Sujet Précédent Sujet Suivant

Aide pour hijackthis

luluululul -  
 Utilisateur anonyme -
Bonjour, voici mon rapport dit moi svp si ya qq chose qui va pas

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:11:19, on 12/08/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16681)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Windows\RtHDVCpl.exe
C:\Acer\Empowering Technology\eDataSecurity\eDSLoader.exe
C:\Acer\Empowering Technology\eAudio\eAudio.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe
C:\Users\Lucile\AppData\Local\Temp\RtkBtMnt.exe
C:\Program Files\Acer Arcade Deluxe\Play Movie\PMVService.exe
C:\Program Files\Apoint2K\Apoint.exe
C:\Program Files\Zango\bin\10.3.74.0\OEAddOn.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Zango\bin\10.3.74.0\Weather.exe
C:\Windows\ehome\ehmsas.exe
C:\Acer\Empowering Technology\ENET\ENMTRAY.EXE
C:\Acer\Empowering Technology\EPOWER\EPOWER_DMC.EXE
C:\Acer\Empowering Technology\ACER.EMPOWERING.FRAMEWORK.SUPERVISOR.EXE
C:\Acer\Empowering Technology\eRecovery\ERAGENT.EXE
C:\Program Files\Apoint2K\Apntex.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Users\Lucile\Desktop\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O1 - Hosts: ::1 localhost
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: ShoppingReport - {100EB1FD-D03E-47FD-81F3-EE91287F9465} - C:\Program Files\ShoppingReport\Bin\2.5.0\ShoppingReport.dll
O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\NppBho.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: ShowBarObj Class - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Windows\system32\ActiveToolBand.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Zango - {90B8B761-DF2B-48AC-BBE0-BCC03A819B3B} - C:\Program Files\Zango\bin\10.3.74.0\HostIE.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\system32\eDStoolbar.dll
O3 - Toolbar: Show Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\UIBHO.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Zango - {90B8B761-DF2B-48AC-BBE0-BCC03A819B3B} - C:\Program Files\Zango\bin\10.3.74.0\HostIE.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
O4 - HKLM\..\Run: [eAudio] "C:\Acer\Empowering Technology\eAudio\eAudio.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton Internet Security\osCheck.exe"
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\LManager.exe
O4 - HKLM\..\Run: [PlayMovie] "C:\Program Files\Acer Arcade Deluxe\Play Movie\PMVService.exe"
O4 - HKLM\..\Run: [Skytel] Skytel.exe
O4 - HKLM\..\Run: [WarReg_PopUp] C:\Acer\WR_PopUp\WarReg_PopUp.exe
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe
O4 - HKLM\..\Run: [ZangoOE] C:\Program Files\Zango\bin\10.3.74.0\OEAddOn.exe
O4 - HKLM\..\Run: [ZangoSA] "C:\Program Files\Zango\bin\10.3.74.0\ZangoSA.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Spyware-Secure] C:\Program Files\Spyware-Secure\Spyware-Secure_trial.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [WeatherDPA] "C:\Program Files\Zango\bin\10.3.74.0\Weather.exe" -auto
O4 - HKUS\S-1-5-18\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe (User 'Default user')
O4 - Global Startup: Empowering Technology Launcher.lnk = C:\Acer\Empowering Technology\eAPLauncher.exe
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: ShopperReports - Compare product prices - {C5428486-50A0-4a02-9D20-520B59A9F9B2} - C:\Program Files\ShoppingReport\Bin\2.5.0\ShoppingReport.dll
O9 - Extra button: ShopperReports - Compare travel rates - {C5428486-50A0-4a02-9D20-520B59A9F9B3} - C:\Program Files\ShoppingReport\Bin\2.5.0\ShoppingReport.dll
O13 - Gopher Prefix:
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: eDSService.exe (eDataSecurity Service) - HiTRSUT - C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe
O23 - Service: eLock Service (eLockService) - Acer Inc. - C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe
O23 - Service: eNet Service - Acer Inc. - C:\Acer\Empowering Technology\eNet\eNet Service.exe
O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
O23 - Service: eSettings Service (eSettingsService) - Unknown owner - C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
O23 - Service: Validation de mot de passe Symantec IS (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\isPwdSvc.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: MobilityService - Unknown owner - C:\Acer\Mobility Center\MobilityService.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: ePower Service (WMIService) - acer - C:\Acer\Empowering Technology\ePower\ePowerSvc.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe
A voir également:

34 réponses

Précédent
  • 1
  • 2
Réponse 21 / 34
Utilisateur anonyme
 
passe en mode sans echec

Démarre en mode sans échec :
Pour cela, tu tapotes la touche F8 dès le début de l’allumage du pc sans t’arrêter.
Une fenêtre va s’ouvrir tu te déplaces avec les flèches du clavier sur démarrer en mode sans échec puis tape entrée.
Une fois sur le bureau s’il n’y a pas toutes les couleurs et autres c’est normal !
(Si F8 ne marche pas utilise la touche F5).

