teri56
-
Compteur de contenus
9 -
Inscription
-
Dernière visite
Type de contenu
Profils
Forums
Blogs
Tout ce qui a été posté par teri56
-
ci joint le rapport ;******************************************************************************* ********************************************************************************* ******************* ANALYSIS: 2008-06-05 20:33:31 PROTECTIONS: 1 MALWARE: 10 SUSPECTS: 0 ;******************************************************************************* ********************************************************************************* ******************* PROTECTIONS Description Version Active Updated ;=============================================================================== ================================================================================= =================== avast! antivirus 4.8.1201 [VPS 080605-0] 4.8.1201 No Yes ;=============================================================================== ================================================================================= =================== MALWARE Id Description Type Active Severity Disinfectable Disinfected Location ;=============================================================================== ================================================================================= =================== 00139535 Application/Processor HackTools No 0 Yes No C:\Lop SD\Process.exe 00145731 Cookie/Tribalfusion TrackingCookie No 0 Yes No C:\Documents and Settings\David\Application Data\Mozilla\Firefox\Profiles\63um60be.default\cookies.txt[.tribalfusion.com/] 00147814 Cookie/AspinallsOnlineCasino TrackingCookie No 0 Yes No C:\Documents and Settings\David\Cookies\david@pacificpoker[1].txt 00167642 Cookie/Com.com TrackingCookie No 0 Yes No C:\Documents and Settings\David\Application Data\Mozilla\Firefox\Profiles\63um60be.default\cookies.txt[.com.com/] 00167704 Cookie/Xiti TrackingCookie No 0 Yes No C:\Documents and Settings\David\Application Data\Mozilla\Firefox\Profiles\63um60be.default\cookies.txt[.xiti.com/] 00167704 Cookie/Xiti TrackingCookie No 0 Yes No C:\Documents and Settings\David\Cookies\david@xiti[1].txt 00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\David\Application Data\Mozilla\Firefox\Profiles\63um60be.default\cookies.txt[.serving-sys.com/] 00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\David\Application Data\Mozilla\Firefox\Profiles\63um60be.default\cookies.txt[.serving-sys.com/] 00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\David\Application Data\Mozilla\Firefox\Profiles\63um60be.default\cookies.txt[.serving-sys.com/] 00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\David\Application Data\Mozilla\Firefox\Profiles\63um60be.default\cookies.txt[.serving-sys.com/] 00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\David\Application Data\Mozilla\Firefox\Profiles\63um60be.default\cookies.txt[.serving-sys.com/] 00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\David\Application Data\Mozilla\Firefox\Profiles\63um60be.default\cookies.txt[.serving-sys.com/] 00168093 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\David\Application Data\Mozilla\Firefox\Profiles\63um60be.default\cookies.txt[.bs.serving-sys.com/] 00168106 Cookie/Weborama TrackingCookie No 0 Yes No C:\Documents and Settings\David\Application Data\Mozilla\Firefox\Profiles\63um60be.default\cookies.txt[.weborama.fr/] 00168109 Cookie/Adtech TrackingCookie No 0 Yes No C:\Documents and Settings\David\Cookies\david@adtech[1].txt 00273339 Cookie/Smartadserver TrackingCookie No 0 Yes No C:\Documents and Settings\David\Application Data\Mozilla\Firefox\Profiles\63um60be.default\cookies.txt[.smartadserver.com/] 00273339 Cookie/Smartadserver TrackingCookie No 0 Yes No C:\Documents and Settings\David\Cookies\david@smartadserver[1].txt 00273339 Cookie/Smartadserver TrackingCookie No 0 Yes No C:\Documents and Settings\David\Application Data\Mozilla\Firefox\Profiles\63um60be.default\cookies.txt[.smartadserver.com/] 00273339 Cookie/Smartadserver TrackingCookie No 0 Yes No C:\Documents and Settings\David\Application Data\Mozilla\Firefox\Profiles\63um60be.default\cookies.txt[.smartadserver.com/] 00273339 Cookie/Smartadserver TrackingCookie No 0 Yes No C:\Documents and Settings\David\Application Data\Mozilla\Firefox\Profiles\63um60be.default\cookies.txt[.smartadserver.com/] ;=============================================================================== ================================================================================= =================== SUSPECTS Sent Location y ;=============================================================================== ================================================================================= =================== ;=============================================================================== ================================================================================= =================== VULNERABILITIES Id Severity Description y ;=============================================================================== ================================================================================= =================== 182046 HIGH MS07-067 y ;=============================================================================== ================================================================================= ===================
