adverserv5 cid
Dernière réponse : dans Sécurité
Bonjour
Voila j'ai vue comment vous faisiaient avt j'ai suivi les indications et donc je vous envoie ceci.
Pouvez-vous m'aider?
-----------------------[ Lop S&D 4.2.1-0 XP/Vista ]---------------------
[ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
[ USER : coraline ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 31/05/2008 | 13:06:33,76 ] [ PC : PC-DE-CORALINE ]
[ MAJ : 30-05-2008 | 19:10 ]
[ UAC => 0 ]
-------------[ Listing des dossiers dans Application Data ]------------
[23/05/2008|22:01] C:\Users\coraline\AppData\Roaming\Adobe\ESD
[23/05/2008|21:59] C:\Users\coraline\AppData\Roaming\Adobe\Acrobat
[23/05/2008|20:34] C:\Users\coraline\AppData\Roaming\Identities\{C31B5477-64E2-4750-9400-A5C8EBFF6F29}
[23/05/2008|23:29] C:\Users\coraline\AppData\Roaming\LimeWire\xml
[23/05/2008|21:48] C:\Users\coraline\AppData\Roaming\LimeWire\.AppSpecialShare
[23/05/2008|21:46] C:\Users\coraline\AppData\Roaming\LimeWire\themes
[23/05/2008|20:40] C:\Users\coraline\AppData\Roaming\Macromedia\Flash Player
[31/05/2008|11:30] C:\Users\coraline\AppData\Roaming\Microsoft\HTML Help
[30/05/2008|15:42] C:\Users\coraline\AppData\Roaming\Microsoft\Speech
[30/05/2008|08:43] C:\Users\coraline\AppData\Roaming\Microsoft\Windows Photo Gallery
[29/05/2008|22:17] C:\Users\coraline\AppData\Roaming\Microsoft\Office
[29/05/2008|22:17] C:\Users\coraline\AppData\Roaming\Microsoft\Templates
[29/05/2008|22:16] C:\Users\coraline\AppData\Roaming\Microsoft\Document Building Blocks
[29/05/2008|22:16] C:\Users\coraline\AppData\Roaming\Microsoft\Word
[29/05/2008|22:16] C:\Users\coraline\AppData\Roaming\Microsoft\AddIns
[23/05/2008|22:26] C:\Users\coraline\AppData\Roaming\Microsoft\Crypto
[23/05/2008|21:36] C:\Users\coraline\AppData\Roaming\Microsoft\MSN Messenger
[23/05/2008|21:35] C:\Users\coraline\AppData\Roaming\Microsoft\IdentityCRL
[23/05/2008|20:52] C:\Users\coraline\AppData\Roaming\Microsoft\preuve
[23/05/2008|20:42] C:\Users\coraline\AppData\Roaming\Microsoft\Internet Explorer
[23/05/2008|20:34] C:\Users\coraline\AppData\Roaming\Microsoft\SystemCertificates
[23/05/2008|20:34] C:\Users\coraline\AppData\Roaming\Microsoft\Protect
[23/05/2008|20:34] C:\Users\coraline\AppData\Roaming\Microsoft\Credentials
[02/11/2006|13:18] C:\Users\coraline\AppData\Roaming\Microsoft\Windows
[31/05/2008|12:38] C:\Users\coraline\AppData\Roaming\Skype\coraline.c
[24/05/2008|21:36] C:\Users\coraline\AppData\Roaming\Skype\Pictures
[24/05/2008|21:33] C:\Users\coraline\AppData\Roaming\Skype\Content
[24/05/2008|21:21] C:\Users\coraline\AppData\Roaming\Skype\coraline06
[24/05/2008|21:21] C:\Users\coraline\AppData\Roaming\Skype\coraline
[24/05/2008|21:20] C:\Users\coraline\AppData\Roaming\Skype\craving
[23/05/2008|21:52] C:\Users\coraline\AppData\Roaming\vlc\cache
----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------
[31/05/2008 13:06][--ah-----] C:\Windows\tasks\SA.DAT
[31/05/2008 13:04][--a------] C:\Windows\tasks\SCHEDLGU.TXT
------[ Listing des dossiers dans C:\ProgramData ]------
[18/05/2007|21:25] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[23/05/2008|22:05] C:\ProgramData\Adobe
[02/11/2006|15:02] C:\ProgramData\Application Data
[25/05/2008|19:02] C:\ProgramData\Bags Browse Face
[25/05/2008|19:02] C:\ProgramData\Base Ping Wait.905f6h
[23/05/2008|20:33] C:\ProgramData\Bureau
[25/05/2008|19:01] C:\ProgramData\Chic Dale Dale.l49j20t
[25/05/2008|19:01] C:\ProgramData\Chic Dale Dale.z9valfv
[14/05/2008|10:51] C:\ProgramData\CyberLink
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[24/05/2008|21:22] C:\ProgramData\ezsidmv.dat
[23/05/2008|20:33] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[25/05/2008|19:02] C:\ProgramData\File dvd base road
[23/05/2008|20:33] C:\ProgramData\Menu D‚marrer
[26/05/2008|17:51] C:\ProgramData\Messenger Plus!
