Aller au contenu

gary69

Membres
 Afficher le profil  Afficher son activité

  • Compteur de contenus

    11

  • Inscription

  • Dernière visite

Autres informations

  • Mes langues
    Français, anglais

gary69's Achievements

Junior Member

Junior Member (3/12)

0

Réputation sur la communauté

  1. gary69
    merci et au revoir
  2. gary69
    Bonjour, quel utilitaire de défragmentation me conseille tu ?
  3. gary69
    Bonsoir ! Non, plus AUCUNE publicité, j'ai même l'impression que mon ordinateur va un peu plus vite dans l'ensemble ( ce n'est qu'une impression ?? ). En tout cas merci beaucoup . Je vais suivre vos conseils et garder Antivir pour voir ce que cela donne. Encore merci vous deux ! A+ Gary
  4. gary69
    Ca ne me dit rien du tout C'est pas grave j'ai tout mon temps Bonjour Pear! Scan antivir en MSE : AntiVir PersonalEdition Classic Report file date: jeudi 21 février 2008 12:00 Scanning for 1118450 virus strains and unwanted programs. Licensed to: Avira AntiVir PersonalEdition Classic Serial number: 0000149996-ADJIE-0001 Platform: Windows XP Windows version: (Service Pack 2) [5.1.2600] Username: ordi Computer name: XPSP2-691E7A1C4 Version information: BUILD.DAT : 270 15603 Bytes 19/09/2007 13:32:00 AVSCAN.EXE : 7.0.6.1 290856 Bytes 23/08/2007 13:16:29 AVSCAN.DLL : 7.0.6.0 49192 Bytes 16/08/2007 12:23:51 LUKE.DLL : 7.0.5.3 147496 Bytes 14/08/2007 15:32:47 LUKERES.DLL : 7.0.6.1 10280 Bytes 21/08/2007 12:35:20 ANTIVIR0.VDF : 6.40.0.0 11030528 Bytes 18/07/2007 14:27:15 ANTIVIR1.VDF : 7.0.1.95 3367424 Bytes 14/12/2007 20:07:14 ANTIVIR2.VDF : 7.0.2.113 1673728 Bytes 08/02/2008 20:07:14 ANTIVIR3.VDF : 7.0.2.169 308736 Bytes 20/02/2008 20:04:33 AVEWIN32.DLL : 7.6.0.67 3293696 Bytes 19/02/2008 20:07:14 AVWINLL.DLL : 1.0.0.7 14376 Bytes 26/02/2007 10:36:26 AVPREF.DLL : 7.0.2.2 25640 Bytes 18/07/2007 07:39:17 AVREP.DLL : 7.0.0.1 155688 Bytes 16/04/2007 13:16:24 AVPACK32.DLL : 7.6.0.3 360488 Bytes 19/02/2008 20:07:14 AVREG.DLL : 7.0.1.6 30760 Bytes 18/07/2007 07:17:06 AVARKT.DLL : 1.0.0.20 278568 Bytes 28/08/2007 12:26:33 AVEVTLOG.DLL : 7.0.0.20 86056 Bytes 18/07/2007 07:10:18 NETNT.DLL : 7.0.0.0 7720 Bytes 08/03/2007 11:09:42 RCIMAGE.DLL : 7.0.1.30 2342952 Bytes 07/08/2007 12:38:13 RCTEXT.DLL : 7.0.62.0 86056 Bytes 21/08/2007 12:50:37 SQLITE3.DLL : 3.3.17.1 339968 Bytes 23/07/2007 09:37:21 Configuration settings for the scan: Jobname..........................: Complete system scan Configuration file...............: c:\program files\avira\antivir personaledition classic\sysscan.avp Logging..........................: low Primary action...................: interactive Secondary action.................: ignore Scan master boot sector..........: on Scan boot sector.................: on Boot sectors.....................: H:, Scan memory......................: on Process scan.....................: on Scan registry....................: on Search for rootkits..............: on Scan all files...................: All files Scan archives....................: on Recursion depth..................: 20 Smart extensions.................: on Macro heuristic..................: on File heuristic...................: medium Start of the scan: jeudi 21 février 2008 12:00 Starting search for hidden objects. The driver could not be initialized. The scan of running processes will be started Scan process 'avscan.exe' - '1' Module(s) have been scanned Scan process 'avcenter.exe' - '1' Module(s) have been scanned Scan process 'explorer.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'guard.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'lsass.exe' - '1' Module(s) have been scanned Scan process 'services.exe' - '1' Module(s) have been scanned Scan process 'winlogon.exe' - '1' Module(s) have been scanned Scan process 'csrss.exe' - '1' Module(s) have been scanned Scan process 'smss.exe' - '1' Module(s) have been scanned 12 processes with 12 modules were scanned Starting master boot sector scan: Master boot sector HD0 [NOTE] No virus was found! Master boot sector HD1 [NOTE] No virus was found! Start scanning boot sectors: Boot sector 'C:\' [NOTE] No virus was found! Boot sector 'F:\' [NOTE] No virus was found! Boot sector 'H:\' [NOTE] No virus was found! Starting to scan the registry. The registry was scanned ( '28' files ). Starting the file scan: Begin scan in 'C:\' <WINDOWS, musique, jeux...> C:\pagefile.sys [WARNING] The file could not be opened! C:\WINDOWS\system32\drivers\sptd.sys [WARNING] The file could not be opened! Begin scan in 'F:\' <Séries et films> Begin scan in 'H:\' <Films et autres> End of the scan: jeudi 21 février 2008 13:03 Used time: 1:02:43 min The scan has been done completely. 5626 Scanning directories 188354 Files were scanned 0 viruses and/or unwanted programs were found 0 Files were classified as suspicious: 0 files were deleted 0 files were repaired 0 files were moved to quarantine 0 files were renamed 2 Files cannot be scanned 188354 Files not concerned 1296 Archives were scanned 2 Warnings 0 Notes Nouveau rapport HJT : Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 13:09:45, on 21/02/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe C:\Program Files\VIAudioi\SBADeck\ADeck.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\AVG Anti-Spyware 7.5\avgas.exe C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe C:\Program Files\Fichiers communs\Teleca Shared\CapabilityManager.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe C:\Program Files\AVG Anti-Spyware 7.5\guard.exe C:\WINDOWS\system32\PnkBstrA.exe C:\Program Files\MSI\DigiCell\DigiCell.exe C:\Program Files\MSI\PC Alert 4\PCAlert4.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Fichiers communs\Teleca Shared\Generic.exe C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\avscan.exe C:\Documents and Settings\ordi\Bureau\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.daemonsearch.com/fr/ R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O4 - HKLM\..\Run: [sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions O4 - HKLM\..\Run: [AudioDeck] C:\Program Files\VIAudioi\SBADeck\ADeck.exe 1 O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\AVG Anti-Spyware 7.5\avgas.exe" /minimized O4 - HKCU\..\Run: [Regs License] C:\DOCUME~1\ordi\APPLIC~1\CREATI~1\audio face.exe O4 - HKUS\S-1-5-19\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'Default user') O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: DigiCell.lnk = C:\Program Files\MSI\DigiCell\DigiCell.exe O4 - Global Startup: PC Alert 4.lnk = C:\Program Files\MSI\PC Alert 4\PCAlert4.exe O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/eng/partner/d...can_unicode.cab O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w2/pr02/resources/MSNPUpld.cab O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\AVG Anti-Spyware 7.5\guard.exe O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe -- End of file - 5231 bytes
