Sujet Précédent Sujet Suivant

Rapport Hijackthis pour aide.

Résolu
pakaleg Messages postés 126 Date d'inscription   Statut Membre Dernière intervention   -  
 Utilisateur anonyme -
Bonjour,
Des soucis avec toutes les mises à jours que ce soit windows, spybot....
Des soucis de pages de redirection sur internet ...
Voici donc ci dessous un rapport Hijack
Merci
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:40:08, on 23/02/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Safe mode with network support

Running processes:
C:\Windows\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\ashSimpl.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\PROGRA~1\FREEDO~1\FDM.exe
C:\Users\Nurit\Desktop\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.asus.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O1 - Hosts: ::1 localhost
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Windows Live Family Safety Browser Helper Class - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Veoh Web Player Video Finder - {0FBB9689-D3D7-4f7a-A2E2-585B10099BFC} - C:\Program Files\Veoh Networks\VeohWebPlayer\VeohIEToolbar.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [SMSERIAL] C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ASUS Camera ScreenSaver] C:\Windows\ASScrProlog.exe
O4 - HKLM\..\Run: [ASUS Screen Saver Protector] C:\Windows\ASScrPro.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKCU\..\Run: [msyem] "c:\users\nurit\appdata\local\msyem.exe" msyem
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: Tout télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Télécharger la sélection avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Télécharger la vidéo avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O13 - Gopher Prefix:
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{24875B48-A0E0-44B7-B694-C2E06BC839C9}: NameServer = 208.67.222.222
O17 - HKLM\System\CCS\Services\Tcpip\..\{38556E0E-1458-4069-A70C-C5A8CE0C8063}: NameServer = 208.67.222.222
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CS1\Services\Tcpip\..\{24875B48-A0E0-44B7-B694-C2E06BC839C9}: NameServer = 208.67.222.222
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: ASLDR Service (ASLDRService) - Unknown owner - C:\Program Files\ATK Hotkey\ASLDRSrv.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe
O23 - Service: Google Update Service (gupdate1c989d8a5747370) (gupdate1c989d8a5747370) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
A voir également:

51 réponses

Précédent
Réponse 41 / 51
pakaleg Messages postés 126 Date d'inscription   Statut Membre Dernière intervention  
 
Voilà le rapport de Malwarebyte après un analyse rapide en mode sans échec avec connexion.
Malwarebytes' Anti-Malware 1.34
Version de la base de données: 1749
Windows 6.0.6001 Service Pack 1

23/02/2009 17:16:46
mbam-log-2009-02-23 (17-16-46).txt

Type de recherche: Examen rapide
Eléments examinés: 51229
Temps écoulé: 2 minute(s), 46 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 3
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 4
Fichier(s) infecté(s): 4

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\totalvid (Trojan.DNSChanger) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\totalvid (Trojan.DNSChanger) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\totalvid (Trojan.DNSChanger) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
C:\resycled (Trojan.DNSChanger) -> Quarantined and deleted successfully.
C:\Program Files\totalvid (Trojan.DNSChanger) -> Quarantined and deleted successfully.
C:\Users\Nurit\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\totalvid (Trojan.DNSChanger) -> Quarantined and deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\totalvid (Trojan.DNSChanger) -> Quarantined and deleted successfully.

Fichier(s) infecté(s):
C:\Program Files\totalvid\Uninstall.exe (Trojan.DNSChanger) -> Quarantined and deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\totalvid\Uninstall.lnk (Trojan.DNSChanger) -> Quarantined and deleted successfully.
C:\Windows\System32\msqpdxrbjpfwvr.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Windows\System32\drivers\msqpdxydpxspqr.sys (Trojan.Agent) -> Quarantined and deleted successfully.
0
Réponse 42 / 51
pakaleg Messages postés 126 Date d'inscription   Statut Membre Dernière intervention  
 
je viens de réessayer la maj pour malwarebyte et ca à marché est ce que je recommence une recherche complète ?
0
Réponse 43 / 51
Utilisateur anonyme
 
ok si tu peux redemarrer en normal et me renvoyer un rsit..
0
Réponse 44 / 51
pakaleg Messages postés 126 Date d'inscription   Statut Membre Dernière intervention  
 