[31/05/2008|11:30] C:\ProgramData\Microsoft
[24/05/2008|20:42] C:\ProgramData\Microsoft Help
[23/05/2008|20:33] C:\ProgramData\ModŠles
[24/05/2008|21:18] C:\ProgramData\Skype
[02/11/2006|15:02] C:\ProgramData\Start Menu
[14/05/2008|11:21] C:\ProgramData\TEMP
[02/11/2006|15:02] C:\ProgramData\Templates
[23/05/2008|21:28] C:\ProgramData\WLInstaller
---------------[ Listing des dossiers dans C:\Program Files ]--------------
[14/05/2008|10:45] C:\Program Files\Acer Arcade Deluxe
[26/04/2008|14:41] C:\Program Files\ACER Crystal Eye webcam
[18/05/2007|19:52] C:\Program Files\Acer GameZone
[14/05/2008|10:41] C:\Program Files\Acer Inc
[18/05/2007|21:25] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[18/05/2007|19:52] C:\Program Files\Adobe
[23/05/2008|20:56] C:\Program Files\Alwil Software
[26/04/2008|14:41] C:\Program Files\Apoint2K
[18/05/2007|19:36] C:\Program Files\Broadcom
[31/05/2008|12:03] C:\Program Files\Circle Developement
[24/05/2008|21:17] C:\Program Files\Common Files
[18/05/2007|19:36] C:\Program Files\CONEXANT
[18/05/2007|19:43] C:\Program Files\CyberLink
[24/05/2008|03:49] C:\Program Files\desktop.ini
[23/05/2008|20:33] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[14/05/2008|10:46] C:\Program Files\InstallShield Installation Information
[18/05/2007|19:33] C:\Program Files\Intel
[14/05/2008|11:27] C:\Program Files\Internet Explorer
[23/05/2008|21:45] C:\Program Files\Java
[18/05/2007|19:38] C:\Program Files\Launch Manager
[23/05/2008|21:42] C:\Program Files\LimeWire
[25/05/2008|19:01] C:\Program Files\Messenger Plus! Live
[24/05/2008|03:20] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[02/11/2006|14:37] C:\Program Files\Microsoft Games
[18/05/2007|21:25] C:\Program Files\Microsoft Office
[18/05/2007|21:25] C:\Program Files\Microsoft Works
[18/05/2007|21:22] C:\Program Files\Microsoft.NET
[02/11/2006|14:42] C:\Program Files\Movie Maker
[02/11/2006|14:37] C:\Program Files\MSBuild
[02/11/2006|14:37] C:\Program Files\MSN
[14/05/2008|11:09] C:\Program Files\MSXML 4.0
[18/05/2007|19:42] C:\Program Files\NewTech Infosystems
[18/05/2007|19:34] C:\Program Files\Realtek
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[24/05/2008|21:18] C:\Program Files\Skype
[26/04/2008|14:41] C:\Program Files\SUYIN
[14/05/2008|10:34] C:\Program Files\Synaptics
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[23/05/2008|21:51] C:\Program Files\VideoLAN
[24/05/2008|03:45] C:\Program Files\Windows Calendar
[02/11/2006|14:42] C:\Program Files\Windows Collaboration
[24/05/2008|03:45] C:\Program Files\Windows Defender
[02/11/2006|14:42] C:\Program Files\Windows Journal
[23/05/2008|21:35] C:\Program Files\Windows Live
[24/05/2008|03:45] C:\Program Files\Windows Mail
[24/05/2008|03:45] C:\Program Files\Windows Media Player
[23/05/2008|20:33] C:\Program Files\Windows NT
[02/11/2006|14:42] C:\Program Files\Windows Photo Gallery
[14/05/2008|11:27] C:\Program Files\Windows Sidebar
[14/05/2008|10:41] C:\Program Files\Yahoo!
