Flux rss
Ils ont besoin de votre aide
Collection CommentCaMarche.net
Rechercher : dans
Par : Pertinence Date Nom d'utilisateur
Statut : Résolu

Pc sain

penetfred, le lundi 13 octobre 2008 à 09:27:10
Bonjour,est ce que mon pc est sain
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 09:26:51, on 13/10/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe
C:\Program Files\Lexmark X1100 Series\lxbkbmon.exe
C:\Program Files\SFR\Pack Sécurité\Common\FSM32.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Windows Live\MessengerSearchAddon\msgrsrch.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosBtProc.exe
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\WINDOWS\system32\cisvc.exe
C:\Program Files\SFR\Pack Sécurité\Anti-Virus\fsgk32st.exe
C:\Program Files\SFR\Pack Sécurité\Anti-Virus\FSGK32.EXE
C:\Program Files\SFR\Pack Sécurité\Common\FSMA32.EXE
C:\Program Files\SFR\Pack Sécurité\Common\FSMB32.EXE
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\SFR\Pack Sécurité\Common\FCH32.EXE
C:\Program Files\SFR\Pack Sécurité\Anti-Virus\fsqh.exe
C:\Program Files\SFR\Pack Sécurité\Common\FAMEH32.EXE
C:\Program Files\SFR\Pack Sécurité\FSGUI\fsguidll.exe
C:\Program Files\SFR\Pack Sécurité\FSAUA\program\fsaua.exe
C:\Program Files\SFR\Pack Sécurité\FWES\Program\fsdfwd.exe
C:\Program Files\SFR\Pack Sécurité\FSAUA\program\fsus.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\SFR\Pack Sécurité\Anti-Virus\fsav32.exe
C:\WINDOWS\system32\cidaemon.exe
C:\Program Files\SFR\Pack Sécurité\Anti-Virus\fssm32.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Propriétaire\Mes documents\Mes fichiers reçus\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.fr/0SEFRFR/SAOS02
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - {0BC6E3FA-78EF-4886-842C-5A1258C4455A} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {6638A9DE-0745-4292-8A2E-AE530E7B9B3F} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [Lexmark X1100 Series] "C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\SFR\Pack Sécurité\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\SFR\Pack Sécurité\FSGUI\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [msnlivesearch] C:\Program Files\Windows Live\MessengerSearchAddon\msgrsrch.exe /Run
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
O4 - HKCU\..\Run: [Glary Memory Optimizer] "C:\Program Files\Glary Utilities\memdefrag.exe" /autostart
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Bluetooth Manager.lnk = ?
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} - http://www.eset.eu/buxus/docs/OnlineScanner.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/...
O16 - DPF: {7B297BFD-85E4-4092-B2AF-16A91B2EA103} (WScanCtl Class) - http://www.ca.com/us/securityadvisor/virusinfo/webscan.cab
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://penetfred.spaces.live.com/PhotoUpload/MsnPUpld.cab
O16 - DPF: {814EA0DA-E0D9-4AA4-833C-A1A6D38E79E9} (DASWebDownload Class) - http://das.microsoft.com/activate/cab/x86/i486/NTANSI/retail/DASAct.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} - http://ma-config.com/activex/hardwaredetection_3_0_3_0.cab
O16 - DPF: {9D190AE6-C81E-4039-8061-978EBAD10073} (F-Secure Online Scanner 3.0) - http://securite.neuf.fr/Ols/fscax.cab
O16 - DPF: {BB21F850-63F4-4EC9-BF9D-565BD30C9AE9} (a-squared Scanner) - http://ax.emsisoft.com/asquared.cab
O16 - DPF: {BDBDE413-7B1C-4C68-A8FF-C5B2B4090876} (F-Secure Online Scanner 3.3) - http://support.f-secure.com/ols/fscax.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E1E73B44-2D20-47A9-9CA2-B534CEBBF856} (F-Secure Health Check 1.0) - http://www.neufsecurite.fr/pchc/fscax.cab
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files\SFR\Pack Sécurité\Anti-Virus\fsgk32st.exe
O23 - Service: F-Secure Automatic Update Agent (FSAUA) - F-Secure Corporation - C:\Program Files\SFR\Pack Sécurité\FSAUA\program\fsaua.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\SFR\Pack Sécurité\FWES\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\SFR\Pack Sécurité\Common\FSMA32.EXE
O23 - Service: F-Secure ORSP Client (FSORSPClient) - F-Secure Corporation - C:\Program Files\SFR\Pack Sécurité\ORSP Client\fsorsp.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: MysqlInventime - Unknown owner - c:\mysql\bin\mysqld-nt.exe
O23 - Service: SmartLinkService (SLService) - Smart Link - C:\WINDOWS\SYSTEM32\slserv.exe
End of file - 10232 bytes
Configuration: Windows XP
Firefox 3.0.3
Répondre à penetfred  Signaler ce message aux modérateurs Aller au dernier message

1


  • Ce message vous semble utile, votez !
  • Signaler ce message aux modérateurs
Cesel45, le lundi 13 octobre 2008 à 09:47:26
Bonjour

Avant fait çà.

en premier avant de loguer Pour faire un  arbre centenaire: tu lui mettras autant d'eng­rais il lui faudra quand même cent ans.
   
Répondre à Cesel45

2


  • Ce message vous semble utile, votez !
  • Signaler ce message aux modérateurs
Lyonnais92, le lundi 13 octobre 2008 à 10:27:28
Bonjour,

cesel45, quitte à faire utiliser une procédure de pré-désinfection, autant utiliser celle de CCM :

http://www.commentcamarche.net/faq/sujet 3174 virus methode preliminaire de desinfection version fr

penelfred, paranoia ou souci réel ? @+
Faites ce que l'on vous demande, ni plus, ni moins.
Ne créez pas de doublons, ni sur CCM ni sur un autre site. M­erci
   
Répondre à Lyonnais92

3


  • Ce message vous semble utile, votez !
  • Signaler ce message aux modérateurs
penetfred, le lundi 13 octobre 2008 à 10:35:50
un peu des deux car suite a un virus et après réinstallation xp mon disque est partitionner 20 go alloue et 60 non aloue
   
Répondre à penetfred

4


  • Ce message vous semble utile, votez !
  • Signaler ce message aux modérateurs
Lyonnais92, le lundi 13 octobre 2008 à 11:03:48
Re,

OK,

tu m'expliques d'abord pourquoi tu as arrêté un topic avec jorginho (installatioin d'un parefeu) et un autre avec Destrio5 (passage de MBAM).

Ensuite, où et par qui as tu été désinfecté. @+
Faites ce que l'on vous demande, ni plus, ni moins.
Ne créez pas de doublons, ni sur CCM ni sur un autre site. M­erci
   
Répondre à Lyonnais92

5


  • Ce message vous semble utile, votez !
  • Signaler ce message aux modérateurs
penetfred, le vendredi 17 octobre 2008 à 14:22:16
désinfection avast et je ne comprend pas le topic et le mbam
   
Répondre à penetfred

6


  • Ce message vous semble utile, votez !
  • Signaler ce message aux modérateurs
Lyonnais92, le vendredi 17 octobre 2008 à 15:56:39
Bonjour,

tu fais ça :

Télécharge ici :

http://images.malwareremoval.com/random/RSIT.exe

random's system information tool (RSIT) par andom/random et sauvegarde-le sur le Bureau.

