Publicite intempestive

Résolu
keta42 Messages postés 137 Statut Membre -  
jorginho67 Messages postés 15447 Statut Contributeur sécurité -
Bonjour, je voudrait savoir comment peut on empecher les pub intempestive j en ai pas mal qui arrive a chaque fois que je me connecte sur internet ci quelqu un pouvait m aider merci d avance

40 réponses

Précédent
  • 1
  • 2
Réponse 21 / 40
keta42 Messages postés 137 Statut Membre
 
et j ai plus de pub qui s affiche merci
0
Réponse 22 / 40
jorginho67 Messages postés 15447 Statut Contributeur sécurité 1 169
 
Bon, il reste encore des merdouilles

Sauvegarde ces instructions car il faudra fermer toutes les fenêtres et applications lors de l'installation et de l'analyse.

Clic droit sur le bureau => nouveau => document texte => double clique dessus et copi/colle ces instructions que tu pourras consulter pour faire la manip' correctement !

Ferme toutes les autres fenêtres, tous les autres programmes. Pas de connections Internet.


• Relance HijackThis par clic droit => executer en tant qu'admin , choisis "do a scan only"
coche la case devant les lignes ci-dessous et clic en bas sur "fix checked", puis clique sur OK.

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&l=040c&s=2&o=vp32&d=0209&m=aspire_7730zg
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&l=040c&s=2&o=vp32&d=0209&m=aspire_7730zg
R3 - URLSearchHook: SearchHelper Class - {91C18ED5-5E1C-4AE5-A148-A861DE8C8E16} - C:\Program Files\SGPSA\mtwb3sh.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Assistant - {F0626A63-410B-45E2-99A1-3F2475B2D695} - C:\Program Files\SGPSA\BHO.dll
O2 - BHO: XBTBPos00 - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files\Fast Browser Search\IE\FBStoolbar.dll
O3 - Toolbar: Fast Browser Search Toolbar - {1BB22D38-A411-4B13-A746-C2A4F4EC7344} - C:\Program Files\Fast Browser Search\IE\FBStoolbar.dll
O4 - HKLM\..\Run: [PLFSetI] C:\Windows\PLFSetI.exe

Comment fixer les lignes et Générer un rapport
(merci balltrap34)

Ferme HijackThis.

Fais redémarrer ton PC

Télécharge LopSD.exe sur ton Bureau
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2

* Double-clique dessus pour lancer l'installation
* Clique droit sur le raccourci Lop S&D présent sur ton Bureau puis " Exécuter en tant qu'administrateur "
* Séléctionne la langue souhaitée, puis choisis l'option 1 (Recherche)
* Patiente jusqu'à la fin du scan
* Poste le rapport généré qui se trouve ici => (C:\lopR.txt)

(Si le Bureau ne réapparait pas, presse Ctrl+Alt+Suppr, Onglet Fichier, Nouvelle tâche, tape explorer.exe et valide)

Si tu as un problème pour utiliser Lop S&D, regarde ce tutorial

0
Réponse 23 / 40
keta42 Messages postés 137 Statut Membre
 
bon ok j ai fixer les ligne que tu ma dit et fait un scan avec lopSD et voici le rapport



--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Pentium(R) Dual-Core CPU T4200 @ 2.00GHz )
BIOS : ZY2 v0.3611 3F11
USER : anais ( Not Administrator ! )
BOOT : Normal boot
C:\ (Local Disk) - NTFS - Total:109 Go (Free:20 Go)
D:\ (Local Disk) - NTFS - Total:109 Go (Free:66 Go)
E:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 29/10/2009|13:17 )

[ UAC => 1 ]

--------------------\\ Listing des dossiers dans Local

[09/08/2009|17:37] C:\Users\anais\AppData\Local\Acer Arcade Deluxe
[15/08/2009|19:16] C:\Users\anais\AppData\Local\Adobe
[09/08/2009|10:16] C:\Users\anais\AppData\Local\Application Data
[09/08/2009|17:37] C:\Users\anais\AppData\Local\CyberLink
[26/10/2009|00:20] C:\Users\anais\AppData\Local\d3d9caps.dat
[29/10/2009|01:12] C:\Users\anais\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[27/10/2009|14:11] C:\Users\anais\AppData\Local\etqhf.bat
[11/10/2009|17:53] C:\Users\anais\AppData\Local\GDIPFONTCACHEV1.DAT
[21/08/2009|12:32] C:\Users\anais\AppData\Local\Google
[09/08/2009|10:16] C:\Users\anais\AppData\Local\Historique
[29/10/2009|13:10] C:\Users\anais\AppData\Local\IconCache.db
[09/08/2009|10:42] C:\Users\anais\AppData\Local\JollyBear
[28/08/2009|18:56] C:\Users\anais\AppData\Local\Microsoft
[09/10/2009|21:49] C:\Users\anais\AppData\Local\Microsoft Games
[09/08/2009|22:36] C:\Users\anais\AppData\Local\PlayMovie
[13/08/2009|01:43] C:\Users\anais\AppData\Local\PowerCinema
[30/08/2009|14:45] C:\Users\anais\AppData\Local\PunkBuster
[09/08/2009|17:37] C:\Users\anais\AppData\Local\SoftDMA
[29/10/2009|13:17] C:\Users\anais\AppData\Local\Temp
[09/08/2009|10:16] C:\Users\anais\AppData\Local\Temporary Internet Files
[28/10/2009|12:14] C:\Users\anais\AppData\Local\VirtualStore

--------------------\\ Tâches planifiées dans C:\Windows\tasks

[29/10/2009 13:11][--ah-----] C:\Windows\tasks\SA.DAT
[29/10/2009 13:11][--a------] C:\Windows\tasks\SCHEDLGU.TXT

--------------------\\ Listing des dossiers dans C:\ProgramData

[10/01/2009|17:18] C:\ProgramData\Acer GameZone Console
[10/01/2009|17:27] C:\ProgramData\Adobe
[02/11/2006|14:02] C:\ProgramData\Application Data
[25/10/2009|13:13] C:\ProgramData\Avira
[09/08/2009|10:15] C:\ProgramData\Bureau
[17/10/2009|18:20] C:\ProgramData\CanonBJ
[13/08/2009|01:43] C:\ProgramData\CyberLink
[02/11/2006|14:02] C:\ProgramData\Desktop
[02/11/2006|14:02] C:\ProgramData\Documents
[10/01/2009|17:36] C:\ProgramData\eSobi
[09/08/2009|10:15] C:\ProgramData\Favoris
[02/11/2006|14:02] C:\ProgramData\Favorites
[10/01/2009|17:08] C:\ProgramData\FloodLightGames
[21/08/2009|10:23] C:\ProgramData\Google
[08/09/2009|02:42] C:\ProgramData\InterAction studios
[09/08/2009|10:42] C:\ProgramData\JollyBear
[28/10/2009|12:03] C:\ProgramData\Malwarebytes
[25/10/2009|13:22] C:\ProgramData\McAfee
[09/08/2009|10:15] C:\ProgramData\Menu D‚marrer
[26/08/2009|13:30] C:\ProgramData\Messenger Plus!
[30/09/2009|19:03] C:\ProgramData\Microsoft
[15/10/2009|09:11] C:\ProgramData\Microsoft Help
[09/08/2009|10:15] C:\ProgramData\ModŠles
[09/08/2009|13:36] C:\ProgramData\NVIDIA
[29/10/2009|13:12] C:\ProgramData\nvModes.001
[29/10/2009|13:06] C:\ProgramData\nvModes.dat
[31/08/2009|18:07] C:\ProgramData\Oberon Games
[10/01/2009|16:45] C:\ProgramData\SiteAdvisor
[31/08/2009|19:49] C:\ProgramData\SpinTop Games
[02/11/2006|14:02] C:\ProgramData\Start Menu
[09/09/2009|23:32] C:\ProgramData\TEMP
[02/11/2006|14:02] C:\ProgramData\Templates
[11/10/2009|17:28] C:\ProgramData\Ulead Systems

--------------------\\ Listing des dossiers dans C:\Program Files

[09/08/2009|10:16] C:\Program Files\Acer
[23/02/2009|10:33] C:\Program Files\Acer Arcade Deluxe
[10/01/2009|17:18] C:\Program Files\Acer GameZone
[23/02/2009|10:27] C:\Program Files\Acer Inc
[23/02/2009|10:42] C:\Program Files\Acer Incorporated
[10/01/2009|17:27] C:\Program Files\Adobe
[01/09/2009|19:04] C:\Program Files\Ask Search Assistant
[25/10/2009|13:13] C:\Program Files\Avira
[10/01/2009|17:18] C:\Program Files\Big Kahuna Reef
[10/01/2009|16:29] C:\Program Files\Broadcom
[28/10/2009|11:56] C:\Program Files\CCleaner
[09/08/2009|17:44] C:\Program Files\Circle Develpement
[25/10/2009|13:22] C:\Program Files\Common Files
[10/01/2009|17:23] C:\Program Files\Convesoft
[11/10/2009|17:25] C:\Program Files\Corel
[23/02/2009|10:42] C:\Program Files\Cyberlink
[22/08/2009|17:31] C:\Program Files\DsNET Corp
[30/09/2009|19:03] C:\Program Files\Easy Gif Animator Extension
[10/01/2009|17:35] C:\Program Files\eSobi
[13/09/2009|19:38] C:\Program Files\Fast Browser Search
[09/08/2009|10:15] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[23/09/2009|15:54] C:\Program Files\Free Download Manager
[21/08/2009|11:25] C:\Program Files\Google
[11/10/2009|17:28] C:\Program Files\InstallShield Installation Information
[23/02/2009|10:21] C:\Program Files\Intel
[15/10/2009|09:30] C:\Program Files\Internet Explorer
[21/08/2009|01:44] C:\Program Files\Java
[23/02/2009|10:24] C:\Program Files\Launch Manager
[21/08/2009|01:45] C:\Program Files\LimeWire
[28/10/2009|12:03] C:\Program Files\Malwarebytes' Anti-Malware
[01/09/2009|19:04] C:\Program Files\Messenger Plus! Live
[01/09/2009|18:51] C:\Program Files\Microsoft
[02/11/2006|13:37] C:\Program Files\Microsoft Games
[10/01/2009|16:51] C:\Program Files\Microsoft Office
[10/01/2009|16:51] C:\Program Files\Microsoft Office Suite Activation Assistant
[09/09/2009|10:45] C:\Program Files\Microsoft Silverlight
[01/09/2009|18:49] C:\Program Files\Microsoft SQL Server Compact Edition
[01/09/2009|18:50] C:\Program Files\Microsoft Sync Framework
[15/10/2009|09:09] C:\Program Files\Microsoft Works
[10/01/2009|16:49] C:\Program Files\Microsoft.NET
[21/01/2008|03:35] C:\Program Files\Movie Maker
[12/08/2009|16:32] C:\Program Files\Mozilla Firefox
[02/11/2006|13:37] C:\Program Files\MSBuild
[10/01/2009|16:00] C:\Program Files\MSXML 4.0
[27/10/2009|14:43] C:\Program Files\Navilog1
[10/01/2009|17:22] C:\Program Files\NewTech Infosystems
[18/08/2009|12:33] C:\Program Files\PhotoFiltre
[10/01/2009|16:20] C:\Program Files\Realtek
[02/11/2006|13:37] C:\Program Files\Reference Assemblies
[13/09/2009|19:39] C:\Program Files\Search Guard Plus
[13/09/2009|19:39] C:\Program Files\Search Guard PlusU
[13/09/2009|19:39] C:\Program Files\SGPSA
[10/01/2009|16:26] C:\Program Files\Synaptics
[27/10/2009|13:33] C:\Program Files\Trend Micro
[02/11/2006|14:01] C:\Program Files\Uninstall Information
[12/08/2009|16:32] C:\Program Files\uTorrent
[16/08/2009|16:49] C:\Program Files\VideoLAN
[10/01/2009|16:28] C:\Program Files\Winbond Electronics Corporation
[21/01/2008|03:35] C:\Program Files\Windows Calendar
[21/01/2008|03:35] C:\Program Files\Windows Collaboration
[21/01/2008|03:35] C:\Program Files\Windows Defender
[21/01/2008|03:35] C:\Program Files\Windows Journal
[01/09/2009|18:51] C:\Program Files\Windows Live
[10/01/2009|17:04] C:\Program Files\Windows Live SkyDrive
[10/01/2009|14:40] C:\Program Files\Windows Mail
[13/08/2009|03:06] C:\Program Files\Windows Media Player
[09/08/2009|10:15] C:\Program Files\Windows NT
[21/01/2008|03:35] C:\Program Files\Windows Photo Gallery
[21/01/2008|03:35] C:\Program Files\Windows Sidebar
[30/08/2009|13:00] C:\Program Files\Wolfenstein - Enemy Territory

