Sujet Précédent Sujet Suivant

Envai de pub

gali34 Messages postés 5 Statut Membre -  
 gali34 -
Bonjour,
suis a plusieur tentative je suis envai de pub de casino et autre que fair j'ai spybot ad awade mon enti veru et magre sa des que je ouvre internee explore j'ai toujour les pub qui arive mecri de maide
voila le resuta de hjackthis

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Analog Devices\SoundMAX\Smax4.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Orange\Systray\SystrayApp.exe
C:\Program Files\AntivirusFirewall\Common\FSM32.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe
C:\Program Files\ManyCam 2.1\ManyCam.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\Program Files\Net Pro Anti-Popup\NPAP.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\OpenOffice.org 2.1\program\soffice.exe
C:\Program Files\OpenOffice.org 2.1\program\soffice.BIN
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe
C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\FSGK32.EXE
C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
C:\Program Files\AntivirusFirewall\Common\FSMB32.EXE
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fssm32.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\AntivirusFirewall\Common\FCH32.EXE
C:\WINDOWS\system32\PSIService.exe
C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe
C:\Program Files\AntivirusFirewall\Common\FAMEH32.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fsqh.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fsrw.exe
C:\Program Files\UltraVNC\WinVNC.exe
C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fsav32.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\PROGRA~1\ANTIVI~1\ANTI-S~1\fsaw.exe
C:\Program Files\AntivirusFirewall\FSGUI\fsguidll.exe
C:\Program Files\Orange\Launcher\Launcher.exe
C:\Program Files\Orange\connectivity\connectivitymanager.exe
C:\Program Files\Orange\Deskboard\deskboard.exe
C:\Program Files\Orange\connectivity\CoreCom\CoreCom.exe
C:\Program Files\Orange\connectivity\CoreCom\OraConfigRecover.exe
C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTCOMModule\0\FTCOMModule.exe
C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Opera\Opera.exe
C:\Documents and Settings\Administrateur\Bureau\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = IE
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Favoris
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Orange\SearchURLHook\SearchPageURL.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: SWEETIE - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - (no file)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
O3 - Toolbar: (no name) - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - (no file)
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [SoundMAX] "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray
O4 - HKLM\..\Run: [WinVNC] "C:\Program Files\UltraVNC\WinVNC.exe" -servicehelper
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [REGSHAVE] C:\Program Files\REGSHAVE\REGSHAVE.EXE /AUTORUN
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [CHIN PING PHONE PILE] C:\Documents and Settings\All Users\Application Data\Proxy Long Chin Ping\sign 32.exe
O4 - HKLM\..\Run: [SystrayORAHSS] "C:\Program Files\Orange\Systray\SystrayApp.exe"
O4 - HKLM\..\Run: [ORAHSSSessionManager] C:\Program Files\Orange\SessionManager\SessionManager.exe
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\AntivirusFirewall\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\AntivirusFirewall\TNB\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM\..\Run: [F-Secure Startup Wizard] "C:\Program Files\AntivirusFirewall\FSGUI\FSSW.EXE" /reboot
O4 - HKLM\..\Run: [News Service] "C:\Program Files\AntivirusFirewall\FSGUI\ispnews.exe"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [Magentic] C:\PROGRA~1\Magentic\bin\Magentic.exe /c
O4 - HKCU\..\Run: [PLATFORMSITE] C:\DOCUME~1\ADMINI~1\APPLIC~1\rdriso\Mess Real.exe
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\ccleaner.exe" /AUTO
O4 - HKCU\..\Run: [ManyCam] "C:\Program Files\ManyCam 2.1\ManyCam.exe"
O4 - HKCU\..\Run: [kmabsf] c:\documents and settings\administrateur\local settings\application data\kmabsf.exe kmabsf
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - Startup: OpenOffice.org 2.1.lnk = C:\Program Files\OpenOffice.org 2.1\program\quickstart.exe
O4 - Global Startup: Antivirus Firewall.lnk = C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe
O4 - Global Startup: Google Updater.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O4 - Global Startup: Net Pro Anti-Popup.lnk = C:\Program Files\Net Pro Anti-Popup\NPAP.exe
O8 - Extra context menu item: &Bloquer cette fenêtre publicitaire - C:\Program Files\AntivirusFirewall\Anti-Spyware\blockpopups.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Protection Internet Explorer - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\AntivirusFirewall\Anti-Spyware\ieshield.dll
O9 - Extra 'Tools' menuitem: Protection Internet Explorer... - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\AntivirusFirewall\Anti-Spyware\ieshield.dll
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\IMVU\Run IMVU.lnk (file missing)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O15 - Trusted Zone:
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ares Chatroom server (AresChatServer) - Ares Development Group - C:\Program Files\Ares\chatServer.exe
O23 - Service: Antivirus Firewall (BackWeb Plug-in - 6588780) - Securitoo Portal - C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe
O23 - Service: fsbwsys - F-Secure Corp. - C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NMIndexingService - Unknown owner - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe (file missing)
O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe
O23 - Service: VNC Server (winvnc) - UltraVNC - C:\Program Files\UltraVNC\WinVNC.exe
A voir également:

