Interprétation Rapport Hijack this et LopSd
MEBAREK31
Messages postés
135
Statut
Membre
-
Utilisateur anonyme -
Utilisateur anonyme -
Bonjour,
SVp qui veut intérpréter mon rapport Hijackthis et LopSD
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:19:40, on 19/04/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\RunDll32.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Athan\Athan.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
C:\Program Files\Abadisoft\USB Firewall 5.0\USBFireWall.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\ooVoo\oovoo.exe
C:\Program Files\Netlog 24\Notifier\Netlog24Notifier.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
C:\Program Files\Windows Live\installer\WLSetupSvc.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\WINDOWS\system32\rsvp.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE
C:\Program Files\Microsoft\Office Live\OfficeLiveSignIn.exe
C:\Documents and Settings\AMINE\Mes documents\Downloads\Programs\HiJackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.live.com/sphome.aspx
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: ooVoo Toolbar - {A057A204-BACC-4D26-8087-36EE87E26986} - C:\PROGRA~1\OOVOOT~1\OOVOOT~1.DLL
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: ooVoo Toolbar - {A057A204-BACC-4D26-8087-36EE87E26986} - C:\PROGRA~1\OOVOOT~1\OOVOOT~1.DLL
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Athan] C:\Program Files\Athan\Athan.exe
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe"
O4 - HKLM\..\Run: [Abadisoft.usbFireWall] "C:\Program Files\Abadisoft\USB Firewall 5.0\USBFireWall.exe" startup
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [oovoo.exe] C:\Program Files\ooVoo\oovoo.exe /minimized
O4 - HKCU\..\Run: [Netlog 24] "C:\Program Files\Netlog 24\Notifier\Netlog24Notifier.exe"
O4 - HKCU\..\Run: [EPSON Stylus DX4400 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATICAE.EXE /FU "C:\WINDOWS\TEMP\E_S2A5.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: Ajouter à Kaspersky Anti-Bannière - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\ie_banner_deny.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Télécharger avec IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Télécharger le contenu de video FLV avec IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: Télécharger tous les liens avec IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O9 - Extra button: Statistiques d’Anti-Virus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\SCIEPlgn.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{62C65935-FF84-4FF5-B66B-D7D468D35D4F}: NameServer = 208.67.222.222 208.67.220.220
O17 - HKLM\System\CS1\Services\Tcpip\..\{62C65935-FF84-4FF5-B66B-D7D468D35D4F}: NameServer = 208.67.222.222 208.67.220.220
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Kaspersky Internet Security 7.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Service Google Update (gupdate1c9b446c3c180de) (gupdate1c9b446c3c180de) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
--
End of file - 10026 bytes
Rapport LopSD
--------------------\\ Lop S&D 4.2.5-0 XP/Vista
Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : Intel(R) Celeron(R) CPU 2.80GHz )
BIOS : Default System BIOS
USER : AMINE ( Administrator )
BOOT : Normal boot
Antivirus : Kaspersky Internet Security 7.0.0.125 (Activated)
Firewall : Kaspersky Internet Security 7.0.0.125 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:39 Go (Free:24 Go)
D:\ (CD or DVD)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 19/04/2009|19:09 )
--------------------\\ Listing des dossiers dans APPLIC~1
[01/04/2009|15:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[13/04/2009|00:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[01/04/2009|15:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[01/04/2009|15:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[01/04/2009|15:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\EPSON
[19/04/2009|09:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab
[01/04/2009|15:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab Setup Files
[02/04/2009|14:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[01/04/2009|18:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[19/04/2009|13:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[14/04/2009|15:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[07/04/2009|00:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[04/04/2009|12:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\UDL
[09/04/2009|14:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[19/04/2009|12:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[14/04/2009|14:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo!
