PUUUUUUUUUUUUUB

PUUUUUUUUUUUUUB - Sécurité - Virus

Recherche Recherche
Règles Règles
Aide Aide

TomsGuide.com : 700 000 inscrits répondent à toutes vos questions high-tech et informatique.
Pour obtenir de l'aide, inscrivez-vous gratuitement !

Se connecter | Inscription

Mot : Pseudo : Filtrer
Bas de page
Auteur	Sujet : PUUUUUUUUUUUUUB

ti_samsung

Profil : IDNaute

Plus d'informations

20-09-2008 à 20:50:13

C'EST CATA c'est vraiment CATASTROPHIQUE T.T
pouvez vous m'aider??? s'il vous plaît T.T
j'ai des pubs partout, alors voici mon Hijackthis! x)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:49:10, on 20/09/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
E:\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe
D:\Office\Office12\GrooveMonitor.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\WINDOWS\SOUNDMAN.EXE
D:\LexMark\Lexmark 3500-4500 Series\lxdimon.exe
D:\LexMark\Lexmark 3500-4500 Series\lxdiamon.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\DAEMON Tools Pro\DTProAgent.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
C:\WINDOWS\system32\lxdicoms.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
C:\Program Files\Java\jre1.6.0_05\bin\jucheck.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Abraham.ABRAHAMS\Desktop\fichier\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local;localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\Office\Office12\GRA8E1~1.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - E:\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - E:\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "E:\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "D:\Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [lxdimon.exe] "D:\LexMark\Lexmark 3500-4500 Series\lxdimon.exe"
O4 - HKLM\..\Run: [lxdiamon] "D:\LexMark\Lexmark 3500-4500 Series\lxdiamon.exe"
O4 - HKLM\..\Run: [FaxCenterServer] "D:\LexMark\Lexmark Fax Solutions\fm3032.exe" /s
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [FREE VIEW GRIM SOAP] C:\Documents and Settings\All Users.WINDOWS\Application Data\Meal Memo Free View\Fast proc.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [DAEMON Tools Pro Agent] "C:\Program Files\DAEMON Tools Pro\DTProAgent.exe"
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [EPSON Stylus DX6000 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIBIE.EXE /FU "C:\DOCUME~1\ABRAHA~1.ABR\LOCALS~1\Temp\E_S46.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [FASTDOG] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\ATOMPA~1\COOLBLUE.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [RunNarrator] Narrator.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [RunNarrator] Narrator.exe (User 'Default user')
O4 - Startup: OneNote 2007 - Capture d'écran et lancement.lnk = D:\Office\Office12\ONENOTEM.EXE
O4 - Global Startup: Logiciel Kodak EasyShare.lnk = C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O8 - Extra context menu item: Append to existing PDF - res://E:\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert link target to Adobe PDF - res://E:\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert link target to existing PDF - res://E:\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert selected links to Adobe PDF - res://E:\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert selected links to existing PDF - res://E:\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Convert selection to Adobe PDF - res://E:\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert selection to existing PDF - res://E:\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert to Adobe PDF - res://E:\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://D:\Office\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Office\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Office\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\Office\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn. [...] tPkMSN.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/bina [...] b56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/bina [...] b56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/ [...] wflash.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\Office\Office12\GR99D3~1.DLL
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: lxdiCATSCustConnectService - Lexmark International, Inc. - C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxdiserv.exe
O23 - Service: lxdi_device - - C:\WINDOWS\system32\lxdicoms.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe

--
End of file - 11262 bytes

merci d'avance =D

Liens sponsorisés

Inscrivez-vous ou connectez-vous pour masquer ceci.

Sham_Rock

<@_@>
Profil : Helper

Plus d'informations

20-09-2008 à 20:56:28

Masquer

bonsoir

Télécharge Lop S&D.exe sur ton bureau

Double-clique dessus pour lancer l'installation
Puis double-clique sur le raccourci Lop S&D présent sur ton bureau
Sélectionne la langue souhaitée , puis choisis l'Option 1 ( Recherche )
Patiente jusqu'à la fin du scan
Poste le rapport généré ( C:\lopR.txt )

( Si le Bureau ne réapparait pas presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide )

---------------
Prévention et protection
/!\Marre de la pub: Firefox sécurisé/!\

ti_samsung

Profil : IDNaute

Plus d'informations

21-09-2008 à 20:24:14

Masquer

-----------------------[ Lop S&D 4.2.1-8 XP/Vista ]---------------------

[ Windows XP (NT 5.1) Build 2600, Service Pack 3 ]
[ USER : Abraham ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 21/09/2008 | 20:20:14,86 ] [ PC : ABRAHAMS ]
[ MAJ : 24-06-2008 | 11:00 ]

