Sujet Précédent Sujet Suivant

Ordinateur qui rame

Résolu/Fermé
guillaume4444 Messages postés 73 Date d'inscription mardi 21 octobre 2008 Statut Membre Dernière intervention 11 juillet 2013 - 27 janv. 2009 à 22:43
guillaume4444 Messages postés 73 Date d'inscription mardi 21 octobre 2008 Statut Membre Dernière intervention 11 juillet 2013 - 19 févr. 2009 à 21:56
Bonjour,
J'ai l'ordi d'un pote qui rame voici un log HT si quelqu'un à du temps pour me le décrypté
Merci d'avance

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:54:31, on 27/01/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\Explorer.EXE
D:\WINDOWS\system32\spoolsv.exe
D:\Program Files\Spyware Doctor\pctsTray.exe
D:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
D:\Program Files\TomTom HOME\TomTomHOME.exe
D:\Program Files\NavNT\defwatch.exe
D:\Program Files\Executive Software\DiskeeperWorkstation\DKService.exe
D:\WINDOWS\eHome\ehRecvr.exe
D:\WINDOWS\eHome\ehSched.exe
D:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
D:\Program Files\Microsoft LifeCam\MSCamS32.exe
D:\Program Files\NavNT\rtvscan.exe
D:\WINDOWS\system32\PSIService.exe
D:\Program Files\Spyware Doctor\pctsAuxs.exe
D:\Program Files\Spyware Doctor\pctsSvc.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\system32\MsgSys.EXE
D:\WINDOWS\system32\dllhost.exe
D:\WINDOWS\system32\wuauclt.exe
D:\Program Files\Windows Live\Messenger\usnsvc.exe
D:\Program Files\SPAMfighter\SFAgent.exe
D:\Program Files\Java\jre6\bin\jqs.exe
D:\Program Files\Fichiers communs\Adobe\Updater5\AdobeUpdater.exe
D:\Program Files\Fichiers communs\Real\Update_OB\RealOneMessageCenter.exe
D:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
D:\Documents and Settings\Mireille\Local Settings\Temporary Internet Files\Content.IE5\8HYFKLMB\HiJackThis[1].exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.broadcom.com/support/security-center
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.generation-nt.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ww17.ads.eorezo.com/cgi-bin/advert/getads.cgi?x_format=redirect&x_dp_id=9
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - D:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - D:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - d:\program files\google\googletoolbar3.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - D:\Program Files\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - D:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - d:\program files\google\googletoolbar3.dll
O3 - Toolbar: Barre d'outils MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - D:\Program Files\MSN Toolbar\01.01.2607.0\fr\msntb.dll
O4 - HKLM\..\Run: [ISTray] "D:\Program Files\Spyware Doctor\pctsTray.exe"
O4 - HKLM\..\Run: [TkBellExe] "D:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [TomTomHOME.exe] "D:\Program Files\TomTom HOME\TomTomHOME.exe" -s
O4 - HKLM\..\Run: [SPAMfighter Agent] "D:\Program Files\SPAMfighter\SFAgent.exe" update delay 60
O4 - HKLM\..\Run: [SunJavaUpdateSched] "D:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] D:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKCU\..\Run: [msnmsgr] "D:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://D:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=www.generation-nt.com
O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} (Image Uploader Control) - http://www.new2.foto.com/ImageUploader5.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O20 - AppInit_DLLs: D:\PROGRA~1\Google\GOOGLE~4\GOEC62~1.DLL
O23 - Service: DefWatch - Symantec Corporation - D:\Program Files\NavNT\defwatch.exe
O23 - Service: Diskeeper - Executive Software International, Inc. - D:\Program Files\Executive Software\DiskeeperWorkstation\DKService.exe
O23 - Service: Google Desktop Manager 5.7.802.22438 (GoogleDesktopManager-022208-143751) - Google - D:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - D:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - D:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Norton AntiVirus Client (Norton AntiVirus Server) - Symantec Corporation - D:\Program Files\NavNT\rtvscan.exe
O23 - Service: Pml Driver HPZ12 - HP - D:\WINDOWS\system32\HPZipm12.exe
O23 - Service: ProtexisLicensing - Unknown owner - D:\WINDOWS\system32\PSIService.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - D:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - D:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: SPAMfighter Update Service - SPAMfighter ApS - D:\Program Files\SPAMfighter\sfus.exe

11 réponses

Réponse 1 / 11
Utilisateur anonyme
28 janv. 2009 à 09:53
Bonjour,

* Telecharges RSIT sur ton bureau :
http://images.malwareremoval.com/random/RSIT.exe

* Double clic sur RSIT.exe pour lancer le programme

* Cliques sur " Continue " à l'écran " disclaimer "

* si l'outil hijackthis ( version à jour) n'est pas presente ou non detecté
RSIT le telechargera --> acceptes la license

* Lorsque l'analyse est finie :
--> 2 fichiers textes s'ouvrent : log.txt et info.txt ( dans la barre des taches)