  5. gary69
    Excuse moi je l'ai enlevé par erreur ( Tu es canadien ? si oui, tu parles bien le français ! ) Le voilà : Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 18:31:49, on 20/02/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe C:\Program Files\VIAudioi\SBADeck\ADeck.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\AVG Anti-Spyware 7.5\avgas.exe C:\Program Files\MSI\DigiCell\DigiCell.exe C:\Program Files\MSI\PC Alert 4\PCAlert4.exe C:\Program Files\Fichiers communs\Teleca Shared\CapabilityManager.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe C:\Program Files\AVG Anti-Spyware 7.5\guard.exe C:\Program Files\Fichiers communs\Teleca Shared\Generic.exe C:\WINDOWS\system32\PnkBstrA.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\wuauclt.exe C:\WINDOWS\explorer.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\Program Files\MSN Messenger\usnsvc.exe C:\WINDOWS\system32\WISPTIS.EXE C:\Program Files\CursorXP\CursorXP.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Documents and Settings\ordi\Bureau\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.daemonsearch.com/fr/ R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: (no name) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - (no file) O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O4 - HKLM\..\Run: [sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions O4 - HKLM\..\Run: [AudioDeck] C:\Program Files\VIAudioi\SBADeck\ADeck.exe 1 O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\AVG Anti-Spyware 7.5\avgas.exe" /minimized O4 - HKCU\..\Run: [Regs License] C:\DOCUME~1\ordi\APPLIC~1\CREATI~1\audio face.exe O4 - HKCU\..\Run: [CursorXP] C:\Program Files\CursorXP\CursorXP.exe O4 - HKUS\S-1-5-19\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'Default user') O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: DigiCell.lnk = C:\Program Files\MSI\DigiCell\DigiCell.exe O4 - Global Startup: PC Alert 4.lnk = C:\Program Files\MSI\PC Alert 4\PCAlert4.exe O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra button: Web Anti-Virus statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\SCIEPlgn.dll (file missing) O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/eng/partner/d...can_unicode.cab O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w2/pr02/resources/MSNPUpld.cab O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab O16 - DPF: {5F5F9FB8-878E-4455-95E0-F64B2314288A} (ijjiPlugin2 Class) - http://gamedownload.ijjimax.com/gamedownlo...Plugin11USA.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O16 - DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} (GoPetsWeb Control) - https://secure.gopetslive.com/dev/GoPetsWeb.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\AVG Anti-Spyware 7.5\guard.exe O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe -- End of file - 5904 bytes
  6. gary69
    Ah oui pardon. En effet je n'ai plus de publicités . Je vais attendre la fin de la journée pour voir si les pubs reviennent mais j'en doute En tout cas merci vous êtes vraiment rapide et sympas
  7. gary69
    Que veux tu dire par améiloration ?
  8. gary69
    J'ai fait ce que toi et Pear m'avez dit de faire et voilà tout les rapports ! C'est vrai que c'est long et puis assez bordélique Encore merci pour ton aide Zonk! Voilà pour Pear : Rapport S&D 1 ( rechercher ) -----------------------------[ Lop S&D 2.3.5 ]--------------------------- [ Windows XP (NT 5.1) Build 2600, Service Pack 2 ] [ USER : ordi ] [ "C:\Program Files\Lop SD" ] [ 20/02/2008 | 13:00:21,18 ] [ PC : XPSP2-691E7A1C4 ] [ MAJ : 16-02-2008 | 17:02 ] -------------[ Listing des dossiers dans Application Data ]------------ [20/02/2008|12:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\. [20/02/2008|12:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\.. [19/02/2008|21:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\addr_file.html [10/01/2008|18:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe [19/02/2008|21:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avira [05/10/2007|22:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Azureus [11/08/2007|21:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini [19/02/2008|21:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft [20/02/2008|12:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab [06/10/2007|09:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab Setup Files [16/09/2007|14:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus! [23/08/2007|21:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft [23/09/2007|09:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype [25/12/2007|11:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony Ericsson [25/12/2007|11:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Teleca [17/01/2008|06:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\That Face Camp Shim [21/08/2007|19:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage [01/12/2007|14:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller [11/08/2007|21:55] C:\DOCUME~1\DEFAUL~1\APPLIC~1\. [11/08/2007|21:55] C:\DOCUME~1\DEFAUL~1\APPLIC~1\.. [11/08/2007|21:55] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini [11/08/2007|20:03] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft [11/08/2007|21:25] C:\DOCUME~1\LOCALS~1\APPLIC~1\. [11/08/2007|21:25] C:\DOCUME~1\LOCALS~1\APPLIC~1\.. [04/10/2007|17:24] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft [11/08/2007|21:24] C:\DOCUME~1\NETWOR~1\APPLIC~1\. [11/08/2007|21:24] C:\DOCUME~1\NETWOR~1\APPLIC~1\.. [11/08/2007|20:03] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft [19/02/2008|21:27] C:\DOCUME~1\ordi\APPLIC~1\. [19/02/2008|21:27] C:\DOCUME~1\ordi\APPLIC~1\.. [12/01/2008|12:42] C:\DOCUME~1\ordi\APPLIC~1\Adobe [10/01/2008|18:08] C:\DOCUME~1\ordi\APPLIC~1\AdobeUM [19/02/2008|21:21] C:\DOCUME~1\ordi\APPLIC~1\creativeglue [23/12/2007|09:05] C:\DOCUME~1\ordi\APPLIC~1\DAEMON Tools [26/08/2007|12:34] C:\DOCUME~1\ordi\APPLIC~1\DeepBurner [11/08/2007|21:55] C:\DOCUME~1\ordi\APPLIC~1\desktop.ini [19/02/2008|21:27] C:\DOCUME~1\ordi\APPLIC~1\Grisoft [28/08/2007|20:15] C:\DOCUME~1\ordi\APPLIC~1\Help [25/12/2007|21:56] C:\DOCUME~1\ordi\APPLIC~1\ICQ [23/10/2007|20:58] C:\DOCUME~1\ordi\APPLIC~1\ICQ Toolbar [11/08/2007|21:26] C:\DOCUME~1\ordi\APPLIC~1\Identities [23/12/2007|09:20] C:\DOCUME~1\ordi\APPLIC~1\Leadertech [29/10/2007|15:44] C:\DOCUME~1\ordi\APPLIC~1\Macromedia [05/01/2008|14:17] C:\DOCUME~1\ordi\APPLIC~1\Microsoft [18/08/2007|19:32] C:\DOCUME~1\ordi\APPLIC~1\Mozilla [06/01/2008|17:33] C:\DOCUME~1\ordi\APPLIC~1\Nvu [20/08/2007|17:20] C:\DOCUME~1\ordi\APPLIC~1\OpenArena [02/12/2007|17:58] C:\DOCUME~1\ordi\APPLIC~1\Skype [25/12/2007|11:13] C:\DOCUME~1\ordi\APPLIC~1\Sony Ericsson [28/08/2007|22:04] C:\DOCUME~1\ordi\APPLIC~1\Sun [15/12/2007|18:44] C:\DOCUME~1\ordi\APPLIC~1\Teleca [18/08/2007|19:31] C:\DOCUME~1\ordi\APPLIC~1\U3 [24/01/2008|18:28] C:\DOCUME~1\ordi\APPLIC~1\uTorrent [16/09/2007|10:26] C:\DOCUME~1\ordi\APPLIC~1\vlc [18/08/2007|19:40] C:\DOCUME~1\ordi\APPLIC~1\WinRAR ----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]--------------- [20/02/2008 13:00][--ah-----] C:\WINDOWS\tasks\AB7EA59D91855B29.job [--256--] [20/02/2008 09:40][--ah-----] C:\WINDOWS\tasks\SA.DAT [--6--] [02/10/2001 17:16][-r-h-----] C:\WINDOWS\tasks\desktop.ini [--65--] ---------------[ Listing des dossiers dans C:\Program Files ]-------------- [20/02/2008|12:59] C:\Program Files\. [20/02/2008|12:59] C:\Program Files\.. [10/01/2008|18:04] C:\Program Files\Adobe [25/11/2007|12:09] C:\Program Files\AdVantage [02/09/2007|17:29] C:\Program Files\Ahead [06/10/2007|10:05] C:\Program Files\Alwil Software [04/09/2007|12:08] C:\Program Files\Astase [19/02/2008|20:50] C:\Program Files\Avast4 [19/02/2008|21:29] C:\Program Files\AVG Anti-Spyware 7.5 [19/02/2008|21:03] C:\Program Files\Avira [23/12/2007|19:21] C:\Program Files\BFVCC Server Manager [20/02/2008|11:38] C:\Program Files\Circle Developement [17/01/2008|06:58] C:\Program Files\creativeglue [23/12/2007|09:00] C:\Program Files\DAEMON Tools [25/12/2007|11:08] C:\Program Files\Disc2Phone [27/10/2007|12:48] C:\Program Files\DivX [15/12/2007|18:09] C:\Program Files\Fichiers communs [19/02/2008|22:21] C:\Program Files\Freeciv-2.1.0-beta4-gtk2 [20/02/2008|00:07] C:\Program Files\Freeciv-2.1.3-gtk2 [16/12/2007|19:00] C:\Program Files\Google [27/10/2007|12:55] C:\Program Files\ICQToolbar [03/01/2008|23:20] C:\Program Files\InstallShield Installation Information [13/02/2008|19:04] C:\Program Files\Internet Explorer [10/10/2007|08:32] C:\Program Files\Java [20/02/2008|13:00] C:\Program Files\Lop SD [17/12/2007|19:01] C:\Program Files\Messenger Plus! Live [11/08/2007|20:04] C:\Program Files\microsoft frontpage [02/02/2008|15:38] C:\Program Files\Microsoft Games [21/08/2007|19:26] C:\Program Files\Microsoft Office [21/08/2007|19:26] C:\Program Files\Microsoft.NET [13/02/2008|13:55] C:\Program Files\movie maker [20/02/2008|11:57] C:\Program Files\Mozilla Firefox [25/11/2007|12:17] C:\Program Files\MSI [11/08/2007|20:04] C:\Program Files\msn gaming zone [20/12/2007|17:54] C:\Program Files\MSN Messenger [16/12/2007|13:42] C:\Program Files\MSXML 4.0 [11/08/2007|20:01] C:\Program Files\NetMeeting [06/01/2008|17:28] C:\Program Files\Nvu [18/08/2007|19:31] C:\Program Files\Outlook Express [27/10/2007|10:12] C:\Program Files\PhotoFiltre [26/08/2007|15:55] C:\Program Files\realtech VR [11/08/2007|22:21] C:\Program Files\S3 [11/08/2007|20:02] C:\Program Files\Services en ligne [25/11/2007|12:09] C:\Program Files\Setup Files [25/12/2007|11:10] C:\Program Files\Sony Ericsson [15/12/2007|15:42] C:\Program Files\StuffPlug3 [11/08/2007|21:26] C:\Program Files\Uninstall Information [11/08/2007|21:28] C:\Program Files\VIA [27/12/2007|12:58] C:\Program Files\VIAudioi [15/09/2007|16:53] C:\Program Files\VideoLAN [05/01/2008|14:01] C:\Program Files\WinAce [29/09/2007|11:15] C:\Program Files\Windows Live [22/08/2007|10:48] C:\Program Files\Windows Media Player [11/08/2007|20:04] C:\Program Files\Windows NT [11/08/2007|20:02] C:\Program Files\WindowsUpdate [18/08/2007|19:40] C:\Program Files\WinRAR [02/02/2008|23:14] C:\Program Files\Wolfenstein - Enemy Territory [11/08/2007|20:04] C:\Program Files\xerox ------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------ [15/12/2007|18:09] C:\Program Files\Fichiers communs\. [15/12/2007|18:09] C:\Program Files\Fichiers communs\.. [20/08/2007|21:29] C:\Program Files\Fichiers communs\Adobe [02/09/2007|17:28] C:\Program Files\Fichiers communs\Ahead [06/10/2007|14:20] C:\Program Files\Fichiers communs\BitDefender [21/08/2007|19:26] C:\Program Files\Fichiers communs\DESIGNER [28/08/2007|16:17] C:\Program Files\Fichiers communs\InstallShield [18/08/2007|21:07] C:\Program Files\Fichiers communs\Java [06/10/2007|09:09] C:\Program Files\Fichiers communs\Microsoft Shared [11/08/2007|20:01] C:\Program Files\Fichiers communs\MSSoap [11/08/2007|21:56] C:\Program Files\Fichiers communs\ODBC [11/08/2007|20:01] C:\Program Files\Fichiers communs\Services [23/09/2007|09:32] C:\Program Files\Fichiers communs\Skype [11/08/2007|21:56] C:\Program Files\Fichiers communs\SpeechEngines [21/08/2007|19:25] C:\Program Files\Fichiers communs\System [25/12/2007|11:11] C:\Program Files\Fichiers communs\Teleca Shared [01/12/2007|14:27] C:\Program Files\Fichiers communs\WindowsLiveInstaller ----------------------[ Recherche avec S_Lop ]--------------------- Aucun fichier / dossier Lop trouvé ! -----------------[ Recherche de Fichiers / Dossiers Lop ]----------------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\That Face Camp Shim C:\DOCUME~1\ALLUSE~1\APPLIC~1\That Face Camp Shim\Axis proxy.exe C:\Program Files\Circle Developement C:\WINDOWS\Tasks\AB7EA59D91855B29.job ----------------------[ Verification du Registre ]---------------------- [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CAMP SHIM EXIT HECK"="C:\\Documents and Settings\\All Users\\Application Data\\That Face Camp Shim\\Axis proxy.exe" --------------------[ Verification du fichier Hosts ]--------------------- Fichier Hosts MODIFIE 127.0.0.1 bin.errorprotector.com ## added by CiD 127.0.0.1 br.errorsafe.com ## added by CiD 127.0.0.1 br.winantivirus.com ## added by CiD 127.0.0.1 br.winfixer.com ## added by CiD 127.0.0.1 cdn.drivecleaner.com ## added by CiD 127.0.0.1 cdn.errorsafe.com ## added by CiD 127.0.0.1 cdn.winsoftware.com ## added by CiD 127.0.0.1 de.errorsafe.com ## added by CiD 127.0.0.1 de.winantivirus.com ## added by CiD 127.0.0.1 download.cdn.drivecleaner.com ## added by CiD 127.0.0.1 download.cdn.errorsafe.com ## added by CiD 127.0.0.1 download.cdn.winsoftware.com ## added by CiD 127.0.0.1 download.errorsafe.com ## added