-------------[ Listing des dossiers dans Application Data ]------------

[27/04/2008|17:56] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\Adobe
[06/07/2007|16:29] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\Apple Computer
[12/09/2008|17:34] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\atompartbias
[04/01/2008|16:21] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\DAEMON Tools Pro
[10/06/2007|23:00] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\desktop.ini
[20/04/2008|21:00] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\FastStone
[30/03/2008|17:26] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\FaxCtr
[10/06/2007|22:39] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\Identities
[14/06/2007|23:35] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\Macromedia
[22/08/2008|12:04] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\Microsoft
[26/08/2008|22:35] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\Mozilla
[13/06/2007|00:03] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\MSNInstaller
[26/08/2008|22:34] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\PnkBstrK.sys
[16/06/2007|19:14] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\Publish Providers
[15/02/2008|00:04] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\Real
[30/12/2007|19:06] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\Samsung
[14/06/2007|23:43] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\Screenshot Sender
[16/06/2007|19:14] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\Sony
[28/10/2007|21:01] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\Sony Setup
[04/09/2007|20:33] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\Sun
[21/09/2008|17:45] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\TeraCopy
[21/04/2008|20:59] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\U3
[16/02/2008|20:09] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\vlc

[11/06/2007|00:28] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Adobe
[04/01/2008|16:40] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Age of Empires 3
[11/06/2007|00:12] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\ALM
[06/07/2007|16:36] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Apple
[16/06/2007|20:10] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Apple Computer
[29/06/2008|02:15] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Avira
[16/06/2007|22:47] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\CompLiesWarnGram
[04/01/2008|16:20] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\DAEMON Tools Pro
[10/06/2007|23:00] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\desktop.ini
[29/01/2008|01:17] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\EPSON
[30/03/2008|16:04] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\FaxCtr
[11/06/2007|00:28] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\FLEXnet
[29/04/2008|23:51] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Installer.log
[28/03/2008|19:10] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Kaspersky Lab Setup Files
[18/03/2008|23:18] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Kodak
[10/08/2008|21:30] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\LauncherAccess.dt
[12/09/2008|17:34] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Meal Memo Free View
[10/07/2007|15:47] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Messenger Plus!
[26/08/2008|22:20] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Microsoft
[07/05/2008|16:36] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Microsoft Help
[30/09/2007|18:45] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Office Genuine Advantage
[06/07/2007|16:28] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\QTSBandwidthCache
[28/10/2007|22:12] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Sony
[26/08/2008|22:34] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Ubisoft
[11/06/2007|00:10] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Windows Genuine Advantage

[11/03/2006|13:40] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[11/03/2006|13:02] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[10/06/2007|23:00] C:\DOCUME~1\DEFAUL~1.WIN\APPLIC~1\desktop.ini
[10/06/2007|22:14] C:\DOCUME~1\DEFAUL~1.WIN\APPLIC~1\Microsoft

[11/03/2006|14:10] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[25/05/2007|23:52] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Microsoft

[29/10/2007|10:43] C:\DOCUME~1\LOCALS~1.NTA\APPLIC~1\Microsoft

[11/03/2006|13:07] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

[25/05/2007|23:52] C:\DOCUME~1\NETWOR~1.AUT\APPLIC~1\Microsoft

[18/07/2007|15:43] C:\DOCUME~1\NETWOR~1.NTA\APPLIC~1\Microsoft

----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

[21/09/2008 20:00][--ah-----] C:\WINDOWS\tasks\AEB63C7A91A9B62A.job
[23/08/2007 17:46][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[21/09/2008 16:28][--ah-----] C:\WINDOWS\tasks\SA.DAT
[04/08/2004 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

AEB63C7A91A9B62A.job <--> c:\docume~1\abraha~1.abr\applic~1\atompa~1\infocdromgreat.exe