8 réponses

Réponse 1 / 8
green day Messages postés 26722 Statut Modérateur, Contributeur sécurité 2 163
 
Salut

Télécharge ceci: (by Moe) :

http://sosvirus.changelog.fr/Green_day/Lopxpsetup.exe

Double clic sur Lopxpsetup.exe pour lancer l'installation
Au menu, choisir l'option 1
Patienter jusqu'à que l'on demande d'appuyer sur une touche, appuyer !
Une rapport sera alors crée, à copie/colle en entier sur le forum.

++
0
Réponse 2 / 8
magali
 
voila le rapport

Rapport Lopxp fait le 20/01/2008 à 17:22:36
Exécuté dans : C:\Program Files\Lopxp 


  Killing 'iexplore.exe'
"C:\Program Files\Internet Explorer\iexplore.exe" (1920)
"C:\Program Files\Internet Explorer\iexplore.exe" (260)
___________________________________________________________________________

=> Tâches planifiées

C:\WINDOWS\tasks\AC9EFFC491857224.job 
Crée le : 17/01/2008 à 08:38
Fichier exécuté => c:\docume~1\admini~1\applic~1\rdriso\Bat Owns Dumb.exe 

C:\WINDOWS\tasks\AppleSoftwareUpdate.job 
Crée le : 16/03/2007 à 09:27
Fichier exécuté => C:\Program Files\Apple Software Update\SoftwareUpdate.exe -task

C:\WINDOWS\tasks\Scheduled scanning task.job 
Crée le : 20/01/2008 à 11:35
Fichier exécuté => C:\PROGRA~1\ANTIVI~1\ANTI-V~1\fsav.exe  /HARD /ARCHIVE /DISINF /SCHED /NOBREAK /REPORT=C:\PROGRA~1\ANTIVI~1\ANTI-V~1\report.txt 


___________________________________________________________________________

=> Listing des dossiers Application Data

+- C:\Documents and Settings\Administrateur\Application Data

10/03/2007 18:46:32 ... Adobe -----= Adobe
12/04/2007 16:42:06 ... AdobeUM ---= AdobeUM
23/03/2007 18:16:03 ... Ahead -----= Ahead
01/04/2007 16:05:09 ... APPLEC~1 --= Apple Computer
24/09/2007 14:46:53 ... Azureus ---= Azureus
29/05/2007 18:33:52 ... Corel -----= Corel
15/03/2007 20:48:02 ... DivX ------= DivX
20/01/2008 11:35:28 ... F-Secure --= F-Secure
10/03/2007 18:59:26 ... FotoWire --= FotoWire
11/03/2007 12:18:40 ... FUJIFILM --= FUJIFILM
10/03/2007 18:46:13 ... Google ----= Google
26/05/2007 14:29:22 ... gtk-2.0 ---= gtk-2.0
27/05/2007 18:50:15 ... Help ------= Help
10/03/2007 18:34:24 ... IDENTI~1 --= Identities
17/01/2008 11:26:36 ... INSTAL~1 --= InstallShield
10/03/2007 18:46:32 ... INTERT~1 --= InterTrust
20/01/2008 11:29:43 ... ispnews ---= ispnews
10/03/2007 18:46:30 ... Lavasoft --= Lavasoft
13/07/2007 14:20:36 ... LimeWire --= LimeWire
11/03/2007 09:42:07 ... MACROM~1 --= Macromedia
14/09/2007 10:13:02 ... MEDIAP~1 --= Media Player Classic
10/03/2007 18:31:45 ... MICROS~1 --= Microsoft
18/03/2007 11:12:48 ... Mozilla ---= Mozilla
17/06/2007 08:29:42 ... MSNPIC~1 --= MSN Pictures Displayer
16/03/2007 09:54:01 ... OPENOF~1.ORG --= OpenOffice.org2
14/11/2007 13:38:59 ... Opera -----= Opera
20/01/2008 11:35:24 ... PEX -------= PEX
26/05/2007 10:29:26 ... PNGOPT~1 --= PngOptimizer
02/04/2007 13:06:08 ... rdriso ----= rdriso
14/09/2007 10:10:56 ... Real ------= Real
19/03/2007 13:45:48 ... SCREEN~1 --= Screenshot Sender
01/08/2007 15:17:19 ... Skype -----= Skype
26/05/2007 14:46:17 ... SOLIDD~1 --= SolidDocuments
27/03/2007 11:15:26 ... Sun -------= Sun
27/07/2007 12:57:31 ... TuxPaint --= TuxPaint
25/10/2007 14:55:50 ... U3 --------= U3
25/07/2007 15:43:46 ... vlc -------= vlc
17/11/2007 17:10:02 ... Vso -------= Vso