-
Re Merci de ton aide j'ai bien compris tout ce que tu m'as dit mais il va me falloir du temps car c'est pas simple pour moi apparemment je n'ai plus de fenetre de pub de cid donc ça à marché merci encore et bonne continuation dans ce super forum :P :P :P
-
re salut @ vous deux et merci encore j'ai le rapport de lop Par contre pour supprimer f securiser comment fait on? Pour avast je sais mais l'autre je sais pas. Je pourrai mettre antivir à leur place comme vous me le conseillez -----------------------[ Lop S&D 4.2.1-2 XP/Vista ]--------------------- [ Windows XP (NT 5.1) Build 2600, Service Pack 2 ] [ USER : David ] [ "C:\Lop SD" ] [ Selection : 3 ] [ 04/06/2008 | 17:45:04,92 ] [ PC : L ] [ MAJ : 01-06-2008 | 15:51 ] \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION ///////////////////////////// Supprimé! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\flag ace stupid data\Burn grid.exe Supprimé! - C:\WINDOWS\Prefetch\BURN GRID.EXE-277FA5D0.pf Supprimé! - C:\DOCUME~1\David\Cookies\david@www.adserver5[1].txt Supprimé! - C:\DOCUME~1\David\Cookies\david@adopt.euroclick[1].txt Supprimé! - C:\DOCUME~1\David\Cookies\david@32vegas[1].txt Supprimé! - C:\DOCUME~1\David\Cookies\david@banner.32vegas[2].txt Supprimé! - C:\DOCUME~1\David\Cookies\david@2xmoinscher[1].txt Supprimé! - C:\DOCUME~1\David\Cookies\david@www.2xmoinscher[2].txt Supprimé! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\flag ace stupid data //////////////////////////////////////-\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ -------------[ Listing des dossiers dans Application Data ]------------ [24/04/2008|17:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple [26/12/2006|16:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer [03/12/2007|21:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avg7 [26/01/2007|22:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Brother [15/04/2008|13:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Coktel [03/03/2006|21:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink [03/03/2006|16:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini [17/04/2008|16:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Downloaded Installations [16/12/2007|20:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\F-Secure [16/12/2007|20:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\fssg [17/02/2008|12:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google [16/12/2006|09:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hpzinstall.log [26/01/2007|22:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield [13/06/2006|19:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\JollyBear [19/05/2008|23:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft [03/06/2008|21:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes [20/04/2008|19:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MGS [19/05/2008|23:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft [27/08/2007|17:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QTSBandwidthCache [02/07/2006|20:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime [27/05/2008|22:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy [03/03/2006|20:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage [18/08/2006|18:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar [08/06/2007|18:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Winferno [05/04/2008|23:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller [21/04/2008|22:32] C:\DOCUME~1\David\APPLIC~1\$_hpcst$.hpc [07/12/2007|19:54] C:\DOCUME~1\David\APPLIC~1\Adobe [13/05/2008|21:02] C:\DOCUME~1\David\APPLIC~1\Ahead [27/08/2007|17:50] C:\DOCUME~1\David\APPLIC~1\Apple Computer [26/01/2008|21:24] C:\DOCUME~1\David\APPLIC~1\ArcSoft [03/03/2006|18:58] C:\DOCUME~1\David\APPLIC~1\ATI [26/01/2007|22:51] C:\DOCUME~1\David\APPLIC~1\Brother [11/06/2006|13:50] C:\DOCUME~1\David\APPLIC~1\Canon [25/11/2006|13:02] C:\DOCUME~1\David\APPLIC~1\CyberLink [03/03/2006|16:20] C:\DOCUME~1\David\APPLIC~1\desktop.ini [03/03/2006|21:22] C:\DOCUME~1\David\APPLIC~1\Dossier de t‚l‚chargement Share-to-Web [04/03/2006|10:21] C:\DOCUME~1\David\APPLIC~1\Dossier de t‚l‚chargement Share-to-Web [03/05/2008|20:36] C:\DOCUME~1\David\APPLIC~1\F-Secure [19/08/2006|17:42] C:\DOCUME~1\David\APPLIC~1\Help [21/04/2008|17:28] C:\DOCUME~1\David\APPLIC~1\Identities [16/03/2008|19:28] C:\DOCUME~1\David\APPLIC~1\InterTrust [19/05/2008|23:10] C:\DOCUME~1\David\APPLIC~1\Lavasoft [25/04/2008|17:37] C:\DOCUME~1\David\APPLIC~1\ma-config.com [03/03/2006|19:33] C:\DOCUME~1\David\APPLIC~1\Macromedia [03/06/2008|21:27] C:\DOCUME~1\David\APPLIC~1\Malwarebytes [19/04/2008|15:49] C:\DOCUME~1\David\APPLIC~1\Media Player Classic [04/05/2008|20:37] C:\DOCUME~1\David\APPLIC~1\Microsoft [03/03/2006|20:55] C:\DOCUME~1\David\APPLIC~1\Microsoft Web Folders [05/04/2008|21:58] C:\DOCUME~1\David\APPLIC~1\Mozilla [18/08/2006|18:25] C:\DOCUME~1\David\APPLIC~1\MSNInstaller [02/07/2006|20:59] C:\DOCUME~1\David\APPLIC~1\OLYMPUS [04/06/2008|17:35] C:\DOCUME~1\David\APPLIC~1\OpenOffice.org2 [01/06/2008|11:35] C:\DOCUME~1\David\APPLIC~1\programisouser [15/04/2008|21:25] C:\DOCUME~1\David\APPLIC~1\Shareaza [28/12/2007|11:33] C:\DOCUME~1\David\APPLIC~1\Sun [07/04/2008|22:28] C:\DOCUME~1\David\APPLIC~1\Talkback [05/04/2008|21:58] C:\DOCUME~1\David\APPLIC~1\Thunderbird [14/04/2008|20:39] C:\DOCUME~1\David\APPLIC~1\vlc [03/03/2006|16:20] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini [03/03/2006|15:30] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft [15/04/2008|21:25] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft [03/12/2007|21:21] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft ----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]--------------- [24/04/2008 18:53][--ah-----] C:\WINDOWS\tasks\Microsoft_Hardware_Launch_IPoint_exe.job [15/05/2008 17:45][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job [07/05/2008 09:00][--a------] C:\WINDOWS\tasks\rpc.job [04/06/2008 17:34][--ah-----] C:\WINDOWS\tasks\SA.DAT [05/08/2004 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini ---------------[ Listing des dossiers dans C:\Program Files ]-------------- [16/03/2008|19:28] C:\Program Files\Adobe [13/05/2008|21:00] C:\Program Files\Ahead [04/05/2008|21:13] C:\Program Files\AirisManager [03/12/2007|21:47] C:\Program Files\Alwil Software [03/05/2008|13:16] C:\Program Files\Apple Software Update [29/05/2008|21:35] C:\Program Files\ApprenezLesPremiersSecours [03/03/2006|16:54] C:\Program Files\ATI Technologies [13/05/2008|10:17] C:\Program Files\AviSynth 2.5 [03/12/2007|21:00] C:\Program Files\BeClean [03/12/2007|21:01] C:\Program Files\Brother [03/12/2007|20:51] C:\Program Files\CCleaner [03/12/2007|21:36] C:\Program Files\CleanUp2 [06/04/2008|13:33] C:\Program Files\coktel [03/03/2006|15:27] C:\Program Files\ComPlus Applications [15/03/2008|11:43] C:\Program Files\CONEXANT [03/03/2006|21:01] C:\Program Files\CyberLink [03/12/2007|21:11] C:\Program Files\CyberLink DVD Solution [06/04/2008|15:47] C:\Program Files\directx [19/05/2008|23:09] C:\Program Files\Fichiers communs [03/12/2007|21:08] C:\Program Files\Freeze.com [06/04/2008|10:41] C:\Program Files\Google [03/03/2006|20:27] C:\Program Files\Grisoft [03/12/2007|21:18] C:\Program Files\Hewlett-Packard [28/12/2006|16:29] C:\Program Files\IncrediMail [15/04/2008|13:28] C:\Program Files\InstallShield Installation Information [05/05/2008|18:07] C:\Program Files\Internet Explorer [24/04/2008|17:58] C:\Program Files\iPod [24/04/2008|17:58] C:\Program Files\iTunes [18/05/2008|14:42] C:\Program Files\Java [27/04/2008|17:01] C:\Program Files\K-Lite Codec Pack [19/05/2008|23:10] C:\Program Files\Lavasoft [24/04/2008|18:44] C:\Program Files\ma-config.com [03/06/2008|21:27] C:\Program Files\Malwarebytes' Anti-Malware [18/08/2006|17:42] C:\Program Files\Messenger [04/05/2008|20:37] C:\Program Files\Microsoft ActiveSync [08/06/2007|19:06] C:\Program Files\Microsoft CAPICOM 2.1.0.2 [03/03/2006|20:55] C:\Program Files\microsoft frontpage [24/04/2008|18:52] C:\Program Files\Microsoft IntelliPoint [03/03/2006|20:55] C:\Program Files\Microsoft Office [15/04/2008|13:28] C:\Program Files\Mindscape [26/01/2008|21:25] C:\Program Files\MioNet [03/03/2006|15:27] C:\Program Files\Movie Maker [04/06/2008|17:39] C:\Program Files\Mozilla Firefox [18/08/2006|18:25] C:\Program Files\MSN [10/01/2007|19:58] C:\Program Files\MSN Games [03/03/2006|15:26] C:\Program Files\MSN Gaming Zone [14/10/2006|17:22] C:\Program Files\MSXML 4.0 [24/04/2008|18:51] C:\Program Files\MSXML 6.0 [03/03/2006|15:28] C:\Program Files\NetMeeting [18/05/2008|14:42] C:\Program Files\OpenOffice.org 2.4 [21/01/2007|15:09] C:\Program Files\orange [13/06/2007|17:15] C:\Program Files\Outlook Express [31/03/2008|13:53] C:\Program Files\Pack Securite [02/06/2008|20:43] C:\Program Files\Panda Security [01/06/2008|11:34] C:\Program Files\programisouser [24/04/2008|17:57] C:\Program Files\QuickTime [12/01/2007|21:15] C:\Program Files\Real [24/04/2008|21:18] C:\Program Files\Realtek AC97 [13/05/2008|10:19] C:\Program Files\Ripp-it_AM [12/01/2007|21:15] C:\Program Files\RngInterstitial.dll [03/12/2007|21:15] C:\Program Files\ScanSoft [15/04/2008|21:28] C:\Program Files\Shareaza [03/03/2006|16:56] C:\Program Files\SoftChris [24/04/2008|21:06] C:\Program Files\Speed Link [06/02/2008|19:11] C:\Program Files\Spybot - Search & Destroy [03/06/2008|17:44] C:\Program Files\Trend Micro [03/03/2006|15:35] C:\Program Files\Uninstall Information [11/03/2004|14:27] C:\Program Files\Uninstall_CDS.exe [10/01/2007|19:58] C:\Program Files\VCW VicMan's Photo Editor [03/03/2006|17:06] C:\Program Files\VIA [25/05/2008|10:22] C:\Program Files\VideoLAN [05/04/2008|23:30] C:\Program Files\Windows Live [02/06/2008|21:09] C:\Program Files\Windows Live Safety Center [27/08/2007|17:47] C:\Program Files\Windows Live Toolbar [17/04/2008|16:00] C:\Program Files\Windows Media Connect 2 [17/04/2008|16:00] C:\Program Files\Windows Media Player [03/03/2006|15:26] C:\Program Files\Windows NT [03/03/2006|15:28] C:\Program Files\WindowsUpdate [18/10/2006|16:54] C:\Program Files\WinRAR [03/03/2006|15:30] C:\Program Files\xerox [02/06/2008|20:41] C:\Program Files\Yahoo! ------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------ [16/03/2008|19:28] C:\Program Files\Fichiers communs\Adobe [23/01/2008|20:28] C:\Program Files\Fichiers