by CiD 127.0.0.1 download.systemdoctor.com ## added by CiD 127.0.0.1 download.winantispyware.com ## added by CiD 127.0.0.1 download.windrivecleaner.com ## added by CiD 127.0.0.1 download.winfixer.com ## added by CiD 127.0.0.1 drivecleaner.com ## added by CiD 127.0.0.1 dynamique.drivecleaner.com ## added by CiD 127.0.0.1 errorprotector.com ## added by CiD 127.0.0.1 errorsafe.com ## added by CiD 127.0.0.1 es.winantivirus.com ## added by CiD 127.0.0.1 fr.winantivirus.com ## added by CiD 127.0.0.1 fr.winfixer.com ## added by CiD 127.0.0.1 go.drivecleaner.com ## added by CiD 127.0.0.1 go.errorsafe.com ## added by CiD 127.0.0.1 go.winantispyware.com ## added by CiD 127.0.0.1 go.winantivirus.com ## added by CiD 127.0.0.1 hk.winantivirus.com ## added by CiD 127.0.0.1 instlog.errorsafe.com ## added by CiD 127.0.0.1 instlog.winantivirus.com ## added by CiD 127.0.0.1 instlog.winfixer.com ## added by CiD 127.0.0.1 jsp.drivecleaner.com ## added by CiD 127.0.0.1 kb.errorsafe.com ## added by CiD 127.0.0.1 kb.winantivirus.com ## added by CiD 127.0.0.1 nl.errorsafe.com ## added by CiD 127.0.0.1 se.errorsafe.com ## added by CiD 127.0.0.1 secure.drivecleaner.com ## added by CiD 127.0.0.1 secure.errorsafe.com ## added by CiD 127.0.0.1 secure.winantispam.com ## added by CiD 127.0.0.1 secure.winantispy.com ## added by CiD 127.0.0.1 secure.winantivirus.com ## added by CiD 127.0.0.1 support.winantivirus.com ## added by CiD 127.0.0.1 trial.updates.winsoftware.com ## added by CiD 127.0.0.1 ulog.winantivirus.com ## added by CiD 127.0.0.1 utils.errorsafe.com ## added by CiD 127.0.0.1 utils.winantivirus.com ## added by CiD 127.0.0.1 utils.winfixer.com ## added by CiD 127.0.0.1 winantispyware.com ## added by CiD 127.0.0.1 winantivirus.com ## added by CiD 127.0.0.1 winfixer.com ## added by CiD 127.0.0.1 winfixer2006.com ## added by CiD 127.0.0.1 winsoftware.com ## added by CiD 127.0.0.1 www.drivecleaner.com ## added by CiD 127.0.0.1 www.errorprotector.com ## added by CiD 127.0.0.1 www.errorsafe.com ## added by CiD 127.0.0.1 www.systemdoctor.com ## added by CiD 127.0.0.1 www.utils.winfixer.com ## added by CiD 127.0.0.1 www.win-anti-virus-pro.com ## added by CiD 127.0.0.1 www.win-virus-pro.com ## added by CiD 127.0.0.1 www.winantispam.com ## added by CiD 127.0.0.1 www.winantispy.com ## added by CiD 127.0.0.1 www.winantispyware.com ## added by CiD 127.0.0.1 www.winantivirus.com ## added by CiD 127.0.0.1 www.winantiviruspro.com ## added by CiD 127.0.0.1 www.windrivecleaner.com ## added by CiD 127.0.0.1 www.windrivesafe.com ## added by CiD 127.0.0.1 www.winfixer.com ## added by CiD 127.0.0.1 www.winfixer2006.com ## added by CiD 127.0.0.1 www.winsoftware.com ## added by CiD -> 72 ( 70 ## added by CiD ) /!\ 1 Not 127.0.0.1 !! ----------------[ Recherche de fichiers avec Catchme ]----------------- catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-02-20 13:01:30 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden files ... scan completed successfully hidden files: 0 --------------------[ Recherche d'autres infections ]--------------------- Aucune autre infection trouvée ! /!\ [Fich:2719][Doss:93] C:\DOCUME~1\ordi\LOCALS~1\Temp /!\ [Fich:23][Doss:0] C:\DOCUME~1\ordi\Cookies /!\ [Fich:651][Doss:8] C:\DOCUME~1\ordi\LOCALS~1\TEMPOR~1\content.IE5 --------------------[ Fin du rapport a 13:01:55,51 ]---------------------- Rapport S&D 2 ( supprimer ) -----------------------------[ Lop S&D 2.3.5 ]--------------------------- [ Windows XP (NT 5.1) Build 2600, Service Pack 2 ] [ USER : ordi ] [ "C:\Program Files\Lop SD" ] [ 20/02/2008 | 13:02:49,28 ] [ PC : XPSP2-691E7A1C4 ] [ MAJ : 16-02-2008 | 17:02 ] \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION ///////////////////////////// Supprimé! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\That Face Camp Shim\Axis proxy.exe Supprimé! - C:\WINDOWS\Tasks\AB7EA59D91855B29.job Supprimé! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\That Face Camp Shim Supprimé! - C:\Program Files\Circle Developement Restauré! - Fichier Hosts //////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ -------------[ Listing des dossiers dans Application Data ]------------ [20/02/2008|13:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\. [20/02/2008|13:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\.. [19/02/2008|21:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\addr_file.html [10/01/2008|18:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe [19/02/2008|21:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avira [05/10/2007|22:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Azureus [11/08/2007|21:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini [19/02/2008|21:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft [20/02/2008|12:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab [06/10/2007|09:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab Setup Files [16/09/2007|14:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus! [23/08/2007|21:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft [23/09/2007|09:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype [25/12/2007|11:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony Ericsson [25/12/2007|11:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Teleca [21/08/2007|19:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage [01/12/2007|14:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller [11/08/2007|21:55] C:\DOCUME~1\DEFAUL~1\APPLIC~1\. [11/08/2007|21:55] C:\DOCUME~1\DEFAUL~1\APPLIC~1\.. [11/08/2007|21:55] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini [11/08/2007|20:03] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft [11/08/2007|21:25] C:\DOCUME~1\LOCALS~1\APPLIC~1\. [11/08/2007|21:25] C:\DOCUME~1\LOCALS~1\APPLIC~1\.. [04/10/2007|17:24] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft [11/08/2007|21:24] C:\DOCUME~1\NETWOR~1\APPLIC~1\. [11/08/2007|21:24] C:\DOCUME~1\NETWOR~1\APPLIC~1\.. [11/08/2007|20:03] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft [19/02/2008|21:27] C:\DOCUME~1\ordi\APPLIC~1\. [19/02/2008|21:27] C:\DOCUME~1\ordi\APPLIC~1\.. [12/01/2008|12:42] C:\DOCUME~1\ordi\APPLIC~1\Adobe [10/01/2008|18:08] C:\DOCUME~1\ordi\APPLIC~1\AdobeUM [19/02/2008|21:21] C:\DOCUME~1\ordi\APPLIC~1\creativeglue [23/12/2007|09:05] C:\DOCUME~1\ordi\APPLIC~1\DAEMON Tools [26/08/2007|12:34] C:\DOCUME~1\ordi\APPLIC~1\DeepBurner [11/08/2007|21:55] C:\DOCUME~1\ordi\APPLIC~1\desktop.ini [19/02/2008|21:27] C:\DOCUME~1\ordi\APPLIC~1\Grisoft [28/08/2007|20:15] C:\DOCUME~1\ordi\APPLIC~1\Help [25/12/2007|21:56] C:\DOCUME~1\ordi\APPLIC~1\ICQ [23/10/2007|20:58] C:\DOCUME~1\ordi\APPLIC~1\ICQ Toolbar [11/08/2007|21:26] C:\DOCUME~1\ordi\APPLIC~1\Identities [23/12/2007|09:20] C:\DOCUME~1\ordi\APPLIC~1\Leadertech [29/10/2007|15:44] C:\DOCUME~1\ordi\APPLIC~1\Macromedia [05/01/2008|14:17] C:\DOCUME~1\ordi\APPLIC~1\Microsoft [18/08/2007|19:32] C:\DOCUME~1\ordi\APPLIC~1\Mozilla [06/01/2008|17:33] C:\DOCUME~1\ordi\APPLIC~1\Nvu [20/08/2007|17:20] C:\DOCUME~1\ordi\APPLIC~1\OpenArena [02/12/2007|17:58] C:\DOCUME~1\ordi\APPLIC~1\Skype [25/12/2007|11:13] C:\DOCUME~1\ordi\APPLIC~1\Sony Ericsson [28/08/2007|22:04] C:\DOCUME~1\ordi\APPLIC~1\Sun [15/12/2007|18:44] C:\DOCUME~1\ordi\APPLIC~1\Teleca [18/08/2007|19:31] C:\DOCUME~1\ordi\APPLIC~1\U3 [24/01/2008|18:28] C:\DOCUME~1\ordi\APPLIC~1\uTorrent [16/09/2007|10:26] C:\DOCUME~1\ordi\APPLIC~1\vlc [18/08/2007|19:40] C:\DOCUME~1\ordi\APPLIC~1\WinRAR ----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]--------------- [20/02/2008 09:40][--ah-----] C:\WINDOWS\tasks\SA.DAT [--6--] [02/10/2001 17:16][-r-h-----] C:\WINDOWS\tasks\desktop.ini [--65--] ---------------[ Listing des dossiers dans C:\Program Files ]-------------- [20/02/2008|13:02] C:\Program Files\. [20/02/2008|13:02] C:\Program Files\.. [10/01/2008|18:04] C:\Program Files\Adobe [25/11/2007|12:09] C:\Program Files\AdVantage [02/09/2007|17:29] C:\Program Files\Ahead [06/10/2007|10:05] C:\Program Files\Alwil Software [04/09/2007|12:08] C:\Program Files\Astase [19/02/2008|20:50] C:\Program Files\Avast4 [19/02/2008|21:29] C:\Program Files\AVG Anti-Spyware 7.5 [19/02/2008|21:03] C:\Program Files\Avira [23/12/2007|19:21] C:\Program Files\BFVCC Server Manager [17/01/2008|06:58] C:\Program Files\creativeglue [23/12/2007|09:00] C:\Program Files\DAEMON Tools [25/12/2007|11:08] C:\Program Files\Disc2Phone [27/10/2007|12:48] C:\Program Files\DivX [15/12/2007|18:09] C:\Program Files\Fichiers communs [19/02/2008|22:21] C:\Program Files\Freeciv-2.1.0-beta4-gtk2 [20/02/2008|00:07] C:\Program Files\Freeciv-2.1.3-gtk2 [16/12/2007|19:00] C:\Program Files\Google [27/10/2007|12:55] C:\Program Files\ICQToolbar [03/01/2008|23:20] C:\Program Files\InstallShield Installation Information [13/02/2008|19:04] C:\Program Files\Internet Explorer [10/10/2007|08:32] C:\Program Files\Java [20/02/2008|13:02] C:\Program Files\Lop SD [17/12/2007|19:01] C:\Program Files\Messenger Plus! Live [11/08/2007|20:04] C:\Program Files\microsoft frontpage [02/02/2008|15:38] C:\Program Files\Microsoft Games [21/08/2007|19:26] C:\Program Files\Microsoft Office [21/08/2007|19:26] C:\Program Files\Microsoft.NET [13/02/2008|13:55] C:\Program Files\movie maker [20/02/2008|11:57] C:\Program Files\Mozilla Firefox [25/11/2007|12:17] C:\Program Files\MSI [11/08/2007|20:04] C:\Program Files\msn gaming zone [20/12/2007|17:54] C:\Program Files\MSN Messenger [16/12/2007|13:42] C:\Program Files\MSXML 4.0 [11/08/2007|20:01] C:\Program Files\NetMeeting [06/01/2008|17:28] C:\Program Files\Nvu [18/08/2007|19:31] C:\Program Files\Outlook Express [27/10/2007|10:12] C:\Program Files\PhotoFiltre [26/08/2007|15:55] C:\Program Files\realtech VR [11/08/2007|22:21] C:\Program Files\S3 [11/08/2007|20:02] C:\Program Files\Services en ligne [25/11/2007|12:09] C:\Program Files\Setup Files [25/12/2007|11:10] C:\Program Files\Sony Ericsson [15/12/2007|15:42] C:\Program Files\StuffPlug3 [11/08/2007|21:26] C:\Program Files\Uninstall Information [11/08/2007|21:28] C:\Program Files\VIA [27/12/2007|12:58] C:\Program Files\VIAudioi [15/09/2007|16:53] C:\Program Files\VideoLAN [05/01/2008|14:01] C:\Program Files\WinAce [29/09/2007|11:15] C:\Program Files\Windows Live [22/08/2007|10:48] C:\Program Files\Windows Media Player [11/08/2007|20:04] C:\Program Files\Windows NT [11/08/2007|20:02] C:\Program Files\WindowsUpdate [18/08/2007|19:40] C:\Program Files\WinRAR [02/02/2008|23:14] C:\Program Files\Wolfenstein - Enemy Territory [11/08/2007|20:04] C:\Program Files\xerox ------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------ [15/12/2007|18:09] C:\Program Files\Fichiers communs\. [15/12/2007|18:09] C:\Program Files\Fichiers communs\.. [20/08/2007|21:29] C:\Program Files\Fichiers communs\Adobe [02/09/2007|17:28] C:\Program Files\Fichiers communs\Ahead [06/10/2007|14:20] C:\Program Files\Fichiers communs\BitDefender [21/08/2007|19:26] C:\Program Files\Fichiers communs\DESIGNER [28/08/2007|16:17] C:\Program Files\Fichiers communs\InstallShield [18/08/2007|21:07] C:\Program Files\Fichiers communs\Java [06/10/2007|09:09] C:\Program Files\Fichiers communs\Microsoft Shared [11/08/2007|20:01] C:\Program Files\Fichiers communs\MSSoap [11/08/2007|21:56] C:\Program Files\Fichiers communs\ODBC [11/08/2007|20:01] C:\Program Files\Fichiers communs\Services [23/09/2007|09:32] C:\Program Files\Fichiers communs\Skype [11/08/2007|21:56] C:\Program Files\Fichiers communs\SpeechEngines [21/08/2007|19:25] C:\Program Files\Fichiers communs\System [25/12/2007|11:11] C:\Program Files\Fichiers communs\Teleca Shared [01/12/2007|14:27] C:\Program Files\Fichiers communs\WindowsLiveInstaller ----------------------[ Recherche avec S_Lop ]--------------------- Aucun fichier / dossier Lop trouvé ! -----------------[ Recherche de Fichiers / Dossiers Lop ]----------------- Aucun fichier / dossier Lop trouvé ! ----------------------[ Verification du Registre ]---------------------- ..... OK ! --------------------[ Verification du fichier Hosts ]--------------------- Fichier Hosts PROPRE ----------------[ Recherche de fichiers avec Catchme ]----------------- catchme 0.3.1262 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-02-20 13:03:40 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden files ... scan completed successfully hidden files: 0 --------------------[ Recherche d'autres infections ]--------------------- Aucune autre infection trouvée ! /!\ [Fich:2740][Doss:93] C:\DOCUME~1\ordi\LOCALS~1\Temp /!\ [Fich:23][Doss:0] C:\DOCUME~1\ordi\Cookies /!\ [Fich:651][Doss:8] C:\DOCUME~1\ordi\LOCALS~1\TEMPOR~1\content.IE5 --------------------[ Fin du rapport a 13:03:56,15 ]----------------------
  9. gary69
