Sujet Précédent Sujet Suivant

Problème de pub

Fermé
Pactou Messages postés 24 Date d'inscription mardi 4 novembre 2008 Statut Membre Dernière intervention 3 janvier 2009 - 3 janv. 2009 à 01:02
crapoulou Messages postés 28161 Date d'inscription mercredi 28 novembre 2007 Statut Modérateur, Contributeur sécurité Dernière intervention 21 mai 2024 - 3 janv. 2009 à 10:58
Bonsoir,

J'ai un gros problème de pub! elles n'arrêtent pas de s'ouvrir (environ toutes les 15min: un nouvel onglet) et je n'arrive pas à m'en débarasser! J'ai installé "Google" toolbar pour les Pop-Up! J'ai instanllé "Spybot" pour tout virer ainsi que "Ccleaner" et j'utilise le Pare feu de windows mais rien y fait cela continu! Auriez vous un conseil à me donner parce que cela dure depuis hier et je ne sais pas quoi faire!
merci!
A voir également:

14 réponses

Réponse 1 / 14
crapoulou Messages postés 28161 Date d'inscription mercredi 28 novembre 2007 Statut Modérateur, Contributeur sécurité Dernière intervention 21 mai 2024 7 998
3 janv. 2009 à 01:03
Salut,

- Télécharge HijackThis Version 2.02 :
= = = = >>> En cliquant ici <<< = = = =

- Enregistre HJTInstall.exe sur ton bureau.
- Fais un double-clic (gauche) sur HJTInstall.exe afin de lancer l’installation
- Clique sur Install ensuite sur « I Accept »
- Clique sur « Do a scan system and save log file »
- Le bloc-notes s’ouvrira, fais un copier-coller de tout son contenu ici dans ta prochaine réponse.
0
Réponse 2 / 14
Elarion Messages postés 173 Date d'inscription mercredi 16 mai 2007 Statut Membre Dernière intervention 5 février 2016 26
3 janv. 2009 à 01:04
je le repete essai sous firefox "adblock plus" tres efficzce il enleve meme les pub integrer au pasge web donc meilleurs fluiidité
0
Réponse 3 / 14
crapoulou Messages postés 28161 Date d'inscription mercredi 28 novembre 2007 Statut Modérateur, Contributeur sécurité Dernière intervention 21 mai 2024 7 998
3 janv. 2009 à 01:06
Je le répète : comme disait un très grand philosophe français nommé Willy (alias Destrio5),
Et la marmotte, elle met le chocolat dans le papier d'alu ... !
C'est une infection !!!
0
Réponse 4 / 14
Elarion Messages postés 173 Date d'inscription mercredi 16 mai 2007 Statut Membre Dernière intervention 5 février 2016 26
3 janv. 2009 à 01:07
ouai aussi
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 14
Pactou Messages postés 24 Date d'inscription mardi 4 novembre 2008 Statut Membre Dernière intervention 3 janvier 2009
3 janv. 2009 à 01:10
Ok je vais essayer ça tout de suite et je vous dis!
0
Réponse 6 / 14
Pactou Messages postés 24 Date d'inscription mardi 4 novembre 2008 Statut Membre Dernière intervention 3 janvier 2009
3 janv. 2009 à 01:16
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 01:11:43, on 03/01/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\windows\system32\taskeng.exe
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
c:\Program Files\Hewlett-Packard\IAM\Bin\AsGHost.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\ActivIdentity\ActivClient\accrdsub.exe
C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\pthosttr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\SiteAdvisor\6173\SiteAdv.exe
C:\Program Files\Hewlett-Packard\File Sanitizer\CoreShredder.exe
C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Orange\Systray\SystrayApp.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Windows\WindowsMobile\wmdc.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe
C:\windows\System32\mobsync.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
C:\Program Files\Orange\Launcher\Launcher.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\McAfee\Managed VirusScan\Agent\myAgtTry.exe
c:\Program Files\ActivIdentity\ActivClient\acevents.exe
C:\Program Files\Hewlett-Packard\HP wireless Assistant\WiFiMsg.EXE
C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Orange\connectivity\connectivitymanager.exe
C:\Program Files\Orange\connectivity\CoreCom\CoreCom.exe
C:\Program Files\Orange\connectivity\CoreCom\OraConfigRecover.exe
C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTCOMModule\0\FTCOMModule.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Microsoft Office\Office12\WINWORD.EXE
C:\Program Files\iTunes\iTunes.exe
C:\Program Files\Internet Explorer\IEUser.exe
C:\Program Files\Windows Live\Toolbar\wltuser.exe
C:\Program Files\Google\Google Toolbar\GoogleToolbarUser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\windows\system32\NOTEPAD.EXE