communs\Ahead [24/04/2008|17:54] C:\Program Files\Fichiers communs\Apple [01/06/2006|18:12] C:\Program Files\Fichiers communs\Canon [03/03/2006|20:57] C:\Program Files\Fichiers communs\Designer [06/04/2008|15:48] C:\Program Files\Fichiers communs\DirectX [03/03/2006|21:23] C:\Program Files\Fichiers communs\Hewlett-Packard [03/12/2007|21:01] C:\Program Files\Fichiers communs\InstallShield [28/12/2007|11:31] C:\Program Files\Fichiers communs\Java [22/04/2008|19:04] C:\Program Files\Fichiers communs\Microsoft Shared [03/03/2006|15:28] C:\Program Files\Fichiers communs\MSSoap [03/03/2006|16:20] C:\Program Files\Fichiers communs\ODBC [12/01/2007|21:20] C:\Program Files\Fichiers communs\Real [03/03/2006|15:28] C:\Program Files\Fichiers communs\Services [03/03/2006|16:20] C:\Program Files\Fichiers communs\SpeechEngines [13/06/2007|17:15] C:\Program Files\Fichiers communs\System [10/03/2008|18:18] C:\Program Files\Fichiers communs\WindowsLiveInstaller [19/05/2008|23:09] C:\Program Files\Fichiers communs\Wise Installation Wizard ---------------------------[ Process ]-------------------------- ... 53 ... OK ! ----------------------[ Recherche avec S_Lop ]--------------------- Aucun fichier / dossier Lop trouvé ! -----------------[ Recherche de Fichiers / Dossiers Lop ]----------------- C:\DOCUME~1\David\Cookies\david@adin.bigpoint[1].txt C:\DOCUME~1\David\Cookies\david@bigpoint[1].txt C:\DOCUME~1\David\Cookies\david@fr1.seafight.bigpoint[1].txt C:\DOCUME~1\David\Cookies\david@pacificpoker[1].txt C:\DOCUME~1\David\Cookies\david@fr1.seafight.bigpoint[1].txt ----------------------[ Verification du Registre ]---------------------- ..... OK ! --------------------[ Verification du fichier Hosts ]--------------------- Fichier Hosts PROPRE ----------------[ Recherche de fichiers avec Catchme ]----------------- catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-06-04 17:46:17 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden processes ... scanning hidden files ... scan completed successfully hidden processes: 0 hidden files: 0 --------------------[ Recherche d'autres infections ]--------------------- => C:\Documents and Settings\All Users\Documents\ludo\Programmes\SiSoftware Sandra Professional 2005 SR2a - Keygen.rar [F:150][D:10]-> C:\DOCUME~1\David\LOCALS~1\Temp [F:39][D:0]-> C:\DOCUME~1\David\Cookies [F:3333][D:8]-> C:\DOCUME~1\David\LOCALS~1\TEMPOR~1\content.IE5 --------------------[ Fin du rapport a 17:47:18,57 ]----------------------
-
ca commence à devenir bon par contre je n'arrive pas supprimer le fichier C:\Documents and Settings\All Users\Application Data\flag ace stupid data\Burn grid.exe. Voici le rapport Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 23:19:36, on 03/06/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16640) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Pack Securite\Common\FSM32.EXE C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe C:\Program Files\QuickTime\QTTask.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Microsoft IntelliPoint\ipoint.exe C:\WINDOWS\system32\RunDll32.exe C:\WINDOWS\SOUNDMAN.EXE C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\Program Files\Microsoft ActiveSync\Wcescomm.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Internet Explorer\IEXPLORE.EXE c:\Program Files\Microsoft IntelliPoint\dpupdchk.exe C:\Program Files\OpenOffice.org 2.4\program\soffice.exe C:\Program Files\OpenOffice.org 2.4\program\soffice.BIN C:\PROGRA~1\MICROS~3\rapimgr.exe C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files\Pack Securite\Common\FSMA32.EXE C:\Program Files\Pack Securite\Common\FSMB32.EXE C:\Program Files\Pack Securite\Common\FCH32.EXE C:\WINDOWS\system32\svchost.exe C:\Program Files\Pack Securite\Common\FAMEH32.EXE C:\Program Files\Pack Securite\FSPC\fspc.exe C:\Program Files\Pack Securite\FSGUI\fsguidll.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\Pack Securite\FSAUA\program\fsaua.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\Program Files\Pack Securite\FSAUA\program\fsus.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file) O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe" O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\Pack Securite\Common\FSM32.EXE" /splash O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\Pack Securite\FSGUI\TNBUtil.exe" /CHECKALL /WAITFORSW O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [intelliPoint] "c:\Program Files\Microsoft IntelliPoint\ipoint.exe" O4 - HKLM\..\Run: [CmUsbSound] RunDll32 cmcnfgu.cpl,CMICtrlWnd O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\Wcescomm.exe" O4 - HKCU\..\Run: [ChinLite] C:\DOCUME~1\David\APPLIC~1\PROGRA~1\IDLE SHIM.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Startup: OpenOffice.org 2.4.lnk = C:\Program Files\OpenOffice.org 2.4\program\quickstart.