+- C:\Documents and Settings\Administrateur\Local Settings\Application Data

12/04/2007 16:42:04 ... Adobe -----= Adobe
25/03/2007 10:48:29 ... Ahead -----= Ahead
25/07/2007 09:08:49 ... Apple -----= Apple
01/04/2007 16:04:44 ... APPLEC~1 --= Apple Computer
14/08/2007 16:35:31 ... Ares ------= Ares
10/03/2007 18:46:13 ... Google ----= Google
27/05/2007 18:50:15 ... Help ------= Help
01/01/2008 12:22:35 ... IDENTI~1 --= Identities
11/03/2007 09:38:14 ... IM --------= IM
11/03/2007 12:16:34 ... LOGITE~1 --= Logitech-LS
20/03/2007 16:38:17 ... Magentic --= Magentic
10/03/2007 18:31:45 ... MICROS~1 --= Microsoft
18/03/2007 11:12:52 ... Mozilla ---= Mozilla
14/09/2007 10:10:56 ... Real ------= Real
10/03/2007 18:43:31 ... Symantec --= Symantec
28/08/2007 14:52:58 ... WMTOOL~1 --= WMTools Downloaded Files

+- C:\Documents and Settings\All Users\Application Data

08/04/2007 10:06:48 ... Adobe -----= Adobe
10/03/2007 18:52:21 ... Ahead -----= Ahead
25/07/2007 09:08:16 ... Apple -----= Apple
16/03/2007 09:27:05 ... APPLEC~1 --= Apple Computer
10/03/2007 18:48:57 ... CanonBJ ---= CanonBJ
29/05/2007 18:34:14 ... Corel -----= Corel
20/01/2008 11:25:25 ... F-Secure --= F-Secure
10/03/2007 18:46:10 ... Google ----= Google
21/03/2007 19:37:21 ... GOOGLE~1 --= Google Updater
29/10/2007 11:29:18 ... Lavasoft --= Lavasoft
02/04/2007 13:06:29 ... LOCKSR~1 --= locks real save memo
25/10/2007 17:00:18 ... MESSEN~1 --= Messenger Plus!
10/03/2007 19:14:02 ... MICROS~1 --= Microsoft
18/10/2007 13:43:57 ... PROXYL~1 --= Proxy Long Chin Ping
14/09/2007 10:10:56 ... Real ------= Real
01/08/2007 15:16:46 ... Skype -----= Skype
26/05/2007 14:45:40 ... SOLIDD~1 --= SolidDocuments
03/11/2007 11:39:02 ... SPYBOT~1 --= Spybot - Search & Destroy
10/03/2007 18:42:41 ... Symantec --= Symantec
27/07/2007 15:48:59 ... TEMP ------= TEMP
12/03/2007 11:44:26 ... ULEADS~1 --= Ulead Systems
25/07/2007 08:25:49 ... WINDOW~2 --= Windows Genuine Advantage
30/03/2007 13:28:06 ... WINDOW~1 --= Windows Live Toolbar
05/12/2007 13:10:00 ... WLINST~1 --= WLInstaller
29/03/2007 10:55:43 ... Zylom -----= Zylom