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr?cobrand=hp-comm.msn.com&ocid=HPDHP&pc=CMDTDF
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr?cobrand=hp-comm.msn.com&ocid=HPDHP&pc=CMDTDF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr?cobrand=hp-comm.msn.com&ocid=HPDHP&pc=CMDTDF
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Orange\SearchURLHook\SearchPageURL.dll
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {089FD14D-132B-48FC-8861-0048AE113215} - C:\Program Files\SiteAdvisor\6173\SiteAdv.dll
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll
O2 - BHO: Credential Manager for HP ProtectTools - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - c:\Program Files\Hewlett-Packard\IAM\Bin\ItIEAddIn.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: McAfee SiteAdvisor - {0BF43445-2F28-4351-9252-17FE6E806AA0} - C:\Program Files\SiteAdvisor\6173\SiteAdv.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [accrdsub] "c:\Program Files\ActivIdentity\ActivClient\accrdsub.exe"
O4 - HKLM\..\Run: [PTHOSTTR] c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTHOSTTR.EXE /Start
O4 - HKLM\..\Run: [CognizanceTS] rundll32.exe c:\PROGRA~1\HEWLET~1\IAM\Bin\ASTSVCC.dll,RegisterModule
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [HP Health Check Scheduler] c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
O4 - HKLM\..\Run: [MVS Splash] C:\Program Files\McAfee\Managed VirusScan\Agent\Splash.exe
O4 - HKLM\..\Run: [McAfee Managed Services Tray] C:\Program Files\McAfee\Managed VirusScan\Agent\StartMyAgtTry.Exe
O4 - HKLM\..\Run: [SiteAdvisor] C:\Program Files\SiteAdvisor\6173\SiteAdv.exe
O4 - HKLM\..\Run: [File Sanitizer] C:\Program Files\Hewlett-Packard\File Sanitizer\CoreShredder.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe"
O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [WatchDog] C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
O4 - HKLM\..\Run: [HP Software Update] c:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [SoundMAX] C:\Program Files\Analog Devices\SoundMAX\soundmax.exe /tray
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKLM\..\Run: [SystrayORAHSS] "C:\Program Files\Orange\Systray\SystrayApp.exe"
O4 - HKLM\..\Run: [ORAHSSSessionManager] C:\Program Files\Orange\SessionManager\SessionManager.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [style cool 2 city] "C:\ProgramData\Multi win pile.4x6qw1"
O4 - HKCU\..\Run: [Idol Five] "C:\ProgramData\FreeIdleIdle.htpt0l"
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Global Startup: BTTray.lnk = ?
O4 - Global Startup: DVD Check.lnk = C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: Envoyer l'&image au périphérique Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra button: @C:\windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\windows\WindowsMobile\INetRepl.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O13 - Gopher Prefix:
O15 - Trusted Zone: https://www.orange.fr/portail
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O18 - Protocol: skyline - {3A4F9195-65A8-11D5-85C1-0001023952C1} - C:\Program Files\Skyline\TerraExplorer\TerraExplorerX.dll
O20 - AppInit_DLLs: APSHook.dll
O23 - Service: ActivClient Middleware Service (accoca) - ActivIdentity - c:\Program Files\ActivIdentity\ActivClient\accoca.exe
O23 - Service: Andrea ADI Filters Service (AEADIFilters) - Andrea Electronics Corporation - C:\windows\system32\AEADISRV.EXE
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\windows\system32\Ati2evxx.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
O23 - Service: EngineServer - McAfee, Inc. - C:\PROGRA~1\McAfee\MANAGE~1\VScan\ENGINE~1.EXE
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP ProtectTools Service - Hewlett-Packard Development Company, L.P - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTChangeFilterService.exe
O23 - Service: Drive Encryption Service (HpFkCryptService) - SafeBoot International - c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) - Hewlett-Packard - C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Service (hpsrv) - Hewlett-Packard Corporation - C:\windows\system32\Hpservice.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: McAfee HackerWatch Service - McAfee, Inc. - C:\Program Files\Common Files\McAfee\HackerWatch\HWAPI.exe
O23 - Service: McShield - McAfee, Inc. - C:\PROGRA~1\McAfee\MANAGE~1\VScan\McShield.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe
O23 - Service: McAfee Virus and Spyware Protection Service (myAgtSvc) - McAfee, Inc. - C:\Program Files\McAfee\Managed VirusScan\Agent\myAgtSvc.Exe
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files\PDF Complete\pdfsvc.exe
O23 - Service: RoxMediaDB10 - Sonic Solutions - c:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
O23 - Service: SiteAdvisor Service - Unknown owner - C:\Program Files\SiteAdvisor\6173\SAService.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe
0
Réponse 7 / 14
crapoulou Messages postés 28161 Date d'inscription mercredi 28 novembre 2007 Statut Modérateur, Contributeur sécurité Dernière intervention 21 mai 2024 7 998
3 janv. 2009 à 01:24
Elarion :
Après avoir découvert l'infection navipromo sur l'autre topic, tu découvre ici l'infection LOP
O4 - HKCU\..\Run: [style cool 2 city] "C:\ProgramData\Multi win pile.4x6qw1"
O4 - HKCU\..\Run: [Idol Five] "C:\ProgramData\FreeIdleIdle.htpt0l"

**********************

Télécharge LopS&D (de eric_71)
= = = = >>> En cliquant ici <<< = = = =

Enregistre le fichier sur ton bureau.
Lance l’installation.
Une fois le programme lancé tape F pour être en Français.
Puis exécute l’option 1, Recherche.
Un rapport sera généré.
Poste son intégralité ici.
Note :
Dans le cas où le rapport ne s’ouvre pas, ce dernier se trouve sur C:\LopR.txt
Petit tutorial si besoin ICI.
0
Réponse 8 / 14
Pactou Messages postés 24 Date d'inscription mardi 4 novembre 2008 Statut Membre Dernière intervention 3 janvier 2009
3 janv. 2009 à 01:37
--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft® Windows Vista™ Professionnel ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Intel(R) Core(TM)2 Duo CPU P8400 @ 2.26GHz )
BIOS : Default System BIOS
USER : Sékélé ( Administrator )
BOOT : Normal boot
Antivirus : Total Protection 4.9.0.295 (Activated)
Firewall : Total Protection 4.0 (Activated)
C:\ (Local Disk) - NTFS - Total:222 Go (Free:190 Go)
D:\ (Local Disk) - NTFS - Total:9 Go (Free:1 Go)
E:\ (CD or DVD)
F:\ (Local Disk) - FAT32 - Total:0 Go (Free:0 Go)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 03/01/2009| 1:35 )

[ UAC => 1 ]