* Postes leurs contenus
1
Réponse 2 / 11
guillaume4444 Messages postés 73 Date d'inscription mardi 21 octobre 2008 Statut Membre Dernière intervention 11 juillet 2013
28 janv. 2009 à 09:46
Un petit coup de main SVP
Merci d'avance
0
Réponse 3 / 11
guillaume4444 Messages postés 73 Date d'inscription mardi 21 octobre 2008 Statut Membre Dernière intervention 11 juillet 2013
29 janv. 2009 à 12:00
Voila les résultats

Logfile of random's system information tool 1.05 (written by random/random)
Run by Mireille at 2009-01-29 11:57:16
Microsoft Windows XP Professionnel Service Pack 2
System drive D: has 17 GB (58%) free of 29 GB
Total RAM: 759 MB (63% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:57:54, on 29/01/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\Explorer.EXE
D:\WINDOWS\system32\spoolsv.exe
D:\Program Files\Spyware Doctor\pctsTray.exe
D:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
D:\Program Files\TomTom HOME\TomTomHOME.exe
D:\Program Files\SPAMfighter\SFAgent.exe
D:\Program Files\Java\jre6\bin\jusched.exe
D:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
D:\Program Files\NavNT\defwatch.exe
D:\Program Files\Executive Software\DiskeeperWorkstation\DKService.exe
D:\WINDOWS\eHome\ehRecvr.exe
D:\WINDOWS\eHome\ehSched.exe
D:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
D:\Program Files\Java\jre6\bin\jqs.exe
D:\Program Files\Microsoft LifeCam\MSCamS32.exe
D:\Program Files\NavNT\rtvscan.exe
D:\WINDOWS\system32\PSIService.exe
D:\Program Files\Spyware Doctor\pctsAuxs.exe
D:\Program Files\Spyware Doctor\pctsSvc.exe
D:\Program Files\SPAMfighter\sfus.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\system32\MsgSys.EXE
D:\WINDOWS\system32\dllhost.exe
D:\WINDOWS\system32\wuauclt.exe
D:\Program Files\Windows Live\Messenger\usnsvc.exe
D:\WINDOWS\system32\rsvp.exe
D:\Program Files\Internet Explorer\iexplore.exe
D:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
D:\Documents and Settings\Mireille\Local Settings\Temporary Internet Files\Content.IE5\6YQ91BLD\RSIT[1].exe
D:\Program Files\trend micro\Mireille.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/avcenter/fix_homepage
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.generation-nt.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ads.eorezo.com/cgi-bin/advert/getads.cgi?x_format=redirect&x_dp_id=9
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - D:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - D:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - d:\program files\google\googletoolbar3.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - D:\Program Files\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - D:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - d:\program files\google\googletoolbar3.dll
O3 - Toolbar: Barre d'outils MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - D:\Program Files\MSN Toolbar\01.01.2607.0\fr\msntb.dll
O4 - HKLM\..\Run: [ISTray] "D:\Program Files\Spyware Doctor\pctsTray.exe"
O4 - HKLM\..\Run: [TkBellExe] "D:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [TomTomHOME.exe] "D:\Program Files\TomTom HOME\TomTomHOME.exe" -s
O4 - HKLM\..\Run: [SPAMfighter Agent] "D:\Program Files\SPAMfighter\SFAgent.exe" update delay 60
O4 - HKLM\..\Run: [SunJavaUpdateSched] "D:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [msnmsgr] "D:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] D:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://D:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=www.generation-nt.com
O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} (Image Uploader Control) - http://www.new2.foto.com/ImageUploader5.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O20 - AppInit_DLLs: D:\PROGRA~1\Google\GOOGLE~4\GOEC62~1.DLL
O23 - Service: DefWatch - Symantec Corporation - D:\Program Files\NavNT\defwatch.exe
O23 - Service: Diskeeper - Executive Software International, Inc. - D:\Program Files\Executive Software\DiskeeperWorkstation\DKService.exe
O23 - Service: Google Desktop Manager 5.7.802.22438 (GoogleDesktopManager-022208-143751) - Google - D:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - D:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - D:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Norton AntiVirus Client (Norton AntiVirus Server) - Symantec Corporation - D:\Program Files\NavNT\rtvscan.exe
O23 - Service: Pml Driver HPZ12 - HP - D:\WINDOWS\system32\HPZipm12.exe
O23 - Service: ProtexisLicensing - Unknown owner - D:\WINDOWS\system32\PSIService.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - D:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - D:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: SPAMfighter Update Service - SPAMfighter ApS - D:\Program Files\SPAMfighter\sfus.exe
0
Réponse 4 / 11
Utilisateur anonyme
29 janv. 2009 à 12:55
Re,

* Telecharges LopSD sur ton bureau :
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2

*/!\ Desactives ton antivirus et la garde de ton antispyware ! /!\

* Double cliques sur l'icone de ton bureau pour lancer l'installation

* Une fois installé, fermes tous les programmes en cours

* Double clique sur la nouvelle icone

* Choisis la langue et valides par la touche " Entrée "

