Iexplore
Dernière réponse : dans Sécurité
Bonjour à tous !
Depuis plusieurs jours déjà, mon pc rame et cela semble être à cause d'un processus appelé iexplore.
J'ai fais une recherche et donc apparament il faut mettre le rapport de HiJackThis ici !
Dois-je suivre la même démarche que les autres ou bien c'st différent ? J'attend vos précieux conseils !
Merci !
Bonne journée !
Depuis plusieurs jours déjà, mon pc rame et cela semble être à cause d'un processus appelé iexplore.
J'ai fais une recherche et donc apparament il faut mettre le rapport de HiJackThis ici !
Spoiler
Logfile of HijackThis v1.99.1
Scan saved at 14:28:44, on 20/04/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe
C:\Program Files\Avast4\aswUpdSv.exe
C:\Program Files\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\APC\POWERC~1\agent\pbeagent.exe
C:\PROGRA~1\APC\POWERC~1\server\PBESER~1.EXE
C:\PROGRA~1\Iomega\System32\AppServices.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\PROGRA~1\NORTON~1\NORTON~1\NPROTECT.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\PROGRA~1\NORTON~1\NORTON~1\SPEEDD~1\NOPDB.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Iomega\AutoDisk\ADService.exe
C:\WINDOWS\system32\Fast.exe
C:\Program Files\Avast4\ashMaiSv.exe
C:\Program Files\Avast4\ashWebSv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\WINDOWS\system32\taskswitch.exe
C:\WINDOWS\system32\fast.exe
C:\WINDOWS\system32\RunDll32.exe
C:\PROGRA~1\Avast4\ashDisp.exe
C:\Program Files\eBay\eBay Toolbar2\eBayTBDaemon.exe
C:\WINDOWS\htpatch.exe
C:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe
C:\Program Files\Nero\Nero 7\InCD\InCD.exe
C:\WINDOWS\Logi_MwX.Exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\WINDOWS\VM_STI.EXE
C:\Program Files\Iomega\AutoDisk\ADUserMon.exe
C:\Program Files\Iomega\DriveIcons\ImgIcon.exe
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe
C:\Program Files\Microsoft Money\System\mnyexpr.exe
C:\Program Files\InfoScan Micro Tray\IScnTray.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Fichiers communs\Logitech\khalshared\KHALMNPR.EXE
C:\Program Files\Nikon\PictureProject\NkbMonitor.exe
C:\Program Files\Java\jre1.6.0_03\bin\jucheck.exe
C:\Program Files\Outlook Express\msimn.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\PROGRA~1\MSNMES~1\msnmsgr.exe
C:\WINDOWS\system32\taskmgr.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\ZipCentral\ZCentral.exe
C:\DOCUME~1\SBASTI~1\LOCALS~1\Temp\_ZCTmp.Dir\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?linkid=677
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: eBay Toolbar Helper - {22D8E815-4A5E-4DFB-845E-AAB64207F5BD} - C:\Program Files\eBay\eBay Toolbar2\eBayTB.dll
O2 - BHO: (no name) - {549B5CA7-4A86-11D7-A4DF-000874180BB3} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: eBay Toolbar - {92085AD4-F48A-450D-BD93-B28CC7DF67CE} - C:\Program Files\eBay\eBay Toolbar2\eBayTB.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [CoolSwitch] C:\WINDOWS\system32\taskswitch.exe
O4 - HKLM\..\Run: [FastUser] C:\WINDOWS\system32\fast.exe
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [eBayToolbar] C:\Program Files\eBay\eBay Toolbar2\eBayTBDaemon.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [HTpatch] C:\WINDOWS\htpatch.exe
O4 - HKLM\..\Run: [SiSUSBRG] C:\WINDOWS\SiSUSBrg.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [InCD] C:\Program Files\Nero\Nero 7\InCD\InCD.exe
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -masquer
O4 - HKLM\..\Run: [BigDogPath] C:\WINDOWS\VM_STI.EXE VIMICRO USB PC Camera
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [ADUserMon] C:\Program Files\Iomega\AutoDisk\ADUserMon.exe
O4 - HKLM\..\Run: [Iomega Drive Icons] C:\Program Files\Iomega\DriveIcons\ImgIcon.exe
O4 - HKLM\..\Run: [Deskup] C:\Program Files\Iomega\DriveIcons\deskup.exe /IMGSTART
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [Online chin internet bolt] C:\Documents and Settings\All Users\Application Data\Bags Plus Online Chin\Hope link.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [Norton SystemWorks] C:\Program Files\Fichiers communs\Symantec Shared\CfgWiz.exe /GUID {DA9935BA-22F7-44ee-BD12-BD8B87700BEA}
O4 - HKCU\..\Run: [WinButler] C:\Documents and Settings\Sébastien\Application Data\WinButler\WinButler.exe
O4 - HKCU\..\Run: [SfKg6wIPu] C:\Documents and Settings\Sébastien\Application Data\Microsoft\Windows\rayio.exe
O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\mnyexpr.exe"
O4 - HKCU\..\Run: [2bold] C:\DOCUME~1\SBASTI~1\APPLIC~1\MP3ONL~1\inter logo.exe
O4 - Global Startup: InfoScan Tray.lnk = ?
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: NkbMonitor.exe.lnk = C:\Program Files\Nikon\PictureProject\NkbMonitor.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Recherche sur eBay - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Co...
O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.photobox.fr/assets/aurigma/ImageUploader4.ca...
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://fichiers.touslesdrivers.com/fichiers/hardwaredet...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
O16 - DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} (Virtools WebPlayer Class) - http://3dlifeplayer.dl.3dvia.com/player/install/install...
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: APC PBE Agent (APCPBEAgent) - APC - C:\PROGRA~1\APC\POWERC~1\agent\pbeagent.exe
O23 - Service: APC PBE Server (APCPBEServer) - APC - C:\PROGRA~1\APC\POWERC~1\server\PBESER~1.EXE
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe
O23 - Service: Iomega App Services - Iomega Corporation - C:\PROGRA~1\Iomega\System32\AppServices.exe
O23 - Service: Norton Unerase Protection (NProtectService) - Symantec Corporation - C:\PROGRA~1\NORTON~1\NORTON~1\NPROTECT.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Speed Disk service - Symantec Corporation - C:\PROGRA~1\NORTON~1\NORTON~1\SPEEDD~1\NOPDB.EXE
O23 - Service: Iomega Active Disk (_IOMEGA_ACTIVE_DISK_SERVICE_) - Iomega Corporation - C:\Program Files\Iomega\AutoDisk\ADService.exe
Scan saved at 14:28:44, on 20/04/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe
C:\Program Files\Avast4\aswUpdSv.exe
C:\Program Files\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\APC\POWERC~1\agent\pbeagent.exe
C:\PROGRA~1\APC\POWERC~1\server\PBESER~1.EXE
C:\PROGRA~1\Iomega\System32\AppServices.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\PROGRA~1\NORTON~1\NORTON~1\NPROTECT.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\PROGRA~1\NORTON~1\NORTON~1\SPEEDD~1\NOPDB.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Iomega\AutoDisk\ADService.exe
C:\WINDOWS\system32\Fast.exe
C:\Program Files\Avast4\ashMaiSv.exe
C:\Program Files\Avast4\ashWebSv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\WINDOWS\system32\taskswitch.exe
C:\WINDOWS\system32\fast.exe
C:\WINDOWS\system32\RunDll32.exe
C:\PROGRA~1\Avast4\ashDisp.exe
C:\Program Files\eBay\eBay Toolbar2\eBayTBDaemon.exe
C:\WINDOWS\htpatch.exe
C:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe
C:\Program Files\Nero\Nero 7\InCD\InCD.exe
C:\WINDOWS\Logi_MwX.Exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\WINDOWS\VM_STI.EXE
C:\Program Files\Iomega\AutoDisk\ADUserMon.exe
C:\Program Files\Iomega\DriveIcons\ImgIcon.exe
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe
C:\Program Files\Microsoft Money\System\mnyexpr.exe
C:\Program Files\InfoScan Micro Tray\IScnTray.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Fichiers communs\Logitech\khalshared\KHALMNPR.EXE
C:\Program Files\Nikon\PictureProject\NkbMonitor.exe
C:\Program Files\Java\jre1.6.0_03\bin\jucheck.exe
C:\Program Files\Outlook Express\msimn.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\PROGRA~1\MSNMES~1\msnmsgr.exe
C:\WINDOWS\system32\taskmgr.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\ZipCentral\ZCentral.exe
C:\DOCUME~1\SBASTI~1\LOCALS~1\Temp\_ZCTmp.Dir\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?linkid=677
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: eBay Toolbar Helper - {22D8E815-4A5E-4DFB-845E-AAB64207F5BD} - C:\Program Files\eBay\eBay Toolbar2\eBayTB.dll
O2 - BHO: (no name) - {549B5CA7-4A86-11D7-A4DF-000874180BB3} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: eBay Toolbar - {92085AD4-F48A-450D-BD93-B28CC7DF67CE} - C:\Program Files\eBay\eBay Toolbar2\eBayTB.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [CoolSwitch] C:\WINDOWS\system32\taskswitch.exe
O4 - HKLM\..\Run: [FastUser] C:\WINDOWS\system32\fast.exe
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [eBayToolbar] C:\Program Files\eBay\eBay Toolbar2\eBayTBDaemon.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [HTpatch] C:\WINDOWS\htpatch.exe
O4 - HKLM\..\Run: [SiSUSBRG] C:\WINDOWS\SiSUSBrg.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [InCD] C:\Program Files\Nero\Nero 7\InCD\InCD.exe
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -masquer
O4 - HKLM\..\Run: [BigDogPath] C:\WINDOWS\VM_STI.EXE VIMICRO USB PC Camera
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [ADUserMon] C:\Program Files\Iomega\AutoDisk\ADUserMon.exe
O4 - HKLM\..\Run: [Iomega Drive Icons] C:\Program Files\Iomega\DriveIcons\ImgIcon.exe
O4 - HKLM\..\Run: [Deskup] C:\Program Files\Iomega\DriveIcons\deskup.exe /IMGSTART
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [Online chin internet bolt] C:\Documents and Settings\All Users\Application Data\Bags Plus Online Chin\Hope link.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [Norton SystemWorks] C:\Program Files\Fichiers communs\Symantec Shared\CfgWiz.exe /GUID {DA9935BA-22F7-44ee-BD12-BD8B87700BEA}
O4 - HKCU\..\Run: [WinButler] C:\Documents and Settings\Sébastien\Application Data\WinButler\WinButler.exe
O4 - HKCU\..\Run: [SfKg6wIPu] C:\Documents and Settings\Sébastien\Application Data\Microsoft\Windows\rayio.exe
O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\mnyexpr.exe"
O4 - HKCU\..\Run: [2bold] C:\DOCUME~1\SBASTI~1\APPLIC~1\MP3ONL~1\inter logo.exe
O4 - Global Startup: InfoScan Tray.lnk = ?
