Votre question

HELP pubs intempestives !!!

Tags :
  • Windows
  • Sécurité
Dernière réponse : dans Sécurité et virus
29 Octobre 2008 14:00:06

bonjour, je suis envahie depuis + d'un mois par des pubs CID...
Voici mon Hijackthis :

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:18:52, on 29/10/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
C:\Program Files\Fichiers communs\ArcSoft\Connection Service\Bin\ACService.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\oodag.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
C:\Program Files\Google\Gmail Notifier\gnotify.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe
C:\Program Files\Logitech\QuickCam10\QuickCam10.exe
C:\Program Files\Fichiers communs\Logitech\LComMgr\LVComSX.exe
C:\Program Files\Club-Internet\Agent Wi-Fi V2.1\McciTrayApp.exe
G:\Winamp\winampa.exe
C:\Program Files\D-Tools\daemon.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Fichiers communs\ArcSoft\Connection Service\Bin\ACDaemon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\PROGRA~1\INVISI~1\invtray.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\PROGRA~1\hpq\Shared\HPQTOA~1.EXE
C:\Program Files\Logitech\QuickCam10\COCIManager.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\MSN Messenger\livecall.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\AcroRd32.exe
G:\eMule\emule.exe
C:\Documents and Settings\KERNEIS Sandrine\Bureau\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.club-internet.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.files-ftp.com/~unicorni/phpBB2/index.php
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = http://proxy/autoconf
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Winamp Toolbar BHO - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.1.807.1746\swg.dll
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr\msntb.dll
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: Winamp Toolbar - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] C:\Program Files\Google\Gmail Notifier\gnotify.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe"
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam10\QuickCam10.exe" /hide
O4 - HKLM\..\Run: [LVCOMSX] "C:\Program Files\Fichiers communs\Logitech\LComMgr\LVComSX.exe"
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [Club-Internet_McciTrayApp] C:\Program Files\Club-Internet\Agent Wi-Fi V2.1\McciTrayApp.exe
O4 - HKLM\..\Run: [WinampAgent] G:\Winamp\winampa.exe
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [ArcSoft Connection Service] C:\Program Files\Fichiers communs\ArcSoft\Connection Service\Bin\ACDaemon.exe
O4 - HKLM\..\Run: [close surf mail dupe] C:\Documents and Settings\All Users\Application Data\Tick Find Close Surf\drive amen.exe
O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Cdrom bind] C:\DOCUME~1\KERNEI~1\APPLIC~1\ENCDEF~1\Antecashclock.exe
O4 - HKCU\..\Run: [Invisible Secrets 4] C:\PROGRA~1\INVISI~1\invtray.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Lancement rapide de Microsoft Office OneNote 2003.lnk = C:\Program Files\Microsoft Office\OFFICE11\ONENOTEM.EXE
O8 - Extra context menu item: &Winamp Toolbar Search - C:\Documents and Settings\All Users\Application Data\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.files-ftp.com/~unicorni/phpBB2/index.php
O16 - DPF: {200B3EE9-7242-4EFD-B1E4-D97EE825BA53} (VerifyGMN Class) - http://h20270.www2.hp.com/ediags/gmn/install/hpobjinsta...
O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} (Get_ActiveX Control) - https://h17000.www1.hp.com/ewfrf-JAVA/Secure/HPGetDownl...
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab569...
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft - C:\Program Files\Fichiers communs\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Unknown owner - C:\Program Files\iPod\bin\iPodService.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\Logitech\SrvLnch\SrvLnch.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe

--
End of file - 10573 bytes

Autres pages sur : help pubs intempestives

29 Octobre 2008 14:01:55

et voici mon rapport lopR :

--------------------\\ Lop S&D 4.2.4-8 XP/Vista

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : AMD Turion(tm) 64 Mobile Technology ML-32 )
BIOS : Ver 1.00PARTTBL
USER : KERNEIS Sandrine ( Administrator )
BOOT : Normal boot
Antivirus : Panda Internet Security 2008 12.00.00 (Not Activated)
Firewall : Panda Internet Security 2008 12.00.00 (Not Activated)
C:\ (Local Disk) - NTFS - Total:20 Go (Free:9 Go)
D:\ (Local Disk) - FAT32 - Total:5 Go (Free:0 Go)
E:\ (CD or DVD)
F:\ (CD or DVD)
G:\ (Local Disk) - NTFS - Total:66 Go (Free:42 Go)

"C:\Lop SD" ( MAJ : 27-10-2008|09:15 )
Option : [1] ( 29/10/2008|11:29 )

--------------------\\ Listing des dossiers dans APPLIC~1

[21/06/2008|12:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[14/07/2008|16:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[11/11/2006|20:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[14/03/2008|13:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\avg7
[13/05/2008|17:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Backup
[03/03/2007|08:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BoldSlowBatBoob
[09/02/2008|01:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink
[19/11/2006|15:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[11/11/2006|21:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[05/05/2007|15:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logitech
[01/12/2006|21:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[26/09/2007|15:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Micro Application
[19/11/2007|13:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[07/11/2007|19:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Motive
[07/11/2007|19:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MotiveSysIDs
[08/03/2008|23:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Real
[11/11/2006|19:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Samsung
[13/05/2008|17:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\sentinel
[17/11/2006|20:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony Corporation
[09/03/2008|17:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[05/09/2008|18:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Tick Find Close Surf
[08/11/2007|17:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Winamp Toolbar
[07/04/2007|16:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage

[10/11/2006|18:14] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[04/02/2008|12:57] C:\DOCUME~1\KERNEI~1\APPLIC~1\Adobe
[21/06/2008|12:12] C:\DOCUME~1\KERNEI~1\APPLIC~1\AdobeUM
[04/01/2007|14:23] C:\DOCUME~1\KERNEI~1\APPLIC~1\Ahead
[01/06/2007|14:50] C:\DOCUME~1\KERNEI~1\APPLIC~1\Apple Computer
[18/06/2008|22:55] C:\DOCUME~1\KERNEI~1\APPLIC~1\ArcSoft
[14/03/2008|13:34] C:\DOCUME~1\KERNEI~1\APPLIC~1\AVG7
[08/11/2007|16:56] C:\DOCUME~1\KERNEI~1\APPLIC~1\Dev-Cpp
[25/08/2008|16:44] C:\DOCUME~1\KERNEI~1\APPLIC~1\dvdcss
[22/09/2008|09:18] C:\DOCUME~1\KERNEI~1\APPLIC~1\Enc Default
[11/11/2006|21:01] C:\DOCUME~1\KERNEI~1\APPLIC~1\Google
[11/11/2006|21:34] C:\DOCUME~1\KERNEI~1\APPLIC~1\HP
[10/11/2006|18:25] C:\DOCUME~1\KERNEI~1\APPLIC~1\Identities
[02/03/2008|14:26] C:\DOCUME~1\KERNEI~1\APPLIC~1\Image Zone Express
[03/12/2006|09:40] C:\DOCUME~1\KERNEI~1\APPLIC~1\Macromedia
[17/11/2006|23:23] C:\DOCUME~1\KERNEI~1\APPLIC~1\Media Player Classic
[02/09/2008|20:02] C:\DOCUME~1\KERNEI~1\APPLIC~1\Microsoft
[12/11/2006|15:57] C:\DOCUME~1\KERNEI~1\APPLIC~1\Mozilla
[05/06/2007|14:16] C:\DOCUME~1\KERNEI~1\APPLIC~1\Publish Providers
[04/08/2008|10:23] C:\DOCUME~1\KERNEI~1\APPLIC~1\Real
[05/06/2007|14:13] C:\DOCUME~1\KERNEI~1\APPLIC~1\Sony
[17/11/2006|20:36] C:\DOCUME~1\KERNEI~1\APPLIC~1\Sony Corporation
[22/01/2008|18:41] C:\DOCUME~1\KERNEI~1\APPLIC~1\Sun
[12/11/2006|15:57] C:\DOCUME~1\KERNEI~1\APPLIC~1\Talkback
[17/06/2007|17:22] C:\DOCUME~1\KERNEI~1\APPLIC~1\vlc

[19/11/2006|15:56] C:\DOCUME~1\LOCALS~1\APPLIC~1\AVG7
[14/03/2008|13:38] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[14/03/2008|13:38] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[14/07/2008 16:31][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[29/10/2008 10:56][--ah-----] C:\WINDOWS\tasks\SA.DAT
[24/08/2001 13:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ MsgPlus SPONSOR INSTALLED !

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MsgPlus! Plugin]
"SponsorInstalled"=dword:00000000