* Au menu, choisis l'option1( recherche et rien d'autres ) presses " entrée "

* Laisses le fix travailler

* Postes le rapport généré

Note : le rapport est aussi à la racine du disque dur
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 11
guillaume4444 Messages postés 73 Date d'inscription mardi 21 octobre 2008 Statut Membre Dernière intervention 11 juillet 2013
30 janv. 2009 à 18:08
Voila le rapport

--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : Intel(R) Celeron(R) CPU 2.40GHz )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : Mireille ( Administrator )
BOOT : Normal boot
A:\ (USB)
C:\ (Local Disk) - FAT32 - Total:5 Go (Free:0 Go)
D:\ (Local Disk) - NTFS - Total:28 Go (Free:16 Go)
E:\ (CD or DVD)
F:\ (CD or DVD)
G:\ (Local Disk) - NTFS - Total:41 Go (Free:38 Go)

"D:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 30/01/2009|17:43 )

--------------------\\ Listing des dossiers dans APPLIC~1

[13/12/2009|11:47] D:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[13/12/2009|12:36] D:\DOCUME~1\ADMINI~1\APPLIC~1\Macromedia
[13/12/2009|12:09] D:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft

[08/12/2008|18:35] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[03/07/2008|14:49] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Corel
[03/12/2008|10:58] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[29/01/2009|19:42] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
[27/01/2009|20:04] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[29/01/2009|12:04] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[21/07/2007|17:21] D:\DOCUME~1\ALLUSE~1\APPLIC~1\PC Tools
[13/12/2009|16:25] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[13/12/2009|13:53] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[30/01/2009|16:48] D:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[29/01/2009|18:09] D:\DOCUME~1\ALLUSE~1\APPLIC~1\TomTom
[22/07/2007|08:56] D:\DOCUME~1\ALLUSE~1\APPLIC~1\WAY PROC DRAW MEAL
[30/12/2007|11:36] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[14/06/2007|12:25] D:\DOCUME~1\ALLUSE~1\APPLIC~1\WinZip
[20/04/2008|09:03] D:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller

[13/12/2009|11:41] D:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[22/07/2007|09:00] D:\DOCUME~1\LOCALS~1\APPLIC~1\Google
[13/12/2009|11:41] D:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[19/10/2008|10:58] D:\DOCUME~1\Mireille\APPLIC~1\Adobe
[15/11/2006|18:56] D:\DOCUME~1\Mireille\APPLIC~1\Ahead
[17/03/2007|12:29] D:\DOCUME~1\Mireille\APPLIC~1\BitDownload
[03/07/2008|14:49] D:\DOCUME~1\Mireille\APPLIC~1\Corel
[17/03/2007|12:42] D:\DOCUME~1\Mireille\APPLIC~1\DivX
[29/07/2007|13:14] D:\DOCUME~1\Mireille\APPLIC~1\Dvd Test
[01/05/2008|10:57] D:\DOCUME~1\Mireille\APPLIC~1\EoRezo
[20/02/2007|15:18] D:\DOCUME~1\Mireille\APPLIC~1\FUJIFILM
[18/11/2006|15:41] D:\DOCUME~1\Mireille\APPLIC~1\Google
[07/07/2008|18:43] D:\DOCUME~1\Mireille\APPLIC~1\Help
[16/11/2006|13:48] D:\DOCUME~1\Mireille\APPLIC~1\Hewlett-Packard
[13/12/2009|12:44] D:\DOCUME~1\Mireille\APPLIC~1\Identities
[01/01/2009|15:36] D:\DOCUME~1\Mireille\APPLIC~1\InstallShield
[13/12/2009|14:51] D:\DOCUME~1\Mireille\APPLIC~1\InterTrust
[29/04/2008|10:12] D:\DOCUME~1\Mireille\APPLIC~1\ItsLabel
[15/11/2006|18:53] D:\DOCUME~1\Mireille\APPLIC~1\Macromedia
[27/01/2009|20:04] D:\DOCUME~1\Mireille\APPLIC~1\Malwarebytes
[17/01/2009|20:33] D:\DOCUME~1\Mireille\APPLIC~1\Microsoft
[17/03/2007|11:52] D:\DOCUME~1\Mireille\APPLIC~1\Mozilla
[27/05/2007|18:01] D:\DOCUME~1\Mireille\APPLIC~1\PC Tools
[19/08/2008|19:45] D:\DOCUME~1\Mireille\APPLIC~1\Real
[28/06/2007|08:19] D:\DOCUME~1\Mireille\APPLIC~1\SPAMfighter
[07/03/2007|16:01] D:\DOCUME~1\Mireille\APPLIC~1\Sun
[31/05/2007|09:22] D:\DOCUME~1\Mireille\APPLIC~1\Talkback