Double-clique sur RSIT.exe afin de lancer RSIT.

Lis le contenu de l'écran Disclaimer puis clique sur Continue (si tu acceptes les conditions).

Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.

Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront.

Poste le contenu de log.txt @+
Faites ce que l'on vous demande, ni plus, ni moins.
Ne créez pas de doublons, ni sur CCM ni sur un autre site. M­erci
   
Répondre à Lyonnais92

7


  • Ce message vous semble utile, votez !
  • Signaler ce message aux modérateurs
penetfred, le lundi 20 octobre 2008 à 09:23:06
Logfile of random's system information tool 1.04 (written by random/random)
Run by Propriétaire at 2008-10-20 09:22:16
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 15 GB (51%) free of 30 GB
Total RAM: 447 MB (34% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 09:22:36, on 20/10/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\WINDOWS\system32\oodtray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Lexmark X1100 Series\lxbkbmon.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Windows Live\MessengerSearchAddon\msgrsrch.exe
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\WINDOWS\system32\cisvc.exe
C:\WINDOWS\system32\oodag.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Glary Utilities\memdefrag.exe
C:\WINDOWS\system32\cidaemon.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Propriétaire\Mes documents\Mes fichiers reçus\RSIT.exe
C:\Program Files\trend micro\Propriétaire.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.fr/0SEFRFR/SAOS02
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.neuf.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - {0BC6E3FA-78EF-4886-842C-5A1258C4455A} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {6638A9DE-0745-4292-8A2E-AE530E7B9B3F} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [Lexmark X1100 Series] "C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [avast!] "C:\Program Files\Alwil Software\Avast4\ashDisp.exe"
O4 - HKLM\..\Run: [OODefragTray] C:\WINDOWS\system32\oodtray.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [msnlivesearch] C:\Program Files\Windows Live\MessengerSearchAddon\msgrsrch.exe /Run
O4 - HKCU\..\Run: [Glary Memory Optimizer] "C:\Program Files\Glary Utilities\memdefrag.exe" /autostart
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} - http://www.eset.eu/buxus/docs/OnlineScanner.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/...
O16 - DPF: {7B297BFD-85E4-4092-B2AF-16A91B2EA103} (WScanCtl Class) - http://www.ca.com/us/securityadvisor/virusinfo/webscan.cab
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://penetfred.spaces.live.com/PhotoUpload/MsnPUpld.cab
O16 - DPF: {814EA0DA-E0D9-4AA4-833C-A1A6D38E79E9} (DASWebDownload Class) - http://das.microsoft.com/activate/cab/x86/i486/NTANSI/retail/DASAct.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} - http://ma-config.com/activex/hardwaredetection_3_0_3_0.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: MysqlInventime - Unknown owner - c:\mysql\bin\mysqld-nt.exe
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
O23 - Service: SmartLinkService (SLService) - Smart Link - C:\WINDOWS\SYSTEM32\slserv.exe
End of file - 8700 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\GlaryInitialize.job
C:\WINDOWS\tasks\Maintenance en 1 clic.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0BC6E3FA-78EF-4886-842C-5A1258C4455A}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2008-09-15 1562960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6638A9DE-0745-4292-8A2E-AE530E7B9B3F}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll [2008-06-10 509328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2007-12-14 392240]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2008-06-30 98304]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2008-09-01 577536]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
"LVCOMSX"=C:\WINDOWS\system32\LVCOMSX.EXE [2005-07-19 221184]
"LogitechVideoRepair"=C:\Program Files\Logitech\Video\ISStart.exe [2005-06-08 458752]
"Lexmark X1100 Series"=C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe [2003-08-19 57344]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2008-06-12 34672]
"SunJavaUpdateSched"=C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe [2008-06-10 144784]
"avast!"=C:\Program Files\Alwil Software\Avast4\ashDisp.exe [2008-07-19 78008]
"OODefragTray"=C:\WINDOWS\system32\oodtray.exe [2007-06-28 2512128]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"LogitechSoftwareUpdate"=C:\Program Files\Logitech\Video\ManifestEngine.exe [2005-06-08 196608]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2008-09-16 1833296]
"msnlivesearch"=C:\Program Files\Windows Live\MessengerSearchAddon\msgrsrch.exe [2008-10-09 49152]
"Glary Memory Optimizer"=C:\Program Files\Glary Utilities\memdefrag.exe [2008-03-05 92160]

C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
Logitech Desktop Messenger.lnk - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=
scecli
scecli

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vsmon]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"undockwithoutlogon"=1
"ShutdownWithoutLogon"=1
"NoDispCPL"=0
"NoDispSettingsPage"=0
"NoDispScrSavPage"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoSMBalloonTip"=0
"HideClock"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=
"NoDrives"=
"NoResolveTrack"=
"NoViewContextMenu"=
"NoFileAssociate"=
"NoFind"=
"NoRun"=
"NoClose"=
"StartMenuLogoff"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\adslTV\adsltv.exe"="C:\Program Files\adslTV\adsltv.exe:*:Enabled:adsltv"
"C:\Program Files\BitDownload\BitDownload.exe"="C:\Program Files\BitDownload\BitDownload.exe:*:Disabled:BitDownload"
"C:\Program Files\ma-config.com\maconfservice.exe"="C:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice"
"C:\APPS\Inventime\my.exe"="C:\APPS\Inventime\my.exe:*:Enabled:my.exe, built by Bravo Zulu Inc's, JToExe"
"C:\Documents and Settings\Propriétaire\Local Settings\Temp\7zS14B.tmp\SymNRT.exe"="C:\Documents and Settings\Propriétaire\Local Settings\Temp\7zS14B.tmp\SymNRT.exe:*:Enabled:Norton Removal Tool"
"C:\Documents and Settings\Propriétaire\Local Settings\Temp\7zS41.tmp\SymNRT.exe"="C:\Documents and Settings\Propriétaire\Local Settings\Temp\7zS41.tmp\SymNRT.exe:*:Enabled:Norton Removal Tool"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======File associations======

