gros problème sur mon Acer

gros problème sur mon Acer - Sécurité - Virus

Recherche Recherche
Règles Règles
Aide Aide

TomsGuide.com : 700 000 inscrits répondent à toutes vos questions high-tech et informatique.
Pour obtenir de l'aide, inscrivez-vous gratuitement !

Se connecter | Inscription

Mot : Pseudo : Filtrer
Bas de page
Auteur	Sujet : gros problème sur mon Acer

ti_samsung

Profil : IDNaute

Plus d'informations

07-07-2008 à 01:47:50

Bonjour les gens, voilà, j'ai un gros problème sur mon PC, j'ai des pubs qui viennent quand elles en ont envi T.T et j'ai un autre problème, mais je ne sais pas ce que c'est T.T c'est un dossier que je ne peux ni renomer, ni effacer T.T
voilà mon rapport Hijack This pour commencer, merci d'avance de m'aider =D

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 01:44:26, on 07/07/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Acer\Empowering Technology\admServ.exe
C:\PROGRA~1\SECURI~1\av_fw\backweb\6588780\Program\SERVIC~1.EXE
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Securitoo\av_fw\Anti-Virus\fsgk32st.exe
C:\Program Files\Securitoo\av_fw\Anti-Virus\FSGK32.EXE
C:\Program Files\Securitoo\av_fw\backweb\6588780\program\fsbwsys.exe
C:\Program Files\Securitoo\av_fw\Common\FSMA32.EXE
C:\Program Files\Securitoo\av_fw\Common\FSMB32.EXE
C:\Program Files\Securitoo\av_fw\Anti-Virus\fssm32.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Securitoo\av_fw\Common\FCH32.EXE
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\winmech\NTSERV~1\srunner.exe
C:\Program Files\Securitoo\av_fw\Common\FAMEH32.EXE
C:\Program Files\Securitoo\av_fw\Anti-Virus\fsqh.exe
C:\Program Files\Securitoo\av_fw\Anti-Virus\fsrw.exe
C:\Program Files\Securitoo\av_fw\FWES\Program\fsdfwd.exe
C:\Program Files\Securitoo\av_fw\Anti-Virus\fsav32.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\Acer\Empowering Technology\eRecovery\Monitor.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Acer\Empowering Technology\admtray.exe
C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
C:\WINDOWS\system32\rundll32.exe
C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
C:\PROGRA~1\LAUNCH~1\LManager.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Acer\OrbiCam\CameraAssistant.exe
C:\WINDOWS\system32\ElkCtrl.exe
C:\Program Files\Securitoo\av_fw\Common\FSM32.EXE
C:\Program Files\Securitoo\av_fw\FSGUI\ispnews.exe
C:\PROGRA~1\SECURI~1\av_fw\ANTI-S~1\fsaw.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\PROGRA~1\Labtec\LABTEC~1\Keyboard.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Securitoo\av_fw\FSGUI\fsguidll.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Securitoo\av_fw\backweb\6588780\Program\fspex.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\WINDOWS\system32\divxsm.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Documents and Settings\Alexandre\Bureau\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.fr.acer.yahoo.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.fr.acer.yahoo.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\Userinit.exe
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\WINDOWS\system32\eDStoolbar.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [LaunchApp] Alaunch
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\InstallShield\AzMixerSel.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ntiMUI] C:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe
O4 - HKLM\..\Run: [ADMTray.exe] "C:\Acer\Empowering Technology\admtray.exe"
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [ePower_DMC] C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
O4 - HKLM\..\Run: [Acer ePower Management] C:\Acer\Empowering Technology\ePower\Acer ePower Management.exe boot
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\LManager.exe
O4 - HKLM\..\Run: [eRecoveryService] C:\Acer\Empowering Technology\eRecovery\Monitor.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Acer\OrbiCam\CameraAssistant.exe
O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Acer\OrbiCam\InstallHelper.exe /inspect
O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINDOWS\system32\ElkCtrl.exe /automation
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\Securitoo\av_fw\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\Securitoo\av_fw\TNB\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM\..\Run: [F-Secure Startup Wizard] "C:\Program Files\Securitoo\av_fw\FSGUI\FSSW.EXE" /reboot
O4 - HKLM\..\Run: [News Service] "C:\Program Files\Securitoo\av_fw\FSGUI\ispnews.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [KERNEL32] KERNEL32.EXE
O4 - HKLM\..\Run: [sXe Injected] C:\Program Files\sXe Injected\sXe Injected.exe
O4 - HKLM\..\Run: [1 mags 16 more] C:\Documents and Settings\All Users\Application Data\Admin Inter 1 Mags\user bird.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [KeyBoard] C:\PROGRA~1\Labtec\LABTEC~1\Keyboard.exe
O4 - HKLM\..\RunServices: [KERNEL32] KERNEL32.EXE
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Internet Download Accelerator] C:\Program Files\IDA\ida.exe -autorun
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [DLD.EXE] C:\Program Files\Download Direct\DLD.exe
O4 - HKCU\..\Run: [Windows Update] C:\WINDOWS\system32\scrigz.exe
O4 - HKCU\..\Run: [deleteshow] C:\DOCUME~1\ALEXAN~1\APPLIC~1\ACEBIT~1\SURF SOFTWARE SIZE.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Veoh] "C:\Program Files\Veoh Networks\Veoh\VeohClient.exe" /VeohHide
O4 - HKCU\..\Run: [shell] "C:\WINDOWS\system32\Rundll32.exe" "C:\WINDOWS\system32\shell32.dll",Control_RunDLL "C:\DOCUME~1\ALEXAN~1\LOCALS~1\Temp\dat126.tmp"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Antivirus Firewall.lnk = C:\Program Files\Securitoo\av_fw\backweb\6588780\Program\fspex.exe
O4 - Global Startup: Bluetooth Manager.lnk = ?
O8 - Extra context menu item: &Bloquer cette fenêtre publicitaire - C:\Program Files\Securitoo\av_fw\Anti-Spyware\blockpopups.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Protection Internet Explorer - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\Securitoo\av_fw\Anti-Spyware\ieshield.dll
O9 - Extra 'Tools' menuitem: Protection Internet Explorer... - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\Securitoo\av_fw\Anti-Spyware\ieshield.dll
O9 - Extra button: (no name) - {9819CC0E-9669-4D01-9CD7-2C66DA43AC6C} - (no file)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0835BC90-6ABC-4F52-A103-4FC3A61F2C33} (A18X Control) - http://www.albatross18.com/season2/cabs/A18X.ocx
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/bina [...] b56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-F [...] E_UNO1.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {69EF49E5-FE46-4B92-B5FA-2193AB7A6B8A} (GameLauncher Control) - http://www.acclaim.com/cabs/acclaim_v5.cab
O16 - DPF: {77538FC7-CE52-4704-9865-494FE92BC320} (LaunchUBO.Ulit) - http://www.ultimatebaseballonline. [...] nchubo.OCX
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/bina [...] b56907.cab
O21 - SSODL: system32 - {5874EF81-BC30-4586-BCE3-690FE374B584} - sysprinters.dll (file missing)
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: AdminWorks Agent X6 (AWService) - Avocent Inc. - C:\Acer\Empowering Technology\admServ.exe
O23 - Service: Antivirus Firewall (BackWeb Plug-in - 6588780) - Securitoo Portal - C:\PROGRA~1\SECURI~1\av_fw\backweb\6588780\Program\SERVIC~1.EXE
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\Anti-Virus\fsgk32st.exe
O23 - Service: fsbwsys - F-Secure Corp. - C:\Program Files\Securitoo\av_fw\backweb\6588780\program\fsbwsys.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\FWES\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\Common\FSMA32.EXE
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: Spouleur d'impression (Spooler) - Unknown owner - C:\WINDOWS\system32\spoolsv.exe (file missing)
O23 - Service: Security Services Internet (winmech) - Unknown owner - C:\WINDOWS\winmech\NTSERV~1\srunner.exe