[13/12/2009|11:46] D:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

--------------------\\ Tâches planifiées dans D:\WINDOWS\tasks

[30/01/2009 16:24][--ah-----] D:\WINDOWS\tasks\SA.DAT
[10/08/2004 12:00][-r-h-----] D:\WINDOWS\tasks\desktop.ini
[02/01/2009 21:16][--a------] D:\WINDOWS\tasks\Norton Security Scan.job
[17/10/2007 09:19][--ah-----] D:\WINDOWS\tasks\Microsoft_Hardware_Launch_LifeExp_exe.job
[30/01/2009 17:00][--ah-----] D:\WINDOWS\tasks\A98CC43291B775AE.job
[16/01/2007 17:19][--a------] D:\WINDOWS\tasks\FRU Task #Hewlett-Packard#hp psc 1100 series#1163681234.job

( A98CC43291B775AE.job )=( d:\docume~1\mireille\applic~1\dvdtes~1\KnobMapiBrowse.exe )

--------------------\\ Listing des dossiers dans D:\Program Files

[12/10/2008|08:27] D:\Program Files\7-Zip
[08/12/2008|18:34] D:\Program Files\Adobe
[13/12/2009|14:51] D:\Program Files\Ahead
[27/01/2009|19:14] D:\Program Files\CCleaner
[13/12/2009|14:51] D:\Program Files\Codec Pack - All In 1
[13/12/2009|11:35] D:\Program Files\ComPlus Applications
[14/06/2007|11:38] D:\Program Files\Corel
[17/03/2007|12:03] D:\Program Files\DivX
[17/03/2007|12:29] D:\Program Files\Dvd Test
[01/05/2008|10:57] D:\Program Files\EoRezo
[13/12/2009|14:23] D:\Program Files\Executive Software
[27/01/2009|16:29] D:\Program Files\Fichiers communs
[20/02/2007|15:09] D:\Program Files\FinePixViewer
[14/11/2006|14:41] D:\Program Files\Free.fr
[14/06/2007|15:32] D:\Program Files\Google
[13/06/2007|18:16] D:\Program Files\help
[16/11/2006|13:47] D:\Program Files\Hewlett-Packard
[01/01/2009|15:37] D:\Program Files\InstallShield Installation Information
[10/12/2008|20:01] D:\Program Files\Internet Explorer
[27/01/2009|18:47] D:\Program Files\Java
[27/01/2009|20:04] D:\Program Files\Malwarebytes' Anti-Malware
[14/08/2008|19:04] D:\Program Files\Messenger
[08/11/2007|15:08] D:\Program Files\Micro Application
[13/12/2009|11:42] D:\Program Files\microsoft frontpage
[17/10/2007|09:11] D:\Program Files\Microsoft LifeCam
[02/12/2007|20:50] D:\Program Files\Microsoft Office
[13/12/2009|11:38] D:\Program Files\Movie Maker
[03/12/2008|10:58] D:\Program Files\Mozilla Firefox
[13/12/2009|11:33] D:\Program Files\MSN
[13/12/2009|11:33] D:\Program Files\MSN Gaming Zone
[29/07/2007|13:01] D:\Program Files\MSN Toolbar
[19/06/2007|19:05] D:\Program Files\MSXML 4.0
[13/12/2009|13:53] D:\Program Files\NavNT
[13/12/2009|11:38] D:\Program Files\NetMeeting
[02/01/2009|15:00] D:\Program Files\Norton Security Scan
[13/12/2009|11:35] D:\Program Files\Online Services
[19/06/2007|19:09] D:\Program Files\Outlook Express
[09/10/2008|19:32] D:\Program Files\Picasa2
[20/02/2007|15:12] D:\Program Files\PIXELA
[13/12/2009|17:00] D:\Program Files\PowerQuest
[13/06/2007|18:18] D:\Program Files\program
[20/08/2008|21:10] D:\Program Files\Real
[01/07/2007|14:37] D:\Program Files\Realtek AC97
[20/02/2007|15:06] D:\Program Files\REGSHAVE
[13/12/2009|11:39] D:\Program Files\Services en ligne
[13/06/2007|18:15] D:\Program Files\share
[30/01/2009|16:25] D:\Program Files\SPAMfighter
[13/12/2009|16:32] D:\Program Files\Spybot - Search & Destroy
[30/01/2009|09:42] D:\Program Files\Spyware Doctor
[13/12/2009|13:53] D:\Program Files\Symantec
[29/01/2009|18:09] D:\Program Files\TomTom DesktopSuite
[01/01/2009|15:44] D:\Program Files\TomTom HOME
[29/01/2009|11:57] D:\Program Files\trend micro
[13/12/2009|14:51] D:\Program Files\Tweak-XP Pro 3
[13/12/2009|11:47] D:\Program Files\Uninstall Information
[13/06/2007|18:18] D:\Program Files\user
[20/04/2008|09:05] D:\Program Files\Windows Live
[17/10/2007|09:09] D:\Program Files\Windows Media Player
[13/12/2009|11:33] D:\Program Files\Windows NT
[13/12/2009|11:35] D:\Program Files\Windows Plus
[13/12/2009|11:39] D:\Program Files\WindowsUpdate
[14/06/2007|11:33] D:\Program Files\WinRAR
[13/12/2009|11:42] D:\Program Files\xerox
[13/12/2009|14:44] D:\Program Files\xp-AntiSpy_french