.js - open - NOTEPAD.EXE %1
.vbs - open - NOTEPAD.EXE %1

======List of files/folders created in the last 1 months======

2008-10-20 08:09:36 ----D---- C:\Program Files\Glary Utilities
2008-10-19 13:56:25 ----D---- C:\Program Files\Google
2008-10-18 08:24:44 ----A---- C:\WINDOWS\OODCNT.INI
2008-10-18 08:22:56 ----D---- C:\WINDOWS\system32\oodag
2008-10-18 07:59:18 ----D---- C:\Program Files\OO Software
2008-10-18 07:55:18 ----D---- C:\rsit
2008-10-16 19:45:33 ----A---- C:\WINDOWS\system32\aswBoot.exe
2008-10-16 18:59:20 ----D---- C:\WINDOWS\system32\NtmsData
2008-10-15 18:11:54 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2008-10-15 18:11:44 ----HDC---- C:\WINDOWS\$NtUninstallKB956391$
2008-10-15 18:11:17 ----HDC---- C:\WINDOWS\$NtUninstallKB957095$
2008-10-15 18:09:11 ----HDC---- C:\WINDOWS\$NtUninstallKB954211$
2008-10-15 18:08:42 ----HDC---- C:\WINDOWS\$NtUninstallKB956841$
2008-10-15 13:21:52 ----D---- C:\Documents and Settings\Propriétaire\Application Data\Google
2008-10-13 11:13:00 ----D---- C:\Documents and Settings\All Users\Application Data\SFR
2008-10-12 14:18:43 ----A---- C:\WINDOWS\system32\system32.exe
2008-10-12 14:03:34 ----D---- C:\Program Files\SFR
2008-10-12 14:03:01 ----D---- C:\Documents and Settings\All Users\Application Data\fssg
2008-10-12 14:01:26 ----D---- C:\Documents and Settings\All Users\Application Data\f-secure
2008-10-12 13:37:26 ----D---- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
2008-10-12 13:37:09 ----D---- C:\Documents and Settings\Propriétaire\Application Data\SUPERAntiSpyware.com
2008-10-12 09:13:33 ----A---- C:\WINDOWS\tosOBEX.INI
2008-10-05 14:52:03 ----D---- C:\Documents and Settings\Propriétaire\Application Data\Malwarebytes
2008-10-05 14:51:55 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2008-10-04 12:02:40 ----D---- C:\Documents and Settings\All Users\Application Data\MailFrontier
2008-10-04 12:02:18 ----A---- C:\WINDOWS\system32\SpOrder.dll
2008-10-04 12:00:44 ----D---- C:\WINDOWS\Internet Logs
2008-10-04 09:23:11 ----D---- C:\Program Files\NOS
2008-10-04 09:23:11 ----D---- C:\Documents and Settings\All Users\Application Data\NOS
2008-10-04 09:09:17 ----D---- C:\Documents and Settings\All Users\Application Data\NortonInstaller
2008-10-04 08:46:12 ----D---- C:\Program Files\Trend Micro
2008-10-01 11:05:43 ----A---- C:\WINDOWS\system32\MFC71u.dll
2008-10-01 10:43:20 ----A---- C:\WINDOWS\system32\pywintypes25.dll
2008-10-01 10:43:20 ----A---- C:\WINDOWS\system32\pythoncom25.dll
2008-10-01 10:43:19 ----A---- C:\WINDOWS\system32\python25.dll
2008-09-30 08:23:15 ----HDC---- C:\WINDOWS\$NtUninstallXPSEPSCLP$
2008-09-30 08:21:01 ----D---- C:\Program Files\MSBuild
2008-09-30 08:18:10 ----D---- C:\WINDOWS\system32\XPSViewer
2008-09-30 08:18:08 ----D---- C:\WINDOWS\system32\en-us
2008-09-30 08:16:47 ----D---- C:\Program Files\Reference Assemblies
2008-09-25 14:15:26 ----D---- C:\Program Files\MSXML 4.0
2008-09-24 18:05:13 ----DC---- C:\Lxk1100
2008-09-24 10:13:34 ----D---- C:\WINDOWS\system32\Logs
2008-09-23 17:48:43 ----D---- C:\WINDOWS\avxoscan

======List of files/folders modified in the last 1 months======

2008-10-20 09:19:09 ----D---- C:\Program Files\Mozilla Firefox
2008-10-20 08:29:55 ----D---- C:\WINDOWS\Prefetch
2008-10-20 08:18:53 ----D---- C:\WINDOWS\Temp
2008-10-20 08:13:35 ----D---- C:\Documents and Settings\Propriétaire\Application Data\Macromedia
2008-10-20 08:09:47 ----SD---- C:\WINDOWS\Tasks
2008-10-20 08:09:36 ----RD---- C:\Program Files
2008-10-19 20:42:05 ----A---- C:\WINDOWS\SchedLgU.Txt
2008-10-19 20:26:26 ----D---- C:\WINDOWS
2008-10-19 20:12:10 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2008-10-19 13:56:41 ----SHD---- C:\WINDOWS\Installer
2008-10-19 13:56:38 ----SHD---- C:\Config.Msi
2008-10-19 10:43:17 ----A---- C:\WINDOWS\lexstat.ini
2008-10-19 10:43:16 ----D---- C:\Program Files\Lexmark X1100 Series
2008-10-19 09:32:27 ----D---- C:\WINDOWS\BDOSCAN8
2008-10-19 09:09:59 ----D---- C:\WINDOWS\system32\CatRoot2
2008-10-19 08:34:16 ----D---- C:\WINDOWS\Minidump
2008-10-18 09:36:49 ----D---- C:\Program Files\Neuf
2008-10-18 08:22:56 ----D---- C:\WINDOWS\system32
2008-10-18 07:59:21 ----D---- C:\WINDOWS\system32\drivers
2008-10-17 11:58:41 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help
2008-10-17 11:34:45 ----D---- C:\Documents and Settings\All Users\Application Data\WLInstaller
2008-10-17 11:15:30 ----D---- C:\Program Files\Fichiers communs
2008-10-17 10:58:45 ----SD---- C:\WINDOWS\Downloaded Program Files
2008-10-16 20:01:47 ----RSHD---- C:\WINDOWS\system32\dllcache
2008-10-16 19:01:18 ----D---- C:\WINDOWS\system32\config
2008-10-16 18:54:11 ----HD---- C:\WINDOWS\inf
2008-10-16 15:11:15 ----D---- C:\WINDOWS\Debug
2008-10-15 18:11:52 ----HD---- C:\WINDOWS\$hf_mig$
2008-10-15 18:09:56 ----D---- C:\Program Files\Internet Explorer
2008-10-15 18:09:42 ----D---- C:\WINDOWS\ie7updates
2008-10-15 17:40:52 ----D---- C:\WINDOWS\system32\CatRoot
2008-10-13 15:19:13 ----D---- C:\Program Files\Java
2008-10-12 14:10:55 ----D---- C:\Documents and Settings\Propriétaire\Application Data\F-Secure
2008-10-12 13:09:52 ----D---- C:\Comptes
2008-10-12 07:18:30 ----D---- C:\Program Files\VideoLAN
2008-10-12 07:14:51 ----D---- C:\Program Files\Spybot - Search & Destroy
2008-10-09 14:57:27 ----D---- C:\Program Files\Windows Live
2008-10-07 21:19:40 ----A---- C:\WINDOWS\system32\MRT.exe
2008-10-05 11:40:43 ----A---- C:\WINDOWS\win.ini
2008-10-05 09:37:20 ----D---- C:\WINDOWS\Microsoft.NET
2008-10-05 09:22:05 ----RSD---- C:\WINDOWS\assembly
2008-10-04 12:13:43 ----D---- C:\WINDOWS\WinSxS
2008-10-04 09:33:40 ----D---- C:\Documents and Settings\Propriétaire\Application Data\Symantec
2008-10-04 09:29:28 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
2008-10-04 09:28:51 ----D---- C:\Program Files\Fichiers communs\Adobe
2008-10-04 09:27:23 ----D---- C:\Program Files\Adobe
2008-10-04 09:13:17 ----A---- C:\WINDOWS\ModemLog_Modem standard 33600 bps.txt
2008-10-03 19:12:27 ----A---- C:\WINDOWS\system32\ieframe.dll
2008-10-03 16:07:50 ----D---- C:\Documents and Settings\Propriétaire\Application Data\Windows Media Metering
2008-10-01 08:23:17 ----D---- C:\WINDOWS\network diagnostic
2008-09-30 08:22:59 ----D---- C:\WINDOWS\system32\fr-fr
2008-09-30 08:21:40 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2008-09-30 08:18:03 ----RSD---- C:\WINDOWS\Fonts
2008-09-30 08:13:11 ----D---- C:\Documents and Settings\Propriétaire\Application Data\AdobeUM
2008-09-30 08:09:07 ----D---- C:\Documents and Settings\Propriétaire\Application Data\Adobe
2008-09-28 16:29:55 ----D---- C:\WINDOWS\system32\Adobe
2008-09-28 08:55:49 ----SHD---- C:\System Volume Information
2008-09-28 08:51:07 ----SD---- C:\Documents and Settings\Propriétaire\Application Data\Microsoft
2008-09-28 08:35:32 ----D---- C:\WINDOWS\system32\LogFiles
2008-09-28 08:33:18 ----D---- C:\Program Files\ma-config.com
2008-09-28 08:33:17 ----D---- C:\Documents and Settings\All Users\Application Data\ma-config.com
2008-09-28 07:54:07 ----SHD---- C:\DRIVERS
2008-09-28 07:54:07 ----D---- C:\WINDOWS\system32\QuickTime
2008-09-28 07:54:07 ----D---- C:\WINDOWS\security
2008-09-28 07:54:07 ----D---- C:\WINDOWS\report
2008-09-28 07:54:07 ----D---- C:\Documents and Settings\All Users\Application Data\iolo
2008-09-28 07:54:06 ----D---- C:\WINDOWS\REPAIR
2008-09-28 07:54:06 ----D---- C:\WINDOWS\pss
2008-09-27 09:44:59 ----D---- C:\WINDOWS\system32\DirectX
2008-09-24 18:06:13 ----D---- C:\WINDOWS\system32\ReinstallBackups
2008-09-23 18:03:07 ----D---- C:\Program Files\Windows Live Safety Center
2008-09-23 15:24:22 ----D---- C:\Documents and Settings\Propriétaire\Application Data\PSpad

