CID
Forum Sécurité - Virus : CID
Bonjour à tous
Voilà moi aussi j'ai un problème avec CID, mes fils téléchargent des trucs et voilà maman doit se débrouiller toute seule pour régler les problèmes alors une petite âme charitable serait la bienvenue,
Merci d'avance
Bonjour,
Télécharge Lop S&D.exe (Eric_71) sur ton Bureau.
- Lance l'installation du programme en exécutant le fichier téléchargé.
- Double-clique maintenant sur le raccourci de LopS&D.
- Sélectionne la langue souhaitée en tapant la lettre de ton choix puis en validant avec la touche Entrée.
- Choisis maintenant l'option 1 (Recherche). Patiente jusqu'à la fin de la recherche.
- Poste le rapport généré (C:\lopR.txt*)
(Si le Bureau ne réapparait pas presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide)
* le nom de la partition peut changer
Répondre à Angeldark
Voilà c'est fait, merci !
--------------------\\ Lop S&D 4.2.4-3 XP/Vista
Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : AMD Athlon(tm) 64 X2 Dual Core Processor 4400+ )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : laurence ( Not Administrator ! )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 080915-0] 4.8.1229 (Activated)
C:\ (Local Disk) - NTFS - Total : 290 Go Free : 209 Go
D:\ (Local Disk) - NTFS - Total : 7 Go Free : 1 Go
E:\ (CD or DVD)
G:\ (USB)
H:\ (USB)
I:\ (USB)
J:\ (USB)
"C:\Lop SD" ( MAJ : 14-09-2008|22:40 )
Option : [1] ( 16/09/2008|13:27 )
[ UAC => 0 ]
--------------------\\ Listing des dossiers dans Local
[31/05/2008|10:35] C:\Users\laurence\AppData\Local\Adobe
[25/06/2008|13:03] C:\Users\laurence\AppData\Local\Apple
[15/07/2008|16:22] C:\Users\laurence\AppData\Local\Apple Computer
[30/05/2008|10:35] C:\Users\laurence\AppData\Local\Application Data
[14/08/2008|09:47] C:\Users\laurence\AppData\Local\Apps
[07/06/2008|22:38] C:\Users\laurence\AppData\Local\Ares
[16/07/2008|08:53] C:\Users\laurence\AppData\Local\d3d9caps.dat
[25/08/2008|23:46] C:\Users\laurence\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[17/06/2008|20:58] C:\Users\laurence\AppData\Local\DNA
[27/08/2008|09:22] C:\Users\laurence\AppData\Local\GDIPFONTCACHEV1.DAT
[30/05/2008|10:44] C:\Users\laurence\AppData\Local\Google
[30/05/2008|10:35] C:\Users\laurence\AppData\Local\Historique
[15/09/2008|20:19] C:\Users\laurence\AppData\Local\IconCache.db
[19/08/2008|23:08] C:\Users\laurence\AppData\Local\Microsoft
[13/09/2008|16:40] C:\Users\laurence\AppData\Local\Microsoft Games
[02/06/2008|18:46] C:\Users\laurence\AppData\Local\Microsoft Help
[31/05/2008|21:28] C:\Users\laurence\AppData\Local\Steam
[16/09/2008|13:23] C:\Users\laurence\AppData\Local\Temp
[30/05/2008|10:35] C:\Users\laurence\AppData\Local\Temporary Internet Files
[30/05/2008|11:13] C:\Users\laurence\AppData\Local\VirtualStore
--------------------\\ Tâches planifiées dans C:\Windows\tasks
[16/09/2008 13:24][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{A31FB9E1-97C1-41AE-87ED-247AAE57FA51}.job
[16/09/2008 13:24][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{171E8C37-9FEC-447B-90FD-BEFC693B9240}.job
[16/09/2008 10:28][--ah-----] C:\Windows\tasks\SA.DAT
[16/09/2008 02:08][--a------] C:\Windows\tasks\SCHEDLGU.TXT
--------------------\\ Listing des dossiers dans C:\ProgramData
[02/06/2007|00:54] C:\ProgramData\{623D32E9-0C62-4453-AD44-98B31F52A5E1}
[09/06/2008|18:59] C:\ProgramData\Adobe
[31/08/2008|21:38] C:\ProgramData\aim rect help creative
[25/06/2008|13:03] C:\ProgramData\Apple
[25/06/2008|13:04] C:\ProgramData\Apple Computer
[30/05/2008|10:31] C:\ProgramData\Application Data
[20/08/2008|15:09] C:\ProgramData\AVS4YOU
[03/09/2008|11:41] C:\ProgramData\BallRectRect.0hle4w
[01/09/2008|18:22] C:\ProgramData\BallRectRect.13ueb86
[31/08/2008|22:22] C:\ProgramData\BallRectRect.16k3g
[02/09/2008|10:48] C:\ProgramData\BallRectRect.1a1abrj
[01/09/2008|19:20] C:\ProgramData\BallRectRect.1i914h
[03/09/2008|11:19] C:\ProgramData\BallRectRect.1oftxu
[31/08/2008|22:44] C:\ProgramData\BallRectRect.1tlbhn
[02/09/2008|23:02] C:\ProgramData\BallRectRect.1y0vnm5
[02/09/2008|14:02] C:\ProgramData\BallRectRect.25t9iw
[01/09/2008|21:16] C:\ProgramData\BallRectRect.28f720
[03/09/2008|09:52] C:\ProgramData\BallRectRect.2jiw1t6
[03/09/2008|10:57] C:\ProgramData\BallRectRect.2ymc7b
[01/09/2008|20:04] C:\ProgramData\BallRectRect.32d5f14
[01/09/2008|17:52] C:\ProgramData\BallRectRect.35z031
[02/09/2008|01:09] C:\ProgramData\BallRectRect.3kucl1
[01/09/2008|23:06] C:\ProgramData\BallRectRect.3ky0uc
[02/09/2008|16:35] C:\ProgramData\BallRectRect.3o70d
[03/09/2008|09:08] C:\ProgramData\BallRectRect.4bh2h0
[01/09/2008|22:00] C:\ProgramData\BallRectRect.4fac522
[01/09/2008|17:31] C:\ProgramData\BallRectRect.4u7da18
[01/09/2008|23:49] C:\ProgramData\BallRectRect.4xj8e
[01/09/2008|17:16] C:\ProgramData\BallRectRect.58pizq8
[02/09/2008|13:18] C:\ProgramData\BallRectRect.5ir8htu
[03/09/2008|20:57] C:\ProgramData\BallRectRect.5jx2ts
[01/09/2008|10:55] C:\ProgramData\BallRectRect.5q9ox
[01/09/2008|20:47] C:\ProgramData\BallRectRect.5zmpjdf
[03/09/2008|12:25] C:\ProgramData\BallRectRect.6akm4
[02/09/2008|02:37] C:\ProgramData\BallRectRect.6myjh4c
[02/09/2008|10:04] C:\ProgramData\BallRectRect.6rtkcw8
[01/09/2008|15:49] C:\ProgramData\BallRectRect.6sl27ye
[02/09/2008|16:13] C:\ProgramData\BallRectRect.73hdg
[02/09/2008|15:47] C:\ProgramData\BallRectRect.7dh61
[01/09/2008|18:00] C:\ProgramData\BallRectRect.7gjgly
[01/09/2008|18:14] C:\ProgramData\BallRectRect.7ty9o7
[02/09/2008|08:58] C:\ProgramData\BallRectRect.7zy8g
[02/09/2008|17:14] C:\ProgramData\BallRectRect.83fsvqm
[03/09/2008|08:24] C:\ProgramData\BallRectRect.854dv
[02/09/2008|15:29] C:\ProgramData\BallRectRect.8g8xic
[02/09/2008|11:53] C:\ProgramData\BallRectRect.8khd6y
[03/09/2008|13:08] C:\ProgramData\BallRectRect.9a3nh
[01/09/2008|22:22] C:\ProgramData\BallRectRect.9rvpj7
[02/09/2008|00:04] C:\ProgramData\BallRectRect.9ybhue4
[01/09/2008|11:17] C:\ProgramData\BallRectRect.9z53ng8
[02/09/2008|02:15] C:\ProgramData\BallRectRect.a0byv7
[02/09/2008|19:45] C:\ProgramData\BallRectRect.a17yx6
[02/09/2008|15:25] C:\ProgramData\BallRectRect.am27dsb
[02/09/2008|11:09] C:\ProgramData\BallRectRect.arm0aqy
[02/09/2008|15:08] C:\ProgramData\BallRectRect.b3rvx
[31/08/2008|21:38] C:\ProgramData\BallRectRect.bdchim
[03/09/2008|10:14] C:\ProgramData\BallRectRect.bjynxo
[01/09/2008|14:21] C:\ProgramData\BallRectRect.bp6a74d
[02/09/2008|16:31] C:\ProgramData\BallRectRect.bu531
[01/09/2008|19:27] C:\ProgramData\BallRectRect.bw7seh
[01/09/2008|23:42] C:\ProgramData\BallRectRect.c9h9q
[03/09/2008|18:46] C:\ProgramData\BallRectRect.cdsfm8
[01/09/2008|21:38] C:\ProgramData\BallRectRect.cf2iz9
[02/09/2008|00:26] C:\ProgramData\BallRectRect.cmdt83y
[03/09/2008|10:35] C:\ProgramData\BallRectRect.d37qia
[02/09/2008|01:17] C:\ProgramData\BallRectRect.dz50n6w
[02/09/2008|18:18] C:\ProgramData\BallRectRect.e9bypul
[03/09/2008|17:19] C:\ProgramData\BallRectRect.eafnut
[02/09/2008|00:55] C:\ProgramData\BallRectRect.er7yw
[02/09/2008|18:57] C:\ProgramData\BallRectRect.eruk9
[02/09/2008|18:39] C:\ProgramData\BallRectRect.f4klnme
[01/09/2008|19:49] C:\ProgramData\BallRectRect.f70lymu
[01/09/2008|18:43] C:\ProgramData\BallRectRect.fdla9fz
[01/09/2008|21:53] C:\ProgramData\BallRectRect.fg2dny
[02/09/2008|13:40] C:\ProgramData\BallRectRect.fzqeo
[02/09/2008|19:01] C:\ProgramData\BallRectRect.g80kz
[01/09/2008|15:27] C:\ProgramData\BallRectRect.h1nqc
[02/09/2008|21:34] C:\ProgramData\BallRectRect.h6k2v
[03/09/2008|00:07] C:\ProgramData\BallRectRect.h8jv97
[03/09/2008|17:41] C:\ProgramData\BallRectRect.heahv1
[02/09/2008|08:37] C:\ProgramData\BallRectRect.hktb7
[01/09/2008|12:44] C:\ProgramData\BallRectRect.htspu
[01/09/2008|12:01] C:\ProgramData\BallRectRect.i34jmpl
[02/09/2008|23:23] C:\ProgramData\BallRectRect.ifph1pq
[02/09/2008|10:26] C:\ProgramData\BallRectRect.iho3k
[02/09/2008|15:51] C:\ProgramData\BallRectRect.ipccg1
[02/09/2008|12:56] C:\ProgramData\BallRectRect.iq1m8u9
[01/09/2008|20:25] C:\ProgramData\BallRectRect.iqb03a
[01/09/2008|23:20] C:\ProgramData\BallRectRect.ixwbpj
[03/09/2008|08:46] C:\ProgramData\BallRectRect.j8xik96
[02/09/2008|00:11] C:\ProgramData\BallRectRect.jewk7
[02/09/2008|16:09] C:\ProgramData\BallRectRect.jirdlu
[01/09/2008|13:06] C:\ProgramData\BallRectRect.jk9ww
[03/09/2008|10:22] C:\ProgramData\BallRectRect.jrr7e5p
[02/09/2008|16:53] C:\ProgramData\BallRectRect.js6pu
[02/09/2008|01:53] C:\ProgramData\BallRectRect.kgyel5f