------[ Listing des dossiers dans C:\Program Files\Common Files ]------
[23/05/2008|22:05] C:\Program Files\Common Files\Adobe
[18/05/2007|21:22] C:\Program Files\Common Files\DESIGNER
[18/05/2007|19:41] C:\Program Files\Common Files\InstallShield
[23/05/2008|21:44] C:\Program Files\Common Files\Java
[18/05/2007|19:42] C:\Program Files\Common Files\LightScribe
[24/05/2008|20:39] C:\Program Files\Common Files\microsoft shared
[18/05/2007|19:42] C:\Program Files\Common Files\muvee Technologies
[18/05/2007|19:42] C:\Program Files\Common Files\NewTech Infosystems
[18/05/2007|19:49] C:\Program Files\Common Files\Oberon Media
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[24/05/2008|21:17] C:\Program Files\Common Files\Skype
[26/04/2008|14:40] C:\Program Files\Common Files\snp2uvc
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[23/05/2008|20:50] C:\Program Files\Common Files\Symantec Shared
[24/05/2008|03:45] C:\Program Files\Common Files\System
[23/05/2008|21:34] C:\Program Files\Common Files\WindowsLiveInstaller
---------------------------[ Process ]--------------------------
... 57
iexplore.exe ~ [3004]
iexplore.exe ~ [3024]
----------------------[ Recherche avec S_Lop ]---------------------
C:\ProgramData\Base Ping Wait.905f6h
C:\ProgramData\Chic Dale Dale.l49j20t
C:\ProgramData\Chic Dale Dale.z9valfv
C:\ProgramData\Base Ping Wait.905f6h
C:\ProgramData\Chic Dale Dale.l49j20t
C:\ProgramData\Chic Dale Dale.z9valfv
C:\Users\coraline\AppData\Local\Temp\bis1195.exe
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
C:\ProgramData\File dvd base road
C:\ProgramData\File dvd base road\bin flaw.exe
C:\Program Files\Circle Developement
----------------------[ Verification du Registre ]----------------------
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
..... OK !
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts PROPRE
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-05-31 13:07:20
Windows 6.0.6000 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
Aucune autre infection trouvée !
[F:437][D:17]-> C:\Users\coraline\AppData\Local\Temp
[F:114][D:1]-> C:\Users\coraline\AppData\Roaming\MICROS~1\Windows\Cookies
[F:13][D:5]-> C:\Users\coraline\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:3][D:4]-> C:\$Recycle.Bin
[ UAC => 1 ]
--------------------[ Fin du rapport a 13:08:48,30 ]----------------------
Voila j'ai vue comment vous faisiaient avt j'ai suivi les indications et donc je vous envoie ceci.
Pouvez-vous m'aider?
-----------------------[ Lop S&D 4.2.1-0 XP/Vista ]---------------------
[ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
[ USER : coraline ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 31/05/2008 | 13:06:33,76 ] [ PC : PC-DE-CORALINE ]
[ MAJ : 30-05-2008 | 19:10 ]
[ UAC => 0 ]
-------------[ Listing des dossiers dans Application Data ]------------
[23/05/2008|22:01] C:\Users\coraline\AppData\Roaming\Adobe\ESD
[23/05/2008|21:59] C:\Users\coraline\AppData\Roaming\Adobe\Acrobat
[23/05/2008|20:34] C:\Users\coraline\AppData\Roaming\Identities\{C31B5477-64E2-4750-9400-A5C8EBFF6F29}
[23/05/2008|23:29] C:\Users\coraline\AppData\Roaming\LimeWire\xml
[23/05/2008|21:48] C:\Users\coraline\AppData\Roaming\LimeWire\.AppSpecialShare
[23/05/2008|21:46] C:\Users\coraline\AppData\Roaming\LimeWire\themes
[23/05/2008|20:40] C:\Users\coraline\AppData\Roaming\Macromedia\Flash Player
[31/05/2008|11:30] C:\Users\coraline\AppData\Roaming\Microsoft\HTML Help
[30/05/2008|15:42] C:\Users\coraline\AppData\Roaming\Microsoft\Speech
[30/05/2008|08:43] C:\Users\coraline\AppData\Roaming\Microsoft\Windows Photo Gallery
[29/05/2008|22:17] C:\Users\coraline\AppData\Roaming\Microsoft\Office