    Rapport scan d'Antivir AntiVir PersonalEdition Classic Report file date: mercredi 20 février 2008 10:37 Scanning for 1117323 virus strains and unwanted programs. Licensed to: Avira AntiVir PersonalEdition Classic Serial number: 0000149996-ADJIE-0001 Platform: Windows XP Windows version: (Service Pack 2) [5.1.2600] Username: SYSTEM Computer name: XPSP2-691E7A1C4 Version information: BUILD.DAT : 270 15603 Bytes 19/09/2007 13:32:00 AVSCAN.EXE : 7.0.6.1 290856 Bytes 23/08/2007 13:16:29 AVSCAN.DLL : 7.0.6.0 49192 Bytes 16/08/2007 12:23:51 LUKE.DLL : 7.0.5.3 147496 Bytes 14/08/2007 15:32:47 LUKERES.DLL : 7.0.6.1 10280 Bytes 21/08/2007 12:35:20 ANTIVIR0.VDF : 6.40.0.0 11030528 Bytes 18/07/2007 14:27:15 ANTIVIR1.VDF : 7.0.1.95 3367424 Bytes 14/12/2007 20:07:14 ANTIVIR2.VDF : 7.0.2.113 1673728 Bytes 08/02/2008 20:07:14 ANTIVIR3.VDF : 7.0.2.162 292864 Bytes 19/02/2008 20:07:14 AVEWIN32.DLL : 7.6.0.67 3293696 Bytes 19/02/2008 20:07:14 AVWINLL.DLL : 1.0.0.7 14376 Bytes 26/02/2007 10:36:26 AVPREF.DLL : 7.0.2.2 25640 Bytes 18/07/2007 07:39:17 AVREP.DLL : 7.0.0.1 155688 Bytes 16/04/2007 13:16:24 AVPACK32.DLL : 7.6.0.3 360488 Bytes 19/02/2008 20:07:14 AVREG.DLL : 7.0.1.6 30760 Bytes 18/07/2007 07:17:06 AVARKT.DLL : 1.0.0.20 278568 Bytes 28/08/2007 12:26:33 AVEVTLOG.DLL : 7.0.0.20 86056 Bytes 18/07/2007 07:10:18 NETNT.DLL : 7.0.0.0 7720 Bytes 08/03/2007 11:09:42 RCIMAGE.DLL : 7.0.1.30 2342952 Bytes 07/08/2007 12:38:13 RCTEXT.DLL : 7.0.62.0 86056 Bytes 21/08/2007 12:50:37 SQLITE3.DLL : 3.3.17.1 339968 Bytes 23/07/2007 09:37:21 Configuration settings for the scan: Jobname..........................: Complete system scan Configuration file...............: c:\program files\avira\antivir personaledition classic\sysscan.avp Logging..........................: low Primary action...................: interactive Secondary action.................: ignore Scan master boot sector..........: on Scan boot sector.................: on Boot sectors.....................: H:, Scan memory......................: on Process scan.....................: on Scan registry....................: on Search for rootkits..............: on Scan all files...................: All files Scan archives....................: on Recursion depth..................: 20 Smart extensions.................: on Macro heuristic..................: on File heuristic...................: medium Start of the scan: mercredi 20 février 2008 10:37 Starting search for hidden objects. '66077' objects were checked, '0' hidden objects were found. The scan of running processes will be started Scan process 'avscan.exe' - '1' Module(s) have been scanned Scan process 'WINWORD.EXE' - '1' Module(s) have been scanned Scan process 'firefox.exe' - '1' Module(s) have been scanned Scan process 'avcenter.exe' - '1' Module(s) have been scanned Scan process 'wuauclt.exe' - '1' Module(s) have been scanned Scan process 'epmworker.exe' - '1' Module(s) have been scanned Scan process 'Generic.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'alg.exe' - '1' Module(s) have been scanned Scan process 'WdfMgr.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'PnkBstrA.exe' - '1' Module(s) have been scanned Scan process 'PCAlert4.exe' - '1' Module(s) have been scanned Scan process 'DigiCell.exe' - '1' Module(s) have been scanned Scan process 'guard.exe' - '0' Module(s) have been scanned Scan process 'sched.exe' - '1' Module(s) have been scanned Scan process 'IEXPLORE.EXE' - '1' Module(s) have been scanned Scan process 'avgas.exe' - '1' Module(s) have been scanned Scan process 'avgnt.exe' - '1' Module(s) have been scanned Scan process 'ADeck.exe' - '1' Module(s) have been scanned Scan process 'avguard.exe' - '1' Module(s) have been scanned Scan process 'spoolsv.exe' - '1' Module(s) have been scanned Scan process 'explorer.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'lsass.exe' - '1' Module(s) have been scanned Scan process 'services.exe' - '1' Module(s) have been scanned Scan process 'winlogon.exe' - '1' Module(s) have been scanned Scan process 'csrss.exe' - '1' Module(s) have been scanned Scan process 'smss.exe' - '1' Module(s) have been scanned 32 processes with 32 modules were scanned Starting master boot sector scan: Master boot sector HD0 [NOTE] No virus was found! Master boot sector HD1 [NOTE] No virus was found! Master boot sector HD2 [NOTE] No virus was found! Start scanning boot sectors: Boot sector 'C:\' [NOTE] No virus was found! Boot sector 'F:\' [NOTE] No virus was found! Boot sector 'H:\' [NOTE] No virus was found! Starting to scan the registry. The registry was scanned ( '29' files ). Starting the file scan: Begin scan in 'C:\' <WINDOWS, musique, jeux...> C:\pagefile.sys [WARNING] The file could not be opened! C:\Program Files\Circle Developement\Uninstall.exe [DETECTION] Is the Trojan horse TR/Obfusgen.A.5368 [iNFO] The file was moved to '48250388.qua'! C:\WINDOWS\system32\drivers\sptd.sys [WARNING] The file could not be opened! Begin scan in 'F:\' <Séries et films> Begin scan in 'H:\' <Films et autres> End of the scan: mercredi 20 février 2008 12:05 Used time: 1:28:16 min The scan has been done completely. 5589 Scanning directories 187171 Files were scanned 1 viruses and/or unwanted programs were found 0 Files were classified as suspicious: 0 files were deleted 0 files were repaired 1 files were moved to quarantine 0 files were renamed 2 Files cannot be scanned 187170 Files not concerned 1262 Archives were scanned 2 Warnings 0 Notes 66077 Objects were scanned with rootkit scan 0 Hidden objects were found Rapport scan avg --------------------------------------------------------- AVG Anti-Spyware - Rapport d'analyse --------------------------------------------------------- + Créé à: 11:57:51 20/02/2008 + Résultat de l'analyse: Rien à signaler. Fin du rapport Rapport scan Kaspersky ------------------------------------------------------------------------------- KASPERSKY ONLINE SCANNER REPORT Wednesday, February 20, 2008 3:01:00 PM Operating System: Microsoft Windows XP Professional, Service Pack 2 (Build 2600) Kaspersky Online Scanner version: 5.0.98.0 Kaspersky Anti-Virus database last update: 20/02/2008 Kaspersky Anti-Virus database records: 573496 ------------------------------------------------------------------------------- Scan Settings: Scan using the following antivirus database: extended Scan Archives: true Scan Mail Bases: true Scan Target - My Computer: A:\ C:\ D:\ E:\ F:\ G:\ H:\ Scan Statistics: Total number of scanned objects: 67424 Number of viruses found: 4 Number of infected objects: 31 Number of suspicious objects: 0 Duration of the scan process: 01:19:04 Infected Object Name / Virus Name / Last Action C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat Object is locked skipped C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat Object is locked skipped C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped C:\Documents and Settings\LocalService\NTUSER.DAT Object is locked skipped