--------------------\\ Listing des dossiers dans C:\Program Files\Common Files

[10/01/2009|17:27] C:\Program Files\Common Files\Adobe
[10/01/2009|16:49] C:\Program Files\Common Files\DESIGNER
[10/01/2009|17:00] C:\Program Files\Common Files\InstallShield
[10/01/2009|17:22] C:\Program Files\Common Files\LightScribe
[11/10/2009|17:28] C:\Program Files\Common Files\microsoft shared
[10/01/2009|17:20] C:\Program Files\Common Files\muvee Technologies
[10/01/2009|17:08] C:\Program Files\Common Files\Oberon Media
[02/11/2006|12:18] C:\Program Files\Common Files\Services
[02/11/2006|12:18] C:\Program Files\Common Files\SpeechEngines
[21/01/2008|03:35] C:\Program Files\Common Files\System
[11/10/2009|17:28] C:\Program Files\Common Files\Ulead Systems
[10/01/2009|17:03] C:\Program Files\Common Files\Windows Live

--------------------\\ Process

( 88 Processes )

iexplore.exe ~ [PID:4816]

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-10-29 13:17:18
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:28][D:10]-> C:\Users\anais\AppData\Local\Temp
[F:96][D:1]-> C:\Users\anais\AppData\Roaming\MICROS~1\Windows\Cookies
[F:17][D:4]-> C:\Users\anais\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:4][D:4]-> C:\$Recycle.Bin

1 - "C:\Lop SD\LopR_1.txt" - 29/10/2009|13:18 - Option : [1]

--------------------\\ Fin du rapport a 13:18:20
[ UAC => 1 ]
0
Réponse 24 / 40
jorginho67 Messages postés 15447 Statut Contributeur sécurité 1 169
 
R3 - URLSearchHook: SearchHelper Class - {91C18ED5-5E1C-4AE5-A148-A861DE8C8E16} - C:\Program Files\SGPSA\mtwb3sh.dll

O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll

Ces deux lignes sont suspectes...

Peux tu me faire ceci ?

Assure-toi que l'UAC-User Account Control -contrôle des comptes utilisateurs est bien désactivé.


Télécharge AD-Remover ( de Cyrildu17 / C_XX ) sur ton bureau :


/!\ Déconnecte toi et ferme toutes applications en cours/!\


* Clique droit => " Exécuter en tant qu' Administrateur " sur l'icône Ad-remover située sur ton bureau.

* Au menu principal choisi l'option "s".

Patiente le temps du scan.

<gras>* Poste le rapport qui apparait à la fin .

( le rapport est sauvegardé aussi sous C:\Ad-report(date).log )

(CTRL+A Pour tout selectionner , CTRL+C pour copier et CTRL+V pour coller )

Note :

"Process.exe", une composante de l'outil, est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 25 / 40
Utilisateur anonyme
 
salut :

C:\Program Files\Circle Develpement

LopSD est aveugle !!!!
0
Réponse 26 / 40
jorginho67 Messages postés 15447 Statut Contributeur sécurité 1 169
 
Il le voit, mais ne tilte pas...

Relance LOP S&D

* Choisis cette fois ci l'Option 4
* Une page blanche va s'ouvrir , colles-y ceci :

C:\Program Files\Circle Develpement


Puis ferme la page.
Il te sera demandé de l'enregistrer , clique sur [Oui].
/!\Ne ferme pas la fenêtre lors de la suppression !/!\
Poste le rapport généré (C:\ lopR.txt) aisni qu'un nouveau rapport RSIT.
0
Réponse 27 / 40
keta42 Messages postés 137 Statut Membre
 
bon ok ca fait 3 rapport alors je te les poste dans 3 courrier different le 1 er


RAPPORT AD REMOVER


--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Pentium(R) Dual-Core CPU T4200 @ 2.00GHz )
BIOS : ZY2 v0.3611 3F11
USER : anais ( Not Administrator ! )
BOOT : Normal boot
C:\ (Local Disk) - NTFS - Total:109 Go (Free:26 Go)
D:\ (Local Disk) - NTFS - Total:109 Go (Free:66 Go)
E:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [4] ( 31/10/2009|14:15 )

[ UAC => 0 ]

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ Lop Script

C:\Program Files\Circle Develpement


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

Supprime! - C:\Program Files\Circle Develpement
-
[ Fichier Hosts ] .. Restaure!

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


--------------------\\ Listing des dossiers dans Local

[09/08/2009|17:37] C:\Users\anais\AppData\Local\Acer Arcade Deluxe
[15/08/2009|19:16] C:\Users\anais\AppData\Local\Adobe
[09/08/2009|10:16] C:\Users\anais\AppData\Local\Application Data
[09/08/2009|17:37] C:\Users\anais\AppData\Local\CyberLink
[26/10/2009|00:20] C:\Users\anais\AppData\Local\d3d9caps.dat
[31/10/2009|01:35] C:\Users\anais\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[27/10/2009|14:11] C:\Users\anais\AppData\Local\etqhf.bat
[11/10/2009|17:53] C:\Users\anais\AppData\Local\GDIPFONTCACHEV1.DAT
[21/08/2009|12:32] C:\Users\anais\AppData\Local\Google
[09/08/2009|10:16] C:\Users\anais\AppData\Local\Historique
[31/10/2009|13:47] C:\Users\anais\AppData\Local\IconCache.db
[09/08/2009|10:42] C:\Users\anais\AppData\Local\JollyBear
[28/08/2009|18:56] C:\Users\anais\AppData\Local\Microsoft
[09/10/2009|21:49] C:\Users\anais\AppData\Local\Microsoft Games
[09/08/2009|22:36] C:\Users\anais\AppData\Local\PlayMovie
[13/08/2009|01:43] C:\Users\anais\AppData\Local\PowerCinema
[30/08/2009|14:45] C:\Users\anais\AppData\Local\PunkBuster
[09/08/2009|17:37] C:\Users\anais\AppData\Local\SoftDMA
[31/10/2009|14:15] C:\Users\anais\AppData\Local\Temp
[09/08/2009|10:16] C:\Users\anais\AppData\Local\Temporary Internet Files
[28/10/2009|12:14] C:\Users\anais\AppData\Local\VirtualStore

--------------------\\ Tâches planifiées dans C:\Windows\tasks

[31/10/2009 13:48][--ah-----] C:\Windows\tasks\SA.DAT
[31/10/2009 13:47][--a------] C:\Windows\tasks\SCHEDLGU.TXT

--------------------\\ Listing des dossiers dans C:\ProgramData

[10/01/2009|17:18] C:\ProgramData\Acer GameZone Console
[10/01/2009|17:27] C:\ProgramData\Adobe
[02/11/2006|14:02] C:\ProgramData\Application Data
[31/10/2009|13:31] C:\ProgramData\Avira
[09/08/2009|10:15] C:\ProgramData\Bureau
[17/10/2009|18:20] C:\ProgramData\CanonBJ
[13/08/2009|01:43] C:\ProgramData\CyberLink
[02/11/2006|14:02] C:\ProgramData\Desktop
[02/11/2006|14:02] C:\ProgramData\Documents
[10/01/2009|17:36] C:\ProgramData\eSobi
[09/08/2009|10:15] C:\ProgramData\Favoris
[02/11/2006|14:02] C:\ProgramData\Favorites
[10/01/2009|17:08] C:\ProgramData\FloodLightGames
[21/08/2009|10:23] C:\ProgramData\Google
[08/09/2009|02:42] C:\ProgramData\InterAction studios
[09/08/2009|10:42] C:\ProgramData\JollyBear
[28/10/2009|12:03] C:\ProgramData\Malwarebytes
[25/10/2009|13:22] C:\ProgramData\McAfee
[09/08/2009|10:15] C:\ProgramData\Menu D‚marrer
[26/08/2009|13:30] C:\ProgramData\Messenger Plus!
[30/09/2009|19:03] C:\ProgramData\Microsoft
[15/10/2009|09:11] C:\ProgramData\Microsoft Help
[09/08/2009|10:15] C:\ProgramData\ModŠles
[09/08/2009|13:36] C:\ProgramData\NVIDIA
[31/10/2009|14:08] C:\ProgramData\nvModes.001
[31/10/2009|13:50] C:\ProgramData\nvModes.dat
[31/08/2009|18:07] C:\ProgramData\Oberon Games
[10/01/2009|16:45] C:\ProgramData\SiteAdvisor
[31/08/2009|19:49] C:\ProgramData\SpinTop Games
[02/11/2006|14:02] C:\ProgramData\Start Menu
[09/09/2009|23:32] C:\ProgramData\TEMP
[02/11/2006|14:02] C:\ProgramData\Templates
[11/10/2009|17:28] C:\ProgramData\Ulead Systems