[01/04/2009|17:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion
[01/04/2009|17:15] C:\DOCUME~1\AMINE\APPLIC~1\Adobe
[03/04/2009|21:47] C:\DOCUME~1\AMINE\APPLIC~1\Apple Computer
[01/04/2009|17:52] C:\DOCUME~1\AMINE\APPLIC~1\Avant Profiles
[06/04/2009|23:29] C:\DOCUME~1\AMINE\APPLIC~1\CVitae
[01/04/2009|15:31] C:\DOCUME~1\AMINE\APPLIC~1\DivX
[19/04/2009|09:47] C:\DOCUME~1\AMINE\APPLIC~1\DMCache
[04/04/2009|11:59] C:\DOCUME~1\AMINE\APPLIC~1\EPSON
[01/04/2009|15:24] C:\DOCUME~1\AMINE\APPLIC~1\Flock
[17/04/2009|19:38] C:\DOCUME~1\AMINE\APPLIC~1\Help
[01/04/2009|14:54] C:\DOCUME~1\AMINE\APPLIC~1\Identities
[19/04/2009|09:48] C:\DOCUME~1\AMINE\APPLIC~1\IDM
[01/04/2009|15:43] C:\DOCUME~1\AMINE\APPLIC~1\InstallShield
[01/04/2009|15:06] C:\DOCUME~1\AMINE\APPLIC~1\InterTrust
[01/04/2009|17:15] C:\DOCUME~1\AMINE\APPLIC~1\Macromedia
[02/04/2009|14:19] C:\DOCUME~1\AMINE\APPLIC~1\Malwarebytes
[19/04/2009|18:37] C:\DOCUME~1\AMINE\APPLIC~1\Microsoft
[01/04/2009|15:19] C:\DOCUME~1\AMINE\APPLIC~1\Mozilla
[01/04/2009|20:46] C:\DOCUME~1\AMINE\APPLIC~1\Netscape
[01/04/2009|15:24] C:\DOCUME~1\AMINE\APPLIC~1\ooVoo Details
[02/04/2009|17:45] C:\DOCUME~1\AMINE\APPLIC~1\oovooToolbar
[01/04/2009|15:25] C:\DOCUME~1\AMINE\APPLIC~1\Opera
[03/04/2009|22:18] C:\DOCUME~1\AMINE\APPLIC~1\Real
[18/04/2009|19:05] C:\DOCUME~1\AMINE\APPLIC~1\Skype
[18/04/2009|18:20] C:\DOCUME~1\AMINE\APPLIC~1\skypePM
[01/04/2009|17:01] C:\DOCUME~1\AMINE\APPLIC~1\Sun
[07/04/2009|19:13] C:\DOCUME~1\AMINE\APPLIC~1\WinCare2008
[01/04/2009|15:13] C:\DOCUME~1\AMINE\APPLIC~1\WinRAR
[01/04/2009|14:45] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[01/04/2009|14:51] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[06/04/2009|17:23] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[19/04/2009 18:35][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[19/04/2009 09:47][--a------] C:\WINDOWS\tasks\GoogleUpdateTaskMachine.job
[01/04/2009 15:20][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[19/04/2009 09:47][--ah-----] C:\WINDOWS\tasks\SA.DAT
[02/10/2001 20:18][-r-h-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ Listing des dossiers dans C:\Program Files
[07/04/2009|17:16] C:\Program Files\Abadisoft
[04/04/2009|12:43] C:\Program Files\ABBYY FineReader 6.0 Sprint
[13/04/2009|00:26] C:\Program Files\Adobe
[01/04/2009|15:20] C:\Program Files\Apple Software Update
[01/04/2009|15:27] C:\Program Files\Athan
[01/04/2009|17:52] C:\Program Files\Avant Browser
[18/04/2009|20:27] C:\Program Files\BeyondPhone
[01/04/2009|15:21] C:\Program Files\Bonjour
[01/04/2009|15:26] C:\Program Files\CCleaner
[01/04/2009|18:46] C:\Program Files\Circle Develoement
[01/04/2009|15:03] C:\Program Files\C-Media 3D Audio
[01/04/2009|14:42] C:\Program Files\ComPlus Applications
[10/04/2009|14:02] C:\Program Files\Crocodile Clips
[01/04/2009|15:23] C:\Program Files\DivX
[04/04/2009|12:50] C:\Program Files\epson