[01/09/2008|16:34] C:\ProgramData\BallRectRect.khj4cf
[03/09/2008|12:46] C:\ProgramData\BallRectRect.kjdvqv
[31/08/2008|23:06] C:\ProgramData\BallRectRect.kq4z5
[01/09/2008|16:10] C:\ProgramData\BallRectRect.kwcjbpe
[02/09/2008|12:35] C:\ProgramData\BallRectRect.l07h19
[01/09/2008|15:05] C:\ProgramData\BallRectRect.lagwc7r
[03/09/2008|12:03] C:\ProgramData\BallRectRect.lg8qu2
[02/09/2008|01:31] C:\ProgramData\BallRectRect.lnnyb
[02/09/2008|11:31] C:\ProgramData\BallRectRect.lu6b0
[01/09/2008|11:39] C:\ProgramData\BallRectRect.mi3vl
[03/09/2008|18:03] C:\ProgramData\BallRectRect.mtgft17
[02/09/2008|19:23] C:\ProgramData\BallRectRect.mvh9qa7
[02/09/2008|18:13] C:\ProgramData\BallRectRect.n7h6go6
[01/09/2008|16:25] C:\ProgramData\BallRectRect.nizccpd
[01/09/2008|16:32] C:\ProgramData\BallRectRect.nqupez4
[02/09/2008|00:33] C:\ProgramData\BallRectRect.offwb
[02/09/2008|20:07] C:\ProgramData\BallRectRect.ofyzh
[31/08/2008|23:28] C:\ProgramData\BallRectRect.okew89
[02/09/2008|20:50] C:\ProgramData\BallRectRect.omhrc5
[01/09/2008|10:11] C:\ProgramData\BallRectRect.onuy2
[01/09/2008|22:36] C:\ProgramData\BallRectRect.oqts3
[01/09/2008|18:36] C:\ProgramData\BallRectRect.ot70ymk
[01/09/2008|16:47] C:\ProgramData\BallRectRect.ovf04
[03/09/2008|00:29] C:\ProgramData\BallRectRect.peo6b
[02/09/2008|14:46] C:\ProgramData\BallRectRect.pk9il
[01/09/2008|18:58] C:\ProgramData\BallRectRect.pnf5uo
[01/09/2008|20:54] C:\ProgramData\BallRectRect.pz2lvq
[01/09/2008|13:59] C:\ProgramData\BallRectRect.q16qzle
[01/09/2008|17:38] C:\ProgramData\BallRectRect.q2qok5
[01/09/2008|20:33] C:\ProgramData\BallRectRect.q6oln
[02/09/2008|02:22] C:\ProgramData\BallRectRect.rdfm5f3
[01/09/2008|12:22] C:\ProgramData\BallRectRect.rr1zb
[01/09/2008|21:31] C:\ProgramData\BallRectRect.rzl98az
[03/09/2008|19:08] C:\ProgramData\BallRectRect.s3i65
[02/09/2008|21:12] C:\ProgramData\BallRectRect.sbuapbt
[01/09/2008|22:58] C:\ProgramData\BallRectRect.scvp6tv
[31/08/2008|21:38] C:\ProgramData\BallRectRect.sq2ol
[01/09/2008|21:09] C:\ProgramData\BallRectRect.td25h
[01/09/2008|22:44] C:\ProgramData\BallRectRect.tfs4lm
[02/09/2008|17:19] C:\ProgramData\BallRectRect.tqcdrq
[02/09/2008|09:42] C:\ProgramData\BallRectRect.u0d22
[02/09/2008|09:20] C:\ProgramData\BallRectRect.u8u3d5
[01/09/2008|19:42] C:\ProgramData\BallRectRect.u973c
[01/09/2008|16:54] C:\ProgramData\BallRectRect.vomxfhv
[01/09/2008|23:27] C:\ProgramData\BallRectRect.vrtnu
[01/09/2008|22:15] C:\ProgramData\BallRectRect.vwbd5y
[02/09/2008|21:56] C:\ProgramData\BallRectRect.w0apiq
[01/09/2008|14:43] C:\ProgramData\BallRectRect.w3ivz
[01/09/2008|10:33] C:\ProgramData\BallRectRect.w4xf0q
[02/09/2008|16:57] C:\ProgramData\BallRectRect.we96acx
[02/09/2008|18:35] C:\ProgramData\BallRectRect.wfg0i
[03/09/2008|18:24] C:\ProgramData\BallRectRect.wgovha8
[01/09/2008|17:09] C:\ProgramData\BallRectRect.wgvcuhv
[01/09/2008|13:38] C:\ProgramData\BallRectRect.wpgswaj
[03/09/2008|19:52] C:\ProgramData\BallRectRect.wpvdh
[02/09/2008|23:45] C:\ProgramData\BallRectRect.wqgv24m
[01/09/2008|20:11] C:\ProgramData\BallRectRect.wszpu
[03/09/2008|09:30] C:\ProgramData\BallRectRect.wzs1u
[02/09/2008|22:40] C:\ProgramData\BallRectRect.x3196n
[01/09/2008|19:05] C:\ProgramData\BallRectRect.xdchwyl
[02/09/2008|00:47] C:\ProgramData\BallRectRect.xekpd
[02/09/2008|14:24] C:\ProgramData\BallRectRect.yi47hu5
[31/08/2008|23:50] C:\ProgramData\BallRectRect.yjtlcs
[31/08/2008|22:00] C:\ProgramData\BallRectRect.yks9w
[03/09/2008|19:30] C:\ProgramData\BallRectRect.ylh2g7
[02/09/2008|02:00] C:\ProgramData\BallRectRect.yoygs34
[02/09/2008|01:38] C:\ProgramData\BallRectRect.z1s06
[03/09/2008|16:57] C:\ProgramData\BallRectRect.zcklqot
[03/09/2008|20:14] C:\ProgramData\BallRectRect.zjvvs
[03/09/2008|20:35] C:\ProgramData\BallRectRect.zmslfb
[02/09/2008|20:29] C:\ProgramData\BallRectRect.zn5mzki
[02/09/2008|22:18] C:\ProgramData\BallRectRect.zsjuvnc
[02/09/2008|21:23] C:\ProgramData\BOONTY
[30/05/2008|10:31] C:\ProgramData\Bureau
[02/06/2008|16:43] C:\ProgramData\CanonBJ
[30/05/2008|10:31] C:\ProgramData\Documents
[18/06/2008|21:40] C:\ProgramData\DVD Shrink
[30/05/2008|10:31] C:\ProgramData\Favoris
[01/07/2008|18:52] C:\ProgramData\Google
[02/06/2007|01:16] C:\ProgramData\Hewlett-Packard
[02/06/2007|00:37] C:\ProgramData\HP
[02/06/2007|00:38] C:\ProgramData\hpzinstall.log
[02/06/2008|16:48] C:\ProgramData\InstallShield
[31/08/2008|21:38] C:\ProgramData\inter time mp3.dhdkxv
[30/05/2008|10:31] C:\ProgramData\Menu D‚marrer
[31/08/2008|22:24] C:\ProgramData\Messenger Plus!
[30/05/2008|11:09] C:\ProgramData\Microsoft
[11/09/2008|00:37] C:\ProgramData\Microsoft Help
[30/05/2008|10:31] C:\ProgramData\ModŠles
[02/06/2007|00:47] C:\ProgramData\muvee Technologies
[20/06/2008|20:32] C:\ProgramData\NVIDIA
[02/06/2007|00:56] C:\ProgramData\PC-Doctor
[23/08/2008|20:02] C:\ProgramData\Roxio
[02/06/2008|16:48] C:\ProgramData\ScanSoft
[02/06/2008|16:46] C:\ProgramData\Skype
[05/06/2008|20:31] C:\ProgramData\Sonic
[30/05/2008|10:53] C:\ProgramData\Symantec
[03/09/2008|16:36] C:\ProgramData\Vga Error Four
[11/06/2008|12:46] C:\ProgramData\WLInstaller
--------------------\\ Listing des dossiers dans C:\Program Files
[02/06/2007|00:54] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[02/07/2008|10:07] C:\Program Files\Adobe
[30/05/2008|11:03] C:\Program Files\Alwil Software
[25/06/2008|13:03] C:\Program Files\Apple Software Update
[18/06/2008|21:39] C:\Program Files\a-squared Free
[20/08/2008|16:19] C:\Program Files\AviSynth 2.5
[20/08/2008|15:13] C:\Program Files\AVS4YOU
[18/06/2008|10:02] C:\Program Files\BitTorrent
[18/06/2008|21:19] C:\Program Files\BitTorrent Acceleration Patch
[02/06/2008|17:35] C:\Program Files\Canon
[02/06/2008|16:38] C:\Program Files\CanonBJ
[15/09/2008|18:42] C:\Program Files\CCleaner
[02/09/2008|21:23] C:\Program Files\Common Files
[21/08/2008|10:37] C:\Program Files\Conduit
[30/08/2008|15:58] C:\Program Files\DNA
[02/06/2007|09:41] C:\Program Files\EasyBits
[20/08/2008|16:18] C:\Program Files\eRightSoft
[30/05/2008|10:31] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[18/06/2008|09:46] C:\Program Files\Free Download Manager
[01/07/2008|20:08] C:\Program Files\Google
[02/06/2007|00:57] C:\Program Files\Hewlett-Packard
[02/06/2007|00:49] C:\Program Files\HP
[03/06/2008|22:58] C:\Program Files\InstallShield Installation Information
[29/07/2008|00:26] C:\Program Files\Internet Explorer
[01/07/2008|18:53] C:\Program Files\Jaquette Express
[21/07/2008|13:29] C:\Program Files\Java
[26/07/2008|01:24] C:\Program Files\LimeWire
[02/06/2008|12:23] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[28/08/2008|15:39] C:\Program Files\Microsoft Games
[02/06/2007|00:53] C:\Program Files\Microsoft Office
[11/09/2008|00:36] C:\Program Files\Microsoft Works
[02/06/2007|00:53] C:\Program Files\Microsoft.NET
[05/06/2008|15:16] C:\Program Files\Movie Maker
[02/11/2006|14:37] C:\Program Files\MSBuild
[02/06/2008|12:19] C:\Program Files\MSXML 4.0
[02/06/2007|00:47] C:\Program Files\muvee Technologies
[03/06/2008|23:13] C:\Program Files\No‰l Danjou
[21/08/2008|10:37] C:\Program Files\P2P_Torrent
[02/06/2007|01:10] C:\Program Files\PC-Doctor 5 for Windows
[25/06/2008|13:05] C:\Program Files\QuickTime
[02/06/2007|00:46] C:\Program Files\Real
[02/06/2007|00:32] C:\Program Files\Realtek
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[02/06/2007|00:45] C:\Program Files\Roxio
[02/06/2008|16:46] C:\Program Files\ScanSoft
[02/06/2007|00:59] C:\Program Files\Services en ligne
[27/06/2008|17:47] C:\Program Files\Sun
[14/06/2008|22:05] C:\Program Files\Teamspeak2_RC2
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[31/05/2008|17:43] C:\Program Files\Valve
[31/08/2008|21:38] C:\Program Files\Vga Error Four
[05/06/2008|15:16] C:\Program Files\Windows Calendar
[05/06/2008|15:16] C:\Program Files\Windows Collaboration
[05/06/2008|15:16] C:\Program Files\Windows Defender
[05/06/2008|15:16] C:\Program Files\Windows Journal
[30/05/2008|11:11] C:\Program Files\Windows Live
[29/08/2008|00:32] C:\Program Files\Windows Mail
[05/06/2008|15:16] C:\Program Files\Windows Media Player
[30/05/2008|10:31] C:\Program Files\Windows NT
[05/06/2008|15:16] C:\Program Files\Windows Photo Gallery
[05/06/2008|15:16] C:\Program Files\Windows Sidebar
[05/06/2008|14:46] C:\Program Files\WinRAR
[12/06/2008|15:04] C:\Program Files\Xvid
[15/09/2008|18:45] C:\Program Files\Yahoo!