--
End of file - 15036 bytes

Liens sponsorisés

Inscrivez-vous ou connectez-vous pour masquer ceci.

XmichouX

Profil : Helper

Plus d'informations

07-07-2008 à 02:29:37

Masquer

Bonjour,

Télécharge Lop S&D.exe (d’ Eric 71 & Angeldark) sur ton bureau.

Double-clique dessus pour lancer l'installation
Puis double-clique sur le raccourci Lop S&D présent sur ton bureau (Si tu es sous Vista, clique droit -> exécuter en tant qu'admin)
Séléctionne la langue souhaitée , puis choisis l'Option 1 (Recherche)
Patiente jusqu'à la fin du scan
Poste le rapport généré (C:\lopR.txt)

Si ton bureau ne réapparait pas, fais CTRL+ALT+SUPP pour ouvrir le gestionnaire de tâches.
Puis rends-toi à l'onglet "processus". Clique en haut à gauche sur fichiers et choisis "Nouvelle tâche (exécuter)"
Tapes explorer et valide. Cela te fera apparaitre ton bureau

---------------
Prière de signaler si vous vous faites déjà aider sur un autre forum ou dans un autre topic.

Sécurité/Prévention

ti_samsung

Profil : IDNaute

Plus d'informations

08-07-2008 à 13:50:23

Masquer

voilà mon rapport Lop S&D

-----------------------[ Lop S&D 4.2.2-0 XP/Vista ]---------------------

[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : Alexandre ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 08/07/2008 | 13:46:44,46 ] [ PC : PIERRE ]
[ MAJ : 06-07-2008 | 10:55 ]

-------------[ Listing des dossiers dans Application Data ]------------

[19/08/2006|05:40] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Acer
[19/08/2006|04:30] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[19/08/2006|04:56] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[19/08/2006|04:30] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[19/08/2006|05:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Acer
[31/10/2007|20:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Admin Inter 1 Mags
[19/08/2006|05:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[07/07/2007|19:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[07/07/2007|19:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[27/02/2008|02:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Azureus
[23/11/2007|12:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[19/08/2006|04:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[04/07/2007|00:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\F-Secure
[04/07/2007|16:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[04/06/2008|20:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[10/06/2007|11:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Intel
[02/07/2007|11:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ISx2.tmp
[02/07/2007|11:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ISx3.tmp
[02/07/2007|16:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[19/08/2006|04:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[05/07/2007|10:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Mozilla
[30/10/2007|11:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NexonUS
[04/07/2007|13:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
[03/07/2007|16:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[19/08/2006|06:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[02/07/2007|16:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[24/05/2008|11:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[02/07/2007|12:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion

[19/08/2006|04:30] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

[19/08/2006|04:30] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[19/08/2006|05:40] C:\DOCUME~1\ADMINI~1\APPLIC~1\Acer
[19/08/2006|04:30] C:\DOCUME~1\ADMINI~1\APPLIC~1\desktop.ini
[19/08/2006|04:56] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[19/08/2006|04:30] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft

[30/10/2007|22:00] C:\DOCUME~1\ALEXAN~1\APPLIC~1\acebitssite
[19/08/2006|05:40] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Acer
[03/07/2007|12:45] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Adobe
[18/09/2007|22:29] C:\DOCUME~1\ALEXAN~1\APPLIC~1\AdobeUM
[07/07/2007|19:29] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Apple Computer
[27/02/2008|02:23] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Azureus
[16/04/2008|00:58] C:\DOCUME~1\ALEXAN~1\APPLIC~1\CRSpace
[23/11/2007|12:53] C:\DOCUME~1\ALEXAN~1\APPLIC~1\CyberLink
[19/08/2006|04:30] C:\DOCUME~1\ALEXAN~1\APPLIC~1\desktop.ini
[26/07/2007|00:47] C:\DOCUME~1\ALEXAN~1\APPLIC~1\DivX
[02/07/2007|18:21] C:\DOCUME~1\ALEXAN~1\APPLIC~1\DMCache
[23/11/2007|12:52] C:\DOCUME~1\ALEXAN~1\APPLIC~1\dvdcss
[06/04/2008|21:02] C:\DOCUME~1\ALEXAN~1\APPLIC~1\F4
[04/07/2007|00:47] C:\DOCUME~1\ALEXAN~1\APPLIC~1\F-Secure
[29/07/2007|18:09] C:\DOCUME~1\ALEXAN~1\APPLIC~1\GDIPFONTCACHEV1.DAT
[04/07/2007|16:17] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Google
[19/08/2006|04:56] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Identities
[02/07/2007|18:21] C:\DOCUME~1\ALEXAN~1\APPLIC~1\IDM
[01/11/2007|20:53] C:\DOCUME~1\ALEXAN~1\APPLIC~1\ijjigame
[17/08/2007|15:51] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Internet Download Accelerator
[04/07/2007|00:45] C:\DOCUME~1\ALEXAN~1\APPLIC~1\ispnews
[10/06/2007|11:48] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Macromedia
[19/08/2006|04:30] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Microsoft
[05/07/2007|10:57] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Mozilla
[30/10/2007|12:42] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Nexon
[04/07/2007|00:50] C:\DOCUME~1\ALEXAN~1\APPLIC~1\PEX
[12/04/2008|15:53] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Real
[18/09/2007|22:49] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Sun
[05/07/2007|10:58] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Talkback
[04/08/2007|23:08] C:\DOCUME~1\ALEXAN~1\APPLIC~1\teamspeak2
[26/12/2007|19:52] C:\DOCUME~1\ALEXAN~1\APPLIC~1\U3
[23/07/2007|16:25] C:\DOCUME~1\ALEXAN~1\APPLIC~1\uTorrent
[02/07/2007|20:38] C:\DOCUME~1\ALEXAN~1\APPLIC~1\vlc
[02/07/2007|23:34] C:\DOCUME~1\ALEXAN~1\APPLIC~1\WinRAR

[19/08/2006|05:40] C:\DOCUME~1\babelo\APPLIC~1\Acer
[01/07/2008|21:29] C:\DOCUME~1\babelo\APPLIC~1\Adobe
[19/08/2006|04:30] C:\DOCUME~1\babelo\APPLIC~1\desktop.ini
[02/06/2008|11:47] C:\DOCUME~1\babelo\APPLIC~1\F-Secure
[02/06/2008|11:47] C:\DOCUME~1\babelo\APPLIC~1\Google
[19/08/2006|04:56] C:\DOCUME~1\babelo\APPLIC~1\Identities
[02/06/2008|11:47] C:\DOCUME~1\babelo\APPLIC~1\ispnews
[01/07/2008|21:29] C:\DOCUME~1\babelo\APPLIC~1\Macromedia
[19/08/2006|04:30] C:\DOCUME~1\babelo\APPLIC~1\Microsoft
[02/06/2008|11:47] C:\DOCUME~1\babelo\APPLIC~1\Real

----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

[08/07/2008 13:00][--ah-----] C:\WINDOWS\tasks\BC6F59CD93F4FC79.job
[07/07/2008 20:06][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[08/07/2008 02:05][--a------] C:\WINDOWS\tasks\Scheduled scanning task.job
[08/07/2008 12:28][--ah-----] C:\WINDOWS\tasks\SA.DAT
[11/06/2005 01:53][--a------] C:\WINDOWS\tasks\SysFile.brk
[10/08/2004 20:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

BC6F59CD93F4FC79.job <--> c:\docume~1\alexan~1\applic~1\acebit~1\Lieslisttrust.exe