[29/05/2008|22:17] C:\Users\coraline\AppData\Roaming\Microsoft\Templates
[29/05/2008|22:16] C:\Users\coraline\AppData\Roaming\Microsoft\Document Building Blocks
[29/05/2008|22:16] C:\Users\coraline\AppData\Roaming\Microsoft\Word
[29/05/2008|22:16] C:\Users\coraline\AppData\Roaming\Microsoft\AddIns
[23/05/2008|22:26] C:\Users\coraline\AppData\Roaming\Microsoft\Crypto
[23/05/2008|21:36] C:\Users\coraline\AppData\Roaming\Microsoft\MSN Messenger
[23/05/2008|21:35] C:\Users\coraline\AppData\Roaming\Microsoft\IdentityCRL
[23/05/2008|20:52] C:\Users\coraline\AppData\Roaming\Microsoft\preuve
[23/05/2008|20:42] C:\Users\coraline\AppData\Roaming\Microsoft\Internet Explorer
[23/05/2008|20:34] C:\Users\coraline\AppData\Roaming\Microsoft\SystemCertificates
[23/05/2008|20:34] C:\Users\coraline\AppData\Roaming\Microsoft\Protect
[23/05/2008|20:34] C:\Users\coraline\AppData\Roaming\Microsoft\Credentials
[02/11/2006|13:18] C:\Users\coraline\AppData\Roaming\Microsoft\Windows
[31/05/2008|12:38] C:\Users\coraline\AppData\Roaming\Skype\coraline.c
[24/05/2008|21:36] C:\Users\coraline\AppData\Roaming\Skype\Pictures
[24/05/2008|21:33] C:\Users\coraline\AppData\Roaming\Skype\Content
[24/05/2008|21:21] C:\Users\coraline\AppData\Roaming\Skype\coraline06
[24/05/2008|21:21] C:\Users\coraline\AppData\Roaming\Skype\coraline
[24/05/2008|21:20] C:\Users\coraline\AppData\Roaming\Skype\craving
[23/05/2008|21:52] C:\Users\coraline\AppData\Roaming\vlc\cache
----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------
[31/05/2008 13:06][--ah-----] C:\Windows\tasks\SA.DAT
[31/05/2008 13:04][--a------] C:\Windows\tasks\SCHEDLGU.TXT
------[ Listing des dossiers dans C:\ProgramData ]------
[18/05/2007|21:25] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[23/05/2008|22:05] C:\ProgramData\Adobe
[02/11/2006|15:02] C:\ProgramData\Application Data
[25/05/2008|19:02] C:\ProgramData\Bags Browse Face
[25/05/2008|19:02] C:\ProgramData\Base Ping Wait.905f6h
[23/05/2008|20:33] C:\ProgramData\Bureau
[25/05/2008|19:01] C:\ProgramData\Chic Dale Dale.l49j20t
[25/05/2008|19:01] C:\ProgramData\Chic Dale Dale.z9valfv
[14/05/2008|10:51] C:\ProgramData\CyberLink
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[24/05/2008|21:22] C:\ProgramData\ezsidmv.dat
[23/05/2008|20:33] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[25/05/2008|19:02] C:\ProgramData\File dvd base road
[23/05/2008|20:33] C:\ProgramData\Menu D‚marrer
[26/05/2008|17:51] C:\ProgramData\Messenger Plus!
[31/05/2008|11:30] C:\ProgramData\Microsoft
[24/05/2008|20:42] C:\ProgramData\Microsoft Help
[23/05/2008|20:33] C:\ProgramData\ModŠles
[24/05/2008|21:18] C:\ProgramData\Skype
[02/11/2006|15:02] C:\ProgramData\Start Menu
[14/05/2008|11:21] C:\ProgramData\TEMP
[02/11/2006|15:02] C:\ProgramData\Templates
[23/05/2008|21:28] C:\ProgramData\WLInstaller
---------------[ Listing des dossiers dans C:\Program Files ]--------------
[14/05/2008|10:45] C:\Program Files\Acer Arcade Deluxe
[26/04/2008|14:41] C:\Program Files\ACER Crystal Eye webcam
[18/05/2007|19:52] C:\Program Files\Acer GameZone
[14/05/2008|10:41] C:\Program Files\Acer Inc
[18/05/2007|21:25] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[18/05/2007|19:52] C:\Program Files\Adobe
[23/05/2008|20:56] C:\Program Files\Alwil Software
[26/04/2008|14:41] C:\Program Files\Apoint2K
[18/05/2007|19:36] C:\Program Files\Broadcom
[31/05/2008|12:03] C:\Program Files\Circle Developement
[24/05/2008|21:17] C:\Program Files\Common Files
[18/05/2007|19:36] C:\Program Files\CONEXANT
[18/05/2007|19:43] C:\Program Files\CyberLink
[24/05/2008|03:49] C:\Program Files\desktop.ini