--------------------\\ Listing des dossiers dans C:\Program Files\Common Files
[09/06/2008|18:59] C:\Program Files\Common Files\Adobe
[20/08/2008|15:13] C:\Program Files\Common Files\AVSMedia
[02/09/2008|21:23] C:\Program Files\Common Files\BOONTY Shared
[02/06/2007|00:53] C:\Program Files\Common Files\DESIGNER
[02/06/2007|00:37] C:\Program Files\Common Files\HP
[02/06/2008|16:48] C:\Program Files\Common Files\InstallShield
[27/06/2008|17:42] C:\Program Files\Common Files\Java
[02/06/2007|00:46] C:\Program Files\Common Files\LightScribe
[02/06/2007|00:45] C:\Program Files\Common Files\LS Getting Started
[20/08/2008|15:05] C:\Program Files\Common Files\microsoft shared
[02/06/2007|00:47] C:\Program Files\Common Files\muvee Technologies
[02/06/2007|00:44] C:\Program Files\Common Files\PX Storage Engine
[02/06/2007|00:46] C:\Program Files\Common Files\Real
[02/06/2007|00:44] C:\Program Files\Common Files\Roxio Shared
[02/06/2008|16:48] C:\Program Files\Common Files\ScanSoft Shared
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[03/06/2008|22:58] C:\Program Files\Common Files\snp2std
[02/06/2007|00:45] C:\Program Files\Common Files\Sonic Shared
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[12/09/2008|18:09] C:\Program Files\Common Files\Steam
[02/06/2007|00:45] C:\Program Files\Common Files\SureThing Shared
[30/05/2008|10:53] C:\Program Files\Common Files\Symantec Shared
[05/06/2008|15:16] C:\Program Files\Common Files\System
[30/05/2008|11:11] C:\Program Files\Common Files\WindowsLiveInstaller
[02/06/2007|00:46] C:\Program Files\Common Files\xing shared
--------------------\\ Process
( 56 Processes )
iexplore.exe ~ [PID:3948]
iexplore.exe ~ [PID:2800]
--------------------\\ Recherche avec S_Lop
C:\ProgramData\BallRectRect.16k3g
C:\ProgramData\BallRectRect.3o70d
C:\ProgramData\BallRectRect.4xj8e
C:\ProgramData\BallRectRect.5q9ox
C:\ProgramData\BallRectRect.6akm4
C:\ProgramData\BallRectRect.73hdg
C:\ProgramData\BallRectRect.7dh61
C:\ProgramData\BallRectRect.7zy8g
C:\ProgramData\BallRectRect.854dv
C:\ProgramData\BallRectRect.9a3nh
C:\ProgramData\BallRectRect.b3rvx
C:\ProgramData\BallRectRect.bu531
C:\ProgramData\BallRectRect.c9h9q
C:\ProgramData\BallRectRect.er7yw
C:\ProgramData\BallRectRect.eruk9
C:\ProgramData\BallRectRect.fzqeo
C:\ProgramData\BallRectRect.g80kz
C:\ProgramData\BallRectRect.h1nqc
C:\ProgramData\BallRectRect.h6k2v
C:\ProgramData\BallRectRect.hktb7
C:\ProgramData\BallRectRect.htspu
C:\ProgramData\BallRectRect.iho3k
C:\ProgramData\BallRectRect.jewk7
C:\ProgramData\BallRectRect.jk9ww
C:\ProgramData\BallRectRect.js6pu
C:\ProgramData\BallRectRect.kq4z5
C:\ProgramData\BallRectRect.lnnyb
C:\ProgramData\BallRectRect.lu6b0
C:\ProgramData\BallRectRect.mi3vl
C:\ProgramData\BallRectRect.offwb
C:\ProgramData\BallRectRect.ofyzh
C:\ProgramData\BallRectRect.onuy2
C:\ProgramData\BallRectRect.oqts3
C:\ProgramData\BallRectRect.ovf04
C:\ProgramData\BallRectRect.peo6b
C:\ProgramData\BallRectRect.pk9il
C:\ProgramData\BallRectRect.q6oln
C:\ProgramData\BallRectRect.rr1zb
C:\ProgramData\BallRectRect.s3i65
C:\ProgramData\BallRectRect.sq2ol
C:\ProgramData\BallRectRect.td25h
C:\ProgramData\BallRectRect.u0d22
C:\ProgramData\BallRectRect.u973c
C:\ProgramData\BallRectRect.vrtnu
C:\ProgramData\BallRectRect.w3ivz
C:\ProgramData\BallRectRect.wfg0i
C:\ProgramData\BallRectRect.wpvdh
C:\ProgramData\BallRectRect.wszpu
C:\ProgramData\BallRectRect.wzs1u
C:\ProgramData\BallRectRect.xekpd
C:\ProgramData\BallRectRect.yks9w
C:\ProgramData\BallRectRect.z1s06
C:\ProgramData\BallRectRect.zjvvs
C:\ProgramData\BallRectRect.0hle4w
C:\ProgramData\BallRectRect.1i914h
C:\ProgramData\BallRectRect.1oftxu
C:\ProgramData\BallRectRect.1tlbhn
C:\ProgramData\BallRectRect.25t9iw
C:\ProgramData\BallRectRect.28f720
C:\ProgramData\BallRectRect.2ymc7b
C:\ProgramData\BallRectRect.35z031
C:\ProgramData\BallRectRect.3kucl1
C:\ProgramData\BallRectRect.3ky0uc
C:\ProgramData\BallRectRect.4bh2h0
C:\ProgramData\BallRectRect.5jx2ts
C:\ProgramData\BallRectRect.7gjgly
C:\ProgramData\BallRectRect.7ty9o7
C:\ProgramData\BallRectRect.8g8xic
C:\ProgramData\BallRectRect.8khd6y
C:\ProgramData\BallRectRect.9rvpj7
C:\ProgramData\BallRectRect.a0byv7
C:\ProgramData\BallRectRect.a17yx6
C:\ProgramData\BallRectRect.bdchim
C:\ProgramData\BallRectRect.bjynxo
C:\ProgramData\BallRectRect.bw7seh
C:\ProgramData\BallRectRect.cdsfm8
C:\ProgramData\BallRectRect.cf2iz9
C:\ProgramData\BallRectRect.d37qia
C:\ProgramData\BallRectRect.eafnut
C:\ProgramData\BallRectRect.fg2dny
C:\ProgramData\BallRectRect.h8jv97
C:\ProgramData\BallRectRect.heahv1
C:\ProgramData\BallRectRect.ipccg1
C:\ProgramData\BallRectRect.iqb03a
C:\ProgramData\BallRectRect.ixwbpj
C:\ProgramData\BallRectRect.jirdlu
C:\ProgramData\BallRectRect.khj4cf
C:\ProgramData\BallRectRect.kjdvqv
C:\ProgramData\BallRectRect.l07h19
C:\ProgramData\BallRectRect.lg8qu2
C:\ProgramData\BallRectRect.okew89
C:\ProgramData\BallRectRect.omhrc5
C:\ProgramData\BallRectRect.pnf5uo
C:\ProgramData\BallRectRect.pz2lvq
C:\ProgramData\BallRectRect.q2qok5
C:\ProgramData\BallRectRect.tfs4lm
C:\ProgramData\BallRectRect.tqcdrq
C:\ProgramData\BallRectRect.u8u3d5
C:\ProgramData\BallRectRect.vwbd5y
C:\ProgramData\BallRectRect.w0apiq
C:\ProgramData\BallRectRect.w4xf0q
C:\ProgramData\BallRectRect.x3196n
C:\ProgramData\BallRectRect.yjtlcs
C:\ProgramData\BallRectRect.ylh2g7
C:\ProgramData\BallRectRect.zmslfb
C:\ProgramData\BallRectRect.13ueb86
C:\ProgramData\BallRectRect.1a1abrj
C:\ProgramData\BallRectRect.1y0vnm5
C:\ProgramData\BallRectRect.2jiw1t6
C:\ProgramData\BallRectRect.32d5f14
C:\ProgramData\BallRectRect.4fac522
C:\ProgramData\BallRectRect.4u7da18
C:\ProgramData\BallRectRect.58pizq8
C:\ProgramData\BallRectRect.5ir8htu
C:\ProgramData\BallRectRect.5zmpjdf
C:\ProgramData\BallRectRect.6myjh4c
C:\ProgramData\BallRectRect.6rtkcw8
C:\ProgramData\BallRectRect.6sl27ye
C:\ProgramData\BallRectRect.83fsvqm
C:\ProgramData\BallRectRect.9ybhue4
C:\ProgramData\BallRectRect.9z53ng8
C:\ProgramData\BallRectRect.am27dsb
C:\ProgramData\BallRectRect.arm0aqy
C:\ProgramData\BallRectRect.bp6a74d
C:\ProgramData\BallRectRect.cmdt83y
C:\ProgramData\BallRectRect.dz50n6w
C:\ProgramData\BallRectRect.e9bypul
C:\ProgramData\BallRectRect.f4klnme
C:\ProgramData\BallRectRect.f70lymu
C:\ProgramData\BallRectRect.fdla9fz
C:\ProgramData\BallRectRect.i34jmpl
C:\ProgramData\BallRectRect.ifph1pq
C:\ProgramData\BallRectRect.iq1m8u9
C:\ProgramData\BallRectRect.j8xik96
C:\ProgramData\BallRectRect.jrr7e5p
C:\ProgramData\BallRectRect.kgyel5f
C:\ProgramData\BallRectRect.kwcjbpe
C:\ProgramData\BallRectRect.lagwc7r
C:\ProgramData\BallRectRect.mtgft17
C:\ProgramData\BallRectRect.mvh9qa7
C:\ProgramData\BallRectRect.n7h6go6
C:\ProgramData\BallRectRect.nizccpd
C:\ProgramData\BallRectRect.nqupez4
C:\ProgramData\BallRectRect.ot70ymk
C:\ProgramData\BallRectRect.q16qzle
C:\ProgramData\BallRectRect.rdfm5f3
C:\ProgramData\BallRectRect.rzl98az
C:\ProgramData\BallRectRect.sbuapbt
C:\ProgramData\BallRectRect.scvp6tv
C:\ProgramData\BallRectRect.vomxfhv
C:\ProgramData\BallRectRect.we96acx
C:\ProgramData\BallRectRect.wgovha8
C:\ProgramData\BallRectRect.wgvcuhv
C:\ProgramData\BallRectRect.wpgswaj
C:\ProgramData\BallRectRect.wqgv24m
C:\ProgramData\BallRectRect.xdchwyl
C:\ProgramData\BallRectRect.yi47hu5
C:\ProgramData\BallRectRect.yoygs34
C:\ProgramData\BallRectRect.zcklqot
C:\ProgramData\BallRectRect.zn5mzki
C:\ProgramData\BallRectRect.zsjuvnc
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\ProgramData\aim rect help creative
C:\ProgramData\aim rect help creative\cake software.exe
C:\Users\laurence\AppData\Roaming\MICROS~1\Windows\Cookies\laurence@advertising[2].txt
C:\Users\laurence\AppData\Roaming\MICROS~1\Windows\Cookies\laurence@adopt.euroclick[2].txt
C:\Users\laurence\AppData\Roaming\MICROS~1\Windows\Cookies\laurence@pacificpoker[1].txt
C:\Users\laurence\AppData\Roaming\MICROS~1\Windows\Cookies\laurence@partypoker[2].txt
C:\Users\laurence\AppData\Roaming\MICROS~1\Windows\Cookies\laurence@32vegas[1].txt
C:\Users\laurence\AppData\Roaming\MICROS~1\Windows\Cookies\laurence@banner.32vegas[2].txt
--------------------\\ Verification du Registre
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Fragnurb"="\"C:\\ProgramData\\BallRectRect.9a3nh\""
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-16 13:27:37
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 2
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:4][D:3]-> C:\Users\laurence\AppData\Local\Temp
[F:87][D:0]-> C:\Users\laurence\AppData\Roaming\MICROS~1\Windows\Cookies
[F:2378][D:4]-> C:\Users\laurence\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:99][D:7]-> C:\$Recycle.Bin
1 - "C:\Lop SD\LopR_1.txt" - 16/09/2008|13:28 - Option : [1]
--------------------\\ Fin du rapport a 13:28:50
[ UAC => 1 ]
Re,
Relance Lop S&D en double-cliquant sur le raccourci. Tape sur "2" puis valide en appuyant sur "Entrée".
! Ne ferme pas la fenêtre lors de la suppression !
Un rapport sera généré, poste son contenu ici.