--------------------\\ Listing des dossiers dans Local

[27/12/2008|14:34] C:\Users\SKL~1\AppData\Local\Apple
[29/12/2008|00:16] C:\Users\SKL~1\AppData\Local\Apple Computer
[26/12/2008|20:44] C:\Users\SKL~1\AppData\Local\Application Data
[26/12/2008|21:06] C:\Users\SKL~1\AppData\Local\ATI
[26/12/2008|21:05] C:\Users\SKL~1\AppData\Local\AtStart.txt
[01/01/2009|23:04] C:\Users\SKL~1\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[26/12/2008|21:05] C:\Users\SKL~1\AppData\Local\DSwitch.txt
[26/12/2008|21:05] C:\Users\SKL~1\AppData\Local\GDIPFONTCACHEV1.DAT
[03/01/2009|00:36] C:\Users\SKL~1\AppData\Local\Google
[26/12/2008|20:44] C:\Users\SKL~1\AppData\Local\Historique
[02/01/2009|23:07] C:\Users\SKL~1\AppData\Local\IconCache.db
[26/12/2008|21:07] C:\Users\SKL~1\AppData\Local\IsolatedStorage
[27/12/2008|15:02] C:\Users\SKL~1\AppData\Local\Microsoft
[02/01/2009|22:29] C:\Users\SKL~1\AppData\Local\Mozilla
[26/12/2008|21:05] C:\Users\SKL~1\AppData\Local\QSwitch.txt
[03/01/2009|01:35] C:\Users\SKL~1\AppData\Local\Temp
[26/12/2008|20:44] C:\Users\SKL~1\AppData\Local\Temporary Internet Files
[03/01/2009|01:13] C:\Users\SKL~1\AppData\Local\VirtualStore

--------------------\\ Tâches planifiées dans C:\windows\tasks

[03/01/2009 01:32][--a------] C:\windows\tasks\Google Software Updater.job
[02/01/2009 19:23][--ah-----] C:\windows\tasks\User_Feed_Synchronization-{447ABB95-ADF4-4A7A-AEC0-D896A1EB9262}.job
[27/12/2008 10:16][--a------] C:\windows\tasks\HPCeeScheduleForS‚k‚l‚.job
[02/01/2009 23:50][--ah-----] C:\windows\tasks\SA.DAT
[02/01/2009 23:07][--a------] C:\windows\tasks\SCHEDLGU.TXT

--------------------\\ Listing des dossiers dans C:\ProgramData

[27/12/2008|14:36] C:\ProgramData\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[02/01/2009|19:26] C:\ProgramData\ante glue
[27/12/2008|14:34] C:\ProgramData\Apple
[27/12/2008|14:36] C:\ProgramData\Apple Computer
[02/11/2006|14:02] C:\ProgramData\Application Data
[26/12/2008|21:06] C:\ProgramData\ATI
[27/12/2008|15:14] C:\ProgramData\Blue multi pile.pi2mj
[26/12/2008|20:40] C:\ProgramData\Bureau
[02/01/2009|19:26] C:\ProgramData\byte loud style cool
[02/11/2006|14:02] C:\ProgramData\Desktop
[02/11/2006|14:02] C:\ProgramData\Documents
[26/12/2008|20:40] C:\ProgramData\Favoris
[02/11/2006|14:02] C:\ProgramData\Favorites
[02/01/2009|19:26] C:\ProgramData\FreeIdleIdle.htpt0l
[02/01/2009|19:26] C:\ProgramData\FreeIdleIdle.ojr01
[27/12/2008|15:14] C:\ProgramData\FreeIdleIdle.s2aumt
[03/01/2009|00:32] C:\ProgramData\Google
[03/01/2009|01:32] C:\ProgramData\Google Updater
[26/12/2008|20:54] C:\ProgramData\Hewlett-Packard
[02/01/2009|23:50] C:\ProgramData\hpqLog
[26/12/2008|22:01] C:\ProgramData\LightScribe
[17/06/2008|10:24] C:\ProgramData\McAfee
[26/12/2008|20:40] C:\ProgramData\Menu D‚marrer
[27/12/2008|14:48] C:\ProgramData\Microsoft
[27/12/2008|16:37] C:\ProgramData\Microsoft Help
[26/12/2008|20:40] C:\ProgramData\ModŠles
[02/01/2009|19:26] C:\ProgramData\Multi win pile.4x6qw1
[17/06/2008|10:17] C:\ProgramData\Roxio
[17/06/2008|10:26] C:\ProgramData\SiteAdvisor
[30/12/2008|22:14] C:\ProgramData\Skyline
[17/06/2008|10:13] C:\ProgramData\Sonic
[26/12/2008|20:45] C:\ProgramData\SonicFocus
[02/01/2009|22:35] C:\ProgramData\Spybot - Search & Destroy
[02/11/2006|14:02] C:\ProgramData\Start Menu
[02/11/2006|14:02] C:\ProgramData\Templates
[17/06/2008|10:18] C:\ProgramData\Uninstall