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra button: Parental... - {200DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\Pack Securite\FSPC\fspcmsie.dll O9 - Extra button: (no name) - {200DB664-75B5-47c0-8B45-A44ACCF73F01} - C:\Program Files\Pack Securite\FSPC\fspcmsie.dll O9 - Extra 'Tools' menuitem: Parental... - {200DB664-75B5-47c0-8B45-A44ACCF73F01} - C:\Program Files\Pack Securite\FSPC\fspcmsie.dll O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll O9 - Extra 'Tools' menuitem: Créer un Favori de l'appareil mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe O9 - Extra button: Go to Blink - {95F6242A-62E4-4756-892F-F5D5D399CA25} - C:\Program Files\Blink\home.js (file missing) O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O15 - Trusted Zone: http://www.secuser.com O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: Blink Service - Unknown owner - C:\Program Files\Blink\blink.exe (file missing) O23 - Service: F-Secure Automatic Update Agent (FSAUA) - F-Secure Corporation - C:\Program Files\Pack Securite\FSAUA\program\fsaua.exe O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\Pack Securite\Common\FSMA32.EXE O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe -- End of file - 9621 bytes
-
ça c'est fait aussi merci de ton aide
-
je colle le rapport AhnLab-V3 2008.5.30.1 2008.06.03 - AntiVir 7.8.0.26 2008.06.03 - Authentium 5.1.0.4 2008.06.03 W32/Swizzor.D.gen!Eldorado Avast 4.8.1195.0 2008.06.03 - AVG 7.5.0.516 2008.06.03 - BitDefender 7.2 2008.06.03 - CAT-QuickHeal 9.50 2008.06.03 - ClamAV 0.92.1 2008.06.03 - DrWeb 4.44.0.09170 2008.06.03 - eSafe 7.0.15.0 2008.06.03 - eTrust-Vet 31.4.5845 2008.06.03 - Ewido 4.0 2008.06.03 - F-Prot 4.4.4.56 2008.06.02 W32/Swizzor.D.gen!Eldorado Fortinet 3.14.0.0 2008.06.03 - GData 2.0.7306.1023 2008.06.03 - Ikarus T3.1.1.26.0 2008.06.03 - Kaspersky 7.0.0.125 2008.06.03 - McAfee 5309 2008.06.03 - Microsoft 1.3604 2008.06.03 - NOD32v2 3156 2008.06.03 - Norman 5.80.02 2008.06.03 - Panda 9.0.0.4 2008.06.03 - Prevx1 V2 2008.06.03 - Rising 20.47.12.00 2008.06.03 - Sophos 4.29.0 2008.06.03 - Sunbelt 3.0.1143.1 2008.06.03 - Symantec 10 2008.06.03 - TheHacker 6.2.92.333 2008.06.03 - VBA32 3.12.6.7 2008.06.03 - VirusBuster 4.3.26:9 2008.06.03 - Webwasher-Gateway 6.6.2 2008.06.03 BlockReason.0 Information additionnelle File size: 2240000 bytes MD5...: 034266eed6df824d24b7735f1a15f6dc SHA1..: e6a846d0d35c64b9b84c4e62ecfd30e8603a7fa9 SHA256: 44f4442ca50adab91f834cf4ce21752cc7c0bfc7c6466795ed45967ca25a1b2e SHA512: a08413d1e6fbe3570c0ca7c04f915438ec6f2d83f30b4af101c8e2f4f0e7df26 e7fdf9fc343ed41f4ea13e7dd9769f62be5cbff0698513c953abd8b65a9759d1 PEiD..: Armadillo v1.71 PEInfo: PE Structure information ( base data ) entrypointaddress.: 0x4067b8 timedatestamp.....: 0x46e25d26 (Sat Sep 08 08:28:22 2007) machinetype.......: 0x14c (I386) ( 4 sections ) name viradd virsiz rawdsiz ntrpy md5 .text 0x1000 0x15b75 0x15c00 6.00 8b7a5d80121ee106718b0bc6f7095147 .rdata 0x17000 0x4070 0xe00 5.31 05c020c097db36dbf5b46b729826388d .data 0x1c000 0x2078cc 0x209c00 8.00 4accfe7a24a4e3195218e85d677fd257 .rsrc 0x224000 0x22d8 0x2400 3.38 10c2618541461257ec8a948a6938fe34 ( 4 imports ) > KERNEL32.dll: GetModuleHandleA, LeaveCriticalSection, SetVolumeLabelW, HeapAlloc, GetCurrentProcess, MultiByteToWideChar, CreateFileA, TlsGetValue, GetLastError, VirtualQuery, TlsFree, GetThreadSelectorEntry, EnterCriticalSection, GetEnvironmentStringsW, GetStringTypeW, GetTempFileNameA, LoadLibraryA, TerminateProcess, QueryPerformanceCounter, RtlUnwind, ExitProcess, DeleteCriticalSection, OpenFileMappingA, WriteFile, UnhandledExceptionFilter, SetCriticalSectionSpinCount, GetStringTypeA, InitializeCriticalSection, GetStdHandle, TlsAlloc, GetCurrentThread, SetLastError, GetCurrentThreadId, GetSystemTimeAsFileTime, GetTickCount, TlsSetValue, GetFileType, InterlockedExchange, GetCurrentDirectoryA, GetProfileStringW, FlushViewOfFile, SetConsoleOutputCP, GetPrivateProfileSectionW, LCMapStringW, GetACP, GetConsoleTitleW, SetEvent, GetOEMCP, WritePrivateProfileSectionA, GetTimeZoneInformation, FindNextFileW, HeapDestroy, GetVolumeInformationW, GetProcAddress, GetCurrentProcessId, GetStartupInfoA, SetEndOfFile, HeapReAlloc, GetCommandLineA, VirtualFree, WideCharToMultiByte, VirtualAlloc, GetModuleFileNameA, GetEnvironmentStrings, GetVersion, SetHandleCount, LCMapStringA, HeapCreate, FreeEnvironmentStringsA, HeapFree, GetCPInfo, FreeEnvironmentStringsW, IsBadWritePtr, CreateSemaphoreA, LoadLibraryExA > SHELL32.dll: ShellExecuteExW > comdlg32.dll: GetSaveFileNameW > USER32.dll: IsCharAlphaA, SetUserObjectSecurity, PostThreadMessageW, GetDesktopWindow, InternalGetWindowText, TranslateMDISysAccel, DrawIconEx, ReplyMessage, BlockInput ( 0 exports )
-
ça yé, j'ai fait le scan avec Malwarebyte je donne le rapport Malwarebytes' Anti-Malware 1.14 Version de la base de données: 818 22:36:47 03/06/2008 mbam-log-6-3-2008 (22-36-40).txt Type de recherche: Examen complet (C:\|) Eléments examinés: 84709 Temps écoulé: 58 minute(s), 51 second(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 2 Valeur(s) du Registre infectée(s): 0 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 0 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): HKEY_CLASSES_ROOT\CLSID\{9afb8248-617f-460d-9366-d71cdeda3179} (Adware.MyWebSearch) -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Multimedia\WMPlayer\Schemes\f3pss (Adware.MyWebSearch) -> No action taken. Valeur(s) du Registre infectée(s): (Aucun élément nuisible détecté) Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): (Aucun élément nuisible détecté)
-
Salut J'ai avast mais je vois pas lequel j'ai en plus!!