___________________________________________________________________________

=> Listing du dossier ProgramFiles

+- C:\Program Files

10/03/2007 18:46:17 ... 7-Zip -----= 7-Zip
10/03/2007 18:46:32 ... Adobe -----= Adobe
10/03/2007 18:52:13 ... Ahead -----= Ahead
10/03/2007 18:41:48 ... ANALOG~1 --= Analog Devices
20/01/2008 11:19:04 ... ANTIVI~1 --= AntivirusFirewall
16/03/2007 09:27:15 ... APPLES~1 --= Apple Software Update
14/08/2007 16:35:17 ... Ares ------= Ares
01/01/2008 16:59:07 ... Aspell ----= Aspell
10/03/2007 18:48:16 ... Canon -----= Canon
01/04/2007 11:20:04 ... CCleaner --= CCleaner
21/12/2007 16:13:11 ... CIRCLE~1 --= Circle Developement
10/03/2007 19:00:19 ... Conexant --= Conexant
01/05/2007 08:06:26 ... DAEMON~1 --= DAEMON Tools
29/09/2007 16:52:48 ... DIKO ------= DIKO
15/03/2007 20:46:41 ... DivX ------= DivX
06/05/2007 17:51:28 ... DVDPIX~1 --= DVD PixPlay
17/05/2007 11:12:13 ... eMule -----= eMule
10/03/2007 19:14:34 ... FICHIE~1 --= Fichiers communs
10/03/2007 19:03:30 ... FINEPI~1 --= FinePixViewer
10/04/2007 10:25:46 ... FRAMES~1 --= FrameShow
31/08/2007 13:55:57 ... fxc -------= fxc
10/03/2007 18:46:10 ... Google ----= Google
10/03/2007 18:39:32 ... INSTAL~1 --= InstallShield Installation Information
10/03/2007 18:38:27 ... Intel -----= Intel
10/03/2007 18:25:24 ... INTERN~1 --= Internet Explorer
25/07/2007 09:10:42 ... iPod ------= iPod
25/07/2007 09:10:33 ... iTunes ----= iTunes
15/03/2007 15:24:10 ... Java ------= Java
14/09/2007 10:10:56 ... K-LITE~1 --= K-Lite Codec Pack
19/04/2007 13:32:53 ... KCSOFT~1 --= KC Softwares
29/10/2007 11:29:18 ... Lavasoft --= Lavasoft
13/07/2007 14:20:18 ... LimeWire --= LimeWire
10/03/2007 18:57:32 ... Logitech --= Logitech
20/01/2008 17:19:32 ... Lopxp -----= Lopxp
07/01/2008 16:14:35 ... MANYCA~1.1 -----= ManyCam 2.1
28/08/2007 15:01:07 ... MESSEN~1 --= Messenger
24/10/2007 15:06:57 ... MESSEN~2 --= Messenger Plus! Live
20/01/2008 13:40:39 ... MICROS~1.2 --= Microsoft CAPICOM 2.1.0.2
10/03/2007 18:28:40 ... MICROS~1 --= microsoft frontpage
23/10/2007 15:19:56 ... MICROS~2 --= Microsoft Office
05/12/2007 13:21:27 ... MICROS~3 --= Microsoft SQL Server Compact Edition
10/03/2007 18:25:44 ... MOVIEM~1 --= Movie Maker
23/10/2007 15:19:43 ... MSECache --= MSECache
10/03/2007 18:28:40 ... MSNGAM~1 --= msn gaming zone
28/08/2007 15:00:20 ... MSNPIC~1 --= MSN Pictures Displayer
20/01/2008 13:36:57 ... MSXML4~1.0 --= MSXML 4.0
11/11/2007 18:41:19 ... NETPRO~1 --= Net Pro Anti-Popup
10/03/2007 18:25:34 ... NETMEE~1 --= NetMeeting
31/08/2007 14:26:42 ... ONESTE~1 --= OneStepSearch
16/03/2007 09:47:53 ... OPENOF~1.1 --= OpenOffice.org 2.1
14/11/2007 13:38:45 ... Opera -----= Opera
17/01/2008 11:33:51 ... Orange ----= Orange
10/03/2007 18:25:31 ... OUTLOO~1 --= Outlook Express
25/08/2007 13:35:42 ... PHOTOS~2 --= PhotoScape
09/07/2007 20:03:21 ... Picasa2 ---= Picasa2
25/07/2007 09:09:52 ... QUICKT~1 --= QuickTime
17/01/2008 08:36:56 ... rdriso ----= rdriso
27/07/2007 15:48:48 ... REGIST~1 --= Registry Mechanic
10/03/2007 19:02:45 ... REGSHAVE --= REGSHAVE
17/01/2008 11:26:39 ... SAGEM -----= SAGEM
08/04/2007 10:04:51 ... Samsung ---= Samsung
17/01/2008 11:23:59 ... SECURI~1 --= Securitoo
10/03/2007 18:26:36 ... SERVIC~1 --= Services en ligne
20/04/2007 13:49:37 ... Shareaza --= Shareaza
03/11/2007 11:39:02 ... SPYBOT~1 --= Spybot - Search & Destroy
31/07/2007 15:08:23 ... THQ -------= THQ
27/07/2007 12:56:53 ... TuxPaint --= TuxPaint
10/03/2007 19:07:09 ... ULEADS~1 --= Ulead Systems
10/03/2007 18:44:09 ... UltraVNC --= UltraVNC
10/03/2007 18:34:21 ... UNINST~1 --= Uninstall Information
25/07/2007 15:42:37 ... VideoLAN --= VideoLAN
17/11/2007 17:09:56 ... VSO -------= VSO
24/10/2007 15:06:58 ... WINDOW~4 --= Windows Live
30/03/2007 13:27:59 ... WI81E8~1 --= Windows Live Toolbar
25/07/2007 08:19:12 ... WI4DF6~1 --= Windows Media Connect 2
10/03/2007 18:24:26 ... WINDOW~1 --= Windows Media Player
10/03/2007 18:28:40 ... WINDOW~3 --= windows nt
10/03/2007 18:34:07 ... WinRAR ----= WinRAR
10/03/2007 18:28:40 ... xerox -----= xerox