--------------------\\ Listing des dossiers dans C:\Program Files

[09/08/2009|10:16] C:\Program Files\Acer
[23/02/2009|10:33] C:\Program Files\Acer Arcade Deluxe
[10/01/2009|17:18] C:\Program Files\Acer GameZone
[23/02/2009|10:27] C:\Program Files\Acer Inc
[23/02/2009|10:42] C:\Program Files\Acer Incorporated
[10/01/2009|17:27] C:\Program Files\Adobe
[31/10/2009|14:06] C:\Program Files\Ad-Remover
[01/09/2009|19:04] C:\Program Files\Ask Search Assistant
[31/10/2009|13:38] C:\Program Files\Avira
[10/01/2009|17:18] C:\Program Files\Big Kahuna Reef
[10/01/2009|16:29] C:\Program Files\Broadcom
[28/10/2009|11:56] C:\Program Files\CCleaner
[25/10/2009|13:22] C:\Program Files\Common Files
[10/01/2009|17:23] C:\Program Files\Convesoft
[11/10/2009|17:25] C:\Program Files\Corel
[23/02/2009|10:42] C:\Program Files\Cyberlink
[22/08/2009|17:31] C:\Program Files\DsNET Corp
[30/10/2009|13:41] C:\Program Files\EA Games
[30/09/2009|19:03] C:\Program Files\Easy Gif Animator Extension
[10/01/2009|17:35] C:\Program Files\eSobi
[13/09/2009|19:38] C:\Program Files\Fast Browser Search
[09/08/2009|10:15] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[23/09/2009|15:54] C:\Program Files\Free Download Manager
[21/08/2009|11:25] C:\Program Files\Google
[11/10/2009|17:28] C:\Program Files\InstallShield Installation Information
[23/02/2009|10:21] C:\Program Files\Intel
[15/10/2009|09:30] C:\Program Files\Internet Explorer
[21/08/2009|01:44] C:\Program Files\Java
[23/02/2009|10:24] C:\Program Files\Launch Manager
[21/08/2009|01:45] C:\Program Files\LimeWire
[28/10/2009|12:03] C:\Program Files\Malwarebytes' Anti-Malware
[01/09/2009|19:04] C:\Program Files\Messenger Plus! Live
[01/09/2009|18:51] C:\Program Files\Microsoft
[02/11/2006|13:37] C:\Program Files\Microsoft Games
[10/01/2009|16:51] C:\Program Files\Microsoft Office
[10/01/2009|16:51] C:\Program Files\Microsoft Office Suite Activation Assistant
[09/09/2009|10:45] C:\Program Files\Microsoft Silverlight
[01/09/2009|18:49] C:\Program Files\Microsoft SQL Server Compact Edition
[01/09/2009|18:50] C:\Program Files\Microsoft Sync Framework
[15/10/2009|09:09] C:\Program Files\Microsoft Works
[10/01/2009|16:49] C:\Program Files\Microsoft.NET
[21/01/2008|03:35] C:\Program Files\Movie Maker
[12/08/2009|16:32] C:\Program Files\Mozilla Firefox
[02/11/2006|13:37] C:\Program Files\MSBuild
[10/01/2009|16:00] C:\Program Files\MSXML 4.0
[27/10/2009|14:43] C:\Program Files\Navilog1
[10/01/2009|17:22] C:\Program Files\NewTech Infosystems
[18/08/2009|12:33] C:\Program Files\PhotoFiltre
[10/01/2009|16:20] C:\Program Files\Realtek
[02/11/2006|13:37] C:\Program Files\Reference Assemblies
[13/09/2009|19:39] C:\Program Files\Search Guard Plus
[13/09/2009|19:39] C:\Program Files\Search Guard PlusU
[13/09/2009|19:39] C:\Program Files\SGPSA
[10/01/2009|16:26] C:\Program Files\Synaptics
[27/10/2009|13:33] C:\Program Files\Trend Micro
[02/11/2006|14:01] C:\Program Files\Uninstall Information
[12/08/2009|16:32] C:\Program Files\uTorrent
[16/08/2009|16:49] C:\Program Files\VideoLAN
[10/01/2009|16:28] C:\Program Files\Winbond Electronics Corporation
[21/01/2008|03:35] C:\Program Files\Windows Calendar
[21/01/2008|03:35] C:\Program Files\Windows Collaboration
[21/01/2008|03:35] C:\Program Files\Windows Defender
[21/01/2008|03:35] C:\Program Files\Windows Journal
[01/09/2009|18:51] C:\Program Files\Windows Live
[10/01/2009|17:04] C:\Program Files\Windows Live SkyDrive
[10/01/2009|14:40] C:\Program Files\Windows Mail
[13/08/2009|03:06] C:\Program Files\Windows Media Player
[09/08/2009|10:15] C:\Program Files\Windows NT
[21/01/2008|03:35] C:\Program Files\Windows Photo Gallery
[21/01/2008|03:35] C:\Program Files\Windows Sidebar
[30/08/2009|13:00] C:\Program Files\Wolfenstein - Enemy Territory

--------------------\\ Listing des dossiers dans C:\Program Files\Common Files

[10/01/2009|17:27] C:\Program Files\Common Files\Adobe
[10/01/2009|16:49] C:\Program Files\Common Files\DESIGNER
[10/01/2009|17:00] C:\Program Files\Common Files\InstallShield
[10/01/2009|17:22] C:\Program Files\Common Files\LightScribe
[11/10/2009|17:28] C:\Program Files\Common Files\microsoft shared
[10/01/2009|17:20] C:\Program Files\Common Files\muvee Technologies
[10/01/2009|17:08] C:\Program Files\Common Files\Oberon Media
[02/11/2006|12:18] C:\Program Files\Common Files\Services
[02/11/2006|12:18] C:\Program Files\Common Files\SpeechEngines
[21/01/2008|03:35] C:\Program Files\Common Files\System
[11/10/2009|17:28] C:\Program Files\Common Files\Ulead Systems
[10/01/2009|17:03] C:\Program Files\Common Files\Windows Live

--------------------\\ Process

( 80 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-10-31 14:15:43
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:30][D:13]-> C:\Users\anais\AppData\Local\Temp
[F:117][D:1]-> C:\Users\anais\AppData\Roaming\MICROS~1\Windows\Cookies
[F:212][D:5]-> C:\Users\anais\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:4][D:4]-> C:\$Recycle.Bin

1 - "C:\Lop SD\LopR_1.txt" - 29/10/2009|13:18 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 31/10/2009|14:17 - Option : [4]

--------------------\\ Fin du rapport a 14:17:15
[ UAC => 1 ]
0
Réponse 28 / 40
keta42 Messages postés 137 Statut Membre
 
le 2 eme


RAPPORT Lop S&D




--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Pentium(R) Dual-Core CPU T4200 @ 2.00GHz )
BIOS : ZY2 v0.3611 3F11
USER : anais ( Not Administrator ! )
BOOT : Normal boot
C:\ (Local Disk) - NTFS - Total:109 Go (Free:26 Go)
D:\ (Local Disk) - NTFS - Total:109 Go (Free:66 Go)
E:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [4] ( 31/10/2009|14:15 )

[ UAC => 0 ]

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ Lop Script

C:\Program Files\Circle Develpement


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

Supprime! - C:\Program Files\Circle Develpement
-
[ Fichier Hosts ] .. Restaure!

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


--------------------\\ Listing des dossiers dans Local

[09/08/2009|17:37] C:\Users\anais\AppData\Local\Acer Arcade Deluxe
[15/08/2009|19:16] C:\Users\anais\AppData\Local\Adobe
[09/08/2009|10:16] C:\Users\anais\AppData\Local\Application Data
[09/08/2009|17:37] C:\Users\anais\AppData\Local\CyberLink
[26/10/2009|00:20] C:\Users\anais\AppData\Local\d3d9caps.dat
[31/10/2009|01:35] C:\Users\anais\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[27/10/2009|14:11] C:\Users\anais\AppData\Local\etqhf.bat
[11/10/2009|17:53] C:\Users\anais\AppData\Local\GDIPFONTCACHEV1.DAT
[21/08/2009|12:32] C:\Users\anais\AppData\Local\Google
[09/08/2009|10:16] C:\Users\anais\AppData\Local\Historique
[31/10/2009|13:47] C:\Users\anais\AppData\Local\IconCache.db
[09/08/2009|10:42] C:\Users\anais\AppData\Local\JollyBear
[28/08/2009|18:56] C:\Users\anais\AppData\Local\Microsoft
[09/10/2009|21:49] C:\Users\anais\AppData\Local\Microsoft Games
[09/08/2009|22:36] C:\Users\anais\AppData\Local\PlayMovie
[13/08/2009|01:43] C:\Users\anais\AppData\Local\PowerCinema
[30/08/2009|14:45] C:\Users\anais\AppData\Local\PunkBuster
[09/08/2009|17:37] C:\Users\anais\AppData\Local\SoftDMA
[31/10/2009|14:15] C:\Users\anais\AppData\Local\Temp
[09/08/2009|10:16] C:\Users\anais\AppData\Local\Temporary Internet Files
[28/10/2009|12:14] C:\Users\anais\AppData\Local\VirtualStore

--------------------\\ Tâches planifiées dans C:\Windows\tasks

[31/10/2009 13:48][--ah-----] C:\Windows\tasks\SA.DAT
[31/10/2009 13:47][--a------] C:\Windows\tasks\SCHEDLGU.TXT

--------------------\\ Listing des dossiers dans C:\ProgramData

[10/01/2009|17:18] C:\ProgramData\Acer GameZone Console
[10/01/2009|17:27] C:\ProgramData\Adobe
[02/11/2006|14:02] C:\ProgramData\Application Data
[31/10/2009|13:31] C:\ProgramData\Avira
[09/08/2009|10:15] C:\ProgramData\Bureau
[17/10/2009|18:20] C:\ProgramData\CanonBJ
[13/08/2009|01:43] C:\ProgramData\CyberLink
[02/11/2006|14:02] C:\ProgramData\Desktop
[02/11/2006|14:02] C:\ProgramData\Documents
[10/01/2009|17:36] C:\ProgramData\eSobi
[09/08/2009|10:15] C:\ProgramData\Favoris
[02/11/2006|14:02] C:\ProgramData\Favorites
[10/01/2009|17:08] C:\ProgramData\FloodLightGames
[21/08/2009|10:23] C:\ProgramData\Google
[08/09/2009|02:42] C:\ProgramData\InterAction studios
[09/08/2009|10:42] C:\ProgramData\JollyBear
[28/10/2009|12:03] C:\ProgramData\Malwarebytes
[25/10/2009|13:22] C:\ProgramData\McAfee
[09/08/2009|10:15] C:\ProgramData\Menu D‚marrer
[26/08/2009|13:30] C:\ProgramData\Messenger Plus!
[30/09/2009|19:03] C:\ProgramData\Microsoft
[15/10/2009|09:11] C:\ProgramData\Microsoft Help
[09/08/2009|10:15] C:\ProgramData\ModŠles
[09/08/2009|13:36] C:\ProgramData\NVIDIA
[31/10/2009|14:08] C:\ProgramData\nvModes.001
[31/10/2009|13:50] C:\ProgramData\nvModes.dat
[31/08/2009|18:07] C:\ProgramData\Oberon Games
[10/01/2009|16:45] C:\ProgramData\SiteAdvisor
[31/08/2009|19:49] C:\ProgramData\SpinTop Games
[02/11/2006|14:02] C:\ProgramData\Start Menu
[09/09/2009|23:32] C:\ProgramData\TEMP
[02/11/2006|14:02] C:\ProgramData\Templates
[11/10/2009|17:28] C:\ProgramData\Ulead Systems

