Fenetres intempestives sous Vista
Forum Sécurité - Virus : Fenetres intempestives sous Vista
Bonjour, je vous explique mon problème. Depuis quelques jours j'ai des fenetres intempestives du style "systemdoctor, winvirus, broadcaster etc... " qui se lancent régulierement. J'ai essayé avec plusieurs logiciel de supprimer mais rien y fait de plus la plupart des logiciels ne fonctionnent pas sous Vista, donc si vous pouviez me donner un coup de main ca m'aiderai bien. Merci d'avance !
Je poste mon rapport
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:51:26, on 28/04/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16643)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\hp\support\hpsysdrv.exe
C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Program Files\BitComet\BitComet.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\Macromed\Flash\FlashUtil9f.exe
C:\Program Files\scanner.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dailymotion.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr? [...] pf=desktop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr? [...] pf=desktop
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.8.30.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Easy Gif Animator Toolbar Helper - {96372AB6-15EB-4316-B497-71C741BC548C} - C:\Program Files\Easy Gif Animator Extension\v3.3.0.1\EasyGifAnimator_Toolbar.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Easy Gif Animator Toolbar - {35065594-9169-4A34-B167-FC4865038E53} - C:\Program Files\Easy Gif Animator Extension\v3.3.0.1\EasyGifAnimator_Toolbar.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [hpsysdrv] c:\hp\support\hpsysdrv.exe
O4 - HKLM\..\Run: [OsdMaestro] "C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe"
O4 - HKLM\..\Run: [HP Software Update] c:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\RunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [EPSON Stylus DX4400 Series] C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATICAE.EXE /FU "C:\Windows\TEMP\E_SA1EE.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [Mpegmode] "C:\ProgramData\wipe memo memo.lw2vs"
O4 - HKCU\..\Run: [Help Creative Meow City] "C:\ProgramData\eggs soap bags.yjgym"
O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: BitComet Search - {461CC20B-FB6E-4f16-8FE8-C29359DB100E} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.8.30.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O13 - Gopher Prefix:
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/ [...] wflash.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - c:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\system32\PSIService.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - c:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe
--
End of file - 7945 bytes
merci !
Bonjour,
Télécharge Lop S&D.exe sur ton Bureau.
- Double-clique dessus pour lancer l'installation
- Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
- Séléctionne la langue souhaitée , puis choisis l'option 1 (Recherche)
- Patiente jusqu'à la fin du scan
- Poste le rapport généré (C:\lopR.txt)
(Si le Bureau ne réapparait pas presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide)
Répondre à Angeldark
bonjour!
Une fois le logiciel lancé et apres avoir installé le logiciel et la langue choisi je fais F entrer mais apres je fais recherche et j'ai ça :
Ca dit de faire clique droit et exéxutez en tant qu'administrateur mais ya pas
Aide-moi s'il te plaît.
Merci
Message édité par Naruto75 le 29-04-2008 à 09:23:11
Pas de up merci.
Tu n'as pas l'option ci-dessous ?
Répondre à Angeldark
Merci ! J'ai pu faire un diagnostic et :
-----------------------[ Lop S&D 4.2.0-2 XP/Vista ]---------------------
[ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
[ USER : Kensuke ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 29/04/2008 | 13:37:29,20 ] [ PC : PC-DE-KENSUKE ]
[ MAJ : 27-04-2008 | 11:15 ]
[ UAC => 0 ]
-------------[ Listing des dossiers dans Application Data ]------------
[21/04/2008|13:21] C:\Users\Kensuke\AppData\Roaming\Adobe\Flash Player
[18/10/2007|10:55] C:\Users\Kensuke\AppData\Roaming\Adobe\Linguistics
[26/09/2007|18:47] C:\Users\Kensuke\AppData\Roaming\Adobe\Acrobat
[21/04/2008|21:05] C:\Users\Kensuke\AppData\Roaming\Aegisub\config.dat
[21/04/2008|21:02] C:\Users\Kensuke\AppData\Roaming\Aegisub\autosave
[21/04/2008|21:01] C:\Users\Kensuke\AppData\Roaming\Aegisub\autoback
[21/04/2008|21:01] C:\Users\Kensuke\AppData\Roaming\Aegisub\hotkeys.dat
[08/03/2008|22:32] C:\Users\Kensuke\AppData\Roaming\Corel\ImageDB.db
[08/03/2008|22:32] C:\Users\Kensuke\AppData\Roaming\Corel\LastDBFilter.PspCache
[25/02/2008|12:25] C:\Users\Kensuke\AppData\Roaming\Corel\thumbnails.db
[25/11/2007|11:42] C:\Users\Kensuke\AppData\Roaming\Corel\Messages
[25/11/2007|00:39] C:\Users\Kensuke\AppData\Roaming\Corel\Paint Shop Pro Photo
[26/11/2007|20:46] C:\Users\Kensuke\AppData\Roaming\EPSON\ESCNDV
[27/04/2008|20:51] C:\Users\Kensuke\AppData\Roaming\FileZilla\filezilla.xml
[27/04/2008|20:51] C:\Users\Kensuke\AppData\Roaming\FileZilla\queue.xml
[27/04/2008|20:43] C:\Users\Kensuke\AppData\Roaming\FileZilla\layout.xml
[19/04/2008|12:02] C:\Users\Kensuke\AppData\Roaming\FileZilla\recentservers.xml
[26/12/2007|23:55] C:\Users\Kensuke\AppData\Roaming\FileZilla\filters.xml
[22/12/2007|20:31] C:\Users\Kensuke\AppData\Roaming\FlashGet\DataBase
[24/04/2008|18:55] C:\Users\Kensuke\AppData\Roaming\Google\Local Search History
[18/09/2007|22:01] C:\Users\Kensuke\AppData\Roaming\Hewlett-Packard\HP Software UI
[18/09/2007|22:06] C:\Users\Kensuke\AppData\Roaming\Identities\{37AEC557-B9B0-4BBA-9FEA-AC9F67012977}
[12/10/2007|16:49] C:\Users\Kensuke\AppData\Roaming\InstallShield\ISEngine12.0
[26/04/2008|14:27] C:\Users\Kensuke\AppData\Roaming\Lavasoft\Ad-Aware
[27/04/2008|13:10] C:\Users\Kensuke\AppData\Roaming\LimeWire\library.dat
[27/04/2008|13:10] C:\Users\Kensuke\AppData\Roaming\LimeWire\spam.dat
[27/04/2008|13:10] C:\Users\Kensuke\AppData\Roaming\LimeWire\filters.props
[27/04/2008|13:10] C:\Users\Kensuke\AppData\Roaming\LimeWire\questions.props
[27/04/2008|13:10] C:\Users\Kensuke\AppData\Roaming\LimeWire\tables.props
[27/04/2008|13:10] C:\Users\Kensuke\AppData\Roaming\LimeWire\installation.props
[27/04/2008|13:10] C:\Users\Kensuke\AppData\Roaming\LimeWire\mojito.props
[27/04/2008|13:10] C:\Users\Kensuke\AppData\Roaming\LimeWire\limewire.props
[27/04/2008|13:10] C:\Users\Kensuke\AppData\Roaming\LimeWire\gnutella.net
[25/04/2008|20:25] C:\Users\Kensuke\AppData\Roaming\LimeWire\createtimes.cache
[25/04/2008|20:25] C:\Users\Kensuke\AppData\Roaming\LimeWire\fileurns.cache
[25/04/2008|15:11] C:\Users\Kensuke\AppData\Roaming\LimeWire\ttrees.cache
[25/04/2008|15:11] C:\Users\Kensuke\AppData\Roaming\LimeWire\ttroot.cache
[14/04/2008|23:08] C:\Users\Kensuke\AppData\Roaming\LimeWire\version.xml
[14/04/2008|22:30] C:\Users\Kensuke\AppData\Roaming\LimeWire\simpp.xml
[17/02/2008|13:02] C:\Users\Kensuke\AppData\Roaming\LimeWire\ttree.cache
[15/02/2008|17:17] C:\Users\Kensuke\AppData\Roaming\LimeWire\.NetworkShare
[01/11/2007|12:36] C:\Users\Kensuke\AppData\Roaming\LimeWire\414splashfree.png
[01/11/2007|12:04] C:\Users\Kensuke\AppData\Roaming\LimeWire\responses.cache
[01/11/2007|11:50] C:\Users\Kensuke\AppData\Roaming\LimeWire\fileurns.bak
[01/11/2007|11:49] C:\Users\Kensuke\AppData\Roaming\LimeWire\.AppSpecialShare
[01/11/2007|11:49] C:\Users\Kensuke\AppData\Roaming\LimeWire\xml
[01/11/2007|11:49] C:\Users\Kensuke\AppData\Roaming\LimeWire\themes
[21/04/2008|13:21] C:\Users\Kensuke\AppData\Roaming\Macromedia\Flash Player
[29/04/2008|13:32] C:\Users\Kensuke\AppData\Roaming\Media Player Classic\default.mpcpl
[29/04/2008|11:43] C:\Users\Kensuke\AppData\Roaming\Microsoft\preuve
[29/04/2008|11:42] C:\Users\Kensuke\AppData\Roaming\Microsoft\ModŠles
[27/04/2008|13:12] C:\Users\Kensuke\AppData\Roaming\Microsoft\MSN Messenger
[26/04/2008|19:23] C:\Users\Kensuke\AppData\Roaming\Microsoft\Word
[25/04/2008|17:17] C:\Users\Kensuke\AppData\Roaming\Microsoft\Templates
[07/04/2008|10:21] C:\Users\Kensuke\AppData\Roaming\Microsoft\Windows Photo Gallery
[05/04/2008|13:02] C:\Users\Kensuke\AppData\Roaming\Microsoft\MMC
[25/03/2008|16:12] C:\Users\Kensuke\AppData\Roaming\Microsoft\Windows Live Call
[25/03/2008|16:12] C:\Users\Kensuke\AppData\Roaming\Microsoft\IdentityCRL
[09/02/2008|12:03] C:\Users\Kensuke\AppData\Roaming\Microsoft\Office
[26/01/2008|02:36] C:\Users\Kensuke\AppData\Roaming\Microsoft\UProof
[19/01/2008|12:32] C:\Users\Kensuke\AppData\Roaming\Microsoft\CLView
[09/01/2008|00:53] C:\Users\Kensuke\AppData\Roaming\Microsoft\Speech
[30/12/2007|11:28] C:\Users\Kensuke\AppData\Roaming\Microsoft\OIS
[11/11/2007|16:44] C:\Users\Kensuke\AppData\Roaming\Microsoft\Proof
[30/10/2007|20:58] C:\Users\Kensuke\AppData\Roaming\Microsoft\Excel
[30/10/2007|20:57] C:\Users\Kensuke\AppData\Roaming\Microsoft\Macros compl‚mentaires
[26/10/2007|18:37] C:\Users\Kensuke\AppData\Roaming\Microsoft\Document Building Blocks
[26/10/2007|18:37] C:\Users\Kensuke\AppData\Roaming\Microsoft\AddIns
[19/10/2007|22:26] C:\Users\Kensuke\AppData\Roaming\Microsoft\Internet Explorer
[07/10/2007|14:30] C:\Users\Kensuke\AppData\Roaming\Microsoft\Windows
[30/09/2007|17:05] C:\Users\Kensuke\AppData\Roaming\Microsoft\Crypto
[19/09/2007|00:17] C:\Users\Kensuke\AppData\Roaming\Microsoft\HTML Help
[18/09/2007|22:07] C:\Users\Kensuke\AppData\Roaming\Microsoft\SystemCertificates
[18/09/2007|22:06] C:\Users\Kensuke\AppData\Roaming\Microsoft\Protect
[18/09/2007|22:01] C:\Users\Kensuke\AppData\Roaming\Microsoft\CLR Security Config
[18/09/2007|21:59] C:\Users\Kensuke\AppData\Roaming\Microsoft\Credentials
[20/01/2008|22:15] C:\Users\Kensuke\AppData\Roaming\Nero\Nero8
[08/02/2008|21:34] C:\Users\Kensuke\AppData\Roaming\OpenOffice.org2\user
[02/04/2008|23:40] C:\Users\Kensuke\AppData\Roaming\Real\RealPlayer
[04/01/2008|22:04] C:\Users\Kensuke\AppData\Roaming\Real\RealMediaSDK
[08/11/2007|23:26] C:\Users\Kensuke\AppData\Roaming\Real\rnadmin
[04/10/2007|22:21] C:\Users\Kensuke\AppData\Roaming\Roxio\MediaManager9
[04/10/2007|22:18] C:\Users\Kensuke\AppData\Roaming\Roxio\Dragon
[04/10/2007|22:18] C:\Users\Kensuke\AppData\Roaming\Roxio\RoxioCentral
[16/04/2008|08:31] C:\Users\Kensuke\AppData\Roaming\Samsung\Samsung PC Studio 3
[19/12/2007|23:07] C:\Users\Kensuke\AppData\Roaming\SopCast\adv
[19/12/2007|22:54] C:\Users\Kensuke\AppData\Roaming\SopCast\anonymous@sopcast.org
[19/12/2007|00:18] C:\Users\Kensuke\AppData\Roaming\SopCast\livemsg.xml
[23/09/2007|16:50] C:\Users\Kensuke\AppData\Roaming\SopCast\Favorites.xml
[11/04/2007|11:51] C:\Users\Kensuke\AppData\Roaming\SopCast\config.xml
[26/04/2008|23:26] C:\Users\Kensuke\AppData\Roaming\teamspeak2\TeamSpeak.Conf
[26/04/2008|23:25] C:\Users\Kensuke\AppData\Roaming\teamspeak2\imagecache.ini
[17/02/2005|09:07] C:\Users\Kensuke\AppData\Roaming\Template\Normal.wpt
[30/12/2007|19:37] C:\Users\Kensuke\AppData\Roaming\TVU Networks\TVUPlayer
[30/12/2007|19:32] C:\Users\Kensuke\AppData\Roaming\TVU Networks\TVU AutoUpgrade
[29/04/2008|13:23] C:\Users\Kensuke\AppData\Roaming\vlc\vlcrc
[05/04/2008|15:09] C:\Users\Kensuke\AppData\Roaming\vlc\cache
[08/03/2008|14:24] C:\Users\Kensuke\AppData\Roaming\Winamp\studio.xnf
[08/03/2008|14:24] C:\Users\Kensuke\AppData\Roaming\Winamp\winamp.ini
[08/03/2008|14:24] C:\Users\Kensuke\AppData\Roaming\Winamp\winamp.m3u
[08/03/2008|14:24] C:\Users\Kensuke\AppData\Roaming\Winamp\Winamp.m3u8
[11/10/2007|16:02] C:\Users\Kensuke\AppData\Roaming\Winamp\Plugins
[11/10/2007|16:01] C:\Users\Kensuke\AppData\Roaming\Winamp\Winamp.q1
[14/09/2005|21:17] C:\Users\Kensuke\AppData\Roaming\Winamp\demo.mp3
[22/11/2007|19:18] C:\Users\Kensuke\AppData\Roaming\wklnhst.dat\wklnhst.dat
----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------
[28/04/2008 12:58][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{5DA374D4-9520-4C2E-850F-031205B684A1}.job
[29/04/2008 13:37][--ah-----] C:\Windows\tasks\SA.DAT
[29/04/2008 13:36][--a------] C:\Windows\tasks\SCHEDLGU.TXT
------[ Listing des dossiers dans C:\ProgramData ]------
[02/06/2007|00:54] C:\ProgramData\{623D32E9-0C62-4453-AD44-98B31F52A5E1}
[02/06/2007|00:49] C:\ProgramData\Adobe
[07/10/2007|14:43] C:\ProgramData\Age of Empires 3 YPack Trial
[27/04/2008|10:40] C:\ProgramData\aim rect help creative
[02/11/2006|15:02] C:\ProgramData\Application Data
[18/09/2007|21:52] C:\ProgramData\Bureau
[25/11/2007|00:38] C:\ProgramData\Corel
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[27/04/2008|10:40] C:\ProgramData\eggs soap bags.yjgym
[03/12/2007|10:08] C:\ProgramData\eMule
[12/10/2007|16:48] C:\ProgramData\EPSON
[18/09/2007|21:52] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[02/06/2007|00:59] C:\ProgramData\Google
[02/06/2007|01:16] C:\ProgramData\Hewlett-Packard
[02/06/2007|00:37] C:\ProgramData\HP
[02/06/2007|00:38] C:\ProgramData\hpzinstall.log
[16/04/2008|08:29] C:\ProgramData\LauncherAccess.dt
[01/01/2008|19:18] C:\ProgramData\LightScribe
[06/04/2008|12:11] C:\ProgramData\Media Center Programs
[18/09/2007|21:52] C:\ProgramData\Menu D‚marrer
[02/11/2007|17:38] C:\ProgramData\Messenger Plus!