voilà pour rsit
Logfile of random's system information tool 1.05 (written by random/random)
Run by Nurit at 2009-02-23 17:32:31
Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 1
System drive C: has 39 GB (51%) free of 76 GB
Total RAM: 1919 MB (63% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:33:41, on 23/02/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\ASUS\ASUS Live Update\ALU.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\ASScrPro.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehtray.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\wuauclt.exe
C:\Users\Nurit\Desktop\RSIT.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Nurit\Desktop\Nurit.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?linkid=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Windows Live Family Safety Browser Helper Class - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [SMSERIAL] C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ASUS Camera ScreenSaver] C:\Windows\ASScrProlog.exe
O4 - HKLM\..\Run: [ASUS Screen Saver Protector] C:\Windows\ASScrPro.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O13 - Gopher Prefix:
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{24875B48-A0E0-44B7-B694-C2E06BC839C9}: NameServer = 208.67.222.222
O17 - HKLM\System\CCS\Services\Tcpip\..\{38556E0E-1458-4069-A70C-C5A8CE0C8063}: NameServer = 208.67.222.222
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CS1\Services\Tcpip\..\{24875B48-A0E0-44B7-B694-C2E06BC839C9}: NameServer = 208.67.222.222
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: ASLDR Service (ASLDRService) - Unknown owner - C:\Program Files\ATK Hotkey\ASLDRSrv.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Update Service (gupdate1c989d8a5747370) (gupdate1c989d8a5747370) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 45 / 51
Utilisateur anonyme
 
tu télécharge Lop S&D.exe sur ton Bureau.https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2

* Double-clique dessus pour lancer l'installation
* Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
* Séléctionne la langue souhaitée , puis choisis l'option 1 (Recherche)
* Patiente jusqu'à la fin du scan
* Poste le rapport généré (C:\lopR.txt)
0
Réponse 46 / 51
pakaleg Messages postés 126 Date d'inscription   Statut Membre Dernière intervention  
 
Coucou. J'ai lancé une recherche complète malbytes puisqu'il a bien voulu télécharger les mises et ca fait 47 minutes que ca tourne. Ce n'est pas encore fini alors j'ai changé de micro.
Est ce que je laisse tourner jusq'au bout ou est ce que j'arrêtte et fais ce que tu me demande le loop sd
0
Réponse 47 / 51
pakaleg Messages postés 126 Date d'inscription   Statut Membre Dernière intervention  
 
Mon cher Gen-Hakman es tu encore dans les parages ?
0
Réponse 48 / 51
pakaleg Messages postés 126 Date d'inscription   Statut Membre Dernière intervention  
 
je que tu es de retour Le malwarebyte tourne encore dois je le stopper ?
Merci
0
Réponse 49 / 51
pakaleg Messages postés 126 Date d'inscription   Statut Membre Dernière intervention  
 
Voilà le rapport de sd loop

--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) Dual CPU T2310 @ 1.46GHz )
BIOS : Default System BIOS
USER : Nurit ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1282 [VPS 081116-0] 4.8.1282 (Not Activated)
C:\ (Local Disk) - NTFS - Total:74 Go (Free:37 Go)
D:\ (Local Disk) - NTFS - Total:67 Go (Free:54 Go)
E:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 23/02/2009|19:18 )

--------------------\\ Listing des dossiers dans Local

[23/12/2008|15:21] C:\Users\Nurit\AppData\Local\Apple
[01/02/2009|10:43] C:\Users\Nurit\AppData\Local\Apple Computer
[25/09/2008|13:33] C:\Users\Nurit\AppData\Local\Application Data
[14/01/2009|11:28] C:\Users\Nurit\AppData\Local\Apps
[30/01/2009|16:05] C:\Users\Nurit\AppData\Local\Asus.xrm-ms
[27/09/2008|10:29] C:\Users\Nurit\AppData\Local\ATI
[30/01/2009|16:05] C:\Users\Nurit\AppData\Local\bootinst.exe
[23/02/2009|11:22] C:\Users\Nurit\AppData\Local\d3d9caps.dat
[23/02/2009|08:21] C:\Users\Nurit\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[14/01/2009|11:39] C:\Users\Nurit\AppData\Local\Deployment
[23/02/2009|16:39] C:\Users\Nurit\AppData\Local\GDIPFONTCACHEV1.DAT
[08/02/2009|11:44] C:\Users\Nurit\AppData\Local\Google
[30/01/2009|16:05] C:\Users\Nurit\AppData\Local\grldr
[25/09/2008|13:33] C:\Users\Nurit\AppData\Local\Historique
[13/01/2009|20:13] C:\Users\Nurit\AppData\Local\jmadfcwz.bat
[23/02/2009|12:57] C:\Users\Nurit\AppData\Local\Microsoft
[10/01/2009|19:57] C:\Users\Nurit\AppData\Local\Microsoft Games
[25/09/2008|13:37] C:\Users\Nurit\AppData\Local\Mozilla
[23/01/2009|21:53] C:\Users\Nurit\AppData\Local\Stardock
[23/02/2009|19:18] C:\Users\Nurit\AppData\Local\Temp
[25/09/2008|13:33] C:\Users\Nurit\AppData\Local\Temporary Internet Files
[11/10/2008|10:18] C:\Users\Nurit\AppData\Local\VirtualStore
[23/02/2009|12:11] C:\Users\Nurit\AppData\Local\wgkoaos.bat
[15/02/2009|18:00] C:\Users\Nurit\AppData\Local\WinAVI

--------------------\\ Tâches planifiées dans C:\Windows\tasks

[23/02/2009 17:18][--a------] C:\Windows\tasks\GoogleUpdateTaskMachine.job
[23/02/2009 17:20][--a------] C:\Windows\tasks\Google Software Updater.job
[23/02/2009 19:11][--a------] C:\Windows\tasks\Ad-Aware Update (Daily).job
[23/02/2009 17:18][--ah-----] C:\Windows\tasks\SA.DAT
[23/02/2009 16:50][--a------] C:\Windows\tasks\SCHEDLGU.TXT

--------------------\\ Listing des dossiers dans C:\ProgramData

[19/02/2009|19:10] C:\ProgramData\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[23/12/2008|15:21] C:\ProgramData\Apple
[19/02/2009|18:18] C:\ProgramData\Apple Computer
[02/11/2006|14:02] C:\ProgramData\Application Data
[27/09/2008|10:23] C:\ProgramData\ASUS
[27/09/2008|10:29] C:\ProgramData\ATI
[29/12/2008|19:07] C:\ProgramData\AVS4YOU
[02/01/2009|12:21] C:\ProgramData\Azureus
[22/10/2008|23:15] C:\ProgramData\Blizzard
[01/02/2009|12:27] C:\ProgramData\CheckPoint
[02/11/2006|14:02] C:\ProgramData\Desktop
[02/11/2006|14:02] C:\ProgramData\Documents
[14/12/2008|18:40] C:\ProgramData\E4C555F9D6.sys
[25/01/2009|12:18] C:\ProgramData\eMule
[02/11/2006|14:02] C:\ProgramData\Favorites
[29/11/2008|10:59] C:\ProgramData\FreeDownloadManager.ORG
[23/02/2009|12:29] C:\ProgramData\Google Updater
[22/12/2008|09:52] C:\ProgramData\InstallShield
[14/12/2008|18:40] C:\ProgramData\KGyGaAvL.sys
[23/02/2009|15:41] C:\ProgramData\Lavasoft
[23/02/2009|14:51] C:\ProgramData\Malwarebytes
[13/01/2009|22:38] C:\ProgramData\Microsoft
[19/02/2009|19:10] C:\ProgramData\P4G
[23/02/2009|10:46] C:\ProgramData\Spybot - Search & Destroy
[02/11/2006|14:02] C:\ProgramData\Start Menu
[02/11/2006|14:02] C:\ProgramData\Templates
[12/11/2008|17:45] C:\ProgramData\VistaCodecs
[15/11/2008|16:46] C:\ProgramData\WLInstaller