--------------------\\ Listing des dossiers dans C:\Program Files

[16/02/2007|20:34] C:\Program Files\Adobe
[03/03/2007|08:24] C:\Program Files\Adverts
[01/02/2007|22:35] C:\Program Files\AliveMedia
[27/05/2008|21:13] C:\Program Files\Alwil Software
[14/07/2008|16:31] C:\Program Files\Apple Software Update
[11/11/2006|16:49] C:\Program Files\ATI Technologies
[13/05/2008|17:08] C:\Program Files\BitDefender
[25/03/2008|19:27] C:\Program Files\Blender Foundation
[10/11/2006|19:30] C:\Program Files\Broadcom
[05/09/2008|18:28] C:\Program Files\Circle Developement
[30/11/2007|19:55] C:\Program Files\Club-Internet
[07/11/2007|18:49] C:\Program Files\Common Files
[10/11/2006|18:10] C:\Program Files\ComPlus Applications
[19/11/2006|15:40] C:\Program Files\CONEXANT
[18/11/2007|17:23] C:\Program Files\D-Tools
[27/04/2007|20:53] C:\Program Files\DVD Shrink
[05/09/2008|18:28] C:\Program Files\Enc Default
[14/03/2008|23:28] C:\Program Files\Everest Poker
[21/06/2008|12:15] C:\Program Files\Fichiers communs
[27/05/2008|21:08] C:\Program Files\G DATA InternetSecurity
[05/06/2008|23:26] C:\Program Files\Google
[11/03/2008|19:30] C:\Program Files\Grisoft
[30/11/2007|19:54] C:\Program Files\Hewlett-Packard
[09/03/2008|18:39] C:\Program Files\HHD Software
[26/04/2007|09:08] C:\Program Files\HP
[19/11/2006|15:29] C:\Program Files\HPQ
[17/11/2007|23:56] C:\Program Files\iColorFolder
[18/06/2008|22:36] C:\Program Files\InstallShield Installation Information
[15/10/2008|22:03] C:\Program Files\Internet Explorer
[10/03/2008|15:49] C:\Program Files\Invisible Secrets 4
[10/07/2008|13:52] C:\Program Files\Java
[24/09/2008|10:53] C:\Program Files\Lavasoft Ad-aware
[03/02/2008|21:09] C:\Program Files\Logitech
[08/03/2008|23:18] C:\Program Files\Media Player Classic
[10/09/2008|15:17] C:\Program Files\Messenger
[05/09/2008|18:28] C:\Program Files\Messenger Plus! Live
[11/11/2006|20:46] C:\Program Files\MessengerPlus! 3
[10/11/2006|18:14] C:\Program Files\microsoft frontpage
[29/01/2007|21:12] C:\Program Files\Microsoft Office
[17/11/2006|15:30] C:\Program Files\Microsoft Visual Studio
[17/11/2006|15:30] C:\Program Files\Microsoft Works
[17/11/2006|15:27] C:\Program Files\Microsoft.NET
[10/11/2006|18:11] C:\Program Files\Movie Maker
[29/10/2008|11:06] C:\Program Files\Mozilla Firefox
[10/11/2006|18:09] C:\Program Files\MSN
[19/11/2006|15:22] C:\Program Files\MSN Apps
[10/11/2006|18:10] C:\Program Files\MSN Gaming Zone
[05/09/2008|18:28] C:\Program Files\MSN Messenger
[24/11/2006|23:13] C:\Program Files\MSXML 4.0
[17/12/2006|21:34] C:\Program Files\Nero
[10/11/2006|18:12] C:\Program Files\NetMeeting
[10/09/2008|15:17] C:\Program Files\NetWaiting
[10/11/2006|18:10] C:\Program Files\Online Services
[14/07/2008|10:09] C:\Program Files\OO Software
[18/06/2007|02:09] C:\Program Files\Outlook Express
[28/05/2008|10:08] C:\Program Files\PDFCreator
[28/05/2008|10:07] C:\Program Files\PDFCreator Toolbar
[08/03/2008|23:17] C:\Program Files\PhotoFiltre
[08/04/2007|15:52] C:\Program Files\QuickTime
[08/03/2008|23:18] C:\Program Files\Real Alternative
[05/05/2007|14:39] C:\Program Files\SAGEM
[11/11/2006|19:10] C:\Program Files\Samsung
[11/11/2006|21:02] C:\Program Files\Satsuki Decoder Pack
[05/05/2007|11:37] C:\Program Files\Securitoo
[10/11/2006|18:13] C:\Program Files\Services en ligne
[05/06/2007|13:53] C:\Program Files\Sony
[17/11/2006|20:33] C:\Program Files\Sony Corporation
[14/03/2008|13:44] C:\Program Files\Sophos SWEEP for NT
[19/11/2006|15:46] C:\Program Files\Texas Instruments Inc
[15/11/2007|23:14] C:\Program Files\TGTSoft
[10/11/2006|18:25] C:\Program Files\Uninstall Information
[17/06/2007|17:19] C:\Program Files\VideoLAN
[05/06/2007|14:16] C:\Program Files\VSTplugins
[05/05/2007|14:49] C:\Program Files\Wanadoo
[30/11/2007|19:55] C:\Program Files\Webtarot
[08/11/2007|18:10] C:\Program Files\Winamp
[08/11/2007|17:51] C:\Program Files\Winamp Toolbar
[29/08/2008|15:41] C:\Program Files\Windows Live
[16/02/2007|20:57] C:\Program Files\Windows Live Safety Center
[08/11/2007|17:51] C:\Program Files\Windows Media Player
[10/11/2006|18:10] C:\Program Files\Windows NT
[10/11/2006|18:13] C:\Program Files\WindowsUpdate
[18/07/2007|17:22] C:\Program Files\WinRAR
[11/11/2006|17:13] C:\Program Files\WinZip
[10/11/2006|18:14] C:\Program Files\xerox