Répondre à Angeldark
--------------------\\ Lop S&D 4.2.4-3 XP/Vista
Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : AMD Athlon(tm) 64 X2 Dual Core Processor 4400+ )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : laurence ( Not Administrator ! )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 080915-0] 4.8.1229 (Activated)
C:\ (Local Disk) - NTFS - Total : 290 Go Free : 207 Go
D:\ (Local Disk) - NTFS - Total : 7 Go Free : 1 Go
E:\ (CD or DVD)
G:\ (USB)
H:\ (USB)
I:\ (USB)
J:\ (USB)
"C:\Lop SD" ( MAJ : 14-09-2008|22:40 )
Option : [2] ( 16/09/2008|13:46 )
[ UAC => 1 ]
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION
Supprime! - C:\ProgramData\aim rect help creative\cake software.exe
Supprime! - C:\Users\laurence\AppData\Roaming\MICROS~1\Windows\Cookies\laurence@advertising[2].txt
Supprime! - C:\Users\laurence\AppData\Roaming\MICROS~1\Windows\Cookies\laurence@adopt.euroclick[2].txt
Supprime! - C:\Users\laurence\AppData\Roaming\MICROS~1\Windows\Cookies\laurence@pacificpoker[1].txt
Supprime! - C:\Users\laurence\AppData\Roaming\MICROS~1\Windows\Cookies\laurence@partypoker[2].txt
Supprime! - C:\Users\laurence\AppData\Roaming\MICROS~1\Windows\Cookies\laurence@32vegas[1].txt
Supprime! - C:\Users\laurence\AppData\Roaming\MICROS~1\Windows\Cookies\laurence@banner.32vegas[2].txt
Supprime! - C:\ProgramData\BallRectRect.16k3g
Supprime! - C:\ProgramData\BallRectRect.3o70d
Supprime! - C:\ProgramData\BallRectRect.4xj8e
Supprime! - C:\ProgramData\BallRectRect.5q9ox
Supprime! - C:\ProgramData\BallRectRect.6akm4
Supprime! - C:\ProgramData\BallRectRect.73hdg
Supprime! - C:\ProgramData\BallRectRect.7dh61
Supprime! - C:\ProgramData\BallRectRect.7zy8g
Supprime! - C:\ProgramData\BallRectRect.854dv
Supprime! - C:\ProgramData\BallRectRect.9a3nh
Supprime! - C:\ProgramData\BallRectRect.b3rvx
Supprime! - C:\ProgramData\BallRectRect.bu531
Supprime! - C:\ProgramData\BallRectRect.c9h9q
Supprime! - C:\ProgramData\BallRectRect.er7yw
Supprime! - C:\ProgramData\BallRectRect.eruk9
Supprime! - C:\ProgramData\BallRectRect.fzqeo
Supprime! - C:\ProgramData\BallRectRect.g80kz
Supprime! - C:\ProgramData\BallRectRect.h1nqc
Supprime! - C:\ProgramData\BallRectRect.h6k2v
Supprime! - C:\ProgramData\BallRectRect.hktb7
Supprime! - C:\ProgramData\BallRectRect.htspu
Supprime! - C:\ProgramData\BallRectRect.iho3k
Supprime! - C:\ProgramData\BallRectRect.jewk7
Supprime! - C:\ProgramData\BallRectRect.jk9ww
Supprime! - C:\ProgramData\BallRectRect.js6pu
Supprime! - C:\ProgramData\BallRectRect.kq4z5
Supprime! - C:\ProgramData\BallRectRect.lnnyb
Supprime! - C:\ProgramData\BallRectRect.lu6b0
Supprime! - C:\ProgramData\BallRectRect.mi3vl
Supprime! - C:\ProgramData\BallRectRect.offwb
Supprime! - C:\ProgramData\BallRectRect.ofyzh
Supprime! - C:\ProgramData\BallRectRect.onuy2
Supprime! - C:\ProgramData\BallRectRect.oqts3
Supprime! - C:\ProgramData\BallRectRect.ovf04
Supprime! - C:\ProgramData\BallRectRect.peo6b
Supprime! - C:\ProgramData\BallRectRect.pk9il
Supprime! - C:\ProgramData\BallRectRect.q6oln
Supprime! - C:\ProgramData\BallRectRect.rr1zb
Supprime! - C:\ProgramData\BallRectRect.s3i65
Supprime! - C:\ProgramData\BallRectRect.sq2ol
Supprime! - C:\ProgramData\BallRectRect.td25h
Supprime! - C:\ProgramData\BallRectRect.u0d22
Supprime! - C:\ProgramData\BallRectRect.u973c
Supprime! - C:\ProgramData\BallRectRect.vrtnu
Supprime! - C:\ProgramData\BallRectRect.w3ivz
Supprime! - C:\ProgramData\BallRectRect.wfg0i
Supprime! - C:\ProgramData\BallRectRect.wpvdh
Supprime! - C:\ProgramData\BallRectRect.wszpu
Supprime! - C:\ProgramData\BallRectRect.wzs1u
Supprime! - C:\ProgramData\BallRectRect.xekpd
Supprime! - C:\ProgramData\BallRectRect.yks9w
Supprime! - C:\ProgramData\BallRectRect.z1s06
Supprime! - C:\ProgramData\BallRectRect.zjvvs
Supprime! - C:\ProgramData\BallRectRect.0hle4w
Supprime! - C:\ProgramData\BallRectRect.1i914h
Supprime! - C:\ProgramData\BallRectRect.1oftxu
Supprime! - C:\ProgramData\BallRectRect.1tlbhn
Supprime! - C:\ProgramData\BallRectRect.25t9iw
Supprime! - C:\ProgramData\BallRectRect.28f720
Supprime! - C:\ProgramData\BallRectRect.2ymc7b
Supprime! - C:\ProgramData\BallRectRect.35z031
Supprime! - C:\ProgramData\BallRectRect.3kucl1
Supprime! - C:\ProgramData\BallRectRect.3ky0uc
Supprime! - C:\ProgramData\BallRectRect.4bh2h0
Supprime! - C:\ProgramData\BallRectRect.5jx2ts
Supprime! - C:\ProgramData\BallRectRect.7gjgly
Supprime! - C:\ProgramData\BallRectRect.7ty9o7
Supprime! - C:\ProgramData\BallRectRect.8g8xic
Supprime! - C:\ProgramData\BallRectRect.8khd6y
Supprime! - C:\ProgramData\BallRectRect.9rvpj7
Supprime! - C:\ProgramData\BallRectRect.a0byv7
Supprime! - C:\ProgramData\BallRectRect.a17yx6
Supprime! - C:\ProgramData\BallRectRect.bdchim
Supprime! - C:\ProgramData\BallRectRect.bjynxo
Supprime! - C:\ProgramData\BallRectRect.bw7seh
Supprime! - C:\ProgramData\BallRectRect.cdsfm8
Supprime! - C:\ProgramData\BallRectRect.cf2iz9
Supprime! - C:\ProgramData\BallRectRect.d37qia
Supprime! - C:\ProgramData\BallRectRect.eafnut
Supprime! - C:\ProgramData\BallRectRect.fg2dny
Supprime! - C:\ProgramData\BallRectRect.h8jv97
Supprime! - C:\ProgramData\BallRectRect.heahv1
Supprime! - C:\ProgramData\BallRectRect.ipccg1
Supprime! - C:\ProgramData\BallRectRect.iqb03a
Supprime! - C:\ProgramData\BallRectRect.ixwbpj
Supprime! - C:\ProgramData\BallRectRect.jirdlu
Supprime! - C:\ProgramData\BallRectRect.khj4cf
Supprime! - C:\ProgramData\BallRectRect.kjdvqv
Supprime! - C:\ProgramData\BallRectRect.l07h19
Supprime! - C:\ProgramData\BallRectRect.lg8qu2
Supprime! - C:\ProgramData\BallRectRect.okew89
Supprime! - C:\ProgramData\BallRectRect.omhrc5
Supprime! - C:\ProgramData\BallRectRect.pnf5uo
Supprime! - C:\ProgramData\BallRectRect.pz2lvq
Supprime! - C:\ProgramData\BallRectRect.q2qok5
Supprime! - C:\ProgramData\BallRectRect.tfs4lm
Supprime! - C:\ProgramData\BallRectRect.tqcdrq
Supprime! - C:\ProgramData\BallRectRect.u8u3d5
Supprime! - C:\ProgramData\BallRectRect.vwbd5y
Supprime! - C:\ProgramData\BallRectRect.w0apiq
Supprime! - C:\ProgramData\BallRectRect.w4xf0q
Supprime! - C:\ProgramData\BallRectRect.x3196n
Supprime! - C:\ProgramData\BallRectRect.yjtlcs
Supprime! - C:\ProgramData\BallRectRect.ylh2g7
Supprime! - C:\ProgramData\BallRectRect.zmslfb
Supprime! - C:\ProgramData\BallRectRect.13ueb86
Supprime! - C:\ProgramData\BallRectRect.1a1abrj
Supprime! - C:\ProgramData\BallRectRect.1y0vnm5
Supprime! - C:\ProgramData\BallRectRect.2jiw1t6
Supprime! - C:\ProgramData\BallRectRect.32d5f14
Supprime! - C:\ProgramData\BallRectRect.4fac522
Supprime! - C:\ProgramData\BallRectRect.4u7da18
Supprime! - C:\ProgramData\BallRectRect.58pizq8
Supprime! - C:\ProgramData\BallRectRect.5ir8htu
Supprime! - C:\ProgramData\BallRectRect.5zmpjdf
Supprime! - C:\ProgramData\BallRectRect.6myjh4c
Supprime! - C:\ProgramData\BallRectRect.6rtkcw8
Supprime! - C:\ProgramData\BallRectRect.6sl27ye
Supprime! - C:\ProgramData\BallRectRect.83fsvqm
Supprime! - C:\ProgramData\BallRectRect.9ybhue4
Supprime! - C:\ProgramData\BallRectRect.9z53ng8
Supprime! - C:\ProgramData\BallRectRect.am27dsb
Supprime! - C:\ProgramData\BallRectRect.arm0aqy
Supprime! - C:\ProgramData\BallRectRect.bp6a74d
Supprime! - C:\ProgramData\BallRectRect.cmdt83y
Supprime! - C:\ProgramData\BallRectRect.dz50n6w
Supprime! - C:\ProgramData\BallRectRect.e9bypul
Supprime! - C:\ProgramData\BallRectRect.f4klnme
Supprime! - C:\ProgramData\BallRectRect.f70lymu
Supprime! - C:\ProgramData\BallRectRect.fdla9fz
Supprime! - C:\ProgramData\BallRectRect.i34jmpl
Supprime! - C:\ProgramData\BallRectRect.ifph1pq
Supprime! - C:\ProgramData\BallRectRect.iq1m8u9
Supprime! - C:\ProgramData\BallRectRect.j8xik96
Supprime! - C:\ProgramData\BallRectRect.jrr7e5p
Supprime! - C:\ProgramData\BallRectRect.kgyel5f
Supprime! - C:\ProgramData\BallRectRect.kwcjbpe
Supprime! - C:\ProgramData\BallRectRect.lagwc7r
Supprime! - C:\ProgramData\BallRectRect.mtgft17
Supprime! - C:\ProgramData\BallRectRect.mvh9qa7
Supprime! - C:\ProgramData\BallRectRect.n7h6go6
Supprime! - C:\ProgramData\BallRectRect.nizccpd
Supprime! - C:\ProgramData\BallRectRect.nqupez4
Supprime! - C:\ProgramData\BallRectRect.ot70ymk
Supprime! - C:\ProgramData\BallRectRect.q16qzle
Supprime! - C:\ProgramData\BallRectRect.rdfm5f3
Supprime! - C:\ProgramData\BallRectRect.rzl98az
Supprime! - C:\ProgramData\BallRectRect.sbuapbt
Supprime! - C:\ProgramData\BallRectRect.scvp6tv
Supprime! - C:\ProgramData\BallRectRect.vomxfhv
Supprime! - C:\ProgramData\BallRectRect.we96acx
Supprime! - C:\ProgramData\BallRectRect.wgovha8
Supprime! - C:\ProgramData\BallRectRect.wgvcuhv
Supprime! - C:\ProgramData\BallRectRect.wpgswaj
Supprime! - C:\ProgramData\BallRectRect.wqgv24m
Supprime! - C:\ProgramData\BallRectRect.xdchwyl
Supprime! - C:\ProgramData\BallRectRect.yi47hu5
Supprime! - C:\ProgramData\BallRectRect.yoygs34
Supprime! - C:\ProgramData\BallRectRect.zcklqot
Supprime! - C:\ProgramData\BallRectRect.zn5mzki
Supprime! - C:\ProgramData\BallRectRect.zsjuvnc
Supprime! - C:\ProgramData\aim rect help creative
-
[ Fichier Hosts ] .. Restaure!