--------------------\\ Listing des dossiers dans C:\Program Files

[17/06/2008|09:47] C:\Program Files\ActivIdentity
[26/12/2008|20:45] C:\Program Files\Analog Devices
[27/12/2008|14:34] C:\Program Files\Apple Software Update
[26/12/2008|20:45] C:\Program Files\ATI
[26/12/2008|20:47] C:\Program Files\ATI Technologies
[27/12/2008|14:35] C:\Program Files\Bonjour
[27/12/2008|14:29] C:\Program Files\CCleaner
[02/01/2009|21:46] C:\Program Files\Circle Developement
[27/12/2008|14:34] C:\Program Files\Common Files
[01/01/2009|19:54] C:\Program Files\DivX
[27/12/2008|14:40] C:\Program Files\DVD Decrypter
[26/12/2008|20:40] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[03/01/2009|00:32] C:\Program Files\Google
[17/06/2008|10:39] C:\Program Files\Hewlett-Packard
[17/06/2008|10:35] C:\Program Files\HP
[26/12/2008|20:52] C:\Program Files\HP Webcam Application
[17/06/2008|09:47] C:\Program Files\HPQ
[27/12/2008|15:34] C:\Program Files\InstallShield Installation Information
[17/06/2008|09:42] C:\Program Files\Intel
[27/12/2008|14:35] C:\Program Files\Internet Explorer
[27/12/2008|15:34] C:\Program Files\InterVideo
[27/12/2008|14:36] C:\Program Files\iPod
[27/12/2008|14:36] C:\Program Files\iTunes
[17/06/2008|10:27] C:\Program Files\Java
[17/06/2008|10:31] C:\Program Files\McAfee
[27/12/2008|15:13] C:\Program Files\Messenger Plus! Live
[27/12/2008|14:22] C:\Program Files\Microsoft
[17/06/2008|10:10] C:\Program Files\Microsoft Office
[17/06/2008|10:11] C:\Program Files\Microsoft Office Suite Activation Assistant
[27/12/2008|14:23] C:\Program Files\Microsoft Sync Framework
[17/06/2008|10:10] C:\Program Files\Microsoft Visual Studio
[17/06/2008|10:10] C:\Program Files\Microsoft Works
[17/06/2008|10:09] C:\Program Files\Microsoft.NET
[21/01/2008|03:35] C:\Program Files\Movie Maker
[02/01/2009|22:29] C:\Program Files\Mozilla Firefox
[02/11/2006|13:37] C:\Program Files\MSBuild
[27/12/2008|16:17] C:\Program Files\MSXML 4.0
[27/12/2008|11:21] C:\Program Files\Orange
[17/06/2008|09:58] C:\Program Files\PDF Complete
[27/12/2008|14:35] C:\Program Files\QuickTime
[02/11/2006|13:37] C:\Program Files\Reference Assemblies
[17/06/2008|10:17] C:\Program Files\Roxio
[27/12/2008|11:11] C:\Program Files\SAGEM
[27/12/2008|11:11] C:\Program Files\Securitoo
[17/06/2008|10:26] C:\Program Files\SiteAdvisor
[30/12/2008|22:14] C:\Program Files\Skyline
[02/01/2009|21:33] C:\Program Files\Spybot - Search & Destroy
[17/06/2008|10:18] C:\Program Files\Synaptics
[03/01/2009|01:10] C:\Program Files\Trend Micro
[02/11/2006|14:01] C:\Program Files\Uninstall Information
[01/01/2009|23:17] C:\Program Files\Videora
[26/12/2008|20:49] C:\Program Files\WIDCOMM
[21/01/2008|03:35] C:\Program Files\Windows Calendar
[21/01/2008|03:35] C:\Program Files\Windows Collaboration
[21/01/2008|03:35] C:\Program Files\Windows Defender
[21/01/2008|03:35] C:\Program Files\Windows Journal
[27/12/2008|14:23] C:\Program Files\Windows Live
[27/12/2008|14:22] C:\Program Files\Windows Live SkyDrive
[27/12/2008|17:15] C:\Program Files\Windows Mail
[21/01/2008|03:35] C:\Program Files\Windows Media Player
[26/12/2008|20:40] C:\Program Files\Windows NT
[21/01/2008|03:35] C:\Program Files\Windows Photo Gallery
[21/01/2008|03:35] C:\Program Files\Windows Sidebar

--------------------\\ Listing des dossiers dans C:\Program Files\Common Files

[17/06/2008|09:47] C:\Program Files\Common Files\ActivIdentity
[27/12/2008|14:36] C:\Program Files\Common Files\Apple
[17/06/2008|10:10] C:\Program Files\Common Files\DESIGNER
[27/12/2008|11:18] C:\Program Files\Common Files\France Telecom
[17/06/2008|10:22] C:\Program Files\Common Files\InstallShield
[17/06/2008|10:19] C:\Program Files\Common Files\InterVideo
[17/06/2008|10:27] C:\Program Files\Common Files\Java
[17/06/2008|10:24] C:\Program Files\Common Files\LightScribe
[17/06/2008|10:24] C:\Program Files\Common Files\McAfee
[27/12/2008|16:19] C:\Program Files\Common Files\microsoft shared
[17/06/2008|10:16] C:\Program Files\Common Files\PX Storage Engine
[17/06/2008|10:16] C:\Program Files\Common Files\Roxio Shared
[02/11/2006|12:18] C:\Program Files\Common Files\Services
[26/12/2008|20:51] C:\Program Files\Common Files\SNP2UVC
[17/06/2008|10:17] C:\Program Files\Common Files\Sonic Shared
[02/11/2006|12:18] C:\Program Files\Common Files\SpeechEngines
[17/06/2008|10:14] C:\Program Files\Common Files\SureThing Shared
[17/06/2008|10:06] C:\Program Files\Common Files\System
[27/12/2008|14:13] C:\Program Files\Common Files\Windows Live

--------------------\\ Process

( 121 Processes )

iexplore.exe ~ [PID:4676]
iexplore.exe ~ [PID:5484]
iexplore.exe ~ [PID:5356]
iexplore.exe ~ [PID:8152]

--------------------\\ Recherche avec S_Lop

C:\ProgramData\Blue multi pile.pi2mj
C:\ProgramData\FreeIdleIdle.ojr01
C:\ProgramData\FreeIdleIdle.htpt0l
C:\ProgramData\FreeIdleIdle.s2aumt
C:\ProgramData\Multi win pile.4x6qw1

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\ProgramData\byte loud style cool
C:\ProgramData\byte loud style cool\CORN ROAD.dat
C:\ProgramData\byte loud style cool\CORN ROAD.exe
C:\Program Files\Circle Developement

--------------------\\ Verification du Registre

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Idol Five"="\"C:\\ProgramData\\FreeIdleIdle.htpt0l\""
"style cool 2 city"="\"C:\\ProgramData\\Multi win pile.4x6qw1\""