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[21/06/2008|12:15] C:\Program Files\Fichiers communs\Adobe
[17/12/2006|21:37] C:\Program Files\Fichiers communs\Ahead
[18/06/2008|22:37] C:\Program Files\Fichiers communs\ArcSoft
[24/03/2008|12:46] C:\Program Files\Fichiers communs\BitDefender
[17/11/2006|15:30] C:\Program Files\Fichiers communs\DESIGNER
[11/11/2006|21:39] C:\Program Files\Fichiers communs\Hewlett-Packard
[26/04/2007|09:08] C:\Program Files\Fichiers communs\HP
[11/11/2006|16:53] C:\Program Files\Fichiers communs\InstallShield
[22/01/2008|18:38] C:\Program Files\Fichiers communs\Java
[10/11/2006|19:31] C:\Program Files\Fichiers communs\LightScribe
[05/05/2007|15:30] C:\Program Files\Fichiers communs\Logitech
[17/11/2006|15:38] C:\Program Files\Fichiers communs\Microsoft Shared
[07/11/2007|18:49] C:\Program Files\Fichiers communs\Motive
[10/11/2006|18:12] C:\Program Files\Fichiers communs\MSSoap
[10/11/2006|19:06] C:\Program Files\Fichiers communs\ODBC
[27/05/2008|20:24] C:\Program Files\Fichiers communs\Panda Software
[10/11/2006|18:12] C:\Program Files\Fichiers communs\Services
[17/11/2006|20:33] C:\Program Files\Fichiers communs\Sony Shared
[10/11/2006|19:06] C:\Program Files\Fichiers communs\SpeechEngines
[18/06/2007|02:02] C:\Program Files\Fichiers communs\System

--------------------\\ Process

( 52 Processes )

iexplore.exe ~ [PID:2704]

--------------------\\ Recherche avec S_Lop

C:\DOCUME~1\KERNEI~1\LOCALS~1\Temp\bis6.exe

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\DOCUME~1\ALLUSE~1\APPLIC~1\Tick Find Close Surf
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Tick Find Close Surf\drive amen.exe
C:\Program Files\Adverts
C:\Program Files\Circle Developement
C:\Program Files\Circle Developement\Uninstall.exe
C:\DOCUME~1\KERNEI~1\Cookies\kerneis sandrine@advertising[1].txt
C:\DOCUME~1\KERNEI~1\Cookies\kerneis sandrine@adin.bigpoint[1].txt
C:\DOCUME~1\KERNEI~1\Cookies\kerneis sandrine@bigpoint[1].txt
C:\DOCUME~1\KERNEI~1\Cookies\kerneis sandrine@fr.seafight.bigpoint[2].txt
C:\DOCUME~1\KERNEI~1\Cookies\kerneis sandrine@fr.thepimps.bigpoint[1].txt
C:\DOCUME~1\KERNEI~1\Cookies\kerneis sandrine@fr1.darkorbit.bigpoint[1].txt
C:\DOCUME~1\KERNEI~1\Cookies\kerneis sandrine@banner.casinoking[2].txt
C:\DOCUME~1\KERNEI~1\Cookies\kerneis sandrine@casinoking[1].txt
C:\DOCUME~1\KERNEI~1\Cookies\kerneis sandrine@banner.cotedazurpalace[2].txt
C:\DOCUME~1\KERNEI~1\Cookies\kerneis sandrine@cotedazurpalace[1].txt
C:\DOCUME~1\KERNEI~1\Cookies\kerneis sandrine@www.cotedazurpalace[1].txt
C:\DOCUME~1\KERNEI~1\Cookies\kerneis sandrine@adopt.euroclick[2].txt
C:\DOCUME~1\KERNEI~1\Cookies\kerneis sandrine@pacificpoker[2].txt
C:\DOCUME~1\KERNEI~1\Cookies\kerneis sandrine@partypoker[1].txt
C:\DOCUME~1\KERNEI~1\Cookies\kerneis sandrine@fr.seafight.bigpoint[2].txt
C:\DOCUME~1\KERNEI~1\Cookies\kerneis sandrine@32vegas[1].txt
C:\DOCUME~1\KERNEI~1\Cookies\kerneis sandrine@banner.32vegas[2].txt
C:\DOCUME~1\KERNEI~1\Cookies\kerneis sandrine@888[1].txt
C:\DOCUME~1\KERNEI~1\Cookies\kerneis sandrine@888[2].txt

--------------------\\ Verification du Registre

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"close surf mail dupe"="C:\\Documents and Settings\\All Users\\Application Data\\Tick Find Close Surf\\drive amen.exe"