--------------------\\ Listing des dossiers dans D:\Program Files\Fichiers communs

[08/12/2008|18:34] D:\Program Files\Fichiers communs\Adobe
[13/12/2009|14:51] D:\Program Files\Fichiers communs\Ahead
[27/01/2009|16:29] D:\Program Files\Fichiers communs\Application
[14/06/2007|11:39] D:\Program Files\Fichiers communs\Corel
[13/12/2009|14:51] D:\Program Files\Fichiers communs\Designer
[16/11/2006|13:45] D:\Program Files\Fichiers communs\Hewlett-Packard
[13/12/2009|17:00] D:\Program Files\Fichiers communs\InstallShield
[07/03/2007|15:58] D:\Program Files\Fichiers communs\Java
[20/04/2008|09:04] D:\Program Files\Fichiers communs\Microsoft Shared
[13/12/2009|11:38] D:\Program Files\Fichiers communs\MSSoap
[13/12/2009|12:28] D:\Program Files\Fichiers communs\ODBC
[19/08/2008|19:42] D:\Program Files\Fichiers communs\Real
[13/12/2009|11:38] D:\Program Files\Fichiers communs\Services
[13/12/2009|12:28] D:\Program Files\Fichiers communs\SpeechEngines
[22/08/2008|14:02] D:\Program Files\Fichiers communs\Symantec Shared
[19/06/2007|19:09] D:\Program Files\Fichiers communs\System
[20/04/2008|09:04] D:\Program Files\Fichiers communs\WindowsLiveInstaller
[19/08/2008|19:43] D:\Program Files\Fichiers communs\xing shared

--------------------\\ Process

( 33 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

D:\DOCUME~1\Mireille\APPLIC~1\DVDTES~1

--------------------\\ Recherche de Fichiers / Dossiers Lop

D:\DOCUME~1\Mireille\APPLIC~1\dvdtes~1
D:\Program Files\dvdtes~1
D:\DOCUME~1\Mireille\APPLIC~1\Bitdownload
D:\DOCUME~1\Mireille\APPLIC~1\BitDownload
D:\DOCUME~1\Mireille\APPLIC~1\BitDownload\Data
D:\WINDOWS\Tasks\A98CC43291B775AE.job

--------------------\\ Verification du Registre

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Chin regs phone]
"DisplayName"="CiD Help"
"UninstallString"="D:\\DOCUME~1\\Mireille\\APPLIC~1\\DVDTES~1\\close flag.exe -uninstall"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

--------------------\\ Verification du fichier Hosts

Fichier Hosts MODIFIE

127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD
127.0.0.1 download.errorsafe.com ## added by CiD
127.0.0.1 download.systemdoctor.com ## added by CiD
127.0.0.1 download.winantispyware.com ## added by CiD
127.0.0.1 download.windrivecleaner.com ## added by CiD
127.0.0.1 download.winfixer.com ## added by CiD
127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 es.winantivirus.com ## added by CiD
127.0.0.1 fr.winantivirus.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 go.winantivirus.com ## added by CiD
127.0.0.1 hk.winantivirus.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 instlog.winantivirus.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 kb.winantivirus.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 secure.winantivirus.com ## added by CiD
127.0.0.1 support.winantivirus.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 ulog.winantivirus.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 utils.winantivirus.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winantivirus.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 [i]ww/iw.drivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.errorprotector.com ## added by CiD
127.0.0.1 [i]ww/iw.errorsafe.com ## added by CiD
127.0.0.1 [i]ww/iw.systemdoctor.com ## added by CiD
127.0.0.1 [i]ww/iw.utils.winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.win-anti-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.win-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispam.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispy.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispyware.com ## added by CiD
127.0.0.1 [i]ww/iw.winantivirus.com ## added by CiD
127.0.0.1 [i]ww/iw.winantiviruspro.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivesafe.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer2006.com ## added by CiD
127.0.0.1 [i]ww/iw.winsoftware.com ## added by CiD

-> 72 [ 70 ## added by CiD ]

--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-01-30 17:48:03
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 1478

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:10][D:4]-> D:\DOCUME~1\Mireille\LOCALS~1\Temp
[F:38][D:0]-> D:\DOCUME~1\Mireille\Cookies
[F:2690][D:5]-> D:\DOCUME~1\Mireille\LOCALS~1\TEMPOR~1\content.IE5

1 - "D:\Lop SD\LopR_1.txt" - 30/01/2009|17:50 - Option : [1]

--------------------\\ Fin du rapport a 17:50:00
0
Réponse 6 / 11
guillaume4444 Messages postés 73 Date d'inscription mardi 21 octobre 2008 Statut Membre Dernière intervention 11 juillet 2013
30 janv. 2009 à 18:13
Et désolé pour le retard
Je te remerci de me consacré du temps
0
Réponse 7 / 11
Utilisateur anonyme
30 janv. 2009 à 18:15
Bonjour,