[14/04/2009|15:38] C:\Program Files\Fichiers communs
[16/04/2009|22:05] C:\Program Files\Flock
[03/04/2009|12:27] C:\Program Files\Google
[07/04/2009|18:01] C:\Program Files\InCode Solutions
[18/04/2009|20:27] C:\Program Files\InstallShield Installation Information
[01/04/2009|15:05] C:\Program Files\Intel
[16/04/2009|09:26] C:\Program Files\Internet Download Manager
[16/04/2009|18:59] C:\Program Files\Internet Explorer
[01/04/2009|15:21] C:\Program Files\iPod
[01/04/2009|15:21] C:\Program Files\iTunes
[02/04/2009|21:57] C:\Program Files\Java
[01/04/2009|15:52] C:\Program Files\Kaspersky Lab
[01/04/2009|15:32] C:\Program Files\Lavasoft
[17/04/2009|17:51] C:\Program Files\Malwarebytes' Anti-Malware
[02/04/2009|00:58] C:\Program Files\Messenger
[05/04/2009|11:59] C:\Program Files\Messenger Plus! Live
[12/04/2009|13:57] C:\Program Files\Microsoft
[01/04/2009|14:45] C:\Program Files\microsoft frontpage
[01/04/2009|15:00] C:\Program Files\Microsoft Office
[12/04/2009|13:57] C:\Program Files\Microsoft Office Outlook Connector
[13/04/2009|18:56] C:\Program Files\Microsoft Silverlight
[06/04/2009|14:02] C:\Program Files\Microsoft SQL Server Compact Edition
[01/04/2009|15:01] C:\Program Files\Microsoft.NET
[06/04/2009|23:29] C:\Program Files\MonProduit
[01/04/2009|14:43] C:\Program Files\Movie Maker
[19/04/2009|19:06] C:\Program Files\Mozilla Firefox
[01/04/2009|14:41] C:\Program Files\MSN
[01/04/2009|14:41] C:\Program Files\MSN Gaming Zone
[16/04/2009|20:49] C:\Program Files\Muslim Bag
[01/04/2009|15:29] C:\Program Files\Netlog 24
[01/04/2009|14:43] C:\Program Files\NetMeeting
[01/04/2009|20:46] C:\Program Files\Netscape
[01/04/2009|14:41] C:\Program Files\Online Services
[05/04/2009|01:05] C:\Program Files\Ontrack
[01/04/2009|15:24] C:\Program Files\ooVoo
[01/04/2009|15:24] C:\Program Files\oovooToolbar
[01/04/2009|15:25] C:\Program Files\Opera
[01/04/2009|14:43] C:\Program Files\Outlook Express
[04/04/2009|23:50] C:\Program Files\PC Inspector File Recovery
[04/04/2009|22:21] C:\Program Files\PowerDataRecovery
[01/04/2009|15:21] C:\Program Files\QuickTime
[03/04/2009|13:28] C:\Program Files\Real
[01/04/2009|14:43] C:\Program Files\Services en ligne
[14/04/2009|15:38] C:\Program Files\Skype
[07/04/2009|00:50] C:\Program Files\Spybot - Search & Destroy
[01/04/2009|14:54] C:\Program Files\Uninstall Information
[07/04/2009|13:34] C:\Program Files\UsbFix
[19/04/2009|13:58] C:\Program Files\Windows Live
[19/04/2009|13:26] C:\Program Files\Windows Live Favorites
[12/04/2009|13:52] C:\Program Files\Windows Live SkyDrive
[19/04/2009|13:26] C:\Program Files\Windows Live Toolbar
[01/04/2009|14:45] C:\Program Files\Windows Media Player
[01/04/2009|14:41] C:\Program Files\Windows NT
[01/04/2009|14:43] C:\Program Files\WindowsUpdate
[01/04/2009|15:13] C:\Program Files\WinRar
[01/04/2009|14:45] C:\Program Files\xerox
[01/04/2009|15:26] C:\Program Files\Yahoo!