--------------------\\ Listing des dossiers dans C:\Program Files

[23/02/2009|12:46] C:\Program Files\Ad-remover
[25/09/2008|13:39] C:\Program Files\Alwil Software
[23/12/2008|15:21] C:\Program Files\Apple Software Update
[05/10/2008|17:16] C:\Program Files\Artweaver 0.5
[11/11/2008|21:49] C:\Program Files\Astonsoft
[27/09/2008|10:24] C:\Program Files\ASUS
[22/01/2009|17:48] C:\Program Files\ATI
[27/09/2008|10:15] C:\Program Files\ATI Technologies
[27/09/2008|10:06] C:\Program Files\ATK Hotkey
[27/09/2008|10:08] C:\Program Files\ATKOSD2
[19/02/2009|19:10] C:\Program Files\AVS4YOU
[19/02/2009|19:10] C:\Program Files\Bonjour
[24/01/2009|18:56] C:\Program Files\CCleaner
[23/02/2009|12:48] C:\Program Files\Common Files
[23/01/2009|21:53] C:\Program Files\CursorXP
[21/02/2009|10:31] C:\Program Files\DicoRime
[03/01/2009|12:24] C:\Program Files\DivX
[04/02/2009|15:54] C:\Program Files\Dofus
[05/02/2009|14:15] C:\Program Files\DofusArena2
[19/02/2009|19:10] C:\Program Files\Easy Video Joiner
[08/10/2008|18:44] C:\Program Files\Electronic Arts
[21/02/2009|10:31] C:\Program Files\eMule
[12/12/2008|09:45] C:\Program Files\Esperanto
[23/02/2009|16:11] C:\Program Files\FindyKill
[25/09/2008|13:44] C:\Program Files\Foxit Software
[23/02/2009|14:40] C:\Program Files\Free Download Manager
[23/02/2009|16:47] C:\Program Files\Google
[02/12/2008|16:55] C:\Program Files\Gpotato.eu
[16/01/2009|15:18] C:\Program Files\InstallShield Installation Information
[19/10/2008|14:28] C:\Program Files\Internet Explorer
[19/02/2009|19:10] C:\Program Files\iPod
[19/02/2009|19:10] C:\Program Files\iTunes
[05/02/2009|11:01] C:\Program Files\Java
[15/02/2009|10:19] C:\Program Files\JRE
[15/11/2008|16:37] C:\Program Files\Kyodai Mahjongg
[23/02/2009|16:32] C:\Program Files\Malwarebytes' Anti-Malware
[17/12/2008|19:55] C:\Program Files\Microsoft
[02/11/2006|13:37] C:\Program Files\Microsoft Games
[17/12/2008|20:03] C:\Program Files\Microsoft Silverlight
[15/11/2008|16:50] C:\Program Files\Microsoft SQL Server Compact Edition
[17/12/2008|20:00] C:\Program Files\Microsoft Sync Framework
[27/09/2008|10:20] C:\Program Files\Motorola
[14/01/2009|10:07] C:\Program Files\Movie Maker
[23/02/2009|16:53] C:\Program Files\Mozilla Firefox
[02/11/2006|13:37] C:\Program Files\MSBuild
[23/02/2009|12:57] C:\Program Files\Navilog1
[15/02/2009|10:19] C:\Program Files\OpenOffice.org 3
[27/09/2008|10:23] C:\Program Files\P4G
[27/09/2008|10:23] C:\Program Files\Power4Gear eXtreme
[15/02/2009|18:08] C:\Program Files\QuickMediaConverter
[01/02/2009|10:26] C:\Program Files\QuickTime
[19/02/2009|19:10] C:\Program Files\QuickZip4
[19/02/2009|19:10] C:\Program Files\Realm Crafter Demo
[27/09/2008|10:19] C:\Program Files\Realtek
[02/11/2006|13:37] C:\Program Files\Reference Assemblies
[11/10/2008|10:43] C:\Program Files\Sony
[23/02/2009|10:45] C:\Program Files\Spybot - Search & Destroy
[22/12/2008|15:53] C:\Program Files\Stardock
[27/09/2008|10:20] C:\Program Files\Synaptics
[16/01/2009|15:18] C:\Program Files\Ubisoft
[02/11/2006|14:01] C:\Program Files\Uninstall Information
[08/11/2008|12:34] C:\Program Files\VideoLAN
[12/11/2008|17:46] C:\Program Files\VistaCodecPack
[21/02/2009|10:30] C:\Program Files\Vuze
[11/10/2008|10:14] C:\Program Files\WebCam
[19/02/2009|19:10] C:\Program Files\WinAVI Video Converter
[18/10/2008|11:45] C:\Program Files\Windows Calendar
[18/10/2008|11:45] C:\Program Files\Windows Collaboration
[18/10/2008|11:45] C:\Program Files\Windows Defender
[18/10/2008|11:45] C:\Program Files\Windows Journal
[17/12/2008|20:02] C:\Program Files\Windows Live
[15/11/2008|16:50] C:\Program Files\Windows Live Favorites
[27/12/2008|11:24] C:\Program Files\Windows Live Safety Center
[17/12/2008|19:54] C:\Program Files\Windows Live SkyDrive
[17/12/2008|20:01] C:\Program Files\Windows Live Toolbar
[11/12/2008|03:10] C:\Program Files\Windows Mail
[18/10/2008|11:45] C:\Program Files\Windows Media Player
[02/11/2006|13:37] C:\Program Files\Windows NT
[18/10/2008|11:45] C:\Program Files\Windows Photo Gallery
[18/10/2008|11:45] C:\Program Files\Windows Sidebar
[18/02/2009|09:25] C:\Program Files\WinRAR
[27/09/2008|10:22] C:\Program Files\Wireless Console 2
[23/12/2008|19:40] C:\Program Files\WowCartographe
[23/02/2009|15:24] C:\Program Files\Yahoo!
[22/12/2008|10:15] C:\Program Files\ZSGCalc