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing des dossiers dans Local
[31/05/2008|10:35] C:\Users\laurence\AppData\Local\Adobe
[25/06/2008|13:03] C:\Users\laurence\AppData\Local\Apple
[15/07/2008|16:22] C:\Users\laurence\AppData\Local\Apple Computer
[30/05/2008|10:35] C:\Users\laurence\AppData\Local\Application Data
[14/08/2008|09:47] C:\Users\laurence\AppData\Local\Apps
[07/06/2008|22:38] C:\Users\laurence\AppData\Local\Ares
[16/07/2008|08:53] C:\Users\laurence\AppData\Local\d3d9caps.dat
[25/08/2008|23:46] C:\Users\laurence\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[17/06/2008|20:58] C:\Users\laurence\AppData\Local\DNA
[27/08/2008|09:22] C:\Users\laurence\AppData\Local\GDIPFONTCACHEV1.DAT
[30/05/2008|10:44] C:\Users\laurence\AppData\Local\Google
[30/05/2008|10:35] C:\Users\laurence\AppData\Local\Historique
[15/09/2008|20:19] C:\Users\laurence\AppData\Local\IconCache.db
[19/08/2008|23:08] C:\Users\laurence\AppData\Local\Microsoft
[13/09/2008|16:40] C:\Users\laurence\AppData\Local\Microsoft Games
[02/06/2008|18:46] C:\Users\laurence\AppData\Local\Microsoft Help
[31/05/2008|21:28] C:\Users\laurence\AppData\Local\Steam
[16/09/2008|13:46] C:\Users\laurence\AppData\Local\Temp
[30/05/2008|10:35] C:\Users\laurence\AppData\Local\Temporary Internet Files
[30/05/2008|11:13] C:\Users\laurence\AppData\Local\VirtualStore
--------------------\\ Tâches planifiées dans C:\Windows\tasks
[16/09/2008 13:45][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{A31FB9E1-97C1-41AE-87ED-247AAE57FA51}.job
[16/09/2008 13:45][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{171E8C37-9FEC-447B-90FD-BEFC693B9240}.job
[16/09/2008 10:28][--ah-----] C:\Windows\tasks\SA.DAT
[16/09/2008 02:08][--a------] C:\Windows\tasks\SCHEDLGU.TXT
--------------------\\ Listing des dossiers dans C:\ProgramData
[02/06/2007|00:54] C:\ProgramData\{623D32E9-0C62-4453-AD44-98B31F52A5E1}
[09/06/2008|18:59] C:\ProgramData\Adobe
[25/06/2008|13:03] C:\ProgramData\Apple
[25/06/2008|13:04] C:\ProgramData\Apple Computer
[30/05/2008|10:31] C:\ProgramData\Application Data
[20/08/2008|15:09] C:\ProgramData\AVS4YOU
[02/09/2008|21:23] C:\ProgramData\BOONTY
[30/05/2008|10:31] C:\ProgramData\Bureau
[02/06/2008|16:43] C:\ProgramData\CanonBJ
[30/05/2008|10:31] C:\ProgramData\Documents
[18/06/2008|21:40] C:\ProgramData\DVD Shrink
[30/05/2008|10:31] C:\ProgramData\Favoris
[01/07/2008|18:52] C:\ProgramData\Google
[02/06/2007|01:16] C:\ProgramData\Hewlett-Packard
[02/06/2007|00:37] C:\ProgramData\HP
[02/06/2007|00:38] C:\ProgramData\hpzinstall.log
[02/06/2008|16:48] C:\ProgramData\InstallShield
[31/08/2008|21:38] C:\ProgramData\inter time mp3.dhdkxv
[30/05/2008|10:31] C:\ProgramData\Menu D‚marrer
[31/08/2008|22:24] C:\ProgramData\Messenger Plus!
[30/05/2008|11:09] C:\ProgramData\Microsoft
[11/09/2008|00:37] C:\ProgramData\Microsoft Help
[30/05/2008|10:31] C:\ProgramData\ModŠles
[02/06/2007|00:47] C:\ProgramData\muvee Technologies
[20/06/2008|20:32] C:\ProgramData\NVIDIA
[02/06/2007|00:56] C:\ProgramData\PC-Doctor
[23/08/2008|20:02] C:\ProgramData\Roxio
[02/06/2008|16:48] C:\ProgramData\ScanSoft
[02/06/2008|16:46] C:\ProgramData\Skype
[05/06/2008|20:31] C:\ProgramData\Sonic
[30/05/2008|10:53] C:\ProgramData\Symantec
[03/09/2008|16:36] C:\ProgramData\Vga Error Four
[11/06/2008|12:46] C:\ProgramData\WLInstaller
--------------------\\ Listing des dossiers dans C:\Program Files
[02/06/2007|00:54] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[02/07/2008|10:07] C:\Program Files\Adobe
[30/05/2008|11:03] C:\Program Files\Alwil Software
[25/06/2008|13:03] C:\Program Files\Apple Software Update
[18/06/2008|21:39] C:\Program Files\a-squared Free
[20/08/2008|16:19] C:\Program Files\AviSynth 2.5
[20/08/2008|15:13] C:\Program Files\AVS4YOU
[18/06/2008|10:02] C:\Program Files\BitTorrent
[18/06/2008|21:19] C:\Program Files\BitTorrent Acceleration Patch
[02/06/2008|17:35] C:\Program Files\Canon
[02/06/2008|16:38] C:\Program Files\CanonBJ
[15/09/2008|18:42] C:\Program Files\CCleaner
[02/09/2008|21:23] C:\Program Files\Common Files
[21/08/2008|10:37] C:\Program Files\Conduit
[30/08/2008|15:58] C:\Program Files\DNA
[02/06/2007|09:41] C:\Program Files\EasyBits
[20/08/2008|16:18] C:\Program Files\eRightSoft
[30/05/2008|10:31] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[18/06/2008|09:46] C:\Program Files\Free Download Manager
[01/07/2008|20:08] C:\Program Files\Google
[02/06/2007|00:57] C:\Program Files\Hewlett-Packard
[02/06/2007|00:49] C:\Program Files\HP
[03/06/2008|22:58] C:\Program Files\InstallShield Installation Information
[29/07/2008|00:26] C:\Program Files\Internet Explorer
[01/07/2008|18:53] C:\Program Files\Jaquette Express
[21/07/2008|13:29] C:\Program Files\Java
[26/07/2008|01:24] C:\Program Files\LimeWire
[02/06/2008|12:23] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[28/08/2008|15:39] C:\Program Files\Microsoft Games
[02/06/2007|00:53] C:\Program Files\Microsoft Office
[11/09/2008|00:36] C:\Program Files\Microsoft Works
[02/06/2007|00:53] C:\Program Files\Microsoft.NET
[05/06/2008|15:16] C:\Program Files\Movie Maker
[02/11/2006|14:37] C:\Program Files\MSBuild
[02/06/2008|12:19] C:\Program Files\MSXML 4.0
[02/06/2007|00:47] C:\Program Files\muvee Technologies
[03/06/2008|23:13] C:\Program Files\No‰l Danjou
[21/08/2008|10:37] C:\Program Files\P2P_Torrent
[02/06/2007|01:10] C:\Program Files\PC-Doctor 5 for Windows
[25/06/2008|13:05] C:\Program Files\QuickTime
[02/06/2007|00:46] C:\Program Files\Real
[02/06/2007|00:32] C:\Program Files\Realtek
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[02/06/2007|00:45] C:\Program Files\Roxio
[02/06/2008|16:46] C:\Program Files\ScanSoft
[02/06/2007|00:59] C:\Program Files\Services en ligne
[27/06/2008|17:47] C:\Program Files\Sun
[14/06/2008|22:05] C:\Program Files\Teamspeak2_RC2
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[31/05/2008|17:43] C:\Program Files\Valve
[31/08/2008|21:38] C:\Program Files\Vga Error Four
[05/06/2008|15:16] C:\Program Files\Windows Calendar
[05/06/2008|15:16] C:\Program Files\Windows Collaboration
[05/06/2008|15:16] C:\Program Files\Windows Defender
[05/06/2008|15:16] C:\Program Files\Windows Journal
[30/05/2008|11:11] C:\Program Files\Windows Live
[29/08/2008|00:32] C:\Program Files\Windows Mail
[05/06/2008|15:16] C:\Program Files\Windows Media Player
[30/05/2008|10:31] C:\Program Files\Windows NT
[05/06/2008|15:16] C:\Program Files\Windows Photo Gallery
[05/06/2008|15:16] C:\Program Files\Windows Sidebar
[05/06/2008|14:46] C:\Program Files\WinRAR
[12/06/2008|15:04] C:\Program Files\Xvid
[15/09/2008|18:45] C:\Program Files\Yahoo!
--------------------\\ Listing des dossiers dans C:\Program Files\Common Files
[09/06/2008|18:59] C:\Program Files\Common Files\Adobe
[20/08/2008|15:13] C:\Program Files\Common Files\AVSMedia
[02/09/2008|21:23] C:\Program Files\Common Files\BOONTY Shared
[02/06/2007|00:53] C:\Program Files\Common Files\DESIGNER
[02/06/2007|00:37] C:\Program Files\Common Files\HP
[02/06/2008|16:48] C:\Program Files\Common Files\InstallShield
[27/06/2008|17:42] C:\Program Files\Common Files\Java
[02/06/2007|00:46] C:\Program Files\Common Files\LightScribe
[02/06/2007|00:45] C:\Program Files\Common Files\LS Getting Started
[20/08/2008|15:05] C:\Program Files\Common Files\microsoft shared
[02/06/2007|00:47] C:\Program Files\Common Files\muvee Technologies
[02/06/2007|00:44] C:\Program Files\Common Files\PX Storage Engine
[02/06/2007|00:46] C:\Program Files\Common Files\Real
[02/06/2007|00:44] C:\Program Files\Common Files\Roxio Shared
[02/06/2008|16:48] C:\Program Files\Common Files\ScanSoft Shared
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[03/06/2008|22:58] C:\Program Files\Common Files\snp2std
[02/06/2007|00:45] C:\Program Files\Common Files\Sonic Shared
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[12/09/2008|18:09] C:\Program Files\Common Files\Steam
[02/06/2007|00:45] C:\Program Files\Common Files\SureThing Shared
[30/05/2008|10:53] C:\Program Files\Common Files\Symantec Shared
[05/06/2008|15:16] C:\Program Files\Common Files\System
[30/05/2008|11:11] C:\Program Files\Common Files\WindowsLiveInstaller
[02/06/2007|00:46] C:\Program Files\Common Files\xing shared
--------------------\\ Process
( 57 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-16 13:46:58
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 2
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:5][D:4]-> C:\Users\laurence\AppData\Local\Temp
[F:84][D:0]-> C:\Users\laurence\AppData\Roaming\MICROS~1\Windows\Cookies
[F:2632][D:4]-> C:\Users\laurence\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:99][D:7]-> C:\$Recycle.Bin
1 - "C:\Lop SD\LopR_1.txt" - 16/09/2008|13:28 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 16/09/2008|13:48 - Option : [2]
--------------------\\ Fin du rapport a 13:48:16
[ UAC => 1 ]
Reposte un rapport Hijackthis.
Répondre à Angeldark
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:38:24, on 16/09/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\hp\support\hpsysdrv.exe
C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe
C:\WINDOWS\RtHDVCpl.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\ScanSoft\OmniPageSE4.0\OpWareSE4.exe
C:\WINDOWS\tsnp2std.exe
C:\WINDOWS\FixCamera.exe
C:\WINDOWS\vsnp2std.exe
C:\WINDOWS\System32\rundll32.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\System32\rundll32.exe
C:\Program Files\Internet Explorer\IEUser.exe
C:\Windows\system32\conime.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Windows Mail\WinMail.exe
C:\Users\laurence\Downloads\HiJackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr? [...] pf=desktop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr? [...] pf=desktop
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [hpsysdrv] c:\hp\support\hpsysdrv.exe
O4 - HKLM\..\Run: [OsdMaestro] "C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe"
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [HP Software Update] c:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe"
O4 - HKLM\..\Run: [tsnp2std] C:\Windows\tsnp2std.exe
O4 - HKLM\..\Run: [FixCamera] C:\WINDOWS\FixCamera.exe
O4 - HKLM\..\Run: [snp2std] C:\Windows\vsnp2std.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [Help Creative Meow City] "C:\ProgramData\inter time mp3.dhdkxv"
O4 - HKLM\..\RunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~2.0_0\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~2.0_0\bin\ssv.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O13 - Gopher Prefix:
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://appldnld.apple.com.edgesuit [...] plugin.cab
O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - c:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - c:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe
--
End of file - 7002 bytes
j'ai aussi un problème de connection internet, il rame mais pas quand on se connecte sur la messagerie (windows mail)
en fait je précise il rame à la 1ère connection
C'est apparemment ok.
Désinstalle correctement Avast! pour le remplacer par AntiVir.
Pourquoi changer ? Avast! vs AntiVir
Fais un scan complet puis poste le rapport en fin d'analyse.
AIDE : Tutorial sur l'antivirus AntiVir Personal Edition Classic
Répondre à Angeldark
scan avec antivir ?
Bah oui.
Répondre à Angeldark
ok je suis en train de le faire pour certains programme il me demande si je veux les mettre en quarantaine ou les supprimer : je les ai mis en quarantaine
Avira AntiVir Personal
Report file date: mercredi 17 septembre 2008 13:09
Scanning for 1621264 virus strains and unwanted programs.