--------------------\\ Listing des dossiers dans C:\Program Files

[09/08/2009|10:16] C:\Program Files\Acer
[23/02/2009|10:33] C:\Program Files\Acer Arcade Deluxe
[10/01/2009|17:18] C:\Program Files\Acer GameZone
[23/02/2009|10:27] C:\Program Files\Acer Inc
[23/02/2009|10:42] C:\Program Files\Acer Incorporated
[10/01/2009|17:27] C:\Program Files\Adobe
[31/10/2009|14:06] C:\Program Files\Ad-Remover
[01/09/2009|19:04] C:\Program Files\Ask Search Assistant
[31/10/2009|13:38] C:\Program Files\Avira
[10/01/2009|17:18] C:\Program Files\Big Kahuna Reef
[10/01/2009|16:29] C:\Program Files\Broadcom
[28/10/2009|11:56] C:\Program Files\CCleaner
[25/10/2009|13:22] C:\Program Files\Common Files
[10/01/2009|17:23] C:\Program Files\Convesoft
[11/10/2009|17:25] C:\Program Files\Corel
[23/02/2009|10:42] C:\Program Files\Cyberlink
[22/08/2009|17:31] C:\Program Files\DsNET Corp
[30/10/2009|13:41] C:\Program Files\EA Games
[30/09/2009|19:03] C:\Program Files\Easy Gif Animator Extension
[10/01/2009|17:35] C:\Program Files\eSobi
[13/09/2009|19:38] C:\Program Files\Fast Browser Search
[09/08/2009|10:15] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[23/09/2009|15:54] C:\Program Files\Free Download Manager
[21/08/2009|11:25] C:\Program Files\Google
[11/10/2009|17:28] C:\Program Files\InstallShield Installation Information
[23/02/2009|10:21] C:\Program Files\Intel
[15/10/2009|09:30] C:\Program Files\Internet Explorer
[21/08/2009|01:44] C:\Program Files\Java
[23/02/2009|10:24] C:\Program Files\Launch Manager
[21/08/2009|01:45] C:\Program Files\LimeWire
[28/10/2009|12:03] C:\Program Files\Malwarebytes' Anti-Malware
[01/09/2009|19:04] C:\Program Files\Messenger Plus! Live
[01/09/2009|18:51] C:\Program Files\Microsoft
[02/11/2006|13:37] C:\Program Files\Microsoft Games
[10/01/2009|16:51] C:\Program Files\Microsoft Office
[10/01/2009|16:51] C:\Program Files\Microsoft Office Suite Activation Assistant
[09/09/2009|10:45] C:\Program Files\Microsoft Silverlight
[01/09/2009|18:49] C:\Program Files\Microsoft SQL Server Compact Edition
[01/09/2009|18:50] C:\Program Files\Microsoft Sync Framework
[15/10/2009|09:09] C:\Program Files\Microsoft Works
[10/01/2009|16:49] C:\Program Files\Microsoft.NET
[21/01/2008|03:35] C:\Program Files\Movie Maker
[12/08/2009|16:32] C:\Program Files\Mozilla Firefox
[02/11/2006|13:37] C:\Program Files\MSBuild
[10/01/2009|16:00] C:\Program Files\MSXML 4.0
[27/10/2009|14:43] C:\Program Files\Navilog1
[10/01/2009|17:22] C:\Program Files\NewTech Infosystems
[18/08/2009|12:33] C:\Program Files\PhotoFiltre
[10/01/2009|16:20] C:\Program Files\Realtek
[02/11/2006|13:37] C:\Program Files\Reference Assemblies
[13/09/2009|19:39] C:\Program Files\Search Guard Plus
[13/09/2009|19:39] C:\Program Files\Search Guard PlusU
[13/09/2009|19:39] C:\Program Files\SGPSA
[10/01/2009|16:26] C:\Program Files\Synaptics
[27/10/2009|13:33] C:\Program Files\Trend Micro
[02/11/2006|14:01] C:\Program Files\Uninstall Information
[12/08/2009|16:32] C:\Program Files\uTorrent
[16/08/2009|16:49] C:\Program Files\VideoLAN
[10/01/2009|16:28] C:\Program Files\Winbond Electronics Corporation
[21/01/2008|03:35] C:\Program Files\Windows Calendar
[21/01/2008|03:35] C:\Program Files\Windows Collaboration
[21/01/2008|03:35] C:\Program Files\Windows Defender
[21/01/2008|03:35] C:\Program Files\Windows Journal
[01/09/2009|18:51] C:\Program Files\Windows Live
[10/01/2009|17:04] C:\Program Files\Windows Live SkyDrive
[10/01/2009|14:40] C:\Program Files\Windows Mail
[13/08/2009|03:06] C:\Program Files\Windows Media Player
[09/08/2009|10:15] C:\Program Files\Windows NT
[21/01/2008|03:35] C:\Program Files\Windows Photo Gallery
[21/01/2008|03:35] C:\Program Files\Windows Sidebar
[30/08/2009|13:00] C:\Program Files\Wolfenstein - Enemy Territory

--------------------\\ Listing des dossiers dans C:\Program Files\Common Files

[10/01/2009|17:27] C:\Program Files\Common Files\Adobe
[10/01/2009|16:49] C:\Program Files\Common Files\DESIGNER
[10/01/2009|17:00] C:\Program Files\Common Files\InstallShield
[10/01/2009|17:22] C:\Program Files\Common Files\LightScribe
[11/10/2009|17:28] C:\Program Files\Common Files\microsoft shared
[10/01/2009|17:20] C:\Program Files\Common Files\muvee Technologies
[10/01/2009|17:08] C:\Program Files\Common Files\Oberon Media
[02/11/2006|12:18] C:\Program Files\Common Files\Services
[02/11/2006|12:18] C:\Program Files\Common Files\SpeechEngines
[21/01/2008|03:35] C:\Program Files\Common Files\System
[11/10/2009|17:28] C:\Program Files\Common Files\Ulead Systems
[10/01/2009|17:03] C:\Program Files\Common Files\Windows Live

--------------------\\ Process

( 80 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-10-31 14:15:43
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:30][D:13]-> C:\Users\anais\AppData\Local\Temp
[F:117][D:1]-> C:\Users\anais\AppData\Roaming\MICROS~1\Windows\Cookies
[F:212][D:5]-> C:\Users\anais\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:4][D:4]-> C:\$Recycle.Bin

1 - "C:\Lop SD\LopR_1.txt" - 29/10/2009|13:18 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 31/10/2009|14:17 - Option : [4]

--------------------\\ Fin du rapport a 14:17:15
[ UAC => 1 ]
0
Réponse 29 / 40
keta42 Messages postés 137 Statut Membre
 
et le 3 eme

RAPPORT
RSIT



--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Pentium(R) Dual-Core CPU T4200 @ 2.00GHz )
BIOS : ZY2 v0.3611 3F11
USER : anais ( Not Administrator ! )
BOOT : Normal boot
C:\ (Local Disk) - NTFS - Total:109 Go (Free:26 Go)
D:\ (Local Disk) - NTFS - Total:109 Go (Free:66 Go)
E:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [4] ( 31/10/2009|14:15 )

[ UAC => 0 ]

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ Lop Script

C:\Program Files\Circle Develpement


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

Supprime! - C:\Program Files\Circle Develpement
-
[ Fichier Hosts ] .. Restaure!

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


--------------------\\ Listing des dossiers dans Local

[09/08/2009|17:37] C:\Users\anais\AppData\Local\Acer Arcade Deluxe
[15/08/2009|19:16] C:\Users\anais\AppData\Local\Adobe
[09/08/2009|10:16] C:\Users\anais\AppData\Local\Application Data
[09/08/2009|17:37] C:\Users\anais\AppData\Local\CyberLink
[26/10/2009|00:20] C:\Users\anais\AppData\Local\d3d9caps.dat
[31/10/2009|01:35] C:\Users\anais\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[27/10/2009|14:11] C:\Users\anais\AppData\Local\etqhf.bat
[11/10/2009|17:53] C:\Users\anais\AppData\Local\GDIPFONTCACHEV1.DAT
[21/08/2009|12:32] C:\Users\anais\AppData\Local\Google
[09/08/2009|10:16] C:\Users\anais\AppData\Local\Historique
[31/10/2009|13:47] C:\Users\anais\AppData\Local\IconCache.db
[09/08/2009|10:42] C:\Users\anais\AppData\Local\JollyBear
[28/08/2009|18:56] C:\Users\anais\AppData\Local\Microsoft
[09/10/2009|21:49] C:\Users\anais\AppData\Local\Microsoft Games
[09/08/2009|22:36] C:\Users\anais\AppData\Local\PlayMovie
[13/08/2009|01:43] C:\Users\anais\AppData\Local\PowerCinema
[30/08/2009|14:45] C:\Users\anais\AppData\Local\PunkBuster
[09/08/2009|17:37] C:\Users\anais\AppData\Local\SoftDMA
[31/10/2009|14:15] C:\Users\anais\AppData\Local\Temp
[09/08/2009|10:16] C:\Users\anais\AppData\Local\Temporary Internet Files
[28/10/2009|12:14] C:\Users\anais\AppData\Local\VirtualStore

--------------------\\ Tâches planifiées dans C:\Windows\tasks

[31/10/2009 13:48][--ah-----] C:\Windows\tasks\SA.DAT
[31/10/2009 13:47][--a------] C:\Windows\tasks\SCHEDLGU.TXT

--------------------\\ Listing des dossiers dans C:\ProgramData

[10/01/2009|17:18] C:\ProgramData\Acer GameZone Console
[10/01/2009|17:27] C:\ProgramData\Adobe
[02/11/2006|14:02] C:\ProgramData\Application Data
[31/10/2009|13:31] C:\ProgramData\Avira
[09/08/2009|10:15] C:\ProgramData\Bureau
[17/10/2009|18:20] C:\ProgramData\CanonBJ
[13/08/2009|01:43] C:\ProgramData\CyberLink
[02/11/2006|14:02] C:\ProgramData\Desktop
[02/11/2006|14:02] C:\ProgramData\Documents
[10/01/2009|17:36] C:\ProgramData\eSobi
[09/08/2009|10:15] C:\ProgramData\Favoris
[02/11/2006|14:02] C:\ProgramData\Favorites
[10/01/2009|17:08] C:\ProgramData\FloodLightGames
[21/08/2009|10:23] C:\ProgramData\Google
[08/09/2009|02:42] C:\ProgramData\InterAction studios
[09/08/2009|10:42] C:\ProgramData\JollyBear
[28/10/2009|12:03] C:\ProgramData\Malwarebytes
[25/10/2009|13:22] C:\ProgramData\McAfee
[09/08/2009|10:15] C:\ProgramData\Menu D‚marrer
[26/08/2009|13:30] C:\ProgramData\Messenger Plus!
[30/09/2009|19:03] C:\ProgramData\Microsoft
[15/10/2009|09:11] C:\ProgramData\Microsoft Help
[09/08/2009|10:15] C:\ProgramData\ModŠles
[09/08/2009|13:36] C:\ProgramData\NVIDIA
[31/10/2009|14:08] C:\ProgramData\nvModes.001
[31/10/2009|13:50] C:\ProgramData\nvModes.dat
[31/08/2009|18:07] C:\ProgramData\Oberon Games
[10/01/2009|16:45] C:\ProgramData\SiteAdvisor
[31/08/2009|19:49] C:\ProgramData\SpinTop Games
[02/11/2006|14:02] C:\ProgramData\Start Menu
[09/09/2009|23:32] C:\ProgramData\TEMP
[02/11/2006|14:02] C:\ProgramData\Templates
[11/10/2009|17:28] C:\ProgramData\Ulead Systems