[23/05/2008|20:33] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[14/05/2008|10:46] C:\Program Files\InstallShield Installation Information
[18/05/2007|19:33] C:\Program Files\Intel
[14/05/2008|11:27] C:\Program Files\Internet Explorer
[23/05/2008|21:45] C:\Program Files\Java
[18/05/2007|19:38] C:\Program Files\Launch Manager
[23/05/2008|21:42] C:\Program Files\LimeWire
[25/05/2008|19:01] C:\Program Files\Messenger Plus! Live
[24/05/2008|03:20] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[02/11/2006|14:37] C:\Program Files\Microsoft Games
[18/05/2007|21:25] C:\Program Files\Microsoft Office
[18/05/2007|21:25] C:\Program Files\Microsoft Works
[18/05/2007|21:22] C:\Program Files\Microsoft.NET
[02/11/2006|14:42] C:\Program Files\Movie Maker
[02/11/2006|14:37] C:\Program Files\MSBuild
[02/11/2006|14:37] C:\Program Files\MSN
[14/05/2008|11:09] C:\Program Files\MSXML 4.0
[18/05/2007|19:42] C:\Program Files\NewTech Infosystems
[18/05/2007|19:34] C:\Program Files\Realtek
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[24/05/2008|21:18] C:\Program Files\Skype
[26/04/2008|14:41] C:\Program Files\SUYIN
[14/05/2008|10:34] C:\Program Files\Synaptics
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[23/05/2008|21:51] C:\Program Files\VideoLAN
[24/05/2008|03:45] C:\Program Files\Windows Calendar
[02/11/2006|14:42] C:\Program Files\Windows Collaboration
[24/05/2008|03:45] C:\Program Files\Windows Defender
[02/11/2006|14:42] C:\Program Files\Windows Journal
[23/05/2008|21:35] C:\Program Files\Windows Live
[24/05/2008|03:45] C:\Program Files\Windows Mail
[24/05/2008|03:45] C:\Program Files\Windows Media Player
[23/05/2008|20:33] C:\Program Files\Windows NT
[02/11/2006|14:42] C:\Program Files\Windows Photo Gallery
[14/05/2008|11:27] C:\Program Files\Windows Sidebar
[14/05/2008|10:41] C:\Program Files\Yahoo!
------[ Listing des dossiers dans C:\Program Files\Common Files ]------
[23/05/2008|22:05] C:\Program Files\Common Files\Adobe
[18/05/2007|21:22] C:\Program Files\Common Files\DESIGNER
[18/05/2007|19:41] C:\Program Files\Common Files\InstallShield
[23/05/2008|21:44] C:\Program Files\Common Files\Java
[18/05/2007|19:42] C:\Program Files\Common Files\LightScribe
[24/05/2008|20:39] C:\Program Files\Common Files\microsoft shared
[18/05/2007|19:42] C:\Program Files\Common Files\muvee Technologies
[18/05/2007|19:42] C:\Program Files\Common Files\NewTech Infosystems
[18/05/2007|19:49] C:\Program Files\Common Files\Oberon Media
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[24/05/2008|21:17] C:\Program Files\Common Files\Skype
[26/04/2008|14:40] C:\Program Files\Common Files\snp2uvc
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[23/05/2008|20:50] C:\Program Files\Common Files\Symantec Shared
[24/05/2008|03:45] C:\Program Files\Common Files\System
[23/05/2008|21:34] C:\Program Files\Common Files\WindowsLiveInstaller
---------------------------[ Process ]--------------------------
... 57
iexplore.exe ~ [3004]
iexplore.exe ~ [3024]
----------------------[ Recherche avec S_Lop ]---------------------
C:\ProgramData\Base Ping Wait.905f6h
C:\ProgramData\Chic Dale Dale.l49j20t
C:\ProgramData\Chic Dale Dale.z9valfv
C:\ProgramData\Base Ping Wait.905f6h
C:\ProgramData\Chic Dale Dale.l49j20t
C:\ProgramData\Chic Dale Dale.z9valfv
C:\Users\coraline\AppData\Local\Temp\bis1195.exe
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
C:\ProgramData\File dvd base road
C:\ProgramData\File dvd base road\bin flaw.exe
C:\Program Files\Circle Developement
----------------------[ Verification du Registre ]----------------------
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
..... OK !