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[18/06/2007|00:04] C:\Program Files\7-Zip
[06/07/2007|16:36] C:\Program Files\ACE Mega CoDecS Pack
[10/06/2007|23:28] C:\Program Files\Adobe
[18/06/2007|22:12] C:\Program Files\Adverts
[17/03/2008|20:59] C:\Program Files\Ahead
[27/05/2008|22:38] C:\Program Files\Alwil Software
[23/08/2007|17:46] C:\Program Files\Apple Software Update
[01/09/2006|17:25] C:\Program Files\ATI Technologies
[12/09/2008|17:33] C:\Program Files\atompartbias
[10/06/2007|23:28] C:\Program Files\Bonjour
[12/09/2008|17:33] C:\Program Files\Circle Developement
[27/06/2008|14:20] C:\Program Files\Common Files
[04/01/2008|16:22] C:\Program Files\DAEMON Tools Pro
[22/04/2006|22:59] C:\Program Files\directx
[20/04/2008|21:00] C:\Program Files\FastStone Image Viewer
[21/09/2008|18:03] C:\Program Files\InstallShield Installation Information
[29/06/2007|19:21] C:\Program Files\InterActual
[14/08/2008|21:35] C:\Program Files\Internet Explorer
[01/05/2008|00:12] C:\Program Files\Java
[28/03/2008|19:14] C:\Program Files\Kaspersky Lab
[18/03/2008|23:18] C:\Program Files\Kodak
[30/03/2008|16:06] C:\Program Files\Lexmark 3500-4500 Series
[22/04/2006|22:59] C:\Program Files\Ligos
[27/06/2008|14:20] C:\Program Files\Logitech
[28/08/2008|18:54] C:\Program Files\Messenger
[12/09/2008|17:33] C:\Program Files\Messenger Plus! Live
[11/03/2006|13:03] C:\Program Files\microsoft frontpage
[11/02/2007|00:49] C:\Program Files\Microsoft SQL Server
[11/03/2006|15:05] C:\Program Files\Microsoft Visual Studio
[16/06/2007|23:15] C:\Program Files\Microsoft Works
[16/06/2007|23:11] C:\Program Files\Microsoft.NET
[28/08/2008|18:48] C:\Program Files\Movie Maker
[21/09/2008|18:05] C:\Program Files\Mozilla Firefox
[16/06/2007|23:15] C:\Program Files\MSBuild
[23/08/2007|17:37] C:\Program Files\MSECACHE
[25/05/2007|23:44] C:\Program Files\MSN
[11/03/2006|12:50] C:\Program Files\MSN Gaming Zone
[12/09/2008|17:33] C:\Program Files\MSN Messenger
[30/12/2007|14:26] C:\Program Files\MSXML 4.0
[29/06/2008|15:23] C:\Program Files\Navilog1
[28/08/2008|18:43] C:\Program Files\NetMeeting
[11/03/2006|13:00] C:\Program Files\Online Services
[28/08/2008|18:43] C:\Program Files\Outlook Express
[13/12/2006|15:27] C:\Program Files\PLEOMAX PWC-2000
[25/04/2006|18:07] C:\Program Files\PowerQuest
[23/08/2007|17:47] C:\Program Files\QuickTime
[15/02/2008|00:02] C:\Program Files\Real
[07/03/2008|18:13] C:\Program Files\Realtek AC97
[02/04/2006|15:35] C:\Program Files\SuperCopier
[24/08/2008|20:51] C:\Program Files\TeraCopy
[19/06/2007|21:08] C:\Program Files\Total Training
[11/02/2007|00:49] C:\Program Files\Uninstall Information
[11/03/2006|14:03] C:\Program Files\Utilitaire de gestion du LAN Wifi IEEE 802.11g
[28/10/2007|22:12] C:\Program Files\Vstplugins
[04/01/2008|16:18] C:\Program Files\VVSN
[20/08/2007|23:48] C:\Program Files\Windows Installer Clean Up
[10/08/2007|09:38] C:\Program Files\Windows Live
[14/06/2007|23:55] C:\Program Files\Windows Media Connect 2
[28/08/2008|18:43] C:\Program Files\Windows Media Player
[28/08/2008|18:43] C:\Program Files\Windows NT
[11/03/2006|12:55] C:\Program Files\Windows Plus
[10/06/2007|22:13] C:\Program Files\WindowsUpdate
[27/08/2006|14:51] C:\Program Files\WinRAR
[11/03/2006|13:03] C:\Program Files\xerox

------[ Listing des dossiers dans C:\Program Files\Common Files ]------

[10/06/2007|23:52] C:\Program Files\Common Files\Adobe
[25/04/2006|19:42] C:\Program Files\Common Files\Adobe Systems Shared
[15/04/2006|11:41] C:\Program Files\Common Files\Ahead
[13/12/2006|15:29] C:\Program Files\Common Files\ArcSoft
[11/03/2006|15:05] C:\Program Files\Common Files\Designer
[03/09/2007|10:54] C:\Program Files\Common Files\InstallShield
[04/09/2007|20:31] C:\Program Files\Common Files\Java
[18/03/2008|23:16] C:\Program Files\Common Files\Kodak
[29/04/2008|23:47] C:\Program Files\Common Files\Logitech
[10/06/2007|23:21] C:\Program Files\Common Files\Macrovision Shared
[26/08/2008|22:33] C:\Program Files\Common Files\Microsoft Shared
[11/03/2006|12:59] C:\Program Files\Common Files\MSSoap
[11/03/2006|13:40] C:\Program Files\Common Files\ODBC
[13/12/2006|15:27] C:\Program Files\Common Files\PWC2000
[15/02/2008|00:03] C:\Program Files\Common Files\Real
[11/03/2006|12:59] C:\Program Files\Common Files\Services
[11/03/2006|13:40] C:\Program Files\Common Files\SpeechEngines
[28/08/2008|18:43] C:\Program Files\Common Files\System
[15/02/2008|00:03] C:\Program Files\Common Files\xing shared