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[04/01/2008|18:59] C:\Program Files\7-Zip
[31/10/2007|20:25] C:\Program Files\acebitssite
[10/06/2007|11:46] C:\Program Files\Acer
[19/08/2006|05:24] C:\Program Files\Acer Inc
[19/08/2006|05:24] C:\Program Files\Adobe
[30/10/2007|21:59] C:\Program Files\Adverts
[27/02/2008|18:45] C:\Program Files\alaplaya
[03/07/2007|18:14] C:\Program Files\Alwil Software
[08/07/2007|16:28] C:\Program Files\AMPED
[07/07/2007|19:28] C:\Program Files\Apple Software Update
[26/06/2008|23:26] C:\Program Files\Audacity
[27/02/2008|02:22] C:\Program Files\Azureus
[13/07/2007|00:03] C:\Program Files\Becherovka 2005
[12/07/2007|23:30] C:\Program Files\Becherovka 2006
[02/07/2007|16:03] C:\Program Files\BitComet
[03/06/2008|12:06] C:\Program Files\Common Files
[19/08/2006|04:40] C:\Program Files\ComPlus Applications
[19/08/2006|05:21] C:\Program Files\CONEXANT
[27/10/2007|20:03] C:\Program Files\Counter-Strike 1.6
[16/04/2008|00:54] C:\Program Files\Crspace
[19/08/2006|05:26] C:\Program Files\CyberLink
[03/07/2007|11:32] C:\Program Files\DAEMON Tools
[04/07/2007|20:15] C:\Program Files\DivX
[02/07/2007|11:43] C:\Program Files\EA GAMES
[19/05/2008|18:15] C:\Program Files\Empire of Sports
[10/07/2007|18:12] C:\Program Files\eMule
[19/08/2006|04:30] C:\Program Files\Fichiers communs
[20/09/2007|18:50] C:\Program Files\Free
[03/07/2007|22:08] C:\Program Files\Free.fr
[19/08/2006|04:58] C:\Program Files\FrenchOtto
[12/07/2007|23:33] C:\Program Files\Frozen-Bubble
[02/07/2007|23:34] C:\Program Files\Games-Masters.com
[02/07/2007|17:30] C:\Program Files\GameSpy Arcade
[06/08/2007|18:40] C:\Program Files\GameTribe
[19/08/2006|04:58] C:\Program Files\GemMasterFrench
[03/07/2007|22:28] C:\Program Files\GOA
[04/07/2007|16:16] C:\Program Files\Google
[03/11/2007|02:43] C:\Program Files\Gpotato.eu
[17/08/2007|15:51] C:\Program Files\IDA
[13/07/2007|00:16] C:\Program Files\Incanta
[19/08/2006|05:20] C:\Program Files\InstallShield Installation Information
[19/08/2006|04:51] C:\Program Files\Intel
[02/07/2007|18:21] C:\Program Files\Internet Download Manager
[19/08/2006|04:41] C:\Program Files\Internet Explorer
[18/09/2007|22:48] C:\Program Files\Java
[04/06/2008|20:47] C:\Program Files\Labtec
[10/06/2007|11:42] C:\Program Files\Launch Manager
[19/08/2006|04:38] C:\Program Files\Messenger
[14/09/2007|22:54] C:\Program Files\Messenger Plus! Live
[02/07/2007|16:55] C:\Program Files\MessengerPlus! 3
[27/05/2008|00:09] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[19/08/2006|04:45] C:\Program Files\microsoft frontpage
[11/07/2007|17:32] C:\Program Files\Microsoft Games
[10/06/2007|12:06] C:\Program Files\Microsoft Office
[19/08/2006|04:39] C:\Program Files\Movie Maker
[05/07/2007|10:57] C:\Program Files\Mozilla Firefox
[19/08/2006|04:38] C:\Program Files\MSN
[19/08/2006|04:38] C:\Program Files\MSN Gaming Zone
[03/07/2007|11:16] C:\Program Files\MSN Messenger
[04/07/2007|03:08] C:\Program Files\MSXML 4.0
[10/07/2007|18:15] C:\Program Files\NETAMIN
[19/08/2006|04:41] C:\Program Files\NetMeeting
[19/08/2006|05:31] C:\Program Files\NewTech Infosystems
[02/11/2007|15:55] C:\Program Files\NHN USA
[15/10/2007|21:49] C:\Program Files\OGPlanet
[19/08/2006|04:40] C:\Program Files\Online Services
[06/04/2008|20:57] C:\Program Files\OpenAL
[19/08/2006|04:41] C:\Program Files\Outlook Express
[07/07/2007|19:18] C:\Program Files\QuickTime
[12/04/2008|15:53] C:\Program Files\Real
[19/08/2006|05:20] C:\Program Files\Realtek
[04/07/2007|00:40] C:\Program Files\Securitoo
[19/08/2006|04:42] C:\Program Files\Services en ligne
[24/07/2007|13:22] C:\Program Files\Silkroad
[03/07/2007|16:40] C:\Program Files\Spybot - Search & Destroy
[14/09/2007|22:46] C:\Program Files\StuffPlug3
[13/07/2007|14:48] C:\Program Files\Stunt Playground
[27/10/2007|20:06] C:\Program Files\sXe Injected
[19/08/2006|05:23] C:\Program Files\Synaptics
[13/07/2007|00:20] C:\Program Files\Take2
[22/10/2007|20:14] C:\Program Files\thriXXX
[27/07/2007|21:44] C:\Program Files\Toshiba
[19/08/2006|04:56] C:\Program Files\Uninstall Information
[03/12/2007|13:14] C:\Program Files\Veoh Networks
[02/07/2007|20:36] C:\Program Files\VideoLAN
[14/09/2007|22:54] C:\Program Files\Windows Live
[02/07/2007|16:08] C:\Program Files\Windows Media Connect 2
[19/08/2006|04:39] C:\Program Files\Windows Media Player
[19/08/2006|04:38] C:\Program Files\Windows NT
[19/08/2006|04:39] C:\Program Files\Windows Plus
[19/08/2006|04:42] C:\Program Files\WindowsUpdate
[10/06/2007|11:44] C:\Program Files\WinPCap
[03/07/2007|11:16] C:\Program Files\WinRAR
[19/08/2006|04:45] C:\Program Files\xerox
[10/06/2007|11:48] C:\Program Files\Yahoo!

------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------

[10/06/2007|11:47] C:\Program Files\Fichiers communs\Acer
[19/08/2006|05:25] C:\Program Files\Fichiers communs\Adobe
[07/07/2007|19:28] C:\Program Files\Fichiers communs\Apple
[10/06/2007|12:07] C:\Program Files\Fichiers communs\Designer
[06/08/2007|18:44] C:\Program Files\Fichiers communs\DirectX
[19/08/2006|05:20] C:\Program Files\Fichiers communs\InstallShield
[18/09/2007|22:47] C:\Program Files\Fichiers communs\Java
[19/08/2006|05:32] C:\Program Files\Fichiers communs\LightScribe
[10/06/2007|11:47] C:\Program Files\Fichiers communs\Logitech
[19/08/2006|04:30] C:\Program Files\Fichiers communs\Microsoft Shared
[19/08/2006|04:42] C:\Program Files\Fichiers communs\MSSoap
[19/08/2006|05:32] C:\Program Files\Fichiers communs\muvee Technologies
[19/08/2006|05:31] C:\Program Files\Fichiers communs\NewTech Infosystems
[19/08/2006|04:31] C:\Program Files\Fichiers communs\ODBC
[12/04/2008|15:53] C:\Program Files\Fichiers communs\Real
[19/08/2006|04:42] C:\Program Files\Fichiers communs\Services
[19/08/2006|04:30] C:\Program Files\Fichiers communs\SpeechEngines
[19/08/2006|06:19] C:\Program Files\Fichiers communs\Symantec Shared
[19/08/2006|04:41] C:\Program Files\Fichiers communs\System
[24/05/2008|11:16] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[12/04/2008|15:53] C:\Program Files\Fichiers communs\xing shared

---------------------------[ Process ]--------------------------

... 73

... OK !

----------------------[ Recherche avec S_Lop ]---------------------

Aucun fichier / dossier Lop trouvé !