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-01-03 01:35:56
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:115][D:7]-> C:\Users\SKL~1\AppData\Local\Temp
[F:70][D:1]-> C:\Users\SKL~1\AppData\Roaming\MICROS~1\Windows\Cookies
[F:27][D:4]-> C:\Users\SKL~1\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:2][D:2]-> C:\$Recycle.Bin

1 - "C:\Lop SD\LopR_1.txt" - 03/01/2009| 1:37 - Option : [1]

--------------------\\ Fin du rapport a 1:37:03
[ UAC => 1 ]
0
Réponse 9 / 14
crapoulou Messages postés 28161 Date d'inscription mercredi 28 novembre 2007 Statut Modérateur, Contributeur sécurité Dernière intervention 21 mai 2024 7 998
3 janv. 2009 à 01:41
Nettoyage :

Lance Lop S&D.
Tape F pour être en Français
Ensuite, exécute l’option 2 : Suppression + Hosts
Un rapport sera généré.
Poste le entièrement ici.
0
Réponse 10 / 14
Pactou Messages postés 24 Date d'inscription mardi 4 novembre 2008 Statut Membre Dernière intervention 3 janvier 2009
3 janv. 2009 à 01:48
--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft® Windows Vista™ Professionnel ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Intel(R) Core(TM)2 Duo CPU P8400 @ 2.26GHz )
BIOS : Default System BIOS
USER : Sékélé ( Administrator )
BOOT : Normal boot
Antivirus : Total Protection 4.9.0.295 (Activated)
Firewall : Total Protection 4.0 (Activated)
C:\ (Local Disk) - NTFS - Total:222 Go (Free:190 Go)
D:\ (Local Disk) - NTFS - Total:9 Go (Free:1 Go)
E:\ (CD or DVD)
F:\ (Local Disk) - FAT32 - Total:0 Go (Free:0 Go)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [2] ( 03/01/2009| 1:44 )

[ UAC => 1 ]


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

Supprime! - C:\ProgramData\byte loud style cool\CORN ROAD.dat
Supprime! - C:\ProgramData\byte loud style cool\CORN ROAD.exe
Supprime! - C:\ProgramData\Blue multi pile.pi2mj
Supprime! - C:\ProgramData\FreeIdleIdle.ojr01
Supprime! - C:\ProgramData\FreeIdleIdle.htpt0l
Supprime! - C:\ProgramData\FreeIdleIdle.s2aumt
Supprime! - C:\ProgramData\Multi win pile.4x6qw1
Supprime! - C:\ProgramData\byte loud style cool
Supprime! - C:\Program Files\Circle Developement
-
[ Fichier Hosts ] .. Restaure!

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


--------------------\\ Listing des dossiers dans Local

[27/12/2008|14:34] C:\Users\SKL~1\AppData\Local\Apple
[29/12/2008|00:16] C:\Users\SKL~1\AppData\Local\Apple Computer
[26/12/2008|20:44] C:\Users\SKL~1\AppData\Local\Application Data
[26/12/2008|21:06] C:\Users\SKL~1\AppData\Local\ATI
[26/12/2008|21:05] C:\Users\SKL~1\AppData\Local\AtStart.txt
[01/01/2009|23:04] C:\Users\SKL~1\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[26/12/2008|21:05] C:\Users\SKL~1\AppData\Local\DSwitch.txt
[26/12/2008|21:05] C:\Users\SKL~1\AppData\Local\GDIPFONTCACHEV1.DAT
[03/01/2009|00:36] C:\Users\SKL~1\AppData\Local\Google
[26/12/2008|20:44] C:\Users\SKL~1\AppData\Local\Historique
[02/01/2009|23:07] C:\Users\SKL~1\AppData\Local\IconCache.db
[26/12/2008|21:07] C:\Users\SKL~1\AppData\Local\IsolatedStorage
[27/12/2008|15:02] C:\Users\SKL~1\AppData\Local\Microsoft
[02/01/2009|22:29] C:\Users\SKL~1\AppData\Local\Mozilla
[26/12/2008|21:05] C:\Users\SKL~1\AppData\Local\QSwitch.txt
[03/01/2009|01:44] C:\Users\SKL~1\AppData\Local\Temp
[26/12/2008|20:44] C:\Users\SKL~1\AppData\Local\Temporary Internet Files
[03/01/2009|01:13] C:\Users\SKL~1\AppData\Local\VirtualStore

--------------------\\ Tâches planifiées dans C:\windows\tasks

[03/01/2009 01:32][--a------] C:\windows\tasks\Google Software Updater.job
[02/01/2009 19:23][--ah-----] C:\windows\tasks\User_Feed_Synchronization-{447ABB95-ADF4-4A7A-AEC0-D896A1EB9262}.job
[27/12/2008 10:16][--a------] C:\windows\tasks\HPCeeScheduleForS‚k‚l‚.job
[02/01/2009 23:50][--ah-----] C:\windows\tasks\SA.DAT
[02/01/2009 23:07][--a------] C:\windows\tasks\SCHEDLGU.TXT