-
bonjour, Je suis nouveau sur le forum et j'ai un probléme de virus apparemment "des fenetres de pub n'arrete pas de s'ouvrir" Je joins les rapport merci de votre aide Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 17:44:22, on 03/06/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16640) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Pack Securite\Common\FSM32.EXE C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe C:\Program Files\QuickTime\QTTask.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Microsoft IntelliPoint\ipoint.exe C:\WINDOWS\system32\RunDll32.exe C:\WINDOWS\SOUNDMAN.EXE C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\Program Files\Microsoft ActiveSync\Wcescomm.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\OpenOffice.org 2.4\program\soffice.exe C:\Program Files\OpenOffice.org 2.4\program\soffice.BIN C:\PROGRA~1\MICROS~3\rapimgr.exe c:\Program Files\Microsoft IntelliPoint\dpupdchk.exe C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files\Pack Securite\Common\FSMA32.EXE C:\Program Files\Pack Securite\Common\FSMB32.EXE C:\WINDOWS\system32\svchost.exe C:\Program Files\Pack Securite\Common\FCH32.EXE C:\Program Files\Pack Securite\Common\FAMEH32.EXE C:\Program Files\Pack Securite\FSPC\fspc.exe C:\Program Files\Pack Securite\FSGUI\fsguidll.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\Pack Securite\FSAUA\program\fsaua.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\Program Files\Pack Securite\FSAUA\program\fsus.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Windows Live\Messenger\usnsvc.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file) O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe" O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\Pack Securite\Common\FSM32.EXE" /splash O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\Pack Securite\FSGUI\TNBUtil.exe" /CHECKALL /WAITFORSW O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [intelliPoint] "c:\Program Files\Microsoft IntelliPoint\ipoint.exe" O4 - HKLM\..\Run: [CmUsbSound] RunDll32 cmcnfgu.cpl,CMICtrlWnd O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [stupid Data Dart Wave] C:\Documents and Settings\All Users\Application Data\flag ace stupid data\Burn grid.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\Wcescomm.exe" O4 - HKCU\..\Run: [ChinLite] C:\DOCUME~1\David\APPLIC~1\PROGRA~1\IDLE SHIM.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Startup: OpenOffice.org 2.4.lnk = C:\Program Files\OpenOffice.org 2.4\program\quickstart.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra button: Parental... - {200DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\Pack Securite\FSPC\fspcmsie.dll O9 - Extra button: (no name) - {200DB664-75B5-47c0-8B45-A44ACCF73F01} - C:\Program Files\Pack Securite\FSPC\fspcmsie.dll O9 - Extra 'Tools' menuitem: Parental... - {200DB664-75B5-47c0-8B45-A44ACCF73F01} - C:\Program Files\Pack Securite\FSPC\fspcmsie.dll O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll O9 - Extra 'Tools' menuitem: Créer un Favori de l'appareil mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe O9 - Extra button: Go to Blink - {95F6242A-62E4-4756-892F-F5D5D399CA25} - C:\Program Files\Blink\home.js (file missing) O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O15 - Trusted Zone: http://www.secuser.com O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} - http://messenger.zone.msn.com/binary/MineS...er.cab31267.cab O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.mail.live.com/mail/w1/resources/MSNPUpld.cab O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/...lscbase9563.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1141393457078 O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2005111...all/xscan53.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {BD8667B7-38D8-4C77-B580-18C3E146372C} (Creative Toolbox Plug-in) - http://bmm.imgag.com/imgag/cp/install/crusher-fr.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O16 - DPF: {D8089245-3211-40F6-819B-9E5E92CD61A2} (FlashXControl Object) - https://signin3.valueactive.com/Register/Br...018/flashax.cab O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: Blink Service - Unknown owner - C:\Program Files\Blink\blink.exe (file missing) O23 - Service: F-Secure Automatic Update Agent (FSAUA) - F-Secure Corporation - C:\Program Files\Pack Securite\FSAUA\program\fsaua.exe O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\Pack Securite\Common\FSMA32.EXE O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe -- End of file - 11686 bytes le deuxieme -----------------------[ Lop S&D 4.2.1-2 XP/Vista ]--------------------- [ Windows XP (NT 5.1) Build 2600, Service Pack 2 ] [ USER : David ] [ "C:\Lop SD" ] [ Selection : 1 ] [ 03/06/2008 | 17:47:03,18 ] [ PC : L ] [ MAJ : 01-06-2008 | 15:51 ] -------------[ Listing des dossiers dans Application Data ]------------ [24/04/2008|17:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple [26/12/2006|16:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer [03/12/2007|21:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avg7 [26/01/2007|22:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Brother [15/04/2008|13:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Coktel [03/03/2006|21:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink [03/03/2006|16:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini [17/04/2008|16:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Downloaded Installations [01/06/2008|11:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\flag