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: NkbMonitor.exe.lnk = C:\Program Files\Nikon\PictureProject\NkbMonitor.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Recherche sur eBay - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Co...
O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.photobox.fr/assets/aurigma/ImageUploader4.ca...
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://fichiers.touslesdrivers.com/fichiers/hardwaredet...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
O16 - DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} (Virtools WebPlayer Class) - http://3dlifeplayer.dl.3dvia.com/player/install/install...
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: APC PBE Agent (APCPBEAgent) - APC - C:\PROGRA~1\APC\POWERC~1\agent\pbeagent.exe
O23 - Service: APC PBE Server (APCPBEServer) - APC - C:\PROGRA~1\APC\POWERC~1\server\PBESER~1.EXE
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe
O23 - Service: Iomega App Services - Iomega Corporation - C:\PROGRA~1\Iomega\System32\AppServices.exe
O23 - Service: Norton Unerase Protection (NProtectService) - Symantec Corporation - C:\PROGRA~1\NORTON~1\NORTON~1\NPROTECT.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Speed Disk service - Symantec Corporation - C:\PROGRA~1\NORTON~1\NORTON~1\SPEEDD~1\NOPDB.EXE
O23 - Service: Iomega Active Disk (_IOMEGA_ACTIVE_DISK_SERVICE_) - Iomega Corporation - C:\Program Files\Iomega\AutoDisk\ADService.exe
Dois-je suivre la même démarche que les autres ou bien c'st différent ? J'attend vos précieux conseils !
Merci !
Bonne journée !
Autres pages sur : iexplore
Lassé par la pub ? Créez un compte
Salut,
Tu es infecté par Lop.
Prière de poster tes rapports sans balises![;)]( ";)")
Télécharge Lop S&D.exe ( d’ Eric 71 & Angeldark ) sur ton bureau.
Double-clique dessus pour lancer l'installation
Puis double-clique sur le raccourci Lop S&D présent sur ton bureau (Si tu es sous Vista, clique droit -> exécuter en tant qu'admin)
Séléctionne la langue souhaitée , puis choisis l'Option 1 ( Recherche )
Patiente jusqu'à la fin du scan
Poste le rapport généré ( C:\lopR.txt )
Si ton bureau ne réapparait pas, fais CTRL+ALT+SUPP pour ouvrir le gestionnaire de tâches.
Puis rends-toi à l'onglet "processus". Clique en haut à gauche sur fichiers et choisis "Nouvelle tâche (exécuter)"
Tapes explorer et valide. Cela te fera apparaitre ton bureau
Tu es infecté par Lop.
Prière de poster tes rapports sans balises
Télécharge Lop S&D.exe ( d’ Eric 71 & Angeldark ) sur ton bureau.
Si ton bureau ne réapparait pas, fais CTRL+ALT+SUPP pour ouvrir le gestionnaire de tâches.
Puis rends-toi à l'onglet "processus". Clique en haut à gauche sur fichiers et choisis "Nouvelle tâche (exécuter)"
Tapes explorer et valide. Cela te fera apparaitre ton bureau
voila le rapport merci de votre aide j'espere ne pas m'etre trompé!
-----------------------[ Lop S&D 4.1.1-4 XP/Vista ]---------------------
[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : S‚bastien ] [ "C:\Lop SD" ]
[ 20/04/2008 | 18:16:50,17 ] [ PC : SEBASTIEN ]
[ MAJ : 19-04-2008 | 15:41 ]
-------------[ Listing des dossiers dans Application Data ]------------
[13/04/2008|10:35] C:\DOCUME~1\ADMINI~1\APPLIC~1\.
[13/04/2008|10:35] C:\DOCUME~1\ADMINI~1\APPLIC~1\..
[01/08/2007|15:43] C:\DOCUME~1\ADMINI~1\APPLIC~1\Active Disk
[31/07/2007|22:38] C:\DOCUME~1\ADMINI~1\APPLIC~1\Adobe
[29/07/2007|20:56] C:\DOCUME~1\ADMINI~1\APPLIC~1\Ahead
[28/07/2007|15:01] C:\DOCUME~1\ADMINI~1\APPLIC~1\desktop.ini
[13/04/2008|10:35] C:\DOCUME~1\ADMINI~1\APPLIC~1\eBay
[28/07/2007|14:50] C:\DOCUME~1\ADMINI~1\APPLIC~1\Google
[31/07/2007|22:42] C:\DOCUME~1\ADMINI~1\APPLIC~1\Help
[28/07/2007|14:49] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[01/08/2007|15:17] C:\DOCUME~1\ADMINI~1\APPLIC~1\Logitech
[16/08/2007|21:21] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[31/07/2007|09:03] C:\DOCUME~1\ADMINI~1\APPLIC~1\OfficeUpdate12
[17/08/2007|13:05] C:\DOCUME~1\ADMINI~1\APPLIC~1\ShoppingReport
[31/07/2007|22:41] C:\DOCUME~1\ADMINI~1\APPLIC~1\vlc
[10/04/2008|15:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\.
[10/04/2008|15:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\..
[26/12/2007|15:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[30/07/2007|17:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[10/04/2008|15:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Bags Plus Online Chin
[29/07/2007|20:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[28/07/2007|15:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[06/01/2008|20:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Downloaded Installations
[05/11/2007|11:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\eBay
[15/10/2007|19:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\EnterNHelp
[28/07/2007|13:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[06/01/2008|20:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Installations
[26/12/2007|15:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\LauncherAccess.dt
[05/09/2007|11:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logitech
[06/08/2007|18:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[06/09/2007|18:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[04/12/2007|11:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\muvee Technologies
[29/07/2007|18:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NVIDIA
[31/07/2007|08:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Office Genuine Advantage
[17/04/2008|20:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PKP_DLec.DAT
[29/07/2007|14:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[15/10/2007|19:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ultima_T15
[20/04/2008|18:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WholeSecurity
[28/07/2007|14:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[28/07/2007|15:01] C:\DOCUME~1\DEFAUL~1\APPLIC~1\.
[28/07/2007|15:01] C:\DOCUME~1\DEFAUL~1\APPLIC~1\..
[28/07/2007|15:01] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[28/07/2007|13:15] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[23/10/2007|17:36] C:\DOCUME~1\Jacques\APPLIC~1\.
[23/10/2007|17:36] C:\DOCUME~1\Jacques\APPLIC~1\..
[16/08/2007|20:44] C:\DOCUME~1\Jacques\APPLIC~1\Active Disk
[30/07/2007|10:32] C:\DOCUME~1\Jacques\APPLIC~1\Ahead
[28/07/2007|15:01] C:\DOCUME~1\Jacques\APPLIC~1\desktop.ini
[29/07/2007|15:06] C:\DOCUME~1\Jacques\APPLIC~1\Google
[28/07/2007|13:36] C:\DOCUME~1\Jacques\APPLIC~1\Identities
[16/08/2007|20:44] C:\DOCUME~1\Jacques\APPLIC~1\Logitech
[23/10/2007|17:36] C:\DOCUME~1\Jacques\APPLIC~1\Macromedia
[31/07/2007|17:00] C:\DOCUME~1\Jacques\APPLIC~1\Microsoft
[31/07/2007|16:45] C:\DOCUME~1\Jacques\APPLIC~1\OfficeUpdate12
[16/08/2007|20:56] C:\DOCUME~1\Jacques\APPLIC~1\ShoppingReport
[29/07/2007|14:44] C:\DOCUME~1\Jacques\APPLIC~1\Symantec
[19/04/2008|19:44] C:\DOCUME~1\Laetitia\APPLIC~1\.