[05/04/2008|12:08] C:\ProgramData\Microsoft
[25/04/2008|17:17] C:\ProgramData\Microsoft Help
[18/09/2007|21:52] C:\ProgramData\ModŠles
[02/06/2007|00:47] C:\ProgramData\muvee Technologies
[01/01/2008|15:50] C:\ProgramData\Nero
[02/01/2008|12:30] C:\ProgramData\NVIDIA
[27/04/2008|10:40] C:\ProgramData\Obj Send Meow
[02/06/2007|00:56] C:\ProgramData\PC-Doctor
[25/11/2007|00:36] C:\ProgramData\pswi_preloaded.exe
[02/06/2007|00:43] C:\ProgramData\Roxio
[02/06/2007|00:44] C:\ProgramData\Sonic
[05/04/2008|15:09] C:\ProgramData\Spybot - Search & Destroy
[02/11/2006|15:02] C:\ProgramData\Start Menu
[19/09/2007|18:52] C:\ProgramData\Symantec
[02/11/2006|15:02] C:\ProgramData\Templates
[12/10/2007|16:57] C:\ProgramData\UDL
[03/04/2008|15:27] C:\ProgramData\wipe memo memo.54f7i7s
[27/04/2008|10:39] C:\ProgramData\wipe memo memo.eev6ws
[27/04/2008|10:39] C:\ProgramData\wipe memo memo.lw2vs
[03/04/2008|15:27] C:\ProgramData\wipe memo memo.op2sfz
---------------[ Listing des dossiers dans C:\Program Files ]--------------
[02/06/2007|00:54] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[28/10/2007|21:06] C:\Program Files\Adobe
[01/11/2007|12:10] C:\Program Files\Adverts
[29/03/2008|21:23] C:\Program Files\Aegisub
[18/09/2007|22:47] C:\Program Files\Alwil Software
[20/09/2007|10:03] C:\Program Files\BitComet
[19/10/2007|21:37] C:\Program Files\CamStudio
[02/10/2007|17:47] C:\Program Files\CCleaner
[03/04/2008|15:27] C:\Program Files\Circle Developement
[02/03/2008|23:44] C:\Program Files\Common Files
[25/11/2007|00:37] C:\Program Files\Corel
[13/10/2007|14:47] C:\Program Files\DAEMON Tools
[18/09/2007|22:33] C:\Program Files\desktop.ini
[20/10/2007|16:00] C:\Program Files\EA GAMES
[23/04/2008|14:45] C:\Program Files\Easy GIF Animator
[23/04/2008|14:45] C:\Program Files\Easy Gif Animator Extension
[02/06/2007|09:41] C:\Program Files\EasyBits
[06/04/2008|12:07] C:\Program Files\Electronic Arts
[12/10/2007|16:53] C:\Program Files\epson
[19/04/2008|18:46] C:\Program Files\Fake Webcam
[18/09/2007|21:52] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[26/12/2007|23:54] C:\Program Files\FileZilla Client
[22/12/2007|20:31] C:\Program Files\FlashGet
[18/09/2007|22:31] C:\Program Files\Google
[02/12/2007|18:51] C:\Program Files\Gpotato.eu
[02/06/2007|00:57] C:\Program Files\Hewlett-Packard
[02/06/2007|00:49] C:\Program Files\HP
[02/03/2008|14:57] C:\Program Files\InstallShield Installation Information
[09/04/2008|08:55] C:\Program Files\Internet Explorer
[08/11/2007|10:55] C:\Program Files\Java
[19/09/2007|00:16] C:\Program Files\Lavasoft
[17/02/2008|14:01] C:\Program Files\LimeWire
[03/04/2008|15:27] C:\Program Files\Messenger Plus! Live
[30/10/2007|20:55] C:\Program Files\Microsoft FrontPage
[02/03/2008|14:57] C:\Program Files\Microsoft Games
[30/10/2007|20:53] C:\Program Files\Microsoft Office
[30/10/2007|20:56] C:\Program Files\Microsoft Visual Studio
[02/06/2007|00:53] C:\Program Files\Microsoft Works
[02/06/2007|00:53] C:\Program Files\Microsoft.NET
[04/01/2008|23:11] C:\Program Files\mIRC
[02/06/2007|10:00] C:\Program Files\Movie Maker
[02/11/2006|14:37] C:\Program Files\MSBuild
[02/11/2006|14:37] C:\Program Files\MSN
[11/11/2007|02:22] C:\Program Files\MSN Content Plus Inc
[13/04/2008|19:55] C:\Program Files\MSN Messenger
[18/09/2007|22:15] C:\Program Files\MSXML 4.0
[02/06/2007|00:47] C:\Program Files\muvee Technologies
[01/01/2008|15:50] C:\Program Files\Nero
[01/01/2008|21:38] C:\Program Files\OpenAL
[08/02/2008|21:30] C:\Program Files\OpenOffice.org 2.3
[02/06/2007|01:10] C:\Program Files\PC-Doctor 5 for Windows
[02/06/2007|00:46] C:\Program Files\Real
[02/06/2007|00:32] C:\Program Files\Realtek
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[02/06/2007|00:45] C:\Program Files\Roxio
[05/03/2008|00:32] C:\Program Files\RPG Maker 2003
[20/09/2007|18:26] C:\Program Files\Samsung
[20/09/2007|09:00] C:\Program Files\Satsuki Decoder Pack
[28/04/2008|14:45] C:\Program Files\scanner.exe
[02/06/2007|00:59] C:\Program Files\Services en ligne
[19/12/2007|23:17] C:\Program Files\SopCast
[12/01/2008|22:55] C:\Program Files\Spybot - Search & Destroy
[23/04/2008|14:00] C:\Program Files\Teamspeak2_RC2
[30/12/2007|19:34] C:\Program Files\TVUPlayer
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[13/04/2008|19:55] C:\Program Files\uusee
[11/10/2007|15:47] C:\Program Files\VideoLAN
[02/03/2008|23:44] C:\Program Files\Winamp
[18/09/2007|22:29] C:\Program Files\Windows Calendar
[02/06/2007|10:00] C:\Program Files\Windows Collaboration
[02/06/2007|00:33] C:\Program Files\Windows Defender
[02/06/2007|10:00] C:\Program Files\Windows Journal
[01/11/2007|12:09] C:\Program Files\Windows Live
[09/04/2008|08:55] C:\Program Files\Windows Mail
[11/10/2007|10:12] C:\Program Files\Windows Media Player
[18/09/2007|21:52] C:\Program Files\Windows NT
[02/06/2007|10:00] C:\Program Files\Windows Photo Gallery
[10/01/2008|00:07] C:\Program Files\Windows Sidebar
[24/10/2007|12:38] C:\Program Files\WinRAR
[28/10/2007|20:11] C:\Program Files\WMV9_VCM
[07/10/2007|13:00] C:\Program Files\Yume Team
------[ Listing des dossiers dans C:\Program Files\Common Files ]------
[02/06/2007|00:49] C:\Program Files\Common Files\Adobe
[25/11/2007|00:37] C:\Program Files\Common Files\Corel
[02/06/2007|00:53] C:\Program Files\Common Files\DESIGNER
[02/06/2007|00:37] C:\Program Files\Common Files\HP
[11/11/2007|02:21] C:\Program Files\Common Files\InstallShield
[01/11/2007|11:47] C:\Program Files\Common Files\Java
[02/06/2007|00:46] C:\Program Files\Common Files\LightScribe
[02/06/2007|00:45] C:\Program Files\Common Files\LS Getting Started
[29/03/2008|21:23] C:\Program Files\Common Files\microsoft shared
[02/06/2007|00:47] C:\Program Files\Common Files\muvee Technologies
[01/01/2008|15:55] C:\Program Files\Common Files\Nero
[02/06/2007|00:44] C:\Program Files\Common Files\PX Storage Engine
[02/06/2007|00:46] C:\Program Files\Common Files\Real
[02/06/2007|00:44] C:\Program Files\Common Files\Roxio Shared
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[02/06/2007|00:45] C:\Program Files\Common Files\Sonic Shared
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[02/06/2007|00:45] C:\Program Files\Common Files\SureThing Shared
[19/09/2007|16:19] C:\Program Files\Common Files\Symantec Shared
[18/09/2007|22:28] C:\Program Files\Common Files\System
[02/06/2007|00:46] C:\Program Files\Common Files\xing shared
---------------------------[ Process ]--------------------------
... 55
iexplore.exe ~ [3388]
iexplore.exe ~ [3724]
----------------------[ Recherche avec S_Lop ]---------------------
C:\ProgramData\eggs soap bags.yjgym
C:\ProgramData\wipe memo memo.54f7i7s
C:\ProgramData\wipe memo memo.eev6ws
C:\ProgramData\wipe memo memo.lw2vs
C:\ProgramData\wipe memo memo.op2sfz
C:\ProgramData\eggs soap bags.yjgym
C:\ProgramData\wipe memo memo.eev6ws
C:\ProgramData\wipe memo memo.lw2vs
C:\ProgramData\wipe memo memo.op2sfz
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
C:\ProgramData\aim rect help creative
C:\ProgramData\aim rect help creative\32 Dumb.exe
C:\Program Files\Adverts
C:\Program Files\Circle Developement
C:\Program Files\Circle Developement\Uninstall.exe
----------------------[ Verification du Registre ]----------------------
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
..... OK !
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts PROPRE
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-04-29 13:38:05
Windows 6.0.6000 NTFS
scanning hidden processes ...
scanning hidden files ...
C:\Windows\System32\wbem\Performance\WmiApRpl_new.h 357 bytes
scan completed successfully
hidden processes: 0
hidden files: 1
--------------------[ Recherche d'autres infections ]---------------------
=> C:\Users\Kensuke\Desktop\Fansub\Nero\Nero 8.1.1.4 French + New Keygen
=> C:\Users\Kensuke\Desktop\Fansub\Nero\Nero 8.1.1.4 French + New Keygen.zip
=> C:\Users\Kensuke\Desktop\Fansub\Nero\Nero 8.1.1.4 French + New Keygen\Ahead Nero v8.x.x.x Ultra Edition Keymaker NEW.exe
=> C:\Users\Kensuke\Desktop\Fansub\Nero\Nero 8.1.1.4 French + New Keygen\Nero 8.1.1.4 Fran‡ais.exe
/!\ [Fich:523][Doss:8] C:\Users\Kensuke\AppData\Local\Temp
/!\ [Fich:157][Doss:1] C:\Users\Kensuke\AppData\Roaming\MICROS~1\Windows\Cookies
/!\ [Fich:431][Doss:4] C:\Users\Kensuke\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[ UAC => 1 ]
--------------------[ Fin du rapport a 13:43:17,45 ]----------------------
Merci bcp
Re,
Relance Lop S&D
- Choisis cette fois ci l'Option 2 (Suppression)
- Ne ferme pas la fenêtre lors de la suppression !