--------------------\\ Listing des dossiers dans C:\ProgramData

[27/12/2008|14:36] C:\ProgramData\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[02/01/2009|19:26] C:\ProgramData\ante glue
[27/12/2008|14:34] C:\ProgramData\Apple
[27/12/2008|14:36] C:\ProgramData\Apple Computer
[02/11/2006|14:02] C:\ProgramData\Application Data
[26/12/2008|21:06] C:\ProgramData\ATI
[26/12/2008|20:40] C:\ProgramData\Bureau
[02/11/2006|14:02] C:\ProgramData\Desktop
[02/11/2006|14:02] C:\ProgramData\Documents
[26/12/2008|20:40] C:\ProgramData\Favoris
[02/11/2006|14:02] C:\ProgramData\Favorites
[03/01/2009|00:32] C:\ProgramData\Google
[03/01/2009|01:32] C:\ProgramData\Google Updater
[26/12/2008|20:54] C:\ProgramData\Hewlett-Packard
[02/01/2009|23:50] C:\ProgramData\hpqLog
[26/12/2008|22:01] C:\ProgramData\LightScribe
[17/06/2008|10:24] C:\ProgramData\McAfee
[26/12/2008|20:40] C:\ProgramData\Menu D‚marrer
[27/12/2008|14:48] C:\ProgramData\Microsoft
[27/12/2008|16:37] C:\ProgramData\Microsoft Help
[26/12/2008|20:40] C:\ProgramData\ModŠles
[17/06/2008|10:17] C:\ProgramData\Roxio
[17/06/2008|10:26] C:\ProgramData\SiteAdvisor
[30/12/2008|22:14] C:\ProgramData\Skyline
[17/06/2008|10:13] C:\ProgramData\Sonic
[26/12/2008|20:45] C:\ProgramData\SonicFocus
[02/01/2009|22:35] C:\ProgramData\Spybot - Search & Destroy
[02/11/2006|14:02] C:\ProgramData\Start Menu
[02/11/2006|14:02] C:\ProgramData\Templates
[17/06/2008|10:18] C:\ProgramData\Uninstall

--------------------\\ Listing des dossiers dans C:\Program Files

[17/06/2008|09:47] C:\Program Files\ActivIdentity
[26/12/2008|20:45] C:\Program Files\Analog Devices
[27/12/2008|14:34] C:\Program Files\Apple Software Update
[26/12/2008|20:45] C:\Program Files\ATI
[26/12/2008|20:47] C:\Program Files\ATI Technologies
[27/12/2008|14:35] C:\Program Files\Bonjour
[27/12/2008|14:29] C:\Program Files\CCleaner
[27/12/2008|14:34] C:\Program Files\Common Files
[01/01/2009|19:54] C:\Program Files\DivX
[27/12/2008|14:40] C:\Program Files\DVD Decrypter
[26/12/2008|20:40] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[03/01/2009|00:32] C:\Program Files\Google
[17/06/2008|10:39] C:\Program Files\Hewlett-Packard
[17/06/2008|10:35] C:\Program Files\HP
[26/12/2008|20:52] C:\Program Files\HP Webcam Application
[17/06/2008|09:47] C:\Program Files\HPQ
[27/12/2008|15:34] C:\Program Files\InstallShield Installation Information
[17/06/2008|09:42] C:\Program Files\Intel
[27/12/2008|14:35] C:\Program Files\Internet Explorer
[27/12/2008|15:34] C:\Program Files\InterVideo
[27/12/2008|14:36] C:\Program Files\iPod
[27/12/2008|14:36] C:\Program Files\iTunes
[17/06/2008|10:27] C:\Program Files\Java
[17/06/2008|10:31] C:\Program Files\McAfee
[27/12/2008|15:13] C:\Program Files\Messenger Plus! Live
[27/12/2008|14:22] C:\Program Files\Microsoft
[17/06/2008|10:10] C:\Program Files\Microsoft Office
[17/06/2008|10:11] C:\Program Files\Microsoft Office Suite Activation Assistant
[27/12/2008|14:23] C:\Program Files\Microsoft Sync Framework
[17/06/2008|10:10] C:\Program Files\Microsoft Visual Studio
[17/06/2008|10:10] C:\Program Files\Microsoft Works
[17/06/2008|10:09] C:\Program Files\Microsoft.NET
[21/01/2008|03:35] C:\Program Files\Movie Maker
[02/01/2009|22:29] C:\Program Files\Mozilla Firefox
[02/11/2006|13:37] C:\Program Files\MSBuild
[27/12/2008|16:17] C:\Program Files\MSXML 4.0
[27/12/2008|11:21] C:\Program Files\Orange
[17/06/2008|09:58] C:\Program Files\PDF Complete
[27/12/2008|14:35] C:\Program Files\QuickTime
[02/11/2006|13:37] C:\Program Files\Reference Assemblies
[17/06/2008|10:17] C:\Program Files\Roxio
[27/12/2008|11:11] C:\Program Files\SAGEM
[27/12/2008|11:11] C:\Program Files\Securitoo
[17/06/2008|10:26] C:\Program Files\SiteAdvisor
[30/12/2008|22:14] C:\Program Files\Skyline
[02/01/2009|21:33] C:\Program Files\Spybot - Search & Destroy
[17/06/2008|10:18] C:\Program Files\Synaptics
[03/01/2009|01:10] C:\Program Files\Trend Micro
[02/11/2006|14:01] C:\Program Files\Uninstall Information
[01/01/2009|23:17] C:\Program Files\Videora
[26/12/2008|20:49] C:\Program Files\WIDCOMM
[21/01/2008|03:35] C:\Program Files\Windows Calendar
[21/01/2008|03:35] C:\Program Files\Windows Collaboration
[21/01/2008|03:35] C:\Program Files\Windows Defender
[21/01/2008|03:35] C:\Program Files\Windows Journal
[27/12/2008|14:23] C:\Program Files\Windows Live
[27/12/2008|14:22] C:\Program Files\Windows Live SkyDrive
[27/12/2008|17:15] C:\Program Files\Windows Mail
[21/01/2008|03:35] C:\Program Files\Windows Media Player
[26/12/2008|20:40] C:\Program Files\Windows NT
[21/01/2008|03:35] C:\Program Files\Windows Photo Gallery
[21/01/2008|03:35] C:\Program Files\Windows Sidebar