[19/04/2008|19:44] C:\DOCUME~1\Laetitia\APPLIC~1\..
[04/08/2007|11:03] C:\DOCUME~1\Laetitia\APPLIC~1\Active Disk
[06/01/2008|21:44] C:\DOCUME~1\Laetitia\APPLIC~1\Adobe
[30/07/2007|16:52] C:\DOCUME~1\Laetitia\APPLIC~1\Ahead
[30/07/2007|17:05] C:\DOCUME~1\Laetitia\APPLIC~1\Apple Computer
[28/07/2007|15:01] C:\DOCUME~1\Laetitia\APPLIC~1\desktop.ini
[06/11/2007|12:22] C:\DOCUME~1\Laetitia\APPLIC~1\eBay
[10/02/2008|11:22] C:\DOCUME~1\Laetitia\APPLIC~1\Google
[28/07/2007|15:58] C:\DOCUME~1\Laetitia\APPLIC~1\Identities
[04/08/2007|11:03] C:\DOCUME~1\Laetitia\APPLIC~1\Logitech
[31/07/2007|23:14] C:\DOCUME~1\Laetitia\APPLIC~1\Macromedia
[06/01/2008|22:02] C:\DOCUME~1\Laetitia\APPLIC~1\Microsoft
[19/04/2008|19:44] C:\DOCUME~1\Laetitia\APPLIC~1\Mp3 online
[05/09/2007|11:49] C:\DOCUME~1\Laetitia\APPLIC~1\ShoppingReport
[28/07/2007|13:24] C:\DOCUME~1\LOCALS~1\APPLIC~1\.
[28/07/2007|13:24] C:\DOCUME~1\LOCALS~1\APPLIC~1\..
[31/07/2007|23:17] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[28/07/2007|13:24] C:\DOCUME~1\NETWOR~1\APPLIC~1\.
[28/07/2007|13:24] C:\DOCUME~1\NETWOR~1\APPLIC~1\..
[01/08/2007|16:05] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[10/04/2008|15:42] C:\DOCUME~1\SBASTI~1\APPLIC~1\.
[10/04/2008|15:42] C:\DOCUME~1\SBASTI~1\APPLIC~1\..
[30/09/2007|00:03] C:\DOCUME~1\SBASTI~1\APPLIC~1\Active Disk
[26/12/2007|15:54] C:\DOCUME~1\SBASTI~1\APPLIC~1\Adobe
[18/09/2007|12:03] C:\DOCUME~1\SBASTI~1\APPLIC~1\AdobeDLM.log
[10/10/2007|17:57] C:\DOCUME~1\SBASTI~1\APPLIC~1\AdobeUM
[01/08/2007|16:35] C:\DOCUME~1\SBASTI~1\APPLIC~1\APC
[10/08/2007|13:00] C:\DOCUME~1\SBASTI~1\APPLIC~1\Apple Computer
[15/10/2007|19:50] C:\DOCUME~1\SBASTI~1\APPLIC~1\ArcSoft
[27/12/2007|11:57] C:\DOCUME~1\SBASTI~1\APPLIC~1\DataLayer
[28/07/2007|15:01] C:\DOCUME~1\SBASTI~1\APPLIC~1\desktop.ini
[17/09/2007|20:08] C:\DOCUME~1\SBASTI~1\APPLIC~1\dm.ini
[05/11/2007|11:25] C:\DOCUME~1\SBASTI~1\APPLIC~1\eBay
[28/07/2007|15:02] C:\DOCUME~1\SBASTI~1\APPLIC~1\Google
[04/12/2007|21:32] C:\DOCUME~1\SBASTI~1\APPLIC~1\Help
[28/07/2007|15:00] C:\DOCUME~1\SBASTI~1\APPLIC~1\Identities
[07/01/2008|17:40] C:\DOCUME~1\SBASTI~1\APPLIC~1\Leadertech
[14/04/2008|20:32] C:\DOCUME~1\SBASTI~1\APPLIC~1\LimeWire
[01/08/2007|15:46] C:\DOCUME~1\SBASTI~1\APPLIC~1\Logitech
[15/10/2007|19:17] C:\DOCUME~1\SBASTI~1\APPLIC~1\ma-config.com
[31/07/2007|23:28] C:\DOCUME~1\SBASTI~1\APPLIC~1\Macromedia
[17/04/2008|18:06] C:\DOCUME~1\SBASTI~1\APPLIC~1\Microsoft
[10/04/2008|15:43] C:\DOCUME~1\SBASTI~1\APPLIC~1\Mp3 online
[15/10/2007|19:03] C:\DOCUME~1\SBASTI~1\APPLIC~1\Nikon
[27/12/2007|11:56] C:\DOCUME~1\SBASTI~1\APPLIC~1\Nokia
[26/12/2007|16:15] C:\DOCUME~1\SBASTI~1\APPLIC~1\Nokia Multimedia Player
[26/12/2007|15:58] C:\DOCUME~1\SBASTI~1\APPLIC~1\PC Suite
[26/12/2007|15:24] C:\DOCUME~1\SBASTI~1\APPLIC~1\Samsung
[31/07/2007|23:38] C:\DOCUME~1\SBASTI~1\APPLIC~1\Shareaza
[15/08/2007|16:03] C:\DOCUME~1\SBASTI~1\APPLIC~1\Sun
[03/01/2008|13:10] C:\DOCUME~1\SBASTI~1\APPLIC~1\WinButler
----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------
[20/04/2008 18:00][--ah-----] C:\WINDOWS\tasks\A38A778C9141E9DC.job
[20/04/2008 11:56][--ah-----] C:\WINDOWS\tasks\MP Scheduled Scan.job
[15/04/2008 22:19][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[19/04/2008 00:00][--a------] C:\WINDOWS\tasks\Symantec Drmc.job
[20/04/2008 15:54][--a------] C:\WINDOWS\tasks\Symantec NetDetect.job
[20/04/2008 17:30][--a------] C:\WINDOWS\tasks\Norton SystemWorks One Button Checkup.job
[20/04/2008 11:52][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
---------------[ Listing des dossiers dans C:\Program Files ]--------------
[10/04/2008|15:43] C:\Program Files\.
[10/04/2008|15:43] C:\Program Files\..
[26/12/2007|15:53] C:\Program Files\Adobe
[07/11/2007|00:07] C:\Program Files\Adverts
[01/08/2007|16:28] C:\Program Files\APC
[09/10/2007|23:16] C:\Program Files\Apple Software Update
[15/10/2007|18:52] C:\Program Files\ArcSoft
[06/01/2008|20:55] C:\Program Files\Avast4
[10/04/2008|15:42] C:\Program Files\Circle Developement
[28/07/2007|14:01] C:\Program Files\C-Media 3D Audio
[28/07/2007|13:10] C:\Program Files\ComPlus Applications
[29/07/2007|20:45] C:\Program Files\CyberLink
[29/07/2007|20:45] C:\Program Files\CyberLink DVD Solution
[29/07/2007|15:11] C:\Program Files\eBay
[29/07/2007|15:33] C:\Program Files\EVEREST Home Edition
[06/01/2008|20:04] C:\Program Files\Fichiers communs
[28/07/2007|14:48] C:\Program Files\Google
[10/11/2007|18:25] C:\Program Files\InfoScan Micro
[10/11/2007|19:10] C:\Program Files\InfoScan Micro Tray
[26/12/2007|15:19] C:\Program Files\InstallShield Installation Information
[29/07/2007|19:51] C:\Program Files\InterActual
[09/04/2008|13:14] C:\Program Files\Internet Explorer
[01/08/2007|15:41] C:\Program Files\Iomega
[06/01/2008|21:03] C:\Program Files\Java
[24/02/2008|16:15] C:\Program Files\LimeWire
[01/08/2007|15:14] C:\Program Files\Logitech
[15/10/2007|19:17] C:\Program Files\ma-config.com
[28/07/2007|13:10] C:\Program Files\Messenger
[10/04/2008|15:42] C:\Program Files\Messenger Plus! Live
[30/08/2007|14:12] C:\Program Files\MessengerPlus! 3
[28/07/2007|13:20] C:\Program Files\microsoft frontpage
[31/07/2007|19:44] C:\Program Files\Microsoft Money
[30/07/2007|18:13] C:\Program Files\Microsoft Office
[28/07/2007|14:40] C:\Program Files\Microsoft Plus!