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[13/04/2009|00:26] C:\Program Files\Fichiers communs\Adobe
[01/04/2009|15:21] C:\Program Files\Fichiers communs\Apple
[01/04/2009|15:00] C:\Program Files\Fichiers communs\DESIGNER
[01/04/2009|15:47] C:\Program Files\Fichiers communs\InstallShield
[14/04/2009|14:52] C:\Program Files\Fichiers communs\Microsoft Shared
[01/04/2009|14:43] C:\Program Files\Fichiers communs\MSSoap
[01/04/2009|16:31] C:\Program Files\Fichiers communs\ODBC
[03/04/2009|13:32] C:\Program Files\Fichiers communs\Real
[01/04/2009|14:43] C:\Program Files\Fichiers communs\Services
[14/04/2009|15:38] C:\Program Files\Fichiers communs\Skype
[01/04/2009|16:31] C:\Program Files\Fichiers communs\SpeechEngines
[12/04/2009|13:57] C:\Program Files\Fichiers communs\System
[12/04/2009|11:27] C:\Program Files\Fichiers communs\Windows Live
[06/04/2009|12:22] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[03/04/2009|13:33] C:\Program Files\Fichiers communs\xing shared
--------------------\\ Process
( 44 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-04-19 19:13:49
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------\\ Recherche d'autres infections
--------------------\\ Cracks & Keygens ..
C:\DOCUME~1\AMINE\Bureau\Crocodile.Chemistry.v605\keygen.exe
[F:4][D:0]-> C:\DOCUME~1\AMINE\LOCALS~1\Temp
[F:1][D:0]-> C:\DOCUME~1\AMINE\Cookies
[F:1][D:0]-> C:\DOCUME~1\AMINE\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 02/04/2009|13:58 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 05/04/2009|23:48 - Option : [1]
3 - "C:\Lop SD\LopR_3.txt" - 19/04/2009|19:15 - Option : [1]
--------------------\\ Fin du rapport a 19:15:52
SVp qui veut intérpréter mon rapport Hijackthis et LopSD
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:19:40, on 19/04/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\RunDll32.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Athan\Athan.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
C:\Program Files\Abadisoft\USB Firewall 5.0\USBFireWall.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\ooVoo\oovoo.exe
C:\Program Files\Netlog 24\Notifier\Netlog24Notifier.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
C:\Program Files\Windows Live\installer\WLSetupSvc.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\WINDOWS\system32\rsvp.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE
C:\Program Files\Microsoft\Office Live\OfficeLiveSignIn.exe
C:\Documents and Settings\AMINE\Mes documents\Downloads\Programs\HiJackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.live.com/sphome.aspx
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: ooVoo Toolbar - {A057A204-BACC-4D26-8087-36EE87E26986} - C:\PROGRA~1\OOVOOT~1\OOVOOT~1.DLL
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: ooVoo Toolbar - {A057A204-BACC-4D26-8087-36EE87E26986} - C:\PROGRA~1\OOVOOT~1\OOVOOT~1.DLL
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Athan] C:\Program Files\Athan\Athan.exe
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe"
O4 - HKLM\..\Run: [Abadisoft.usbFireWall] "C:\Program Files\Abadisoft\USB Firewall 5.0\USBFireWall.exe" startup
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [oovoo.exe] C:\Program Files\ooVoo\oovoo.exe /minimized
O4 - HKCU\..\Run: [Netlog 24] "C:\Program Files\Netlog 24\Notifier\Netlog24Notifier.exe"
O4 - HKCU\..\Run: [EPSON Stylus DX4400 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATICAE.EXE /FU "C:\WINDOWS\TEMP\E_S2A5.tmp" /EF "HKCU"