--------------------\\ Listing des dossiers dans C:\Program Files

[09/08/2009|10:16] C:\Program Files\Acer
[23/02/2009|10:33] C:\Program Files\Acer Arcade Deluxe
[10/01/2009|17:18] C:\Program Files\Acer GameZone
[23/02/2009|10:27] C:\Program Files\Acer Inc
[23/02/2009|10:42] C:\Program Files\Acer Incorporated
[10/01/2009|17:27] C:\Program Files\Adobe
[31/10/2009|14:06] C:\Program Files\Ad-Remover
[01/09/2009|19:04] C:\Program Files\Ask Search Assistant
[31/10/2009|13:38] C:\Program Files\Avira
[10/01/2009|17:18] C:\Program Files\Big Kahuna Reef
[10/01/2009|16:29] C:\Program Files\Broadcom
[28/10/2009|11:56] C:\Program Files\CCleaner
[25/10/2009|13:22] C:\Program Files\Common Files
[10/01/2009|17:23] C:\Program Files\Convesoft
[11/10/2009|17:25] C:\Program Files\Corel
[23/02/2009|10:42] C:\Program Files\Cyberlink
[22/08/2009|17:31] C:\Program Files\DsNET Corp
[30/10/2009|13:41] C:\Program Files\EA Games
[30/09/2009|19:03] C:\Program Files\Easy Gif Animator Extension
[10/01/2009|17:35] C:\Program Files\eSobi
[13/09/2009|19:38] C:\Program Files\Fast Browser Search
[09/08/2009|10:15] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[23/09/2009|15:54] C:\Program Files\Free Download Manager
[21/08/2009|11:25] C:\Program Files\Google
[11/10/2009|17:28] C:\Program Files\InstallShield Installation Information
[23/02/2009|10:21] C:\Program Files\Intel
[15/10/2009|09:30] C:\Program Files\Internet Explorer
[21/08/2009|01:44] C:\Program Files\Java
[23/02/2009|10:24] C:\Program Files\Launch Manager
[21/08/2009|01:45] C:\Program Files\LimeWire
[28/10/2009|12:03] C:\Program Files\Malwarebytes' Anti-Malware
[01/09/2009|19:04] C:\Program Files\Messenger Plus! Live
[01/09/2009|18:51] C:\Program Files\Microsoft
[02/11/2006|13:37] C:\Program Files\Microsoft Games
[10/01/2009|16:51] C:\Program Files\Microsoft Office
[10/01/2009|16:51] C:\Program Files\Microsoft Office Suite Activation Assistant
[09/09/2009|10:45] C:\Program Files\Microsoft Silverlight
[01/09/2009|18:49] C:\Program Files\Microsoft SQL Server Compact Edition
[01/09/2009|18:50] C:\Program Files\Microsoft Sync Framework
[15/10/2009|09:09] C:\Program Files\Microsoft Works
[10/01/2009|16:49] C:\Program Files\Microsoft.NET
[21/01/2008|03:35] C:\Program Files\Movie Maker
[12/08/2009|16:32] C:\Program Files\Mozilla Firefox
[02/11/2006|13:37] C:\Program Files\MSBuild
[10/01/2009|16:00] C:\Program Files\MSXML 4.0
[27/10/2009|14:43] C:\Program Files\Navilog1
[10/01/2009|17:22] C:\Program Files\NewTech Infosystems
[18/08/2009|12:33] C:\Program Files\PhotoFiltre
[10/01/2009|16:20] C:\Program Files\Realtek
[02/11/2006|13:37] C:\Program Files\Reference Assemblies
[13/09/2009|19:39] C:\Program Files\Search Guard Plus
[13/09/2009|19:39] C:\Program Files\Search Guard PlusU
[13/09/2009|19:39] C:\Program Files\SGPSA
[10/01/2009|16:26] C:\Program Files\Synaptics
[27/10/2009|13:33] C:\Program Files\Trend Micro
[02/11/2006|14:01] C:\Program Files\Uninstall Information
[12/08/2009|16:32] C:\Program Files\uTorrent
[16/08/2009|16:49] C:\Program Files\VideoLAN
[10/01/2009|16:28] C:\Program Files\Winbond Electronics Corporation
[21/01/2008|03:35] C:\Program Files\Windows Calendar
[21/01/2008|03:35] C:\Program Files\Windows Collaboration
[21/01/2008|03:35] C:\Program Files\Windows Defender
[21/01/2008|03:35] C:\Program Files\Windows Journal
[01/09/2009|18:51] C:\Program Files\Windows Live
[10/01/2009|17:04] C:\Program Files\Windows Live SkyDrive
[10/01/2009|14:40] C:\Program Files\Windows Mail
[13/08/2009|03:06] C:\Program Files\Windows Media Player
[09/08/2009|10:15] C:\Program Files\Windows NT
[21/01/2008|03:35] C:\Program Files\Windows Photo Gallery
[21/01/2008|03:35] C:\Program Files\Windows Sidebar
[30/08/2009|13:00] C:\Program Files\Wolfenstein - Enemy Territory

--------------------\\ Listing des dossiers dans C:\Program Files\Common Files

[10/01/2009|17:27] C:\Program Files\Common Files\Adobe
[10/01/2009|16:49] C:\Program Files\Common Files\DESIGNER
[10/01/2009|17:00] C:\Program Files\Common Files\InstallShield
[10/01/2009|17:22] C:\Program Files\Common Files\LightScribe
[11/10/2009|17:28] C:\Program Files\Common Files\microsoft shared
[10/01/2009|17:20] C:\Program Files\Common Files\muvee Technologies
[10/01/2009|17:08] C:\Program Files\Common Files\Oberon Media
[02/11/2006|12:18] C:\Program Files\Common Files\Services
[02/11/2006|12:18] C:\Program Files\Common Files\SpeechEngines
[21/01/2008|03:35] C:\Program Files\Common Files\System
[11/10/2009|17:28] C:\Program Files\Common Files\Ulead Systems
[10/01/2009|17:03] C:\Program Files\Common Files\Windows Live

--------------------\\ Process

( 80 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-10-31 14:15:43
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:30][D:13]-> C:\Users\anais\AppData\Local\Temp
[F:117][D:1]-> C:\Users\anais\AppData\Roaming\MICROS~1\Windows\Cookies
[F:212][D:5]-> C:\Users\anais\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:4][D:4]-> C:\$Recycle.Bin

1 - "C:\Lop SD\LopR_1.txt" - 29/10/2009|13:18 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 31/10/2009|14:17 - Option : [4]

--------------------\\ Fin du rapport a 14:17:15
[ UAC => 1 ]

merci bonne journee
0
Réponse 30 / 40
jorginho67 Messages postés 15447 Statut Contributeur sécurité 1 169
 
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

Supprime! - C:\Program Files\Circle Develpement

ADRemover a bien nettoyé

Pour finir, reposte moi un nouveau rapport RSIT ( mais je pense que ça ne doit pas être mal ce coup ci )

Désolé si ça semble long ;-p
mais après le boulot, je profite de l'été indien ( les derniers beaux jours )
clique sur mon pseudo, tu comprendras ;-)
0
Réponse 31 / 40
keta42 Messages postés 137 Statut Membre
 
sait un rapport Lop S&D que tu voulai


--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Pentium(R) Dual-Core CPU T4200 @ 2.00GHz )
BIOS : ZY2 v0.3611 3F11
USER : anais ( Not Administrator ! )
BOOT : Normal boot
C:\ (Local Disk) - NTFS - Total:109 Go (Free:26 Go)
D:\ (Local Disk) - NTFS - Total:109 Go (Free:66 Go)
E:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 31/10/2009|23:28 )

[ UAC => 1 ]

--------------------\\ Listing des dossiers dans Local

[09/08/2009|17:37] C:\Users\anais\AppData\Local\Acer Arcade Deluxe
[15/08/2009|19:16] C:\Users\anais\AppData\Local\Adobe
[09/08/2009|10:16] C:\Users\anais\AppData\Local\Application Data
[09/08/2009|17:37] C:\Users\anais\AppData\Local\CyberLink
[26/10/2009|00:20] C:\Users\anais\AppData\Local\d3d9caps.dat
[31/10/2009|01:35] C:\Users\anais\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[27/10/2009|14:11] C:\Users\anais\AppData\Local\etqhf.bat
[11/10/2009|17:53] C:\Users\anais\AppData\Local\GDIPFONTCACHEV1.DAT
[21/08/2009|12:32] C:\Users\anais\AppData\Local\Google
[09/08/2009|10:16] C:\Users\anais\AppData\Local\Historique
[31/10/2009|14:39] C:\Users\anais\AppData\Local\IconCache.db
[09/08/2009|10:42] C:\Users\anais\AppData\Local\JollyBear
[28/08/2009|18:56] C:\Users\anais\AppData\Local\Microsoft
[09/10/2009|21:49] C:\Users\anais\AppData\Local\Microsoft Games
[09/08/2009|22:36] C:\Users\anais\AppData\Local\PlayMovie
[13/08/2009|01:43] C:\Users\anais\AppData\Local\PowerCinema
[30/08/2009|14:45] C:\Users\anais\AppData\Local\PunkBuster
[09/08/2009|17:37] C:\Users\anais\AppData\Local\SoftDMA
[31/10/2009|23:26] C:\Users\anais\AppData\Local\Temp
[09/08/2009|10:16] C:\Users\anais\AppData\Local\Temporary Internet Files
[28/10/2009|12:14] C:\Users\anais\AppData\Local\VirtualStore

--------------------\\ Tâches planifiées dans C:\Windows\tasks

[31/10/2009 14:40][--ah-----] C:\Windows\tasks\SA.DAT
[31/10/2009 14:39][--a------] C:\Windows\tasks\SCHEDLGU.TXT

--------------------\\ Listing des dossiers dans C:\ProgramData

[10/01/2009|17:18] C:\ProgramData\Acer GameZone Console
[10/01/2009|17:27] C:\ProgramData\Adobe
[02/11/2006|14:02] C:\ProgramData\Application Data
[31/10/2009|13:31] C:\ProgramData\Avira
[09/08/2009|10:15] C:\ProgramData\Bureau
[17/10/2009|18:20] C:\ProgramData\CanonBJ
[13/08/2009|01:43] C:\ProgramData\CyberLink
[02/11/2006|14:02] C:\ProgramData\Desktop
[02/11/2006|14:02] C:\ProgramData\Documents
[10/01/2009|17:36] C:\ProgramData\eSobi
[09/08/2009|10:15] C:\ProgramData\Favoris
[02/11/2006|14:02] C:\ProgramData\Favorites
[10/01/2009|17:08] C:\ProgramData\FloodLightGames
[21/08/2009|10:23] C:\ProgramData\Google
[08/09/2009|02:42] C:\ProgramData\InterAction studios
[09/08/2009|10:42] C:\ProgramData\JollyBear
[28/10/2009|12:03] C:\ProgramData\Malwarebytes
[25/10/2009|13:22] C:\ProgramData\McAfee
[09/08/2009|10:15] C:\ProgramData\Menu D‚marrer
[26/08/2009|13:30] C:\ProgramData\Messenger Plus!
[30/09/2009|19:03] C:\ProgramData\Microsoft
[15/10/2009|09:11] C:\ProgramData\Microsoft Help
[09/08/2009|10:15] C:\ProgramData\ModŠles
[09/08/2009|13:36] C:\ProgramData\NVIDIA
[31/10/2009|23:16] C:\ProgramData\nvModes.001
[31/10/2009|23:16] C:\ProgramData\nvModes.dat
[31/08/2009|18:07] C:\ProgramData\Oberon Games
[10/01/2009|16:45] C:\ProgramData\SiteAdvisor
[31/08/2009|19:49] C:\ProgramData\SpinTop Games
[02/11/2006|14:02] C:\ProgramData\Start Menu
[09/09/2009|23:32] C:\ProgramData\TEMP
[02/11/2006|14:02] C:\ProgramData\Templates
[11/10/2009|17:28] C:\ProgramData\Ulead Systems