___________________________________________________________________________

=> Clés registre

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CHIN PING PHONE PILE"="C:\Documents and Settings\All Users\Application Data\Proxy Long Chin Ping\sign 32.exe"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"PLATFORMSITE"="C:\DOCUME~1\ADMINI~1\APPLIC~1\rdriso\Mess Real.exe"


___________________________________________________________________________

=> Bloqueur popups Internet Explorer

+- Liste des popups autorisés :

host-domain-lookup.com
www.host-domain-lookup.com
mysearchnow.com
www.mysearchnow.com
searchweb2.com
www.searchweb2.com
*.mail.live.com

___________________________________________________________________________

/!\  Suggestion (Nécessite une interprétation.)

+- Dossiers suspects :

C:\Documents and Settings\Administrateur\Application Data\rdriso
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Real
C:\Documents and Settings\All Users\Application Data\locks real save memo
C:\Documents and Settings\All Users\Application Data\Proxy Long Chin Ping
C:\Documents and Settings\All Users\Application Data\Real
C:\Program Files\rdriso
C:\Program Files\Circle Developement

+- Tâches planifiées suspectes :

C:\WINDOWS\tasks\AC9EFFC491857224.job

+- Registre:

REGEDIT4

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CHIN PING PHONE PILE"=-

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"PLATFORMSITE"=-

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow]
"host-domain-lookup.com"=-
"www.host-domain-lookup.com"=-
"mysearchnow.com"=-
"www.mysearchnow.com"=-
"searchweb2.com"=-
"www.searchweb2.com"=-

- Fin du rapport -
0
Réponse 3 / 8
green day Messages postés 26722 Statut Modérateur, Contributeur sécurité 2 163
 
Euh ! magali et gali43 sont la même personne ???

++
0
Réponse 4 / 8
gali34
 
oui gali34 et magali c'est la meme personne merci pour pouvoir médai
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 8
green day Messages postés 26722 Statut Modérateur, Contributeur sécurité 2 163
 
ok :)

va dans : Démarrer > Exécuter puis copie/colle la ligne suivante en gras :

"%programfiles%\Lopxp\Lopxp.bat" /Fixme

puis valide, et poste le rapport stp

@+
0
Réponse 6 / 8
gali34
 
Rapport Lopxp fait le 21/01/2008 à 8:32:21
Exécuté dans : C:\Program Files\Lopxp 


___________________________________________________________________________

=> Fixme :

+- Tâches planifiées :
Supprimé : C:\WINDOWS\tasks\AC9EFFC491857224.job

+- Dossiers :
Supprimé : C:\Documents and Settings\Administrateur\Application Data\rdriso
Supprimé : C:\Documents and Settings\Administrateur\Local Settings\Application Data\Real
Supprimé : C:\Documents and Settings\All Users\Application Data\locks real save memo
Supprimé : C:\Documents and Settings\All Users\Application Data\Proxy Long Chin Ping
Supprimé : C:\Documents and Settings\All Users\Application Data\Real
Supprimé : C:\Program Files\rdriso
Supprimé : C:\Program Files\Circle Developement

+- Registre :
Nettoyage effectué.

+- Fichiers temporaires :
Nettoyage effectué.