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: Ajouter à Kaspersky Anti-Bannière - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\ie_banner_deny.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Télécharger avec IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Télécharger le contenu de video FLV avec IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: Télécharger tous les liens avec IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O9 - Extra button: Statistiques d’Anti-Virus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\SCIEPlgn.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{62C65935-FF84-4FF5-B66B-D7D468D35D4F}: NameServer = 208.67.222.222 208.67.220.220
O17 - HKLM\System\CS1\Services\Tcpip\..\{62C65935-FF84-4FF5-B66B-D7D468D35D4F}: NameServer = 208.67.222.222 208.67.220.220
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Kaspersky Internet Security 7.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Service Google Update (gupdate1c9b446c3c180de) (gupdate1c9b446c3c180de) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
--
End of file - 10026 bytes
Rapport LopSD
--------------------\\ Lop S&D 4.2.5-0 XP/Vista
Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : Intel(R) Celeron(R) CPU 2.80GHz )
BIOS : Default System BIOS
USER : AMINE ( Administrator )
BOOT : Normal boot
Antivirus : Kaspersky Internet Security 7.0.0.125 (Activated)
Firewall : Kaspersky Internet Security 7.0.0.125 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:39 Go (Free:24 Go)
D:\ (CD or DVD)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 19/04/2009|19:09 )
--------------------\\ Listing des dossiers dans APPLIC~1
[01/04/2009|15:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[13/04/2009|00:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[01/04/2009|15:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[01/04/2009|15:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[01/04/2009|15:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\EPSON
[19/04/2009|09:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab
[01/04/2009|15:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab Setup Files
[02/04/2009|14:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[01/04/2009|18:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[19/04/2009|13:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[14/04/2009|15:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[07/04/2009|00:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[04/04/2009|12:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\UDL
[09/04/2009|14:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[19/04/2009|12:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[14/04/2009|14:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo!
[01/04/2009|17:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion
[01/04/2009|17:15] C:\DOCUME~1\AMINE\APPLIC~1\Adobe
[03/04/2009|21:47] C:\DOCUME~1\AMINE\APPLIC~1\Apple Computer
[01/04/2009|17:52] C:\DOCUME~1\AMINE\APPLIC~1\Avant Profiles
[06/04/2009|23:29] C:\DOCUME~1\AMINE\APPLIC~1\CVitae
[01/04/2009|15:31] C:\DOCUME~1\AMINE\APPLIC~1\DivX
[19/04/2009|09:47] C:\DOCUME~1\AMINE\APPLIC~1\DMCache
[04/04/2009|11:59] C:\DOCUME~1\AMINE\APPLIC~1\EPSON
[01/04/2009|15:24] C:\DOCUME~1\AMINE\APPLIC~1\Flock
[17/04/2009|19:38] C:\DOCUME~1\AMINE\APPLIC~1\Help
[01/04/2009|14:54] C:\DOCUME~1\AMINE\APPLIC~1\Identities
[19/04/2009|09:48] C:\DOCUME~1\AMINE\APPLIC~1\IDM
[01/04/2009|15:43] C:\DOCUME~1\AMINE\APPLIC~1\InstallShield
[01/04/2009|15:06] C:\DOCUME~1\AMINE\APPLIC~1\InterTrust