--------------------\\ Listing des dossiers dans C:\Program Files

[09/08/2009|10:16] C:\Program Files\Acer
[23/02/2009|10:33] C:\Program Files\Acer Arcade Deluxe
[10/01/2009|17:18] C:\Program Files\Acer GameZone
[23/02/2009|10:27] C:\Program Files\Acer Inc
[23/02/2009|10:42] C:\Program Files\Acer Incorporated
[10/01/2009|17:27] C:\Program Files\Adobe
[31/10/2009|14:06] C:\Program Files\Ad-Remover
[01/09/2009|19:04] C:\Program Files\Ask Search Assistant
[31/10/2009|13:38] C:\Program Files\Avira
[10/01/2009|17:18] C:\Program Files\Big Kahuna Reef
[10/01/2009|16:29] C:\Program Files\Broadcom
[28/10/2009|11:56] C:\Program Files\CCleaner
[25/10/2009|13:22] C:\Program Files\Common Files
[10/01/2009|17:23] C:\Program Files\Convesoft
[11/10/2009|17:25] C:\Program Files\Corel
[23/02/2009|10:42] C:\Program Files\Cyberlink
[22/08/2009|17:31] C:\Program Files\DsNET Corp
[30/10/2009|13:41] C:\Program Files\EA Games
[30/09/2009|19:03] C:\Program Files\Easy Gif Animator Extension
[10/01/2009|17:35] C:\Program Files\eSobi
[13/09/2009|19:38] C:\Program Files\Fast Browser Search
[09/08/2009|10:15] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[23/09/2009|15:54] C:\Program Files\Free Download Manager
[21/08/2009|11:25] C:\Program Files\Google
[11/10/2009|17:28] C:\Program Files\InstallShield Installation Information
[23/02/2009|10:21] C:\Program Files\Intel
[15/10/2009|09:30] C:\Program Files\Internet Explorer
[21/08/2009|01:44] C:\Program Files\Java
[23/02/2009|10:24] C:\Program Files\Launch Manager
[21/08/2009|01:45] C:\Program Files\LimeWire
[28/10/2009|12:03] C:\Program Files\Malwarebytes' Anti-Malware
[01/09/2009|19:04] C:\Program Files\Messenger Plus! Live
[01/09/2009|18:51] C:\Program Files\Microsoft
[02/11/2006|13:37] C:\Program Files\Microsoft Games
[10/01/2009|16:51] C:\Program Files\Microsoft Office
[10/01/2009|16:51] C:\Program Files\Microsoft Office Suite Activation Assistant
[09/09/2009|10:45] C:\Program Files\Microsoft Silverlight
[01/09/2009|18:49] C:\Program Files\Microsoft SQL Server Compact Edition
[01/09/2009|18:50] C:\Program Files\Microsoft Sync Framework
[15/10/2009|09:09] C:\Program Files\Microsoft Works
[10/01/2009|16:49] C:\Program Files\Microsoft.NET
[21/01/2008|03:35] C:\Program Files\Movie Maker
[12/08/2009|16:32] C:\Program Files\Mozilla Firefox
[02/11/2006|13:37] C:\Program Files\MSBuild
[10/01/2009|16:00] C:\Program Files\MSXML 4.0
[27/10/2009|14:43] C:\Program Files\Navilog1
[10/01/2009|17:22] C:\Program Files\NewTech Infosystems
[18/08/2009|12:33] C:\Program Files\PhotoFiltre
[10/01/2009|16:20] C:\Program Files\Realtek
[02/11/2006|13:37] C:\Program Files\Reference Assemblies
[13/09/2009|19:39] C:\Program Files\Search Guard Plus
[13/09/2009|19:39] C:\Program Files\Search Guard PlusU
[13/09/2009|19:39] C:\Program Files\SGPSA
[10/01/2009|16:26] C:\Program Files\Synaptics
[27/10/2009|13:33] C:\Program Files\Trend Micro
[02/11/2006|14:01] C:\Program Files\Uninstall Information
[12/08/2009|16:32] C:\Program Files\uTorrent
[16/08/2009|16:49] C:\Program Files\VideoLAN
[10/01/2009|16:28] C:\Program Files\Winbond Electronics Corporation
[21/01/2008|03:35] C:\Program Files\Windows Calendar
[21/01/2008|03:35] C:\Program Files\Windows Collaboration
[21/01/2008|03:35] C:\Program Files\Windows Defender
[21/01/2008|03:35] C:\Program Files\Windows Journal
[01/09/2009|18:51] C:\Program Files\Windows Live
[10/01/2009|17:04] C:\Program Files\Windows Live SkyDrive
[10/01/2009|14:40] C:\Program Files\Windows Mail
[13/08/2009|03:06] C:\Program Files\Windows Media Player
[09/08/2009|10:15] C:\Program Files\Windows NT
[21/01/2008|03:35] C:\Program Files\Windows Photo Gallery
[21/01/2008|03:35] C:\Program Files\Windows Sidebar
[30/08/2009|13:00] C:\Program Files\Wolfenstein - Enemy Territory

--------------------\\ Listing des dossiers dans C:\Program Files\Common Files

[10/01/2009|17:27] C:\Program Files\Common Files\Adobe
[10/01/2009|16:49] C:\Program Files\Common Files\DESIGNER
[10/01/2009|17:00] C:\Program Files\Common Files\InstallShield
[10/01/2009|17:22] C:\Program Files\Common Files\LightScribe
[11/10/2009|17:28] C:\Program Files\Common Files\microsoft shared
[10/01/2009|17:20] C:\Program Files\Common Files\muvee Technologies
[10/01/2009|17:08] C:\Program Files\Common Files\Oberon Media
[02/11/2006|12:18] C:\Program Files\Common Files\Services
[02/11/2006|12:18] C:\Program Files\Common Files\SpeechEngines
[21/01/2008|03:35] C:\Program Files\Common Files\System
[11/10/2009|17:28] C:\Program Files\Common Files\Ulead Systems
[10/01/2009|17:03] C:\Program Files\Common Files\Windows Live

--------------------\\ Process

( 81 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-10-31 23:28:47
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:38][D:11]-> C:\Users\anais\AppData\Local\Temp
[F:151][D:1]-> C:\Users\anais\AppData\Roaming\MICROS~1\Windows\Cookies
[F:273][D:5]-> C:\Users\anais\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:4][D:4]-> C:\$Recycle.Bin

1 - "C:\Lop SD\LopR_1.txt" - 29/10/2009|13:18 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 31/10/2009|14:17 - Option : [4]
3 - "C:\Lop SD\LopR_3.txt" - 31/10/2009|23:30 - Option : [1]

--------------------\\ Fin du rapport a 23:30:17
[ UAC => 1 ]

et oui sait un peut long mais je comprend que tu reste pas toute la journee sur l ordi merci
0
Réponse 32 / 40
jorginho67 Messages postés 15447 Statut Contributeur sécurité 1 169
 
Non, c'était un nouveau rapport RSIT

Fais le demain quand tu auras le temps

Apparament, ça doit être bon...

Bonne soirée
0
Réponse 33 / 40
keta42 Messages postés 137 Statut Membre
 
desole je suis pas super allaise avec les ordi les programme bon la jai bien fait 2 rapport en tout




--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Pentium(R) Dual-Core CPU T4200 @ 2.00GHz )
BIOS : ZY2 v0.3611 3F11
USER : anais ( Not Administrator ! )
BOOT : Normal boot
C:\ (Local Disk) - NTFS - Total:109 Go (Free:26 Go)
D:\ (Local Disk) - NTFS - Total:109 Go (Free:66 Go)
E:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 31/10/2009|23:28 )

[ UAC => 1 ]

--------------------\\ Listing des dossiers dans Local

[09/08/2009|17:37] C:\Users\anais\AppData\Local\Acer Arcade Deluxe
[15/08/2009|19:16] C:\Users\anais\AppData\Local\Adobe
[09/08/2009|10:16] C:\Users\anais\AppData\Local\Application Data
[09/08/2009|17:37] C:\Users\anais\AppData\Local\CyberLink
[26/10/2009|00:20] C:\Users\anais\AppData\Local\d3d9caps.dat
[31/10/2009|01:35] C:\Users\anais\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[27/10/2009|14:11] C:\Users\anais\AppData\Local\etqhf.bat
[11/10/2009|17:53] C:\Users\anais\AppData\Local\GDIPFONTCACHEV1.DAT
[21/08/2009|12:32] C:\Users\anais\AppData\Local\Google
[09/08/2009|10:16] C:\Users\anais\AppData\Local\Historique
[31/10/2009|14:39] C:\Users\anais\AppData\Local\IconCache.db
[09/08/2009|10:42] C:\Users\anais\AppData\Local\JollyBear
[28/08/2009|18:56] C:\Users\anais\AppData\Local\Microsoft
[09/10/2009|21:49] C:\Users\anais\AppData\Local\Microsoft Games
[09/08/2009|22:36] C:\Users\anais\AppData\Local\PlayMovie
[13/08/2009|01:43] C:\Users\anais\AppData\Local\PowerCinema
[30/08/2009|14:45] C:\Users\anais\AppData\Local\PunkBuster
[09/08/2009|17:37] C:\Users\anais\AppData\Local\SoftDMA
[31/10/2009|23:26] C:\Users\anais\AppData\Local\Temp
[09/08/2009|10:16] C:\Users\anais\AppData\Local\Temporary Internet Files
[28/10/2009|12:14] C:\Users\anais\AppData\Local\VirtualStore

--------------------\\ Tâches planifiées dans C:\Windows\tasks

[31/10/2009 14:40][--ah-----] C:\Windows\tasks\SA.DAT
[31/10/2009 14:39][--a------] C:\Windows\tasks\SCHEDLGU.TXT