---------------------------[ Process ]--------------------------

... 56

iexplore.exe ~ [924]
iexplore.exe ~ [1360]

----------------------[ Recherche avec S_Lop ]---------------------

C:\DOCUME~1\ABRAHA~1.ABR\LOCALS~1\Temp\bis4.exe

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\atompa~1
C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\atompa~1\COOLBLUE.exe
C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\atompa~1\Hope audio drv build.exe
C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\atompa~1\info cdrom great.exe
C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\atompa~1\ttfhdtuq.exe
C:\Program Files\atompa~1
C:\Program Files\Adverts
C:\Program Files\Circle Developement
C:\Program Files\Circle Developement\Uninstall.exe
C:\WINDOWS\Prefetch\INFO CDROM GREAT.EXE-1C91F147.pf
C:\DOCUME~1\ABRAHA~1.ABR\Cookies\abraham@www.adserver5[1].txt
C:\DOCUME~1\ABRAHA~1.ABR\Cookies\abraham@adopt.euroclick[2].txt
C:\DOCUME~1\ABRAHA~1.ABR\Cookies\abraham@pacificpoker[2].txt
C:\DOCUME~1\ABRAHA~1.ABR\Cookies\abraham@32vegas[1].txt
C:\DOCUME~1\ABRAHA~1.ABR\Cookies\abraham@banner.32vegas[2].txt
C:\DOCUME~1\ABRAHA~1.ABR\Cookies\abraham@888[1].txt
C:\DOCUME~1\ABRAHA~1.ABR\Cookies\abraham@888[2].txt
C:\WINDOWS\Tasks\AEB63C7A91A9B62A.job

----------------------[ Verification du Registre ]----------------------

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"FASTDOG"="C:\\DOCUME~1\\ABRAHA~1.ABR\\APPLIC~1\\ATOMPA~1\\COOLBLUE.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts MODIFIE

127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD
127.0.0.1 download.errorsafe.com ## added by CiD
127.0.0.1 download.systemdoctor.com ## added by CiD
127.0.0.1 download.winantispyware.com ## added by CiD
127.0.0.1 download.windrivecleaner.com ## added by CiD
127.0.0.1 download.winfixer.com ## added by CiD
127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 es.winantivirus.com ## added by CiD
127.0.0.1 fr.winantivirus.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 go.winantivirus.com ## added by CiD
127.0.0.1 hk.winantivirus.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 instlog.winantivirus.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 kb.winantivirus.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 secure.winantivirus.com ## added by CiD
127.0.0.1 support.winantivirus.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 ulog.winantivirus.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 utils.winantivirus.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winantivirus.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 www.drivecleaner.com ## added by CiD
127.0.0.1 www.errorprotector.com ## added by CiD
127.0.0.1 www.errorsafe.com ## added by CiD
127.0.0.1 www.systemdoctor.com ## added by CiD
127.0.0.1 www.utils.winfixer.com ## added by CiD
127.0.0.1 www.win-anti-virus-pro.com ## added by CiD
127.0.0.1 www.win-virus-pro.com ## added by CiD
127.0.0.1 www.winantispam.com ## added by CiD
127.0.0.1 www.winantispy.com ## added by CiD
127.0.0.1 www.winantispyware.com ## added by CiD
127.0.0.1 www.winantivirus.com ## added by CiD
127.0.0.1 www.winantiviruspro.com ## added by CiD
127.0.0.1 www.windrivecleaner.com ## added by CiD
127.0.0.1 www.windrivesafe.com ## added by CiD
127.0.0.1 www.winfixer.com ## added by CiD
127.0.0.1 www.winfixer2006.com ## added by CiD
127.0.0.1 www.winsoftware.com ## added by CiD

-> 72 ( 70 ## added by CiD )

/!\ 1 Not 127.0.0.1 !!