--------------------\\ Listing des dossiers dans C:\Program Files\Common Files

[17/06/2008|09:47] C:\Program Files\Common Files\ActivIdentity
[27/12/2008|14:36] C:\Program Files\Common Files\Apple
[17/06/2008|10:10] C:\Program Files\Common Files\DESIGNER
[27/12/2008|11:18] C:\Program Files\Common Files\France Telecom
[17/06/2008|10:22] C:\Program Files\Common Files\InstallShield
[17/06/2008|10:19] C:\Program Files\Common Files\InterVideo
[17/06/2008|10:27] C:\Program Files\Common Files\Java
[17/06/2008|10:24] C:\Program Files\Common Files\LightScribe
[17/06/2008|10:24] C:\Program Files\Common Files\McAfee
[27/12/2008|16:19] C:\Program Files\Common Files\microsoft shared
[17/06/2008|10:16] C:\Program Files\Common Files\PX Storage Engine
[17/06/2008|10:16] C:\Program Files\Common Files\Roxio Shared
[02/11/2006|12:18] C:\Program Files\Common Files\Services
[26/12/2008|20:51] C:\Program Files\Common Files\SNP2UVC
[17/06/2008|10:17] C:\Program Files\Common Files\Sonic Shared
[02/11/2006|12:18] C:\Program Files\Common Files\SpeechEngines
[17/06/2008|10:14] C:\Program Files\Common Files\SureThing Shared
[17/06/2008|10:06] C:\Program Files\Common Files\System
[27/12/2008|14:13] C:\Program Files\Common Files\Windows Live

--------------------\\ Process

( 115 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-01-03 01:44:57
Windows 5.1.2600 Service Pack 2 NTFS
detected NTDLL code modification:
ZwEnumerateKey, ZwQueryKey, ZwOpenKey, ZwClose, ZwEnumerateValueKey, ZwQueryValueKey, ZwOpenFile, ZwQueryDirectoryFile, ZwQuerySystemInformation
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:121][D:8]-> C:\Users\SKL~1\AppData\Local\Temp
[F:74][D:1]-> C:\Users\SKL~1\AppData\Roaming\MICROS~1\Windows\Cookies
[F:27][D:4]-> C:\Users\SKL~1\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:2][D:2]-> C:\$Recycle.Bin

1 - "C:\Lop SD\LopR_1.txt" - 03/01/2009| 1:37 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 03/01/2009| 1:46 - Option : [2]

--------------------\\ Fin du rapport a 1:46:20
[ UAC => 1 ]
0
Réponse 11 / 14
crapoulou Messages postés 28161 Date d'inscription mercredi 28 novembre 2007 Statut Modérateur, Contributeur sécurité Dernière intervention 21 mai 2024 7 998
3 janv. 2009 à 01:50
Poste un nouveau rapport hijackthis.
Je vais me coucher.
A demain soir.
0
Réponse 12 / 14
Pactou Messages postés 24 Date d'inscription mardi 4 novembre 2008 Statut Membre Dernière intervention 3 janvier 2009
3 janv. 2009 à 01:53
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 01:11:43, on 03/01/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\windows\system32\taskeng.exe
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
c:\Program Files\Hewlett-Packard\IAM\Bin\AsGHost.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\ActivIdentity\ActivClient\accrdsub.exe
C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\pthosttr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\SiteAdvisor\6173\SiteAdv.exe
C:\Program Files\Hewlett-Packard\File Sanitizer\CoreShredder.exe
C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Orange\Systray\SystrayApp.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Windows\WindowsMobile\wmdc.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe
C:\windows\System32\mobsync.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
C:\Program Files\Orange\Launcher\Launcher.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\McAfee\Managed VirusScan\Agent\myAgtTry.exe
c:\Program Files\ActivIdentity\ActivClient\acevents.exe
C:\Program Files\Hewlett-Packard\HP wireless Assistant\WiFiMsg.EXE
C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Orange\connectivity\connectivitymanager.exe
C:\Program Files\Orange\connectivity\CoreCom\CoreCom.exe
C:\Program Files\Orange\connectivity\CoreCom\OraConfigRecover.exe
C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTCOMModule\0\FTCOMModule.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Microsoft Office\Office12\WINWORD.EXE
C:\Program Files\iTunes\iTunes.exe
C:\Program Files\Internet Explorer\IEUser.exe
C:\Program Files\Windows Live\Toolbar\wltuser.exe
C:\Program Files\Google\Google Toolbar\GoogleToolbarUser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\windows\system32\NOTEPAD.EXE