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2008-07-19 26944]
R1 AmdK7;Pilote de processeur AMD K7; C:\WINDOWS\system32\DRIVERS\amdk7.sys [2008-04-14 41856]
R1 aswSP;avast! Self Protection; C:\WINDOWS\system32\drivers\aswSP.sys [2008-07-19 78416]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2008-07-19 42912]
R2 ASCTRM;ASCTRM; C:\WINDOWS\system32\drivers\ASCTRM.sys [2008-06-30 8552]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2008-07-19 20560]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2008-07-19 94416]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2007-01-25 4027456]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2008-07-19 23152]
R3 BTKRNL;Enumérateur de bus Bluetooth; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2006-07-14 859722]
R3 FET5X86V;VIA Rhine-Family Fast-Ethernet Adapter Driver Service; C:\WINDOWS\system32\DRIVERS\fetnd5bv.sys [2008-06-25 43520]
R3 LVUSBSta;Logitech USB Monitor Filter; C:\WINDOWS\system32\drivers\lvusbsta.sys [2005-05-27 22016]
R3 MODEMCSA;Périphérique de filtrage de flux Unimodem; C:\WINDOWS\system32\drivers\MODEMCSA.sys [2001-08-17 16128]
R3 Mtlmnt5;Mtlmnt5; C:\WINDOWS\system32\DRIVERS\Mtlmnt5.sys [2004-04-01 126686]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2004-08-05 5888]
R3 RTL8023xp;Realtek 10/100/1000 NIC Family all in one NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys [2006-02-26 81408]
R3 Slntamr;Smart Link 56K Modem Driver; C:\WINDOWS\system32\DRIVERS\slntamr.sys [2004-04-01 404990]
R3 SlWdmSup;SlWdmSup; C:\WINDOWS\system32\DRIVERS\SlWdmSup.sys [2004-01-28 13240]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Pilote de concentrateur standard USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
R3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 viagfx;viagfx; C:\WINDOWS\system32\DRIVERS\vtmini.sys [2005-03-08 172544]
R3 wanatw;WAN Miniport (ATW); C:\WINDOWS\system32\DRIVERS\wanatw4.sys [2003-01-10 33588]
S1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14720]
S1 Tosrfcom;Bluetooth RFCOMM from TOSHIBA; C:\WINDOWS\System32\Drivers\tosrfcom.sys [2005-08-01 64896]
S3 ALCXSENS;Service for WDM 3D Audio Driver; C:\WINDOWS\system32\drivers\ALCXSENS.SYS [2004-02-24 400384]
S3 btaudio;Périphérique audio Bluetooth; C:\WINDOWS\system32\drivers\btaudio.sys []
S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 FETNDIS;Pilote NT de carte VIA PCI 10/100Mo Fast Ethernet; C:\WINDOWS\system32\DRIVERS\fetnd5.sys [2001-08-17 27165]
S3 FETNDISB;VIA Rhine Family Fast Ethernet Adapter Driver Service; C:\WINDOWS\system32\DRIVERS\fetnd5b.sys [2008-09-10 42496]
S3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-23 12288]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 Mtlstrm;Mtlstrm; C:\WINDOWS\system32\DRIVERS\Mtlstrm.sys [2004-01-28 1309184]
S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 NtMtlFax;NtMtlFax; C:\WINDOWS\system32\DRIVERS\NtMtlFax.sys [2004-01-28 180360]
S3 NTSIM;NTSIM; \??\C:\WINDOWS\system32\ntsim.sys []
S3 QCMerced;Logitech QuickCam Communicate; C:\WINDOWS\system32\DRIVERS\LVCM.sys [2005-05-27 1317152]
S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 SlNtHal;SlNtHal; C:\WINDOWS\system32\DRIVERS\Slnthal.sys [2004-01-28 95424]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 SymIM;Symantec Network Security Intermediate Filter Service; C:\WINDOWS\system32\DRIVERS\SymIM.sys [2007-08-10 31280]
S3 SymIMMP;SymIMMP; C:\WINDOWS\system32\DRIVERS\SymIM.sys [2007-08-10 31280]
S3 tosporte;Bluetooth Port Driver from Toshiba; C:\WINDOWS\system32\DRIVERS\tosporte.sys [2005-11-24 47104]
S3 Tosrfbd;Bluetooth RFBUS from TOSHIBA; C:\WINDOWS\System32\Drivers\tosrfbd.sys [2006-02-02 108928]
S3 Tosrfbnp;Bluetooth RFBNEP from TOSHIBA; C:\WINDOWS\System32\Drivers\tosrfbnp.sys [2005-12-14 37632]
S3 Tosrfhid;Bluetooth RFHID from TOSHIBA; C:\WINDOWS\system32\DRIVERS\Tosrfhid.sys [2006-02-08 62848]
S3 tosrfnds;Bluetooth Personal Area Network from TOSHIBA; C:\WINDOWS\system32\DRIVERS\tosrfnds.sys [2005-01-06 18612]
S3 Tosrfusb;Bluetooth USB Controller; C:\WINDOWS\System32\Drivers\tosrfusb.sys [2006-01-31 39808]
S3 usb_rndis;Broadcom USB Remote NDIS Device Driver; C:\WINDOWS\system32\DRIVERS\usb8023.sys [2008-04-13 12800]
S3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 vdisk;Virtual Disk Driver; C:\WINDOWS\system32\DRIVERS\vdisk.sys [2003-12-28 29312]
S3 vulfnths;VIA USB Host Controller Lower Filter; C:\WINDOWS\System32\Drivers\vulfnth.sys [2003-08-04 6912]
S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AOL ACS;AOL Connectivity Service; C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe [2004-02-25 1123440]
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2008-07-19 16056]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2008-07-19 147640]
R2 LexBceS;LexBce Server; C:\WINDOWS\system32\LEXBCES.EXE [2003-08-18 303104]
R2 O&O Defrag;O&O Defrag; C:\WINDOWS\system32\oodag.exe [2007-06-28 1049856]
R2 SLService;SmartLinkService; C:\WINDOWS\system32\slserv.exe [2004-01-08 73796]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2008-07-19 250040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2008-07-23 348344]
S3 aspnet_state;Service d'état ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2007-10-09 36864]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2007-10-11 864256]
S3 MysqlInventime;MysqlInventime; c:\mysql\bin\mysqld-nt MysqlInventime []
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776]
S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]
S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2007-10-11 122880]