[31/07/2007|22:39] C:\Program Files\Microsoft Sites publics fran‡ais
[30/07/2007|18:15] C:\Program Files\Microsoft Visual Studio
[28/07/2007|13:11] C:\Program Files\Movie Maker
[10/04/2008|15:43] C:\Program Files\Mp3 online
[31/07/2007|10:15] C:\Program Files\MSBuild
[01/08/2007|17:26] C:\Program Files\MSN
[28/07/2007|13:10] C:\Program Files\MSN Gaming Zone
[10/04/2008|15:42] C:\Program Files\MSN Messenger
[12/11/2007|00:03] C:\Program Files\MSXML 4.0
[31/07/2007|16:16] C:\Program Files\MSXML 6.0
[29/07/2007|20:54] C:\Program Files\Nero
[28/07/2007|13:12] C:\Program Files\NetMeeting
[15/10/2007|19:49] C:\Program Files\Nikon
[12/04/2008|11:24] C:\Program Files\Norton SystemWorks
[28/07/2007|13:10] C:\Program Files\Online Services
[28/07/2007|14:05] C:\Program Files\Outlook Express
[30/07/2007|17:03] C:\Program Files\QuickTime
[31/07/2007|10:10] C:\Program Files\Reference Assemblies
[26/12/2007|15:16] C:\Program Files\Samsung
[28/07/2007|13:13] C:\Program Files\Services en ligne
[31/07/2007|23:38] C:\Program Files\Shareaza
[15/10/2007|19:23] C:\Program Files\sisagp
[29/07/2007|14:37] C:\Program Files\Symantec
[28/07/2007|13:40] C:\Program Files\ToniArts
[28/07/2007|13:36] C:\Program Files\Uninstall Information
[11/03/2004|13:27] C:\Program Files\Uninstall_CDS.exe
[01/08/2007|17:41] C:\Program Files\Vimicro
[14/11/2007|19:59] C:\Program Files\Virtools
[31/07/2007|22:41] C:\Program Files\VLC
[31/07/2007|17:18] C:\Program Files\Windows Defender
[09/10/2007|20:48] C:\Program Files\Windows Live
[31/07/2007|10:08] C:\Program Files\Windows Media Connect 2
[31/07/2007|10:08] C:\Program Files\Windows Media Player
[28/07/2007|13:09] C:\Program Files\Windows NT
[28/07/2007|13:13] C:\Program Files\WindowsUpdate
[31/07/2007|22:44] C:\Program Files\WinRAR
[28/07/2007|13:20] C:\Program Files\xerox
[20/04/2008|14:28] C:\Program Files\ZipCentral
------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------
[06/01/2008|20:04] C:\Program Files\Fichiers communs\.
[06/01/2008|20:04] C:\Program Files\Fichiers communs\..
[27/12/2007|14:06] C:\Program Files\Fichiers communs\Adobe
[29/07/2007|20:57] C:\Program Files\Fichiers communs\Ahead
[30/07/2007|18:15] C:\Program Files\Fichiers communs\Designer
[01/08/2007|17:41] C:\Program Files\Fichiers communs\InstallShield
[28/07/2007|13:19] C:\Program Files\Fichiers communs\Java
[05/09/2007|11:46] C:\Program Files\Fichiers communs\Logitech
[15/09/2007|13:41] C:\Program Files\Fichiers communs\Microsoft Shared
[28/07/2007|13:12] C:\Program Files\Fichiers communs\MSSoap
[15/10/2007|18:54] C:\Program Files\Fichiers communs\muvee Technologies
[15/10/2007|19:03] C:\Program Files\Fichiers communs\Nikon
[28/07/2007|15:02] C:\Program Files\Fichiers communs\ODBC
[28/07/2007|13:12] C:\Program Files\Fichiers communs\Services
[28/07/2007|15:01] C:\Program Files\Fichiers communs\SpeechEngines
[10/11/2007|17:54] C:\Program Files\Fichiers communs\Symantec Shared
[30/07/2007|18:12] C:\Program Files\Fichiers communs\System
----------------------[ Recherche avec S_Lop ]---------------------
C:\DOCUME~1\SBASTI~1\LOCALS~1\Temp\bis7.exe
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Bags Plus Online Chin
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Bags Plus Online Chin\Hope link.exe
C:\Program Files\Adverts
C:\Program Files\Circle Developement
C:\Program Files\Circle Developement\Uninstall.exe
C:\WINDOWS\Tasks\A38A778C9141E9DC.job
----------------------[ Verification du Registre ]----------------------
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Online chin internet bolt"="C:\\Documents and Settings\\All Users\\Application Data\\Bags Plus Online Chin\\Hope link.exe"
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts PROPRE
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-04-20 18:18:11
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
Aucune autre infection trouvée !
/!\ [Fich:924][Doss:53] C:\DOCUME~1\SBASTI~1\LOCALS~1\Temp
/!\ [Fich:102][Doss:0] C:\DOCUME~1\SBASTI~1\Cookies
/!\ [Fich:811][Doss:16] C:\DOCUME~1\SBASTI~1\LOCALS~1\TEMPOR~1\content.IE5
--------------------[ Fin du rapport a 18:19:39,65 ]----------------------
-----------------------[ Lop S&D 4.1.1-4 XP/Vista ]---------------------
[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : S‚bastien ] [ "C:\Lop SD" ]
[ 20/04/2008 | 18:16:50,17 ] [ PC : SEBASTIEN ]
[ MAJ : 19-04-2008 | 15:41 ]
-------------[ Listing des dossiers dans Application Data ]------------
[13/04/2008|10:35] C:\DOCUME~1\ADMINI~1\APPLIC~1\.
[13/04/2008|10:35] C:\DOCUME~1\ADMINI~1\APPLIC~1\..
[01/08/2007|15:43] C:\DOCUME~1\ADMINI~1\APPLIC~1\Active Disk
[31/07/2007|22:38] C:\DOCUME~1\ADMINI~1\APPLIC~1\Adobe
[29/07/2007|20:56] C:\DOCUME~1\ADMINI~1\APPLIC~1\Ahead
[28/07/2007|15:01] C:\DOCUME~1\ADMINI~1\APPLIC~1\desktop.ini
[13/04/2008|10:35] C:\DOCUME~1\ADMINI~1\APPLIC~1\eBay
[28/07/2007|14:50] C:\DOCUME~1\ADMINI~1\APPLIC~1\Google
[31/07/2007|22:42] C:\DOCUME~1\ADMINI~1\APPLIC~1\Help
[28/07/2007|14:49] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[01/08/2007|15:17] C:\DOCUME~1\ADMINI~1\APPLIC~1\Logitech
[16/08/2007|21:21] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[31/07/2007|09:03] C:\DOCUME~1\ADMINI~1\APPLIC~1\OfficeUpdate12
[17/08/2007|13:05] C:\DOCUME~1\ADMINI~1\APPLIC~1\ShoppingReport
[31/07/2007|22:41] C:\DOCUME~1\ADMINI~1\APPLIC~1\vlc
[10/04/2008|15:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\.
[10/04/2008|15:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\..
[26/12/2007|15:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[30/07/2007|17:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[10/04/2008|15:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Bags Plus Online Chin
[29/07/2007|20:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[28/07/2007|15:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[06/01/2008|20:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Downloaded Installations
[05/11/2007|11:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\eBay
[15/10/2007|19:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\EnterNHelp
[28/07/2007|13:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[06/01/2008|20:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Installations
[26/12/2007|15:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\LauncherAccess.dt
[05/09/2007|11:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logitech
[06/08/2007|18:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[06/09/2007|18:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[04/12/2007|11:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\muvee Technologies
[29/07/2007|18:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NVIDIA
[31/07/2007|08:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Office Genuine Advantage
[17/04/2008|20:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PKP_DLec.DAT
[29/07/2007|14:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[15/10/2007|19:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ultima_T15
[20/04/2008|18:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WholeSecurity
[28/07/2007|14:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[28/07/2007|15:01] C:\DOCUME~1\DEFAUL~1\APPLIC~1\.
[28/07/2007|15:01] C:\DOCUME~1\DEFAUL~1\APPLIC~1\..
[28/07/2007|15:01] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[28/07/2007|13:15] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[23/10/2007|17:36] C:\DOCUME~1\Jacques\APPLIC~1\.
[23/10/2007|17:36] C:\DOCUME~1\Jacques\APPLIC~1\..
[16/08/2007|20:44] C:\DOCUME~1\Jacques\APPLIC~1\Active Disk
[30/07/2007|10:32] C:\DOCUME~1\Jacques\APPLIC~1\Ahead
[28/07/2007|15:01] C:\DOCUME~1\Jacques\APPLIC~1\desktop.ini
[29/07/2007|15:06] C:\DOCUME~1\Jacques\APPLIC~1\Google
[28/07/2007|13:36] C:\DOCUME~1\Jacques\APPLIC~1\Identities
[16/08/2007|20:44] C:\DOCUME~1\Jacques\APPLIC~1\Logitech
[23/10/2007|17:36] C:\DOCUME~1\Jacques\APPLIC~1\Macromedia
[31/07/2007|17:00] C:\DOCUME~1\Jacques\APPLIC~1\Microsoft
[31/07/2007|16:45] C:\DOCUME~1\Jacques\APPLIC~1\OfficeUpdate12
[16/08/2007|20:56] C:\DOCUME~1\Jacques\APPLIC~1\ShoppingReport
[29/07/2007|14:44] C:\DOCUME~1\Jacques\APPLIC~1\Symantec
[19/04/2008|19:44] C:\DOCUME~1\Laetitia\APPLIC~1\.
[19/04/2008|19:44] C:\DOCUME~1\Laetitia\APPLIC~1\..