- Poste le rapport généré (C:\lopR.txt)
(Si le Bureau ne réapparaît pas, presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide)
Répondre à Angeldark
Re voilà :
-----------------------[ Lop S&D 4.2.0-2 XP/Vista ]---------------------
[ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
[ USER : Kensuke ] [ "C:\Lop SD" ] [ Selection : 2 ]
[ 29/04/2008 | 18:36:16,65 ] [ PC : PC-DE-KENSUKE ]
[ MAJ : 27-04-2008 | 11:15 ]
[ UAC => 0 ]
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////
Supprimé! - C:\ProgramData\aim rect help creative\32 Dumb.exe
Supprimé! - C:\Program Files\Circle Developement\Uninstall.exe
Supprimé! - C:\ProgramData\eggs soap bags.yjgym
Supprimé! - C:\ProgramData\wipe memo memo.54f7i7s
Supprimé! - C:\ProgramData\wipe memo memo.eev6ws
Supprimé! - C:\ProgramData\wipe memo memo.lw2vs
Supprimé! - C:\ProgramData\wipe memo memo.op2sfz
Supprimé! - C:\ProgramData\aim rect help creative
Supprimé! - C:\Program Files\Adverts
Supprimé! - C:\Program Files\Circle Developement
Restauré! - Fichier Hosts
//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
-------------[ Listing des dossiers dans Application Data ]------------
[21/04/2008|13:21] C:\Users\Kensuke\AppData\Roaming\Adobe\Flash Player
[18/10/2007|10:55] C:\Users\Kensuke\AppData\Roaming\Adobe\Linguistics
[26/09/2007|18:47] C:\Users\Kensuke\AppData\Roaming\Adobe\Acrobat
[21/04/2008|21:05] C:\Users\Kensuke\AppData\Roaming\Aegisub\config.dat
[21/04/2008|21:02] C:\Users\Kensuke\AppData\Roaming\Aegisub\autosave
[21/04/2008|21:01] C:\Users\Kensuke\AppData\Roaming\Aegisub\autoback
[21/04/2008|21:01] C:\Users\Kensuke\AppData\Roaming\Aegisub\hotkeys.dat
[08/03/2008|22:32] C:\Users\Kensuke\AppData\Roaming\Corel\ImageDB.db
[08/03/2008|22:32] C:\Users\Kensuke\AppData\Roaming\Corel\LastDBFilter.PspCache
[25/02/2008|12:25] C:\Users\Kensuke\AppData\Roaming\Corel\thumbnails.db
[25/11/2007|11:42] C:\Users\Kensuke\AppData\Roaming\Corel\Messages
[25/11/2007|00:39] C:\Users\Kensuke\AppData\Roaming\Corel\Paint Shop Pro Photo
[26/11/2007|20:46] C:\Users\Kensuke\AppData\Roaming\EPSON\ESCNDV
[27/04/2008|20:51] C:\Users\Kensuke\AppData\Roaming\FileZilla\filezilla.xml
[27/04/2008|20:51] C:\Users\Kensuke\AppData\Roaming\FileZilla\queue.xml
[27/04/2008|20:43] C:\Users\Kensuke\AppData\Roaming\FileZilla\layout.xml
[19/04/2008|12:02] C:\Users\Kensuke\AppData\Roaming\FileZilla\recentservers.xml
[26/12/2007|23:55] C:\Users\Kensuke\AppData\Roaming\FileZilla\filters.xml
[22/12/2007|20:31] C:\Users\Kensuke\AppData\Roaming\FlashGet\DataBase
[24/04/2008|18:55] C:\Users\Kensuke\AppData\Roaming\Google\Local Search History
[18/09/2007|22:01] C:\Users\Kensuke\AppData\Roaming\Hewlett-Packard\HP Software UI
[18/09/2007|22:06] C:\Users\Kensuke\AppData\Roaming\Identities\{37AEC557-B9B0-4BBA-9FEA-AC9F67012977}
[12/10/2007|16:49] C:\Users\Kensuke\AppData\Roaming\InstallShield\ISEngine12.0
[26/04/2008|14:27] C:\Users\Kensuke\AppData\Roaming\Lavasoft\Ad-Aware
[29/04/2008|15:44] C:\Users\Kensuke\AppData\Roaming\LimeWire\library.dat
[29/04/2008|15:44] C:\Users\Kensuke\AppData\Roaming\LimeWire\spam.dat
[29/04/2008|15:44] C:\Users\Kensuke\AppData\Roaming\LimeWire\filters.props
[29/04/2008|15:44] C:\Users\Kensuke\AppData\Roaming\LimeWire\questions.props
[29/04/2008|15:44] C:\Users\Kensuke\AppData\Roaming\LimeWire\tables.props
[29/04/2008|15:44] C:\Users\Kensuke\AppData\Roaming\LimeWire\installation.props
[29/04/2008|15:44] C:\Users\Kensuke\AppData\Roaming\LimeWire\mojito.props
[29/04/2008|15:44] C:\Users\Kensuke\AppData\Roaming\LimeWire\limewire.props
[29/04/2008|15:44] C:\Users\Kensuke\AppData\Roaming\LimeWire\gnutella.net
[29/04/2008|15:40] C:\Users\Kensuke\AppData\Roaming\LimeWire\createtimes.cache
[25/04/2008|20:25] C:\Users\Kensuke\AppData\Roaming\LimeWire\fileurns.cache
[25/04/2008|15:11] C:\Users\Kensuke\AppData\Roaming\LimeWire\ttrees.cache
[25/04/2008|15:11] C:\Users\Kensuke\AppData\Roaming\LimeWire\ttroot.cache
[14/04/2008|23:08] C:\Users\Kensuke\AppData\Roaming\LimeWire\version.xml
[14/04/2008|22:30] C:\Users\Kensuke\AppData\Roaming\LimeWire\simpp.xml
[17/02/2008|13:02] C:\Users\Kensuke\AppData\Roaming\LimeWire\ttree.cache
[15/02/2008|17:17] C:\Users\Kensuke\AppData\Roaming\LimeWire\.NetworkShare
[01/11/2007|12:36] C:\Users\Kensuke\AppData\Roaming\LimeWire\414splashfree.png
[01/11/2007|12:04] C:\Users\Kensuke\AppData\Roaming\LimeWire\responses.cache
[01/11/2007|11:50] C:\Users\Kensuke\AppData\Roaming\LimeWire\fileurns.bak
[01/11/2007|11:49] C:\Users\Kensuke\AppData\Roaming\LimeWire\.AppSpecialShare
[01/11/2007|11:49] C:\Users\Kensuke\AppData\Roaming\LimeWire\xml
[01/11/2007|11:49] C:\Users\Kensuke\AppData\Roaming\LimeWire\themes
[21/04/2008|13:21] C:\Users\Kensuke\AppData\Roaming\Macromedia\Flash Player
[29/04/2008|15:08] C:\Users\Kensuke\AppData\Roaming\Media Player Classic\default.mpcpl
[29/04/2008|15:43] C:\Users\Kensuke\AppData\Roaming\Microsoft\ModŠles
[29/04/2008|15:42] C:\Users\Kensuke\AppData\Roaming\Microsoft\preuve
[27/04/2008|13:12] C:\Users\Kensuke\AppData\Roaming\Microsoft\MSN Messenger
[26/04/2008|19:23] C:\Users\Kensuke\AppData\Roaming\Microsoft\Word
[25/04/2008|17:17] C:\Users\Kensuke\AppData\Roaming\Microsoft\Templates
[07/04/2008|10:21] C:\Users\Kensuke\AppData\Roaming\Microsoft\Windows Photo Gallery
[05/04/2008|13:02] C:\Users\Kensuke\AppData\Roaming\Microsoft\MMC
[25/03/2008|16:12] C:\Users\Kensuke\AppData\Roaming\Microsoft\Windows Live Call
[25/03/2008|16:12] C:\Users\Kensuke\AppData\Roaming\Microsoft\IdentityCRL
[09/02/2008|12:03] C:\Users\Kensuke\AppData\Roaming\Microsoft\Office
[26/01/2008|02:36] C:\Users\Kensuke\AppData\Roaming\Microsoft\UProof
[19/01/2008|12:32] C:\Users\Kensuke\AppData\Roaming\Microsoft\CLView
[09/01/2008|00:53] C:\Users\Kensuke\AppData\Roaming\Microsoft\Speech
[30/12/2007|11:28] C:\Users\Kensuke\AppData\Roaming\Microsoft\OIS
[11/11/2007|16:44] C:\Users\Kensuke\AppData\Roaming\Microsoft\Proof
[30/10/2007|20:58] C:\Users\Kensuke\AppData\Roaming\Microsoft\Excel
[30/10/2007|20:57] C:\Users\Kensuke\AppData\Roaming\Microsoft\Macros compl‚mentaires
[26/10/2007|18:37] C:\Users\Kensuke\AppData\Roaming\Microsoft\Document Building Blocks
[26/10/2007|18:37] C:\Users\Kensuke\AppData\Roaming\Microsoft\AddIns
[19/10/2007|22:26] C:\Users\Kensuke\AppData\Roaming\Microsoft\Internet Explorer
[07/10/2007|14:30] C:\Users\Kensuke\AppData\Roaming\Microsoft\Windows
[30/09/2007|17:05] C:\Users\Kensuke\AppData\Roaming\Microsoft\Crypto
[19/09/2007|00:17] C:\Users\Kensuke\AppData\Roaming\Microsoft\HTML Help
[18/09/2007|22:07] C:\Users\Kensuke\AppData\Roaming\Microsoft\SystemCertificates
[18/09/2007|22:06] C:\Users\Kensuke\AppData\Roaming\Microsoft\Protect
[18/09/2007|22:01] C:\Users\Kensuke\AppData\Roaming\Microsoft\CLR Security Config
[18/09/2007|21:59] C:\Users\Kensuke\AppData\Roaming\Microsoft\Credentials
[29/04/2008|15:22] C:\Users\Kensuke\AppData\Roaming\mIRC\mirc.ini
[29/04/2008|15:22] C:\Users\Kensuke\AppData\Roaming\mIRC\logs
[29/04/2008|15:22] C:\Users\Kensuke\AppData\Roaming\mIRC\urls.ini
[29/04/2008|14:35] C:\Users\Kensuke\AppData\Roaming\mIRC\servers.ini
[29/04/2008|14:32] C:\Users\Kensuke\AppData\Roaming\mIRC\channels
[29/04/2008|13:55] C:\Users\Kensuke\AppData\Roaming\mIRC\downloads
[29/04/2008|13:55] C:\Users\Kensuke\AppData\Roaming\mIRC\sounds
[29/04/2008|13:55] C:\Users\Kensuke\AppData\Roaming\mIRC\scripts
[20/01/2008|22:15] C:\Users\Kensuke\AppData\Roaming\Nero\Nero8
[08/02/2008|21:34] C:\Users\Kensuke\AppData\Roaming\OpenOffice.org2\user
[02/04/2008|23:40] C:\Users\Kensuke\AppData\Roaming\Real\RealPlayer
[04/01/2008|22:04] C:\Users\Kensuke\AppData\Roaming\Real\RealMediaSDK
[08/11/2007|23:26] C:\Users\Kensuke\AppData\Roaming\Real\rnadmin
[04/10/2007|22:21] C:\Users\Kensuke\AppData\Roaming\Roxio\MediaManager9
[04/10/2007|22:18] C:\Users\Kensuke\AppData\Roaming\Roxio\Dragon
[04/10/2007|22:18] C:\Users\Kensuke\AppData\Roaming\Roxio\RoxioCentral
[16/04/2008|08:31] C:\Users\Kensuke\AppData\Roaming\Samsung\Samsung PC Studio 3
[19/12/2007|23:07] C:\Users\Kensuke\AppData\Roaming\SopCast\adv
[19/12/2007|22:54] C:\Users\Kensuke\AppData\Roaming\SopCast\anonymous@sopcast.org
[19/12/2007|00:18] C:\Users\Kensuke\AppData\Roaming\SopCast\livemsg.xml
[23/09/2007|16:50] C:\Users\Kensuke\AppData\Roaming\SopCast\Favorites.xml
[11/04/2007|11:51] C:\Users\Kensuke\AppData\Roaming\SopCast\config.xml
[26/04/2008|23:26] C:\Users\Kensuke\AppData\Roaming\teamspeak2\TeamSpeak.Conf
[26/04/2008|23:25] C:\Users\Kensuke\AppData\Roaming\teamspeak2\imagecache.ini
[17/02/2005|09:07] C:\Users\Kensuke\AppData\Roaming\Template\Normal.wpt
[30/12/2007|19:37] C:\Users\Kensuke\AppData\Roaming\TVU Networks\TVUPlayer
[30/12/2007|19:32] C:\Users\Kensuke\AppData\Roaming\TVU Networks\TVU AutoUpgrade
[29/04/2008|13:23] C:\Users\Kensuke\AppData\Roaming\vlc\vlcrc
[05/04/2008|15:09] C:\Users\Kensuke\AppData\Roaming\vlc\cache
[08/03/2008|14:24] C:\Users\Kensuke\AppData\Roaming\Winamp\studio.xnf
[08/03/2008|14:24] C:\Users\Kensuke\AppData\Roaming\Winamp\winamp.ini
[08/03/2008|14:24] C:\Users\Kensuke\AppData\Roaming\Winamp\winamp.m3u
[08/03/2008|14:24] C:\Users\Kensuke\AppData\Roaming\Winamp\Winamp.m3u8
[11/10/2007|16:02] C:\Users\Kensuke\AppData\Roaming\Winamp\Plugins
[11/10/2007|16:01] C:\Users\Kensuke\AppData\Roaming\Winamp\Winamp.q1
[14/09/2005|21:17] C:\Users\Kensuke\AppData\Roaming\Winamp\demo.mp3
[22/11/2007|19:18] C:\Users\Kensuke\AppData\Roaming\wklnhst.dat\wklnhst.dat
----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------
[29/04/2008 14:31][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{5DA374D4-9520-4C2E-850F-031205B684A1}.job
[29/04/2008 18:36][--ah-----] C:\Windows\tasks\SA.DAT
[29/04/2008 18:35][--a------] C:\Windows\tasks\SCHEDLGU.TXT
------[ Listing des dossiers dans C:\ProgramData ]------
[02/06/2007|00:54] C:\ProgramData\{623D32E9-0C62-4453-AD44-98B31F52A5E1}
[02/06/2007|00:49] C:\ProgramData\Adobe
[07/10/2007|14:43] C:\ProgramData\Age of Empires 3 YPack Trial
[02/11/2006|15:02] C:\ProgramData\Application Data
[18/09/2007|21:52] C:\ProgramData\Bureau
[25/11/2007|00:38] C:\ProgramData\Corel
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[03/12/2007|10:08] C:\ProgramData\eMule
[12/10/2007|16:48] C:\ProgramData\EPSON
[18/09/2007|21:52] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[02/06/2007|00:59] C:\ProgramData\Google
[02/06/2007|01:16] C:\ProgramData\Hewlett-Packard
[02/06/2007|00:37] C:\ProgramData\HP
[02/06/2007|00:38] C:\ProgramData\hpzinstall.log
[16/04/2008|08:29] C:\ProgramData\LauncherAccess.dt
[01/01/2008|19:18] C:\ProgramData\LightScribe
[06/04/2008|12:11] C:\ProgramData\Media Center Programs
[18/09/2007|21:52] C:\ProgramData\Menu D‚marrer
[02/11/2007|17:38] C:\ProgramData\Messenger Plus!
[05/04/2008|12:08] C:\ProgramData\Microsoft
[25/04/2008|17:17] C:\ProgramData\Microsoft Help
[18/09/2007|21:52] C:\ProgramData\ModŠles
[02/06/2007|00:47] C:\ProgramData\muvee Technologies
[01/01/2008|15:50] C:\ProgramData\Nero
[02/01/2008|12:30] C:\ProgramData\NVIDIA
[27/04/2008|10:40] C:\ProgramData\Obj Send Meow
[02/06/2007|00:56] C:\ProgramData\PC-Doctor
[25/11/2007|00:36] C:\ProgramData\pswi_preloaded.exe
[02/06/2007|00:43] C:\ProgramData\Roxio
[02/06/2007|00:44] C:\ProgramData\Sonic
[05/04/2008|15:09] C:\ProgramData\Spybot - Search & Destroy
[02/11/2006|15:02] C:\ProgramData\Start Menu
[19/09/2007|18:52] C:\ProgramData\Symantec
[02/11/2006|15:02] C:\ProgramData\Templates
[12/10/2007|16:57] C:\ProgramData\UDL
[29/04/2008|14:29] C:\ProgramData\wipe memo memo.cn79kj
---------------[ Listing des dossiers dans C:\Program Files ]--------------
[02/06/2007|00:54] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[28/10/2007|21:06] C:\Program Files\Adobe
[29/03/2008|21:23] C:\Program Files\Aegisub
[18/09/2007|22:47] C:\Program Files\Alwil Software
[29/04/2008|13:54] C:\Program Files\BitComet
[19/10/2007|21:37] C:\Program Files\CamStudio
[02/10/2007|17:47] C:\Program Files\CCleaner
[02/03/2008|23:44] C:\Program Files\Common Files
[25/11/2007|00:37] C:\Program Files\Corel
[13/10/2007|14:47] C:\Program Files\DAEMON Tools
[18/09/2007|22:33] C:\Program Files\desktop.ini
[20/10/2007|16:00] C:\Program Files\EA GAMES
[23/04/2008|14:45] C:\Program Files\Easy GIF Animator
[23/04/2008|14:45] C:\Program Files\Easy Gif Animator Extension
[02/06/2007|09:41] C:\Program Files\EasyBits
[06/04/2008|12:07] C:\Program Files\Electronic Arts
[12/10/2007|16:53] C:\Program Files\epson
[19/04/2008|18:46] C:\Program Files\Fake Webcam
[18/09/2007|21:52] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[26/12/2007|23:54] C:\Program Files\FileZilla Client
[22/12/2007|20:31] C:\Program Files\FlashGet
[18/09/2007|22:31] C:\Program Files\Google
[02/12/2007|18:51] C:\Program Files\Gpotato.eu
[02/06/2007|00:57] C:\Program Files\Hewlett-Packard
[02/06/2007|00:49] C:\Program Files\HP
[02/03/2008|14:57] C:\Program Files\InstallShield Installation Information
[09/04/2008|08:55] C:\Program Files\Internet Explorer
[08/11/2007|10:55] C:\Program Files\Java
[19/09/2007|00:16] C:\Program Files\Lavasoft
[17/02/2008|14:01] C:\Program Files\LimeWire
[03/04/2008|15:27] C:\Program Files\Messenger Plus! Live
[30/10/2007|20:55] C:\Program Files\Microsoft FrontPage
[02/03/2008|14:57] C:\Program Files\Microsoft Games
[30/10/2007|20:53] C:\Program Files\Microsoft Office
[30/10/2007|20:56] C:\Program Files\Microsoft Visual Studio
[02/06/2007|00:53] C:\Program Files\Microsoft Works
[02/06/2007|00:53] C:\Program Files\Microsoft.NET
[29/04/2008|14:04] C:\Program Files\mIRC
[29/04/2008|13:55] C:\Program Files\mIRCs
[02/06/2007|10:00] C:\Program Files\Movie Maker
[02/11/2006|14:37] C:\Program Files\MSBuild
[02/11/2006|14:37] C:\Program Files\MSN
[11/11/2007|02:22] C:\Program Files\MSN Content Plus Inc
[13/04/2008|19:55] C:\Program Files\MSN Messenger
[18/09/2007|22:15] C:\Program Files\MSXML 4.0
[02/06/2007|00:47] C:\Program Files\muvee Technologies
[01/01/2008|15:50] C:\Program Files\Nero
[01/01/2008|21:38] C:\Program Files\OpenAL
[08/02/2008|21:30] C:\Program Files\OpenOffice.org 2.3
[02/06/2007|01:10] C:\Program Files\PC-Doctor 5 for Windows
[02/06/2007|00:46] C:\Program Files\Real
[02/06/2007|00:32] C:\Program Files\Realtek
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[02/06/2007|00:45] C:\Program Files\Roxio
[05/03/2008|00:32] C:\Program Files\RPG Maker 2003
[20/09/2007|18:26] C:\Program Files\Samsung
[20/09/2007|09:00] C:\Program Files\Satsuki Decoder Pack
[28/04/2008|14:45] C:\Program Files\scanner.exe
[02/06/2007|00:59] C:\Program Files\Services en ligne
[19/12/2007|23:17] C:\Program Files\SopCast
[12/01/2008|22:55] C:\Program Files\Spybot - Search & Destroy
[23/04/2008|14:00] C:\Program Files\Teamspeak2_RC2
[30/12/2007|19:34] C:\Program Files\TVUPlayer
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[13/04/2008|19:55] C:\Program Files\uusee
[11/10/2007|15:47] C:\Program Files\VideoLAN
[02/03/2008|23:44] C:\Program Files\Winamp
[18/09/2007|22:29] C:\Program Files\Windows Calendar
[02/06/2007|10:00] C:\Program Files\Windows Collaboration
[02/06/2007|00:33] C:\Program Files\Windows Defender
[02/06/2007|10:00] C:\Program Files\Windows Journal
[01/11/2007|12:09] C:\Program Files\Windows Live
[09/04/2008|08:55] C:\Program Files\Windows Mail
[11/10/2007|10:12] C:\Program Files\Windows Media Player
[18/09/2007|21:52] C:\Program Files\Windows NT
[02/06/2007|10:00] C:\Program Files\Windows Photo Gallery
[10/01/2008|00:07] C:\Program Files\Windows Sidebar
[24/10/2007|12:38] C:\Program Files\WinRAR
[28/10/2007|20:11] C:\Program Files\WMV9_VCM
[07/10/2007|13:00] C:\Program Files\Yume Team
------[ Listing des dossiers dans C:\Program Files\Common Files ]------
[02/06/2007|00:49] C:\Program Files\Common Files\Adobe
[25/11/2007|00:37] C:\Program Files\Common Files\Corel
[02/06/2007|00:53] C:\Program Files\Common Files\DESIGNER
[02/06/2007|00:37] C:\Program Files\Common Files\HP
[11/11/2007|02:21] C:\Program Files\Common Files\InstallShield
[01/11/2007|11:47] C:\Program Files\Common Files\Java
[02/06/2007|00:46] C:\Program Files\Common Files\LightScribe
[02/06/2007|00:45] C:\Program Files\Common Files\LS Getting Started
[29/03/2008|21:23] C:\Program Files\Common Files\microsoft shared
[02/06/2007|00:47] C:\Program Files\Common Files\muvee Technologies
[01/01/2008|15:55] C:\Program Files\Common Files\Nero
[02/06/2007|00:44] C:\Program Files\Common Files\PX Storage Engine
[02/06/2007|00:46] C:\Program Files\Common Files\Real
[02/06/2007|00:44] C:\Program Files\Common Files\Roxio Shared
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[02/06/2007|00:45] C:\Program Files\Common Files\Sonic Shared
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[02/06/2007|00:45] C:\Program Files\Common Files\SureThing Shared
[19/09/2007|16:19] C:\Program Files\Common Files\Symantec Shared
[18/09/2007|22:28] C:\Program Files\Common Files\System
[02/06/2007|00:46] C:\Program Files\Common Files\xing shared
---------------------------[ Process ]--------------------------
... 51
... OK !