Licensed to: Avira AntiVir PersonalEdition Classic
Serial number: 0000149996-ADJIE-0001
Platform: Windows Vista
Windows version: (Service Pack 1) [6.0.6001]
Boot mode: Normally booted
Username: SYSTEM
Computer name: PC-DE-LAURENCE
Version information:
BUILD.DAT : 8.1.0.331 16934 Bytes 12/08/2008 11:46:00
AVSCAN.EXE : 8.1.4.7 315649 Bytes 26/06/2008 08:57:53
AVSCAN.DLL : 8.1.4.0 40705 Bytes 26/05/2008 07:56:40
LUKE.DLL : 8.1.4.5 164097 Bytes 12/06/2008 12:44:19
LUKERES.DLL : 8.1.4.0 12033 Bytes 26/05/2008 07:58:52
ANTIVIR0.VDF : 6.40.0.0 11030528 Bytes 18/07/2007 10:33:34
ANTIVIR1.VDF : 7.0.5.1 8182784 Bytes 24/06/2008 13:54:15
ANTIVIR2.VDF : 7.0.6.153 3341312 Bytes 12/09/2008 11:08:09
ANTIVIR3.VDF : 7.0.6.170 133120 Bytes 17/09/2008 11:08:10
Engineversion : 8.1.1.28
AEVDF.DLL : 8.1.0.5 102772 Bytes 25/02/2008 09:58:21
AESCRIPT.DLL : 8.1.0.70 319866 Bytes 17/09/2008 11:08:17
AESCN.DLL : 8.1.0.23 119156 Bytes 10/07/2008 12:44:49
AERDL.DLL : 8.1.1.1 397683 Bytes 17/09/2008 11:08:16
AEPACK.DLL : 8.1.2.1 364917 Bytes 15/07/2008 12:58:35
AEOFFICE.DLL : 8.1.0.23 196987 Bytes 17/09/2008 11:08:15
AEHEUR.DLL : 8.1.0.51 1397111 Bytes 17/09/2008 11:08:14
AEHELP.DLL : 8.1.0.15 115063 Bytes 10/07/2008 12:44:48
AEGEN.DLL : 8.1.0.36 315764 Bytes 17/09/2008 11:08:12
AEEMU.DLL : 8.1.0.7 430452 Bytes 31/07/2008 08:33:21
AECORE.DLL : 8.1.1.11 172406 Bytes 17/09/2008 11:08:11
AEBB.DLL : 8.1.0.1 53617 Bytes 10/07/2008 12:44:48
AVWINLL.DLL : 1.0.0.12 15105 Bytes 09/07/2008 08:40:05
AVPREF.DLL : 8.0.2.0 38657 Bytes 16/05/2008 09:28:01
AVREP.DLL : 8.0.0.2 98344 Bytes 17/09/2008 11:08:10
AVREG.DLL : 8.0.0.1 33537 Bytes 09/05/2008 11:26:40
AVARKT.DLL : 1.0.0.23 307457 Bytes 12/02/2008 08:29:23
AVEVTLOG.DLL : 8.0.0.16 119041 Bytes 12/06/2008 12:27:49
SQLITE3.DLL : 3.3.17.1 339968 Bytes 22/01/2008 17:28:02
SMTPLIB.DLL : 1.2.0.23 28929 Bytes 12/06/2008 12:49:40
NETNT.DLL : 8.0.0.1 7937 Bytes 25/01/2008 12:05:10
RCIMAGE.DLL : 8.0.0.51 2371841 Bytes 12/06/2008 13:48:07
RCTEXT.DLL : 8.0.52.0 86273 Bytes 27/06/2008 13:34:37
Configuration settings for the scan:
Jobname..........................: Complete system scan
Configuration file...............: c:\program files\avira\antivir personaledition classic\sysscan.avp
Logging..........................: low
Primary action...................: interactive
Secondary action.................: ignore
Scan master boot sector..........: on
Scan boot sector.................: on
Boot sectors.....................: C:, D:,
Process scan.....................: on
Scan registry....................: on
Search for rootkits..............: off
Scan all files...................: Intelligent file selection
Scan archives....................: on
Recursion depth..................: 20
Smart extensions.................: on
Macro heuristic..................: on
File heuristic...................: medium
Start of the scan: mercredi 17 septembre 2008 13:09
The scan of running processes will be started
Scan process 'avscan.exe' - '1' Module(s) have been scanned
Scan process 'avcenter.exe' - '1' Module(s) have been scanned
Scan process 'avgnt.exe' - '1' Module(s) have been scanned
Scan process 'TrustedInstaller.exe' - '1' Module(s) have been scanned
Scan process 'avguard.exe' - '1' Module(s) have been scanned
Scan process 'sched.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'VSSVC.exe' - '1' Module(s) have been scanned
Scan process 'conime.exe' - '1' Module(s) have been scanned
Scan process 'usnsvc.exe' - '1' Module(s) have been scanned
Scan process 'unsecapp.exe' - '1' Module(s) have been scanned
Scan process 'WmiPrvSE.exe' - '1' Module(s) have been scanned
Scan process 'rundll32.exe' - '1' Module(s) have been scanned
Scan process 'sidebar.exe' - '1' Module(s) have been scanned
Scan process 'jusched.exe' - '1' Module(s) have been scanned
Scan process 'rundll32.exe' - '1' Module(s) have been scanned
Scan process 'vsnp2std.exe' - '1' Module(s) have been scanned
Scan process 'FixCamera.exe' - '1' Module(s) have been scanned
Scan process 'OpWareSE4.exe' - '1' Module(s) have been scanned
Scan process 'hpwuSchd2.exe' - '1' Module(s) have been scanned
Scan process 'RtHDVCpl.exe' - '1' Module(s) have been scanned
Scan process 'OSD.exe' - '1' Module(s) have been scanned
Scan process 'hpsysdrv.exe' - '1' Module(s) have been scanned
Scan process 'MSASCui.exe' - '1' Module(s) have been scanned
Scan process 'explorer.exe' - '1' Module(s) have been scanned
Scan process 'dwm.exe' - '1' Module(s) have been scanned
Scan process 'taskeng.exe' - '1' Module(s) have been scanned
Scan process 'WUDFHost.exe' - '1' Module(s) have been scanned
Scan process 'SearchIndexer.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'LSSrvc.exe' - '1' Module(s) have been scanned
Scan process 'a2service.exe' - '1' Module(s) have been scanned
Scan process 'taskeng.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'spoolsv.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'SLsvc.exe' - '1' Module(s) have been scanned
Scan process 'audiodg.exe' - '0' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'winlogon.exe' - '1' Module(s) have been scanned
Scan process 'lsm.exe' - '1' Module(s) have been scanned
Scan process 'lsass.exe' - '1' Module(s) have been scanned
Scan process 'services.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'wininit.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'smss.exe' - '1' Module(s) have been scanned
54 processes with 54 modules were scanned
Starting master boot sector scan:
Master boot sector HD0
[INFO] No virus was found!
Master boot sector HD1
[INFO] No virus was found!
[WARNING] System error [21]: Le périphérique n'est pas prêt.
[INFO] Please restart the search with Administrator rights
Master boot sector HD2
[INFO] No virus was found!
[WARNING] System error [21]: Le périphérique n'est pas prêt.
[INFO] Please restart the search with Administrator rights
Master boot sector HD3
[INFO] No virus was found!
[WARNING] System error [21]: Le périphérique n'est pas prêt.
[INFO] Please restart the search with Administrator rights
Master boot sector HD4
[INFO] No virus was found!
[WARNING] System error [21]: Le périphérique n'est pas prêt.
[INFO] Please restart the search with Administrator rights
Start scanning boot sectors:
Boot sector 'C:\'
[INFO] No virus was found!
Boot sector 'D:\'
[INFO] No virus was found!
Starting to scan the registry.
The registry was scanned ( '46' files ).
Starting the file scan:
Begin scan in 'C:\' <COMPAQ>
C:\hiberfil.sys
[WARNING] The file could not be opened!
C:\pagefile.sys
[WARNING] The file could not be opened!
C:\ProgramData\Vga Error Four\swyurzah.exe
[DETECTION] Is the TR/Dldr.Agen.531968 Trojan
[NOTE] The file was moved to '4949e8cc.qua'!
C:\Users\4nTh0nY\AppData\Local\Temp\bisF6AB.exe
[DETECTION] Is the TR/Dldr.Swizzor.HNV Trojan
[NOTE] The file was moved to '4943e95c.qua'!
Begin scan in 'D:\' <Recovery>
D:\autorun.inf
[DETECTION] Contains recognition pattern of the WORM/Autorun.VDJ worm
[NOTE] The file was moved to '4944f19b.qua'!
End of the scan: mercredi 17 septembre 2008 14:04
Used time: 55:29 Minute(s)
The scan has been done completely.
17479 Scanning directories
396610 Files were scanned
3 viruses and/or unwanted programs were found
0 Files were classified as suspicious:
0 files were deleted
0 files were repaired
3 files were moved to quarantine
0 files were renamed
2 Files cannot be scanned
396605 Files not concerned
3334 Archives were scanned
6 Warnings
3 Notes
Reposte un rapport Hijackthis.
Répondre à Angeldark
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:09:54, on 17/09/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\hp\support\hpsysdrv.exe
C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe
C:\WINDOWS\RtHDVCpl.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\ScanSoft\OmniPageSE4.0\OpWareSE4.exe
C:\WINDOWS\FixCamera.exe
C:\WINDOWS\vsnp2std.exe
C:\WINDOWS\System32\rundll32.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\WINDOWS\System32\rundll32.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\conime.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Windows Mail\WinMail.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\IEUser.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Users\laurence\Downloads\HiJackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr? [...] pf=desktop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr? [...] pf=desktop
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [hpsysdrv] c:\hp\support\hpsysdrv.exe
O4 - HKLM\..\Run: [OsdMaestro] "C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe"
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [HP Software Update] c:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe"
O4 - HKLM\..\Run: [tsnp2std] C:\Windows\tsnp2std.exe
O4 - HKLM\..\Run: [FixCamera] C:\WINDOWS\FixCamera.exe
O4 - HKLM\..\Run: [snp2std] C:\Windows\vsnp2std.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [Help Creative Meow City] "C:\ProgramData\inter time mp3.dhdkxv"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\RunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~2.0_0\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~2.0_0\bin\ssv.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O13 - Gopher Prefix:
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://appldnld.apple.com.edgesuit [...] plugin.cab
O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - c:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - c:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe
--
End of file - 6852 bytes
Refais un scan LopSD option 1, on termine.
Répondre à Angeldark
--------------------\\ Lop S&D 4.2.4-3 XP/Vista
Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : AMD Athlon(tm) 64 X2 Dual Core Processor 4400+ )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : laurence ( Not Administrator ! )
BOOT : Normal boot
C:\ (Local Disk) - NTFS - Total : 290 Go Free : 213 Go
D:\ (Local Disk) - NTFS - Total : 7 Go Free : 1 Go
E:\ (CD or DVD)
G:\ (USB)
H:\ (USB)
I:\ (USB)
J:\ (USB)
"C:\Lop SD" ( MAJ : 14-09-2008|22:40 )
Option : [1] ( 17/09/2008|20:02 )
[ UAC => 1 ]
--------------------\\ Listing des dossiers dans Local
[31/05/2008|10:35] C:\Users\laurence\AppData\Local\Adobe
[25/06/2008|13:03] C:\Users\laurence\AppData\Local\Apple
[15/07/2008|16:22] C:\Users\laurence\AppData\Local\Apple Computer
[30/05/2008|10:35] C:\Users\laurence\AppData\Local\Application Data
[14/08/2008|09:47] C:\Users\laurence\AppData\Local\Apps
[07/06/2008|22:38] C:\Users\laurence\AppData\Local\Ares
[16/07/2008|08:53] C:\Users\laurence\AppData\Local\d3d9caps.dat
[25/08/2008|23:46] C:\Users\laurence\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[17/06/2008|20:58] C:\Users\laurence\AppData\Local\DNA
[27/08/2008|09:22] C:\Users\laurence\AppData\Local\GDIPFONTCACHEV1.DAT
[30/05/2008|10:44] C:\Users\laurence\AppData\Local\Google
[30/05/2008|10:35] C:\Users\laurence\AppData\Local\Historique
[17/09/2008|13:01] C:\Users\laurence\AppData\Local\IconCache.db
[19/08/2008|23:08] C:\Users\laurence\AppData\Local\Microsoft
[13/09/2008|16:40] C:\Users\laurence\AppData\Local\Microsoft Games
[02/06/2008|18:46] C:\Users\laurence\AppData\Local\Microsoft Help
[31/05/2008|21:28] C:\Users\laurence\AppData\Local\Steam
[17/09/2008|20:01] C:\Users\laurence\AppData\Local\Temp
[30/05/2008|10:35] C:\Users\laurence\AppData\Local\Temporary Internet Files
[16/09/2008|14:38] C:\Users\laurence\AppData\Local\VirtualStore
--------------------\\ Tâches planifiées dans C:\Windows\tasks
[17/09/2008 20:00][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{A31FB9E1-97C1-41AE-87ED-247AAE57FA51}.job
[17/09/2008 20:00][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{171E8C37-9FEC-447B-90FD-BEFC693B9240}.job
[17/09/2008 13:03][--ah-----] C:\Windows\tasks\SA.DAT
[17/09/2008 13:01][--a------] C:\Windows\tasks\SCHEDLGU.TXT
--------------------\\ Listing des dossiers dans C:\ProgramData
[02/06/2007|00:54] C:\ProgramData\{623D32E9-0C62-4453-AD44-98B31F52A5E1}
[09/06/2008|18:59] C:\ProgramData\Adobe
[25/06/2008|13:03] C:\ProgramData\Apple
[25/06/2008|13:04] C:\ProgramData\Apple Computer
[30/05/2008|10:31] C:\ProgramData\Application Data
[17/09/2008|13:06] C:\ProgramData\Avira
[20/08/2008|15:09] C:\ProgramData\AVS4YOU
[02/09/2008|21:23] C:\ProgramData\BOONTY
[30/05/2008|10:31] C:\ProgramData\Bureau
[02/06/2008|16:43] C:\ProgramData\CanonBJ
[30/05/2008|10:31] C:\ProgramData\Documents
[18/06/2008|21:40] C:\ProgramData\DVD Shrink
[30/05/2008|10:31] C:\ProgramData\Favoris
[01/07/2008|18:52] C:\ProgramData\Google
[02/06/2007|01:16] C:\ProgramData\Hewlett-Packard
[02/06/2007|00:37] C:\ProgramData\HP
[02/06/2007|00:38] C:\ProgramData\hpzinstall.log
[02/06/2008|16:48] C:\ProgramData\InstallShield
[31/08/2008|21:38] C:\ProgramData\inter time mp3.dhdkxv
[30/05/2008|10:31] C:\ProgramData\Menu D‚marrer
[31/08/2008|22:24] C:\ProgramData\Messenger Plus!