___________________________________________________________________________

=> Tâches planifiées

C:\WINDOWS\tasks\AppleSoftwareUpdate.job 
Crée le : 16/03/2007 à 09:27
Fichier exécuté => C:\Program Files\Apple Software Update\SoftwareUpdate.exe -task

C:\WINDOWS\tasks\Scheduled scanning task.job 
Crée le : 20/01/2008 à 11:35
Fichier exécuté => C:\PROGRA~1\ANTIVI~1\ANTI-V~1\fsav.exe  /HARD /ARCHIVE /DISINF /SCHED /NOBREAK /REPORT=C:\PROGRA~1\ANTIVI~1\ANTI-V~1\report.txt 


___________________________________________________________________________

=> Listing des dossiers Application Data

+- C:\Documents and Settings\Administrateur\Application Data

10/03/2007 18:46:32 ... Adobe -----= Adobe
12/04/2007 16:42:06 ... AdobeUM ---= AdobeUM
23/03/2007 18:16:03 ... Ahead -----= Ahead
01/04/2007 16:05:09 ... APPLEC~1 --= Apple Computer
24/09/2007 14:46:53 ... Azureus ---= Azureus
29/05/2007 18:33:52 ... Corel -----= Corel
15/03/2007 20:48:02 ... DivX ------= DivX
20/01/2008 11:35:28 ... F-Secure --= F-Secure
10/03/2007 18:59:26 ... FotoWire --= FotoWire
11/03/2007 12:18:40 ... FUJIFILM --= FUJIFILM
10/03/2007 18:46:13 ... Google ----= Google
26/05/2007 14:29:22 ... gtk-2.0 ---= gtk-2.0
27/05/2007 18:50:15 ... Help ------= Help
10/03/2007 18:34:24 ... IDENTI~1 --= Identities
17/01/2008 11:26:36 ... INSTAL~1 --= InstallShield
10/03/2007 18:46:32 ... INTERT~1 --= InterTrust
20/01/2008 11:29:43 ... ispnews ---= ispnews
10/03/2007 18:46:30 ... Lavasoft --= Lavasoft
13/07/2007 14:20:36 ... LimeWire --= LimeWire
11/03/2007 09:42:07 ... MACROM~1 --= Macromedia
14/09/2007 10:13:02 ... MEDIAP~1 --= Media Player Classic
10/03/2007 18:31:45 ... MICROS~1 --= Microsoft
18/03/2007 11:12:48 ... Mozilla ---= Mozilla
17/06/2007 08:29:42 ... MSNPIC~1 --= MSN Pictures Displayer
16/03/2007 09:54:01 ... OPENOF~1.ORG --= OpenOffice.org2
14/11/2007 13:38:59 ... Opera -----= Opera
20/01/2008 11:35:24 ... PEX -------= PEX
26/05/2007 10:29:26 ... PNGOPT~1 --= PngOptimizer
14/09/2007 10:10:56 ... Real ------= Real
19/03/2007 13:45:48 ... SCREEN~1 --= Screenshot Sender
01/08/2007 15:17:19 ... Skype -----= Skype
26/05/2007 14:46:17 ... SOLIDD~1 --= SolidDocuments
27/03/2007 11:15:26 ... Sun -------= Sun
27/07/2007 12:57:31 ... TuxPaint --= TuxPaint
25/10/2007 14:55:50 ... U3 --------= U3
25/07/2007 15:43:46 ... vlc -------= vlc
17/11/2007 17:10:02 ... Vso -------= Vso

+- C:\Documents and Settings\Administrateur\Local Settings\Application Data

12/04/2007 16:42:04 ... Adobe -----= Adobe
25/03/2007 10:48:29 ... Ahead -----= Ahead
25/07/2007 09:08:49 ... Apple -----= Apple
01/04/2007 16:04:44 ... APPLEC~1 --= Apple Computer
14/08/2007 16:35:31 ... Ares ------= Ares
10/03/2007 18:46:13 ... Google ----= Google
27/05/2007 18:50:15 ... Help ------= Help
01/01/2008 12:22:35 ... IDENTI~1 --= Identities
11/03/2007 09:38:14 ... IM --------= IM
11/03/2007 12:16:34 ... LOGITE~1 --= Logitech-LS
20/03/2007 16:38:17 ... Magentic --= Magentic
10/03/2007 18:31:45 ... MICROS~1 --= Microsoft
18/03/2007 11:12:52 ... Mozilla ---= Mozilla
10/03/2007 18:43:31 ... Symantec --= Symantec
28/08/2007 14:52:58 ... WMTOOL~1 --= WMTools Downloaded Files