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

C:\DOCUME~1\ALEXAN~1\APPLIC~1\acebitssite
C:\DOCUME~1\ALEXAN~1\APPLIC~1\acebitssite\SURF SOFTWARE SIZE.0XE
C:\DOCUME~1\ALEXAN~1\APPLIC~1\acebitssite\SURF SOFTWARE SIZE.1XE
C:\DOCUME~1\ALEXAN~1\APPLIC~1\acebitssite\LIESLISTTRUST.0XE
C:\Program Files\acebitssite
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Admin Inter 1 Mags
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Admin Inter 1 Mags\USER BIRD.0XE
C:\DOCUME~1\ALEXAN~1\APPLIC~1\acebit~1
C:\DOCUME~1\ALEXAN~1\APPLIC~1\acebit~1\SURF SOFTWARE SIZE.0XE
C:\DOCUME~1\ALEXAN~1\APPLIC~1\acebit~1\SURF SOFTWARE SIZE.1XE
C:\DOCUME~1\ALEXAN~1\APPLIC~1\acebit~1\LIESLISTTRUST.0XE
C:\Program Files\acebit~1
C:\Program Files\Adverts
C:\DOCUME~1\ALEXAN~1\Cookies\alexandre@bigpoint[1].txt
C:\DOCUME~1\ALEXAN~1\Cookies\alexandre@adin.bigpoint[2].txt
C:\DOCUME~1\ALEXAN~1\Cookies\alexandre@fr.bigpoint[1].txt
C:\DOCUME~1\ALEXAN~1\Cookies\alexandre@banner.cotedazurpalace[2].txt
C:\DOCUME~1\ALEXAN~1\Cookies\alexandre@cotedazurpalace[2].txt
C:\WINDOWS\Tasks\BC6F59CD93F4FC79.job

----------------------[ Verification du Registre ]----------------------

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"deleteshow"="C:\\DOCUME~1\\ALEXAN~1\\APPLIC~1\\ACEBIT~1\\SURF SOFTWARE SIZE.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"1 mags 16 more"="C:\\Documents and Settings\\All Users\\Application Data\\Admin Inter 1 Mags\\user bird.exe"

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts MODIFIE

127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD
127.0.0.1 download.errorsafe.com ## added by CiD
127.0.0.1 download.systemdoctor.com ## added by CiD
127.0.0.1 download.winantispyware.com ## added by CiD
127.0.0.1 download.windrivecleaner.com ## added by CiD
127.0.0.1 download.winfixer.com ## added by CiD
127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 es.winantivirus.com ## added by CiD
127.0.0.1 fr.winantivirus.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 go.winantivirus.com ## added by CiD
127.0.0.1 hk.winantivirus.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 instlog.winantivirus.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 kb.winantivirus.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 secure.winantivirus.com ## added by CiD
127.0.0.1 support.winantivirus.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 ulog.winantivirus.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 utils.winantivirus.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winantivirus.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 www.drivecleaner.com ## added by CiD
127.0.0.1 www.errorprotector.com ## added by CiD
127.0.0.1 www.errorsafe.com ## added by CiD
127.0.0.1 www.systemdoctor.com ## added by CiD
127.0.0.1 www.utils.winfixer.com ## added by CiD
127.0.0.1 www.win-anti-virus-pro.com ## added by CiD
127.0.0.1 www.win-virus-pro.com ## added by CiD
127.0.0.1 www.winantispam.com ## added by CiD
127.0.0.1 www.winantispy.com ## added by CiD
127.0.0.1 www.winantispyware.com ## added by CiD
127.0.0.1 www.winantivirus.com ## added by CiD
127.0.0.1 www.winantiviruspro.com ## added by CiD
127.0.0.1 www.windrivecleaner.com ## added by CiD
127.0.0.1 www.windrivesafe.com ## added by CiD
127.0.0.1 www.winfixer.com ## added by CiD
127.0.0.1 www.winfixer2006.com ## added by CiD
127.0.0.1 www.winsoftware.com ## added by CiD

-> 72 ( 70 ## added by CiD )

/!\ 1 Not 127.0.0.1 !!

----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-07-08 13:47:53
Windows 5.1.2600 Service Pack 2 FAT NTAPI
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------

C:\WINDOWS\System32\nvs2.inf

C:\DOCUME~1\ALEXAN~1\LOCALS~1\APPLIC~1\uqsca_nav.dat
C:\DOCUME~1\ALEXAN~1\LOCALS~1\APPLIC~1\uqsca_navps.dat
C:\DOCUME~1\ALEXAN~1\LOCALS~1\APPLIC~1\uqsca.exe
C:\DOCUME~1\ALEXAN~1\LOCALS~1\APPLIC~1\uqsca.dat
C:\WINDOWS\Prefetch\UQSCA.EXE-3949C921.pf
! EGDACCESS !

=> C:\Documents and Settings\Alexandre\Local Settings\Temp\Temporary Internet Files\Content.IE5\4LS74FON\120x120likecrack[1].jpg
=> C:\Documents and Settings\Alexandre\Recent\Crack_Need_For_Speed_Carbon.lnk

[F:11719][D:166]-> C:\DOCUME~1\ALEXAN~1\LOCALS~1\Temp
[F:541][D:0]-> C:\DOCUME~1\ALEXAN~1\Cookies
[F:1925][D:8]-> C:\DOCUME~1\ALEXAN~1\LOCALS~1\TEMPOR~1\content.IE5
[F:2][D:0]-> C:\Recycled

--------------------[ Fin du rapport a 13:48:22,42 ]----------------------

Merci =D

XmichouX

Profil : Helper

Plus d'informations

08-07-2008 à 15:36:43

Masquer

Re,

Relance Lop S&D.

Choisis cette fois ci l'Option 2 (Suppression)

! Ne ferme pas la fenêtre lors de la suppression !

Poste le rapport généré (C:\lopR.txt)

Message édité par XmichouX le 08-07-2008 à 15:37:29

---------------
Prière de signaler si vous vous faites déjà aider sur un autre forum ou dans un autre topic.