-----------------EOF-----------------
   
Répondre à penetfred

8


  • Ce message vous semble utile, votez !
  • Signaler ce message aux modérateurs
Lyonnais92, le lundi 20 octobre 2008 à 09:41:14
Bonjour,


Télécharge Lop S&D ici :

http://eric.71.mespages.googlepages.com/LopSD.exe

Double-clique dessus pour lancer l'installation

Puis double-clique [b]sur le raccourci Lop S&D/b présent sur ton bureau

Séléctionne la langue souhaitée , puis choisis [b]l'Option 1/b ( Recherche )

Patiente jusqu'à la fin du scan

Poste le rapport généré ( C:lopR.txt ) @+
Faites ce que l'on vous demande, ni plus, ni moins.
Ne créez pas de doublons, ni sur CCM ni sur un autre site. Merci
   
Répondre à Lyonnais92

9


  • Ce message vous semble utile, votez !
  • Signaler ce message aux modérateurs
penetfred, le mardi 28 octobre 2008 à 16:18:49
--------------------\\ Lop S&D 4.2.4-8 XP/Vista


"C:\Lop SD" ( MAJ : 27-10-2008|09:15 )
Option : [1] ( 28/10/2008|16:14 )

--------------------\\ Listing des dossiers dans APPLIC~1

[04/10/2008|08:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[30/06/2008|11:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL
[03/07/2008|14:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL Downloads
[23/07/2008|15:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[18/08/2008|07:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Downloaded Installations
[16/10/2008|18:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\f-secure
[12/10/2008|13:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\fssg
[15/09/2008|14:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\great coal love default
[11/08/2008|06:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
[28/09/2008|06:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\iolo
[28/09/2008|07:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ma-config.com
[04/10/2008|11:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MailFrontier
[05/10/2008|13:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[11/09/2008|10:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[17/10/2008|10:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Help
[04/10/2008|08:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NortonInstaller
[04/10/2008|11:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NOS
[16/08/2008|16:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Player Metaboli
[30/06/2008|11:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[16/08/2004|17:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[13/10/2008|10:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SFR
[26/10/2008|18:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[12/10/2008|12:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SUPERAntiSpyware.com
[30/06/2008|11:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Viewpoint
[30/06/2008|11:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[17/10/2008|10:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[07/07/2008|08:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom

[16/08/2004|16:54] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[01/10/2008|09:44] C:\DOCUME~1\LOCALS~1\APPLIC~1\agi
[15/09/2008|13:44] C:\DOCUME~1\LOCALS~1\APPLIC~1\iolo
[24/08/2008|15:17] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[24/08/2008|15:17] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

[23/08/2008|11:12] C:\DOCUME~1\PROPRI~1\APPLIC~1\.purple
[10/09/2008|07:06] C:\DOCUME~1\PROPRI~1\APPLIC~1\AD ON Multimedia
[30/09/2008|07:09] C:\DOCUME~1\PROPRI~1\APPLIC~1\Adobe
[30/09/2008|07:13] C:\DOCUME~1\PROPRI~1\APPLIC~1\AdobeUM
[30/06/2008|11:09] C:\DOCUME~1\PROPRI~1\APPLIC~1\AOL
[20/08/2008|09:57] C:\DOCUME~1\PROPRI~1\APPLIC~1\Auslogics
[22/08/2008|10:27] C:\DOCUME~1\PROPRI~1\APPLIC~1\EoRezo
[02/07/2008|12:32] C:\DOCUME~1\PROPRI~1\APPLIC~1\ExecutiveSoftware
[08/09/2008|10:58] C:\DOCUME~1\PROPRI~1\APPLIC~1\F4
[12/10/2008|13:10] C:\DOCUME~1\PROPRI~1\APPLIC~1\F-Secure
[23/07/2008|14:57] C:\DOCUME~1\PROPRI~1\APPLIC~1\GlarySoft
[15/10/2008|12:21] C:\DOCUME~1\PROPRI~1\APPLIC~1\Google
[18/08/2008|08:17] C:\DOCUME~1\PROPRI~1\APPLIC~1\gtk-2.0
[15/08/2008|13:46] C:\DOCUME~1\PROPRI~1\APPLIC~1\Identities
[13/09/2008|08:42] C:\DOCUME~1\PROPRI~1\APPLIC~1\invibes
[15/09/2008|13:44] C:\DOCUME~1\PROPRI~1\APPLIC~1\iolo
[16/07/2008|14:30] C:\DOCUME~1\PROPRI~1\APPLIC~1\ItsLabel
[14/09/2008|12:02] C:\DOCUME~1\PROPRI~1\APPLIC~1\K9
[01/08/2008|08:39] C:\DOCUME~1\PROPRI~1\APPLIC~1\KC Softwares
[20/09/2008|12:24] C:\DOCUME~1\PROPRI~1\APPLIC~1\LimeWire
[20/10/2008|07:13] C:\DOCUME~1\PROPRI~1\APPLIC~1\Macromedia
[05/10/2008|13:52] C:\DOCUME~1\PROPRI~1\APPLIC~1\Malwarebytes
[25/10/2008|11:31] C:\DOCUME~1\PROPRI~1\APPLIC~1\Microsoft
[08/09/2008|08:48] C:\DOCUME~1\PROPRI~1\APPLIC~1\Mozilla
[26/07/2008|08:57] C:\DOCUME~1\PROPRI~1\APPLIC~1\MSNInstaller
[21/08/2008|08:08] C:\DOCUME~1\PROPRI~1\APPLIC~1\OpenOffice.org2
[07/08/2008|19:05] C:\DOCUME~1\PROPRI~1\APPLIC~1\PEX
[18/08/2008|11:09] C:\DOCUME~1\PROPRI~1\APPLIC~1\Playrix Entertainment
[23/09/2008|14:24] C:\DOCUME~1\PROPRI~1\APPLIC~1\PSpad
[15/08/2008|13:46] C:\DOCUME~1\PROPRI~1\APPLIC~1\SprillBermudeEng
[30/06/2008|10:59] C:\DOCUME~1\PROPRI~1\APPLIC~1\Sun
[12/10/2008|12:53] C:\DOCUME~1\PROPRI~1\APPLIC~1\SUPERAntiSpyware.com
[04/10/2008|08:33] C:\DOCUME~1\PROPRI~1\APPLIC~1\Symantec
[03/07/2008|11:37] C:\DOCUME~1\PROPRI~1\APPLIC~1\TuneUp Software
[01/08/2008|06:57] C:\DOCUME~1\PROPRI~1\APPLIC~1\Uniblue
[03/10/2008|15:07] C:\DOCUME~1\PROPRI~1\APPLIC~1\Windows Media Metering
[10/09/2008|10:34] C:\DOCUME~1\PROPRI~1\APPLIC~1\Wireshark
[30/06/2008|11:05] C:\DOCUME~1\PROPRI~1\APPLIC~1\You've Got Pictures Screensaver