----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-21 20:22:12
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------

=> C:\Documents and Settings\Abraham.ABRAHAMS\Recent\Cracked.txt.lnk

[F:340][D:18]-> C:\DOCUME~1\ABRAHA~1.ABR\LOCALS~1\Temp
[F:207][D:0]-> C:\DOCUME~1\ABRAHA~1.ABR\Cookies
[F:2395][D:6]-> C:\DOCUME~1\ABRAHA~1.ABR\LOCALS~1\TEMPOR~1\content.IE5

--------------------[ Fin du rapport a 20:23:28,00 ]----------------------

MERCI ENCORE!!!!!!!!!!!
huhuhu

Sham_Rock

<@_@>
Profil : Helper

Plus d'informations

21-09-2008 à 21:53:42

Masquer

re

Relance Lop S&D

Choisis cette fois ci l'Option 2 ( Suppression )

Ne ferme pas la fenêtre lors de la suppression !

Poste le rapport généré ( C:\lopR.txt )

ajoute un nouveau log hijackthis stp

---------------
Prévention et protection
/!\Marre de la pub: Firefox sécurisé/!\

ti_samsung

Profil : IDNaute

Plus d'informations

29-09-2008 à 17:02:53

Masquer

-----------------------[ Lop S&D 4.2.1-8 XP/Vista ]---------------------

[ Windows XP (NT 5.1) Build 2600, Service Pack 3 ]
[ USER : Abraham ] [ "C:\Lop SD" ] [ Selection : 2 ]
[ 29/09/2008 | 16:58:46,25 ] [ PC : ABRAHAMS ]
[ MAJ : 24-06-2008 | 11:00 ]

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION /////////////////////////////

Supprime! - C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\atompa~1\COOLBLUE.exe
Supprime! - C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\atompa~1\Hope audio drv build.exe
Supprime! - C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\atompa~1\info cdrom great.exe
Supprime! - C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\atompa~1\ttfhdtuq.exe
Supprime! - C:\Program Files\Circle Developement\Uninstall.exe
Supprime! - C:\WINDOWS\Prefetch\INFO CDROM GREAT.EXE-1C91F147.pf
Supprime! - C:\DOCUME~1\ABRAHA~1.ABR\Cookies\abraham@www.adserver5[1].txt
Supprime! - C:\DOCUME~1\ABRAHA~1.ABR\Cookies\abraham@32vegas[1].txt
Supprime! - C:\DOCUME~1\ABRAHA~1.ABR\Cookies\abraham@banner.32vegas[2].txt
Supprime! - C:\DOCUME~1\ABRAHA~1.ABR\Cookies\abraham@888[1].txt
Supprime! - C:\DOCUME~1\ABRAHA~1.ABR\Cookies\abraham@888[2].txt
Supprime! - C:\WINDOWS\Tasks\AEB63C7A91A9B62A.job
Supprime! - C:\DOCUME~1\ABRAHA~1.ABR\LOCALS~1\Temp\bis4.exe
Supprime! - C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\atompa~1
Supprime! - C:\Program Files\atompa~1
Supprime! - C:\Program Files\Adverts
Supprime! - C:\Program Files\Circle Developement
RestaurÚ! - Fichier Hosts

//////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

-------------[ Listing des dossiers dans Application Data ]------------

[27/04/2008|17:56] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\Adobe
[06/07/2007|16:29] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\Apple Computer
[04/01/2008|16:21] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\DAEMON Tools Pro
[10/06/2007|23:00] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\desktop.ini
[20/04/2008|21:00] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\FastStone
[30/03/2008|17:26] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\FaxCtr
[10/06/2007|22:39] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\Identities
[14/06/2007|23:35] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\Macromedia
[22/08/2008|12:04] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\Microsoft
[26/08/2008|22:35] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\Mozilla
[13/06/2007|00:03] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\MSNInstaller
[26/08/2008|22:34] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\PnkBstrK.sys
[16/06/2007|19:14] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\Publish Providers
[15/02/2008|00:04] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\Real
[30/12/2007|19:06] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\Samsung
[14/06/2007|23:43] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\Screenshot Sender
[21/09/2008|20:26] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\SecuROM
[16/06/2007|19:14] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\Sony
[28/10/2007|21:01] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\Sony Setup
[21/09/2008|20:33] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\SPORE
[04/09/2007|20:33] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\Sun
[21/09/2008|20:32] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\TeraCopy
[21/04/2008|20:59] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\U3
[16/02/2008|20:09] C:\DOCUME~1\ABRAHA~1.ABR\APPLIC~1\vlc