+- C:\Documents and Settings\All Users\Application Data

08/04/2007 10:06:48 ... Adobe -----= Adobe
10/03/2007 18:52:21 ... Ahead -----= Ahead
25/07/2007 09:08:16 ... Apple -----= Apple
16/03/2007 09:27:05 ... APPLEC~1 --= Apple Computer
10/03/2007 18:48:57 ... CanonBJ ---= CanonBJ
29/05/2007 18:34:14 ... Corel -----= Corel
20/01/2008 11:25:25 ... F-Secure --= F-Secure
10/03/2007 18:46:10 ... Google ----= Google
21/03/2007 19:37:21 ... GOOGLE~1 --= Google Updater
29/10/2007 11:29:18 ... Lavasoft --= Lavasoft
25/10/2007 17:00:18 ... MESSEN~1 --= Messenger Plus!
10/03/2007 19:14:02 ... MICROS~1 --= Microsoft
01/08/2007 15:16:46 ... Skype -----= Skype
26/05/2007 14:45:40 ... SOLIDD~1 --= SolidDocuments
03/11/2007 11:39:02 ... SPYBOT~1 --= Spybot - Search & Destroy
10/03/2007 18:42:41 ... Symantec --= Symantec
27/07/2007 15:48:59 ... TEMP ------= TEMP
12/03/2007 11:44:26 ... ULEADS~1 --= Ulead Systems
25/07/2007 08:25:49 ... WINDOW~2 --= Windows Genuine Advantage
30/03/2007 13:28:06 ... WINDOW~1 --= Windows Live Toolbar
05/12/2007 13:10:00 ... WLINST~1 --= WLInstaller
29/03/2007 10:55:43 ... Zylom -----= Zylom