http://www.coupdepoucepc.com/modules/news/article.php?storyid=253
https://www.micro-astuce.com/depannage/demarrer-mode-sans-echec.php

ensuite relance toolbar et fait option 2

si cela ne marche pas fait option 1 puis option 2

et reposte le rapport ensuite option 2

bon courage
0
Réponse 22 / 34
luluululul
 
voila c'est fait voici le raport

-----------\\ ToolBar S&D 1.0.8 XP/Vista

[ Windows VISTA (NT 6.0) Workstation Build 6000 ]
[ USER : Lucile ] [ "C:\Toolbar SD" ] [ Selection : 2 ]
[ 12/08/2008 | 22:28:13,51 ] [ PC : PC-DE-LUCILE ]
[ MAJ : 04-08-2008 | 23:15 ]
[ UAC => 0 ]

-----------\\ SUPPRESSION

Echec ! - C:\Program Files\Zango\bin
Echec ! - C:\Program Files\Zango

-----------\\ DEUXIEME PASSAGE

Echec ! - C:\Program Files\Zango\bin
Echec ! - C:\Program Files\Zango

-----------\\ Recherche de Fichiers / Dossiers ...

C:\Program Files\Zango
C:\Program Files\Zango\bin

-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://www.msn.com/fr-fr/?ocid=iehp"
"SEARCH PAGE"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Local Page"="C:\\Windows\\system32\\blank.htm"
"SearchMigratedDefaultURL"="https://search.yahoo.com/web{searchTerms}&ei=utf-8&fr=b1ie7"
"Search Bar"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"Url"="https://www.msn.com/fr-fr/actualite/"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="https://fr.yahoo.com/"
"Default_Page_URL"="https://fr.yahoo.com/"
"Default_Search_URL"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"

[ UAC => 1 ]

-----------\\ Fin du rapport a 22:29:19,71
0
Réponse 23 / 34
Utilisateur anonyme
 
bon on va essaye autre chose

prend ce lien

https://sites.google.com/site/eric71mespages/lop.sd.exe

et fait l'option 1 ensuite poste le rapport
0
Réponse 24 / 34
luluululul
 
c'est compliquer lol tien encore merci pour tes réponse méme si je sait que tu aime pas qu'on dise merci a l'avance car sans toi j'avancerais méme pas

--------------------\\ Lop S&D 4.2.2-7 XP / Vista

[ Windows VISTA (NT 6.0) Workstation Build 6000 ]
[ USER : Lucile ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 12/08/2008 | 22:38:19 ] [ PC : PC-DE-LUCILE (Proc:x86)]
[ MAJ : 12-08-2008 | 17:58 ]
[ UAC => 0 ]

--------------------\\ Listing des dossiers dans Local

[25/07/2008|20:52] C:\Users\Lucile\AppData\Local\Acer Arcade Deluxe
[23/07/2008|14:05] C:\Users\Lucile\AppData\Local\acer eNM
[28/07/2008|00:18] C:\Users\Lucile\AppData\Local\Adobe
[23/07/2008|14:03] C:\Users\Lucile\AppData\Local\Application Data
[07/08/2008|10:23] C:\Users\Lucile\AppData\Local\cgaftaub.bat
[06/08/2008|00:54] C:\Users\Lucile\AppData\Local\eMule
[23/07/2008|14:05] C:\Users\Lucile\AppData\Local\GDIPFONTCACHEV1.DAT
[23/07/2008|14:03] C:\Users\Lucile\AppData\Local\Historique
[12/08/2008|16:34] C:\Users\Lucile\AppData\Local\Microsoft
[06/08/2008|20:49] C:\Users\Lucile\AppData\Local\Microsoft Games
[23/07/2008|16:21] C:\Users\Lucile\AppData\Local\Mozilla
[23/07/2008|14:21] C:\Users\Lucile\AppData\Local\PlayMovie
[25/07/2008|20:52] C:\Users\Lucile\AppData\Local\PowerCinema
[12/08/2008|22:38] C:\Users\Lucile\AppData\Local\Temp
[23/07/2008|14:03] C:\Users\Lucile\AppData\Local\Temporary Internet Files
[12/08/2008|15:11] C:\Users\Lucile\AppData\Local\VirtualStore

--------------------\\ Tâches planifiées dans C:\Windows\tasks

[25/07/2008 20:18][--a------] C:\Windows\tasks\Norton Internet Security - Analyse systŠme complŠte - Lucile.job
[12/08/2008 22:37][--ah-----] C:\Windows\tasks\SA.DAT
[12/08/2008 22:36][--a------] C:\Windows\tasks\SCHEDLGU.TXT