[11/06/2007|00:28] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Adobe
[04/01/2008|16:40] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Age of Empires 3
[11/06/2007|00:12] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\ALM
[06/07/2007|16:36] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Apple
[16/06/2007|20:10] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Apple Computer
[29/06/2008|02:15] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Avira
[16/06/2007|22:47] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\CompLiesWarnGram
[04/01/2008|16:20] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\DAEMON Tools Pro
[10/06/2007|23:00] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\desktop.ini
[29/01/2008|01:17] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\EPSON
[30/03/2008|16:04] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\FaxCtr
[11/06/2007|00:28] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\FLEXnet
[29/04/2008|23:51] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Installer.log
[28/03/2008|19:10] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Kaspersky Lab Setup Files
[18/03/2008|23:18] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Kodak
[10/08/2008|21:30] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\LauncherAccess.dt
[12/09/2008|17:34] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Meal Memo Free View
[10/07/2007|15:47] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Messenger Plus!
[26/08/2008|22:20] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Microsoft
[07/05/2008|16:36] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Microsoft Help
[30/09/2007|18:45] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Office Genuine Advantage
[06/07/2007|16:28] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\QTSBandwidthCache
[28/10/2007|22:12] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Sony
[26/08/2008|22:34] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Ubisoft
[11/06/2007|00:10] C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Windows Genuine Advantage

[11/03/2006|13:40] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini
[11/03/2006|13:02] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[10/06/2007|23:00] C:\DOCUME~1\DEFAUL~1.WIN\APPLIC~1\desktop.ini
[10/06/2007|22:14] C:\DOCUME~1\DEFAUL~1.WIN\APPLIC~1\Microsoft

[11/03/2006|14:10] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[25/05/2007|23:52] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Microsoft

[29/10/2007|10:43] C:\DOCUME~1\LOCALS~1.NTA\APPLIC~1\Microsoft

[11/03/2006|13:07] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

[25/05/2007|23:52] C:\DOCUME~1\NETWOR~1.AUT\APPLIC~1\Microsoft

[18/07/2007|15:43] C:\DOCUME~1\NETWOR~1.NTA\APPLIC~1\Microsoft

----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]---------------

[23/08/2007 17:46][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[29/09/2008 16:47][--ah-----] C:\WINDOWS\tasks\SA.DAT
[04/08/2004 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

---------------[ Listing des dossiers dans C:\Program Files ]--------------

[18/06/2007|00:04] C:\Program Files\7-Zip
[06/07/2007|16:36] C:\Program Files\ACE Mega CoDecS Pack
[10/06/2007|23:28] C:\Program Files\Adobe
[17/03/2008|20:59] C:\Program Files\Ahead
[27/05/2008|22:38] C:\Program Files\Alwil Software
[23/08/2007|17:46] C:\Program Files\Apple Software Update
[01/09/2006|17:25] C:\Program Files\ATI Technologies
[10/06/2007|23:28] C:\Program Files\Bonjour
[27/06/2008|14:20] C:\Program Files\Common Files
[04/01/2008|16:22] C:\Program Files\DAEMON Tools Pro
[22/04/2006|22:59] C:\Program Files\directx
[21/09/2008|20:25] C:\Program Files\Electronic Arts
[20/04/2008|21:00] C:\Program Files\FastStone Image Viewer
[21/09/2008|20:25] C:\Program Files\InstallShield Installation Information
[29/06/2007|19:21] C:\Program Files\InterActual
[14/08/2008|21:35] C:\Program Files\Internet Explorer
[01/05/2008|00:12] C:\Program Files\Java
[28/03/2008|19:14] C:\Program Files\Kaspersky Lab
[18/03/2008|23:18] C:\Program Files\Kodak
[30/03/2008|16:06] C:\Program Files\Lexmark 3500-4500 Series
[22/04/2006|22:59] C:\Program Files\Ligos
[27/06/2008|14:20] C:\Program Files\Logitech
[28/08/2008|18:54] C:\Program Files\Messenger
[12/09/2008|17:33] C:\Program Files\Messenger Plus! Live
[11/03/2006|13:03] C:\Program Files\microsoft frontpage
[11/02/2007|00:49] C:\Program Files\Microsoft SQL Server
[11/03/2006|15:05] C:\Program Files\Microsoft Visual Studio
[16/06/2007|23:15] C:\Program Files\Microsoft Works
[16/06/2007|23:11] C:\Program Files\Microsoft.NET
[28/08/2008|18:48] C:\Program Files\Movie Maker
[29/09/2008|16:53] C:\Program Files\Mozilla Firefox
[16/06/2007|23:15] C:\Program Files\MSBuild
[23/08/2007|17:37] C:\Program Files\MSECACHE
[25/05/2007|23:44] C:\Program Files\MSN
[11/03/2006|12:50] C:\Program Files\MSN Gaming Zone
[12/09/2008|17:33] C:\Program Files\MSN Messenger
[30/12/2007|14:26] C:\Program Files\MSXML 4.0
[29/06/2008|15:23] C:\Program Files\Navilog1
[28/08/2008|18:43] C:\Program Files\NetMeeting
[11/03/2006|13:00] C:\Program Files\Online Services
[28/08/2008|18:43] C:\Program Files\Outlook Express
[13/12/2006|15:27] C:\Program Files\PLEOMAX PWC-2000
[25/04/2006|18:07] C:\Program Files\PowerQuest
[23/08/2007|17:47] C:\Program Files\QuickTime
[15/02/2008|00:02] C:\Program Files\Real
[07/03/2008|18:13] C:\Program Files\Realtek AC97
[02/04/2006|15:35] C:\Program Files\SuperCopier
[24/08/2008|20:51] C:\Program Files\TeraCopy
[19/06/2007|21:08] C:\Program Files\Total Training
[11/02/2007|00:49] C:\Program Files\Uninstall Information
[11/03/2006|14:03] C:\Program Files\Utilitaire de gestion du LAN Wifi IEEE 802.11g
[28/10/2007|22:12] C:\Program Files\Vstplugins
[04/01/2008|16:18] C:\Program Files\VVSN
[20/08/2007|23:48] C:\Program Files\Windows Installer Clean Up
[10/08/2007|09:38] C:\Program Files\Windows Live
[14/06/2007|23:55] C:\Program Files\Windows Media Connect 2
[28/08/2008|18:43] C:\Program Files\Windows Media Player
[28/08/2008|18:43] C:\Program Files\Windows NT
[11/03/2006|12:55] C:\Program Files\Windows Plus
[10/06/2007|22:13] C:\Program Files\WindowsUpdate
[27/08/2006|14:51] C:\Program Files\WinRAR
[11/03/2006|13:03] C:\Program Files\xerox