[04/08/2007|11:03] C:\DOCUME~1\Laetitia\APPLIC~1\Active Disk
[06/01/2008|21:44] C:\DOCUME~1\Laetitia\APPLIC~1\Adobe
[30/07/2007|16:52] C:\DOCUME~1\Laetitia\APPLIC~1\Ahead
[30/07/2007|17:05] C:\DOCUME~1\Laetitia\APPLIC~1\Apple Computer
[28/07/2007|15:01] C:\DOCUME~1\Laetitia\APPLIC~1\desktop.ini
[06/11/2007|12:22] C:\DOCUME~1\Laetitia\APPLIC~1\eBay
[10/02/2008|11:22] C:\DOCUME~1\Laetitia\APPLIC~1\Google
[28/07/2007|15:58] C:\DOCUME~1\Laetitia\APPLIC~1\Identities
[04/08/2007|11:03] C:\DOCUME~1\Laetitia\APPLIC~1\Logitech
[31/07/2007|23:14] C:\DOCUME~1\Laetitia\APPLIC~1\Macromedia
[06/01/2008|22:02] C:\DOCUME~1\Laetitia\APPLIC~1\Microsoft
[19/04/2008|19:44] C:\DOCUME~1\Laetitia\APPLIC~1\Mp3 online
[05/09/2007|11:49] C:\DOCUME~1\Laetitia\APPLIC~1\ShoppingReport
[28/07/2007|13:24] C:\DOCUME~1\LOCALS~1\APPLIC~1\.
[28/07/2007|13:24] C:\DOCUME~1\LOCALS~1\APPLIC~1\..
[31/07/2007|23:17] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[28/07/2007|13:24] C:\DOCUME~1\NETWOR~1\APPLIC~1\.
[28/07/2007|13:24] C:\DOCUME~1\NETWOR~1\APPLIC~1\..
[01/08/2007|16:05] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[10/04/2008|15:42] C:\DOCUME~1\SBASTI~1\APPLIC~1\.
[10/04/2008|15:42] C:\DOCUME~1\SBASTI~1\APPLIC~1\..
[30/09/2007|00:03] C:\DOCUME~1\SBASTI~1\APPLIC~1\Active Disk
[26/12/2007|15:54] C:\DOCUME~1\SBASTI~1\APPLIC~1\Adobe
[18/09/2007|12:03] C:\DOCUME~1\SBASTI~1\APPLIC~1\AdobeDLM.log
[10/10/2007|17:57] C:\DOCUME~1\SBASTI~1\APPLIC~1\AdobeUM
[01/08/2007|16:35] C:\DOCUME~1\SBASTI~1\APPLIC~1\APC
[10/08/2007|13:00] C:\DOCUME~1\SBASTI~1\APPLIC~1\Apple Computer
[15/10/2007|19:50] C:\DOCUME~1\SBASTI~1\APPLIC~1\ArcSoft
[27/12/2007|11:57] C:\DOCUME~1\SBASTI~1\APPLIC~1\DataLayer
[28/07/2007|15:01] C:\DOCUME~1\SBASTI~1\APPLIC~1\desktop.ini
[17/09/2007|20:08] C:\DOCUME~1\SBASTI~1\APPLIC~1\dm.ini
[05/11/2007|11:25] C:\DOCUME~1\SBASTI~1\APPLIC~1\eBay
[28/07/2007|15:02] C:\DOCUME~1\SBASTI~1\APPLIC~1\Google
[04/12/2007|21:32] C:\DOCUME~1\SBASTI~1\APPLIC~1\Help
[28/07/2007|15:00] C:\DOCUME~1\SBASTI~1\APPLIC~1\Identities
[07/01/2008|17:40] C:\DOCUME~1\SBASTI~1\APPLIC~1\Leadertech
[14/04/2008|20:32] C:\DOCUME~1\SBASTI~1\APPLIC~1\LimeWire
[01/08/2007|15:46] C:\DOCUME~1\SBASTI~1\APPLIC~1\Logitech
[15/10/2007|19:17] C:\DOCUME~1\SBASTI~1\APPLIC~1\ma-config.com
[31/07/2007|23:28] C:\DOCUME~1\SBASTI~1\APPLIC~1\Macromedia
[17/04/2008|18:06] C:\DOCUME~1\SBASTI~1\APPLIC~1\Microsoft
[10/04/2008|15:43] C:\DOCUME~1\SBASTI~1\APPLIC~1\Mp3 online
[15/10/2007|19:03] C:\DOCUME~1\SBASTI~1\APPLIC~1\Nikon
[27/12/2007|11:56] C:\DOCUME~1\SBASTI~1\APPLIC~1\Nokia
[26/12/2007|16:15] C:\DOCUME~1\SBASTI~1\APPLIC~1\Nokia Multimedia Player
[26/12/2007|15:58] C:\DOCUME~1\SBASTI~1\APPLIC~1\PC Suite
[26/12/2007|15:24] C:\DOCUME~1\SBASTI~1\APPLIC~1\Samsung
[31/07/2007|23:38] C:\DOCUME~1\SBASTI~1\APPLIC~1\Shareaza
[15/08/2007|16:03] C:\DOCUME~1\SBASTI~1\APPLIC~1\Sun
[03/01/2008|13:10] C:\DOCUME~1\SBASTI~1\APPLIC~1\WinButler
----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------
[20/04/2008 18:00][--ah-----] C:\WINDOWS\tasks\A38A778C9141E9DC.job
[20/04/2008 11:56][--ah-----] C:\WINDOWS\tasks\MP Scheduled Scan.job
[15/04/2008 22:19][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[19/04/2008 00:00][--a------] C:\WINDOWS\tasks\Symantec Drmc.job
[20/04/2008 15:54][--a------] C:\WINDOWS\tasks\Symantec NetDetect.job
[20/04/2008 17:30][--a------] C:\WINDOWS\tasks\Norton SystemWorks One Button Checkup.job
[20/04/2008 11:52][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
---------------[ Listing des dossiers dans C:\Program Files ]--------------
[10/04/2008|15:43] C:\Program Files\.
[10/04/2008|15:43] C:\Program Files\..
[26/12/2007|15:53] C:\Program Files\Adobe
[07/11/2007|00:07] C:\Program Files\Adverts
[01/08/2007|16:28] C:\Program Files\APC
[09/10/2007|23:16] C:\Program Files\Apple Software Update
[15/10/2007|18:52] C:\Program Files\ArcSoft
[06/01/2008|20:55] C:\Program Files\Avast4
[10/04/2008|15:42] C:\Program Files\Circle Developement
[28/07/2007|14:01] C:\Program Files\C-Media 3D Audio
[28/07/2007|13:10] C:\Program Files\ComPlus Applications
[29/07/2007|20:45] C:\Program Files\CyberLink
[29/07/2007|20:45] C:\Program Files\CyberLink DVD Solution
[29/07/2007|15:11] C:\Program Files\eBay
[29/07/2007|15:33] C:\Program Files\EVEREST Home Edition
[06/01/2008|20:04] C:\Program Files\Fichiers communs
[28/07/2007|14:48] C:\Program Files\Google
[10/11/2007|18:25] C:\Program Files\InfoScan Micro
[10/11/2007|19:10] C:\Program Files\InfoScan Micro Tray
[26/12/2007|15:19] C:\Program Files\InstallShield Installation Information
[29/07/2007|19:51] C:\Program Files\InterActual
[09/04/2008|13:14] C:\Program Files\Internet Explorer
[01/08/2007|15:41] C:\Program Files\Iomega
[06/01/2008|21:03] C:\Program Files\Java
[24/02/2008|16:15] C:\Program Files\LimeWire
[01/08/2007|15:14] C:\Program Files\Logitech
[15/10/2007|19:17] C:\Program Files\ma-config.com
[28/07/2007|13:10] C:\Program Files\Messenger
[10/04/2008|15:42] C:\Program Files\Messenger Plus! Live
[30/08/2007|14:12] C:\Program Files\MessengerPlus! 3
[28/07/2007|13:20] C:\Program Files\microsoft frontpage
[31/07/2007|19:44] C:\Program Files\Microsoft Money
[30/07/2007|18:13] C:\Program Files\Microsoft Office
[28/07/2007|14:40] C:\Program Files\Microsoft Plus!
[31/07/2007|22:39] C:\Program Files\Microsoft Sites publics fran‡ais
[30/07/2007|18:15] C:\Program Files\Microsoft Visual Studio
[28/07/2007|13:11] C:\Program Files\Movie Maker
[10/04/2008|15:43] C:\Program Files\Mp3 online
[31/07/2007|10:15] C:\Program Files\MSBuild
[01/08/2007|17:26] C:\Program Files\MSN
[28/07/2007|13:10] C:\Program Files\MSN Gaming Zone
[10/04/2008|15:42] C:\Program Files\MSN Messenger
[12/11/2007|00:03] C:\Program Files\MSXML 4.0
[31/07/2007|16:16] C:\Program Files\MSXML 6.0
[29/07/2007|20:54] C:\Program Files\Nero
[28/07/2007|13:12] C:\Program Files\NetMeeting
[15/10/2007|19:49] C:\Program Files\Nikon
[12/04/2008|11:24] C:\Program Files\Norton SystemWorks
[28/07/2007|13:10] C:\Program Files\Online Services
[28/07/2007|14:05] C:\Program Files\Outlook Express
[30/07/2007|17:03] C:\Program Files\QuickTime
[31/07/2007|10:10] C:\Program Files\Reference Assemblies
[26/12/2007|15:16] C:\Program Files\Samsung
[28/07/2007|13:13] C:\Program Files\Services en ligne
[31/07/2007|23:38] C:\Program Files\Shareaza
[15/10/2007|19:23] C:\Program Files\sisagp
[29/07/2007|14:37] C:\Program Files\Symantec
[28/07/2007|13:40] C:\Program Files\ToniArts
[28/07/2007|13:36] C:\Program Files\Uninstall Information
[11/03/2004|13:27] C:\Program Files\Uninstall_CDS.exe
[01/08/2007|17:41] C:\Program Files\Vimicro
[14/11/2007|19:59] C:\Program Files\Virtools
[31/07/2007|22:41] C:\Program Files\VLC
[31/07/2007|17:18] C:\Program Files\Windows Defender
[09/10/2007|20:48] C:\Program Files\Windows Live
[31/07/2007|10:08] C:\Program Files\Windows Media Connect 2
[31/07/2007|10:08] C:\Program Files\Windows Media Player
[28/07/2007|13:09] C:\Program Files\Windows NT
[28/07/2007|13:13] C:\Program Files\WindowsUpdate
[31/07/2007|22:44] C:\Program Files\WinRAR
[28/07/2007|13:20] C:\Program Files\xerox
[20/04/2008|14:28] C:\Program Files\ZipCentral
------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------
[06/01/2008|20:04] C:\Program Files\Fichiers communs\.