[01/04/2009|17:15] C:\DOCUME~1\AMINE\APPLIC~1\Macromedia
[02/04/2009|14:19] C:\DOCUME~1\AMINE\APPLIC~1\Malwarebytes
[19/04/2009|18:37] C:\DOCUME~1\AMINE\APPLIC~1\Microsoft
[01/04/2009|15:19] C:\DOCUME~1\AMINE\APPLIC~1\Mozilla
[01/04/2009|20:46] C:\DOCUME~1\AMINE\APPLIC~1\Netscape
[01/04/2009|15:24] C:\DOCUME~1\AMINE\APPLIC~1\ooVoo Details
[02/04/2009|17:45] C:\DOCUME~1\AMINE\APPLIC~1\oovooToolbar
[01/04/2009|15:25] C:\DOCUME~1\AMINE\APPLIC~1\Opera
[03/04/2009|22:18] C:\DOCUME~1\AMINE\APPLIC~1\Real
[18/04/2009|19:05] C:\DOCUME~1\AMINE\APPLIC~1\Skype
[18/04/2009|18:20] C:\DOCUME~1\AMINE\APPLIC~1\skypePM
[01/04/2009|17:01] C:\DOCUME~1\AMINE\APPLIC~1\Sun
[07/04/2009|19:13] C:\DOCUME~1\AMINE\APPLIC~1\WinCare2008
[01/04/2009|15:13] C:\DOCUME~1\AMINE\APPLIC~1\WinRAR
[01/04/2009|14:45] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[01/04/2009|14:51] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[06/04/2009|17:23] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[19/04/2009 18:35][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[19/04/2009 09:47][--a------] C:\WINDOWS\tasks\GoogleUpdateTaskMachine.job
[01/04/2009 15:20][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[19/04/2009 09:47][--ah-----] C:\WINDOWS\tasks\SA.DAT
[02/10/2001 20:18][-r-h-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ Listing des dossiers dans C:\Program Files
[07/04/2009|17:16] C:\Program Files\Abadisoft
[04/04/2009|12:43] C:\Program Files\ABBYY FineReader 6.0 Sprint
[13/04/2009|00:26] C:\Program Files\Adobe
[01/04/2009|15:20] C:\Program Files\Apple Software Update
[01/04/2009|15:27] C:\Program Files\Athan
[01/04/2009|17:52] C:\Program Files\Avant Browser
[18/04/2009|20:27] C:\Program Files\BeyondPhone
[01/04/2009|15:21] C:\Program Files\Bonjour
[01/04/2009|15:26] C:\Program Files\CCleaner
[01/04/2009|18:46] C:\Program Files\Circle Develoement
[01/04/2009|15:03] C:\Program Files\C-Media 3D Audio
[01/04/2009|14:42] C:\Program Files\ComPlus Applications
[10/04/2009|14:02] C:\Program Files\Crocodile Clips
[01/04/2009|15:23] C:\Program Files\DivX
[04/04/2009|12:50] C:\Program Files\epson
[14/04/2009|15:38] C:\Program Files\Fichiers communs
[16/04/2009|22:05] C:\Program Files\Flock
[03/04/2009|12:27] C:\Program Files\Google
[07/04/2009|18:01] C:\Program Files\InCode Solutions
[18/04/2009|20:27] C:\Program Files\InstallShield Installation Information
[01/04/2009|15:05] C:\Program Files\Intel
[16/04/2009|09:26] C:\Program Files\Internet Download Manager
[16/04/2009|18:59] C:\Program Files\Internet Explorer
[01/04/2009|15:21] C:\Program Files\iPod
[01/04/2009|15:21] C:\Program Files\iTunes
[02/04/2009|21:57] C:\Program Files\Java
[01/04/2009|15:52] C:\Program Files\Kaspersky Lab
[01/04/2009|15:32] C:\Program Files\Lavasoft
[17/04/2009|17:51] C:\Program Files\Malwarebytes' Anti-Malware
[02/04/2009|00:58] C:\Program Files\Messenger
[05/04/2009|11:59] C:\Program Files\Messenger Plus! Live
[12/04/2009|13:57] C:\Program Files\Microsoft
[01/04/2009|14:45] C:\Program Files\microsoft frontpage
[01/04/2009|15:00] C:\Program Files\Microsoft Office
[12/04/2009|13:57] C:\Program Files\Microsoft Office Outlook Connector
[13/04/2009|18:56] C:\Program Files\Microsoft Silverlight
[06/04/2009|14:02] C:\Program Files\Microsoft SQL Server Compact Edition
[01/04/2009|15:01] C:\Program Files\Microsoft.NET
[06/04/2009|23:29] C:\Program Files\MonProduit
[01/04/2009|14:43] C:\Program Files\Movie Maker
[19/04/2009|19:06] C:\Program Files\Mozilla Firefox
[01/04/2009|14:41] C:\Program Files\MSN
[01/04/2009|14:41] C:\Program Files\MSN Gaming Zone