--------------------\\ Listing des dossiers dans C:\ProgramData

[10/01/2009|17:18] C:\ProgramData\Acer GameZone Console
[10/01/2009|17:27] C:\ProgramData\Adobe
[02/11/2006|14:02] C:\ProgramData\Application Data
[31/10/2009|13:31] C:\ProgramData\Avira
[09/08/2009|10:15] C:\ProgramData\Bureau
[17/10/2009|18:20] C:\ProgramData\CanonBJ
[13/08/2009|01:43] C:\ProgramData\CyberLink
[02/11/2006|14:02] C:\ProgramData\Desktop
[02/11/2006|14:02] C:\ProgramData\Documents
[10/01/2009|17:36] C:\ProgramData\eSobi
[09/08/2009|10:15] C:\ProgramData\Favoris
[02/11/2006|14:02] C:\ProgramData\Favorites
[10/01/2009|17:08] C:\ProgramData\FloodLightGames
[21/08/2009|10:23] C:\ProgramData\Google
[08/09/2009|02:42] C:\ProgramData\InterAction studios
[09/08/2009|10:42] C:\ProgramData\JollyBear
[28/10/2009|12:03] C:\ProgramData\Malwarebytes
[25/10/2009|13:22] C:\ProgramData\McAfee
[09/08/2009|10:15] C:\ProgramData\Menu D‚marrer
[26/08/2009|13:30] C:\ProgramData\Messenger Plus!
[30/09/2009|19:03] C:\ProgramData\Microsoft
[15/10/2009|09:11] C:\ProgramData\Microsoft Help
[09/08/2009|10:15] C:\ProgramData\ModŠles
[09/08/2009|13:36] C:\ProgramData\NVIDIA
[31/10/2009|23:16] C:\ProgramData\nvModes.001
[31/10/2009|23:16] C:\ProgramData\nvModes.dat
[31/08/2009|18:07] C:\ProgramData\Oberon Games
[10/01/2009|16:45] C:\ProgramData\SiteAdvisor
[31/08/2009|19:49] C:\ProgramData\SpinTop Games
[02/11/2006|14:02] C:\ProgramData\Start Menu
[09/09/2009|23:32] C:\ProgramData\TEMP
[02/11/2006|14:02] C:\ProgramData\Templates
[11/10/2009|17:28] C:\ProgramData\Ulead Systems

--------------------\\ Listing des dossiers dans C:\Program Files

[09/08/2009|10:16] C:\Program Files\Acer
[23/02/2009|10:33] C:\Program Files\Acer Arcade Deluxe
[10/01/2009|17:18] C:\Program Files\Acer GameZone
[23/02/2009|10:27] C:\Program Files\Acer Inc
[23/02/2009|10:42] C:\Program Files\Acer Incorporated
[10/01/2009|17:27] C:\Program Files\Adobe
[31/10/2009|14:06] C:\Program Files\Ad-Remover
[01/09/2009|19:04] C:\Program Files\Ask Search Assistant
[31/10/2009|13:38] C:\Program Files\Avira
[10/01/2009|17:18] C:\Program Files\Big Kahuna Reef
[10/01/2009|16:29] C:\Program Files\Broadcom
[28/10/2009|11:56] C:\Program Files\CCleaner
[25/10/2009|13:22] C:\Program Files\Common Files
[10/01/2009|17:23] C:\Program Files\Convesoft
[11/10/2009|17:25] C:\Program Files\Corel
[23/02/2009|10:42] C:\Program Files\Cyberlink
[22/08/2009|17:31] C:\Program Files\DsNET Corp
[30/10/2009|13:41] C:\Program Files\EA Games
[30/09/2009|19:03] C:\Program Files\Easy Gif Animator Extension
[10/01/2009|17:35] C:\Program Files\eSobi
[13/09/2009|19:38] C:\Program Files\Fast Browser Search
[09/08/2009|10:15] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[23/09/2009|15:54] C:\Program Files\Free Download Manager
[21/08/2009|11:25] C:\Program Files\Google
[11/10/2009|17:28] C:\Program Files\InstallShield Installation Information
[23/02/2009|10:21] C:\Program Files\Intel
[15/10/2009|09:30] C:\Program Files\Internet Explorer
[21/08/2009|01:44] C:\Program Files\Java
[23/02/2009|10:24] C:\Program Files\Launch Manager
[21/08/2009|01:45] C:\Program Files\LimeWire
[28/10/2009|12:03] C:\Program Files\Malwarebytes' Anti-Malware
[01/09/2009|19:04] C:\Program Files\Messenger Plus! Live
[01/09/2009|18:51] C:\Program Files\Microsoft
[02/11/2006|13:37] C:\Program Files\Microsoft Games
[10/01/2009|16:51] C:\Program Files\Microsoft Office
[10/01/2009|16:51] C:\Program Files\Microsoft Office Suite Activation Assistant
[09/09/2009|10:45] C:\Program Files\Microsoft Silverlight
[01/09/2009|18:49] C:\Program Files\Microsoft SQL Server Compact Edition
[01/09/2009|18:50] C:\Program Files\Microsoft Sync Framework
[15/10/2009|09:09] C:\Program Files\Microsoft Works
[10/01/2009|16:49] C:\Program Files\Microsoft.NET
[21/01/2008|03:35] C:\Program Files\Movie Maker
[12/08/2009|16:32] C:\Program Files\Mozilla Firefox
[02/11/2006|13:37] C:\Program Files\MSBuild
[10/01/2009|16:00] C:\Program Files\MSXML 4.0
[27/10/2009|14:43] C:\Program Files\Navilog1
[10/01/2009|17:22] C:\Program Files\NewTech Infosystems
[18/08/2009|12:33] C:\Program Files\PhotoFiltre
[10/01/2009|16:20] C:\Program Files\Realtek
[02/11/2006|13:37] C:\Program Files\Reference Assemblies
[13/09/2009|19:39] C:\Program Files\Search Guard Plus
[13/09/2009|19:39] C:\Program Files\Search Guard PlusU
[13/09/2009|19:39] C:\Program Files\SGPSA
[10/01/2009|16:26] C:\Program Files\Synaptics
[27/10/2009|13:33] C:\Program Files\Trend Micro
[02/11/2006|14:01] C:\Program Files\Uninstall Information
[12/08/2009|16:32] C:\Program Files\uTorrent
[16/08/2009|16:49] C:\Program Files\VideoLAN
[10/01/2009|16:28] C:\Program Files\Winbond Electronics Corporation
[21/01/2008|03:35] C:\Program Files\Windows Calendar
[21/01/2008|03:35] C:\Program Files\Windows Collaboration
[21/01/2008|03:35] C:\Program Files\Windows Defender
[21/01/2008|03:35] C:\Program Files\Windows Journal
[01/09/2009|18:51] C:\Program Files\Windows Live
[10/01/2009|17:04] C:\Program Files\Windows Live SkyDrive
[10/01/2009|14:40] C:\Program Files\Windows Mail
[13/08/2009|03:06] C:\Program Files\Windows Media Player
[09/08/2009|10:15] C:\Program Files\Windows NT
[21/01/2008|03:35] C:\Program Files\Windows Photo Gallery
[21/01/2008|03:35] C:\Program Files\Windows Sidebar
[30/08/2009|13:00] C:\Program Files\Wolfenstein - Enemy Territory

--------------------\\ Listing des dossiers dans C:\Program Files\Common Files

[10/01/2009|17:27] C:\Program Files\Common Files\Adobe
[10/01/2009|16:49] C:\Program Files\Common Files\DESIGNER
[10/01/2009|17:00] C:\Program Files\Common Files\InstallShield
[10/01/2009|17:22] C:\Program Files\Common Files\LightScribe
[11/10/2009|17:28] C:\Program Files\Common Files\microsoft shared
[10/01/2009|17:20] C:\Program Files\Common Files\muvee Technologies
[10/01/2009|17:08] C:\Program Files\Common Files\Oberon Media
[02/11/2006|12:18] C:\Program Files\Common Files\Services
[02/11/2006|12:18] C:\Program Files\Common Files\SpeechEngines
[21/01/2008|03:35] C:\Program Files\Common Files\System
[11/10/2009|17:28] C:\Program Files\Common Files\Ulead Systems
[10/01/2009|17:03] C:\Program Files\Common Files\Windows Live

--------------------\\ Process

( 81 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-10-31 23:28:47
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:38][D:11]-> C:\Users\anais\AppData\Local\Temp
[F:151][D:1]-> C:\Users\anais\AppData\Roaming\MICROS~1\Windows\Cookies
[F:273][D:5]-> C:\Users\anais\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:4][D:4]-> C:\$Recycle.Bin

1 - "C:\Lop SD\LopR_1.txt" - 29/10/2009|13:18 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 31/10/2009|14:17 - Option : [4]
3 - "C:\Lop SD\LopR_3.txt" - 31/10/2009|23:30 - Option : [1]

--------------------\\ Fin du rapport a 23:30:17
[ UAC => 1 ]



le 2 eme



Logfile of random's system information tool 1.06 (written by random/random)
Run by anais at 2009-11-01 00:43:41
Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 1
System drive C: has 27 GB (24%) free of 113 GB
Total RAM: 3066 MB (65% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 00:43:45, on 01/11/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18319)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Search Guard Plus\SearchGuardPlus.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe
C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe
C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe
C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Windows\System32\rundll32.exe
C:\Users\anais\AppData\Local\Temp\RtkBtMnt.exe
C:\Program Files\Launch Manager\QtZgAcer.EXE
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe
C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe
C:\Program Files\Acer Arcade Deluxe\PlayMovie\PMVService.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\SGPSA\ie3sh.exe
C:\Program Files\Common Files\Ulead Systems\AutoDetector\Monitor.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Acer\Empowering Technology\NotificationCenter\Framework.NotificationCenter.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Windows\system32\conime.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Downloads\Software\RSIT.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Trend Micro\HijackThis\anais.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Easy Gif Animator Toolbar Helper - {96372AB6-15EB-4316-B497-71C741BC548C} - C:\Program Files\Easy Gif Animator Extension\v3.3.0.2\EasyGifAnimator_Toolbar.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.3.4501.1418\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Easy Gif Animator Toolbar - {35065594-9169-4A34-B167-FC4865038E53} - C:\Program Files\Easy Gif Animator Extension\v3.3.0.2\EasyGifAnimator_Toolbar.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe
O4 - HKLM\..\Run: [eAudio] "C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe"
O4 - HKLM\..\Run: [ePower_DMC] C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe
O4 - HKLM\..\Run: [BkupTray] "C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE
O4 - HKLM\..\Run: [ArcadeDeluxeAgent] "C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe"
O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe"
O4 - HKLM\..\Run: [PlayMovie] "C:\Program Files\Acer Arcade Deluxe\PlayMovie\PMVService.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [FBSSA] C:\Program Files\SGPSA\ie3sh.exe
O4 - HKLM\..\Run: [Ulead AutoDetector v2] C:\Program Files\Common Files\Ulead Systems\AutoDetector\monitor.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Tout télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Télécharger la sélection avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Télécharger la vidéo avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - cmdmapping - (no file) (HKCU)
O13 - Gopher Prefix:
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/MessengerGamesContent/GameContent/fr/uno1/GAME_UNO1.cab
O16 - DPF: {784797A8-342D-4072-9486-03C8D0F2F0A1} (Battlefield Heroes Updater) - https://www.battlefieldheroes.com/static/updater/BFHUpdater_4.0.27.0.cab
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: NTI Backup Now 5 Agent Service (BUNAgentSvc) - NewTech Infosystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
O23 - Service: CLHNService - Unknown owner - C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe
O23 - Service: eDataSecurity Service - Egis Incorporated - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
O23 - Service: Empowering Technology Service (ETService) - Unknown owner - C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
O23 - Service: Google Desktop Manager 5.7.808.7150 (GoogleDesktopManager-080708-050100) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: MobilityService - Unknown owner - C:\Acer\Mobility Center\MobilityService.exe
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - Unknown owner - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\Cyberlink\Shared files\RichVideo.exe
0
Réponse 34 / 40
jorginho67 Messages postés 15447 Statut Contributeur sécurité 1 169
 
Salut

Ok, ça a l'air bien...