[06/01/2008|20:04] C:\Program Files\Fichiers communs\..
[27/12/2007|14:06] C:\Program Files\Fichiers communs\Adobe
[29/07/2007|20:57] C:\Program Files\Fichiers communs\Ahead
[30/07/2007|18:15] C:\Program Files\Fichiers communs\Designer
[01/08/2007|17:41] C:\Program Files\Fichiers communs\InstallShield
[28/07/2007|13:19] C:\Program Files\Fichiers communs\Java
[05/09/2007|11:46] C:\Program Files\Fichiers communs\Logitech
[15/09/2007|13:41] C:\Program Files\Fichiers communs\Microsoft Shared
[28/07/2007|13:12] C:\Program Files\Fichiers communs\MSSoap
[15/10/2007|18:54] C:\Program Files\Fichiers communs\muvee Technologies
[15/10/2007|19:03] C:\Program Files\Fichiers communs\Nikon
[28/07/2007|15:02] C:\Program Files\Fichiers communs\ODBC
[28/07/2007|13:12] C:\Program Files\Fichiers communs\Services
[28/07/2007|15:01] C:\Program Files\Fichiers communs\SpeechEngines
[10/11/2007|17:54] C:\Program Files\Fichiers communs\Symantec Shared
[30/07/2007|18:12] C:\Program Files\Fichiers communs\System
----------------------[ Recherche avec S_Lop ]---------------------
C:\DOCUME~1\SBASTI~1\LOCALS~1\Temp\bis7.exe
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Bags Plus Online Chin
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Bags Plus Online Chin\Hope link.exe
C:\Program Files\Adverts
C:\Program Files\Circle Developement
C:\Program Files\Circle Developement\Uninstall.exe
C:\WINDOWS\Tasks\A38A778C9141E9DC.job
----------------------[ Verification du Registre ]----------------------
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Online chin internet bolt"="C:\\Documents and Settings\\All Users\\Application Data\\Bags Plus Online Chin\\Hope link.exe"
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts PROPRE
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-04-20 18:18:11
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
Aucune autre infection trouvée !
/!\ [Fich:924][Doss:53] C:\DOCUME~1\SBASTI~1\LOCALS~1\Temp
/!\ [Fich:102][Doss:0] C:\DOCUME~1\SBASTI~1\Cookies
/!\ [Fich:811][Doss:16] C:\DOCUME~1\SBASTI~1\LOCALS~1\TEMPOR~1\content.IE5
--------------------[ Fin du rapport a 18:19:39,65 ]----------------------
Re,
Relance Lop S&D
Choisis cette fois ci l'Option 2 ( Suppression )
Ne ferme pas la fenêtre lors de la suppression !
Poste le rapport généré ( C:\lopR.txt )
Si ton bureau ne réapparait pas, fais CTRL+ALT+SUPP pour ouvrir le gestionnaire de tâches.
Puis rends-toi à l'onglet "processus". Clique en haut à gauche sur fichiers et choisis "Nouvelle tâche (exécuter)"
Tapes explorer et valide. Cela te fera apparaitre ton bureau
*****
Télécharger OTMoveIt2. ( de OldTimer)
Enregistrece fichier sur le Bureau.
Fais un double clic sur OTMoveIt2.exe pour lancer l'exécution de l'outil. (Note: Si tu utilises Vista, fais un clic droit sur le fichier puis choisissez Exécuter en tant qu'administrateur).
Copie les lignes de la zone "Code" ci-dessous en les sélectionnant TOUTES puis en appuyant simultanément sur les touches CTRL et C (ou, après les avoir sélectionnées, en faisant un clic droit puis en choisissant Copier):
Retourne dans la fenêtre de OTMoveIt2, fais un clic droit dans la zone "Paste List of Files/Folders to Move" (sous la barre bleu clair) puis choisis Coller.
Clique sur le bouton rouge Moveit!.
Copie tout ce qui se trouve dans la zone Results (sous la barre verte) en sélectionnant TOUTES LES LIGNES puis en appuyant simultanément sur les touches CTRL et C (ou, après les avoir sélectionnées, en faisant un clic droit puis en choisissant Copier), et coller ces résulats en réponse sur le forum.
Ferme OTMoveIt2
Note: Si un fichier ou un dossier ne peut pas être déplacé immédiatement, un redémarrage sera peut-être nécessaire afin de terminer le processus de déplacement. Si le redémarrage de la machine t'est demandé, choisis Oui/Yes. Dans ce cas, après le redémarrage, ouvre le Bloc-notes (Démarrer->Tous les programmes->Accessoires->Bloc-notes), clique sur Fichier->Ouvrir, dans la zone "Nom du fichier" taper *.log et appuie sur la touche Entrée, navigue jusqu'au dossier C:\_OTMoveIt\MovedFiles, puis ouvre le fichier .log le plus récent; ensuite fais un copier/coller du contenu de ce document en réponse sur le forum.
Si tu obtiens un message comme quoi le rapport ne peut pas être créé, copie/colle ce qui apparaît dans la colonne droite de l’outil.
*******
Sélectionne l’intégralité du cadre ci-dessous :
Copie/colle le dans le Bloc Notes (Démarrer\Tous les programmes\Accessoires\Bloc notes.)
Enregistre le sous sur ton bureau sous le nom de Correction.bat
Double-clique dessus. Poste le rapport généré.
Relance Lop S&D
Si ton bureau ne réapparait pas, fais CTRL+ALT+SUPP pour ouvrir le gestionnaire de tâches.
Puis rends-toi à l'onglet "processus". Clique en haut à gauche sur fichiers et choisis "Nouvelle tâche (exécuter)"
Tapes explorer et valide. Cela te fera apparaitre ton bureau
*****
Télécharger OTMoveIt2. ( de OldTimer)
C:\DOCUME~1\Laetitia\APPLIC~1\Mp3 online
C:\Program Files\Mp3 online
C:\DOCUME~1\SBASTI~1\APPLIC~1\Mp3 online
C:\Documents and Settings\Sébastien\Application Data\WinButler\
C:\Documents and Settings\Sébastien\Application Data\Microsoft\Windows\rayio.exe
C:\Program Files\Mp3 online
C:\DOCUME~1\SBASTI~1\APPLIC~1\Mp3 online
C:\Documents and Settings\Sébastien\Application Data\WinButler\
C:\Documents and Settings\Sébastien\Application Data\Microsoft\Windows\rayio.exe
Note: Si un fichier ou un dossier ne peut pas être déplacé immédiatement, un redémarrage sera peut-être nécessaire afin de terminer le processus de déplacement. Si le redémarrage de la machine t'est demandé, choisis Oui/Yes. Dans ce cas, après le redémarrage, ouvre le Bloc-notes (Démarrer->Tous les programmes->Accessoires->Bloc-notes), clique sur Fichier->Ouvrir, dans la zone "Nom du fichier" taper *.log et appuie sur la touche Entrée, navigue jusqu'au dossier C:\_OTMoveIt\MovedFiles, puis ouvre le fichier .log le plus récent; ensuite fais un copier/coller du contenu de ce document en réponse sur le forum.
Si tu obtiens un message comme quoi le rapport ne peut pas être créé, copie/colle ce qui apparaît dans la colonne droite de l’outil.
*******
Sélectionne l’intégralité du cadre ci-dessous :
@echo off
CD \
dir /s /a "C:\DOCUME~1\SBASTI~1\APPLIC~1\Active Disk" > "%userprofile%\bureau\lop.log"
cd %userprofile%\bureau
lop.log & del lop.log
exit
CD \
dir /s /a "C:\DOCUME~1\SBASTI~1\APPLIC~1\Active Disk" > "%userprofile%\bureau\lop.log"
cd %userprofile%\bureau
lop.log & del lop.log
exit
Copie/colle le dans le Bloc Notes (Démarrer\Tous les programmes\Accessoires\Bloc notes.)
Enregistre le sous sur ton bureau sous le nom de Correction.bat
Double-clique dessus. Poste le rapport généré.