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[28/10/2008 14:55][--a------] C:\WINDOWS\tasks\GlaryInitialize.job
[28/10/2008 16:00][--a------] C:\WINDOWS\tasks\Maintenance en 1 clic.job
[28/10/2008 14:55][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 13:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[20/08/2008|09:23] C:\Program Files\Abexo
[04/10/2008|08:27] C:\Program Files\Adobe
[20/09/2008|12:24] C:\Program Files\adslTV
[31/07/2008|06:13] C:\Program Files\Agnitum
[23/08/2008|11:26] C:\Program Files\Alwil Software
[15/08/2008|13:46] C:\Program Files\AOL 9.0
[30/06/2008|11:05] C:\Program Files\AOL Compagnon
[03/07/2008|14:30] C:\Program Files\Cartes de visite
[03/09/2008|14:02] C:\Program Files\CCleaner
[11/08/2008|12:53] C:\Program Files\COMMON~1
[10/09/2008|07:04] C:\Program Files\Downloadspeed
[08/09/2008|08:44] C:\Program Files\Eraser
[02/07/2008|12:58] C:\Program Files\Executive Software
[17/10/2008|10:15] C:\Program Files\Fichiers communs
[20/10/2008|07:09] C:\Program Files\Glary Utilities
[31/08/2008|10:11] C:\Program Files\IDETOOL
[13/09/2008|10:32] C:\Program Files\InstallShield Installation Information
[15/10/2008|17:09] C:\Program Files\Internet Explorer
[03/09/2008|13:00] C:\Program Files\IviCam
[13/10/2008|14:19] C:\Program Files\Java
[14/09/2008|12:01] C:\Program Files\KeirNet
[30/06/2008|11:05] C:\Program Files\Learn2.com
[26/10/2008|09:33] C:\Program Files\Lexmark X1100 Series
[26/07/2008|12:29] C:\Program Files\Logitech
[28/09/2008|07:33] C:\Program Files\ma-config.com
[11/09/2008|10:41] C:\Program Files\Messenger
[13/09/2008|08:42] C:\Program Files\Micro Application
[16/08/2004|17:11] C:\Program Files\microsoft frontpage
[25/08/2008|17:26] C:\Program Files\Microsoft Office
[21/10/2008|07:07] C:\Program Files\Microsoft Silverlight
[17/08/2008|15:32] C:\Program Files\Microsoft SQL Server Compact Edition
[25/08/2008|17:26] C:\Program Files\Microsoft Visual Studio
[25/08/2008|17:26] C:\Program Files\Microsoft Works
[25/08/2008|17:24] C:\Program Files\Microsoft.NET
[03/07/2008|14:31] C:\Program Files\Moss Bay Software
[11/09/2008|10:37] C:\Program Files\Movie Maker
[28/10/2008|16:11] C:\Program Files\Mozilla Firefox
[30/09/2008|07:21] C:\Program Files\MSBuild
[24/07/2008|20:30] C:\Program Files\MSN
[16/08/2004|17:03] C:\Program Files\MSN Gaming Zone
[25/09/2008|13:15] C:\Program Files\MSXML 4.0
[11/09/2008|10:34] C:\Program Files\NetMeeting
[18/10/2008|08:36] C:\Program Files\Neuf
[04/10/2008|11:02] C:\Program Files\NOS
[16/08/2004|17:03] C:\Program Files\Online Services
[01/09/2008|15:00] C:\Program Files\OpenOffice.org 2.4
[06/07/2008|09:46] C:\Program Files\Optimisation Windows
[11/09/2008|10:34] C:\Program Files\Outlook Express
[28/10/2008|16:08] C:\Program Files\PardaliS Software
[10/09/2008|10:38] C:\Program Files\PSPad editor
[28/08/2008|14:25] C:\Program Files\QuickTime
[30/06/2008|11:05] C:\Program Files\Real
[01/09/2008|07:36] C:\Program Files\Realtek AC97
[30/09/2008|07:16] C:\Program Files\Reference Assemblies
[30/06/2008|10:59] C:\Program Files\S3Inc
[16/08/2004|17:07] C:\Program Files\Services en ligne
[13/10/2008|10:12] C:\Program Files\SFR
[12/10/2008|06:14] C:\Program Files\Spybot - Search & Destroy
[20/10/2008|08:22] C:\Program Files\Trend Micro
[02/07/2008|12:13] C:\Program Files\Trust
[16/08/2004|17:19] C:\Program Files\Uninstall Information
[10/09/2008|10:24] C:\Program Files\VIA
[27/10/2008|18:50] C:\Program Files\VideoLAN
[30/06/2008|11:05] C:\Program Files\Viewpoint
[14/07/2008|09:02] C:\Program Files\Windows Installer 4.5 SDK
[09/10/2008|13:57] C:\Program Files\Windows Live
[23/09/2008|17:03] C:\Program Files\Windows Live Safety Center
[01/07/2008|09:07] C:\Program Files\Windows Media Connect 2
[11/09/2008|10:34] C:\Program Files\Windows Media Player
[11/09/2008|10:34] C:\Program Files\Windows NT
[16/08/2004|17:07] C:\Program Files\WindowsUpdate
[16/08/2004|17:11] C:\Program Files\xerox
[03/09/2008|14:03] C:\Program Files\Yahoo!