----------------------[ Recherche avec S_Lop ]---------------------
C:\ProgramData\wipe memo memo.cn79kj
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
Aucun fichier / dossier Lop trouvé !
----------------------[ Verification du Registre ]----------------------
..... OK !
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts PROPRE
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-04-29 18:36:53
Windows 6.0.6000 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
=> C:\Users\Kensuke\Desktop\Fansub\Nero\Nero 8.1.1.4 French + New Keygen
=> C:\Users\Kensuke\Desktop\Fansub\Nero\Nero 8.1.1.4 French + New Keygen.zip
=> C:\Users\Kensuke\Desktop\Fansub\Nero\Nero 8.1.1.4 French + New Keygen\Ahead Nero v8.x.x.x Ultra Edition Keymaker NEW.exe
=> C:\Users\Kensuke\Desktop\Fansub\Nero\Nero 8.1.1.4 French + New Keygen\Nero 8.1.1.4 Fran‡ais.exe
/!\ [Fich:525][Doss:10] C:\Users\Kensuke\AppData\Local\Temp
/!\ [Fich:35][Doss:1] C:\Users\Kensuke\AppData\Roaming\MICROS~1\Windows\Cookies
/!\ [Fich:29][Doss:4] C:\Users\Kensuke\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[ UAC => 1 ]
--------------------[ Fin du rapport a 18:39:31,45 ]----------------------
Reposte un rapport Hijackthis.
Répondre à Angeldark
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:26:56, on 30/04/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16643)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\hp\support\hpsysdrv.exe
C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\scanner.exe
C:\Windows\system32\Macromed\Flash\FlashUtil9f.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dailymotion.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr? [...] pf=desktop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr? [...] pf=desktop
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.8.30.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Easy Gif Animator Toolbar Helper - {96372AB6-15EB-4316-B497-71C741BC548C} - C:\Program Files\Easy Gif Animator Extension\v3.3.0.1\EasyGifAnimator_Toolbar.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Easy Gif Animator Toolbar - {35065594-9169-4A34-B167-FC4865038E53} - C:\Program Files\Easy Gif Animator Extension\v3.3.0.1\EasyGifAnimator_Toolbar.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [hpsysdrv] c:\hp\support\hpsysdrv.exe
O4 - HKLM\..\Run: [OsdMaestro] "C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe"
O4 - HKLM\..\Run: [HP Software Update] c:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\RunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [EPSON Stylus DX4400 Series] C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATICAE.EXE /FU "C:\Windows\TEMP\E_SA1EE.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [Mpegmode] "C:\ProgramData\wipe memo memo.cn79kj"
O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: BitComet Search - {461CC20B-FB6E-4f16-8FE8-C29359DB100E} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.8.30.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O13 - Gopher Prefix:
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/ [...] wflash.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - c:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\system32\PSIService.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - c:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe
--
End of file - 7401 bytes
vla merci
Commence par supprimer les craks sur ton bureau...
Refais un scan LopSD option 2.
Message édité par Angeldark le 30-04-2008 à 16:00:11
Répondre à Angeldark
Tu parles de quel crack ? Nero ?
Oui 
Répondre à Angeldark
Re
hummm depuis plus de 10 minutes j'ai toujours cet écran après que ça ait rédémaré mon ordi :
c'est normal ?
merci
Patiente encore un peu. Si cela ne fonctionne pas, ferme-la.
Répondre à Angeldark
C"est bon j'ai fermé vu que ça fait toujours la même chose, donc que faire dans ce cas là ?
Refais un scan LOPSD option 1.
Répondre à Angeldark
re ça m'a lair suspect ça :
C:\ProgramData\wipe memo memo.cn79kj
Lop S&D 4.2.0-2 XP/Vista ]---------------------
[ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
[ USER : Kensuke ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 30/04/2008 | 19:27:06,88 ] [ PC : PC-DE-KENSUKE ]
[ MAJ : 27-04-2008 | 11:15 ]
[ UAC => 0 ]
-------------[ Listing des dossiers dans Application Data ]------------
[21/04/2008|13:21] C:\Users\Kensuke\AppData\Roaming\Adobe\Flash Player
[18/10/2007|10:55] C:\Users\Kensuke\AppData\Roaming\Adobe\Linguistics
[26/09/2007|18:47] C:\Users\Kensuke\AppData\Roaming\Adobe\Acrobat
[21/04/2008|21:05] C:\Users\Kensuke\AppData\Roaming\Aegisub\config.dat
[21/04/2008|21:02] C:\Users\Kensuke\AppData\Roaming\Aegisub\autosave
[21/04/2008|21:01] C:\Users\Kensuke\AppData\Roaming\Aegisub\autoback
[21/04/2008|21:01] C:\Users\Kensuke\AppData\Roaming\Aegisub\hotkeys.dat
[08/03/2008|22:32] C:\Users\Kensuke\AppData\Roaming\Corel\ImageDB.db
[08/03/2008|22:32] C:\Users\Kensuke\AppData\Roaming\Corel\LastDBFilter.PspCache
[25/02/2008|12:25] C:\Users\Kensuke\AppData\Roaming\Corel\thumbnails.db
[25/11/2007|11:42] C:\Users\Kensuke\AppData\Roaming\Corel\Messages
[25/11/2007|00:39] C:\Users\Kensuke\AppData\Roaming\Corel\Paint Shop Pro Photo
[26/11/2007|20:46] C:\Users\Kensuke\AppData\Roaming\EPSON\ESCNDV
[27/04/2008|20:51] C:\Users\Kensuke\AppData\Roaming\FileZilla\filezilla.xml
[27/04/2008|20:51] C:\Users\Kensuke\AppData\Roaming\FileZilla\queue.xml
[27/04/2008|20:43] C:\Users\Kensuke\AppData\Roaming\FileZilla\layout.xml
[19/04/2008|12:02] C:\Users\Kensuke\AppData\Roaming\FileZilla\recentservers.xml
[26/12/2007|23:55] C:\Users\Kensuke\AppData\Roaming\FileZilla\filters.xml
[22/12/2007|20:31] C:\Users\Kensuke\AppData\Roaming\FlashGet\DataBase
[24/04/2008|18:55] C:\Users\Kensuke\AppData\Roaming\Google\Local Search History
[18/09/2007|22:01] C:\Users\Kensuke\AppData\Roaming\Hewlett-Packard\HP Software UI
[18/09/2007|22:06] C:\Users\Kensuke\AppData\Roaming\Identities\{37AEC557-B9B0-4BBA-9FEA-AC9F67012977}
[12/10/2007|16:49] C:\Users\Kensuke\AppData\Roaming\InstallShield\ISEngine12.0
[30/04/2008|16:41] C:\Users\Kensuke\AppData\Roaming\Lavasoft\Ad-Aware
[30/04/2008|00:35] C:\Users\Kensuke\AppData\Roaming\LimeWire\library.dat
[30/04/2008|00:35] C:\Users\Kensuke\AppData\Roaming\LimeWire\spam.dat
[30/04/2008|00:35] C:\Users\Kensuke\AppData\Roaming\LimeWire\questions.props
[30/04/2008|00:35] C:\Users\Kensuke\AppData\Roaming\LimeWire\tables.props
[30/04/2008|00:35] C:\Users\Kensuke\AppData\Roaming\LimeWire\installation.props
[30/04/2008|00:35] C:\Users\Kensuke\AppData\Roaming\LimeWire\mojito.props
[30/04/2008|00:35] C:\Users\Kensuke\AppData\Roaming\LimeWire\limewire.props
[30/04/2008|00:35] C:\Users\Kensuke\AppData\Roaming\LimeWire\gnutella.net
[30/04/2008|00:33] C:\Users\Kensuke\AppData\Roaming\LimeWire\createtimes.cache
[30/04/2008|00:32] C:\Users\Kensuke\AppData\Roaming\LimeWire\filters.props
[30/04/2008|00:31] C:\Users\Kensuke\AppData\Roaming\LimeWire\fileurns.cache
[25/04/2008|15:11] C:\Users\Kensuke\AppData\Roaming\LimeWire\ttrees.cache
[25/04/2008|15:11] C:\Users\Kensuke\AppData\Roaming\LimeWire\ttroot.cache
[14/04/2008|23:08] C:\Users\Kensuke\AppData\Roaming\LimeWire\version.xml
[14/04/2008|22:30] C:\Users\Kensuke\AppData\Roaming\LimeWire\simpp.xml
[17/02/2008|13:02] C:\Users\Kensuke\AppData\Roaming\LimeWire\ttree.cache
[15/02/2008|17:17] C:\Users\Kensuke\AppData\Roaming\LimeWire\.NetworkShare
[01/11/2007|12:36] C:\Users\Kensuke\AppData\Roaming\LimeWire\414splashfree.png
[01/11/2007|12:04] C:\Users\Kensuke\AppData\Roaming\LimeWire\responses.cache
[01/11/2007|11:50] C:\Users\Kensuke\AppData\Roaming\LimeWire\fileurns.bak
[01/11/2007|11:49] C:\Users\Kensuke\AppData\Roaming\LimeWire\.AppSpecialShare
[01/11/2007|11:49] C:\Users\Kensuke\AppData\Roaming\LimeWire\xml
[01/11/2007|11:49] C:\Users\Kensuke\AppData\Roaming\LimeWire\themes
[21/04/2008|13:21] C:\Users\Kensuke\AppData\Roaming\Macromedia\Flash Player
[30/04/2008|16:14] C:\Users\Kensuke\AppData\Roaming\Media Player Classic\default.mpcpl
[30/04/2008|13:08] C:\Users\Kensuke\AppData\Roaming\Microsoft\preuve
[30/04/2008|13:08] C:\Users\Kensuke\AppData\Roaming\Microsoft\ModŠles
[27/04/2008|13:12] C:\Users\Kensuke\AppData\Roaming\Microsoft\MSN Messenger
[26/04/2008|19:23] C:\Users\Kensuke\AppData\Roaming\Microsoft\Word
[25/04/2008|17:17] C:\Users\Kensuke\AppData\Roaming\Microsoft\Templates
[07/04/2008|10:21] C:\Users\Kensuke\AppData\Roaming\Microsoft\Windows Photo Gallery
[05/04/2008|13:02] C:\Users\Kensuke\AppData\Roaming\Microsoft\MMC
[25/03/2008|16:12] C:\Users\Kensuke\AppData\Roaming\Microsoft\Windows Live Call
[25/03/2008|16:12] C:\Users\Kensuke\AppData\Roaming\Microsoft\IdentityCRL
[09/02/2008|12:03] C:\Users\Kensuke\AppData\Roaming\Microsoft\Office
[26/01/2008|02:36] C:\Users\Kensuke\AppData\Roaming\Microsoft\UProof
[19/01/2008|12:32] C:\Users\Kensuke\AppData\Roaming\Microsoft\CLView
[09/01/2008|00:53] C:\Users\Kensuke\AppData\Roaming\Microsoft\Speech
[30/12/2007|11:28] C:\Users\Kensuke\AppData\Roaming\Microsoft\OIS
[11/11/2007|16:44] C:\Users\Kensuke\AppData\Roaming\Microsoft\Proof
[30/10/2007|20:58] C:\Users\Kensuke\AppData\Roaming\Microsoft\Excel
[30/10/2007|20:57] C:\Users\Kensuke\AppData\Roaming\Microsoft\Macros compl‚mentaires
[26/10/2007|18:37] C:\Users\Kensuke\AppData\Roaming\Microsoft\Document Building Blocks
[26/10/2007|18:37] C:\Users\Kensuke\AppData\Roaming\Microsoft\AddIns
[19/10/2007|22:26] C:\Users\Kensuke\AppData\Roaming\Microsoft\Internet Explorer
[07/10/2007|14:30] C:\Users\Kensuke\AppData\Roaming\Microsoft\Windows
[30/09/2007|17:05] C:\Users\Kensuke\AppData\Roaming\Microsoft\Crypto
[19/09/2007|00:17] C:\Users\Kensuke\AppData\Roaming\Microsoft\HTML Help
[18/09/2007|22:07] C:\Users\Kensuke\AppData\Roaming\Microsoft\SystemCertificates
[18/09/2007|22:06] C:\Users\Kensuke\AppData\Roaming\Microsoft\Protect
[18/09/2007|22:01] C:\Users\Kensuke\AppData\Roaming\Microsoft\CLR Security Config
[18/09/2007|21:59] C:\Users\Kensuke\AppData\Roaming\Microsoft\Credentials
[30/04/2008|15:30] C:\Users\Kensuke\AppData\Roaming\mIRC\mirc.ini
[30/04/2008|15:30] C:\Users\Kensuke\AppData\Roaming\mIRC\logs
[30/04/2008|15:30] C:\Users\Kensuke\AppData\Roaming\mIRC\urls.ini
[30/04/2008|14:28] C:\Users\Kensuke\AppData\Roaming\mIRC\servers.ini
[29/04/2008|14:32] C:\Users\Kensuke\AppData\Roaming\mIRC\channels
[29/04/2008|13:55] C:\Users\Kensuke\AppData\Roaming\mIRC\downloads
[29/04/2008|13:55] C:\Users\Kensuke\AppData\Roaming\mIRC\sounds
[29/04/2008|13:55] C:\Users\Kensuke\AppData\Roaming\mIRC\scripts
[20/01/2008|22:15] C:\Users\Kensuke\AppData\Roaming\Nero\Nero8
[08/02/2008|21:34] C:\Users\Kensuke\AppData\Roaming\OpenOffice.org2\user