Sécurité/Prévention

ti_samsung

Profil : IDNaute

Plus d'informations

08-07-2008 à 16:38:32

Masquer

-----------------------[ Lop S&D 4.2.2-0 XP/Vista ]---------------------

[ Windows XP (NT 5.1) Build 2600, Service Pack 2 ]
[ USER : Alexandre ] [ "C:\Lop SD" ] [ Selection : 2 ]
[ 08/07/2008 | 16:35:46,65 ] [ PC : PIERRE ]
[ MAJ : 06-07-2008 | 10:55 ]

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////

Supprime! - C:\DOCUME~1\ALEXAN~1\APPLIC~1\acebitssite\SURF SOFTWARE SIZE.0XE
Supprime! - C:\DOCUME~1\ALEXAN~1\APPLIC~1\acebitssite\SURF SOFTWARE SIZE.1XE
Supprime! - C:\DOCUME~1\ALEXAN~1\APPLIC~1\acebitssite\LIESLISTTRUST.0XE
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Admin Inter 1 Mags\USER BIRD.0XE
Supprime! - C:\DOCUME~1\ALEXAN~1\Cookies\alexandre@bigpoint[1].txt
Supprime! - C:\DOCUME~1\ALEXAN~1\Cookies\alexandre@adin.bigpoint[2].txt
Supprime! - C:\DOCUME~1\ALEXAN~1\Cookies\alexandre@fr.bigpoint[1].txt
Supprime! - C:\DOCUME~1\ALEXAN~1\Cookies\alexandre@banner.cotedazurpalace[2].txt
Supprime! - C:\DOCUME~1\ALEXAN~1\Cookies\alexandre@cotedazurpalace[2].txt
Supprime! - C:\WINDOWS\Tasks\BC6F59CD93F4FC79.job
Supprime! - C:\DOCUME~1\ALEXAN~1\APPLIC~1\acebitssite
Supprime! - C:\Program Files\acebitssite
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Admin Inter 1 Mags
Supprime! - C:\Program Files\Adverts
RestaurÚ! - Fichier Hosts

//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

-------------[ Listing des dossiers dans Application Data ]------------

[19/08/2006|05:40] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Acer
[19/08/2006|04:30] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[19/08/2006|04:56] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[19/08/2006|04:30] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[19/08/2006|05:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Acer
[19/08/2006|05:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[07/07/2007|19:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[07/07/2007|19:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[27/02/2008|02:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Azureus
[23/11/2007|12:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[19/08/2006|04:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini
[04/07/2007|00:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\F-Secure
[04/07/2007|16:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[04/06/2008|20:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[10/06/2007|11:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Intel
[02/07/2007|11:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ISx2.tmp
[02/07/2007|11:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ISx3.tmp
[02/07/2007|16:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[19/08/2006|04:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[05/07/2007|10:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Mozilla
[30/10/2007|11:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NexonUS
[04/07/2007|13:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
[03/07/2007|16:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[19/08/2006|06:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[02/07/2007|16:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[24/05/2008|11:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[02/07/2007|12:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion

[19/08/2006|04:30] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

[19/08/2006|04:30] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[19/08/2006|05:40] C:\DOCUME~1\ADMINI~1\APPLIC~1\Acer
[19/08/2006|04:30] C:\DOCUME~1\ADMINI~1\APPLIC~1\desktop.ini
[19/08/2006|04:56] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[19/08/2006|04:30] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft

[19/08/2006|05:40] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Acer
[03/07/2007|12:45] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Adobe
[18/09/2007|22:29] C:\DOCUME~1\ALEXAN~1\APPLIC~1\AdobeUM
[07/07/2007|19:29] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Apple Computer
[27/02/2008|02:23] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Azureus
[16/04/2008|00:58] C:\DOCUME~1\ALEXAN~1\APPLIC~1\CRSpace
[23/11/2007|12:53] C:\DOCUME~1\ALEXAN~1\APPLIC~1\CyberLink
[19/08/2006|04:30] C:\DOCUME~1\ALEXAN~1\APPLIC~1\desktop.ini
[26/07/2007|00:47] C:\DOCUME~1\ALEXAN~1\APPLIC~1\DivX
[02/07/2007|18:21] C:\DOCUME~1\ALEXAN~1\APPLIC~1\DMCache
[23/11/2007|12:52] C:\DOCUME~1\ALEXAN~1\APPLIC~1\dvdcss
[06/04/2008|21:02] C:\DOCUME~1\ALEXAN~1\APPLIC~1\F4
[04/07/2007|00:47] C:\DOCUME~1\ALEXAN~1\APPLIC~1\F-Secure
[29/07/2007|18:09] C:\DOCUME~1\ALEXAN~1\APPLIC~1\GDIPFONTCACHEV1.DAT
[04/07/2007|16:17] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Google
[19/08/2006|04:56] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Identities
[02/07/2007|18:21] C:\DOCUME~1\ALEXAN~1\APPLIC~1\IDM
[01/11/2007|20:53] C:\DOCUME~1\ALEXAN~1\APPLIC~1\ijjigame
[17/08/2007|15:51] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Internet Download Accelerator
[04/07/2007|00:45] C:\DOCUME~1\ALEXAN~1\APPLIC~1\ispnews
[10/06/2007|11:48] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Macromedia
[19/08/2006|04:30] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Microsoft
[05/07/2007|10:57] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Mozilla
[30/10/2007|12:42] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Nexon
[04/07/2007|00:50] C:\DOCUME~1\ALEXAN~1\APPLIC~1\PEX
[12/04/2008|15:53] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Real
[18/09/2007|22:49] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Sun
[05/07/2007|10:58] C:\DOCUME~1\ALEXAN~1\APPLIC~1\Talkback
[04/08/2007|23:08] C:\DOCUME~1\ALEXAN~1\APPLIC~1\teamspeak2
[26/12/2007|19:52] C:\DOCUME~1\ALEXAN~1\APPLIC~1\U3
[23/07/2007|16:25] C:\DOCUME~1\ALEXAN~1\APPLIC~1\uTorrent
[02/07/2007|20:38] C:\DOCUME~1\ALEXAN~1\APPLIC~1\vlc
[02/07/2007|23:34] C:\DOCUME~1\ALEXAN~1\APPLIC~1\WinRAR

[19/08/2006|05:40] C:\DOCUME~1\babelo\APPLIC~1\Acer
[01/07/2008|21:29] C:\DOCUME~1\babelo\APPLIC~1\Adobe
[19/08/2006|04:30] C:\DOCUME~1\babelo\APPLIC~1\desktop.ini
[02/06/2008|11:47] C:\DOCUME~1\babelo\APPLIC~1\F-Secure
[02/06/2008|11:47] C:\DOCUME~1\babelo\APPLIC~1\Google
[19/08/2006|04:56] C:\DOCUME~1\babelo\APPLIC~1\Identities
[02/06/2008|11:47] C:\DOCUME~1\babelo\APPLIC~1\ispnews
[01/07/2008|21:29] C:\DOCUME~1\babelo\APPLIC~1\Macromedia
[19/08/2006|04:30] C:\DOCUME~1\babelo\APPLIC~1\Microsoft
[02/06/2008|11:47] C:\DOCUME~1\babelo\APPLIC~1\Real

----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

[07/07/2008 20:06][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[08/07/2008 02:05][--a------] C:\WINDOWS\tasks\Scheduled scanning task.job
[08/07/2008 16:29][--ah-----] C:\WINDOWS\tasks\SA.DAT
[11/06/2005 01:53][--a------] C:\WINDOWS\tasks\SysFile.brk
[10/08/2004 20:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[04/01/2008|18:59] C:\Program Files\7-Zip
[10/06/2007|11:46] C:\Program Files\Acer
[19/08/2006|05:24] C:\Program Files\Acer Inc
[19/08/2006|05:24] C:\Program Files\Adobe
[27/02/2008|18:45] C:\Program Files\alaplaya
[03/07/2007|18:14] C:\Program Files\Alwil Software
[08/07/2007|16:28] C:\Program Files\AMPED
[07/07/2007|19:28] C:\Program Files\Apple Software Update
[26/06/2008|23:26] C:\Program Files\Audacity
[27/02/2008|02:22] C:\Program Files\Azureus
[13/07/2007|00:03] C:\Program Files\Becherovka 2005
[12/07/2007|23:30] C:\Program Files\Becherovka 2006
[02/07/2007|16:03] C:\Program Files\BitComet
[03/06/2008|12:06] C:\Program Files\Common Files
[19/08/2006|04:40] C:\Program Files\ComPlus Applications
[19/08/2006|05:21] C:\Program Files\CONEXANT
[27/10/2007|20:03] C:\Program Files\Counter-Strike 1.6
[16/04/2008|00:54] C:\Program Files\Crspace
[19/08/2006|05:26] C:\Program Files\CyberLink
[03/07/2007|11:32] C:\Program Files\DAEMON Tools
[04/07/2007|20:15] C:\Program Files\DivX
[02/07/2007|11:43] C:\Program Files\EA GAMES
[19/05/2008|18:15] C:\Program Files\Empire of Sports
[10/07/2007|18:12] C:\Program Files\eMule
[19/08/2006|04:30] C:\Program Files\Fichiers communs
[20/09/2007|18:50] C:\Program Files\Free
[03/07/2007|22:08] C:\Program Files\Free.fr
[19/08/2006|04:58] C:\Program Files\FrenchOtto
[12/07/2007|23:33] C:\Program Files\Frozen-Bubble
[02/07/2007|23:34] C:\Program Files\Games-Masters.com
[02/07/2007|17:30] C:\Program Files\GameSpy Arcade
[06/08/2007|18:40] C:\Program Files\GameTribe
[19/08/2006|04:58] C:\Program Files\GemMasterFrench
[03/07/2007|22:28] C:\Program Files\GOA
[04/07/2007|16:16] C:\Program Files\Google
[03/11/2007|02:43] C:\Program Files\Gpotato.eu
[17/08/2007|15:51] C:\Program Files\IDA
[13/07/2007|00:16] C:\Program Files\Incanta
[19/08/2006|05:20] C:\Program Files\InstallShield Installation Information
[19/08/2006|04:51] C:\Program Files\Intel
[02/07/2007|18:21] C:\Program Files\Internet Download Manager
[19/08/2006|04:41] C:\Program Files\Internet Explorer
[18/09/2007|22:48] C:\Program Files\Java
[04/06/2008|20:47] C:\Program Files\Labtec
[10/06/2007|11:42] C:\Program Files\Launch Manager
[19/08/2006|04:38] C:\Program Files\Messenger
[14/09/2007|22:54] C:\Program Files\Messenger Plus! Live
[02/07/2007|16:55] C:\Program Files\MessengerPlus! 3
[27/05/2008|00:09] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[19/08/2006|04:45] C:\Program Files\microsoft frontpage
[11/07/2007|17:32] C:\Program Files\Microsoft Games
[10/06/2007|12:06] C:\Program Files\Microsoft Office
[19/08/2006|04:39] C:\Program Files\Movie Maker
[05/07/2007|10:57] C:\Program Files\Mozilla Firefox
[19/08/2006|04:38] C:\Program Files\MSN
[19/08/2006|04:38] C:\Program Files\MSN Gaming Zone
[03/07/2007|11:16] C:\Program Files\MSN Messenger
[04/07/2007|03:08] C:\Program Files\MSXML 4.0
[10/07/2007|18:15] C:\Program Files\NETAMIN
[19/08/2006|04:41] C:\Program Files\NetMeeting
[19/08/2006|05:31] C:\Program Files\NewTech Infosystems
[02/11/2007|15:55] C:\Program Files\NHN USA
[15/10/2007|21:49] C:\Program Files\OGPlanet
[19/08/2006|04:40] C:\Program Files\Online Services
[06/04/2008|20:57] C:\Program Files\OpenAL
[19/08/2006|04:41] C:\Program Files\Outlook Express
[07/07/2007|19:18] C:\Program Files\QuickTime
[12/04/2008|15:53] C:\Program Files\Real
[19/08/2006|05:20] C:\Program Files\Realtek
[04/07/2007|00:40] C:\Program Files\Securitoo
[19/08/2006|04:42] C:\Program Files\Services en ligne
[24/07/2007|13:22] C:\Program Files\Silkroad
[03/07/2007|16:40] C:\Program Files\Spybot - Search & Destroy
[14/09/2007|22:46] C:\Program Files\StuffPlug3
[13/07/2007|14:48] C:\Program Files\Stunt Playground
[27/10/2007|20:06] C:\Program Files\sXe Injected
[19/08/2006|05:23] C:\Program Files\Synaptics
[13/07/2007|00:20] C:\Program Files\Take2
[22/10/2007|20:14] C:\Program Files\thriXXX
[27/07/2007|21:44] C:\Program Files\Toshiba
[19/08/2006|04:56] C:\Program Files\Uninstall Information
[03/12/2007|13:14] C:\Program Files\Veoh Networks
[02/07/2007|20:36] C:\Program Files\VideoLAN
[14/09/2007|22:54] C:\Program Files\Windows Live
[02/07/2007|16:08] C:\Program Files\Windows Media Connect 2
[19/08/2006|04:39] C:\Program Files\Windows Media Player
[19/08/2006|04:38] C:\Program Files\Windows NT
[19/08/2006|04:39] C:\Program Files\Windows Plus
[19/08/2006|04:42] C:\Program Files\WindowsUpdate
[10/06/2007|11:44] C:\Program Files\WinPCap
[03/07/2007|11:16] C:\Program Files\WinRAR
[19/08/2006|04:45] C:\Program Files\xerox
[10/06/2007|11:48] C:\Program Files\Yahoo!

------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------

[10/06/2007|11:47] C:\Program Files\Fichiers communs\Acer
[19/08/2006|05:25] C:\Program Files\Fichiers communs\Adobe
[07/07/2007|19:28] C:\Program Files\Fichiers communs\Apple
[10/06/2007|12:07] C:\Program Files\Fichiers communs\Designer
[06/08/2007|18:44] C:\Program Files\Fichiers communs\DirectX
[19/08/2006|05:20] C:\Program Files\Fichiers communs\InstallShield
[18/09/2007|22:47] C:\Program Files\Fichiers communs\Java
[19/08/2006|05:32] C:\Program Files\Fichiers communs\LightScribe
[10/06/2007|11:47] C:\Program Files\Fichiers communs\Logitech
[19/08/2006|04:30] C:\Program Files\Fichiers communs\Microsoft Shared
[19/08/2006|04:42] C:\Program Files\Fichiers communs\MSSoap
[19/08/2006|05:32] C:\Program Files\Fichiers communs\muvee Technologies
[19/08/2006|05:31] C:\Program Files\Fichiers communs\NewTech Infosystems
[19/08/2006|04:31] C:\Program Files\Fichiers communs\ODBC
[12/04/2008|15:53] C:\Program Files\Fichiers communs\Real
[19/08/2006|04:42] C:\Program Files\Fichiers communs\Services
[19/08/2006|04:30] C:\Program Files\Fichiers communs\SpeechEngines
[19/08/2006|06:19] C:\Program Files\Fichiers communs\Symantec Shared
[19/08/2006|04:41] C:\Program Files\Fichiers communs\System
[24/05/2008|11:16] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[12/04/2008|15:53] C:\Program Files\Fichiers communs\xing shared

---------------------------[ Process ]--------------------------

... 76

... OK !

----------------------[ Recherche avec S_Lop ]---------------------

Aucun fichier / dossier Lop trouvé !

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

Aucun fichier / dossier Lop trouvé !

----------------------[ Verification du Registre ]----------------------

..... OK !

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts PROPRE

----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-07-08 16:36:57
Windows 5.1.2600 Service Pack 2 FAT NTAPI
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------

C:\WINDOWS\System32\nvs2.inf

C:\DOCUME~1\ALEXAN~1\LOCALS~1\APPLIC~1\uqsca_nav.dat
C:\DOCUME~1\ALEXAN~1\LOCALS~1\APPLIC~1\uqsca_navps.dat
C:\DOCUME~1\ALEXAN~1\LOCALS~1\APPLIC~1\uqsca.exe
C:\DOCUME~1\ALEXAN~1\LOCALS~1\APPLIC~1\uqsca.dat
C:\WINDOWS\Prefetch\UQSCA.EXE-3949C921.pf
! EGDACCESS !

=> C:\Documents and Settings\Alexandre\Local Settings\Temp\Temporary Internet Files\Content.IE5\4LS74FON\120x120likecrack[1].jpg
=> C:\Documents and Settings\Alexandre\Recent\Crack_Need_For_Speed_Carbon.lnk

[F:11720][D:166]-> C:\DOCUME~1\ALEXAN~1\LOCALS~1\Temp
[F:536][D:0]-> C:\DOCUME~1\ALEXAN~1\Cookies
[F:2008][D:8]-> C:\DOCUME~1\ALEXAN~1\LOCALS~1\TEMPOR~1\content.IE5
[F:2][D:0]-> C:\Recycled

--------------------[ Fin du rapport a 16:37:26,46 ]----------------------

voila

ti_samsung

Profil : IDNaute

Plus d'informations

Messages similaires

Dans l'actualité

Test du GPS Acer V200

Le Eee PC d'Acer est retardé

AL1916Cs : Acer améliore son 19 pouces entrée de gamme

Test LCD 22 pouces : Acer AL2216WD

Les téléchargements

Ressources relatives

Albums

Les derniers dossiers

Le Top des applications en ligne

Quel récepteur TNT choisir ?

Appareil photo numérique : le meilleur de 2008

Comment sauvegarder toutes vos données ?

Les offres partenaires