___________________________________________________________________________

=> Listing du dossier ProgramFiles

+- C:\Program Files

10/03/2007 18:46:17 ... 7-Zip -----= 7-Zip
10/03/2007 18:46:32 ... Adobe -----= Adobe
10/03/2007 18:52:13 ... Ahead -----= Ahead
10/03/2007 18:41:48 ... ANALOG~1 --= Analog Devices
20/01/2008 11:19:04 ... ANTIVI~1 --= AntivirusFirewall
16/03/2007 09:27:15 ... APPLES~1 --= Apple Software Update
14/08/2007 16:35:17 ... Ares ------= Ares
01/01/2008 16:59:07 ... Aspell ----= Aspell
10/03/2007 18:48:16 ... Canon -----= Canon
01/04/2007 11:20:04 ... CCleaner --= CCleaner
10/03/2007 19:00:19 ... Conexant --= Conexant
01/05/2007 08:06:26 ... DAEMON~1 --= DAEMON Tools
29/09/2007 16:52:48 ... DIKO ------= DIKO
15/03/2007 20:46:41 ... DivX ------= DivX
06/05/2007 17:51:28 ... DVDPIX~1 --= DVD PixPlay
17/05/2007 11:12:13 ... eMule -----= eMule
10/03/2007 19:14:34 ... FICHIE~1 --= Fichiers communs
10/03/2007 19:03:30 ... FINEPI~1 --= FinePixViewer
10/04/2007 10:25:46 ... FRAMES~1 --= FrameShow
31/08/2007 13:55:57 ... fxc -------= fxc
10/03/2007 18:46:10 ... Google ----= Google
10/03/2007 18:39:32 ... INSTAL~1 --= InstallShield Installation Information
10/03/2007 18:38:27 ... Intel -----= Intel
10/03/2007 18:25:24 ... INTERN~1 --= Internet Explorer
25/07/2007 09:10:42 ... iPod ------= iPod
25/07/2007 09:10:33 ... iTunes ----= iTunes
15/03/2007 15:24:10 ... Java ------= Java
14/09/2007 10:10:56 ... K-LITE~1 --= K-Lite Codec Pack
19/04/2007 13:32:53 ... KCSOFT~1 --= KC Softwares
29/10/2007 11:29:18 ... Lavasoft --= Lavasoft
13/07/2007 14:20:18 ... LimeWire --= LimeWire
10/03/2007 18:57:32 ... Logitech --= Logitech
20/01/2008 17:19:32 ... Lopxp -----= Lopxp
07/01/2008 16:14:35 ... MANYCA~1.1 -----= ManyCam 2.1
28/08/2007 15:01:07 ... MESSEN~1 --= Messenger
24/10/2007 15:06:57 ... MESSEN~2 --= Messenger Plus! Live
20/01/2008 13:40:39 ... MICROS~1.2 --= Microsoft CAPICOM 2.1.0.2
10/03/2007 18:28:40 ... MICROS~1 --= microsoft frontpage
23/10/2007 15:19:56 ... MICROS~2 --= Microsoft Office
05/12/2007 13:21:27 ... MICROS~3 --= Microsoft SQL Server Compact Edition
10/03/2007 18:25:44 ... MOVIEM~1 --= Movie Maker
23/10/2007 15:19:43 ... MSECache --= MSECache
10/03/2007 18:28:40 ... MSNGAM~1 --= msn gaming zone
28/08/2007 15:00:20 ... MSNPIC~1 --= MSN Pictures Displayer
20/01/2008 13:36:57 ... MSXML4~1.0 --= MSXML 4.0
11/11/2007 18:41:19 ... NETPRO~1 --= Net Pro Anti-Popup
10/03/2007 18:25:34 ... NETMEE~1 --= NetMeeting
31/08/2007 14:26:42 ... ONESTE~1 --= OneStepSearch
16/03/2007 09:47:53 ... OPENOF~1.1 --= OpenOffice.org 2.1
14/11/2007 13:38:45 ... Opera -----= Opera
17/01/2008 11:33:51 ... Orange ----= Orange
10/03/2007 18:25:31 ... OUTLOO~1 --= Outlook Express
25/08/2007 13:35:42 ... PHOTOS~2 --= PhotoScape
09/07/2007 20:03:21 ... Picasa2 ---= Picasa2
25/07/2007 09:09:52 ... QUICKT~1 --= QuickTime
27/07/2007 15:48:48 ... REGIST~1 --= Registry Mechanic
10/03/2007 19:02:45 ... REGSHAVE --= REGSHAVE
17/01/2008 11:26:39 ... SAGEM -----= SAGEM
08/04/2007 10:04:51 ... Samsung ---= Samsung
17/01/2008 11:23:59 ... SECURI~1 --= Securitoo
10/03/2007 18:26:36 ... SERVIC~1 --= Services en ligne
20/04/2007 13:49:37 ... Shareaza --= Shareaza
03/11/2007 11:39:02 ... SPYBOT~1 --= Spybot - Search & Destroy
31/07/2007 15:08:23 ... THQ -------= THQ
27/07/2007 12:56:53 ... TuxPaint --= TuxPaint
10/03/2007 19:07:09 ... ULEADS~1 --= Ulead Systems
10/03/2007 18:44:09 ... UltraVNC --= UltraVNC
10/03/2007 18:34:21 ... UNINST~1 --= Uninstall Information
25/07/2007 15:42:37 ... VideoLAN --= VideoLAN
17/11/2007 17:09:56 ... VSO -------= VSO
24/10/2007 15:06:58 ... WINDOW~4 --= Windows Live
30/03/2007 13:27:59 ... WI81E8~1 --= Windows Live Toolbar
25/07/2007 08:19:12 ... WI4DF6~1 --= Windows Media Connect 2
10/03/2007 18:24:26 ... WINDOW~1 --= Windows Media Player
10/03/2007 18:28:40 ... WINDOW~3 --= windows nt
10/03/2007 18:34:07 ... WinRAR ----= WinRAR
10/03/2007 18:28:40 ... xerox -----= xerox


___________________________________________________________________________

=> Clés registre


___________________________________________________________________________

=> Bloqueur popups Internet Explorer

+- Liste des popups autorisés :

*.mail.live.com

___________________________________________________________________________

/!\  Suggestion (Nécessite une interprétation.)

- Fin du rapport -
0
Réponse 7 / 8
green day Messages postés 26722 Statut Modérateur, Contributeur sécurité 2 163
 
très bien !

fais ce qui est indiqué ici stp : http://www.commentcamarche.net/faq/sujet 3174 virus methode preliminaire de desinfection version fr

++
0
Réponse 8 / 8
gali34
 
ok merci
0

Discussions similaires

Ouvrir un fichier .pub sans Publisher
baissaoui -
baissaoui -

0 réponse
Ouvrir document Publisher sans Publisher
Curtis Hayes -
Curtis Hayes -

7 réponses
lire un fichier .pub
xycoco -
Valou -

38 réponses
Lire, afficher, exécuter un fichier *.pub sans Publisher
jeannoellaurenti -
informatique_fujitsu -

1 réponse
M6 Replay désactiver le bloqueur de publicité
katydel88 -
Mathieu -

14 réponses