------[ Listing des dossiers dans C:\Program Files\Common Files ]------

[10/06/2007|23:52] C:\Program Files\Common Files\Adobe
[25/04/2006|19:42] C:\Program Files\Common Files\Adobe Systems Shared
[15/04/2006|11:41] C:\Program Files\Common Files\Ahead
[13/12/2006|15:29] C:\Program Files\Common Files\ArcSoft
[11/03/2006|15:05] C:\Program Files\Common Files\Designer
[03/09/2007|10:54] C:\Program Files\Common Files\InstallShield
[04/09/2007|20:31] C:\Program Files\Common Files\Java
[18/03/2008|23:16] C:\Program Files\Common Files\Kodak
[29/04/2008|23:47] C:\Program Files\Common Files\Logitech
[10/06/2007|23:21] C:\Program Files\Common Files\Macrovision Shared
[26/08/2008|22:33] C:\Program Files\Common Files\Microsoft Shared
[11/03/2006|12:59] C:\Program Files\Common Files\MSSoap
[11/03/2006|13:40] C:\Program Files\Common Files\ODBC
[13/12/2006|15:27] C:\Program Files\Common Files\PWC2000
[15/02/2008|00:03] C:\Program Files\Common Files\Real
[11/03/2006|12:59] C:\Program Files\Common Files\Services
[11/03/2006|13:40] C:\Program Files\Common Files\SpeechEngines
[28/08/2008|18:43] C:\Program Files\Common Files\System
[15/02/2008|00:03] C:\Program Files\Common Files\xing shared

---------------------------[ Process ]--------------------------

... 49

... OK !

----------------------[ Recherche avec S_Lop ]---------------------

Aucun fichier / dossier Lop trouvé !

-----------------[ Recherche de Fichiers / Dossiers Lop ]-----------------

C:\DOCUME~1\ABRAHA~1.ABR\Cookies\abraham@banner.cotedazurpalace[2].txt
C:\DOCUME~1\ABRAHA~1.ABR\Cookies\abraham@cotedazurpalace[2].txt
C:\DOCUME~1\ABRAHA~1.ABR\Cookies\abraham@adopt.euroclick[1].txt
C:\DOCUME~1\ABRAHA~1.ABR\Cookies\abraham@pacificpoker[1].txt

----------------------[ Verification du Registre ]----------------------

..... OK !

