
[29/11/2007|04:24] C:\Program Files\MSXML 6.0
[29/11/2007|14:48] C:\Program Files\Nero
[29/11/2007|03:16] C:\Program Files\netmeeting
[01/12/2007|04:07] C:\Program Files\OO Software
[29/11/2007|03:56] C:\Program Files\Outlook Express
[29/03/2008|20:50] C:\Program Files\QuickTime Alternative
[29/11/2007|04:49] C:\Program Files\Realtek
[29/11/2007|03:51] C:\Program Files\Reference Assemblies
[29/11/2007|03:14] C:\Program Files\Services en ligne
[01/12/2007|04:15] C:\Program Files\TuneUp Utilities 2007
[29/11/2007|03:21] C:\Program Files\Uninstall Information
[06/04/2008|18:45] C:\Program Files\Wesnoth
[07/12/2007|21:16] C:\Program Files\Windows Live
[09/03/2008|22:16] C:\Program Files\Windows Media Connect 2
[29/11/2007|03:49] C:\Program Files\Windows Media Player
[29/11/2007|03:16] C:\Program Files\Windows NT
[29/11/2007|03:14] C:\Program Files\WindowsUpdate
[29/11/2007|14:38] C:\Program Files\WinRAR
[29/11/2007|03:16] C:\Program Files\xerox
------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------
[11/03/2008|20:10] C:\Program Files\Fichiers communs\.
[11/03/2008|20:10] C:\Program Files\Fichiers communs\..
[14/01/2008|20:41] C:\Program Files\Fichiers communs\Adobe
[01/12/2007|03:53] C:\Program Files\Fichiers communs\DESIGNER
[11/03/2008|20:07] C:\Program Files\Fichiers communs\Hewlett-Packard
[11/03/2008|20:10] C:\Program Files\Fichiers communs\HP
[29/11/2007|04:45] C:\Program Files\Fichiers communs\InstallShield
[01/12/2007|04:05] C:\Program Files\Fichiers communs\Java
[07/12/2007|21:17] C:\Program Files\Fichiers communs\Microsoft Shared
[29/11/2007|03:13] C:\Program Files\Fichiers communs\MSSoap
[29/11/2007|14:49] C:\Program Files\Fichiers communs\Nero
[29/11/2007|04:06] C:\Program Files\Fichiers communs\ODBC
[29/03/2008|20:52] C:\Program Files\Fichiers communs\Services
[29/11/2007|04:06] C:\Program Files\Fichiers communs\SpeechEngines
[01/12/2007|03:49] C:\Program Files\Fichiers communs\System
[07/12/2007|21:16] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[01/12/2007|04:14] C:\Program Files\Fichiers communs\Wise Installation Wizard
----------------------[ Recherche avec S_Lop ]---------------------
Aucun fichier / dossier Lop trouvé !
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
Aucun fichier / dossier Lop trouvé !
----------------------[ Verification du Registre ]----------------------
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ford obj mpeg]
"DisplayName"="CiD Help"
"UninstallString"="C:\\DOCUME~1\\Loulou\\APPLIC~1\\CHICTH~1\\Cash Iso.exe -uninstall"
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts PROPRE
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-04-16 11:03:11
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
Aucune autre infection trouvée !
/!\ [Fich:100][Doss:33] C:\DOCUME~1\Loulou\LOCALS~1\Temp
/!\ [Fich:242][Doss:0] C:\DOCUME~1\Loulou\Cookies
/!\ [Fich:1307][Doss:8] C:\DOCUME~1\Loulou\LOCALS~1\TEMPOR~1\content.IE5
--------------------[ Fin du rapport a 11:04:18,28 ]----------------------
Re,
Fix les lignes dans le cadre ci-dessous avec Hijackthis : AIDE EN IMAGES
&
Télécharge OTMoveIt (d'OldTimer). Sauvegarde-le sur ton Bureau.
Sélectionne tous les emplacements dans le cadre ci-dessous :
---> Clique-droit puis Copier (ou Ctrl+C)
Double-clique sur OTMoveIt.exe afin de le lancer.
Fais un Clique-droit sur le cadre de gauche puis choisis Coller (ou Ctrl+V).
Clique maintenant sur [#ff0000]MoveIt![/#f]
[#ff0000]Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
Accepte en cliquant sur YES.[/#f]
Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
Le nom du rapport correspond au moment de sa création : date_heure.log
->Informations sur le logiciel<-
Fix les lignes dans le cadre ci-dessous avec Hijackthis : AIDE EN IMAGES
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O4 - HKLM\..\Run: [warn default inter for] C:\Documents and Settings\All Users\Application Data\Time Dead Warn Default\DART KIND.exe
O4 - HKCU\..\Run: [Type bend] C:\DOCUME~1\Loulou\APPLIC~1\CHICTH~1\Cash Iso.exe
O4 - HKLM\..\Run: [warn default inter for] C:\Documents and Settings\All Users\Application Data\Time Dead Warn Default\DART KIND.exe
O4 - HKCU\..\Run: [Type bend] C:\DOCUME~1\Loulou\APPLIC~1\CHICTH~1\Cash Iso.exe
&
Télécharge OTMoveIt (d'OldTimer). Sauvegarde-le sur ton Bureau.
Sélectionne tous les emplacements dans le cadre ci-dessous :
C:\Documents and Settings\All Users\Application Data\Time Dead Warn Default
C:\DOCUME~1\Loulou\APPLIC~1\CHICTH~1
C:\Program Files\Chic This
C:\DOCUME~1\Loulou\APPLIC~1\CHICTH~1
C:\Program Files\Chic This
---> Clique-droit puis Copier (ou Ctrl+C)
Double-clique sur OTMoveIt.exe afin de le lancer.
Fais un Clique-droit sur le cadre de gauche puis choisis Coller (ou Ctrl+V).
Clique maintenant sur [#ff0000]MoveIt![/#f]
[#ff0000]Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
Accepte en cliquant sur YES.[/#f]
Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
Le nom du rapport correspond au moment de sa création : date_heure.log
->Informations sur le logiciel<-
Lassé par la pub ? Créez un compte
- Contenus similaires :
- ForumVirus de publicité
- articlesPublicité intempestive sur mac
- ForumPublicité intempestive sur pc
- ForumPublicité intempestive windows 7
- articlesPublicité intempestive google chrome
- ForumPublicité intempestive
- ForumComment enlever publicité intempestive
- ForumPublicité intempestive mac
- ForumPublicité intempestives internet explorer
- ForumPublicité intempestive sous firefox
- Voir plus