[16/04/2009|20:49] C:\Program Files\Muslim Bag
[01/04/2009|15:29] C:\Program Files\Netlog 24
[01/04/2009|14:43] C:\Program Files\NetMeeting
[01/04/2009|20:46] C:\Program Files\Netscape
[01/04/2009|14:41] C:\Program Files\Online Services
[05/04/2009|01:05] C:\Program Files\Ontrack
[01/04/2009|15:24] C:\Program Files\ooVoo
[01/04/2009|15:24] C:\Program Files\oovooToolbar
[01/04/2009|15:25] C:\Program Files\Opera
[01/04/2009|14:43] C:\Program Files\Outlook Express
[04/04/2009|23:50] C:\Program Files\PC Inspector File Recovery
[04/04/2009|22:21] C:\Program Files\PowerDataRecovery
[01/04/2009|15:21] C:\Program Files\QuickTime
[03/04/2009|13:28] C:\Program Files\Real
[01/04/2009|14:43] C:\Program Files\Services en ligne
[14/04/2009|15:38] C:\Program Files\Skype
[07/04/2009|00:50] C:\Program Files\Spybot - Search & Destroy
[01/04/2009|14:54] C:\Program Files\Uninstall Information
[07/04/2009|13:34] C:\Program Files\UsbFix
[19/04/2009|13:58] C:\Program Files\Windows Live
[19/04/2009|13:26] C:\Program Files\Windows Live Favorites
[12/04/2009|13:52] C:\Program Files\Windows Live SkyDrive
[19/04/2009|13:26] C:\Program Files\Windows Live Toolbar
[01/04/2009|14:45] C:\Program Files\Windows Media Player
[01/04/2009|14:41] C:\Program Files\Windows NT
[01/04/2009|14:43] C:\Program Files\WindowsUpdate
[01/04/2009|15:13] C:\Program Files\WinRar
[01/04/2009|14:45] C:\Program Files\xerox
[01/04/2009|15:26] C:\Program Files\Yahoo!
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[13/04/2009|00:26] C:\Program Files\Fichiers communs\Adobe
[01/04/2009|15:21] C:\Program Files\Fichiers communs\Apple
[01/04/2009|15:00] C:\Program Files\Fichiers communs\DESIGNER
[01/04/2009|15:47] C:\Program Files\Fichiers communs\InstallShield
[14/04/2009|14:52] C:\Program Files\Fichiers communs\Microsoft Shared
[01/04/2009|14:43] C:\Program Files\Fichiers communs\MSSoap
[01/04/2009|16:31] C:\Program Files\Fichiers communs\ODBC
[03/04/2009|13:32] C:\Program Files\Fichiers communs\Real
[01/04/2009|14:43] C:\Program Files\Fichiers communs\Services
[14/04/2009|15:38] C:\Program Files\Fichiers communs\Skype
[01/04/2009|16:31] C:\Program Files\Fichiers communs\SpeechEngines
[12/04/2009|13:57] C:\Program Files\Fichiers communs\System
[12/04/2009|11:27] C:\Program Files\Fichiers communs\Windows Live
[06/04/2009|12:22] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[03/04/2009|13:33] C:\Program Files\Fichiers communs\xing shared
--------------------\\ Process
( 44 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-04-19 19:13:49
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------\\ Recherche d'autres infections
--------------------\\ Cracks & Keygens ..
C:\DOCUME~1\AMINE\Bureau\Crocodile.Chemistry.v605\keygen.exe
[F:4][D:0]-> C:\DOCUME~1\AMINE\LOCALS~1\Temp
[F:1][D:0]-> C:\DOCUME~1\AMINE\Cookies
[F:1][D:0]-> C:\DOCUME~1\AMINE\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 02/04/2009|13:58 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 05/04/2009|23:48 - Option : [1]
3 - "C:\Lop SD\LopR_3.txt" - 19/04/2009|19:15 - Option : [1]
--------------------\\ Fin du rapport a 19:15:52
Configuration: Windows XP Firefox 3.0.8
A voir également:
- Interprétation Rapport Hijack this et LopSd
- Hijack this - Télécharger - Antivirus & Antimalwares
- Plan rapport de stage - Guide
- Rapport de crash windows - Guide
- Un exemple de rapport de travail ✓ - <a href="https://forums.commentcamarche.net/forum/word-141">Forum Word</a>
- Rapport de prospection commerciale word ✓ - <a href="https://forums.commentcamarche.net/forum/word-141">Forum Word</a>