--------------------[ Verification du fichier Hosts ]---------------------

Fichier Hosts PROPRE

----------------[ Recherche de fichiers avec Catchme ]-----------------

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-29 17:00:31
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------[ Recherche d'autres infections ]---------------------

=> C:\Documents and Settings\Abraham.ABRAHAMS\Recent\Cracked.txt.lnk

[F:384][D:19]-> C:\DOCUME~1\ABRAHA~1.ABR\LOCALS~1\Temp
[F:211][D:0]-> C:\DOCUME~1\ABRAHA~1.ABR\Cookies
[F:2661][D:6]-> C:\DOCUME~1\ABRAHA~1.ABR\LOCALS~1\TEMPOR~1\content.IE5

--------------------[ Fin du rapport a 17:01:54,01 ]----------------------

dsl dsl dsl
je suis à fond dans ma Terminale S
donc dsl du retard.
haha tu sais quoi?
merci X D
See You!! =D

ti_samsung

Profil : IDNaute

Plus d'informations

29-09-2008 à 17:04:39

Masquer

avec un rapport HijackThis

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:04:11, on 29/09/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
E:\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe
D:\Office\Office12\GrooveMonitor.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\WINDOWS\SOUNDMAN.EXE
D:\LexMark\Lexmark 3500-4500 Series\lxdimon.exe
D:\LexMark\Lexmark 3500-4500 Series\lxdiamon.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\DAEMON Tools Pro\DTProAgent.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
C:\Program Files\Electronic Arts\EADM\Core.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
C:\WINDOWS\system32\lxdicoms.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
C:\Program Files\Java\jre1.6.0_05\bin\jucheck.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\explorer.exe
C:\Documents and Settings\Abraham.ABRAHAMS\Desktop\fichier\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local;localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\Office\Office12\GRA8E1~1.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - E:\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - E:\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "E:\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "D:\Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [lxdimon.exe] "D:\LexMark\Lexmark 3500-4500 Series\lxdimon.exe"
O4 - HKLM\..\Run: [lxdiamon] "D:\LexMark\Lexmark 3500-4500 Series\lxdiamon.exe"
O4 - HKLM\..\Run: [FaxCenterServer] "D:\LexMark\Lexmark Fax Solutions\fm3032.exe" /s
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [FREE VIEW GRIM SOAP] C:\Documents and Settings\All Users.WINDOWS\Application Data\Meal Memo Free View\Fast proc.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [DAEMON Tools Pro Agent] "C:\Program Files\DAEMON Tools Pro\DTProAgent.exe"
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [EPSON Stylus DX6000 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIBIE.EXE /FU "C:\DOCUME~1\ABRAHA~1.ABR\LOCALS~1\Temp\E_S46.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [EA Core] C:\Program Files\Electronic Arts\EADM\Core.exe -silent
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [RunNarrator] Narrator.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [RunNarrator] Narrator.exe (User 'Default user')
O4 - Startup: OneNote 2007 - Capture d'écran et lancement.lnk = D:\Office\Office12\ONENOTEM.EXE
O4 - Global Startup: Logiciel Kodak EasyShare.lnk = C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O8 - Extra context menu item: Append to existing PDF - res://E:\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert link target to Adobe PDF - res://E:\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert link target to existing PDF - res://E:\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert selected links to Adobe PDF - res://E:\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert selected links to existing PDF - res://E:\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Convert selection to Adobe PDF - res://E:\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert selection to existing PDF - res://E:\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert to Adobe PDF - res://E:\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://D:\Office\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Office\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Office\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\Office\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn. [...] tPkMSN.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/bina [...] b56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/bina [...] b56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/ [...] wflash.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\Office\Office12\GR99D3~1.DLL
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: lxdiCATSCustConnectService - Lexmark International, Inc. - C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxdiserv.exe
O23 - Service: lxdi_device - - C:\WINDOWS\system32\lxdicoms.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe

--
End of file - 11211 bytes

Sham_Rock

<@_@>
Profil : Helper

Plus d'informations

29-09-2008 à 18:09:48

Masquer

bonsoir

Sélectionne entièrement l'encadré ci-dessous , puis clique droit Copier

C:\Documents and Settings\All Users.WINDOWS\Application Data\Meal Memo Free View

Relance Lop S&D

Choisis cette fois ci l'Option 4 (LopScript)
Une page blanche va s'ouvrir , clique droit dessus et choisis Coller
Ferme la page , il te sera demandé de l'enregistrer , clique sur [Enregistrer]
Ne ferme pas la fenêtre lors de la suppression !
Poste le rapport généré (C:\lopR.txt)

---------------
Prévention et protection
/!\Marre de la pub: Firefox sécurisé/!\

ti_samsung

Les derniers dossiers

Le Top des applications en ligne

Quel récepteur TNT choisir ?

Appareil photo numérique : le meilleur de 2008

Comment sauvegarder toutes vos données ?

Les offres partenaires