C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked skipped C:\Documents and Settings\NetworkService\Cookies\index.dat Object is locked skipped C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped C:\Documents and Settings\NetworkService\Local Settings\Historique\History.IE5\index.dat Object is locked skipped C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked skipped C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked skipped C:\Documents and Settings\ordi\Application Data\Mozilla\Firefox\Profiles\7rxsfkaq.default\cert8.db Object is locked skipped C:\Documents and Settings\ordi\Application Data\Mozilla\Firefox\Profiles\7rxsfkaq.default\formhistory.dat Object is locked skipped C:\Documents and Settings\ordi\Application Data\Mozilla\Firefox\Profiles\7rxsfkaq.default\history.dat Object is locked skipped C:\Documents and Settings\ordi\Application Data\Mozilla\Firefox\Profiles\7rxsfkaq.default\key3.db Object is locked skipped C:\Documents and Settings\ordi\Application Data\Mozilla\Firefox\Profiles\7rxsfkaq.default\parent.lock Object is locked skipped C:\Documents and Settings\ordi\Application Data\Mozilla\Firefox\Profiles\7rxsfkaq.default\search.sqlite Object is locked skipped C:\Documents and Settings\ordi\Application Data\Mozilla\Firefox\Profiles\7rxsfkaq.default\urlclassifier2.sqlite Object is locked skipped C:\Documents and Settings\ordi\Application Data\Teleca\Telecalib\Logging\Application logs\SpecificUSB_log.txt Object is locked skipped C:\Documents and Settings\ordi\Cookies\index.dat Object is locked skipped C:\Documents and Settings\ordi\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped C:\Documents and Settings\ordi\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped C:\Documents and Settings\ordi\Local Settings\Application Data\Mozilla\Firefox\Profiles\7rxsfkaq.default\Cache\_CACHE_001_ Object is locked skipped C:\Documents and Settings\ordi\Local Settings\Application Data\Mozilla\Firefox\Profiles\7rxsfkaq.default\Cache\_CACHE_002_ Object is locked skipped C:\Documents and Settings\ordi\Local Settings\Application Data\Mozilla\Firefox\Profiles\7rxsfkaq.default\Cache\_CACHE_003_ Object is locked skipped C:\Documents and Settings\ordi\Local Settings\Application Data\Mozilla\Firefox\Profiles\7rxsfkaq.default\Cache\_CACHE_MAP_ Object is locked skipped C:\Documents and Settings\ordi\Local Settings\Application Data\Mozilla\Firefox\Profiles\7rxsfkaq.default\XUL.mfl Object is locked skipped C:\Documents and Settings\ordi\Local Settings\Historique\History.IE5\index.dat Object is locked skipped C:\Documents and Settings\ordi\Local Settings\Temp\sta3.exe Infected: Trojan.Win32.Inject.sq skipped C:\Documents and Settings\ordi\Local Settings\Temp\ysefc1le.exe Infected: not-a-virus:AdTool.Win32.Zango.e skipped C:\Documents and Settings\ordi\Local Settings\Temp\~DF8C39.tmp Object is locked skipped C:\Documents and Settings\ordi\Local Settings\Temp\~DFC47C.tmp Object is locked skipped C:\Documents and Settings\ordi\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped C:\Documents and Settings\ordi\NTUSER.DAT Object is locked skipped C:\Documents and Settings\ordi\ntuser.dat.LOG Object is locked skipped C:\Program Files\Freeciv-2.1.3-gtk2\stderr.txt Object is locked skipped C:\Program Files\Freeciv-2.1.3-gtk2\stdout.txt Object is locked skipped C:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped C:\WINDOWS\Debug\PASSWD.LOG Object is locked skipped C:\WINDOWS\SchedLgU.Txt Object is locked skipped C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb Object is locked skipped C:\WINDOWS\SoftwareDistribution\DataStore\Logs\edb.log Object is locked skipped C:\WINDOWS\SoftwareDistribution\DataStore\Logs\tmp.edb Object is locked skipped C:\WINDOWS\SoftwareDistribution\ReportingEvents.log Object is locked skipped C:\WINDOWS\Sti_Trace.log Object is locked skipped C:\WINDOWS\system32\cmdow.exe Infected: not-a-virus:RiskTool.Win32.HideWindows skipped C:\WINDOWS\system32\config\AppEvent.Evt Object is locked skipped C:\WINDOWS\system32\config\default Object is locked skipped C:\WINDOWS\system32\config\default.LOG Object is locked skipped C:\WINDOWS\system32\config\SAM Object is locked skipped C:\WINDOWS\system32\config\SAM.LOG Object is locked skipped C:\WINDOWS\system32\config\SecEvent.Evt Object is locked skipped C:\WINDOWS\system32\config\SECURITY Object is locked skipped C:\WINDOWS\system32\config\SECURITY.LOG Object is locked skipped C:\WINDOWS\system32\config\software Object is locked skipped C:\WINDOWS\system32\config\software.LOG Object is locked skipped C:\WINDOWS\system32\config\SysEvent.Evt Object is locked skipped C:\WINDOWS\system32\config\system Object is locked skipped C:\WINDOWS\system32\config\system.LOG Object is locked skipped C:\WINDOWS\system32\drivers\sptd.sys Object is locked skipped C:\WINDOWS\system32\h323log.txt Object is locked skipped C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked skipped C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked skipped C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked skipped C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP Object is locked skipped C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP Object is locked skipped C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA Object is locked skipped C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked skipped C:\WINDOWS\wiadebug.log Object is locked skipped C:\WINDOWS\wiaservc.log Object is locked skipped C:\WINDOWS\WindowsUpdate.log Object is locked skipped F:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped H:\Sauvegardes\patricia\citations\Poèmes sur le thème des arbres.htm Infected: Net-Worm.Win32.Allaple.a skipped H:\Sauvegardes\patricia\citations\Poèmes sur le thème des arbres_fichiers\13734910Bottom1.htm Infected: Net-Worm.Win32.Allaple.a skipped H:\Sauvegardes\patricia\citations\Poèmes sur le thème des arbres_fichiers\13734910Top1.htm Infected: Net-Worm.Win32.Allaple.a skipped H:\Sauvegardes\patricia\citations\Poèmes sur le thème des arbres_fichiers\13734910Top1_data\ads.htm Infected: Net-Worm.Win32.Allaple.a skipped H:\Sauvegardes\patricia\citations\Poèmes sur le thème des arbres_fichiers\13734910x23.htm Infected: Net-Worm.Win32.Allaple.a skipped H:\Sauvegardes\patricia\citations\Poèmes sur le thème des arbres_fichiers\anim_cursor_wand.htm Infected: Net-Worm.Win32.Allaple.a skipped H:\Sauvegardes\patricia\citations\Poèmes sur le thème des arbres_fichiers\fleche.htm Infected: Net-Worm.Win32.Allaple.a skipped H:\Sauvegardes\patricia\peinture\citations\Poèmes