-----------------------[ Lop S&D 4.1.1-4 XP/Vista ]---------------------
[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : S‚bastien ] [ "C:\Lop SD" ]
[ 20/04/2008 | 18:52:04,00 ] [ PC : SEBASTIEN ]
[ MAJ : 19-04-2008 | 15:41 ]
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////
Supprimé! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Bags Plus Online Chin\Hope link.exe
Supprimé! - C:\Program Files\Circle Developement\Uninstall.exe
Supprimé! - C:\WINDOWS\Tasks\A38A778C9141E9DC.job
Supprimé! - C:\DOCUME~1\SBASTI~1\LOCALS~1\Temp\bis7.exe
Supprimé! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Bags Plus Online Chin
Supprimé! - C:\Program Files\Adverts
Supprimé! - C:\Program Files\Circle Developement
//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
Supprimé! - C:\DOCUME~1\SBASTI~1\APPLIC~1\WinButler
//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
-------------[ Listing des dossiers dans Application Data ]------------
[13/04/2008|10:35] C:\DOCUME~1\ADMINI~1\APPLIC~1\.
[13/04/2008|10:35] C:\DOCUME~1\ADMINI~1\APPLIC~1\..
[01/08/2007|15:43] C:\DOCUME~1\ADMINI~1\APPLIC~1\Active Disk
[31/07/2007|22:38] C:\DOCUME~1\ADMINI~1\APPLIC~1\Adobe
[29/07/2007|20:56] C:\DOCUME~1\ADMINI~1\APPLIC~1\Ahead
[28/07/2007|15:01] C:\DOCUME~1\ADMINI~1\APPLIC~1\desktop.ini
[13/04/2008|10:35] C:\DOCUME~1\ADMINI~1\APPLIC~1\eBay
[28/07/2007|14:50] C:\DOCUME~1\ADMINI~1\APPLIC~1\Google
[31/07/2007|22:42] C:\DOCUME~1\ADMINI~1\APPLIC~1\Help
[28/07/2007|14:49] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[01/08/2007|15:17] C:\DOCUME~1\ADMINI~1\APPLIC~1\Logitech
[16/08/2007|21:21] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[31/07/2007|09:03] C:\DOCUME~1\ADMINI~1\APPLIC~1\OfficeUpdate12
[17/08/2007|13:05] C:\DOCUME~1\ADMINI~1\APPLIC~1\ShoppingReport
[31/07/2007|22:41] C:\DOCUME~1\ADMINI~1\APPLIC~1\vlc
[20/04/2008|18:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\.
[20/04/2008|18:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\..
[26/12/2007|15:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[30/07/2007|17:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[29/07/2007|20:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[28/07/2007|15:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[06/01/2008|20:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Downloaded Installations
[05/11/2007|11:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\eBay
[15/10/2007|19:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\EnterNHelp
[28/07/2007|13:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[06/01/2008|20:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Installations
[26/12/2007|15:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\LauncherAccess.dt
[05/09/2007|11:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logitech
[06/08/2007|18:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[06/09/2007|18:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[04/12/2007|11:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\muvee Technologies
[29/07/2007|18:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NVIDIA
[31/07/2007|08:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Office Genuine Advantage
[17/04/2008|20:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PKP_DLec.DAT
[29/07/2007|14:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[15/10/2007|19:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ultima_T15
[20/04/2008|18:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WholeSecurity
[28/07/2007|14:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[28/07/2007|15:01] C:\DOCUME~1\DEFAUL~1\APPLIC~1\.
[28/07/2007|15:01] C:\DOCUME~1\DEFAUL~1\APPLIC~1\..
[28/07/2007|15:01] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[28/07/2007|13:15] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[23/10/2007|17:36] C:\DOCUME~1\Jacques\APPLIC~1\.
[23/10/2007|17:36] C:\DOCUME~1\Jacques\APPLIC~1\..
[16/08/2007|20:44] C:\DOCUME~1\Jacques\APPLIC~1\Active Disk
[30/07/2007|10:32] C:\DOCUME~1\Jacques\APPLIC~1\Ahead
[28/07/2007|15:01] C:\DOCUME~1\Jacques\APPLIC~1\desktop.ini
[29/07/2007|15:06] C:\DOCUME~1\Jacques\APPLIC~1\Google
[28/07/2007|13:36] C:\DOCUME~1\Jacques\APPLIC~1\Identities
[16/08/2007|20:44] C:\DOCUME~1\Jacques\APPLIC~1\Logitech
[23/10/2007|17:36] C:\DOCUME~1\Jacques\APPLIC~1\Macromedia
[31/07/2007|17:00] C:\DOCUME~1\Jacques\APPLIC~1\Microsoft
[31/07/2007|16:45] C:\DOCUME~1\Jacques\APPLIC~1\OfficeUpdate12
[16/08/2007|20:56] C:\DOCUME~1\Jacques\APPLIC~1\ShoppingReport
[29/07/2007|14:44] C:\DOCUME~1\Jacques\APPLIC~1\Symantec
[19/04/2008|19:44] C:\DOCUME~1\Laetitia\APPLIC~1\.
[19/04/2008|19:44] C:\DOCUME~1\Laetitia\APPLIC~1\..
[04/08/2007|11:03] C:\DOCUME~1\Laetitia\APPLIC~1\Active Disk
[06/01/2008|21:44] C:\DOCUME~1\Laetitia\APPLIC~1\Adobe
[30/07/2007|16:52] C:\DOCUME~1\Laetitia\APPLIC~1\Ahead
[30/07/2007|17:05] C:\DOCUME~1\Laetitia\APPLIC~1\Apple Computer
[28/07/2007|15:01] C:\DOCUME~1\Laetitia\APPLIC~1\desktop.ini
[06/11/2007|12:22] C:\DOCUME~1\Laetitia\APPLIC~1\eBay
[10/02/2008|11:22] C:\DOCUME~1\Laetitia\APPLIC~1\Google
[28/07/2007|15:58] C:\DOCUME~1\Laetitia\APPLIC~1\Identities
[04/08/2007|11:03] C:\DOCUME~1\Laetitia\APPLIC~1\Logitech
[31/07/2007|23:14] C:\DOCUME~1\Laetitia\APPLIC~1\Macromedia
[06/01/2008|22:02] C:\DOCUME~1\Laetitia\APPLIC~1\Microsoft
[19/04/2008|19:44] C:\DOCUME~1\Laetitia\APPLIC~1\Mp3 online
[05/09/2007|11:49] C:\DOCUME~1\Laetitia\APPLIC~1\ShoppingReport
[28/07/2007|13:24] C:\DOCUME~1\LOCALS~1\APPLIC~1\.
[28/07/2007|13:24] C:\DOCUME~1\LOCALS~1\APPLIC~1\..
[31/07/2007|23:17] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[28/07/2007|13:24] C:\DOCUME~1\NETWOR~1\APPLIC~1\.
[28/07/2007|13:24] C:\DOCUME~1\NETWOR~1\APPLIC~1\..
[01/08/2007|16:05] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[20/04/2008|18:52] C:\DOCUME~1\SBASTI~1\APPLIC~1\.
[20/04/2008|18:52] C:\DOCUME~1\SBASTI~1\APPLIC~1\..
[30/09/2007|00:03] C:\DOCUME~1\SBASTI~1\APPLIC~1\Active Disk
[26/12/2007|15:54] C:\DOCUME~1\SBASTI~1\APPLIC~1\Adobe
[18/09/2007|12:03] C:\DOCUME~1\SBASTI~1\APPLIC~1\AdobeDLM.log
[10/10/2007|17:57] C:\DOCUME~1\SBASTI~1\APPLIC~1\AdobeUM
[01/08/2007|16:35] C:\DOCUME~1\SBASTI~1\APPLIC~1\APC
[10/08/2007|13:00] C:\DOCUME~1\SBASTI~1\APPLIC~1\Apple Computer
[15/10/2007|19:50] C:\DOCUME~1\SBASTI~1\APPLIC~1\ArcSoft
[27/12/2007|11:57] C:\DOCUME~1\SBASTI~1\APPLIC~1\DataLayer
[28/07/2007|15:01] C:\DOCUME~1\SBASTI~1\APPLIC~1\desktop.ini
[17/09/2007|20:08] C:\DOCUME~1\SBASTI~1\APPLIC~1\dm.ini
[05/11/2007|11:25] C:\DOCUME~1\SBASTI~1\APPLIC~1\eBay
[28/07/2007|15:02] C:\DOCUME~1\SBASTI~1\APPLIC~1\Google
[04/12/2007|21:32] C:\DOCUME~1\SBASTI~1\APPLIC~1\Help
[28/07/2007|15:00] C:\DOCUME~1\SBASTI~1\APPLIC~1\Identities
[07/01/2008|17:40] C:\DOCUME~1\SBASTI~1\APPLIC~1\Leadertech
[14/04/2008|20:32] C:\DOCUME~1\SBASTI~1\APPLIC~1\LimeWire
[01/08/2007|15:46] C:\DOCUME~1\SBASTI~1\APPLIC~1\Logitech
[15/10/2007|19:17] C:\DOCUME~1\SBASTI~1\APPLIC~1\ma-config.com
[31/07/2007|23:28] C:\DOCUME~1\SBASTI~1\APPLIC~1\Macromedia
[17/04/2008|18:06] C:\DOCUME~1\SBASTI~1\APPLIC~1\Microsoft
[10/04/2008|15:43] C:\DOCUME~1\SBASTI~1\APPLIC~1\Mp3 online
[15/10/2007|19:03] C:\DOCUME~1\SBASTI~1\APPLIC~1\Nikon
[27/12/2007|11:56] C:\DOCUME~1\SBASTI~1\APPLIC~1\Nokia
[26/12/2007|16:15] C:\DOCUME~1\SBASTI~1\APPLIC~1\Nokia Multimedia Player
[26/12/2007|15:58] C:\DOCUME~1\SBASTI~1\APPLIC~1\PC Suite
[26/12/2007|15:24] C:\DOCUME~1\SBASTI~1\APPLIC~1\Samsung
[31/07/2007|23:38] C:\DOCUME~1\SBASTI~1\APPLIC~1\Shareaza
[15/08/2007|16:03] C:\DOCUME~1\SBASTI~1\APPLIC~1\Sun
----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------
[20/04/2008 11:56][--ah-----] C:\WINDOWS\tasks\MP Scheduled Scan.job
[15/04/2008 22:19][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[19/04/2008 00:00][--a------] C:\WINDOWS\tasks\Symantec Drmc.job
[20/04/2008 15:54][--a------] C:\WINDOWS\tasks\Symantec NetDetect.job
[20/04/2008 17:30][--a------] C:\WINDOWS\tasks\Norton SystemWorks One Button Checkup.job
[20/04/2008 11:52][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
---------------[ Listing des dossiers dans C:\Program Files ]--------------
[20/04/2008|18:52] C:\Program Files\.