[02/04/2008|23:40] C:\Users\Kensuke\AppData\Roaming\Real\RealPlayer
[04/01/2008|22:04] C:\Users\Kensuke\AppData\Roaming\Real\RealMediaSDK
[08/11/2007|23:26] C:\Users\Kensuke\AppData\Roaming\Real\rnadmin
[04/10/2007|22:21] C:\Users\Kensuke\AppData\Roaming\Roxio\MediaManager9
[04/10/2007|22:18] C:\Users\Kensuke\AppData\Roaming\Roxio\Dragon
[04/10/2007|22:18] C:\Users\Kensuke\AppData\Roaming\Roxio\RoxioCentral
[16/04/2008|08:31] C:\Users\Kensuke\AppData\Roaming\Samsung\Samsung PC Studio 3
[19/12/2007|23:07] C:\Users\Kensuke\AppData\Roaming\SopCast\adv
[19/12/2007|22:54] C:\Users\Kensuke\AppData\Roaming\SopCast\anonymous@sopcast.org
[19/12/2007|00:18] C:\Users\Kensuke\AppData\Roaming\SopCast\livemsg.xml
[23/09/2007|16:50] C:\Users\Kensuke\AppData\Roaming\SopCast\Favorites.xml
[11/04/2007|11:51] C:\Users\Kensuke\AppData\Roaming\SopCast\config.xml
[26/04/2008|23:26] C:\Users\Kensuke\AppData\Roaming\teamspeak2\TeamSpeak.Conf
[26/04/2008|23:25] C:\Users\Kensuke\AppData\Roaming\teamspeak2\imagecache.ini
[17/02/2005|09:07] C:\Users\Kensuke\AppData\Roaming\Template\Normal.wpt
[30/12/2007|19:37] C:\Users\Kensuke\AppData\Roaming\TVU Networks\TVUPlayer
[30/12/2007|19:32] C:\Users\Kensuke\AppData\Roaming\TVU Networks\TVU AutoUpgrade
[30/04/2008|00:37] C:\Users\Kensuke\AppData\Roaming\vlc\vlcrc
[05/04/2008|15:09] C:\Users\Kensuke\AppData\Roaming\vlc\cache
[08/03/2008|14:24] C:\Users\Kensuke\AppData\Roaming\Winamp\studio.xnf
[08/03/2008|14:24] C:\Users\Kensuke\AppData\Roaming\Winamp\winamp.ini
[08/03/2008|14:24] C:\Users\Kensuke\AppData\Roaming\Winamp\winamp.m3u
[08/03/2008|14:24] C:\Users\Kensuke\AppData\Roaming\Winamp\Winamp.m3u8
[11/10/2007|16:02] C:\Users\Kensuke\AppData\Roaming\Winamp\Plugins
[11/10/2007|16:01] C:\Users\Kensuke\AppData\Roaming\Winamp\Winamp.q1
[14/09/2005|21:17] C:\Users\Kensuke\AppData\Roaming\Winamp\demo.mp3
[22/11/2007|19:18] C:\Users\Kensuke\AppData\Roaming\wklnhst.dat\wklnhst.dat
----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------
[30/04/2008 15:51][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{5DA374D4-9520-4C2E-850F-031205B684A1}.job
[30/04/2008 17:57][--ah-----] C:\Windows\tasks\SA.DAT
[30/04/2008 17:56][--a------] C:\Windows\tasks\SCHEDLGU.TXT
------[ Listing des dossiers dans C:\ProgramData ]------
[02/06/2007|00:54] C:\ProgramData\{623D32E9-0C62-4453-AD44-98B31F52A5E1}
[02/06/2007|00:49] C:\ProgramData\Adobe
[07/10/2007|14:43] C:\ProgramData\Age of Empires 3 YPack Trial
[02/11/2006|15:02] C:\ProgramData\Application Data
[18/09/2007|21:52] C:\ProgramData\Bureau
[25/11/2007|00:38] C:\ProgramData\Corel
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[03/12/2007|10:08] C:\ProgramData\eMule
[12/10/2007|16:48] C:\ProgramData\EPSON
[18/09/2007|21:52] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[02/06/2007|00:59] C:\ProgramData\Google
[02/06/2007|01:16] C:\ProgramData\Hewlett-Packard
[02/06/2007|00:37] C:\ProgramData\HP
[02/06/2007|00:38] C:\ProgramData\hpzinstall.log
[16/04/2008|08:29] C:\ProgramData\LauncherAccess.dt
[01/01/2008|19:18] C:\ProgramData\LightScribe
[06/04/2008|12:11] C:\ProgramData\Media Center Programs
[18/09/2007|21:52] C:\ProgramData\Menu D‚marrer
[02/11/2007|17:38] C:\ProgramData\Messenger Plus!
[05/04/2008|12:08] C:\ProgramData\Microsoft
[25/04/2008|17:17] C:\ProgramData\Microsoft Help
[18/09/2007|21:52] C:\ProgramData\ModŠles
[02/06/2007|00:47] C:\ProgramData\muvee Technologies
[01/01/2008|15:50] C:\ProgramData\Nero
[30/04/2008|17:56] C:\ProgramData\ntuser.pol
[02/01/2008|12:30] C:\ProgramData\NVIDIA
[27/04/2008|10:40] C:\ProgramData\Obj Send Meow
[02/06/2007|00:56] C:\ProgramData\PC-Doctor
[25/11/2007|00:36] C:\ProgramData\pswi_preloaded.exe
[02/06/2007|00:43] C:\ProgramData\Roxio
[02/06/2007|00:44] C:\ProgramData\Sonic
[05/04/2008|15:09] C:\ProgramData\Spybot - Search & Destroy
[02/11/2006|15:02] C:\ProgramData\Start Menu
[19/09/2007|18:52] C:\ProgramData\Symantec
[02/11/2006|15:02] C:\ProgramData\Templates
[12/10/2007|16:57] C:\ProgramData\UDL
[29/04/2008|14:29] C:\ProgramData\wipe memo memo.cn79kj
---------------[ Listing des dossiers dans C:\Program Files ]--------------
[02/06/2007|00:54] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[28/10/2007|21:06] C:\Program Files\Adobe
[29/03/2008|21:23] C:\Program Files\Aegisub
[18/09/2007|22:47] C:\Program Files\Alwil Software
[29/04/2008|13:54] C:\Program Files\BitComet
[19/10/2007|21:37] C:\Program Files\CamStudio
[02/10/2007|17:47] C:\Program Files\CCleaner
[02/03/2008|23:44] C:\Program Files\Common Files
[25/11/2007|00:37] C:\Program Files\Corel
[13/10/2007|14:47] C:\Program Files\DAEMON Tools
[18/09/2007|22:33] C:\Program Files\desktop.ini
[20/10/2007|16:00] C:\Program Files\EA GAMES
[23/04/2008|14:45] C:\Program Files\Easy GIF Animator
[23/04/2008|14:45] C:\Program Files\Easy Gif Animator Extension
[02/06/2007|09:41] C:\Program Files\EasyBits
[06/04/2008|12:07] C:\Program Files\Electronic Arts
[12/10/2007|16:53] C:\Program Files\epson
[19/04/2008|18:46] C:\Program Files\Fake Webcam
[18/09/2007|21:52] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[26/12/2007|23:54] C:\Program Files\FileZilla Client
[22/12/2007|20:31] C:\Program Files\FlashGet
[18/09/2007|22:31] C:\Program Files\Google
[02/12/2007|18:51] C:\Program Files\Gpotato.eu
[02/06/2007|00:57] C:\Program Files\Hewlett-Packard
[02/06/2007|00:49] C:\Program Files\HP
[02/03/2008|14:57] C:\Program Files\InstallShield Installation Information
[09/04/2008|08:55] C:\Program Files\Internet Explorer
[08/11/2007|10:55] C:\Program Files\Java
[19/09/2007|00:16] C:\Program Files\Lavasoft
[17/02/2008|14:01] C:\Program Files\LimeWire
[03/04/2008|15:27] C:\Program Files\Messenger Plus! Live
[30/10/2007|20:55] C:\Program Files\Microsoft FrontPage
[02/03/2008|14:57] C:\Program Files\Microsoft Games
[30/10/2007|20:53] C:\Program Files\Microsoft Office
[30/10/2007|20:56] C:\Program Files\Microsoft Visual Studio
[02/06/2007|00:53] C:\Program Files\Microsoft Works
[02/06/2007|00:53] C:\Program Files\Microsoft.NET
[29/04/2008|14:04] C:\Program Files\mIRC
[29/04/2008|13:55] C:\Program Files\mIRCs
[02/06/2007|10:00] C:\Program Files\Movie Maker
[02/11/2006|14:37] C:\Program Files\MSBuild
[02/11/2006|14:37] C:\Program Files\MSN
[11/11/2007|02:22] C:\Program Files\MSN Content Plus Inc
[13/04/2008|19:55] C:\Program Files\MSN Messenger
[18/09/2007|22:15] C:\Program Files\MSXML 4.0
[02/06/2007|00:47] C:\Program Files\muvee Technologies
[01/01/2008|15:50] C:\Program Files\Nero
[01/01/2008|21:38] C:\Program Files\OpenAL
[08/02/2008|21:30] C:\Program Files\OpenOffice.org 2.3
[02/06/2007|01:10] C:\Program Files\PC-Doctor 5 for Windows
[02/06/2007|00:46] C:\Program Files\Real
[02/06/2007|00:32] C:\Program Files\Realtek
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[02/06/2007|00:45] C:\Program Files\Roxio
[05/03/2008|00:32] C:\Program Files\RPG Maker 2003
[20/09/2007|18:26] C:\Program Files\Samsung
[20/09/2007|09:00] C:\Program Files\Satsuki Decoder Pack
[28/04/2008|14:45] C:\Program Files\scanner.exe
[02/06/2007|00:59] C:\Program Files\Services en ligne
[19/12/2007|23:17] C:\Program Files\SopCast
[12/01/2008|22:55] C:\Program Files\Spybot - Search & Destroy
[23/04/2008|14:00] C:\Program Files\Teamspeak2_RC2
[30/12/2007|19:34] C:\Program Files\TVUPlayer
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[13/04/2008|19:55] C:\Program Files\uusee
[11/10/2007|15:47] C:\Program Files\VideoLAN
[02/03/2008|23:44] C:\Program Files\Winamp
[18/09/2007|22:29] C:\Program Files\Windows Calendar
[02/06/2007|10:00] C:\Program Files\Windows Collaboration
[02/06/2007|00:33] C:\Program Files\Windows Defender
[02/06/2007|10:00] C:\Program Files\Windows Journal
[01/11/2007|12:09] C:\Program Files\Windows Live
[09/04/2008|08:55] C:\Program Files\Windows Mail
[11/10/2007|10:12] C:\Program Files\Windows Media Player
[18/09/2007|21:52] C:\Program Files\Windows NT
[02/06/2007|10:00] C:\Program Files\Windows Photo Gallery
[10/01/2008|00:07] C:\Program Files\Windows Sidebar
[24/10/2007|12:38] C:\Program Files\WinRAR
[28/10/2007|20:11] C:\Program Files\WMV9_VCM
[07/10/2007|13:00] C:\Program Files\Yume Team
------[ Listing des dossiers dans C:\Program Files\Common Files ]------
[02/06/2007|00:49] C:\Program Files\Common Files\Adobe
[25/11/2007|00:37] C:\Program Files\Common Files\Corel
[02/06/2007|00:53] C:\Program Files\Common Files\DESIGNER
[02/06/2007|00:37] C:\Program Files\Common Files\HP
[11/11/2007|02:21] C:\Program Files\Common Files\InstallShield
[01/11/2007|11:47] C:\Program Files\Common Files\Java
[02/06/2007|00:46] C:\Program Files\Common Files\LightScribe
[02/06/2007|00:45] C:\Program Files\Common Files\LS Getting Started
[29/03/2008|21:23] C:\Program Files\Common Files\microsoft shared
[02/06/2007|00:47] C:\Program Files\Common Files\muvee Technologies
[01/01/2008|15:55] C:\Program Files\Common Files\Nero
[02/06/2007|00:44] C:\Program Files\Common Files\PX Storage Engine
[02/06/2007|00:46] C:\Program Files\Common Files\Real
[02/06/2007|00:44] C:\Program Files\Common Files\Roxio Shared
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[02/06/2007|00:45] C:\Program Files\Common Files\Sonic Shared
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[02/06/2007|00:45] C:\Program Files\Common Files\SureThing Shared
[19/09/2007|16:19] C:\Program Files\Common Files\Symantec Shared
[18/09/2007|22:28] C:\Program Files\Common Files\System
[02/06/2007|00:46] C:\Program Files\Common Files\xing shared
---------------------------[ Process ]--------------------------
... 55
iexplore.exe ~ [2092]
----------------------[ Recherche avec S_Lop ]---------------------
C:\ProgramData\wipe memo memo.cn79kj
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
Aucun fichier / dossier Lop trouvé !
----------------------[ Verification du Registre ]----------------------
..... OK !
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts PROPRE
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-04-30 19:27:29
Windows 6.0.6000 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
Aucune autre infection trouvée !
/!\ [Fich:595][Doss:10] C:\Users\Kensuke\AppData\Local\Temp
/!\ [Fich:133][Doss:1] C:\Users\Kensuke\AppData\Roaming\MICROS~1\Windows\Cookies
/!\ [Fich:1667][Doss:4] C:\Users\Kensuke\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[ UAC => 1 ]
--------------------[ Fin du rapport a 19:28:16,44 ]----------------------
merci
Tu peux supprimer manuellement : C:\ProgramData\wipe memo memo.cn79kj ?
Répondre à Angeldark
Oui, je peux, que faire ensuite ?
Refaire un scan LopSD option 1 
Répondre à Angeldark
Rha putain ! A chaque fois ça re-apparaît ! Que faire ?