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[19/08/2008|10:47] C:\Program Files\Fichiers communs\A&W
[04/10/2008|08:28] C:\Program Files\Fichiers communs\Adobe
[19/08/2008|10:47] C:\Program Files\Fichiers communs\ANWSOFT
[30/06/2008|11:05] C:\Program Files\Fichiers communs\AOL
[30/06/2008|11:05] C:\Program Files\Fichiers communs\aolshare
[25/08/2008|17:26] C:\Program Files\Fichiers communs\DESIGNER
[25/07/2008|11:13] C:\Program Files\Fichiers communs\InstallShield
[30/06/2008|10:59] C:\Program Files\Fichiers communs\Java
[11/08/2008|12:55] C:\Program Files\Fichiers communs\L&H
[26/07/2008|12:29] C:\Program Files\Fichiers communs\Logitech
[11/09/2008|10:04] C:\Program Files\Fichiers communs\Microsoft Shared
[16/08/2004|17:06] C:\Program Files\Fichiers communs\MSSoap
[30/06/2008|11:05] C:\Program Files\Fichiers communs\Nullsoft
[10/09/2008|07:04] C:\Program Files\Fichiers communs\ODBC
[30/06/2008|11:05] C:\Program Files\Fichiers communs\Real
[16/08/2004|17:06] C:\Program Files\Fichiers communs\Services
[16/08/2004|16:56] C:\Program Files\Fichiers communs\SpeechEngines
[11/09/2008|10:34] C:\Program Files\Fichiers communs\System
[03/09/2008|15:51] C:\Program Files\Fichiers communs\Windows Media Metering
[14/09/2008|11:48] C:\Program Files\Fichiers communs\WindowsLiveInstaller

--------------------\\ Process

( 42 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\DOCUME~1\ALLUSE~1\APPLIC~1\great coal love default

--------------------\\ Verification du Registre

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-10-28 16:15:45
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 2

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:94][D:10]-> C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp
[F:14][D:0]-> C:\DOCUME~1\PROPRI~1\Cookies
[F:91][D:5]-> C:\DOCUME~1\PROPRI~1\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 28/10/2008|16:16 - Option : [1]

--------------------\\ Fin du rapport a 16:16:41
   
Répondre à penetfred

10


  • Ce message vous semble utile, votez !
  • Signaler ce message aux modérateurs
Lyonnais92, le mardi 28 octobre 2008 à 16:59:17
Bonjour,

Relance Lop S&D

Choisis cette fois ci l'Option 2 ( Suppression )

Ne ferme pas la fenêtre lors de la suppression !

Poste le rapport généré ( C:\lopR.txt )

( Si le Bureau ne réapparaît pas presse Ctrl + Alt + Suppr, Onglet Fichier,

Nouvelle tâche, tape explorer.exe et valide ) @+
Faites ce que l'on vous demande, ni plus, ni moins.
Ne créez pas de doublons, ni sur CCM ni sur un autre site. Merci
   
Répondre à Lyonnais92

11


  • Ce message vous semble utile, votez !
  • Signaler ce message aux modérateurs
penetfred, le vendredi 31 octobre 2008 à 06:56:04
--------------------\\ Lop S&D 4.2.4-8 XP/Vista


"C:\Lop SD" ( MAJ : 27-10-2008|09:15 )
Option : [2] ( 31/10/2008| 6:53 )


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\great coal love default
-
[ Fichier Hosts ] .. Restaure!

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

Supprime! - C:\Program Files\Viewpoint
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Viewpoint

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


--------------------\\ Listing des dossiers dans APPLIC~1

[04/10/2008|08:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[30/06/2008|11:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL
[03/07/2008|14:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL Downloads
[23/07/2008|15:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[18/08/2008|07:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Downloaded Installations
[16/10/2008|18:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\f-secure
[12/10/2008|13:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\fssg
[11/08/2008|06:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
[28/09/2008|06:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\iolo
[28/09/2008|07:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ma-config.com
[04/10/2008|11:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MailFrontier
[05/10/2008|13:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[11/09/2008|10:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[17/10/2008|10:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Help
[04/10/2008|08:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NortonInstaller
[04/10/2008|11:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NOS
[16/08/2008|16:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Player Metaboli
[30/06/2008|11:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[16/08/2004|17:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[13/10/2008|10:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SFR
[31/10/2008|06:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[12/10/2008|12:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SUPERAntiSpyware.com
[30/06/2008|11:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[17/10/2008|10:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[07/07/2008|08:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Zylom

[16/08/2004|16:54] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[01/10/2008|09:44] C:\DOCUME~1\LOCALS~1\APPLIC~1\agi
[15/09/2008|13:44] C:\DOCUME~1\LOCALS~1\APPLIC~1\iolo
[24/08/2008|15:17] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[24/08/2008|15:17] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

[23/08/2008|11:12] C:\DOCUME~1\PROPRI~1\APPLIC~1\.purple
[10/09/2008|07:06] C:\DOCUME~1\PROPRI~1\APPLIC~1\AD ON Multimedia
[30/09/2008|07:09] C:\DOCUME~1\PROPRI~1\APPLIC~1\Adobe
[30/09/2008|07:13] C:\DOCUME~1\PROPRI~1\APPLIC~1\AdobeUM
[30/06/2008|11:09] C:\DOCUME~1\PROPRI~1\APPLIC~1\AOL
[20/08/2008|09:57] C:\DOCUME~1\PROPRI~1\APPLIC~1\Auslogics
[22/08/2008|10:27] C:\DOCUME~1\PROPRI~1\APPLIC~1\EoRezo
[02/07/2008|12:32] C:\DOCUME~1\PROPRI~1\APPLIC~1\ExecutiveSoftware
[08/09/2008|10:58] C:\DOCUME~1\PROPRI~1\APPLIC~1\F4
[12/10/2008|13:10] C:\DOCUME~1\PROPRI~1\APPLIC~1\F-Secure
[23/07/2008|14:57] C:\DOCUME~1\PROPRI~1\APPLIC~1\GlarySoft
[15/10/2008|12:21] C:\DOCUME~1\PROPRI~1\APPLIC~1\Google
[18/08/2008|08:17] C:\DOCUME~1\PROPRI~1\APPLIC~1\gtk-2.0
[15/08/2008|13:46] C:\DOCUME~1\PROPRI~1\APPLIC~1\Identities
[13/09/2008|08:42] C:\DOCUME~1\PROPRI~1\APPLIC~1\invibes
[15/09/2008|13:44] C:\DOCUME~1\PROPRI~1\APPLIC~1\iolo
[16/07/2008|14:30] C:\DOCUME~1\PROPRI~1\APPLIC~1\ItsLabel
[14/09/2008|12:02] C:\DOCUME~1\PROPRI~1\APPLIC~1\K9
[01/08/2008|08:39] C:\DOCUME~1\PROPRI~1\APPLIC~1\KC Softwares
[20/09/2008|12:24] C:\DOCUME~1\PROPRI~1\APPLIC~1\LimeWire
[20/10/2008|07:13] C:\DOCUME~1\PROPRI~1\APPLIC~1\Macromedia
[05/10/2008|13:52] C:\DOCUME~1\PROPRI~1\APPLIC~1\Malwarebytes
[25/10/2008|11:31] C:\DOCUME~1\PROPRI~1\APPLIC~1\Microsoft
[08/09/2008|08:48] C:\DOCUME~1\PROPRI~1\APPLIC~1\Mozilla
[26/07/2008|08:57] C:\DOCUME~1\PROPRI~1\APPLIC~1\MSNInstaller
[21/08/2008|08:08] C:\DOCUME~1\PROPRI~1\APPLIC~1\OpenOffice.org2
[07/08/2008|19:05] C:\DOCUME~1\PROPRI~1\APPLIC~1\PEX
[18/08/2008|11:09] C:\DOCUME~1\PROPRI~1\APPLIC~1\Playrix Entertainment
[23/09/2008|14:24] C:\DOCUME~1\PROPRI~1\APPLIC~1\PSpad
[15/08/2008|13:46] C:\DOCUME~1\PROPRI~1\APPLIC~1\SprillBermudeEng
[30/06/2008|10:59] C:\DOCUME~1\PROPRI~1\APPLIC~1\Sun
[12/10/2008|12:53] C:\DOCUME~1\PROPRI~1\APPLIC~1\SUPERAntiSpyware.com
[04/10/2008|08:33] C:\DOCUME~1\PROPRI~1\APPLIC~1\Symantec
[03/07/2008|11:37] C:\DOCUME~1\PROPRI~1\APPLIC~1\TuneUp Software
[01/08/2008|06:57] C:\DOCUME~1\PROPRI~1\APPLIC~1\Uniblue
[03/10/2008|15:07] C:\DOCUME~1\PROPRI~1\APPLIC~1\Windows Media Metering
[10/09/2008|10:34] C:\DOCUME~1\PROPRI~1\APPLIC~1\Wireshark
[30/06/2008|11:05] C:\DOCUME~1\PROPRI~1\APPLIC~1\You've Got Pictures Screensaver