[30/05/2008|11:09] C:\ProgramData\Microsoft
[11/09/2008|00:37] C:\ProgramData\Microsoft Help
[30/05/2008|10:31] C:\ProgramData\ModŠles
[02/06/2007|00:47] C:\ProgramData\muvee Technologies
[20/06/2008|20:32] C:\ProgramData\NVIDIA
[02/06/2007|00:56] C:\ProgramData\PC-Doctor
[23/08/2008|20:02] C:\ProgramData\Roxio
[02/06/2008|16:48] C:\ProgramData\ScanSoft
[02/06/2008|16:46] C:\ProgramData\Skype
[05/06/2008|20:31] C:\ProgramData\Sonic
[30/05/2008|10:53] C:\ProgramData\Symantec
[17/09/2008|13:21] C:\ProgramData\Vga Error Four
[11/06/2008|12:46] C:\ProgramData\WLInstaller
--------------------\\ Listing des dossiers dans C:\Program Files
[02/06/2007|00:54] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[02/07/2008|10:07] C:\Program Files\Adobe
[30/05/2008|11:03] C:\Program Files\Alwil Software
[25/06/2008|13:03] C:\Program Files\Apple Software Update
[18/06/2008|21:39] C:\Program Files\a-squared Free
[17/09/2008|13:06] C:\Program Files\Avira
[20/08/2008|16:19] C:\Program Files\AviSynth 2.5
[20/08/2008|15:13] C:\Program Files\AVS4YOU
[18/06/2008|10:02] C:\Program Files\BitTorrent
[18/06/2008|21:19] C:\Program Files\BitTorrent Acceleration Patch
[02/06/2008|17:35] C:\Program Files\Canon
[02/06/2008|16:38] C:\Program Files\CanonBJ
[15/09/2008|18:42] C:\Program Files\CCleaner
[02/09/2008|21:23] C:\Program Files\Common Files
[21/08/2008|10:37] C:\Program Files\Conduit
[30/08/2008|15:58] C:\Program Files\DNA
[02/06/2007|09:41] C:\Program Files\EasyBits
[20/08/2008|16:18] C:\Program Files\eRightSoft
[30/05/2008|10:31] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[18/06/2008|09:46] C:\Program Files\Free Download Manager
[01/07/2008|20:08] C:\Program Files\Google
[02/06/2007|00:57] C:\Program Files\Hewlett-Packard
[02/06/2007|00:49] C:\Program Files\HP
[03/06/2008|22:58] C:\Program Files\InstallShield Installation Information
[29/07/2008|00:26] C:\Program Files\Internet Explorer
[01/07/2008|18:53] C:\Program Files\Jaquette Express
[21/07/2008|13:29] C:\Program Files\Java
[26/07/2008|01:24] C:\Program Files\LimeWire
[02/06/2008|12:23] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[28/08/2008|15:39] C:\Program Files\Microsoft Games
[02/06/2007|00:53] C:\Program Files\Microsoft Office
[11/09/2008|00:36] C:\Program Files\Microsoft Works
[02/06/2007|00:53] C:\Program Files\Microsoft.NET
[05/06/2008|15:16] C:\Program Files\Movie Maker
[02/11/2006|14:37] C:\Program Files\MSBuild
[02/06/2008|12:19] C:\Program Files\MSXML 4.0
[02/06/2007|00:47] C:\Program Files\muvee Technologies
[03/06/2008|23:13] C:\Program Files\No‰l Danjou
[21/08/2008|10:37] C:\Program Files\P2P_Torrent
[02/06/2007|01:10] C:\Program Files\PC-Doctor 5 for Windows
[25/06/2008|13:05] C:\Program Files\QuickTime
[02/06/2007|00:46] C:\Program Files\Real
[02/06/2007|00:32] C:\Program Files\Realtek
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[02/06/2007|00:45] C:\Program Files\Roxio
[02/06/2008|16:46] C:\Program Files\ScanSoft
[02/06/2007|00:59] C:\Program Files\Services en ligne
[27/06/2008|17:47] C:\Program Files\Sun
[14/06/2008|22:05] C:\Program Files\Teamspeak2_RC2
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[31/05/2008|17:43] C:\Program Files\Valve
[31/08/2008|21:38] C:\Program Files\Vga Error Four
[05/06/2008|15:16] C:\Program Files\Windows Calendar
[05/06/2008|15:16] C:\Program Files\Windows Collaboration
[05/06/2008|15:16] C:\Program Files\Windows Defender
[05/06/2008|15:16] C:\Program Files\Windows Journal
[30/05/2008|11:11] C:\Program Files\Windows Live
[29/08/2008|00:32] C:\Program Files\Windows Mail
[05/06/2008|15:16] C:\Program Files\Windows Media Player
[30/05/2008|10:31] C:\Program Files\Windows NT
[05/06/2008|15:16] C:\Program Files\Windows Photo Gallery
[05/06/2008|15:16] C:\Program Files\Windows Sidebar
[05/06/2008|14:46] C:\Program Files\WinRAR
[12/06/2008|15:04] C:\Program Files\Xvid
[15/09/2008|18:45] C:\Program Files\Yahoo!
--------------------\\ Listing des dossiers dans C:\Program Files\Common Files
[09/06/2008|18:59] C:\Program Files\Common Files\Adobe
[20/08/2008|15:13] C:\Program Files\Common Files\AVSMedia
[02/09/2008|21:23] C:\Program Files\Common Files\BOONTY Shared
[02/06/2007|00:53] C:\Program Files\Common Files\DESIGNER
[02/06/2007|00:37] C:\Program Files\Common Files\HP
[02/06/2008|16:48] C:\Program Files\Common Files\InstallShield
[27/06/2008|17:42] C:\Program Files\Common Files\Java
[02/06/2007|00:46] C:\Program Files\Common Files\LightScribe
[02/06/2007|00:45] C:\Program Files\Common Files\LS Getting Started
[20/08/2008|15:05] C:\Program Files\Common Files\microsoft shared
[02/06/2007|00:47] C:\Program Files\Common Files\muvee Technologies
[02/06/2007|00:44] C:\Program Files\Common Files\PX Storage Engine
[02/06/2007|00:46] C:\Program Files\Common Files\Real
[02/06/2007|00:44] C:\Program Files\Common Files\Roxio Shared
[02/06/2008|16:48] C:\Program Files\Common Files\ScanSoft Shared
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[03/06/2008|22:58] C:\Program Files\Common Files\snp2std
[02/06/2007|00:45] C:\Program Files\Common Files\Sonic Shared
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[17/09/2008|16:58] C:\Program Files\Common Files\Steam
[02/06/2007|00:45] C:\Program Files\Common Files\SureThing Shared
[30/05/2008|10:53] C:\Program Files\Common Files\Symantec Shared
[05/06/2008|15:16] C:\Program Files\Common Files\System
[30/05/2008|11:11] C:\Program Files\Common Files\WindowsLiveInstaller
[02/06/2007|00:46] C:\Program Files\Common Files\xing shared
--------------------\\ Process
( 87 Processes )
iexplore.exe ~ [PID:6072]
iexplore.exe ~ [PID:5652]
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\Users\laurence\AppData\Roaming\MICROS~1\Windows\Cookies\laurence@advertstream[1].txt
C:\Users\laurence\AppData\Roaming\MICROS~1\Windows\Cookies\laurence@advertising[2].txt
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-17 20:02:54
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 2
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:14][D:6]-> C:\Users\laurence\AppData\Local\Temp
[F:207][D:1]-> C:\Users\laurence\AppData\Roaming\MICROS~1\Windows\Cookies
[F:2383][D:8]-> C:\Users\laurence\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:99][D:7]-> C:\$Recycle.Bin
1 - "C:\Lop SD\LopR_1.txt" - 16/09/2008|13:28 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 16/09/2008|13:48 - Option : [2]
3 - "C:\Lop SD\LopR_3.txt" - 17/09/2008|20:04 - Option : [1]
--------------------\\ Fin du rapport a 20:04:12
[ UAC => 1 ]
Re,
Copie (Ctrl+C) le texte se situant dans le cadre ci-dessous :
C:\ProgramData\inter time mp3.dhdkxv
|
- Relance Lop S&D.
- Choisis cette fois-ci l'option 4 (LopScript). Une page blanche va s'ouvrir, colle (Ctrl+V) le texte précedemment copié.
- Ferme cette page, il te sera demandé de l'enregistrer, accepte.
! Ne ferme pas la fenêtre lors de la suppression !