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts PROPRE
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-05-31 13:07:20
Windows 6.0.6000 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
Aucune autre infection trouvée !
[F:437][D:17]-> C:\Users\coraline\AppData\Local\Temp
[F:114][D:1]-> C:\Users\coraline\AppData\Roaming\MICROS~1\Windows\Cookies
[F:13][D:5]-> C:\Users\coraline\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:3][D:4]-> C:\$Recycle.Bin
[ UAC => 1 ]
--------------------[ Fin du rapport a 13:08:48,30 ]----------------------
Autres pages sur : adverserv5 cid
Lassé par la pub ? Créez un compte
Bonjour,
Relance Lop S&D en double-cliquant sur le raccourci. Tape sur "2" puis valide en appuyant sur "Entrée".
[#ff0000]! Ne ferme pas la fenêtre lors de la suppression ! [/#f]
Un rapport sera généré, poste son contenu ici.
NOTE : Si ton Bureau ne réapparait pas, appuie simultanément sur Ctrl+Alt+Suppr pour ouvrir le Gestionnaire des tâches.
Rends-toi sur l'onglet "Processus". Clique en haut à gauche sur Fichier et choisis "Exécuter..."
Tape explorer puis valide.
Relance Lop S&D en double-cliquant sur le raccourci. Tape sur "2" puis valide en appuyant sur "Entrée".
[#ff0000]! Ne ferme pas la fenêtre lors de la suppression ! [/#f]
Un rapport sera généré, poste son contenu ici.
NOTE : Si ton Bureau ne réapparait pas, appuie simultanément sur Ctrl+Alt+Suppr pour ouvrir le Gestionnaire des tâches.
Rends-toi sur l'onglet "Processus". Clique en haut à gauche sur Fichier et choisis "Exécuter..."
Tape explorer puis valide.
-----------------------[ Lop S&D 4.2.1-0 XP/Vista ]---------------------
[ Windows 'Longhorn' (NT 6.0) Workstation Build 6000 ]
[ USER : coraline ] [ "C:\Lop SD" ] [ Selection : 2 ]
[ 31/05/2008 | 14:44:50,89 ] [ PC : PC-DE-CORALINE ]
[ MAJ : 30-05-2008 | 19:10 ]
[ UAC => 0 ]
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////
Supprimé! - C:\ProgramData\File dvd base road\bin flaw.exe
Supprimé! - C:\ProgramData\Base Ping Wait.905f6h
Supprimé! - C:\ProgramData\Chic Dale Dale.l49j20t
Supprimé! - C:\ProgramData\Chic Dale Dale.z9valfv
Supprimé! - C:\Users\coraline\AppData\Local\Temp\bis1195.exe
Supprimé! - C:\ProgramData\File dvd base road
Supprimé! - C:\Program Files\Circle Developement
Restauré! - Fichier Hosts
//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
-------------[ Listing des dossiers dans Application Data ]------------
[23/05/2008|22:01] C:\Users\coraline\AppData\Roaming\Adobe\ESD
[23/05/2008|21:59] C:\Users\coraline\AppData\Roaming\Adobe\Acrobat
[23/05/2008|20:34] C:\Users\coraline\AppData\Roaming\Identities\{C31B5477-64E2-4750-9400-A5C8EBFF6F29}
[23/05/2008|23:29] C:\Users\coraline\AppData\Roaming\LimeWire\xml
[23/05/2008|21:48] C:\Users\coraline\AppData\Roaming\LimeWire\.AppSpecialShare
[23/05/2008|21:46] C:\Users\coraline\AppData\Roaming\LimeWire\themes
[23/05/2008|20:40] C:\Users\coraline\AppData\Roaming\Macromedia\Flash Player
[31/05/2008|11:30] C:\Users\coraline\AppData\Roaming\Microsoft\HTML Help
[30/05/2008|15:42] C:\Users\coraline\AppData\Roaming\Microsoft\Speech
[30/05/2008|08:43] C:\Users\coraline\AppData\Roaming\Microsoft\Windows Photo Gallery
[29/05/2008|22:17] C:\Users\coraline\AppData\Roaming\Microsoft\Office
[29/05/2008|22:17] C:\Users\coraline\AppData\Roaming\Microsoft\Templates
[29/05/2008|22:16] C:\Users\coraline\AppData\Roaming\Microsoft\Document Building Blocks
[29/05/2008|22:16] C:\Users\coraline\AppData\Roaming\Microsoft\Word
[29/05/2008|22:16] C:\Users\coraline\AppData\Roaming\Microsoft\AddIns
[23/05/2008|22:26] C:\Users\coraline\AppData\Roaming\Microsoft\Crypto