sur le thème des arbres.htm Infected: Net-Worm.Win32.Allaple.a skipped H:\Sauvegardes\patricia\peinture\citations\Poèmes sur le thème des arbres_fichiers\13734910Bottom1.htm Infected: Net-Worm.Win32.Allaple.a skipped H:\Sauvegardes\patricia\peinture\citations\Poèmes sur le thème des arbres_fichiers\13734910Top1.htm Infected: Net-Worm.Win32.Allaple.a skipped H:\Sauvegardes\patricia\peinture\citations\Poèmes sur le thème des arbres_fichiers\13734910Top1_data\ads.htm Infected: Net-Worm.Win32.Allaple.a skipped H:\Sauvegardes\patricia\peinture\citations\Poèmes sur le thème des arbres_fichiers\13734910x23.htm Infected: Net-Worm.Win32.Allaple.a skipped H:\Sauvegardes\patricia\peinture\citations\Poèmes sur le thème des arbres_fichiers\anim_cursor_wand.htm Infected: Net-Worm.Win32.Allaple.a skipped H:\Sauvegardes\patricia\peinture\citations\Poèmes sur le thème des arbres_fichiers\fleche.htm Infected: Net-Worm.Win32.Allaple.a skipped H:\Sauvegardes\patricia\peinture\contacts galerie, emails et adresse et info\http _galerie-hartmonie.monsite.wanadoo.fr.htm Infected: Net-Worm.Win32.Allaple.a skipped H:\Sauvegardes\patricia\peinture\image pour peinture\inle-lake02.htm Infected: Net-Worm.Win32.Allaple.a skipped H:\Sauvegardes\patricia\peinture\image pour peinture\myanmar-monks01.htm Infected: Net-Worm.Win32.Allaple.a skipped H:\Sauvegardes\sauvegarde aout 2007\peinture pat\secrétariat\citations, poemes etc\citations\Poèmes sur le thème des arbres.htm Infected: Net-Worm.Win32.Allaple.a skipped H:\Sauvegardes\sauvegarde aout 2007\peinture pat\secrétariat\citations, poemes etc\citations\Poèmes sur le thème des arbres_fichiers\13734910Bottom1.htm Infected: Net-Worm.Win32.Allaple.a skipped H:\Sauvegardes\sauvegarde aout 2007\peinture pat\secrétariat\citations, poemes etc\citations\Poèmes sur le thème des arbres_fichiers\13734910Top1.htm Infected: Net-Worm.Win32.Allaple.a skipped H:\Sauvegardes\sauvegarde aout 2007\peinture pat\secrétariat\citations, poemes etc\citations\Poèmes sur le thème des arbres_fichiers\13734910Top1_data\ads.htm Infected: Net-Worm.Win32.Allaple.a skipped H:\Sauvegardes\sauvegarde aout 2007\peinture pat\secrétariat\citations, poemes etc\citations\Poèmes sur le thème des arbres_fichiers\13734910x23.htm Infected: Net-Worm.Win32.Allaple.a skipped H:\Sauvegardes\sauvegarde aout 2007\peinture pat\secrétariat\citations, poemes etc\citations\Poèmes sur le thème des arbres_fichiers\anim_cursor_wand.htm Infected: Net-Worm.Win32.Allaple.a skipped H:\Sauvegardes\sauvegarde aout 2007\peinture pat\secrétariat\citations, poemes etc\citations\Poèmes sur le thème des arbres_fichiers\fleche.htm Infected: Net-Worm.Win32.Allaple.a skipped H:\Sauvegardes\sauvegarde aout 2007\peinture pat\secrétariat\image pour peinture\inle-lake02.htm Infected: Net-Worm.Win32.Allaple.a skipped H:\Sauvegardes\sauvegarde aout 2007\peinture pat\secrétariat\image pour peinture\myanmar-monks01.htm Infected: Net-Worm.Win32.Allaple.a skipped H:\Sauvegardes\sauvegarde aout 2007\peinture pat\secrétariat\recherche salon, galerie\contacts galerie, emails et adresse et info\http _galerie-hartmonie.monsite.wanadoo.fr.htm Infected: Net-Worm.Win32.Allaple.a skipped H:\Sauvegardes\Sauvegarde de SAVE\noel\Mes téléchargements\noel\yzeron032.html Infected: Net-Worm.Win32.Allaple.a skipped H:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped Scan process completed.
  10. gary69
    Bonsoir à vous deux et merci pour ces réponses si rapides et hallucinantes de précisions Je vais faire ces scans dès ce soir et vous posterai les rapports, je pense, demain. En attendant merci encore pour vos réponses !
  11. gary69
    Bonjour, j'ai depuis un petit moment des publicités intempestives qui s'affichent contre mon gré et qui portent comme titre CiD, elles portent sur des casinos, des sites de rencontres etc... Merci de bien vouloir m'aider Voici le rapport Hijackthis : Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 19:43:41, on 19/02/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Avast4\aswUpdSv.exe C:\Program Files\Avast4\ashServ.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe C:\PROGRA~1\Avast4\ashDisp.exe C:\Program Files\VIAudioi\SBADeck\ADeck.exe C:\Program Files\Fichiers communs\Teleca Shared\CapabilityManager.exe C:\Program Files\BitTorrent_DNA\dna.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\MSI\DigiCell\DigiCell.exe C:\Program Files\MSI\PC Alert 4\PCAlert4.exe C:\WINDOWS\system32\PnkBstrA.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Avast4\ashMaiSv.exe C:\Program Files\Avast4\ashWebSv.exe C:\Program Files\Fichiers communs\Teleca Shared\Generic.exe C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\MSN Messenger\usnsvc.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Documents and Settings\ordi\Bureau\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.daemonsearch.com/fr/ R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: (no name) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - (no file) O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O4 - HKLM\..\Run: [sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [AudioDeck] C:\Program Files\VIAudioi\SBADeck\ADeck.exe 1 O4 - HKLM\..\Run: [CAMP SHIM EXIT HECK] C:\Documents and Settings\All Users\Application Data\That Face Camp Shim\Axis proxy.exe O4 - HKCU\..\Run: [Regs License] C:\DOCUME~1\ordi\APPLIC~1\CREATI~1\audio face.exe O4 - HKCU\..\Run: [bitTorrent DNA] "C:\Program Files\BitTorrent_DNA\dna.exe" O4 - HKUS\S-1-5-19\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'Default user') O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: DigiCell.lnk = C:\Program Files\MSI\DigiCell\DigiCell.exe O4 - Global Startup: PC Alert 4.lnk = C:\Program Files\MSI\PC Alert 4\PCAlert4.exe O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra button: Web Anti-Virus statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\SCIEPlgn.dll (file missing) O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w2/pr02/resources/MSNPUpld.cab O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab O16 - DPF: {5F5F9FB8-878E-4455-95E0-F64B2314288A} (ijjiPlugin2 Class) - http://gamedownload.ijjimax.com/gamedownlo...Plugin11USA.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O16 - DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} (GoPetsWeb Control) - https://secure.gopetslive.com/dev/GoPetsWeb.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Avast4\ashWebSv.exe O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe -- End of file - 5674 bytes
×
×
  • Créer...