-----------------------[ Lop S&D 4.2.0-2 XP/Vista ]---------------------
[ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
[ USER : Kensuke ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 30/04/2008 | 21:47:39,45 ] [ PC : PC-DE-KENSUKE ]
[ MAJ : 27-04-2008 | 11:15 ]
[ UAC => 0 ]
-------------[ Listing des dossiers dans Application Data ]------------
[21/04/2008|13:21] C:\Users\Kensuke\AppData\Roaming\Adobe\Flash Player
[18/10/2007|10:55] C:\Users\Kensuke\AppData\Roaming\Adobe\Linguistics
[26/09/2007|18:47] C:\Users\Kensuke\AppData\Roaming\Adobe\Acrobat
[21/04/2008|21:05] C:\Users\Kensuke\AppData\Roaming\Aegisub\config.dat
[21/04/2008|21:02] C:\Users\Kensuke\AppData\Roaming\Aegisub\autosave
[21/04/2008|21:01] C:\Users\Kensuke\AppData\Roaming\Aegisub\autoback
[21/04/2008|21:01] C:\Users\Kensuke\AppData\Roaming\Aegisub\hotkeys.dat
[08/03/2008|22:32] C:\Users\Kensuke\AppData\Roaming\Corel\ImageDB.db
[08/03/2008|22:32] C:\Users\Kensuke\AppData\Roaming\Corel\LastDBFilter.PspCache
[25/02/2008|12:25] C:\Users\Kensuke\AppData\Roaming\Corel\thumbnails.db
[25/11/2007|11:42] C:\Users\Kensuke\AppData\Roaming\Corel\Messages
[25/11/2007|00:39] C:\Users\Kensuke\AppData\Roaming\Corel\Paint Shop Pro Photo
[26/11/2007|20:46] C:\Users\Kensuke\AppData\Roaming\EPSON\ESCNDV
[27/04/2008|20:51] C:\Users\Kensuke\AppData\Roaming\FileZilla\filezilla.xml
[27/04/2008|20:51] C:\Users\Kensuke\AppData\Roaming\FileZilla\queue.xml
[27/04/2008|20:43] C:\Users\Kensuke\AppData\Roaming\FileZilla\layout.xml
[19/04/2008|12:02] C:\Users\Kensuke\AppData\Roaming\FileZilla\recentservers.xml
[26/12/2007|23:55] C:\Users\Kensuke\AppData\Roaming\FileZilla\filters.xml
[22/12/2007|20:31] C:\Users\Kensuke\AppData\Roaming\FlashGet\DataBase
[24/04/2008|18:55] C:\Users\Kensuke\AppData\Roaming\Google\Local Search History
[18/09/2007|22:01] C:\Users\Kensuke\AppData\Roaming\Hewlett-Packard\HP Software UI
[18/09/2007|22:06] C:\Users\Kensuke\AppData\Roaming\Identities\{37AEC557-B9B0-4BBA-9FEA-AC9F67012977}
[12/10/2007|16:49] C:\Users\Kensuke\AppData\Roaming\InstallShield\ISEngine12.0
[30/04/2008|16:41] C:\Users\Kensuke\AppData\Roaming\Lavasoft\Ad-Aware
[30/04/2008|00:35] C:\Users\Kensuke\AppData\Roaming\LimeWire\library.dat
[30/04/2008|00:35] C:\Users\Kensuke\AppData\Roaming\LimeWire\spam.dat
[30/04/2008|00:35] C:\Users\Kensuke\AppData\Roaming\LimeWire\questions.props
[30/04/2008|00:35] C:\Users\Kensuke\AppData\Roaming\LimeWire\tables.props
[30/04/2008|00:35] C:\Users\Kensuke\AppData\Roaming\LimeWire\installation.props
[30/04/2008|00:35] C:\Users\Kensuke\AppData\Roaming\LimeWire\mojito.props
[30/04/2008|00:35] C:\Users\Kensuke\AppData\Roaming\LimeWire\limewire.props
[30/04/2008|00:35] C:\Users\Kensuke\AppData\Roaming\LimeWire\gnutella.net
[30/04/2008|00:33] C:\Users\Kensuke\AppData\Roaming\LimeWire\createtimes.cache
[30/04/2008|00:32] C:\Users\Kensuke\AppData\Roaming\LimeWire\filters.props
[30/04/2008|00:31] C:\Users\Kensuke\AppData\Roaming\LimeWire\fileurns.cache
[25/04/2008|15:11] C:\Users\Kensuke\AppData\Roaming\LimeWire\ttrees.cache
[25/04/2008|15:11] C:\Users\Kensuke\AppData\Roaming\LimeWire\ttroot.cache
[14/04/2008|23:08] C:\Users\Kensuke\AppData\Roaming\LimeWire\version.xml
[14/04/2008|22:30] C:\Users\Kensuke\AppData\Roaming\LimeWire\simpp.xml
[17/02/2008|13:02] C:\Users\Kensuke\AppData\Roaming\LimeWire\ttree.cache
[15/02/2008|17:17] C:\Users\Kensuke\AppData\Roaming\LimeWire\.NetworkShare
[01/11/2007|12:36] C:\Users\Kensuke\AppData\Roaming\LimeWire\414splashfree.png
[01/11/2007|12:04] C:\Users\Kensuke\AppData\Roaming\LimeWire\responses.cache
[01/11/2007|11:50] C:\Users\Kensuke\AppData\Roaming\LimeWire\fileurns.bak
[01/11/2007|11:49] C:\Users\Kensuke\AppData\Roaming\LimeWire\.AppSpecialShare
[01/11/2007|11:49] C:\Users\Kensuke\AppData\Roaming\LimeWire\xml
[01/11/2007|11:49] C:\Users\Kensuke\AppData\Roaming\LimeWire\themes
[21/04/2008|13:21] C:\Users\Kensuke\AppData\Roaming\Macromedia\Flash Player
[30/04/2008|21:32] C:\Users\Kensuke\AppData\Roaming\Media Player Classic\default.mpcpl
[30/04/2008|13:08] C:\Users\Kensuke\AppData\Roaming\Microsoft\preuve
[30/04/2008|13:08] C:\Users\Kensuke\AppData\Roaming\Microsoft\ModŠles
[27/04/2008|13:12] C:\Users\Kensuke\AppData\Roaming\Microsoft\MSN Messenger
[26/04/2008|19:23] C:\Users\Kensuke\AppData\Roaming\Microsoft\Word
[25/04/2008|17:17] C:\Users\Kensuke\AppData\Roaming\Microsoft\Templates
[07/04/2008|10:21] C:\Users\Kensuke\AppData\Roaming\Microsoft\Windows Photo Gallery
[05/04/2008|13:02] C:\Users\Kensuke\AppData\Roaming\Microsoft\MMC
[25/03/2008|16:12] C:\Users\Kensuke\AppData\Roaming\Microsoft\Windows Live Call
[25/03/2008|16:12] C:\Users\Kensuke\AppData\Roaming\Microsoft\IdentityCRL
[09/02/2008|12:03] C:\Users\Kensuke\AppData\Roaming\Microsoft\Office
[26/01/2008|02:36] C:\Users\Kensuke\AppData\Roaming\Microsoft\UProof
[19/01/2008|12:32] C:\Users\Kensuke\AppData\Roaming\Microsoft\CLView
[09/01/2008|00:53] C:\Users\Kensuke\AppData\Roaming\Microsoft\Speech
[30/12/2007|11:28] C:\Users\Kensuke\AppData\Roaming\Microsoft\OIS
[11/11/2007|16:44] C:\Users\Kensuke\AppData\Roaming\Microsoft\Proof
[30/10/2007|20:58] C:\Users\Kensuke\AppData\Roaming\Microsoft\Excel
[30/10/2007|20:57] C:\Users\Kensuke\AppData\Roaming\Microsoft\Macros compl‚mentaires
[26/10/2007|18:37] C:\Users\Kensuke\AppData\Roaming\Microsoft\Document Building Blocks
[26/10/2007|18:37] C:\Users\Kensuke\AppData\Roaming\Microsoft\AddIns
[19/10/2007|22:26] C:\Users\Kensuke\AppData\Roaming\Microsoft\Internet Explorer
[07/10/2007|14:30] C:\Users\Kensuke\AppData\Roaming\Microsoft\Windows
[30/09/2007|17:05] C:\Users\Kensuke\AppData\Roaming\Microsoft\Crypto
[19/09/2007|00:17] C:\Users\Kensuke\AppData\Roaming\Microsoft\HTML Help
[18/09/2007|22:07] C:\Users\Kensuke\AppData\Roaming\Microsoft\SystemCertificates
[18/09/2007|22:06] C:\Users\Kensuke\AppData\Roaming\Microsoft\Protect
[18/09/2007|22:01] C:\Users\Kensuke\AppData\Roaming\Microsoft\CLR Security Config
[18/09/2007|21:59] C:\Users\Kensuke\AppData\Roaming\Microsoft\Credentials
[30/04/2008|21:46] C:\Users\Kensuke\AppData\Roaming\mIRC\mirc.ini
[30/04/2008|21:46] C:\Users\Kensuke\AppData\Roaming\mIRC\logs
[30/04/2008|21:46] C:\Users\Kensuke\AppData\Roaming\mIRC\urls.ini
[30/04/2008|20:51] C:\Users\Kensuke\AppData\Roaming\mIRC\servers.ini
[29/04/2008|14:32] C:\Users\Kensuke\AppData\Roaming\mIRC\channels
[29/04/2008|13:55] C:\Users\Kensuke\AppData\Roaming\mIRC\downloads
[29/04/2008|13:55] C:\Users\Kensuke\AppData\Roaming\mIRC\sounds
[29/04/2008|13:55] C:\Users\Kensuke\AppData\Roaming\mIRC\scripts
[20/01/2008|22:15] C:\Users\Kensuke\AppData\Roaming\Nero\Nero8
[08/02/2008|21:34] C:\Users\Kensuke\AppData\Roaming\OpenOffice.org2\user
[02/04/2008|23:40] C:\Users\Kensuke\AppData\Roaming\Real\RealPlayer
[04/01/2008|22:04] C:\Users\Kensuke\AppData\Roaming\Real\RealMediaSDK
[08/11/2007|23:26] C:\Users\Kensuke\AppData\Roaming\Real\rnadmin
[04/10/2007|22:21] C:\Users\Kensuke\AppData\Roaming\Roxio\MediaManager9
[04/10/2007|22:18] C:\Users\Kensuke\AppData\Roaming\Roxio\Dragon
[04/10/2007|22:18] C:\Users\Kensuke\AppData\Roaming\Roxio\RoxioCentral
[16/04/2008|08:31] C:\Users\Kensuke\AppData\Roaming\Samsung\Samsung PC Studio 3
[19/12/2007|23:07] C:\Users\Kensuke\AppData\Roaming\SopCast\adv
[19/12/2007|22:54] C:\Users\Kensuke\AppData\Roaming\SopCast\anonymous@sopcast.org
[19/12/2007|00:18] C:\Users\Kensuke\AppData\Roaming\SopCast\livemsg.xml
[23/09/2007|16:50] C:\Users\Kensuke\AppData\Roaming\SopCast\Favorites.xml
[11/04/2007|11:51] C:\Users\Kensuke\AppData\Roaming\SopCast\config.xml
[26/04/2008|23:26] C:\Users\Kensuke\AppData\Roaming\teamspeak2\TeamSpeak.Conf
[26/04/2008|23:25] C:\Users\Kensuke\AppData\Roaming\teamspeak2\imagecache.ini
[17/02/2005|09:07] C:\Users\Kensuke\AppData\Roaming\Template\Normal.wpt
[30/12/2007|19:37] C:\Users\Kensuke\AppData\Roaming\TVU Networks\TVUPlayer
[30/12/2007|19:32] C:\Users\Kensuke\AppData\Roaming\TVU Networks\TVU AutoUpgrade
[30/04/2008|00:37] C:\Users\Kensuke\AppData\Roaming\vlc\vlcrc
[05/04/2008|15:09] C:\Users\Kensuke\AppData\Roaming\vlc\cache
[08/03/2008|14:24] C:\Users\Kensuke\AppData\Roaming\Winamp\studio.xnf
[08/03/2008|14:24] C:\Users\Kensuke\AppData\Roaming\Winamp\winamp.ini
[08/03/2008|14:24] C:\Users\Kensuke\AppData\Roaming\Winamp\winamp.m3u
[08/03/2008|14:24] C:\Users\Kensuke\AppData\Roaming\Winamp\Winamp.m3u8
[11/10/2007|16:02] C:\Users\Kensuke\AppData\Roaming\Winamp\Plugins
[11/10/2007|16:01] C:\Users\Kensuke\AppData\Roaming\Winamp\Winamp.q1
[14/09/2005|21:17] C:\Users\Kensuke\AppData\Roaming\Winamp\demo.mp3
[22/11/2007|19:18] C:\Users\Kensuke\AppData\Roaming\wklnhst.dat\wklnhst.dat
----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------
[30/04/2008 15:51][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{5DA374D4-9520-4C2E-850F-031205B684A1}.job
[30/04/2008 21:47][--ah-----] C:\Windows\tasks\SA.DAT
[30/04/2008 21:46][--a------] C:\Windows\tasks\SCHEDLGU.TXT
------[ Listing des dossiers dans C:\ProgramData ]------
[02/06/2007|00:54] C:\ProgramData\{623D32E9-0C62-4453-AD44-98B31F52A5E1}
[02/06/2007|00:49] C:\ProgramData\Adobe
[07/10/2007|14:43] C:\ProgramData\Age of Empires 3 YPack Trial
[02/11/2006|15:02] C:\ProgramData\Application Data
[18/09/2007|21:52] C:\ProgramData\Bureau
[25/11/2007|00:38] C:\ProgramData\Corel
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[03/12/2007|10:08] C:\ProgramData\eMule
[12/10/2007|16:48] C:\ProgramData\EPSON
[18/09/2007|21:52] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[02/06/2007|00:59] C:\ProgramData\Google
[02/06/2007|01:16] C:\ProgramData\Hewlett-Packard
[02/06/2007|00:37] C:\ProgramData\HP
[02/06/2007|00:38] C:\ProgramData\hpzinstall.log
[16/04/2008|08:29] C:\ProgramData\LauncherAccess.dt
[01/01/2008|19:18] C:\ProgramData\LightScribe
[06/04/2008|12:11] C:\ProgramData\Media Center Programs
[18/09/2007|21:52] C:\ProgramData\Menu D‚marrer
[02/11/2007|17:38] C:\ProgramData\Messenger Plus!