ace stupid data [16/12/2007|20:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\F-Secure [16/12/2007|20:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\fssg [17/02/2008|12:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google [16/12/2006|09:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hpzinstall.log [26/01/2007|22:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield [13/06/2006|19:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\JollyBear [19/05/2008|23:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft [20/04/2008|19:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MGS [19/05/2008|23:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft [27/08/2007|17:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QTSBandwidthCache [02/07/2006|20:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime [27/05/2008|22:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy [03/03/2006|20:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage [18/08/2006|18:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar [08/06/2007|18:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Winferno [05/04/2008|23:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller [21/04/2008|22:32] C:\DOCUME~1\David\APPLIC~1\$_hpcst$.hpc [07/12/2007|19:54] C:\DOCUME~1\David\APPLIC~1\Adobe [13/05/2008|21:02] C:\DOCUME~1\David\APPLIC~1\Ahead [27/08/2007|17:50] C:\DOCUME~1\David\APPLIC~1\Apple Computer [26/01/2008|21:24] C:\DOCUME~1\David\APPLIC~1\ArcSoft [03/03/2006|18:58] C:\DOCUME~1\David\APPLIC~1\ATI [26/01/2007|22:51] C:\DOCUME~1\David\APPLIC~1\Brother [11/06/2006|13:50] C:\DOCUME~1\David\APPLIC~1\Canon [25/11/2006|13:02] C:\DOCUME~1\David\APPLIC~1\CyberLink [03/03/2006|16:20] C:\DOCUME~1\David\APPLIC~1\desktop.ini [03/03/2006|21:22] C:\DOCUME~1\David\APPLIC~1\Dossier de t‚l‚chargement Share-to-Web [04/03/2006|10:21] C:\DOCUME~1\David\APPLIC~1\Dossier de t‚l‚chargement Share-to-Web [03/05/2008|20:36] C:\DOCUME~1\David\APPLIC~1\F-Secure [19/08/2006|17:42] C:\DOCUME~1\David\APPLIC~1\Help [21/04/2008|17:28] C:\DOCUME~1\David\APPLIC~1\Identities [16/03/2008|19:28] C:\DOCUME~1\David\APPLIC~1\InterTrust [19/05/2008|23:10] C:\DOCUME~1\David\APPLIC~1\Lavasoft [25/04/2008|17:37] C:\DOCUME~1\David\APPLIC~1\ma-config.com [03/03/2006|19:33] C:\DOCUME~1\David\APPLIC~1\Macromedia [19/04/2008|15:49] C:\DOCUME~1\David\APPLIC~1\Media Player Classic [04/05/2008|20:37] C:\DOCUME~1\David\APPLIC~1\Microsoft [03/03/2006|20:55] C:\DOCUME~1\David\APPLIC~1\Microsoft Web Folders [05/04/2008|21:58] C:\DOCUME~1\David\APPLIC~1\Mozilla [18/08/2006|18:25] C:\DOCUME~1\David\APPLIC~1\MSNInstaller [02/07/2006|20:59] C:\DOCUME~1\David\APPLIC~1\OLYMPUS [03/06/2008|16:58] C:\DOCUME~1\David\APPLIC~1\OpenOffice.org2 [01/06/2008|11:35] C:\DOCUME~1\David\APPLIC~1\programisouser [15/04/2008|21:25] C:\DOCUME~1\David\APPLIC~1\Shareaza [28/12/2007|11:33] C:\DOCUME~1\David\APPLIC~1\Sun [07/04/2008|22:28] C:\DOCUME~1\David\APPLIC~1\Talkback [05/04/2008|21:58] C:\DOCUME~1\David\APPLIC~1\Thunderbird [14/04/2008|20:39] C:\DOCUME~1\David\APPLIC~1\vlc [03/03/2006|16:20] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini [03/03/2006|15:30] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft [15/04/2008|21:25] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft [03/12/2007|21:21] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft ----------------[ Tâches planifiées dans C:\WINDOWS\tasks ]--------------- [24/04/2008 18:53][--ah-----] C:\WINDOWS\tasks\Microsoft_Hardware_Launch_IPoint_exe.job [15/05/2008 17:45][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job [07/05/2008 09:00][--a------] C:\WINDOWS\tasks\rpc.job [03/06/2008 16:58][--ah-----] C:\WINDOWS\tasks\SA.DAT [05/08/2004 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini ---------------[ Listing des dossiers dans C:\Program Files ]-------------- [16/03/2008|19:28] C:\Program Files\Adobe [13/05/2008|21:00] C:\Program Files\Ahead [04/05/2008|21:13] C:\Program Files\AirisManager [03/12/2007|21:47] C:\Program Files\Alwil Software [03/05/2008|13:16] C:\Program Files\Apple Software Update [29/05/2008|21:35] C:\Program Files\ApprenezLesPremiersSecours [03/03/2006|16:54] C:\Program Files\ATI Technologies [13/05/2008|10:17] C:\Program Files\AviSynth 2.5 [03/12/2007|21:00] C:\Program Files\BeClean [03/12/2007|21:01] C:\Program Files\Brother [03/12/2007|20:51] C:\Program Files\CCleaner [03/12/2007|21:36] C:\Program Files\CleanUp2 [06/04/2008|13:33] C:\Program Files\coktel [03/03/2006|15:27] C:\Program Files\ComPlus Applications [15/03/2008|11:43] C:\Program Files\CONEXANT [03/03/2006|21:01] C:\Program Files\CyberLink [03/12/2007|21:11] C:\Program Files\CyberLink DVD Solution [06/04/2008|15:47] C:\Program Files\directx [19/05/2008|23:09] C:\Program Files\Fichiers communs [03/12/2007|21:08] C:\Program Files\Freeze.com [06/04/2008|10:41] C:\Program Files\Google [03/03/2006|20:27] C:\Program Files\Grisoft [03/12/2007|21:18] C:\Program Files\Hewlett-Packard [28/12/2006|16:29] C:\Program Files\IncrediMail [15/04/2008|13:28] C:\Program Files\InstallShield Installation Information [05/05/2008|18:07] C:\Program Files\Internet Explorer [24/04/2008|17:58] C:\Program Files\iPod [24/04/2008|17:58] C:\Program Files\iTunes [18/05/2008|14:42] C:\Program Files\Java [27/04/2008|17:01] C:\Program Files\K-Lite Codec Pack [19/05/2008|23:10] C:\Program Files\Lavasoft [24/04/2008|18:44] C:\Program Files\ma-config.com [18/08/2006|17:42] C:\Program Files\Messenger [04/05/2008|20:37] C:\Program Files\Microsoft ActiveSync [08/06/2007|19:06] C:\Program