[23/05/2008|21:36] C:\Users\coraline\AppData\Roaming\Microsoft\MSN Messenger
[23/05/2008|21:35] C:\Users\coraline\AppData\Roaming\Microsoft\IdentityCRL
[23/05/2008|20:52] C:\Users\coraline\AppData\Roaming\Microsoft\preuve
[23/05/2008|20:42] C:\Users\coraline\AppData\Roaming\Microsoft\Internet Explorer
[23/05/2008|20:34] C:\Users\coraline\AppData\Roaming\Microsoft\SystemCertificates
[23/05/2008|20:34] C:\Users\coraline\AppData\Roaming\Microsoft\Protect
[23/05/2008|20:34] C:\Users\coraline\AppData\Roaming\Microsoft\Credentials
[02/11/2006|13:18] C:\Users\coraline\AppData\Roaming\Microsoft\Windows
[31/05/2008|14:44] C:\Users\coraline\AppData\Roaming\Skype\coraline.c
[24/05/2008|21:36] C:\Users\coraline\AppData\Roaming\Skype\Pictures
[24/05/2008|21:33] C:\Users\coraline\AppData\Roaming\Skype\Content
[24/05/2008|21:21] C:\Users\coraline\AppData\Roaming\Skype\coraline06
[24/05/2008|21:21] C:\Users\coraline\AppData\Roaming\Skype\coraline
[24/05/2008|21:20] C:\Users\coraline\AppData\Roaming\Skype\craving
[23/05/2008|21:52] C:\Users\coraline\AppData\Roaming\vlc\cache
----------------[ Tâches planifiées dans C:\Windows\tasks ]---------------
[31/05/2008 14:44][--ah-----] C:\Windows\tasks\SA.DAT
[31/05/2008 14:43][--a------] C:\Windows\tasks\SCHEDLGU.TXT
------[ Listing des dossiers dans C:\ProgramData ]------
[18/05/2007|21:25] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[23/05/2008|22:05] C:\ProgramData\Adobe
[02/11/2006|15:02] C:\ProgramData\Application Data
[25/05/2008|19:02] C:\ProgramData\Bags Browse Face
[23/05/2008|20:33] C:\ProgramData\Bureau
[14/05/2008|10:51] C:\ProgramData\CyberLink
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[23/05/2008|20:33] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[23/05/2008|20:33] C:\ProgramData\Menu D‚marrer
[26/05/2008|17:51] C:\ProgramData\Messenger Plus!
[31/05/2008|11:30] C:\ProgramData\Microsoft
[24/05/2008|20:42] C:\ProgramData\Microsoft Help
[23/05/2008|20:33] C:\ProgramData\ModŠles
[24/05/2008|21:18] C:\ProgramData\Skype
[02/11/2006|15:02] C:\ProgramData\Start Menu
[14/05/2008|11:21] C:\ProgramData\TEMP
[02/11/2006|15:02] C:\ProgramData\Templates
[23/05/2008|21:28] C:\ProgramData\WLInstaller
---------------[ Listing des dossiers dans C:\Program Files ]--------------
[14/05/2008|10:45] C:\Program Files\Acer Arcade Deluxe
[26/04/2008|14:41] C:\Program Files\ACER Crystal Eye webcam
[18/05/2007|19:52] C:\Program Files\Acer GameZone
[14/05/2008|10:41] C:\Program Files\Acer Inc
[18/05/2007|21:25] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[18/05/2007|19:52] C:\Program Files\Adobe
[23/05/2008|20:56] C:\Program Files\Alwil Software
[26/04/2008|14:41] C:\Program Files\Apoint2K
[18/05/2007|19:36] C:\Program Files\Broadcom
[24/05/2008|21:17] C:\Program Files\Common Files
[18/05/2007|19:36] C:\Program Files\CONEXANT
[18/05/2007|19:43] C:\Program Files\CyberLink
[24/05/2008|03:49] C:\Program Files\desktop.ini
[23/05/2008|20:33] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[14/05/2008|10:46] C:\Program Files\InstallShield Installation Information
[18/05/2007|19:33] C:\Program Files\Intel
[14/05/2008|11:27] C:\Program Files\Internet Explorer
[23/05/2008|21:45] C:\Program Files\Java
[18/05/2007|19:38] C:\Program Files\Launch Manager
[23/05/2008|21:42] C:\Program Files\LimeWire
[25/05/2008|19:01] C:\Program Files\Messenger Plus! Live
[24/05/2008|03:20] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[02/11/2006|14:37] C:\Program Files\Microsoft Games
[18/05/2007|21:25] C:\Program Files\Microsoft Office
[18/05/2007|21:25] C:\Program Files\Microsoft Works
[18/05/2007|21:22] C:\Program Files\Microsoft.NET