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[31/10/2008 06:12][--a------] C:\WINDOWS\tasks\GlaryInitialize.job
[31/10/2008 06:12][--a------] C:\WINDOWS\tasks\Maintenance en 1 clic.job
[31/10/2008 06:12][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 13:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[20/08/2008|09:23] C:\Program Files\Abexo
[04/10/2008|08:27] C:\Program Files\Adobe
[20/09/2008|12:24] C:\Program Files\adslTV
[31/07/2008|06:13] C:\Program Files\Agnitum
[23/08/2008|11:26] C:\Program Files\Alwil Software
[15/08/2008|13:46] C:\Program Files\AOL 9.0
[30/06/2008|11:05] C:\Program Files\AOL Compagnon
[03/07/2008|14:30] C:\Program Files\Cartes de visite
[03/09/2008|14:02] C:\Program Files\CCleaner
[11/08/2008|12:53] C:\Program Files\COMMON~1
[10/09/2008|07:04] C:\Program Files\Downloadspeed
[08/09/2008|08:44] C:\Program Files\Eraser
[02/07/2008|12:58] C:\Program Files\Executive Software
[17/10/2008|10:15] C:\Program Files\Fichiers communs
[20/10/2008|07:09] C:\Program Files\Glary Utilities
[31/08/2008|10:11] C:\Program Files\IDETOOL
[13/09/2008|10:32] C:\Program Files\InstallShield Installation Information
[15/10/2008|17:09] C:\Program Files\Internet Explorer
[03/09/2008|13:00] C:\Program Files\IviCam
[13/10/2008|14:19] C:\Program Files\Java
[14/09/2008|12:01] C:\Program Files\KeirNet
[30/06/2008|11:05] C:\Program Files\Learn2.com
[26/10/2008|09:33] C:\Program Files\Lexmark X1100 Series
[26/07/2008|12:29] C:\Program Files\Logitech
[28/09/2008|07:33] C:\Program Files\ma-config.com
[11/09/2008|10:41] C:\Program Files\Messenger
[13/09/2008|08:42] C:\Program Files\Micro Application
[16/08/2004|17:11] C:\Program Files\microsoft frontpage
[25/08/2008|17:26] C:\Program Files\Microsoft Office
[21/10/2008|07:07] C:\Program Files\Microsoft Silverlight
[17/08/2008|15:32] C:\Program Files\Microsoft SQL Server Compact Edition
[25/08/2008|17:26] C:\Program Files\Microsoft Visual Studio
[25/08/2008|17:26] C:\Program Files\Microsoft Works
[25/08/2008|17:24] C:\Program Files\Microsoft.NET
[03/07/2008|14:31] C:\Program Files\Moss Bay Software
[11/09/2008|10:37] C:\Program Files\Movie Maker
[31/10/2008|06:46] C:\Program Files\Mozilla Firefox
[30/09/2008|07:21] C:\Program Files\MSBuild
[24/07/2008|20:30] C:\Program Files\MSN
[16/08/2004|17:03] C:\Program Files\MSN Gaming Zone
[25/09/2008|13:15] C:\Program Files\MSXML 4.0
[11/09/2008|10:34] C:\Program Files\NetMeeting
[18/10/2008|08:36] C:\Program Files\Neuf
[04/10/2008|11:02] C:\Program Files\NOS
[16/08/2004|17:03] C:\Program Files\Online Services
[01/09/2008|15:00] C:\Program Files\OpenOffice.org 2.4
[06/07/2008|09:46] C:\Program Files\Optimisation Windows
[11/09/2008|10:34] C:\Program Files\Outlook Express
[28/10/2008|16:08] C:\Program Files\PardaliS Software
[10/09/2008|10:38] C:\Program Files\PSPad editor
[28/08/2008|14:25] C:\Program Files\QuickTime
[30/06/2008|11:05] C:\Program Files\Real
[01/09/2008|07:36] C:\Program Files\Realtek AC97
[30/09/2008|07:16] C:\Program Files\Reference Assemblies
[30/06/2008|10:59] C:\Program Files\S3Inc
[16/08/2004|17:07] C:\Program Files\Services en ligne
[13/10/2008|10:12] C:\Program Files\SFR
[12/10/2008|06:14] C:\Program Files\Spybot - Search & Destroy
[20/10/2008|08:22] C:\Program Files\Trend Micro
[02/07/2008|12:13] C:\Program Files\Trust
[16/08/2004|17:19] C:\Program Files\Uninstall Information
[10/09/2008|10:24] C:\Program Files\VIA
[27/10/2008|18:50] C:\Program Files\VideoLAN
[14/07/2008|09:02] C:\Program Files\Windows Installer 4.5 SDK
[09/10/2008|13:57] C:\Program Files\Windows Live
[23/09/2008|17:03] C:\Program Files\Windows Live Safety Center
[01/07/2008|09:07] C:\Program Files\Windows Media Connect 2
[11/09/2008|10:34] C:\Program Files\Windows Media Player
[11/09/2008|10:34] C:\Program Files\Windows NT
[16/08/2004|17:07] C:\Program Files\WindowsUpdate
[16/08/2004|17:11] C:\Program Files\xerox
[03/09/2008|14:03] C:\Program Files\Yahoo!

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[19/08/2008|10:47] C:\Program Files\Fichiers communs\A&W
[04/10/2008|08:28] C:\Program Files\Fichiers communs\Adobe
[19/08/2008|10:47] C:\Program Files\Fichiers communs\ANWSOFT
[30/06/2008|11:05] C:\Program Files\Fichiers communs\AOL
[30/06/2008|11:05] C:\Program Files\Fichiers communs\aolshare
[25/08/2008|17:26] C:\Program Files\Fichiers communs\DESIGNER
[25/07/2008|11:13] C:\Program Files\Fichiers communs\InstallShield
[30/06/2008|10:59] C: