Sujet Précédent Sujet Suivant

Probleme virus

Fermé
sanit108 - 12 avril 2009 à 11:42
toptitbal Messages postés 25709 Date d'inscription samedi 8 juillet 2006 Statut Contributeur sécurité Dernière intervention 4 mars 2010 - 12 avril 2009 à 13:46
Bonjour,


j'ai un probleme de virus que j'arrive pas a supprimer avec l'antivirus d'orange (firewall)
j'ai lancé hijack
voici le rapport

merci d'avance pour votre aide......


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:32:57, on 12/04/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16791)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\RunDll32.exe
C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe
C:\WINDOWS\System32\hphmon05.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe
C:\Program Files\Ahead\InCD\InCD.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\AntivirusFirewall\Common\FSM32.EXE
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\AVPersonal\AVWUPSRV.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE
C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
C:\WINDOWS\system32\ntvdm.exe
C:\PROGRA~1\Wanadoo\GestionnaireInternet.exe
C:\WINDOWS\System32\cisvc.exe
C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\FSGK32.EXE
C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fssm32.exe
C:\PROGRA~1\Wanadoo\ComComp.exe
C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\AntivirusFirewall\Common\FSMB32.EXE
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\Program Files\AntivirusFirewall\Common\FCH32.EXE
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\System32\snmp.exe
C:\Program Files\AntivirusFirewall\Common\FAMEH32.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fsqh.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fsrw.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\HPZipm12.exe
C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fsav32.exe
C:\PROGRA~1\ANTIVI~1\ANTI-S~1\fsaw.exe
C:\Program Files\AntivirusFirewall\FSGUI\fsguidll.exe
C:\PROGRA~1\Wanadoo\Watch.exe
C:\WINDOWS\system32\cidaemon.exe
C:\Program Files\Outlook Express\msimn.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://xpzohvsaulmmunzfgjtndfx.com/AOL2_4jRW6UXTsKqK246EOiOsFf3yHwH/ruveOzDNFqjitvWJI5En_rYucSa7VIq.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr\msntb.dll
O2 - BHO: (no name) - {CF037855-EBA9-A5B7-DACF-1F436AAB45E6} - C:\DOCUME~1\FRDRIC~1\APPLIC~1\SKIPLI~1\BALLBARB.exe (file missing)
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr\msntb.dll
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [HPHUPD05] C:\Program Files\Hewlett-Packard\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe"
O4 - HKLM\..\Run: [HPHmon05] C:\WINDOWS\System32\hphmon05.exe
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
O4 - HKLM\..\Run: [OpwareSE2] "C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe"
O4 - HKLM\..\Run: [InCD] C:\Program Files\Ahead\InCD\InCD.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [System Backup] sysbcp32.exe
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\AntivirusFirewall\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\AntivirusFirewall\TNB\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM\..\Run: [F-Secure Startup Wizard] "C:\Program Files\AntivirusFirewall\FSGUI\FSSW.EXE" /reboot
O4 - HKLM\..\Run: [News Service] "C:\Program Files\AntivirusFirewall\FSGUI\ispnews.exe"
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\\PSDrvCheck.exe
O4 - HKLM\..\Run: [IntraDriveOnlineOnce] C:\Documents and Settings\All Users\Application Data\style idle intra drive\trans pop.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\RunServices: [System Backup] sysbcp32.exe
O4 - HKCU\..\Run: [SendLicense] C:\DOCUME~1\FRDRIC~1\APPLIC~1\GLUEHI~1\media cool.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [WOOKIT] C:\Program Files\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: Event Reminder.lnk = C:\pmw\PMREMIND.EXE
O4 - Global Startup: Antivirus Firewall.lnk = C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe
O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
O8 - Extra context menu item: &Bloquer cette fenêtre publicitaire - C:\Program Files\AntivirusFirewall\Anti-Spyware\blockpopups.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Protection Internet Explorer - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\AntivirusFirewall\Anti-Spyware\ieshield.dll
O9 - Extra 'Tools' menuitem: Protection Internet Explorer... - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\AntivirusFirewall\Anti-Spyware\ieshield.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O23 - Service: AntiVir Update (AVWUpSrv) - H+BEDV Datentechnik GmbH, Germany - C:\Program Files\AVPersonal\AVWUPSRV.EXE
O23 - Service: Antivirus Firewall (BackWeb Plug-in - 6588780) - Securitoo Portal - C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe
O23 - Service: fsbwsys - F-Secure Corp. - C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: InCD File System Service (InCDsrv) - AHEAD Software - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe

7 réponses

Réponse 1 / 7
eZula Messages postés 3392 Date d'inscription samedi 26 avril 2008 Statut Contributeur Dernière intervention 8 mai 2021 392
12 avril 2009 à 11:45
Bonjour,

télécharge GenProc http://www.genproc.com/GenProc.exe

double-clique sur GenProc.exe et poste le contenu du rapport qui s'ouvre
0
Réponse 2 / 7
amsterboy20 Messages postés 53 Date d'inscription mercredi 18 juin 2008 Statut Membre Dernière intervention 20 décembre 2011 5
12 avril 2009 à 11:46
Le pare-feu n'est pas bon, il te faut un bon anti virus comme kaspersky, avast, f-secure ou autres.

------------------------------------------------------------------------------------------------------------------------
Allez sur mon site, mangas à volonter, vidéos comme scans: starkee.calimerou.fr
0
Réponse 3 / 7
toptitbal Messages postés 25709 Date d'inscription samedi 8 juillet 2006 Statut Contributeur sécurité Dernière intervention 4 mars 2010 2 228
12 avril 2009 à 11:46
Bonjour

Télécharge Lop S&D.exe sur ton Bureau.

https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2

* Double-clique dessus pour lancer l'installation
* Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
* Séléctionne la langue souhaitée, puis choisis l'option 1 (Recherche)
* Patiente jusqu'à la fin du scan
* Poste le rapport généré (C:\lopR.txt)


Tutorial ( aide ) : http://bibou0007.com/outils-specifiques-f78/tuto-lop-sd-t956.htm
0
Réponse 4 / 7
sanit108
12 avril 2009 à 12:35
voici le rapport lop S&D

--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) XP 2600+ )
BIOS : Version 07.00T
USER : Frédéric ( Administrator )
BOOT : Normal boot
Antivirus : AntiVirus Firewall 6.15 6.15 (Activated)
Firewall : AntiVirus Firewall 6.15 6.15 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:114 Go (Free:93 Go)
D:\ (CD or DVD)
E:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)
F:\ (USB)
G:\ (USB) - FAT32 - Total:3897 Mo (Free:3 Go)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 12/04/2009|12:28 )

--------------------\\ Listing des dossiers dans APPLIC~1

[14/02/2008|20:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[30/11/2006|20:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\F-Secure
[13/05/2006|13:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kodak
[10/01/2007|20:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[21/06/2004|16:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN Messenger 6.2.0137
[02/01/2004|15:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN6
[30/12/2006|20:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle
[10/01/2007|20:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle Studio
[12/04/2009|10:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Play Vc Default Readme
[21/08/2004|20:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[02/01/2004|13:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ScanSoft
[30/12/2006|20:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SmartSound Software Inc
[10/01/2007|20:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[02/01/2004|13:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SSScanAppDataDir
[02/01/2004|15:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SSScanWizard
[12/04/2009|10:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\style idle intra drive
[26/12/2003|18:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems
[24/11/2006|21:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage

[18/11/2003|18:02] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[25/03/2008|23:24] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[28/01/2008|21:57] C:\DOCUME~1\FRDRIC~1\APPLIC~1\Adobe
[02/12/2007|17:41] C:\DOCUME~1\FRDRIC~1\APPLIC~1\AdobeUM
[26/12/2003|19:44] C:\DOCUME~1\FRDRIC~1\APPLIC~1\Ahead
[26/12/2003|18:07] C:\DOCUME~1\FRDRIC~1\APPLIC~1\ArcSoft
[30/03/2009|23:21] C:\DOCUME~1\FRDRIC~1\APPLIC~1\Canon
[06/12/2006|19:55] C:\DOCUME~1\FRDRIC~1\APPLIC~1\F-Secure
[05/10/2008|16:27] C:\DOCUME~1\FRDRIC~1\APPLIC~1\GLUE HIDE BIB
[11/07/2004|19:31] C:\DOCUME~1\FRDRIC~1\APPLIC~1\Help
[27/12/2003|21:29] C:\DOCUME~1\FRDRIC~1\APPLIC~1\Hewlett-Packard
[18/11/2003|18:02] C:\DOCUME~1\FRDRIC~1\APPLIC~1\Identities
[26/12/2003|17:57] C:\DOCUME~1\FRDRIC~1\APPLIC~1\InterTrust
[30/11/2006|20:40] C:\DOCUME~1\FRDRIC~1\APPLIC~1\ispnews
[03/01/2007|19:29] C:\DOCUME~1\FRDRIC~1\APPLIC~1\Lavasoft
[27/12/2003|15:49] C:\DOCUME~1\FRDRIC~1\APPLIC~1\Macromedia
[12/03/2009|19:39] C:\DOCUME~1\FRDRIC~1\APPLIC~1\Microsoft
[22/01/2004|21:58] C:\DOCUME~1\FRDRIC~1\APPLIC~1\MSN6
[30/11/2006|20:45] C:\DOCUME~1\FRDRIC~1\APPLIC~1\PEX
[26/12/2003|17:59] C:\DOCUME~1\FRDRIC~1\APPLIC~1\ScanSoft
[12/04/2009|12:02] C:\DOCUME~1\FRDRIC~1\APPLIC~1\U3
[26/12/2003|19:34] C:\DOCUME~1\FRDRIC~1\APPLIC~1\Ulead Systems

[01/12/2007|10:55] C:\DOCUME~1\LOCALS~1\APPLIC~1\Adobe
[23/02/2004|20:44] C:\DOCUME~1\LOCALS~1\APPLIC~1\Macromedia
[23/06/2007|11:18] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[25/03/2008|23:21] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[12/04/2009 12:01][--ah-----] C:\WINDOWS\tasks\AFC5D4D1918A49F5.job
[01/03/2009 17:18][--a------] C:\WINDOWS\tasks\HP DArC Task #Hewlett-Packard#7600#MY37H21115D4.job
[12/04/2009 09:34][--a------] C:\WINDOWS\tasks\HP Usg Daily.job
[24/04/2003 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
[12/04/2009 10:44][--ah-----] C:\WINDOWS\tasks\SA.DAT

( AFC5D4D1918A49F5.job )=( c:\docume~1\frdric~1\applic~1\gluehi~1\Lockslinkonce.exe )

--------------------\\ Listing des dossiers dans C:\Program Files

[12/07/2008|11:36] C:\Program Files\Adobe
[27/07/2005|17:30] C:\Program Files\Ahead
[30/11/2006|20:36] C:\Program Files\AntivirusFirewall
[26/12/2003|17:58] C:\Program Files\ArcSoft
[30/12/2003|16:24] C:\Program Files\ATI Technologies
[02/03/2009|20:53] C:\Program Files\AVPersonal
[22/08/2004|19:25] C:\Program Files\C2Media
[26/12/2003|18:01] C:\Program Files\Canon
[17/09/2008|18:56] C:\Program Files\Classic PhoneTools
[12/04/2009|11:23] C:\Program Files\CleanUp!
[21/11/2003|11:39] C:\Program Files\C-Media 3D Audio
[27/12/2003|15:03] C:\Program Files\Common Files
[18/11/2003|18:00] C:\Program Files\ComPlus Applications
[21/11/2003|11:49] C:\Program Files\CONEXANT
[16/07/2005|12:36] C:\Program Files\Digital Camera
[10/01/2007|20:49] C:\Program Files\DivX
[27/12/2003|13:32] C:\Program Files\Driver Cleaner
[13/05/2006|13:02] C:\Program Files\Fichiers communs
[27/12/2003|13:11] C:\Program Files\FusionSoft DVD Player XP
[09/03/2007|13:21] C:\Program Files\GLUE HIDE BIB
[10/01/2007|20:51] C:\Program Files\Grisoft
[26/12/2003|17:14] C:\Program Files\Hewlett-Packard
[26/12/2003|17:14] C:\Program Files\HP
[30/12/2006|20:36] C:\Program Files\InstallShield Installation Information
[08/04/2009|23:04] C:\Program Files\Internet Explorer
[01/05/2006|16:57] C:\Program Files\Kodak
[03/01/2007|19:29] C:\Program Files\Lavasoft
[25/10/2008|23:03] C:\Program Files\Messenger
[23/10/2004|20:12] C:\Program Files\Messenger Plus! 3
[18/11/2003|18:02] C:\Program Files\microsoft frontpage
[02/01/2004|15:40] C:\Program Files\Microsoft Office
[02/01/2004|15:40] C:\Program Files\Microsoft Visual Studio
[02/01/2004|15:40] C:\Program Files\Microsoft Works
[25/10/2008|22:55] C:\Program Files\Movie Maker
[18/11/2003|17:59] C:\Program Files\MSN
[07/08/2004|18:11] C:\Program Files\MSN Apps
[18/11/2003|17:59] C:\Program Files\MSN Gaming Zone
[31/10/2004|00:39] C:\Program Files\MSN Messenger
[23/11/2006|23:57] C:\Program Files\MSXML 4.0
[12/04/2009|12:26] C:\Program Files\Navilog1
[25/10/2008|22:49] C:\Program Files\NetMeeting
[16/07/2005|12:36] C:\Program Files\OrcadLite
[25/10/2008|22:49] C:\Program Files\Outlook Express
[16/07/2005|12:36] C:\Program Files\P-CAD 2001
[29/08/2004|13:13] C:\Program Files\PestPatrol
[30/12/2006|20:37] C:\Program Files\Pinnacle
[18/04/2006|00:59] C:\Program Files\QuickTime
[27/12/2003|13:38] C:\Program Files\RegCleaner
[14/10/2007|11:15] C:\Program Files\RTE Multim‚dia
[20/11/2006|19:24] C:\Program Files\SAGEM
[26/12/2003|17:59] C:\Program Files\ScanSoft
[20/11/2006|19:19] C:\Program Files\Securitoo
[18/11/2003|18:00] C:\Program Files\Services en ligne
[30/12/2006|20:35] C:\Program Files\SmartSound Software
[10/01/2007|20:51] C:\Program Files\Spybot - Search & Destroy
[12/04/2009|11:29] C:\Program Files\Trend Micro
[26/12/2003|18:00] C:\Program Files\Ulead Systems
[01/08/2004|13:11] C:\Program Files\Uninstall Information
[12/04/2009|11:33] C:\Program Files\Wanadoo
[13/08/2004|00:22] C:\Program Files\Wanadoo Messager
[20/06/2007|20:02] C:\Program Files\Windows Media Connect 2
[25/10/2008|22:49] C:\Program Files\Windows Media Player
[25/10/2008|22:49] C:\Program Files\Windows NT
[13/08/2004|23:44] C:\Program Files\WindowsUpdate
[18/11/2003|18:02] C:\Program Files\xerox
[28/07/2004|13:25] C:\Program Files\Zone Labs

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[14/02/2008|20:59] C:\Program Files\Fichiers communs\Adobe
[21/11/2003|12:03] C:\Program Files\Fichiers communs\Ahead
[02/01/2004|15:40] C:\Program Files\Fichiers communs\DESIGNER
[30/12/2006|20:34] C:\Program Files\Fichiers communs\InstallShield
[24/06/2004|16:14] C:\Program Files\Fichiers communs\Microsoft Shared
[18/11/2003|18:00] C:\Program Files\Fichiers communs\MSSoap
[18/11/2003|17:55] C:\Program Files\Fichiers communs\ODBC
[31/12/2003|19:21] C:\Program Files\Fichiers communs\ScanSoft Shared
[18/11/2003|18:00] C:\Program Files\Fichiers communs\Services
[18/11/2003|17:55] C:\Program Files\Fichiers communs\SpeechEngines
[25/10/2008|22:49] C:\Program Files\Fichiers communs\System
[26/12/2003|18:00] C:\Program Files\Fichiers communs\Ulead Systems

--------------------\\ Process

( 68 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\DOCUME~1\FRDRIC~1\APPLIC~1\gluehi~1
C:\Program Files\gluehi~1
C:\Program Files\C2Media
C:\WINDOWS\Tasks\AFC5D4D1918A49F5.job

--------------------\\ Verification du Registre

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SendLicense"="C:\\DOCUME~1\\FRDRIC~1\\APPLIC~1\\GLUEHI~1\\media cool.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

--------------------\\ Verification du fichier Hosts

Fichier Hosts MODIFIE

127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD
127.0.0.1 download.errorsafe.com ## added by CiD
127.0.0.1 download.systemdoctor.com ## added by CiD
127.0.0.1 download.winantispyware.com ## added by CiD
127.0.0.1 download.windrivecleaner.com ## added by CiD
127.0.0.1 download.winfixer.com ## added by CiD
127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 es.winantivirus.com ## added by CiD
127.0.0.1 fr.winantivirus.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 go.winantivirus.com ## added by CiD
127.0.0.1 hk.winantivirus.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 instlog.winantivirus.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 kb.winantivirus.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 secure.winantivirus.com ## added by CiD
127.0.0.1 support.winantivirus.com ## added by CiD
127.0.0.1 ulog.winantivirus.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 utils.winantivirus.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winantivirus.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.drivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.errorprotector.com ## added by CiD
127.0.0.1 [i]ww/iw.errorsafe.com ## added by CiD
127.0.0.1 [i]ww/iw.systemdoctor.com ## added by CiD
127.0.0.1 [i]ww/iw.win-anti-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.win-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispam.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispy.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispyware.com ## added by CiD
127.0.0.1 [i]ww/iw.winantivirus.com ## added by CiD
127.0.0.1 [i]ww/iw.winantiviruspro.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivesafe.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 [i]ww/iw.utils.winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer2006.com ## added by CiD
127.0.0.1 [i]ww/iw.winsoftware.com ## added by CiD

-> 72 [ 70 ## added by CiD ]

--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-04-12 12:30:37
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:107][D:1]-> C:\DOCUME~1\FRDRIC~1\LOCALS~1\Temp
[F:9][D:0]-> C:\DOCUME~1\FRDRIC~1\Cookies
[F:296][D:6]-> C:\DOCUME~1\FRDRIC~1\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 12/04/2009|12:31 - Option : [1]

--------------------\\ Fin du rapport a 12:31:59
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 7
toptitbal Messages postés 25709 Date d'inscription samedi 8 juillet 2006 Statut Contributeur sécurité Dernière intervention 4 mars 2010 2 228
12 avril 2009 à 12:36
Relance Lop S&D


* Choisis cette fois ci l'Option 2 (Suppression)

* Ne ferme pas la fenêtre lors de la suppression !

* Poste le rapport généré (C:\lopR.txt)
0
Réponse 6 / 7
sanit108
12 avril 2009 à 12:48
voici le nouveau rapport

-----------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) XP 2600+ )
BIOS : Version 07.00T
USER : Frédéric ( Administrator )
BOOT : Normal boot
Antivirus : AntiVirus Firewall 6.15 6.15 (Activated)
Firewall : AntiVirus Firewall 6.15 6.15 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:114 Go (Free:93 Go)
D:\ (CD or DVD)
E:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)
F:\ (USB)
G:\ (USB) - FAT32 - Total:3897 Mo (Free:3 Go)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [2] ( 12/04/2009|12:42 )


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

Supprime! - C:\WINDOWS\Tasks\AFC5D4D1918A49F5.job
Supprime! - C:\DOCUME~1\FRDRIC~1\APPLIC~1\gluehi~1
Supprime! - C:\Program Files\gluehi~1
Supprime! - C:\Program Files\C2Media
-
[ Fichier Hosts ] .. Restaure!

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


--------------------\\ Listing des dossiers dans APPLIC~1

[14/02/2008|20:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[30/11/2006|20:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\F-Secure
[13/05/2006|13:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kodak
[10/01/2007|20:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[21/06/2004|16:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN Messenger 6.2.0137
[02/01/2004|15:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN6
[30/12/2006|20:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle
[10/01/2007|20:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle Studio
[12/04/2009|10:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Play Vc Default Readme
[21/08/2004|20:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[02/01/2004|13:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ScanSoft
[30/12/2006|20:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SmartSound Software Inc
[10/01/2007|20:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[02/01/2004|13:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SSScanAppDataDir
[02/01/2004|15:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SSScanWizard
[12/04/2009|10:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\style idle intra drive
[26/12/2003|18:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems
[24/11/2006|21:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage

[18/11/2003|18:02] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[25/03/2008|23:24] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[28/01/2008|21:57] C:\DOCUME~1\FRDRIC~1\APPLIC~1\Adobe
[02/12/2007|17:41] C:\DOCUME~1\FRDRIC~1\APPLIC~1\AdobeUM
[26/12/2003|19:44] C:\DOCUME~1\FRDRIC~1\APPLIC~1\Ahead
[26/12/2003|18:07] C:\DOCUME~1\FRDRIC~1\APPLIC~1\ArcSoft
[30/03/2009|23:21] C:\DOCUME~1\FRDRIC~1\APPLIC~1\Canon
[06/12/2006|19:55] C:\DOCUME~1\FRDRIC~1\APPLIC~1\F-Secure
[11/07/2004|19:31] C:\DOCUME~1\FRDRIC~1\APPLIC~1\Help
[27/12/2003|21:29] C:\DOCUME~1\FRDRIC~1\APPLIC~1\Hewlett-Packard
[18/11/2003|18:02] C:\DOCUME~1\FRDRIC~1\APPLIC~1\Identities
[26/12/2003|17:57] C:\DOCUME~1\FRDRIC~1\APPLIC~1\InterTrust
[30/11/2006|20:40] C:\DOCUME~1\FRDRIC~1\APPLIC~1\ispnews
[03/01/2007|19:29] C:\DOCUME~1\FRDRIC~1\APPLIC~1\Lavasoft
[27/12/2003|15:49] C:\DOCUME~1\FRDRIC~1\APPLIC~1\Macromedia
[12/03/2009|19:39] C:\DOCUME~1\FRDRIC~1\APPLIC~1\Microsoft
[22/01/2004|21:58] C:\DOCUME~1\FRDRIC~1\APPLIC~1\MSN6
[30/11/2006|20:45] C:\DOCUME~1\FRDRIC~1\APPLIC~1\PEX
[26/12/2003|17:59] C:\DOCUME~1\FRDRIC~1\APPLIC~1\ScanSoft
[12/04/2009|12:02] C:\DOCUME~1\FRDRIC~1\APPLIC~1\U3
[26/12/2003|19:34] C:\DOCUME~1\FRDRIC~1\APPLIC~1\Ulead Systems

[01/12/2007|10:55] C:\DOCUME~1\LOCALS~1\APPLIC~1\Adobe
[23/02/2004|20:44] C:\DOCUME~1\LOCALS~1\APPLIC~1\Macromedia
[23/06/2007|11:18] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[25/03/2008|23:21] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[01/03/2009 17:18][--a------] C:\WINDOWS\tasks\HP DArC Task #Hewlett-Packard#7600#MY37H21115D4.job
[12/04/2009 09:34][--a------] C:\WINDOWS\tasks\HP Usg Daily.job
[24/04/2003 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
[12/04/2009 10:44][--ah-----] C:\WINDOWS\tasks\SA.DAT

--------------------\\ Listing des dossiers dans C:\Program Files

[12/07/2008|11:36] C:\Program Files\Adobe
[27/07/2005|17:30] C:\Program Files\Ahead
[30/11/2006|20:36] C:\Program Files\AntivirusFirewall
[26/12/2003|17:58] C:\Program Files\ArcSoft
[30/12/2003|16:24] C:\Program Files\ATI Technologies
[02/03/2009|20:53] C:\Program Files\AVPersonal
[26/12/2003|18:01] C:\Program Files\Canon
[17/09/2008|18:56] C:\Program Files\Classic PhoneTools
[12/04/2009|11:23] C:\Program Files\CleanUp!
[21/11/2003|11:39] C:\Program Files\C-Media 3D Audio
[27/12/2003|15:03] C:\Program Files\Common Files
[18/11/2003|18:00] C:\Program Files\ComPlus Applications
[21/11/2003|11:49] C:\Program Files\CONEXANT
[16/07/2005|12:36] C:\Program Files\Digital Camera
[10/01/2007|20:49] C:\Program Files\DivX
[27/12/2003|13:32] C:\Program Files\Driver Cleaner
[13/05/2006|13:02] C:\Program Files\Fichiers communs
[27/12/2003|13:11] C:\Program Files\FusionSoft DVD Player XP
[10/01/2007|20:51] C:\Program Files\Grisoft
[26/12/2003|17:14] C:\Program Files\Hewlett-Packard
[26/12/2003|17:14] C:\Program Files\HP
[30/12/2006|20:36] C:\Program Files\InstallShield Installation Information
[08/04/2009|23:04] C:\Program Files\Internet Explorer
[01/05/2006|16:57] C:\Program Files\Kodak
[03/01/2007|19:29] C:\Program Files\Lavasoft
[25/10/2008|23:03] C:\Program Files\Messenger
[23/10/2004|20:12] C:\Program Files\Messenger Plus! 3
[18/11/2003|18:02] C:\Program Files\microsoft frontpage
[02/01/2004|15:40] C:\Program Files\Microsoft Office
[02/01/2004|15:40] C:\Program Files\Microsoft Visual Studio
[02/01/2004|15:40] C:\Program Files\Microsoft Works
[25/10/2008|22:55] C:\Program Files\Movie Maker
[18/11/2003|17:59] C:\Program Files\MSN
[07/08/2004|18:11] C:\Program Files\MSN Apps
[18/11/2003|17:59] C:\Program Files\MSN Gaming Zone
[31/10/2004|00:39] C:\Program Files\MSN Messenger
[23/11/2006|23:57] C:\Program Files\MSXML 4.0
[12/04/2009|12:26] C:\Program Files\Navilog1
[25/10/2008|22:49] C:\Program Files\NetMeeting
[16/07/2005|12:36] C:\Program Files\OrcadLite
[25/10/2008|22:49] C:\Program Files\Outlook Express
[16/07/2005|12:36] C:\Program Files\P-CAD 2001
[29/08/2004|13:13] C:\Program Files\PestPatrol
[30/12/2006|20:37] C:\Program Files\Pinnacle
[18/04/2006|00:59] C:\Program Files\QuickTime
[27/12/2003|13:38] C:\Program Files\RegCleaner
[14/10/2007|11:15] C:\Program Files\RTE Multim‚dia
[20/11/2006|19:24] C:\Program Files\SAGEM
[26/12/2003|17:59] C:\Program Files\ScanSoft
[20/11/2006|19:19] C:\Program Files\Securitoo
[18/11/2003|18:00] C:\Program Files\Services en ligne
[30/12/2006|20:35] C:\Program Files\SmartSound Software
[10/01/2007|20:51] C:\Program Files\Spybot - Search & Destroy
[12/04/2009|11:29] C:\Program Files\Trend Micro
[26/12/2003|18:00] C:\Program Files\Ulead Systems
[01/08/2004|13:11] C:\Program Files\Uninstall Information
[12/04/2009|11:33] C:\Program Files\Wanadoo
[13/08/2004|00:22] C:\Program Files\Wanadoo Messager
[20/06/2007|20:02] C:\Program Files\Windows Media Connect 2
[25/10/2008|22:49] C:\Program Files\Windows Media Player
[25/10/2008|22:49] C:\Program Files\Windows NT
[13/08/2004|23:44] C:\Program Files\WindowsUpdate
[18/11/2003|18:02] C:\Program Files\xerox
[28/07/2004|13:25] C:\Program Files\Zone Labs

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[14/02/2008|20:59] C:\Program Files\Fichiers communs\Adobe
[21/11/2003|12:03] C:\Program Files\Fichiers communs\Ahead
[02/01/2004|15:40] C:\Program Files\Fichiers communs\DESIGNER
[30/12/2006|20:34] C:\Program Files\Fichiers communs\InstallShield
[24/06/2004|16:14] C:\Program Files\Fichiers communs\Microsoft Shared
[18/11/2003|18:00] C:\Program Files\Fichiers communs\MSSoap
[18/11/2003|17:55] C:\Program Files\Fichiers communs\ODBC
[31/12/2003|19:21] C:\Program Files\Fichiers communs\ScanSoft Shared
[18/11/2003|18:00] C:\Program Files\Fichiers communs\Services
[18/11/2003|17:55] C:\Program Files\Fichiers communs\SpeechEngines
[25/10/2008|22:49] C:\Program Files\Fichiers communs\System
[26/12/2003|18:00] C:\Program Files\Fichiers communs\Ulead Systems

--------------------\\ Process

( 67 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-04-12 12:44:57
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:107][D:1]-> C:\DOCUME~1\FRDRIC~1\LOCALS~1\Temp
[F:9][D:0]-> C:\DOCUME~1\FRDRIC~1\Cookies
[F:341][D:6]-> C:\DOCUME~1\FRDRIC~1\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 12/04/2009|12:31 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 12/04/2009|12:46 - Option : [2]

--------------------\\ Fin du rapport a 12:46:36
0
Réponse 7 / 7
toptitbal Messages postés 25709 Date d'inscription samedi 8 juillet 2006 Statut Contributeur sécurité Dernière intervention 4 mars 2010 2 228
12 avril 2009 à 13:46
OK
Fais un novel Hijackthis stp.
0

Discussions similaires

Est ce que le site tlauncher est dangereux ?
caribou -
bazfile -

1 réponse
4 virus en raison d’un porno ????
valou -
Bello040420 -

9 réponses
Comment savoir si j'ai attrapé un virus sur mon téléphone ?
Infolock -
bell -

66 réponses
Virus Altruistic
Mael03250 -
MisteryBean -

11 réponses
Supprimer notifications myavids.com sous Android.
Guy72 -
Liline -

7 réponses