- Poste le rapport généré (C:\lopR.txt*)
(Si le Bureau ne réapparaît pas, presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide)
* le nom de la partition peut changer
Répondre à Angeldark
--------------------\\ Lop S&D 4.2.4-3 XP/Vista
Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : AMD Athlon(tm) 64 X2 Dual Core Processor 4400+ )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : laurence ( Not Administrator ! )
BOOT : Normal boot
C:\ (Local Disk) - NTFS - Total : 290 Go Free : 213 Go
D:\ (Local Disk) - NTFS - Total : 7 Go Free : 1 Go
E:\ (CD or DVD)
G:\ (USB)
H:\ (USB)
I:\ (USB)
J:\ (USB)
"C:\Lop SD" ( MAJ : 14-09-2008|22:40 )
Option : [4] ( 17/09/2008|20:26 )
[ UAC => 1 ]
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ Lop Script
C:\ProgramData\inter time mp3.dhdkxv
C:\Users\laurence\AppData\Roaming\MICROS~1\Windows\Cookies\laurence@advertstream[1].txt
C:\Users\laurence\AppData\Roaming\MICROS~1\Windows\Cookies\laurence@advertising[2].txt
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION
Supprime! - C:\ProgramData\inter time mp3.dhdkxv
Supprime! - C:\Users\laurence\AppData\Roaming\MICROS~1\Windows\Cookies\laurence@advertstream[1].txt
Supprime! - C:\Users\laurence\AppData\Roaming\MICROS~1\Windows\Cookies\laurence@advertising[2].txt
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing des dossiers dans Local
[31/05/2008|10:35] C:\Users\laurence\AppData\Local\Adobe
[25/06/2008|13:03] C:\Users\laurence\AppData\Local\Apple
[15/07/2008|16:22] C:\Users\laurence\AppData\Local\Apple Computer
[30/05/2008|10:35] C:\Users\laurence\AppData\Local\Application Data
[14/08/2008|09:47] C:\Users\laurence\AppData\Local\Apps
[07/06/2008|22:38] C:\Users\laurence\AppData\Local\Ares
[16/07/2008|08:53] C:\Users\laurence\AppData\Local\d3d9caps.dat
[25/08/2008|23:46] C:\Users\laurence\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[17/06/2008|20:58] C:\Users\laurence\AppData\Local\DNA
[27/08/2008|09:22] C:\Users\laurence\AppData\Local\GDIPFONTCACHEV1.DAT
[30/05/2008|10:44] C:\Users\laurence\AppData\Local\Google
[30/05/2008|10:35] C:\Users\laurence\AppData\Local\Historique
[17/09/2008|13:01] C:\Users\laurence\AppData\Local\IconCache.db
[19/08/2008|23:08] C:\Users\laurence\AppData\Local\Microsoft
[13/09/2008|16:40] C:\Users\laurence\AppData\Local\Microsoft Games
[02/06/2008|18:46] C:\Users\laurence\AppData\Local\Microsoft Help
[31/05/2008|21:28] C:\Users\laurence\AppData\Local\Steam
[17/09/2008|20:26] C:\Users\laurence\AppData\Local\Temp
[30/05/2008|10:35] C:\Users\laurence\AppData\Local\Temporary Internet Files
[16/09/2008|14:38] C:\Users\laurence\AppData\Local\VirtualStore
--------------------\\ Tâches planifiées dans C:\Windows\tasks
[17/09/2008 20:25][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{A31FB9E1-97C1-41AE-87ED-247AAE57FA51}.job
[17/09/2008 20:25][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{171E8C37-9FEC-447B-90FD-BEFC693B9240}.job
[17/09/2008 13:03][--ah-----] C:\Windows\tasks\SA.DAT
[17/09/2008 13:01][--a------] C:\Windows\tasks\SCHEDLGU.TXT
--------------------\\ Listing des dossiers dans C:\ProgramData
[02/06/2007|00:54] C:\ProgramData\{623D32E9-0C62-4453-AD44-98B31F52A5E1}
[09/06/2008|18:59] C:\ProgramData\Adobe
[25/06/2008|13:03] C:\ProgramData\Apple
[25/06/2008|13:04] C:\ProgramData\Apple Computer
[30/05/2008|10:31] C:\ProgramData\Application Data
[17/09/2008|13:06] C:\ProgramData\Avira
[20/08/2008|15:09] C:\ProgramData\AVS4YOU
[02/09/2008|21:23] C:\ProgramData\BOONTY
[30/05/2008|10:31] C:\ProgramData\Bureau
[02/06/2008|16:43] C:\ProgramData\CanonBJ
[30/05/2008|10:31] C:\ProgramData\Documents
[18/06/2008|21:40] C:\ProgramData\DVD Shrink
[30/05/2008|10:31] C:\ProgramData\Favoris
[01/07/2008|18:52] C:\ProgramData\Google
[02/06/2007|01:16] C:\ProgramData\Hewlett-Packard
[02/06/2007|00:37] C:\ProgramData\HP
[02/06/2007|00:38] C:\ProgramData\hpzinstall.log
[02/06/2008|16:48] C:\ProgramData\InstallShield
[30/05/2008|10:31] C:\ProgramData\Menu D‚marrer
[31/08/2008|22:24] C:\ProgramData\Messenger Plus!
[30/05/2008|11:09] C:\ProgramData\Microsoft
[11/09/2008|00:37] C:\ProgramData\Microsoft Help
[30/05/2008|10:31] C:\ProgramData\ModŠles
[02/06/2007|00:47] C:\ProgramData\muvee Technologies
[20/06/2008|20:32] C:\ProgramData\NVIDIA
[02/06/2007|00:56] C:\ProgramData\PC-Doctor
[23/08/2008|20:02] C:\ProgramData\Roxio
[02/06/2008|16:48] C:\ProgramData\ScanSoft
[02/06/2008|16:46] C:\ProgramData\Skype
[05/06/2008|20:31] C:\ProgramData\Sonic
[30/05/2008|10:53] C:\ProgramData\Symantec
[17/09/2008|13:21] C:\ProgramData\Vga Error Four
[11/06/2008|12:46] C:\ProgramData\WLInstaller
--------------------\\ Listing des dossiers dans C:\Program Files
[02/06/2007|00:54] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[02/07/2008|10:07] C:\Program Files\Adobe
[30/05/2008|11:03] C:\Program Files\Alwil Software
[25/06/2008|13:03] C:\Program Files\Apple Software Update
[18/06/2008|21:39] C:\Program Files\a-squared Free
[17/09/2008|13:06] C:\Program Files\Avira
[20/08/2008|16:19] C:\Program Files\AviSynth 2.5
[20/08/2008|15:13] C:\Program Files\AVS4YOU
[18/06/2008|10:02] C:\Program Files\BitTorrent
[18/06/2008|21:19] C:\Program Files\BitTorrent Acceleration Patch
[02/06/2008|17:35] C:\Program Files\Canon
[02/06/2008|16:38] C:\Program Files\CanonBJ
[15/09/2008|18:42] C:\Program Files\CCleaner
[02/09/2008|21:23] C:\Program Files\Common Files
[21/08/2008|10:37] C:\Program Files\Conduit
[30/08/2008|15:58] C:\Program Files\DNA
[02/06/2007|09:41] C:\Program Files\EasyBits
[20/08/2008|16:18] C:\Program Files\eRightSoft
[30/05/2008|10:31] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[18/06/2008|09:46] C:\Program Files\Free Download Manager
[01/07/2008|20:08] C:\Program Files\Google
[02/06/2007|00:57] C:\Program Files\Hewlett-Packard
[02/06/2007|00:49] C:\Program Files\HP
[03/06/2008|22:58] C:\Program Files\InstallShield Installation Information
[29/07/2008|00:26] C:\Program Files\Internet Explorer
[01/07/2008|18:53] C:\Program Files\Jaquette Express
[21/07/2008|13:29] C:\Program Files\Java
[26/07/2008|01:24] C:\Program Files\LimeWire
[02/06/2008|12:23] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[28/08/2008|15:39] C:\Program Files\Microsoft Games
[02/06/2007|00:53] C:\Program Files\Microsoft Office
[11/09/2008|00:36] C:\Program Files\Microsoft Works
[02/06/2007|00:53] C:\Program Files\Microsoft.NET
[05/06/2008|15:16] C:\Program Files\Movie Maker
[02/11/2006|14:37] C:\Program Files\MSBuild
[02/06/2008|12:19] C:\Program Files\MSXML 4.0
[02/06/2007|00:47] C:\Program Files\muvee Technologies
[03/06/2008|23:13] C:\Program Files\No‰l Danjou
[21/08/2008|10:37] C:\Program Files\P2P_Torrent
[02/06/2007|01:10] C:\Program Files\PC-Doctor 5 for Windows
[25/06/2008|13:05] C:\Program Files\QuickTime
[02/06/2007|00:46] C:\Program Files\Real
[02/06/2007|00:32] C:\Program Files\Realtek
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[02/06/2007|00:45] C:\Program Files\Roxio
[02/06/2008|16:46] C:\Program Files\ScanSoft
[02/06/2007|00:59] C:\Program Files\Services en ligne
[27/06/2008|17:47] C:\Program Files\Sun
[14/06/2008|22:05] C:\Program Files\Teamspeak2_RC2
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[31/05/2008|17:43] C:\Program Files\Valve
[31/08/2008|21:38] C:\Program Files\Vga Error Four
[05/06/2008|15:16] C:\Program Files\Windows Calendar
[05/06/2008|15:16] C:\Program Files\Windows Collaboration
[05/06/2008|15:16] C:\Program Files\Windows Defender
[05/06/2008|15:16] C:\Program Files\Windows Journal
[30/05/2008|11:11] C:\Program Files\Windows Live
[29/08/2008|00:32] C:\Program Files\Windows Mail
[05/06/2008|15:16] C:\Program Files\Windows Media Player
[30/05/2008|10:31] C:\Program Files\Windows NT
[05/06/2008|15:16] C:\Program Files\Windows Photo Gallery
[05/06/2008|15:16] C:\Program Files\Windows Sidebar
[05/06/2008|14:46] C:\Program Files\WinRAR
[12/06/2008|15:04] C:\Program Files\Xvid
[15/09/2008|18:45] C:\Program Files\Yahoo!
--------------------\\ Listing des dossiers dans C:\Program Files\Common Files
[09/06/2008|18:59] C:\Program Files\Common Files\Adobe
[20/08/2008|15:13] C:\Program Files\Common Files\AVSMedia
[02/09/2008|21:23] C:\Program Files\Common Files\BOONTY Shared
[02/06/2007|00:53] C:\Program Files\Common Files\DESIGNER
[02/06/2007|00:37] C:\Program Files\Common Files\HP
[02/06/2008|16:48] C:\Program Files\Common Files\InstallShield
[27/06/2008|17:42] C:\Program Files\Common Files\Java
[02/06/2007|00:46] C:\Program Files\Common Files\LightScribe
[02/06/2007|00:45] C:\Program Files\Common Files\LS Getting Started
[20/08/2008|15:05] C:\Program Files\Common Files\microsoft shared
[02/06/2007|00:47] C:\Program Files\Common Files\muvee Technologies
[02/06/2007|00:44] C:\Program Files\Common Files\PX Storage Engine
[02/06/2007|00:46] C:\Program Files\Common Files\Real
[02/06/2007|00:44] C:\Program Files\Common Files\Roxio Shared
[02/06/2008|16:48] C:\Program Files\Common Files\ScanSoft Shared
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[03/06/2008|22:58] C:\Program Files\Common Files\snp2std
[02/06/2007|00:45] C:\Program Files\Common Files\Sonic Shared
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[17/09/2008|16:58] C:\Program Files\Common Files\Steam
[02/06/2007|00:45] C:\Program Files\Common Files\SureThing Shared
[30/05/2008|10:53] C:\Program Files\Common Files\Symantec Shared
[05/06/2008|15:16] C:\Program Files\Common Files\System
[30/05/2008|11:11] C:\Program Files\Common Files\WindowsLiveInstaller
[02/06/2007|00:46] C:\Program Files\Common Files\xing shared
--------------------\\ Process
( 85 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-17 20:26:59
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 2
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:14][D:6]-> C:\Users\laurence\AppData\Local\Temp
[F:205][D:1]-> C:\Users\laurence\AppData\Roaming\MICROS~1\Windows\Cookies
[F:2424][D:8]-> C:\Users\laurence\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:99][D:7]-> C:\$Recycle.Bin
1 - "C:\Lop SD\LopR_1.txt" - 16/09/2008|13:28 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 16/09/2008|13:48 - Option : [2]
3 - "C:\Lop SD\LopR_3.txt" - 17/09/2008|20:04 - Option : [1]
4 - "C:\Lop SD\LopR_4.txt" - 17/09/2008|20:28 - Option : [4]
--------------------\\ Fin du rapport a 20:28:15
[ UAC => 1 ]
Reposte un rapport Hijackthis.
Répondre à Angeldark
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:33:20, on 18/09/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\hp\support\hpsysdrv.exe
C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe
C:\WINDOWS\RtHDVCpl.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\ScanSoft\OmniPageSE4.0\OpWareSE4.exe
C:\WINDOWS\FixCamera.exe
C:\WINDOWS\vsnp2std.exe
C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
C:\WINDOWS\System32\rundll32.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\WINDOWS\System32\rundll32.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Windows Mail\WinMail.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\IEUser.exe
C:\Windows\system32\conime.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Users\laurence\Downloads\HiJackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr? [...] pf=desktop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr? [...] pf=desktop
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [hpsysdrv] c:\hp\support\hpsysdrv.exe
O4 - HKLM\..\Run: [OsdMaestro] "C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe"
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [HP Software Update] c:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe"
O4 - HKLM\..\Run: [tsnp2std] C:\Windows\tsnp2std.exe
O4 - HKLM\..\Run: [FixCamera] C:\WINDOWS\FixCamera.exe
O4 - HKLM\..\Run: [snp2std] C:\Windows\vsnp2std.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [Help Creative Meow City] "C:\ProgramData\inter time mp3.dhdkxv"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\RunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~2.0_0\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~2.0_0\bin\ssv.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O13 - Gopher Prefix:
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://appldnld.apple.com.edgesuit [...] plugin.cab
O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - c:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - c:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe
--
End of file - 6862 bytes
D'autres soucis ?
Répondre à Angeldark
non c'est impec, un gros bisou et merci
Bon surf.
Répondre à Angeldark
merci à toi aussi
Il y a 2652 utilisateurs connus et inconnus. Pour voir la liste des connectés connus, cliquez ici.