* Desactives ton antivirus

* Relances LopSD et Choisis l'option2 + fichiers host

* Laisses le fix travailler
si lop doit redemarrer pour finir la desinfection, laisses le faire

* Postes le rapport généré !
0
Réponse 8 / 11
guillaume4444 Messages postés 73 Date d'inscription mardi 21 octobre 2008 Statut Membre Dernière intervention 11 juillet 2013
30 janv. 2009 à 19:27
Voici le rapport


--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : Intel(R) Celeron(R) CPU 2.40GHz )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : Mireille ( Administrator )
BOOT : Normal boot
A:\ (USB)
C:\ (Local Disk) - FAT32 - Total:5 Go (Free:0 Go)
D:\ (Local Disk) - NTFS - Total:28 Go (Free:16 Go)
E:\ (CD or DVD)
F:\ (CD or DVD)
G:\ (Local Disk) - NTFS - Total:41 Go (Free:38 Go)

"D:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [2] ( 30/01/2009|19:20 )


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

Supprime! - D:\DOCUME~1\Mireille\APPLIC~1\BitDownload\Data
Supprime! - D:\WINDOWS\Tasks\A98CC43291B775AE.job
Supprime! - D:\DOCUME~1\Mireille\APPLIC~1\dvdtes~1
Supprime! - D:\Program Files\dvdtes~1
Supprime! - D:\DOCUME~1\Mireille\APPLIC~1\Bitdownload
-
[ Fichier Hosts ] .. Restaure!

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


--------------------\\ Listing des dossiers dans APPLIC~1

[13/12/2009|11:47] D:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[13/12/2009|12:36] D:\DOCUME~1\ADMINI~1\APPLIC~1\Macromedia
[13/12/2009|12:09] D:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft

[08/12/2008|18:35] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[03/07/2008|14:49] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Corel
[03/12/2008|10:58] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[29/01/2009|19:42] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
[27/01/2009|20:04] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[29/01/2009|12:04] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[21/07/2007|17:21] D:\DOCUME~1\ALLUSE~1\APPLIC~1\PC Tools
[13/12/2009|16:25] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[13/12/2009|13:53] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[30/01/2009|19:18] D:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[29/01/2009|18:09] D:\DOCUME~1\ALLUSE~1\APPLIC~1\TomTom
[22/07/2007|08:56] D:\DOCUME~1\ALLUSE~1\APPLIC~1\WAY PROC DRAW MEAL
[30/12/2007|11:36] D:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[14/06/2007|12:25] D:\DOCUME~1\ALLUSE~1\APPLIC~1\WinZip
[20/04/2008|09:03] D:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller

[13/12/2009|11:41] D:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[22/07/2007|09:00] D:\DOCUME~1\LOCALS~1\APPLIC~1\Google
[13/12/2009|11:41] D:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[19/10/2008|10:58] D:\DOCUME~1\Mireille\APPLIC~1\Adobe
[15/11/2006|18:56] D:\DOCUME~1\Mireille\APPLIC~1\Ahead
[03/07/2008|14:49] D:\DOCUME~1\Mireille\APPLIC~1\Corel
[17/03/2007|12:42] D:\DOCUME~1\Mireille\APPLIC~1\DivX
[01/05/2008|10:57] D:\DOCUME~1\Mireille\APPLIC~1\EoRezo
[20/02/2007|15:18] D:\DOCUME~1\Mireille\APPLIC~1\FUJIFILM
[18/11/2006|15:41] D:\DOCUME~1\Mireille\APPLIC~1\Google
[07/07/2008|18:43] D:\DOCUME~1\Mireille\APPLIC~1\Help
[16/11/2006|13:48] D:\DOCUME~1\Mireille\APPLIC~1\Hewlett-Packard
[13/12/2009|12:44] D:\DOCUME~1\Mireille\APPLIC~1\Identities
[01/01/2009|15:36] D:\DOCUME~1\Mireille\APPLIC~1\InstallShield
[13/12/2009|14:51] D:\DOCUME~1\Mireille\APPLIC~1\InterTrust
[29/04/2008|10:12] D:\DOCUME~1\Mireille\APPLIC~1\ItsLabel
[15/11/2006|18:53] D:\DOCUME~1\Mireille\APPLIC~1\Macromedia
[27/01/2009|20:04] D:\DOCUME~1\Mireille\APPLIC~1\Malwarebytes
[17/01/2009|20:33] D:\DOCUME~1\Mireille\APPLIC~1\Microsoft
[17/03/2007|11:52] D:\DOCUME~1\Mireille\APPLIC~1\Mozilla
[27/05/2007|18:01] D:\DOCUME~1\Mireille\APPLIC~1\PC Tools
[19/08/2008|19:45] D:\DOCUME~1\Mireille\APPLIC~1\Real
[28/06/2007|08:19] D:\DOCUME~1\Mireille\APPLIC~1\SPAMfighter
[07/03/2007|16:01] D:\DOCUME~1\Mireille\APPLIC~1\Sun
[31/05/2007|09:22] D:\DOCUME~1\Mireille\APPLIC~1\Talkback