Files\Microsoft CAPICOM 2.1.0.2 [03/03/2006|20:55] C:\Program Files\microsoft frontpage [24/04/2008|18:52] C:\Program Files\Microsoft IntelliPoint [03/03/2006|20:55] C:\Program Files\Microsoft Office [15/04/2008|13:28] C:\Program Files\Mindscape [26/01/2008|21:25] C:\Program Files\MioNet [03/03/2006|15:27] C:\Program Files\Movie Maker [03/06/2008|17:35] C:\Program Files\Mozilla Firefox [18/08/2006|18:25] C:\Program Files\MSN [10/01/2007|19:58] C:\Program Files\MSN Games [03/03/2006|15:26] C:\Program Files\MSN Gaming Zone [14/10/2006|17:22] C:\Program Files\MSXML 4.0 [24/04/2008|18:51] C:\Program Files\MSXML 6.0 [03/03/2006|15:28] C:\Program Files\NetMeeting [18/05/2008|14:42] C:\Program Files\OpenOffice.org 2.4 [21/01/2007|15:09] C:\Program Files\orange [13/06/2007|17:15] C:\Program Files\Outlook Express [31/03/2008|13:53] C:\Program Files\Pack Securite [02/06/2008|20:43] C:\Program Files\Panda Security [01/06/2008|11:34] C:\Program Files\programisouser [24/04/2008|17:57] C:\Program Files\QuickTime [12/01/2007|21:15] C:\Program Files\Real [24/04/2008|21:18] C:\Program Files\Realtek AC97 [13/05/2008|10:19] C:\Program Files\Ripp-it_AM [12/01/2007|21:15] C:\Program Files\RngInterstitial.dll [03/12/2007|21:15] C:\Program Files\ScanSoft [15/04/2008|21:28] C:\Program Files\Shareaza [03/03/2006|16:56] C:\Program Files\SoftChris [24/04/2008|21:06] C:\Program Files\Speed Link [06/02/2008|19:11] C:\Program Files\Spybot - Search & Destroy [03/06/2008|17:44] C:\Program Files\Trend Micro [03/03/2006|15:35] C:\Program Files\Uninstall Information [11/03/2004|14:27] C:\Program Files\Uninstall_CDS.exe [10/01/2007|19:58] C:\Program Files\VCW VicMan's Photo Editor [03/03/2006|17:06] C:\Program Files\VIA [25/05/2008|10:22] C:\Program Files\VideoLAN [05/04/2008|23:30] C:\Program Files\Windows Live [02/06/2008|21:09] C:\Program Files\Windows Live Safety Center [27/08/2007|17:47] C:\Program Files\Windows Live Toolbar [17/04/2008|16:00] C:\Program Files\Windows Media Connect 2 [17/04/2008|16:00] C:\Program Files\Windows Media Player [03/03/2006|15:26] C:\Program Files\Windows NT [03/03/2006|15:28] C:\Program Files\WindowsUpdate [18/10/2006|16:54] C:\Program Files\WinRAR [03/03/2006|15:30] C:\Program Files\xerox [02/06/2008|20:41] C:\Program Files\Yahoo! ------[ Listing des dossiers dans C:\Program Files\Fichiers communs ]------ [16/03/2008|19:28] C:\Program Files\Fichiers communs\Adobe [23/01/2008|20:28] C:\Program Files\Fichiers communs\Ahead [24/04/2008|17:54] C:\Program Files\Fichiers communs\Apple [01/06/2006|18:12] C:\Program Files\Fichiers communs\Canon [03/03/2006|20:57] C:\Program Files\Fichiers communs\Designer [06/04/2008|15:48] C:\Program Files\Fichiers communs\DirectX [03/03/2006|21:23] C:\Program Files\Fichiers communs\Hewlett-Packard [03/12/2007|21:01] C:\Program Files\Fichiers communs\InstallShield [28/12/2007|11:31] C:\Program Files\Fichiers communs\Java [22/04/2008|19:04] C:\Program Files\Fichiers communs\Microsoft Shared [03/03/2006|15:28] C:\Program Files\Fichiers communs\MSSoap [03/03/2006|16:20] C:\Program Files\Fichiers communs\ODBC [12/01/2007|21:20] C:\Program Files\Fichiers communs\Real [03/03/2006|15:28] C:\Program Files\Fichiers communs\Services [03/03/2006|16:20] C:\Program Files\Fichiers communs\SpeechEngines [13/06/2007|17:15] C:\Program Files\Fichiers communs\System [10/03/2008|18:18] C:\Program Files\Fichiers communs\WindowsLiveInstaller [19/05/2008|23:09] C:\Program Files\Fichiers communs\Wise Installation Wizard ---------------------------[ Process ]-------------------------- ... 56 iexplore.exe ~ [540] iexplore.exe ~ [328] ----------------------[ Recherche avec S_Lop ]--------------------- Aucun fichier / dossier Lop trouvé ! -----------------[ Recherche de Fichiers / Dossiers Lop ]----------------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\flag ace stupid data C:\DOCUME~1\ALLUSE~1\APPLIC~1\flag ace stupid data\Burn grid.exe C:\WINDOWS\Prefetch\BURN GRID.EXE-277FA5D0.pf C:\DOCUME~1\David\Cookies\david@www.adserver5[1].txt C:\DOCUME~1\David\Cookies\david@adin.bigpoint[2].txt C:\DOCUME~1\David\Cookies\david@bigpoint[2].txt C:\DOCUME~1\David\Cookies\david@fr1.seafight.bigpoint[2].txt C:\DOCUME~1\David\Cookies\david@adopt.euroclick[1].txt C:\DOCUME~1\David\Cookies\david@fr1.seafight.bigpoint[2].txt C:\DOCUME~1\David\Cookies\david@32vegas[1].txt C:\DOCUME~1\David\Cookies\david@banner.32vegas[2].txt C:\DOCUME~1\David\Cookies\david@2xmoinscher[1].txt C:\DOCUME~1\David\Cookies\david@www.2xmoinscher[2].txt ----------------------[ Verification du Registre ]---------------------- [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Stupid Data Dart Wave"="C:\\Documents and Settings\\All Users\\Application Data\\flag ace stupid data\\Burn grid.exe" --------------------[ Verification du fichier Hosts ]--------------------- Fichier Hosts PROPRE ----------------[ Recherche de fichiers avec Catchme ]----------------- catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-06-03 17:48:16 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden processes ... scanning hidden files ... scan completed successfully hidden processes: 0 hidden files: 0 --------------------[ Recherche d'autres infections ]--------------------- => C:\Documents and Settings\All Users\Documents\ludo\Programmes\SiSoftware Sandra Professional 2005 SR2a - Keygen.rar [F:153][D:10]-> C:\DOCUME~1\David\LOCALS~1\Temp [F:43][D:0]-> C:\DOCUME~1\David\Cookies [F:2748][D:8]-> C:\DOCUME~1\David\LOCALS~1\TEMPOR~1\content.IE5 --------------------[ Fin du rapport a 17:48:48,75 ]---------------------- Merci encore