Comment se passe ta navigation sur le net ?

Vide ta Corbeille.

Pour nettoyer les outils téléchargés pendant cette désinfection :

* Télécharge ToolsCleaner de A.Roshtein sur ton Bureau.


* Clique droit sur l'icone et " executer en tant qu'administrateur" .

Clique sur Recherche et laisse le scan se terminer.

* Clique, sur Suppression pour finaliser.

* Tu peux, si tu le souhaites, te servir des Options facultatives.

* Clique sur Quitter, pour que le rapport puisse se créer.

* Poste moi le rapport (TCleaner.txt) qui se trouve à la racine de ton disque dur( C:\).

Je te donnerais quelques conseils ensuite...
0
Réponse 35 / 40
keta42 Messages postés 137 Statut Membre
 
slt bon alors pour la navigation sur le net ca vas en faite sait pas mon ordi sait celui de ma petite soeur elle me la preter car je suis en vacance en republique tcheque et vue que la il y a rien a faire j ai decider de lui nettoyer son ordi

bon voici le rapport demander


[ Rapport ToolsCleaner version 2.3.11 (par A.Rothstein & dj QUIOU) ]

--> Recherche:

C:\cleannavi.txt: trouvé !
C:\lopR.txt: trouvé !
C:\TB.txt: trouvé !
C:\Lop SD: trouvé !
C:\Toolbar SD: trouvé !
C:\Rsit: trouvé !
C:\Downloads\Software\LopSD.exe: trouvé !
C:\Downloads\Software\OTM.exe: trouvé !
C:\Downloads\Software\Navilog1.exe: trouvé !
C:\Downloads\Software\HJTInstall.exe: trouvé !
C:\Downloads\Software\Ad-R.exe: trouvé !
C:\Downloads\Software\ToolBarSD.exe: trouvé !
C:\Downloads\Software\Rsit.exe: trouvé !
C:\Lop SD\catchme.exe: trouvé !
C:\Lop SD\catchme.log: trouvé !
C:\Program Files\Navilog1: trouvé !
C:\Program Files\Ad-remover: trouvé !
C:\Program Files\Navilog1\Navilog1.bat: trouvé !
C:\Program Files\Trend Micro\HijackThis: trouvé !
C:\Program Files\Trend Micro\HijackThis\hijackthis.log: trouvé !
C:\ProgramData\Microsoft\Windows\Start Menu\Programmes\HijackThis: trouvé !
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HijackThis: trouvé !
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HijackThis\HijackThis.lnk: trouvé !
C:\Users\All Users\Microsoft\Windows\Start Menu\Programmes\HijackThis: trouvé !
C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\HijackThis: trouvé !
C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\HijackThis\HijackThis.lnk: trouvé !
C:\Users\anais\AppData\Local\VirtualStore\Program Files\Trend Micro\HijackThis: trouvé !
C:\Users\anais\AppData\Local\VirtualStore\Program Files\Trend Micro\HijackThis\hijackthis.log: trouvé !
C:\Users\anais\Desktop\HijackThis.lnk: trouvé !
C:\Users\Invité\Desktop\HijackThis.lnk: trouvé !

---------------------------------
--> Suppression:

C:\Downloads\Software\LopSD.exe: supprimé !
C:\Downloads\Software\OTM.exe: supprimé !
C:\Downloads\Software\Navilog1.exe: supprimé !
C:\Downloads\Software\HJTInstall.exe: supprimé !
C:\Downloads\Software\Ad-R.exe: supprimé !
C:\Downloads\Software\ToolBarSD.exe: supprimé !
C:\Lop SD\catchme.exe: supprimé !
C:\Program Files\Navilog1\Navilog1.bat: supprimé !
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HijackThis\HijackThis.lnk: supprimé !
C:\Users\anais\Desktop\HijackThis.lnk: supprimé !
C:\Users\Invité\Desktop\HijackThis.lnk: supprimé !
C:\cleannavi.txt: supprimé !
C:\lopR.txt: supprimé !
C:\TB.txt: supprimé !
C:\Downloads\Software\Rsit.exe: supprimé !
C:\Lop SD\catchme.log: supprimé !
C:\Program Files\Trend Micro\HijackThis\hijackthis.log: supprimé !
C:\Users\anais\AppData\Local\VirtualStore\Program Files\Trend Micro\HijackThis\hijackthis.log: supprimé !
C:\Lop SD: supprimé !
C:\Toolbar SD: supprimé !
C:\Rsit: supprimé !
C:\Program Files\Navilog1: supprimé !
C:\Program Files\Ad-remover: supprimé !
C:\Program Files\Trend Micro\HijackThis: supprimé !
C:\ProgramData\Microsoft\Windows\Start Menu\Programmes\HijackThis: ERREUR DE SUPPRESSION !!
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HijackThis: supprimé !
C:\Users\anais\AppData\Local\VirtualStore\Program Files\Trend Micro\HijackThis: supprimé !
0
Réponse 36 / 40
jorginho67 Messages postés 15447 Statut Contributeur sécurité 1 169
 
Bien, tu peux garder ToolsCleaner et nettoyer de temps en temps les fichiers Temporaires, la corbeille, les points de restauration, ou le supprimer via le Panneau de Configuration => Ajout/Suppression de programes !

Prends le temps de lire ceci !

# Maintenant que ton ordinateur est propre je te conseille de créer un point de restauration sain, comme ça en cas de probleme (bug , plantage ..ect) tu pourras toujours revenir en arriere

Désactive ta "Restauration du système" puis réactive la.

(1) Désactivation

Clique droit sur le "Poste de travail" > Propriétés > onglet "Restauration du système" > coche la case "Désactiver la Restauration du système sur tous les lecteurs" => Appliquer .

Patiente jusqu'a que cela soit marqué "désactivée" puis Ok.

(2) Activation

Suivre le même chemin . décoche la case "Désactiver la Restauration du système sur tous les lecteurs" => Appliquer

Attends que cela soit a nouveau sur "surveillance" puis Ok. Redémarre l'ordinateur !

==================================================================

============ Conseils de base pour surfer avec un MAXIMUM de sécurité ===========

# Utiliser le navigateur Firefox plus sur et rapide que IE7

POURQUOI ? Lire Attentivement ceci
comment sécuriser Firefox

# Vérifie les mises a jours des différents softs régulièrement ici https://www.flexera.com/products/operations/software-vulnerability-management.html
Tuto https://www.malekal.com/tester-la-vulnerabilite-de-son-systeme-2/

Pour java il faut désinstaller les anciennes versions (de java) via panneau de config / ajouts et suppression de programme


# Ne pas telecharger n'importe quoi, eviter les programes gratuits genre smileys, Macrogaming\SweetIM, Boonty games ...ect

# Toujours analyser les fichiers telechargés depuis un peer to peer (emule ,Shareaza, kazza ... ect) avant de les executer
Un peu de lecture à ce sujet

# Ne pas ouvrir les pieces jointes d'un expediteur inconnu et toujours les analyser</gras> avant de les ouvrir

# Toujours analyser les fichiers reçus via MSN ou autre avec ton antivirus

====================================================================

# Un très bon nettoyeur a avoir impérativement
Malwarebyte's antimalware => ftp://ftp.commentcamarche.com/download/mbam-setup.exe

# Passe regulierement un antispyware, pense a le mettre a jour avant de le lancer c'est tres important

Les trois meilleurs du moment :

SpywareGuard offre une protection en temps réel contre les tentatives d'installation des spywares.
Prends garde à n'avoir qu'un seul anti-spyware en garde active pour éviter les risques de conflit :
https://www.commentcamarche.net/telecharger/ 34055277 spywareguard .

A Squarred > ftp://ftp.commentcamarche.com/download/a2FreeSetup.exe

SUPERAntiSpyware 4.22.1014 <https://www.commentcamarche.net/telecharger/securite/21319-superantispyware/

====================================================================

# Supprime regulierement les fichiers inutiles (fichiers temporaires , cookies .. ect) a l'aide de CCleaner 2.04.543

https://www.malekal.com/tutoriel-ccleaner/
ftp://ftp.commentcamarche.com/download/ccsetup208.exe

# Nettoie ta base de registre avec RegCleaner 4.3.0.780 https://www.malekal.com/nettoyer-sa-base-de-registre-avec-windows-registry-cleaner/

====================================================================

# Pense a défragmenter ton Disque Dur au moins une fois par mois !
comment ? http://www.infetech.com/article.php3?id_article=69

===================================================================

Encore un peu de lecture : sécuriser son pc et connaitre les menaces

=======================/!\ Très important /!\ ========================

Attention avec les downloads et/ou cracks et keygens...

Les risques du Peer to peer ( P2P )
http://www.libellules.ch/...

( Merci OGU )

Un très bon article a lire absolument :

http://www.presence-pc.com/forum/ppc/Logiciels/dossier-prevention-protection-sujet-23783-1.htm


Reviens me voir dans 2/3 jours me dire si tout và bien ;-))

Tu pourras alors mettre ce topic en résolu

Merci et bon surf ! ;-))

0
Réponse 37 / 40
keta42 Messages postés 137 Statut Membre
 
dsl pour l instant j ai mon pad touch synaptics qui marche plus et la je suis sur ce probleme des que ca resolut je regarderai tout ca en detail merci ci toi tu peut m aider je suis preneur
0
Réponse 38 / 40
jorginho67 Messages postés 15447 Statut Contributeur sécurité 1 169
 
Salut

Essaye ceci : faire un [Fn] + [F7]

( vu sur le forum )
0
Réponse 39 / 40
keta42 Messages postés 137 Statut Membre
 
j ai tout essayer rien a faire
0
Réponse 40 / 40
jorginho67 Messages postés 15447 Statut Contributeur sécurité 1 169
 
Re,

Désolé pour l'absence, si tu est encore dans le coin...

Désactive ton antivirus le temps de la manipulation car OTM est détecté comme une infection à tort.

Télécharge OTM (de OldTimer) sur ton Bureau.

Double-clique sur OTM.exe afin de le lancer.
Vérifie que la case devant "Unregister Dll's and Ocx's soit bien cochée.

Copie la liste qui se trouve en gras ci-dessous,

et colle-la dans le cadre de gauche de OTM : "Paste instructions for item to be moved".

:files
C:\Program Files\Search Guard Plus\SearchGuardPlus.exe
C:\Program Files\SGPSA\ie3sh.exe

:commands
[purity]
[emptytemp]
[reboot]

Clique maintenant sur le bouton MoveIt! puis ferme OTM.

Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
Accepte en cliquant sur YES.

Poste le rapport situé dans ce dossier : C:\_OTM\MovedFiles\
Le nom du rapport correspond au moment de sa création : date_heure.log
================

Reposte ensuite un nouveau rapport RSIT
0

Discussions similaires

Message "Un bloqueur de publicité empêche la lecture..."
pistouri -
pistouri -

0 réponse
comment desactiver un bloqueur de pub
amour10 -
MPMP10 -

4 réponses
M6 Replay désactiver le bloqueur de publicité
katydel88 -
Mathieu -

14 réponses
Problème promotion Instagram
Seeysoon -
Ben -

22 réponses
retrouver les factures des posts sponsorisés
Carotte -
MathildeSpprn -

12 réponses