[13/12/2009|11:46] D:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

--------------------\\ Tâches planifiées dans D:\WINDOWS\tasks

[30/01/2009 16:24][--ah-----] D:\WINDOWS\tasks\SA.DAT
[10/08/2004 12:00][-r-h-----] D:\WINDOWS\tasks\desktop.ini
[02/01/2009 21:16][--a------] D:\WINDOWS\tasks\Norton Security Scan.job
[17/10/2007 09:19][--ah-----] D:\WINDOWS\tasks\Microsoft_Hardware_Launch_LifeExp_exe.job
[16/01/2007 17:19][--a------] D:\WINDOWS\tasks\FRU Task #Hewlett-Packard#hp psc 1100 series#1163681234.job

--------------------\\ Listing des dossiers dans D:\Program Files

[12/10/2008|08:27] D:\Program Files\7-Zip
[08/12/2008|18:34] D:\Program Files\Adobe
[13/12/2009|14:51] D:\Program Files\Ahead
[27/01/2009|19:14] D:\Program Files\CCleaner
[13/12/2009|14:51] D:\Program Files\Codec Pack - All In 1
[13/12/2009|11:35] D:\Program Files\ComPlus Applications
[14/06/2007|11:38] D:\Program Files\Corel
[17/03/2007|12:03] D:\Program Files\DivX
[01/05/2008|10:57] D:\Program Files\EoRezo
[13/12/2009|14:23] D:\Program Files\Executive Software
[27/01/2009|16:29] D:\Program Files\Fichiers communs
[20/02/2007|15:09] D:\Program Files\FinePixViewer
[14/11/2006|14:41] D:\Program Files\Free.fr
[14/06/2007|15:32] D:\Program Files\Google
[13/06/2007|18:16] D:\Program Files\help
[16/11/2006|13:47] D:\Program Files\Hewlett-Packard
[01/01/2009|15:37] D:\Program Files\InstallShield Installation Information
[10/12/2008|20:01] D:\Program Files\Internet Explorer
[27/01/2009|18:47] D:\Program Files\Java
[27/01/2009|20:04] D:\Program Files\Malwarebytes' Anti-Malware
[14/08/2008|19:04] D:\Program Files\Messenger
[08/11/2007|15:08] D:\Program Files\Micro Application
[13/12/2009|11:42] D:\Program Files\microsoft frontpage
[17/10/2007|09:11] D:\Program Files\Microsoft LifeCam
[02/12/2007|20:50] D:\Program Files\Microsoft Office
[13/12/2009|11:38] D:\Program Files\Movie Maker
[03/12/2008|10:58] D:\Program Files\Mozilla Firefox
[13/12/2009|11:33] D:\Program Files\MSN
[13/12/2009|11:33] D:\Program Files\MSN Gaming Zone
[29/07/2007|13:01] D:\Program Files\MSN Toolbar
[19/06/2007|19:05] D:\Program Files\MSXML 4.0
[13/12/2009|13:53] D:\Program Files\NavNT
[13/12/2009|11:38] D:\Program Files\NetMeeting
[02/01/2009|15:00] D:\Program Files\Norton Security Scan
[13/12/2009|11:35] D:\Program Files\Online Services
[19/06/2007|19:09] D:\Program Files\Outlook Express
[09/10/2008|19:32] D:\Program Files\Picasa2
[20/02/2007|15:12] D:\Program Files\PIXELA
[13/12/2009|17:00] D:\Program Files\PowerQuest
[13/06/2007|18:18] D:\Program Files\program
[20/08/2008|21:10] D:\Program Files\Real
[01/07/2007|14:37] D:\Program Files\Realtek AC97
[20/02/2007|15:06] D:\Program Files\REGSHAVE
[13/12/2009|11:39] D:\Program Files\Services en ligne
[13/06/2007|18:15] D:\Program Files\share
[30/01/2009|16:25] D:\Program Files\SPAMfighter
[13/12/2009|16:32] D:\Program Files\Spybot - Search & Destroy
[30/01/2009|09:42] D:\Program Files\Spyware Doctor
[13/12/2009|13:53] D:\Program Files\Symantec
[29/01/2009|18:09] D:\Program Files\TomTom DesktopSuite
[01/01/2009|15:44] D:\Program Files\TomTom HOME
[29/01/2009|11:57] D:\Program Files\trend micro
[13/12/2009|14:51] D:\Program Files\Tweak-XP Pro 3
[13/12/2009|11:47] D:\Program Files\Uninstall Information
[13/06/2007|18:18] D:\Program Files\user
[20/04/2008|09:05] D:\Program Files\Windows Live
[17/10/2007|09:09] D:\Program Files\Windows Media Player
[13/12/2009|11:33] D:\Program Files\Windows NT
[13/12/2009|11:35] D:\Program Files\Windows Plus
[13/12/2009|11:39] D:\Program Files\WindowsUpdate
[14/06/2007|11:33] D:\Program Files\WinRAR
[13/12/2009|11:42] D:\Program Files\xerox
[13/12/2009|14:44] D:\Program Files\xp-AntiSpy_french