--------------------\\ Verification du fichier Hosts

Fichier Hosts MODIFIE

127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD
127.0.0.1 download.errorsafe.com ## added by CiD
127.0.0.1 download.systemdoctor.com ## added by CiD
127.0.0.1 download.winantispyware.com ## added by CiD
127.0.0.1 download.windrivecleaner.com ## added by CiD
127.0.0.1 download.winfixer.com ## added by CiD
127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 es.winantivirus.com ## added by CiD
127.0.0.1 fr.winantivirus.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 go.winantivirus.com ## added by CiD
127.0.0.1 hk.winantivirus.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 instlog.winantivirus.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 kb.winantivirus.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 secure.winantivirus.com ## added by CiD
127.0.0.1 support.winantivirus.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 ulog.winantivirus.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 utils.winantivirus.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winantivirus.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 www.drivecleaner.com ## added by CiD
127.0.0.1 www.errorprotector.com ## added by CiD
127.0.0.1 www.errorsafe.com ## added by CiD
127.0.0.1 www.systemdoctor.com ## added by CiD
127.0.0.1 www.utils.winfixer.com ## added by CiD
127.0.0.1 www.win-anti-virus-pro.com ## added by CiD
127.0.0.1 www.win-virus-pro.com ## added by CiD
127.0.0.1 www.winantispam.com ## added by CiD
127.0.0.1 www.winantispy.com ## added by CiD
127.0.0.1 www.winantispyware.com ## added by CiD
127.0.0.1 www.winantivirus.com ## added by CiD
127.0.0.1 www.winantiviruspro.com ## added by CiD
127.0.0.1 www.windrivecleaner.com ## added by CiD
127.0.0.1 www.windrivesafe.com ## added by CiD
127.0.0.1 www.winfixer.com ## added by CiD
127.0.0.1 www.winfixer2006.com ## added by CiD
127.0.0.1 www.winsoftware.com ## added by CiD

-> 72 [ 70 ## added by CiD ]

--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-10-29 11:30:44
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
C:\DOCUME~1\KERNEI~1\LOCALS~1\APPLIC~1\Microsoft\Windows\GameExplorer\{DFEF49D9-FC95-4301-99B9-2FB91C6ABA06}\PlayTasks\1\Les Sims™ 2 : Boit@Look.lnk 1087 bytes hidden from API
scan completed successfully
hidden processes: 0
hidden files: 98

--------------------\\ Recherche d'autres infections

--------------------\\ Cracks & Keygens ..

C:\DOCUME~1\KERNEI~1\Local Settings\Temporary Internet Files\Content.IE5\63EB6H63\keyGen[1].htm
C:\DOCUME~1\KERNEI~1\Recent\Tous les Cracks & KeyGens Sims 2 (Academie, Nuits De Folie, La Bonne Affaire, Animaux & Cie) & le Nude Patch.lnk


[F:643][D:25]-> C:\DOCUME~1\KERNEI~1\LOCALS~1\Temp
[F:239][D:0]-> C:\DOCUME~1\KERNEI~1\Cookies
[F:10220][D:16]-> C:\DOCUME~1\KERNEI~1\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 29/10/2008|11:32 - Option : [1]

--------------------\\ Fin du rapport a 11:32:19


est-ce que quelqu'un pourrait m'aider s'il vous plait?????
a b 8 Sécurité
29 Octobre 2008 19:08:00

Bonjour,

Passe l'option 2 de LopS&D.
Contenus similaires
31 Octobre 2008 17:40:03

c'est à dire????
a b 8 Sécurité
31 Octobre 2008 18:15:31

Bah :

Citation :
Relance Lop S&D en double-cliquant sur le raccourci. Tape sur "2" puis valide en appuyant sur "Entrée".
[#ff0000]! Ne ferme pas la fenêtre lors de la suppression ! [/#f]
Un rapport sera généré, poste son contenu ici.
31 Octobre 2008 19:21:46


--------------------\\ Lop S&D 4.2.4-8 XP/Vista

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : AMD Turion(tm) 64 Mobile Technology ML-32 )
BIOS : Ver 1.00PARTTBL
USER : KERNEIS Sandrine ( Administrator )
BOOT : Normal boot
Antivirus : Panda Internet Security 2008 12.00.00 (Not Activated)
Firewall : Panda Internet Security 2008 12.00.00 (Not Activated)
C:\ (Local Disk) - NTFS - Total:20 Go (Free:9 Go)
D:\ (Local Disk) - FAT32 - Total:5 Go (Free:0 Go)
E:\ (CD or DVD)
F:\ (CD or DVD)
G:\ (Local Disk) - NTFS - Total:66 Go (Free:42 Go)

"C:\Lop SD" ( MAJ : 27-10-2008|09:15 )
Option : [2] ( 31/10/2008|19:16 )


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Tick Find Close Surf\drive amen.exe
Supprime! - C:\Program Files\Circle Developement\Uninstall.exe
Supprime! - C:\DOCUME~1\KERNEI~1\Cookies\kerneis sandrine@adin.bigpoint[1].txt
Supprime! - C:\DOCUME~1\KERNEI~1\Cookies\kerneis sandrine@bigpoint[1].txt
Supprime! - C:\DOCUME~1\KERNEI~1\Cookies\kerneis sandrine@fr.seafight.bigpoint[2].txt
Supprime! - C:\DOCUME~1\KERNEI~1\Cookies\kerneis sandrine@fr.thepimps.bigpoint[1].txt
Supprime! - C:\DOCUME~1\KERNEI~1\Cookies\kerneis sandrine@fr1.darkorbit.bigpoint[1].txt
Supprime! - C:\DOCUME~1\KERNEI~1\Cookies\kerneis sandrine@banner.casinoking[2].txt
Supprime! - C:\DOCUME~1\KERNEI~1\Cookies\kerneis sandrine@banner.cotedazurpalace[2].txt
Supprime! - C:\DOCUME~1\KERNEI~1\Cookies\kerneis sandrine@cotedazurpalace[1].txt
Supprime! - C:\DOCUME~1\KERNEI~1\Cookies\kerneis sandrine@www.cotedazurpalace[1].txt
Supprime! - C:\DOCUME~1\KERNEI~1\Cookies\kerneis sandrine@partypoker[1].txt
Supprime! - C:\DOCUME~1\KERNEI~1\Cookies\kerneis sandrine@32vegas[1].txt
Supprime! - C:\DOCUME~1\KERNEI~1\Cookies\kerneis sandrine@banner.32vegas[2].txt
Supprime! - C:\DOCUME~1\KERNEI~1\Cookies\kerneis sandrine@888[1].txt
Supprime! - C:\DOCUME~1\KERNEI~1\Cookies\kerneis sandrine@888[2].txt
Supprime! - C:\DOCUME~1\KERNEI~1\LOCALS~1\Temp\bis6.exe
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Tick Find Close Surf
Supprime! - C:\Program Files\Adverts
Supprime! - C:\Program Files\Circle Developement
-
[ Fichier Hosts ] .. Restaure!

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


--------------------\\ Listing des dossiers dans APPLIC~1

[21/06/2008|12:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[14/07/2008|16:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[11/11/2006|20:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[14/03/2008|13:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\avg7
[13/05/2008|17:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Backup
[03/03/2007|08:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BoldSlowBatBoob
[09/02/2008|01:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink
[19/11/2006|15:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[11/11/2006|21:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[05/05/2007|15:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logitech
[01/12/2006|21:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[26/09/2007|15:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Micro Application
[19/11/2007|13:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[07/11/2007|19:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Motive
[07/11/2007|19:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MotiveSysIDs
[08/03/2008|23:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Real
[11/11/2006|19:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Samsung
[13/05/2008|17:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\sentinel
[17/11/2006|20:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony Corporation
[09/03/2008|17:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[08/11/2007|17:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Winamp Toolbar
[07/04/2007|16:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage

[10/11/2006|18:14] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[04/02/2008|12:57] C:\DOCUME~1\KERNEI~1\APPLIC~1\Adobe
[21/06/2008|12:12] C:\DOCUME~1\KERNEI~1\APPLIC~1\AdobeUM
[04/01/2007|14:23] C:\DOCUME~1\KERNEI~1\APPLIC~1\Ahead
[01/06/2007|14:50] C:\DOCUME~1\KERNEI~1\APPLIC~1\Apple Computer
[18/06/2008|22:55] C:\DOCUME~1\KERNEI~1\APPLIC~1\ArcSoft
[14/03/2008|13:34] C:\DOCUME~1\KERNEI~1\APPLIC~1\AVG7
[08/11/2007|16:56] C:\DOCUME~1\KERNEI~1\APPLIC~1\Dev-Cpp
[25/08/2008|16:44] C:\DOCUME~1\KERNEI~1\APPLIC~1\dvdcss
[22/09/2008|09:18] C:\DOCUME~1\KERNEI~1\APPLIC~1\Enc Default
[11/11/2006|21:01] C:\DOCUME~1\KERNEI~1\APPLIC~1\Google
[11/11/2006|21:34] C:\DOCUME~1\KERNEI~1\APPLIC~1\HP
[10/11/2006|18:25] C:\DOCUME~1\KERNEI~1\APPLIC~1\Identities
[02/03/2008|14:26] C:\DOCUME~1\KERNEI~1\APPLIC~1\Image Zone Express
[03/12/2006|09:40] C:\DOCUME~1\KERNEI~1\APPLIC~1\Macromedia
[17/11/2006|23:23] C:\DOCUME~1\KERNEI~1\APPLIC~1\Media Player Classic
[02/09/2008|20:02] C:\DOCUME~1\KERNEI~1\APPLIC~1\Microsoft
[12/11/2006|15:57] C:\DOCUME~1\KERNEI~1\APPLIC~1\Mozilla
[05/06/2007|14:16] C:\DOCUME~1\KERNEI~1\APPLIC~1\Publish Providers
[04/08/2008|10:23] C:\DOCUME~1\KERNEI~1\APPLIC~1\Real
[05/06/2007|14:13] C:\DOCUME~1\KERNEI~1\APPLIC~1\Sony
[17/11/2006|20:36] C:\DOCUME~1\KERNEI~1\APPLIC~1\Sony Corporation
[22/01/2008|18:41] C:\DOCUME~1\KERNEI~1\APPLIC~1\Sun
[12/11/2006|15:57] C:\DOCUME~1\KERNEI~1\APPLIC~1\Talkback
[17/06/2007|17:22] C:\DOCUME~1\KERNEI~1\APPLIC~1\vlc

[19/11/2006|15:56] C:\DOCUME~1\LOCALS~1\APPLIC~1\AVG7
[14/03/2008|13:38] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[14/03/2008|13:38] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[14/07/2008 16:31][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[31/10/2008 11:28][--ah-----] C:\WINDOWS\tasks\SA.DAT
[24/08/2001 13:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ MsgPlus SPONSOR INSTALLED !