[02/11/2006|14:42] C:\Program Files\Movie Maker
[02/11/2006|14:37] C:\Program Files\MSBuild
[02/11/2006|14:37] C:\Program Files\MSN
[14/05/2008|11:09] C:\Program Files\MSXML 4.0
[18/05/2007|19:42] C:\Program Files\NewTech Infosystems
[18/05/2007|19:34] C:\Program Files\Realtek
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[24/05/2008|21:18] C:\Program Files\Skype
[26/04/2008|14:41] C:\Program Files\SUYIN
[14/05/2008|10:34] C:\Program Files\Synaptics
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[23/05/2008|21:51] C:\Program Files\VideoLAN
[24/05/2008|03:45] C:\Program Files\Windows Calendar
[02/11/2006|14:42] C:\Program Files\Windows Collaboration
[24/05/2008|03:45] C:\Program Files\Windows Defender
[02/11/2006|14:42] C:\Program Files\Windows Journal
[23/05/2008|21:35] C:\Program Files\Windows Live
[24/05/2008|03:45] C:\Program Files\Windows Mail
[24/05/2008|03:45] C:\Program Files\Windows Media Player
[23/05/2008|20:33] C:\Program Files\Windows NT
[02/11/2006|14:42] C:\Program Files\Windows Photo Gallery
[14/05/2008|11:27] C:\Program Files\Windows Sidebar
[14/05/2008|10:41] C:\Program Files\Yahoo!
------[ Listing des dossiers dans C:\Program Files\Common Files ]------
[23/05/2008|22:05] C:\Program Files\Common Files\Adobe
[18/05/2007|21:22] C:\Program Files\Common Files\DESIGNER
[18/05/2007|19:41] C:\Program Files\Common Files\InstallShield
[23/05/2008|21:44] C:\Program Files\Common Files\Java
[18/05/2007|19:42] C:\Program Files\Common Files\LightScribe
[24/05/2008|20:39] C:\Program Files\Common Files\microsoft shared
[18/05/2007|19:42] C:\Program Files\Common Files\muvee Technologies
[18/05/2007|19:42] C:\Program Files\Common Files\NewTech Infosystems
[18/05/2007|19:49] C:\Program Files\Common Files\Oberon Media
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[24/05/2008|21:17] C:\Program Files\Common Files\Skype
[26/04/2008|14:40] C:\Program Files\Common Files\snp2uvc
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[23/05/2008|20:50] C:\Program Files\Common Files\Symantec Shared
[24/05/2008|03:45] C:\Program Files\Common Files\System
[23/05/2008|21:34] C:\Program Files\Common Files\WindowsLiveInstaller
---------------------------[ Process ]--------------------------
... 54
... OK !
----------------------[ Recherche avec S_Lop ]---------------------
Aucun fichier / dossier Lop trouvé !
-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------
Aucun fichier / dossier Lop trouvé !
----------------------[ Verification du Registre ]----------------------
..... OK !
--------------------[ Verification du fichier Hosts ]---------------------
Fichier Hosts PROPRE
----------------[ Recherche de fichiers avec Catchme ]-----------------
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-05-31 14:45:32
Windows 6.0.6000 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------[ Recherche d'autres infections ]---------------------
Aucune autre infection trouvée !
[F:747][D:21]-> C:\Users\coraline\AppData\Local\Temp
[F:128][D:1]-> C:\Users\coraline\AppData\Roaming\MICROS~1\Windows\Cookies
[F:37][D:5]-> C:\Users\coraline\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:2][D:2]-> C:\$Recycle.Bin
[ UAC => 1 ]
--------------------[ Fin du rapport a 14:46:53,01 ]----------------------
Re,
Télécharge puis installe Hijackthis (Trend Micro)
Poste ensuite un rapport dans ta prochaine réponse.
AIDE : Comment utiliser Hijackthis v2.0.2
Télécharge puis installe Hijackthis (Trend Micro)
Poste ensuite un rapport dans ta prochaine réponse.
AIDE : Comment utiliser Hijackthis v2.0.2
Lassé par la pub ? Créez un compte