--------------------\\ Listing des dossiers dans C:\Program Files\Common Files

[23/02/2009|10:28] C:\Program Files\Common Files\Adobe
[19/02/2009|19:10] C:\Program Files\Common Files\Apple
[19/02/2009|19:10] C:\Program Files\Common Files\AVSMedia
[27/09/2008|12:06] C:\Program Files\Common Files\Blizzard Entertainment
[02/12/2008|17:07] C:\Program Files\Common Files\INCA Shared
[22/12/2008|09:52] C:\Program Files\Common Files\InstallShield
[25/09/2008|17:56] C:\Program Files\Common Files\Java
[29/12/2008|19:06] C:\Program Files\Common Files\microsoft shared
[12/11/2008|17:41] C:\Program Files\Common Files\PX Storage Engine
[02/11/2006|12:18] C:\Program Files\Common Files\Services
[02/11/2006|12:18] C:\Program Files\Common Files\SpeechEngines
[11/10/2008|10:15] C:\Program Files\Common Files\SWF Studio
[18/10/2008|11:45] C:\Program Files\Common Files\System
[17/12/2008|19:40] C:\Program Files\Common Files\Windows Live
[27/09/2008|11:51] C:\Program Files\Common Files\WindowsLiveInstaller

--------------------\\ Process

( 71 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE

--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-02-23 19:18:40
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------\\ Recherche d'autres infections

Aucune autre infection trouvée !

[F:14][D:4]-> C:\Users\Nurit\AppData\Local\Temp
[F:9][D:1]-> C:\Users\Nurit\AppData\Roaming\MICROS~1\Windows\Cookies
[F:10][D:4]-> C:\Users\Nurit\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:5][D:9]-> C:\$Recycle.Bin

1 - "C:\Lop SD\LopR_1.txt" - 23/02/2009|14:29 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 23/02/2009|19:19 - Option : [1]

--------------------\\ Fin du rapport a 19:19:43
0
Réponse 50 / 51
pakaleg Messages postés 126 Date d'inscription   Statut Membre Dernière intervention  
 
Mon problème est résolu. J'ai désinstallé avast et tout semble rentrer dans l'ordre.
0
Réponse 51 / 51
Utilisateur anonyme
 
salutj espere que tu as maisse finir Malwarebytes et supprimé ce trouvé
0

Discussions similaires

Impossible d'afficher le rapport de tableau croisé dynamique sur un rapport
Utilisateur anonyme -
TomH. -

13 réponses
écrire un rapport de travail
asi -
REGINALD -

3 réponses
impossible d'afficher le tableau dynamique sur un rapport existant
Pierre -
Adrien71 -

3 réponses
Problém affichage du tableau croisé dynamique
BK -
Raymond PENTIER -

2 réponses
Theme de rapport de stage option comptabilité
sana saydou -
Raymond PENTIER -

2 réponses