[05/04/2008|12:08] C:\ProgramData\Microsoft
[25/04/2008|17:17] C:\ProgramData\Microsoft Help
[18/09/2007|21:52] C:\ProgramData\ModŠles
[02/06/2007|00:47] C:\ProgramData\muvee Technologies
[01/01/2008|15:50] C:\ProgramData\Nero
[30/04/2008|17:56] C:\ProgramData\ntuser.pol
[02/01/2008|12:30] C:\ProgramData\NVIDIA
[27/04/2008|10:40] C:\ProgramData\Obj Send Meow
[02/06/2007|00:56] C:\ProgramData\PC-Doctor
[25/11/2007|00:36] C:\ProgramData\pswi_preloaded.exe
[02/06/2007|00:43] C:\ProgramData\Roxio
[02/06/2007|00:44] C:\ProgramData\Sonic
[05/04/2008|15:09] C:\ProgramData\Spybot - Search & Destroy
[02/11/2006|15:02] C:\ProgramData\Start Menu
[19/09/2007|18:52] C:\ProgramData\Symantec
[02/11/2006|15:02] C:\ProgramData\Templates
[12/10/2007|16:57] C:\ProgramData\UDL
[30/04/2008|20:48] C:\ProgramData\wipe memo memo.q6rkm8
---------------[ Listing des dossiers dans C:\Program Files ]--------------
[02/06/2007|00:54] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[28/10/2007|21:06] C:\Program Files\Adobe
[29/03/2008|21:23] C:\Program Files\Aegisub
[18/09/2007|22:47] C:\Program Files\Alwil Software
[29/04/2008|13:54] C:\Program Files\BitComet
[19/10/2007|21:37] C:\Program Files\CamStudio
[02/10/2007|17:47] C:\Program Files\CCleaner
[02/03/2008|23:44] C:\Program Files\Common Files
[25/11/2007|00:37] C:\Program Files\Corel
[13/10/2007|14:47] C:\Program Files\DAEMON Tools
[18/09/2007|22:33] C:\Program Files\desktop.ini
[20/10/2007|16:00] C:\Program Files\EA GAMES
[23/04/2008|14:45] C:\Program Files\Easy GIF Animator
[23/04/2008|14:45] C:\Program Files\Easy Gif Animator Extension
[02/06/2007|09:41] C:\Program Files\EasyBits
[06/04/2008|12:07] C:\Program Files\Electronic Arts
[12/10/2007|16:53] C:\Program Files\epson
[19/04/2008|18:46] C:\Program Files\Fake Webcam
[18/09/2007|21:52] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[26/12/2007|23:54] C:\Program Files\FileZilla Client
[22/12/2007|20:31] C:\Program Files\FlashGet
[18/09/2007|22:31] C:\Program Files\Google
[02/12/2007|18:51] C:\Program Files\Gpotato.eu
[02/06/2007|00:57] C:\Program Files\Hewlett-Packard
[02/06/2007|00:49] C:\Program Files\HP
[02/03/2008|14:57] C:\Program Files\InstallShield Installation Information
[09/04/2008|08:55] C:\Program Files\Internet Explorer
[08/11/2007|10:55] C:\Program Files\Java
[19/09/2007|00:16] C:\Program Files\Lavasoft
[17/02/2008|14:01] C:\Program Files\LimeWire
[03/04/2008|15:27] C:\Program Files\Messenger Plus! Live
[30/10/2007|20:55] C:\Program Files\Microsoft FrontPage
[02/03/2008|14:57] C:\Program Files\Microsoft Games
[30/10/2007|20:53] C:\Program Files\Microsoft Office
[30/10/2007|20:56] C:\Program Files\Microsoft Visual Studio
[02/06/2007|00:53] C:\Program Files\Microsoft Works
[02/06/2007|00:53] C:\Program Files\Microsoft.NET
[29/04/2008|14:04] C:\Program Files\mIRC
[29/04/2008|13:55] C:\Program Files\mIRCs
[02/06/2007|10:00] C:\Program Files\Movie Maker
[02/11/2006|14:37] C:\Program Files\MSBuild
[02/11/2006|14:37] C:\Program Files\MSN
[11/11/2007|02:22] C:\Program Files\MSN Content Plus Inc
[13/04/2008|19:55] C:\Program Files\MSN Messenger
[18/09/2007|22:15] C:\Program Files\MSXML 4.0
[02/06/2007|00:47] C:\Program Files\muvee Technologies
[01/01/2008|15:50] C:\Program Files\Nero
[01/01/2008|21:38] C:\Program Files\OpenAL
[08/02/2008|21:30] C:\Program Files\OpenOffice.org 2.3
[02/06/2007|01:10] C:\Program Files\PC-Doctor 5 for Windows
[02/06/2007|00:46] C:\Program Files\Real
[02/06/2007|00:32] C:\Program Files\Realtek
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[02/06/2007|00:45] C:\Program Files\Roxio
[05/03/2008|00:32] C:\Program Files\RPG Maker 2003
[20/09/2007|18:26] C:\Program Files\Samsung
[20/09/2007|09:00] C:\Program Files\Satsuki Decoder Pack
[28/04/2008|14:45] C:\Program Files\scanner.exe
[02/06/2007|00:59] C:\Program Files\Services en ligne
[19/12/2007|23:17] C:\Program Files\SopCast
[12/01/2008|22:55] C:\Program Files\Spybot - Search & Destroy
[23/04/2008|14:00] C:\Program Files\Teamspeak2_RC2
[30/12/2007|19:34] C:\Program Files\TVUPlayer
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[13/04/2008|19:55] C:\Program Files\uusee
[11/10/2007|15:47] C:\Program Files\VideoLAN
[02/03/2008|23:44] C:\Program Files\Winamp
[18/09/2007|22:29] C:\Program Files\Windows Calendar
[02/06/2007|10:00] C:\Program Files\Windows Collaboration
[02/06/2007|00:33] C:\Program Files\Windows Defender
[02/06/2007|10:00] C:\Program Files\Windows Journal
[01/11/2007|12:09] C:\Program Files\Windows Live
[09/04/2008|08:55] C:\Program Files\Windows Mail
[11/10/2007|10:12] C:\Program Files\Windows Media Player
[18/09/2007|21:52] C:\Program Files\Windows NT
[02/06/2007|10:00] C:\Program Files\Windows Photo Gallery
[10/01/2008|00:07] C:\Program Files\Windows Sidebar
[24/10/2007|12:38] C:\Program Files\WinRAR
[28/10/2007|20:11] C:\Program Files\WMV9_VCM
[07/10/2007|13:00] C:\Program Files\Yume Team
------[ Listing des dossiers dans C:\Program Files\Common Files ]------
[02/06/2007|00:49] C:\Program Files\Common Files\Adobe
[25/11/2007|00:37] C:\Program Files\Common Files\Corel
[02/06/2007|00:53] C:\Program Files\Common Files\DESIGNER
[02/06/2007|00:37] C:\Program Files\Common Files\HP
[11/11/2007|02:21] C:\Program Files\Common Files\InstallShield
[01/11/2007|11:47] C:\Program Files\Common Files\Java
[02/06/2007|00:46] C:\Program Files\Common Files\LightScribe
[02/06/2007|00:45] C:\Program Files\Common Files\LS Getting Started
[29/03/2008|21:23] C:\Program Files\Common Files\microsoft shared
[02/06/2007|00:47] C:\Program Files\Common Files\muvee Technologies
[01/01/2008|15:55] C:\Program Files\Common Files\Nero
[02/06/2007|00:44] C:\Program Files\Common Files\PX Storage Engine
[02/06/2007|00:46] C:\Program Files\Common Files\Real
[02/06/2007|00:44] C:\Program Files\Common Files\Roxio Shared
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[02/06/2007|00:45] C:\Program Files\Common Files\Sonic Shared
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[02/06/2007|00:45] C:\Program Files\Common Files\SureThing Shared
[19/09/2007|16:19] C:\Program Files\Common Files\Symantec Shared
[18/09/2007|22:28] C:\Program Files\Common Files\System
[02/06/2007|00:46] C:\Program Files\Common Files\xing shared
---------------------------[ Process ]--------------------------
... 39
iexplore.exe ~ [2144]
----------------------[ Recherche avec S_Lop ]---------------------
C:\ProgramData\wipe memo memo.q6rkm8
C:\ProgramData\wipe memo memo.q6rkm8
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
Aucun fichier / dossier Lop trouvé !
----------------------[ Verification du Registre ]----------------------
..... OK !
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts PROPRE
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-04-30 21:48:10
Windows 6.0.6000 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
Aucune autre infection trouvée !
/!\ [Fich:614][Doss:10] C:\Users\Kensuke\AppData\Local\Temp
/!\ [Fich:152][Doss:1] C:\Users\Kensuke\AppData\Roaming\MICROS~1\Windows\Cookies
/!\ [Fich:1737][Doss:4] C:\Users\Kensuke\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[ UAC => 1 ]
--------------------[ Fin du rapport a 21:50:32,35 ]----------------------
Re,
Une idée transmise par Eric_71.
Démarrer / Tous les programmes / Accessoires
Clique droit sur Exécuter et choisis Exécuter en tant qu'administrateur , colle ça et valide
"%SystemDrive%\Lop SD\LopSD" /u |
Télécharge la nouvelle version ( 4.2.0-3 ) et lance direct l'option 4 avec ça en script :
C:\ProgramData\Obj Send Meow
|
Répondre à Angeldark
j'ai essayé d'appliquer la commande que tu m'as citée et je me retrouve avec ça comme erreur :
Où trouver la nouvelle version de LopSD 4.2.0.3 ?
Merci
Message édité par Naruto75 le 01-05-2008 à 18:08:06
Même lien 
Répondre à Angeldark
Oui, mais pour mon problème de lien je fais comment ? :X
Il me semble que c'est bon, là non ?
-----------------------[ Lop S&D 4.2.0-3 XP/Vista ]---------------------
[ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
[ USER : Kensuke ] [ "C:\Lop SD" ] [ Selection : 4 ]
[ 01/05/2008 | 19:39:37,22 ] [ PC : PC-DE-KENSUKE ]
[ MAJ : 30-04-2008 | 18:35 ]
[ UAC => 0 ]
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ LopScript //////////////////////////////////
C:\ProgramData\Obj Send Meow
C:\ProgramData\wipe memo memo.q6rkm8
Supprimé! - C:\ProgramData\Obj Send Meow
//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
-------------[ Listing des dossiers dans Application Data ]------------
[21/04/2008|13:21] C:\Users\Kensuke\AppData\Roaming\Adobe\Flash Player
[18/10/2007|10:55] C:\Users\Kensuke\AppData\Roaming\Adobe\Linguistics
[26/09/2007|18:47] C:\Users\Kensuke\AppData\Roaming\Adobe\Acrobat
[21/04/2008|21:05] C:\Users\Kensuke\AppData\Roaming\Aegisub\config.dat
[21/04/2008|21:02] C:\Users\Kensuke\AppData\Roaming\Aegisub\autosave
[21/04/2008|21:01] C:\Users\Kensuke\AppData\Roaming\Aegisub\autoback
[21/04/2008|21:01] C:\Users\Kensuke\AppData\Roaming\Aegisub\hotkeys.dat
[08/03/2008|22:32] C:\Users\Kensuke\AppData\Roaming\Corel\ImageDB.db
[08/03/2008|22:32] C:\Users\Kensuke\AppData\Roaming\Corel\LastDBFilter.PspCache
[25/02/2008|12:25] C:\Users\Kensuke\AppData\Roaming\Corel\thumbnails.db
[25/11/2007|11:42] C:\Users\Kensuke\AppData\Roaming\Corel\Messages
[25/11/2007|00:39] C:\Users\Kensuke\AppData\Roaming\Corel\Paint Shop Pro Photo
[26/11/2007|20:46] C:\Users\Kensuke\AppData\Roaming\EPSON\ESCNDV
[27/04/2008|20:51] C:\Users\Kensuke\AppData\Roaming\FileZilla\filezilla.xml
[27/04/2008|20:51] C:\Users\Kensuke\AppData\Roaming\FileZilla\queue.xml
[27/04/2008|20:43] C:\Users\Kensuke\AppData\Roaming\FileZilla\layout.xml
[19/04/2008|12:02] C:\Users\Kensuke\AppData\Roaming\FileZilla\recentservers.xml
[26/12/2007|23:55] C:\Users\Kensuke\AppData\Roaming\FileZilla\filters.xml
[22/12/2007|20:31] C:\Users\Kensuke\AppData\Roaming\FlashGet\DataBase
[24/04/2008|18:55] C:\Users\Kensuke\AppData\Roaming\Google\Local Search History
[18/09/2007|22:01] C:\Users\Kensuke\AppData\Roaming\Hewlett-Packard\HP Software UI
[18/09/2007|22:06] C:\Users\Kensuke\AppData\Roaming\Identities\{37AEC557-B9B0-4BBA-9FEA-AC9F67012977}
[12/10/2007|16:49] C:\Users\Kensuke\AppData\Roaming\InstallShield\ISEngine12.0
[30/04/2008|16:41] C:\Users\Kensuke\AppData\Roaming\Lavasoft\Ad-Aware
[01/05/2008|15:49] C:\Users\Kensuke\AppData\Roaming\LimeWire\ttrees.cache
[01/05/2008|15:49] C:\Users\Kensuke\AppData\Roaming\LimeWire\ttroot.cache
[01/05/2008|15:49] C:\Users\Kensuke\AppData\Roaming\LimeWire\library.dat
[01/05/2008|15:49] C:\Users\Kensuke\AppData\Roaming\LimeWire\spam.dat
[01/05/2008|15:49] C:\Users\Kensuke\AppData\Roaming\LimeWire\filters.props
[01/05/2008|15:49] C:\Users\Kensuke\AppData\Roaming\LimeWire\questions.props
[01/05/2008|15:49] C:\Users\Kensuke\AppData\Roaming\LimeWire\tables.props
[01/05/2008|15:49] C:\Users\Kensuke\AppData\Roaming\LimeWire\installation.props
[01/05/2008|15:49] C:\Users\Kensuke\AppData\Roaming\LimeWire\mojito.props
[01/05/2008|15:49] C:\Users\Kensuke\AppData\Roaming\LimeWire\limewire.props
[01/05/2008|15:49] C:\Users\Kensuke\AppData\Roaming\LimeWire\gnutella.net
[01/05/2008|15:36] C:\Users\Kensuke\AppData\Roaming\LimeWire\fileurns.cache
[01/05/2008|15:33] C:\Users\Kensuke\AppData\Roaming\LimeWire\createtimes.cache
[14/04/2008|23:08] C:\Users\Kensuke\AppData\Roaming\LimeWire\version.xml
[14/04/2008|22:30] C:\Users\Kensuke\AppData\Roaming\LimeWire\simpp.xml
[17/02/2008|13:02] C:\Users\Kensuke\AppData\Roaming\LimeWire\ttree.cache
[15/02/2008|17:17] C:\Users\Kensuke\AppData\Roaming\LimeWire\.NetworkShare
[01/11/2007|12:36] C:\Users\Kensuke\AppData\Roaming\LimeWire\414splashfree.png
[01/11/2007|12:04] C:\Users\Kensuke\AppData\Roaming\LimeWire\responses.cache
[01/11/2007|11:50] C:\Users\Kensuke\AppData\Roaming\LimeWire\fileurns.bak
[01/11/2007|11:49] C:\Users\Kensuke\AppData\Roaming\LimeWire\.AppSpecialShare
[01/11/2007|11:49] C:\Users\Kensuke\AppData\Roaming\LimeWire\xml
[01/11/2007|11:49] C:\Users\Kensuke\AppData\Roaming\LimeWire\themes
[21/04/2008|13:21] C:\Users\Kensuke\AppData\Roaming\Macromedia\Flash Player
[01/05/2008|14:45] C:\Users\Kensuke\AppData\Roaming\Media Player Classic\default.mpcpl
[01/05/2008|15:49] C:\Users\Kensuke\AppData\Roaming\Microsoft\ModŠles
[01/05/2008|15:42] C:\Users\Kensuke\AppData\Roaming\Microsoft\preuve
[01/05/2008|13:34] C:\Users\Kensuke\AppData\Roaming\Microsoft\MSN Messenger
[26/04/2008|19:23] C:\Users\Kensuke\AppData\Roaming\Microsoft\Word
[25/04/2008|17:17] C:\Users\Kensuke\AppData\Roaming\Microsoft\Templates
[07/04/2008|10:21] C:\Users\Kensuke\AppData\Roaming\Microsoft\Windows Photo Gallery
[05/04/2008|13:02] C:\Users\Kensuke\AppData\Roaming\Microsoft\MMC
[25/03/2008|16:12] C:\Users\Kensuke\AppData\Roaming\Microsoft\Windows Live Call
[25/03/2008|16:12] C:\Users\Kensuke\AppData\Roaming\Microsoft\IdentityCRL
[09/02/2008|12:03] C:\Users\Kensuke\AppData\Roaming\Microsoft\Office
[26/01/2008|02:36] C:\Users\Kensuke\AppData\Roaming\Microsoft\UProof