--------------------\\ Listing des dossiers dans D:\Program Files\Fichiers communs

[08/12/2008|18:34] D:\Program Files\Fichiers communs\Adobe
[13/12/2009|14:51] D:\Program Files\Fichiers communs\Ahead
[27/01/2009|16:29] D:\Program Files\Fichiers communs\Application
[14/06/2007|11:39] D:\Program Files\Fichiers communs\Corel
[13/12/2009|14:51] D:\Program Files\Fichiers communs\Designer
[16/11/2006|13:45] D:\Program Files\Fichiers communs\Hewlett-Packard
[13/12/2009|17:00] D:\Program Files\Fichiers communs\InstallShield
[07/03/2007|15:58] D:\Program Files\Fichiers communs\Java
[20/04/2008|09:04] D:\Program Files\Fichiers communs\Microsoft Shared
[13/12/2009|11:38] D:\Program Files\Fichiers communs\MSSoap
[13/12/2009|12:28] D:\Program Files\Fichiers communs\ODBC
[19/08/2008|19:42] D:\Program Files\Fichiers communs\Real
[13/12/2009|11:38] D:\Program Files\Fichiers communs\Services
[13/12/2009|12:28] D:\Program Files\Fichiers communs\SpeechEngines
[22/08/2008|14:02] D:\Program Files\Fichiers communs\Symantec Shared
[19/06/2007|19:09] D:\Program Files\Fichiers communs\System
[20/04/2008|09:04] D:\Program Files\Fichiers communs\WindowsLiveInstaller
[19/08/2008|19:43] D:\Program Files\Fichiers communs\xing shared

--------------------\\ Process

( 32 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-01-30 19:24:13
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 1478

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:10][D:4]-> D:\DOCUME~1\Mireille\LOCALS~1\Temp
[F:38][D:0]-> D:\DOCUME~1\Mireille\Cookies
[F:2712][D:5]-> D:\DOCUME~1\Mireille\LOCALS~1\TEMPOR~1\content.IE5

1 - "D:\Lop SD\LopR_1.txt" - 30/01/2009|17:50 - Option : [1]
2 - "D:\Lop SD\LopR_2.txt" - 30/01/2009|19:26 - Option : [2]

--------------------\\ Fin du rapport a 19:26:10
0
Réponse 9 / 11
Utilisateur anonyme
30 janv. 2009 à 19:41
Re,


* Telecharges Malwarebytes :
http://www.malwarebytes.org/mbam/program/mbam-setup.exe
( laisses le faire la mise a jour à la fin du telechargement )

* Fermes tous les programmes en cours

* Lances MBAM, cliques sur " REcherche "
et executes un examen Rapide

* a la fin de l'analyse cliques sur " afficher les resultats "

* Puis sur " Supprimer la selection "
( si mbam doit redemarrer, fais le)

* Un rapport sera généré, postes le !

Note : si tu as déjà MBAM, il est important de faire la mise à jour avant de lancer le scan
0
Réponse 10 / 11
guillaume4444 Messages postés 73 Date d'inscription mardi 21 octobre 2008 Statut Membre Dernière intervention 11 juillet 2013
16 févr. 2009 à 23:37
Bonjour
Avec beaucoup de retard voici le rapport

Malwarebytes' Anti-Malware 1.33
Version de la base de données: 1699
Windows 5.1.2600 Service Pack 2

27/01/2009 21:44:41
mbam-log-2009-01-27 (21-44-41).txt

Type de recherche: Examen complet (C:\|D:\|G:\|)
Eléments examinés: 115402
Temps écoulé: 1 hour(s), 38 minute(s), 21 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Regi
0
Réponse 11 / 11
guillaume4444 Messages postés 73 Date d'inscription mardi 21 octobre 2008 Statut Membre Dernière intervention 11 juillet 2013
19 févr. 2009 à 21:56
Désolé mais le rapport n'était pas complet
Voici le bon

Malwarebytes' Anti-Malware 1.33
Version de la base de données: 1699
Windows 5.1.2600 Service Pack 2

27/01/2009 21:44:41
mbam-log-2009-01-27 (21-44-41).txt

Type de recherche: Examen complet (C:\|D:\|G:\|)
Eléments examinés: 115402
Temps écoulé: 1 hour(s), 38 minute(s), 21 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 1

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
D:\Program Files\EoRezo (Rogue.Eorezo) -> Delete on reboot.
0

Discussions similaires

Où est la touche SHIFT sur mon clavier d'ordi ?
joe! -
fernando-_ytb -

18 réponses
j'ai renversé de l'eau sur mon pc portable
sardine -
moudubulbe -

14 réponses