[20/04/2008|18:52] C:\Program Files\..
[26/12/2007|15:53] C:\Program Files\Adobe
[01/08/2007|16:28] C:\Program Files\APC
[09/10/2007|23:16] C:\Program Files\Apple Software Update
[15/10/2007|18:52] C:\Program Files\ArcSoft
[06/01/2008|20:55] C:\Program Files\Avast4
[28/07/2007|14:01] C:\Program Files\C-Media 3D Audio
[28/07/2007|13:10] C:\Program Files\ComPlus Applications
[29/07/2007|20:45] C:\Program Files\CyberLink
[29/07/2007|20:45] C:\Program Files\CyberLink DVD Solution
[29/07/2007|15:11] C:\Program Files\eBay
[29/07/2007|15:33] C:\Program Files\EVEREST Home Edition
[06/01/2008|20:04] C:\Program Files\Fichiers communs
[28/07/2007|14:48] C:\Program Files\Google
[10/11/2007|18:25] C:\Program Files\InfoScan Micro
[10/11/2007|19:10] C:\Program Files\InfoScan Micro Tray
[26/12/2007|15:19] C:\Program Files\InstallShield Installation Information
[29/07/2007|19:51] C:\Program Files\InterActual
[09/04/2008|13:14] C:\Program Files\Internet Explorer
[01/08/2007|15:41] C:\Program Files\Iomega
[06/01/2008|21:03] C:\Program Files\Java
[24/02/2008|16:15] C:\Program Files\LimeWire
[01/08/2007|15:14] C:\Program Files\Logitech
[15/10/2007|19:17] C:\Program Files\ma-config.com
[28/07/2007|13:10] C:\Program Files\Messenger
[10/04/2008|15:42] C:\Program Files\Messenger Plus! Live
[30/08/2007|14:12] C:\Program Files\MessengerPlus! 3
[28/07/2007|13:20] C:\Program Files\microsoft frontpage
[31/07/2007|19:44] C:\Program Files\Microsoft Money
[30/07/2007|18:13] C:\Program Files\Microsoft Office
[28/07/2007|14:40] C:\Program Files\Microsoft Plus!
[31/07/2007|22:39] C:\Program Files\Microsoft Sites publics fran‡ais
[30/07/2007|18:15] C:\Program Files\Microsoft Visual Studio
[28/07/2007|13:11] C:\Program Files\Movie Maker
[10/04/2008|15:43] C:\Program Files\Mp3 online
[31/07/2007|10:15] C:\Program Files\MSBuild
[01/08/2007|17:26] C:\Program Files\MSN
[28/07/2007|13:10] C:\Program Files\MSN Gaming Zone
[10/04/2008|15:42] C:\Program Files\MSN Messenger
[12/11/2007|00:03] C:\Program Files\MSXML 4.0
[31/07/2007|16:16] C:\Program Files\MSXML 6.0
[29/07/2007|20:54] C:\Program Files\Nero
[28/07/2007|13:12] C:\Program Files\NetMeeting
[15/10/2007|19:49] C:\Program Files\Nikon
[12/04/2008|11:24] C:\Program Files\Norton SystemWorks
[28/07/2007|13:10] C:\Program Files\Online Services
[28/07/2007|14:05] C:\Program Files\Outlook Express
[30/07/2007|17:03] C:\Program Files\QuickTime
[31/07/2007|10:10] C:\Program Files\Reference Assemblies
[26/12/2007|15:16] C:\Program Files\Samsung
[28/07/2007|13:13] C:\Program Files\Services en ligne
[31/07/2007|23:38] C:\Program Files\Shareaza
[15/10/2007|19:23] C:\Program Files\sisagp
[29/07/2007|14:37] C:\Program Files\Symantec
[28/07/2007|13:40] C:\Program Files\ToniArts
[28/07/2007|13:36] C:\Program Files\Uninstall Information
[11/03/2004|13:27] C:\Program Files\Uninstall_CDS.exe
[01/08/2007|17:41] C:\Program Files\Vimicro
[14/11/2007|19:59] C:\Program Files\Virtools
[31/07/2007|22:41] C:\Program Files\VLC
[31/07/2007|17:18] C:\Program Files\Windows Defender
[09/10/2007|20:48] C:\Program Files\Windows Live
[31/07/2007|10:08] C:\Program Files\Windows Media Connect 2
[31/07/2007|10:08] C:\Program Files\Windows Media Player
[28/07/2007|13:09] C:\Program Files\Windows NT
[28/07/2007|13:13] C:\Program Files\WindowsUpdate
[31/07/2007|22:44] C:\Program Files\WinRAR
[28/07/2007|13:20] C:\Program Files\xerox
[20/04/2008|14:28] C:\Program Files\ZipCentral
------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------
[06/01/2008|20:04] C:\Program Files\Fichiers communs\.
[06/01/2008|20:04] C:\Program Files\Fichiers communs\..
[27/12/2007|14:06] C:\Program Files\Fichiers communs\Adobe
[29/07/2007|20:57] C:\Program Files\Fichiers communs\Ahead
[30/07/2007|18:15] C:\Program Files\Fichiers communs\Designer
[01/08/2007|17:41] C:\Program Files\Fichiers communs\InstallShield
[28/07/2007|13:19] C:\Program Files\Fichiers communs\Java
[05/09/2007|11:46] C:\Program Files\Fichiers communs\Logitech
[15/09/2007|13:41] C:\Program Files\Fichiers communs\Microsoft Shared
[28/07/2007|13:12] C:\Program Files\Fichiers communs\MSSoap
[15/10/2007|18:54] C:\Program Files\Fichiers communs\muvee Technologies
[15/10/2007|19:03] C:\Program Files\Fichiers communs\Nikon
[28/07/2007|15:02] C:\Program Files\Fichiers communs\ODBC
[28/07/2007|13:12] C:\Program Files\Fichiers communs\Services
[28/07/2007|15:01] C:\Program Files\Fichiers communs\SpeechEngines
[10/11/2007|17:54] C:\Program Files\Fichiers communs\Symantec Shared
[30/07/2007|18:12] C:\Program Files\Fichiers communs\System
----------------------[ Recherche avec S_Lop ]---------------------
Aucun fichier / dossier Lop trouvé !
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
Aucun fichier / dossier Lop trouvé !
----------------------[ Verification du Registre ]----------------------
..... OK !
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts PROPRE
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-04-20 18:53:32
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
Aucune autre infection trouvée !
/!\ [Fich:923][Doss:53] C:\DOCUME~1\SBASTI~1\LOCALS~1\Temp
/!\ [Fich:102][Doss:0] C:\DOCUME~1\SBASTI~1\Cookies
/!\ [Fich:871][Doss:16] C:\DOCUME~1\SBASTI~1\LOCALS~1\TEMPOR~1\content.IE5
--------------------[ Fin du rapport a 18:54:50,89 ]----------------------
C:\DOCUME~1\Laetitia\APPLIC~1\Mp3 online moved successfully.
C:\Program Files\Mp3 online moved successfully.
C:\DOCUME~1\SBASTI~1\APPLIC~1\Mp3 online moved successfully.
Folder C:\Documents and Settings\Sébastien\Application Data\WinButler\ not found.
File/Folder C:\Documents and Settings\Sébastien\Application Data\Microsoft\Windows\rayio.exe not found.
OTMoveIt2 by OldTimer - Version 1.0.4.1 log created on 04202008_185855
C:\Program Files\Mp3 online moved successfully.
C:\DOCUME~1\SBASTI~1\APPLIC~1\Mp3 online moved successfully.
Folder C:\Documents and Settings\Sébastien\Application Data\WinButler\ not found.
File/Folder C:\Documents and Settings\Sébastien\Application Data\Microsoft\Windows\rayio.exe not found.
OTMoveIt2 by OldTimer - Version 1.0.4.1 log created on 04202008_185855
Lassé par la pub ? Créez un compte