[19/01/2008|12:32] C:\Users\Kensuke\AppData\Roaming\Microsoft\CLView
[09/01/2008|00:53] C:\Users\Kensuke\AppData\Roaming\Microsoft\Speech
[30/12/2007|11:28] C:\Users\Kensuke\AppData\Roaming\Microsoft\OIS
[11/11/2007|16:44] C:\Users\Kensuke\AppData\Roaming\Microsoft\Proof
[30/10/2007|20:58] C:\Users\Kensuke\AppData\Roaming\Microsoft\Excel
[30/10/2007|20:57] C:\Users\Kensuke\AppData\Roaming\Microsoft\Macros compl‚mentaires
[26/10/2007|18:37] C:\Users\Kensuke\AppData\Roaming\Microsoft\Document Building Blocks
[26/10/2007|18:37] C:\Users\Kensuke\AppData\Roaming\Microsoft\AddIns
[19/10/2007|22:26] C:\Users\Kensuke\AppData\Roaming\Microsoft\Internet Explorer
[07/10/2007|14:30] C:\Users\Kensuke\AppData\Roaming\Microsoft\Windows
[30/09/2007|17:05] C:\Users\Kensuke\AppData\Roaming\Microsoft\Crypto
[19/09/2007|00:17] C:\Users\Kensuke\AppData\Roaming\Microsoft\HTML Help
[18/09/2007|22:07] C:\Users\Kensuke\AppData\Roaming\Microsoft\SystemCertificates
[18/09/2007|22:06] C:\Users\Kensuke\AppData\Roaming\Microsoft\Protect
[18/09/2007|22:01] C:\Users\Kensuke\AppData\Roaming\Microsoft\CLR Security Config
[18/09/2007|21:59] C:\Users\Kensuke\AppData\Roaming\Microsoft\Credentials
[01/05/2008|14:45] C:\Users\Kensuke\AppData\Roaming\mIRC\mirc.ini
[01/05/2008|14:45] C:\Users\Kensuke\AppData\Roaming\mIRC\logs
[01/05/2008|14:45] C:\Users\Kensuke\AppData\Roaming\mIRC\urls.ini
[01/05/2008|11:28] C:\Users\Kensuke\AppData\Roaming\mIRC\servers.ini
[29/04/2008|14:32] C:\Users\Kensuke\AppData\Roaming\mIRC\channels
[29/04/2008|13:55] C:\Users\Kensuke\AppData\Roaming\mIRC\downloads
[29/04/2008|13:55] C:\Users\Kensuke\AppData\Roaming\mIRC\sounds
[29/04/2008|13:55] C:\Users\Kensuke\AppData\Roaming\mIRC\scripts
[20/01/2008|22:15] C:\Users\Kensuke\AppData\Roaming\Nero\Nero8
[08/02/2008|21:34] C:\Users\Kensuke\AppData\Roaming\OpenOffice.org2\user
[02/04/2008|23:40] C:\Users\Kensuke\AppData\Roaming\Real\RealPlayer
[04/01/2008|22:04] C:\Users\Kensuke\AppData\Roaming\Real\RealMediaSDK
[08/11/2007|23:26] C:\Users\Kensuke\AppData\Roaming\Real\rnadmin
[04/10/2007|22:21] C:\Users\Kensuke\AppData\Roaming\Roxio\MediaManager9
[04/10/2007|22:18] C:\Users\Kensuke\AppData\Roaming\Roxio\Dragon
[04/10/2007|22:18] C:\Users\Kensuke\AppData\Roaming\Roxio\RoxioCentral
[16/04/2008|08:31] C:\Users\Kensuke\AppData\Roaming\Samsung\Samsung PC Studio 3
[19/12/2007|23:07] C:\Users\Kensuke\AppData\Roaming\SopCast\adv
[19/12/2007|22:54] C:\Users\Kensuke\AppData\Roaming\SopCast\anonymous@sopcast.org
[19/12/2007|00:18] C:\Users\Kensuke\AppData\Roaming\SopCast\livemsg.xml
[23/09/2007|16:50] C:\Users\Kensuke\AppData\Roaming\SopCast\Favorites.xml
[11/04/2007|11:51] C:\Users\Kensuke\AppData\Roaming\SopCast\config.xml
[26/04/2008|23:26] C:\Users\Kensuke\AppData\Roaming\teamspeak2\TeamSpeak.Conf
[26/04/2008|23:25] C:\Users\Kensuke\AppData\Roaming\teamspeak2\imagecache.ini
[17/02/2005|09:07] C:\Users\Kensuke\AppData\Roaming\Template\Normal.wpt
[30/12/2007|19:37] C:\Users\Kensuke\AppData\Roaming\TVU Networks\TVUPlayer
[30/12/2007|19:32] C:\Users\Kensuke\AppData\Roaming\TVU Networks\TVU AutoUpgrade
[01/05/2008|17:56] C:\Users\Kensuke\AppData\Roaming\vlc\vlcrc
[05/04/2008|15:09] C:\Users\Kensuke\AppData\Roaming\vlc\cache
[08/03/2008|14:24] C:\Users\Kensuke\AppData\Roaming\Winamp\studio.xnf
[08/03/2008|14:24] C:\Users\Kensuke\AppData\Roaming\Winamp\winamp.ini
[08/03/2008|14:24] C:\Users\Kensuke\AppData\Roaming\Winamp\winamp.m3u
[08/03/2008|14:24] C:\Users\Kensuke\AppData\Roaming\Winamp\Winamp.m3u8
[11/10/2007|16:02] C:\Users\Kensuke\AppData\Roaming\Winamp\Plugins
[11/10/2007|16:01] C:\Users\Kensuke\AppData\Roaming\Winamp\Winamp.q1
[14/09/2005|21:17] C:\Users\Kensuke\AppData\Roaming\Winamp\demo.mp3
[22/11/2007|19:18] C:\Users\Kensuke\AppData\Roaming\wklnhst.dat\wklnhst.dat
----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------
[01/05/2008 16:29][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{5DA374D4-9520-4C2E-850F-031205B684A1}.job
[01/05/2008 19:39][--ah-----] C:\Windows\tasks\SA.DAT
[01/05/2008 19:38][--a------] C:\Windows\tasks\SCHEDLGU.TXT
------[ Listing des dossiers dans C:\ProgramData ]------
[02/06/2007|00:54] C:\ProgramData\{623D32E9-0C62-4453-AD44-98B31F52A5E1}
[02/06/2007|00:49] C:\ProgramData\Adobe
[07/10/2007|14:43] C:\ProgramData\Age of Empires 3 YPack Trial
[02/11/2006|15:02] C:\ProgramData\Application Data
[18/09/2007|21:52] C:\ProgramData\Bureau
[25/11/2007|00:38] C:\ProgramData\Corel
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[03/12/2007|10:08] C:\ProgramData\eMule
[12/10/2007|16:48] C:\ProgramData\EPSON
[18/09/2007|21:52] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[02/06/2007|00:59] C:\ProgramData\Google
[02/06/2007|01:16] C:\ProgramData\Hewlett-Packard
[02/06/2007|00:37] C:\ProgramData\HP
[02/06/2007|00:38] C:\ProgramData\hpzinstall.log
[16/04/2008|08:29] C:\ProgramData\LauncherAccess.dt
[01/01/2008|19:18] C:\ProgramData\LightScribe
[06/04/2008|12:11] C:\ProgramData\Media Center Programs
[18/09/2007|21:52] C:\ProgramData\Menu D‚marrer
[02/11/2007|17:38] C:\ProgramData\Messenger Plus!
[05/04/2008|12:08] C:\ProgramData\Microsoft
[25/04/2008|17:17] C:\ProgramData\Microsoft Help
[18/09/2007|21:52] C:\ProgramData\ModŠles
[02/06/2007|00:47] C:\ProgramData\muvee Technologies
[01/01/2008|15:50] C:\ProgramData\Nero
[30/04/2008|17:56] C:\ProgramData\ntuser.pol
[02/01/2008|12:30] C:\ProgramData\NVIDIA
[02/06/2007|00:56] C:\ProgramData\PC-Doctor
[25/11/2007|00:36] C:\ProgramData\pswi_preloaded.exe
[02/06/2007|00:43] C:\ProgramData\Roxio
[02/06/2007|00:44] C:\ProgramData\Sonic
[05/04/2008|15:09] C:\ProgramData\Spybot - Search & Destroy
[02/11/2006|15:02] C:\ProgramData\Start Menu
[19/09/2007|18:52] C:\ProgramData\Symantec
[02/11/2006|15:02] C:\ProgramData\Templates
[12/10/2007|16:57] C:\ProgramData\UDL
---------------[ Listing des dossiers dans C:\Program Files ]--------------
[02/06/2007|00:54] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[28/10/2007|21:06] C:\Program Files\Adobe
[29/03/2008|21:23] C:\Program Files\Aegisub
[18/09/2007|22:47] C:\Program Files\Alwil Software
[29/04/2008|13:54] C:\Program Files\BitComet
[19/10/2007|21:37] C:\Program Files\CamStudio
[02/10/2007|17:47] C:\Program Files\CCleaner
[02/03/2008|23:44] C:\Program Files\Common Files
[25/11/2007|00:37] C:\Program Files\Corel
[13/10/2007|14:47] C:\Program Files\DAEMON Tools
[18/09/2007|22:33] C:\Program Files\desktop.ini
[20/10/2007|16:00] C:\Program Files\EA GAMES
[23/04/2008|14:45] C:\Program Files\Easy GIF Animator
[23/04/2008|14:45] C:\Program Files\Easy Gif Animator Extension
[02/06/2007|09:41] C:\Program Files\EasyBits
[06/04/2008|12:07] C:\Program Files\Electronic Arts
[12/10/2007|16:53] C:\Program Files\epson
[19/04/2008|18:46] C:\Program Files\Fake Webcam
[18/09/2007|21:52] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[26/12/2007|23:54] C:\Program Files\FileZilla Client
[22/12/2007|20:31] C:\Program Files\FlashGet
[18/09/2007|22:31] C:\Program Files\Google
[02/12/2007|18:51] C:\Program Files\Gpotato.eu
[02/06/2007|00:57] C:\Program Files\Hewlett-Packard
[02/06/2007|00:49] C:\Program Files\HP
[02/03/2008|14:57] C:\Program Files\InstallShield Installation Information
[09/04/2008|08:55] C:\Program Files\Internet Explorer
[08/11/2007|10:55] C:\Program Files\Java
[19/09/2007|00:16] C:\Program Files\Lavasoft
[17/02/2008|14:01] C:\Program Files\LimeWire
[03/04/2008|15:27] C:\Program Files\Messenger Plus! Live
[30/10/2007|20:55] C:\Program Files\Microsoft FrontPage
[02/03/2008|14:57] C:\Program Files\Microsoft Games
[30/10/2007|20:53] C:\Program Files\Microsoft Office
[30/10/2007|20:56] C:\Program Files\Microsoft Visual Studio
[02/06/2007|00:53] C:\Program Files\Microsoft Works
[02/06/2007|00:53] C:\Program Files\Microsoft.NET
[29/04/2008|14:04] C:\Program Files\mIRC
[29/04/2008|13:55] C:\Program Files\mIRCs
[02/06/2007|10:00] C:\Program Files\Movie Maker
[02/11/2006|14:37] C:\Program Files\MSBuild
[02/11/2006|14:37] C:\Program Files\MSN
[11/11/2007|02:22] C:\Program Files\MSN Content Plus Inc
[13/04/2008|19:55] C:\Program Files\MSN Messenger
[18/09/2007|22:15] C:\Program Files\MSXML 4.0
[02/06/2007|00:47] C:\Program Files\muvee Technologies
[01/01/2008|15:50] C:\Program Files\Nero
[01/01/2008|21:38] C:\Program Files\OpenAL
[08/02/2008|21:30] C:\Program Files\OpenOffice.org 2.3
[02/06/2007|01:10] C:\Program Files\PC-Doctor 5 for Windows
[02/06/2007|00:46] C:\Program Files\Real
[02/06/2007|00:32] C:\Program Files\Realtek
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[02/06/2007|00:45] C:\Program Files\Roxio
[05/03/2008|00:32] C:\Program Files\RPG Maker 2003
[20/09/2007|18:26] C:\Program Files\Samsung
[20/09/2007|09:00] C:\Program Files\Satsuki Decoder Pack
[28/04/2008|14:45] C:\Program Files\scanner.exe
[02/06/2007|00:59] C:\Program Files\Services en ligne
[19/12/2007|23:17] C:\Program Files\SopCast
[12/01/2008|22:55] C:\Program Files\Spybot - Search & Destroy
[23/04/2008|14:00] C:\Program Files\Teamspeak2_RC2
[30/12/2007|19:34] C:\Program Files\TVUPlayer
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[13/04/2008|19:55] C:\Program Files\uusee
[11/10/2007|15:47] C:\Program Files\VideoLAN
[02/03/2008|23:44] C:\Program Files\Winamp
[18/09/2007|22:29] C:\Program Files\Windows Calendar
[02/06/2007|10:00] C:\Program Files\Windows Collaboration
[02/06/2007|00:33] C:\Program Files\Windows Defender
[02/06/2007|10:00] C:\Program Files\Windows Journal
[01/11/2007|12:09] C:\Program Files\Windows Live
[09/04/2008|08:55] C:\Program Files\Windows Mail
[11/10/2007|10:12] C:\Program Files\Windows Media Player
[18/09/2007|21:52] C:\Program Files\Windows NT
[02/06/2007|10:00] C:\Program Files\Windows Photo Gallery
[10/01/2008|00:07] C:\Program Files\Windows Sidebar
[24/10/2007|12:38] C:\Program Files\WinRAR
[28/10/2007|20:11] C:\Program Files\WMV9_VCM
[07/10/2007|13:00] C:\Program Files\Yume Team
------[ Listing des dossiers dans C:\Program Files\Common Files ]------
[02/06/2007|00:49] C:\Program Files\Common Files\Adobe
[25/11/2007|00:37] C:\Program Files\Common Files\Corel
[02/06/2007|00:53] C:\Program Files\Common Files\DESIGNER
[02/06/2007|00:37] C:\Program Files\Common Files\HP
[11/11/2007|02:21] C:\Program Files\Common Files\InstallShield
[01/11/2007|11:47] C:\Program Files\Common Files\Java
[02/06/2007|00:46] C:\Program Files\Common Files\LightScribe
[02/06/2007|00:45] C:\Program Files\Common Files\LS Getting Started
[29/03/2008|21:23] C:\Program Files\Common Files\microsoft shared
[02/06/2007|00:47] C:\Program Files\Common Files\muvee Technologies
[01/01/2008|15:55] C:\Program Files\Common Files\Nero
[02/06/2007|00:44] C:\Program Files\Common Files\PX Storage Engine
[02/06/2007|00:46] C:\Program Files\Common Files\Real
[02/06/2007|00:44] C:\Program Files\Common Files\Roxio Shared
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[02/06/2007|00:45] C:\Program Files\Common Files\Sonic Shared
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[02/06/2007|00:45] C:\Program Files\Common Files\SureThing Shared
[19/09/2007|16:19] C:\Program Files\Common Files\Symantec Shared
[18/09/2007|22:28] C:\Program Files\Common Files\System
[02/06/2007|00:46] C:\Program Files\Common Files\xing shared
---------------------------[ Process ]--------------------------
... 52
... OK !
----------------------[ Recherche avec S_Lop ]---------------------
Aucun fichier / dossier Lop trouvé !
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
Aucun fichier / dossier Lop trouvé !
----------------------[ Verification du Registre ]----------------------
..... OK !
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts PROPRE
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-05-01 19:40:16
Windows 6.0.6000 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
Aucune autre infection trouvée !
/!\ [Fich:639][Doss:13] C:\Users\Kensuke\AppData\Local\Temp
/!\ [Fich:43][Doss:1] C:\Users\Kensuke\AppData\Roaming\MICROS~1\Windows\Cookies
/!\ [Fich:41][Doss:4] C:\Users\Kensuke\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[ UAC => 1 ]
--------------------[ Fin du rapport a 19:42:56,43 ]----------------------
C'est ok
Répondre à Angeldark
Je te rémercie de m'avoir aidé.
Bonne chance pour la suite.
Bonne continuation
- Télécharge ToolsCleaner sur ton Bureau.
- Clique sur Recherche et laisse le scan se terminer.
- Clique sur Suppression pour finaliser.
- Clique sur Quitter, pour que le rapport puisse se créer.
- Poste le rapport (TCleaner.txt) qui se trouve à la racine de ton disque dur (C:\)
Désactive puis réactive la restauration du système : Voir aide
Ajoute maintenant [Résolu] au titre. Pour cela :
* Clique, dans ton premier message, sur le bouton "Editer" 
* Rajoute la mention [Résolu] au titre
* Clique ensuite sur "Valider votre message"
Lis le dossier dossier sur la prévention et la protection pour ne plus avoir ce genre de problème en cliquant sur l'image ci-dessous :
Répondre à Angeldark
Il y a 300 utilisateurs connus et inconnus. Pour voir la liste des connectés connus, cliquez ici.