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr?cobrand=hp-comm.msn.com&ocid=HPDHP&pc=CMDTDF
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr?cobrand=hp-comm.msn.com&ocid=HPDHP&pc=CMDTDF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr?cobrand=hp-comm.msn.com&ocid=HPDHP&pc=CMDTDF
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Orange\SearchURLHook\SearchPageURL.dll
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {089FD14D-132B-48FC-8861-0048AE113215} - C:\Program Files\SiteAdvisor\6173\SiteAdv.dll
O2 - BHO: BHO_Startup - {3134413B-49B4-425C-98A5-893C1F195601} - C:\Program Files\Hewlett-Packard\File Sanitizer\IEBHO.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll
O2 - BHO: Credential Manager for HP ProtectTools - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - c:\Program Files\Hewlett-Packard\IAM\Bin\ItIEAddIn.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: McAfee SiteAdvisor - {0BF43445-2F28-4351-9252-17FE6E806AA0} - C:\Program Files\SiteAdvisor\6173\SiteAdv.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [accrdsub] "c:\Program Files\ActivIdentity\ActivClient\accrdsub.exe"
O4 - HKLM\..\Run: [PTHOSTTR] c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTHOSTTR.EXE /Start
O4 - HKLM\..\Run: [CognizanceTS] rundll32.exe c:\PROGRA~1\HEWLET~1\IAM\Bin\ASTSVCC.dll,RegisterModule
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [HP Health Check Scheduler] c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
O4 - HKLM\..\Run: [MVS Splash] C:\Program Files\McAfee\Managed VirusScan\Agent\Splash.exe
O4 - HKLM\..\Run: [McAfee Managed Services Tray] C:\Program Files\McAfee\Managed VirusScan\Agent\StartMyAgtTry.Exe
O4 - HKLM\..\Run: [SiteAdvisor] C:\Program Files\SiteAdvisor\6173\SiteAdv.exe
O4 - HKLM\..\Run: [File Sanitizer] C:\Program Files\Hewlett-Packard\File Sanitizer\CoreShredder.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe"
O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [WatchDog] C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
O4 - HKLM\..\Run: [HP Software Update] c:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [SoundMAX] C:\Program Files\Analog Devices\SoundMAX\soundmax.exe /tray
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKLM\..\Run: [SystrayORAHSS] "C:\Program Files\Orange\Systray\SystrayApp.exe"
O4 - HKLM\..\Run: [ORAHSSSessionManager] C:\Program Files\Orange\SessionManager\SessionManager.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [style cool 2 city] "C:\ProgramData\Multi win pile.4x6qw1"
O4 - HKCU\..\Run: [Idol Five] "C:\ProgramData\FreeIdleIdle.htpt0l"
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Global Startup: BTTray.lnk = ?
O4 - Global Startup: DVD Check.lnk = C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: Envoyer l'&image au périphérique Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra button: @C:\windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\windows\WindowsMobile\INetRepl.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O13 - Gopher Prefix:
O15 - Trusted Zone: https://www.orange.fr/portail
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O18 - Protocol: skyline - {3A4F9195-65A8-11D5-85C1-0001023952C1} - C:\Program Files\Skyline\TerraExplorer\TerraExplorerX.dll
O20 - AppInit_DLLs: APSHook.dll
O23 - Service: ActivClient Middleware Service (accoca) - ActivIdentity - c:\Program Files\ActivIdentity\ActivClient\accoca.exe
O23 - Service: Andrea ADI Filters Service (AEADIFilters) - Andrea Electronics Corporation - C:\windows\system32\AEADISRV.EXE
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\windows\system32\Ati2evxx.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
O23 - Service: EngineServer - McAfee, Inc. - C:\PROGRA~1\McAfee\MANAGE~1\VScan\ENGINE~1.EXE
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP ProtectTools Service - Hewlett-Packard Development Company, L.P - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTChangeFilterService.exe
O23 - Service: Drive Encryption Service (HpFkCryptService) - SafeBoot International - c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
O23 - Service: File Sanitizer for HP ProtectTools (HPFSService) - Hewlett-Packard - C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Service (hpsrv) - Hewlett-Packard Corporation - C:\windows\system32\Hpservice.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: McAfee HackerWatch Service - McAfee, Inc. - C:\Program Files\Common Files\McAfee\HackerWatch\HWAPI.exe
O23 - Service: McShield - McAfee, Inc. - C:\PROGRA~1\McAfee\MANAGE~1\VScan\McShield.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe
O23 - Service: McAfee Virus and Spyware Protection Service (myAgtSvc) - McAfee, Inc. - C:\Program Files\McAfee\Managed VirusScan\Agent\myAgtSvc.Exe
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files\PDF Complete\pdfsvc.exe
O23 - Service: RoxMediaDB10 - Sonic Solutions - c:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
O23 - Service: SiteAdvisor Service - Unknown owner - C:\Program Files\SiteAdvisor\6173\SAService.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe
0
Réponse 13 / 14
Pactou Messages postés 24 Date d'inscription mardi 4 novembre 2008 Statut Membre Dernière intervention 3 janvier 2009
3 janv. 2009 à 01:56
Ok bonne nuit à demain soir!
0
Réponse 14 / 14
crapoulou Messages postés 28161 Date d'inscription mercredi 28 novembre 2007 Statut Modérateur, Contributeur sécurité Dernière intervention 21 mai 2024 7 998
3 janv. 2009 à 10:58
Télécharge Malwarebytes’ Anti-Malware
= = = = >>> En cliquant ici <<< = = = =

- Sur la page cliques sur Télécharger Malwarebyte’s Anti-Malware
- Enregistres le sur le bureau
- Double cliques sur le fichier téléchargé pour lancer le processus d’installation
- Lorsqu’il te le sera demandé, met à jour Malwarebytes anti malware
- Si le pare-feu demande l’autorisation de se connecter pour malwarebytes, acceptes
- Une fois la mise à jour terminée, ferme Malwarebytes
- Double-cliques sur l’icône de malwarebytes pour le relancer
- Dans l’onglet, Recherche, probablement ouvert par défaut,
- Sélectionne Exécuter un examen complet
- Clique sur Rechercher
- Le scan démarre
- A la fin de l’analyse, un message s’affiche : L’examen s’est terminé normalement. Cliquez sur ‘Afficher les résultats’ pour afficher tous les objets trouvés.
- Cliques sur Ok pour poursuivre.
- Si des malwares ont été détectés, cliques sur Afficher les résultats
- Sélectionnes tout (ou laisses cochés) et cliques sur Supprimer la sélection Malwarebytes va détruire les fichiers et clés de registre et en mettre une copie dans la quarantaine.
- Malwarebytes va ouvrir le bloc-notes et y copier le rapport d’analyse.
- Rends toi dans l’onglet rapport/log
- Tu cliques dessus pour l’afficher une fois affiché
- Tu cliques sur édition en haut du bloc notes, et puis sur sélectionner tout
- Tu recliques sur édition et puis sur copier et tu reviens sur le forum et dans ta réponse
- Tu cliques droit dans le cadre de la réponse et coller


Si tu as besoin d’aide regarde ce tutorial ICI

A ce soir.
0

Discussions similaires

Cherche chanteur et titre chanson pub kinder noel 2023
Herme80 -
Domaldan -

17 réponses
M6 Replay désactiver le bloqueur de publicité
katydel88 -
Mathieu -

14 réponses
Ouvrir un fichier .pub sans Publisher
baissaoui -
baissaoui -

0 réponse
retrouver un spot publicitaire radio ?
solpauale -
Jennifer -

5 réponses
Recherche nom acteur Pub
Visu -
Lorenzo -

4 réponses