Votre question

Pubs CID Intenpestives

Tags :
  • Sécurité
Dernière réponse : dans Sécurité et virus
12 Octobre 2008 11:58:05

Bonjour, voila que je navigue sur Firefox 3 et il ya des pubs CID qui s'ouvre sur IE voila le rapport HijackThis.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:25:23, on 11/10/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Common Files\logishrd\LComMgr\Communications_Helper.exe
C:\Program Files\Logitech\QuickCam\Quickcam.exe
C:\Program Files\DigitalPersona\Bin\DPAgnt.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
C:\Users\Nabs\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe
C:\Program Files\PC Connectivity Solution\Transports\NclIVTBTSrv.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\conime.exe
C:\Windows\system32\Taskmgr.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Click-to-Call BHO - {5C255C8A-E604-49b4-9D64-90988571CECB} - C:\Program Files\Windows Live\Messenger\wlchtc.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe"
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam\Quickcam.exe" /hide
O4 - HKLM\..\Run: [DPAgnt] C:\Program Files\DigitalPersona\Bin\DPAgnt.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [BtTray] "C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [tickdale] "C:\ProgramData\Bags Start Start.x8ayocv"
O4 - HKCU\..\Run: [Base road long save] "C:\ProgramData\Active glue fast.pri3n"
O4 - HKCU\..\Run: [Nokia.PCSync] "C:\Program Files\Nokia\Nokia PC Suite 7\PCSync2.exe" /NoDialog
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - HKCU\..\Run: [Google Update] "C:\Users\Nabs\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Envoyer via Bluetooth - C:\Program Files\IVT Corporation\BlueSoleil\TransSend\IE\tsinfo.htm
O8 - Extra context menu item: Envoyer via message(&M)... - C:\Program Files\IVT Corporation\BlueSoleil\TransSend\IE\tssms.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O13 - Gopher Prefix:
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Windows\system32\skype4com.dll
O20 - Winlogon Notify: DPWLN - C:\Windows\system32\DPWLEvHd.dll
O22 - SharedTaskScheduler: Windows DreamScene - {E31004D1-A431-41B8-826F-E902F9D95C81} - C:\Windows\System32\DreamScene.dll
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: BlueSoleilCS - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: BsHelpCS - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe
O23 - Service: BsMobileCS - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BsMobileCS.exe
O23 - Service: Biometric Authentication Service (DpHost) - DigitalPersona, Inc. - C:\Program Files\DigitalPersona\Bin\DpHost.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe

--
End of file - 9130 bytes


Quel est la solution ?

Autres pages sur : pubs cid intenpestives

12 Octobre 2008 12:08:53

RAPPORT LOP SD


--------------------\\ Lop S&D 4.2.4-5 XP/Vista

Microsoft® Windows Vista™ Édition Intégrale ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Intel(R) Core(TM)2 Quad CPU Q6600 @ 2.40GHz )
BIOS : Default System BIOS
USER : Nabs ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 081011-0] 4.8.1229 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total : 74 Go Free : 12 Go
D:\ (Local Disk) - NTFS - Total : 298 Go Free : 274 Go
E:\ (CD or DVD)
F:\ (CD or DVD) - UDF - Total : 7 Go Free : 0 Go

"C:\Lop SD" ( MAJ : 02-10-2008|23:42 )
Option : [1] ( 12/10/2008|12:05 )

[ UAC => 1 ]

--------------------\\ Listing des dossiers dans Local

[17/07/2008|14:54] C:\Users\Nabs\AppData\Local\84756-11986-27475-00TC1-94865
[27/07/2008|18:31] C:\Users\Nabs\AppData\Local\Adobe
[06/08/2008|14:28] C:\Users\Nabs\AppData\Local\Ahead
[11/07/2008|19:20] C:\Users\Nabs\AppData\Local\Apple
[28/07/2008|21:52] C:\Users\Nabs\AppData\Local\Apple Computer
[11/07/2008|18:58] C:\Users\Nabs\AppData\Local\Application Data
[11/10/2008|21:09] C:\Users\Nabs\AppData\Local\Apps
[14/09/2008|18:53] C:\Users\Nabs\AppData\Local\bluesoleil
[14/09/2008|16:05] C:\Users\Nabs\AppData\Local\d3d9caps.dat
[11/10/2008|21:51] C:\Users\Nabs\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[20/07/2008|22:52] C:\Users\Nabs\AppData\Local\GDIPFONTCACHEV1.DAT
[12/10/2008|10:32] C:\Users\Nabs\AppData\Local\Google
[11/07/2008|18:58] C:\Users\Nabs\AppData\Local\Historique
[12/10/2008|03:20] C:\Users\Nabs\AppData\Local\IconCache.db
[12/10/2008|11:29] C:\Users\Nabs\AppData\Local\iTunesPrefs
[12/10/2008|02:16] C:\Users\Nabs\AppData\Local\Microsoft
[18/07/2008|13:59] C:\Users\Nabs\AppData\Local\Microsoft Games
[31/07/2008|12:28] C:\Users\Nabs\AppData\Local\Microsoft Help
[11/07/2008|19:08] C:\Users\Nabs\AppData\Local\Mozilla
[21/08/2008|21:21] C:\Users\Nabs\AppData\Local\Nero
[07/09/2008|17:45] C:\Users\Nabs\AppData\Local\rahistory.xml
[17/07/2008|14:55] C:\Users\Nabs\AppData\Local\tcbackup
[21/09/2008|17:25] C:\Users\Nabs\AppData\Local\tctmp.m4a
[12/10/2008|12:05] C:\Users\Nabs\AppData\Local\Temp
[11/07/2008|18:58] C:\Users\Nabs\AppData\Local\Temporary Internet Files
[12/07/2008|20:18] C:\Users\Nabs\AppData\Local\VirtualStore

--------------------\\ Tâches planifiées dans C:\Windows\tasks

[12/10/2008 00:20][--a------] C:\Windows\tasks\GoogleUpdateTaskUser.job
[11/10/2008 13:07][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{54A0DEBA-954C-43AA-BCC2-4D09C8182B6A}.job
[12/10/2008 10:31][--ah-----] C:\Windows\tasks\SA.DAT
[12/10/2008 03:21][--a------] C:\Windows\tasks\SCHEDLGU.TXT

--------------------\\ Listing des dossiers dans C:\ProgramData

[12/09/2008|16:58] C:\ProgramData\.zreglib
[04/10/2008|11:51] C:\ProgramData\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[12/09/2008|22:02] C:\ProgramData\Active glue fast.pri3n
[27/07/2008|18:30] C:\ProgramData\Adobe
[11/07/2008|19:16] C:\ProgramData\Apple
[13/07/2008|16:47] C:\ProgramData\Apple Computer
[02/11/2006|15:00] C:\ProgramData\Application Data
[30/07/2008|19:33] C:\ProgramData\Azureus
[12/09/2008|22:02] C:\ProgramData\Bags Start Start.ibj1yj
[12/09/2008|22:02] C:\ProgramData\Bags Start Start.x8ayocv
[11/07/2008|18:53] C:\ProgramData\Bureau
[13/07/2008|16:54] C:\ProgramData\CopyTransControlCenter
[02/11/2006|15:00] C:\ProgramData\Desktop
[02/11/2006|15:00] C:\ProgramData\Documents
[03/08/2008|19:19] C:\ProgramData\DVD Shrink
[11/07/2008|18:53] C:\ProgramData\Favoris
[02/11/2006|15:00] C:\ProgramData\Favorites
[12/09/2008|22:02] C:\ProgramData\File dvd base road
[14/09/2008|15:45] C:\ProgramData\Installations
[19/09/2008|20:01] C:\ProgramData\Lavasoft
[12/07/2008|21:26] C:\ProgramData\Logishrd
[12/07/2008|21:11] C:\ProgramData\Logitech
[14/09/2008|18:14] C:\ProgramData\ma-config.com
[11/07/2008|18:53] C:\ProgramData\Menu D‚marrer
[17/09/2008|20:13] C:\ProgramData\Messenger Plus!
[17/09/2007|00:47] C:\ProgramData\MFCDTEST
[17/09/2007|00:50] C:\ProgramData\Microsoft
[30/09/2008|18:27] C:\ProgramData\Microsoft Help
[11/07/2008|18:53] C:\ProgramData\ModŠles
[06/08/2008|14:11] C:\ProgramData\Nero
[14/09/2008|16:59] C:\ProgramData\Nokia
[13/09/2008|12:07] C:\ProgramData\PC Suite
[28/07/2008|19:59] C:\ProgramData\SlySoft
[02/11/2006|15:00] C:\ProgramData\Start Menu
[02/11/2006|15:00] C:\ProgramData\Templates
[19/09/2008|19:15] C:\ProgramData\WindowsSearch
[11/07/2008|19:29] C:\ProgramData\WLInstaller

--------------------\\ Listing des dossiers dans C:\Program Files

[27/07/2008|18:28] C:\Program Files\Adobe
[12/07/2008|21:03] C:\Program Files\Alwil Software
[03/09/2008|15:30] C:\Program Files\Apple Software Update
[03/08/2008|20:15] C:\Program Files\AviSynth 2.5
[13/07/2008|17:01] C:\Program Files\BitLocker
[10/09/2008|18:23] C:\Program Files\Bonjour
[10/10/2008|18:43] C:\Program Files\Circle Developement
[19/09/2008|19:01] C:\Program Files\Common Files
[13/09/2008|11:56] C:\Program Files\DIFX
[12/10/2008|11:32] C:\Program Files\DigiDNA
[18/07/2008|18:38] C:\Program Files\DigitalPersona
[28/07/2008|19:32] C:\Program Files\DVD Decrypter
[28/07/2008|19:22] C:\Program Files\DVD Shrink
[12/10/2008|01:09] C:\Program Files\Easy GIF Animator
[03/08/2008|19:45] C:\Program Files\EdenSoftware
[30/07/2008|22:05] C:\Program Files\Everest Poker
[11/07/2008|18:53] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[03/08/2008|19:05] C:\Program Files\Free Audio Pack
[02/10/2008|20:25] C:\Program Files\Google
[27/07/2008|19:01] C:\Program Files\IKEA HomePlanner
[03/08/2008|20:06] C:\Program Files\ImTOO
[29/07/2008|14:53] C:\Program Files\InstallShield Installation Information
[13/07/2008|16:45] C:\Program Files\Internet Explorer
[04/10/2008|11:50] C:\Program Files\iPod
[04/10/2008|11:51] C:\Program Files\iTunes
[14/09/2008|18:43] C:\Program Files\IVT Corporation
[22/07/2008|16:13] C:\Program Files\Java
[19/09/2008|19:03] C:\Program Files\Lavasoft
[29/07/2008|14:53] C:\Program Files\LG Electronics
[29/07/2008|14:48] C:\Program Files\LG PC Suite 2
[22/07/2008|16:00] C:\Program Files\LimeWire
[12/07/2008|21:11] C:\Program Files\Logitech
[14/09/2008|18:14] C:\Program Files\ma-config.com
[03/08/2008|20:00] C:\Program Files\Makayama.com
[12/09/2008|22:01] C:\Program Files\Messenger Plus! Live
[21/09/2008|19:43] C:\Program Files\Microsoft
[13/07/2008|16:57] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[11/10/2008|21:15] C:\Program Files\Microsoft Games
[20/07/2008|22:41] C:\Program Files\Microsoft Office
[21/09/2008|19:45] C:\Program Files\Microsoft Office Outlook Connector
[11/10/2008|21:13] C:\Program Files\Microsoft Silverlight
[20/07/2008|22:41] C:\Program Files\Microsoft Visual Studio
[20/07/2008|22:42] C:\Program Files\Microsoft Works
[20/07/2008|22:36] C:\Program Files\Microsoft.NET
[12/07/2008|14:57] C:\Program Files\Movie Maker
[04/10/2008|11:47] C:\Program Files\Mozilla Firefox
[02/11/2006|14:35] C:\Program Files\MSBuild
[09/08/2008|14:47] C:\Program Files\MSXML 4.0
[06/08/2008|14:11] C:\Program Files\Nero
[14/09/2008|15:49] C:\Program Files\Nokia
[13/09/2008|11:53] C:\Program Files\PC Connectivity Solution
[12/10/2008|00:56] C:\Program Files\PhotoFiltre
[12/10/2008|00:59] C:\Program Files\PhotoFiltre Studio
[02/10/2008|20:26] C:\Program Files\Picasa2
[10/09/2008|18:21] C:\Program Files\QuickTime
[01/09/2008|17:13] C:\Program Files\QuickZip4
[03/09/2008|15:56] C:\Program Files\RealVNC
[03/08/2008|20:15] C:\Program Files\Red Kawa
[02/11/2006|14:35] C:\Program Files\Reference Assemblies
[28/07/2008|20:19] C:\Program Files\Safari
[12/09/2008|17:30] C:\Program Files\SlySoft
[24/09/2008|12:22] C:\Program Files\Steam
[11/10/2008|21:24] C:\Program Files\Trend Micro
[02/11/2006|15:00] C:\Program Files\Uninstall Information
[13/07/2008|16:36] C:\Program Files\VIA
[14/07/2008|20:09] C:\Program Files\VideoLAN
[30/07/2008|19:32] C:\Program Files\Vuze
[17/07/2008|14:53] C:\Program Files\Wide Angle Software
[12/07/2008|14:57] C:\Program Files\Windows Calendar
[12/07/2008|14:57] C:\Program Files\Windows Collaboration
[12/07/2008|14:57] C:\Program Files\Windows Defender
[12/07/2008|14:57] C:\Program Files\Windows Journal
[21/09/2008|19:41] C:\Program Files\Windows Live
[12/10/2008|02:17] C:\Program Files\Windows Live Safety Center
[16/08/2008|21:52] C:\Program Files\Windows Mail
[12/07/2008|14:57] C:\Program Files\Windows Media Player
[11/07/2008|18:53] C:\Program Files\Windows NT
[12/07/2008|14:57] C:\Program Files\Windows Photo Gallery
[12/07/2008|14:57] C:\Program Files\Windows Sidebar
[13/07/2008|16:53] C:\Program Files\WindSolutions
[26/07/2008|20:59] C:\Program Files\winpwn
[01/09/2008|15:50] C:\Program Files\winpwn-2.5
[01/09/2008|16:45] C:\Program Files\WinSCP

--------------------\\ Listing des dossiers dans C:\Program Files\Common Files

[27/07/2008|18:29] C:\Program Files\Common Files\Adobe
[10/09/2008|18:20] C:\Program Files\Common Files\Apple
[20/07/2008|22:41] C:\Program Files\Common Files\DESIGNER
[29/07/2008|14:49] C:\Program Files\Common Files\InstallShield
[22/07/2008|16:10] C:\Program Files\Common Files\Java
[12/07/2008|21:12] C:\Program Files\Common Files\logishrd
[18/09/2007|05:05] C:\Program Files\Common Files\microsoft shared
[06/08/2008|14:17] C:\Program Files\Common Files\Nero
[14/09/2008|15:46] C:\Program Files\Common Files\Nokia
[13/09/2008|12:00] C:\Program Files\Common Files\PCSuite
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[17/09/2008|19:47] C:\Program Files\Common Files\Steam
[21/09/2008|19:45] C:\Program Files\Common Files\System
[19/09/2008|19:01] C:\Program Files\Common Files\Windows Live
[11/07/2008|19:13] C:\Program Files\Common Files\WindowsLiveInstaller
[19/09/2008|19:00] C:\Program Files\Common Files\Wise Installation Wizard

--------------------\\ Process

( 77 Processes )

iexplore.exe ~ [PID:1344]

--------------------\\ Recherche avec S_Lop

C:\ProgramData\Active glue fast.pri3n
C:\ProgramData\Bags Start Start.ibj1yj
C:\ProgramData\Bags Start Start.x8ayocv
C:\Users\Nabs\AppData\Local\Temp\bis7DF2.exe

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\ProgramData\File dvd base road
C:\ProgramData\File dvd base road\BEND OWNS.exe
C:\Users\Nabs\AppData\Local\Temp\nsa285A.tmp
C:\Users\Nabs\AppData\Local\Temp\nsi472C.tmp
C:\Program Files\Circle Developement
C:\Users\Nabs\AppData\Roaming\MICROS~1\Windows\Cookies\nabs@adopt.euroclick[1].txt

--------------------\\ Verification du Registre

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Base road long save"="\"C:\\ProgramData\\Active glue fast.pri3n\""
"tickdale"="\"C:\\ProgramData\\Bags Start Start.x8ayocv\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-10-12 12:05:57
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
C:\Users\Nabs\AppData\Local\Apple Computer\Safari\Cache.db-journal 297208 bytes
scan completed successfully
hidden processes: 0
hidden files: 1

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:3077][D:91]-> C:\Users\Nabs\AppData\Local\Temp
[F:284][D:1]-> C:\Users\Nabs\AppData\Roaming\MICROS~1\Windows\Cookies
[F:948][D:4]-> C:\Users\Nabs\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:3][D:3]-> C:\$Recycle.Bin

1 - "C:\Lop SD\LopR_1.txt" - 12/10/2008|12:09 - Option : [1]

--------------------\\ Fin du rapport a 12:09:36
[ UAC => 1 ]


15 Octobre 2008 23:48:13

UP !!!!!!!!!!!!!
29 Octobre 2008 18:02:09

Merci de me repondre les gens...

Forum de m****
Tom's guide dans le monde
  • Allemagne
  • Italie
  • Irlande
  • Royaume Uni
  • Etats Unis
Suivre Tom's Guide
Inscrivez-vous à la Newsletter
  • ajouter à twitter
  • ajouter à facebook
  • ajouter un flux RSS