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MsgPlus! Plugin]
"SponsorInstalled"=dword:00000000


--------------------\\ Listing des dossiers dans C:\Program Files

[16/02/2007|20:34] C:\Program Files\Adobe
[01/02/2007|22:35] C:\Program Files\AliveMedia
[27/05/2008|21:13] C:\Program Files\Alwil Software
[14/07/2008|16:31] C:\Program Files\Apple Software Update
[11/11/2006|16:49] C:\Program Files\ATI Technologies
[13/05/2008|17:08] C:\Program Files\BitDefender
[25/03/2008|19:27] C:\Program Files\Blender Foundation
[10/11/2006|19:30] C:\Program Files\Broadcom
[30/11/2007|19:55] C:\Program Files\Club-Internet
[07/11/2007|18:49] C:\Program Files\Common Files
[10/11/2006|18:10] C:\Program Files\ComPlus Applications
[19/11/2006|15:40] C:\Program Files\CONEXANT
[30/10/2008|19:06] C:\Program Files\DAMN NFO Viewer
[18/11/2007|17:23] C:\Program Files\D-Tools
[27/04/2007|20:53] C:\Program Files\DVD Shrink
[05/09/2008|18:28] C:\Program Files\Enc Default
[14/03/2008|23:28] C:\Program Files\Everest Poker
[21/06/2008|12:15] C:\Program Files\Fichiers communs
[27/05/2008|21:08] C:\Program Files\G DATA InternetSecurity
[05/06/2008|23:26] C:\Program Files\Google
[11/03/2008|19:30] C:\Program Files\Grisoft
[30/11/2007|19:54] C:\Program Files\Hewlett-Packard
[09/03/2008|18:39] C:\Program Files\HHD Software
[26/04/2007|09:08] C:\Program Files\HP
[19/11/2006|15:29] C:\Program Files\HPQ
[17/11/2007|23:56] C:\Program Files\iColorFolder
[18/06/2008|22:36] C:\Program Files\InstallShield Installation Information
[15/10/2008|22:03] C:\Program Files\Internet Explorer
[10/03/2008|15:49] C:\Program Files\Invisible Secrets 4
[10/07/2008|13:52] C:\Program Files\Java
[24/09/2008|10:53] C:\Program Files\Lavasoft Ad-aware
[03/02/2008|21:09] C:\Program Files\Logitech
[08/03/2008|23:18] C:\Program Files\Media Player Classic
[10/09/2008|15:17] C:\Program Files\Messenger
[05/09/2008|18:28] C:\Program Files\Messenger Plus! Live
[11/11/2006|20:46] C:\Program Files\MessengerPlus! 3
[10/11/2006|18:14] C:\Program Files\microsoft frontpage
[29/01/2007|21:12] C:\Program Files\Microsoft Office
[17/11/2006|15:30] C:\Program Files\Microsoft Visual Studio
[17/11/2006|15:30] C:\Program Files\Microsoft Works
[17/11/2006|15:27] C:\Program Files\Microsoft.NET
[10/11/2006|18:11] C:\Program Files\Movie Maker
[31/10/2008|11:46] C:\Program Files\Mozilla Firefox
[10/11/2006|18:09] C:\Program Files\MSN
[19/11/2006|15:22] C:\Program Files\MSN Apps
[10/11/2006|18:10] C:\Program Files\MSN Gaming Zone
[05/09/2008|18:28] C:\Program Files\MSN Messenger
[24/11/2006|23:13] C:\Program Files\MSXML 4.0
[17/12/2006|21:34] C:\Program Files\Nero
[10/11/2006|18:12] C:\Program Files\NetMeeting
[10/09/2008|15:17] C:\Program Files\NetWaiting
[10/11/2006|18:10] C:\Program Files\Online Services
[14/07/2008|10:09] C:\Program Files\OO Software
[18/06/2007|02:09] C:\Program Files\Outlook Express
[28/05/2008|10:08] C:\Program Files\PDFCreator
[28/05/2008|10:07] C:\Program Files\PDFCreator Toolbar
[08/03/2008|23:17] C:\Program Files\PhotoFiltre
[08/04/2007|15:52] C:\Program Files\QuickTime
[08/03/2008|23:18] C:\Program Files\Real Alternative
[05/05/2007|14:39] C:\Program Files\SAGEM
[11/11/2006|19:10] C:\Program Files\Samsung
[11/11/2006|21:02] C:\Program Files\Satsuki Decoder Pack
[05/05/2007|11:37] C:\Program Files\Securitoo
[10/11/2006|18:13] C:\Program Files\Services en ligne
[05/06/2007|13:53] C:\Program Files\Sony
[17/11/2006|20:33] C:\Program Files\Sony Corporation
[14/03/2008|13:44] C:\Program Files\Sophos SWEEP for NT
[19/11/2006|15:46] C:\Program Files\Texas Instruments Inc
[15/11/2007|23:14] C:\Program Files\TGTSoft
[10/11/2006|18:25] C:\Program Files\Uninstall Information
[17/06/2007|17:19] C:\Program Files\VideoLAN
[05/06/2007|14:16] C:\Program Files\VSTplugins
[05/05/2007|14:49] C:\Program Files\Wanadoo
[30/11/2007|19:55] C:\Program Files\Webtarot
[08/11/2007|18:10] C:\Program Files\Winamp
[08/11/2007|17:51] C:\Program Files\Winamp Toolbar
[29/08/2008|15:41] C:\Program Files\Windows Live
[16/02/2007|20:57] C:\Program Files\Windows Live Safety Center
[08/11/2007|17:51] C:\Program Files\Windows Media Player
[10/11/2006|18:10] C:\Program Files\Windows NT
[10/11/2006|18:13] C:\Program Files\WindowsUpdate
[18/07/2007|17:22] C:\Program Files\WinRAR
[11/11/2006|17:13] C:\Program Files\WinZip
[10/11/2006|18:14] C:\Program Files\xerox

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[21/06/2008|12:15] C:\Program Files\Fichiers communs\Adobe
[17/12/2006|21:37] C:\Program Files\Fichiers communs\Ahead
[18/06/2008|22:37] C:\Program Files\Fichiers communs\ArcSoft
[24/03/2008|12:46] C:\Program Files\Fichiers communs\BitDefender
[17/11/2006|15:30] C:\Program Files\Fichiers communs\DESIGNER
[11/11/2006|21:39] C:\Program Files\Fichiers communs\Hewlett-Packard
[26/04/2007|09:08] C:\Program Files\Fichiers communs\HP
[11/11/2006|16:53] C:\Program Files\Fichiers communs\InstallShield
[22/01/2008|18:38] C:\Program Files\Fichiers communs\Java
[10/11/2006|19:31] C:\Program Files\Fichiers communs\LightScribe
[05/05/2007|15:30] C:\Program Files\Fichiers communs\Logitech
[17/11/2006|15:38] C:\Program Files\Fichiers communs\Microsoft Shared
[07/11/2007|18:49] C:\Program Files\Fichiers communs\Motive
[10/11/2006|18:12] C:\Program Files\Fichiers communs\MSSoap
[10/11/2006|19:06] C:\Program Files\Fichiers communs\ODBC
[27/05/2008|20:24] C:\Program Files\Fichiers communs\Panda Software
[10/11/2006|18:12] C:\Program Files\Fichiers communs\Services
[17/11/2006|20:33] C:\Program Files\Fichiers communs\Sony Shared
[10/11/2006|19:06] C:\Program Files\Fichiers communs\SpeechEngines
[18/06/2007|02:02] C:\Program Files\Fichiers communs\System

--------------------\\ Process

( 49 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\DOCUME~1\KERNEI~1\Cookies\kerneis sandrine@advertising[2].txt
C:\DOCUME~1\KERNEI~1\Cookies\kerneis sandrine@casinoking[2].txt
C:\DOCUME~1\KERNEI~1\Cookies\kerneis sandrine@adopt.euroclick[1].txt
C:\DOCUME~1\KERNEI~1\Cookies\kerneis sandrine@pacificpoker[1].txt

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-10-31 19:18:57
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
C:\DOCUME~1\KERNEI~1\LOCALS~1\APPLIC~1\Microsoft\Windows\GameExplorer\{DFEF49D9-FC95-4301-99B9-2FB91C6ABA06}\PlayTasks\1\Les Sims™ 2 : Boit@Look.lnk 861 bytes hidden from API
scan completed successfully
hidden processes: 0
hidden files: 98

--------------------\\ Recherche d'autres infections

--------------------\\ Cracks & Keygens ..

C:\DOCUME~1\KERNEI~1\Local Settings\Temporary Internet Files\Content.IE5\63EB6H63\keyGen[1].htm
C:\DOCUME~1\KERNEI~1\Recent\Consignes de Crackages.txt.lnk
C:\DOCUME~1\KERNEI~1\Recent\Tous les Cracks & KeyGens Sims 2 (Academie, Nuits De Folie, La Bonne Affaire, Animaux & Cie) & le Nude Patch.lnk


[F:669][D:27]-> C:\DOCUME~1\KERNEI~1\LOCALS~1\Temp
[F:227][D:0]-> C:\DOCUME~1\KERNEI~1\Cookies
[F:10531][D:16]-> C:\DOCUME~1\KERNEI~1\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 29/10/2008|11:32 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 31/10/2008|19:20 - Option : [2]

--------------------\\ Fin du rapport a 19:20:48
a b 8 Sécurité
31 Octobre 2008 19:29:26

Désinstalle le sponsor Messenger Plus.
Tom's guide dans le monde
  • Allemagne
  • Italie
  • Irlande
  • Royaume Uni
  • Etats Unis
Suivre Tom's Guide
Inscrivez-vous à la Newsletter
  • ajouter à twitter
  • ajouter à facebook
  • ajouter un flux RSS