--------------------\\ Listing des dossiers dans C:\ProgramData

[26/07/2007|04:43] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[27/07/2008|21:29] C:\ProgramData\2ACA5CC3-0F83-453D-A079-1076FE1A8B65
[26/07/2007|04:54] C:\ProgramData\Adobe
[02/11/2006|15:02] C:\ProgramData\Application Data
[23/07/2008|14:00] C:\ProgramData\Bureau
[06/08/2008|22:12] C:\ProgramData\CyberLink
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[06/08/2008|00:57] C:\ProgramData\eMule
[23/07/2008|14:00] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[23/07/2008|14:00] C:\ProgramData\Menu D‚marrer
[23/07/2008|15:14] C:\ProgramData\Microsoft
[23/07/2008|20:35] C:\ProgramData\Microsoft Help
[23/07/2008|14:00] C:\ProgramData\ModŠles
[02/11/2006|15:02] C:\ProgramData\Start Menu
[12/08/2008|21:33] C:\ProgramData\Symantec
[02/11/2006|15:02] C:\ProgramData\Templates
[23/07/2008|20:09] C:\ProgramData\WLInstaller
[02/08/2008|22:36] C:\ProgramData\wmp
[13/08/2008|00:32] C:\ProgramData\Yahoo! Companion

--------------------\\ Listing des dossiers dans C:\Program Files

[23/07/2008|14:07] C:\Program Files\Acer Arcade Deluxe
[26/07/2007|04:52] C:\Program Files\Acer GameZone
[23/07/2008|14:22] C:\Program Files\Acer Inc
[26/07/2007|04:43] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[26/07/2007|04:54] C:\Program Files\Adobe
[23/07/2008|14:16] C:\Program Files\Apoint2K
[23/07/2008|16:21] C:\Program Files\CCleaner
[27/07/2008|21:36] C:\Program Files\Common Files
[26/07/2007|03:29] C:\Program Files\CONEXANT
[26/07/2007|04:13] C:\Program Files\CyberLink
[23/07/2008|15:53] C:\Program Files\desktop.ini
[06/08/2008|00:54] C:\Program Files\eMule
[23/07/2008|14:00] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[10/08/2008|15:13] C:\Program Files\Grisoft
[23/07/2008|14:07] C:\Program Files\InstallShield Installation Information
[27/07/2008|21:35] C:\Program Files\Internet Explorer
[23/07/2008|14:05] C:\Program Files\Launch Manager
[02/11/2006|14:37] C:\Program Files\Microsoft Games
[26/07/2007|04:43] C:\Program Files\Microsoft Office
[26/07/2007|04:43] C:\Program Files\Microsoft Works
[26/07/2007|04:40] C:\Program Files\Microsoft.NET
[02/11/2006|14:42] C:\Program Files\Movie Maker
[23/07/2008|16:15] C:\Program Files\Mozilla Firefox
[02/11/2006|14:37] C:\Program Files\MSBuild
[02/11/2006|14:37] C:\Program Files\MSN
[23/07/2008|20:26] C:\Program Files\MSXML 4.0
[07/08/2008|11:23] C:\Program Files\NASA
[12/08/2008|16:34] C:\Program Files\Navilog1
[26/07/2007|04:11] C:\Program Files\NewTech Infosystems
[23/07/2008|15:48] C:\Program Files\Norton Internet Security
[25/07/2008|13:28] C:\Program Files\Norton Security Scan
[23/07/2008|16:13] C:\Program Files\Notepad++
[27/07/2008|21:36] C:\Program Files\Real
[23/07/2008|14:08] C:\Program Files\Realtek
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[23/07/2008|15:14] C:\Program Files\Symantec
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[23/07/2008|15:46] C:\Program Files\Windows Calendar
[02/11/2006|14:42] C:\Program Files\Windows Collaboration
[26/07/2007|04:19] C:\Program Files\Windows Defender
[02/11/2006|14:42] C:\Program Files\Windows Journal
[23/07/2008|20:17] C:\Program Files\Windows Live
[23/07/2008|15:46] C:\Program Files\Windows Mail
[23/07/2008|15:46] C:\Program Files\Windows Media Player
[23/07/2008|14:00] C:\Program Files\Windows NT
[02/11/2006|14:42] C:\Program Files\Windows Photo Gallery
[23/07/2008|15:46] C:\Program Files\Windows Sidebar
[23/07/2008|14:04] C:\Program Files\Yahoo!
[13/08/2008|00:31] C:\Program Files\Zango

--------------------\\ Listing des dossiers dans C:\Program Files\Common Files

[26/07/2007|04:54] C:\Program Files\Common Files\Adobe
[26/07/2007|04:40] C:\Program Files\Common Files\DESIGNER
[26/07/2007|04:13] C:\Program Files\Common Files\InstallShield
[26/07/2007|04:11] C:\Program Files\Common Files\LightScribe
[23/07/2008|20:29] C:\Program Files\Common Files\microsoft shared
[26/07/2007|04:11] C:\Program Files\Common Files\muvee Technologies
[26/07/2007|04:11] C:\Program Files\Common Files\NewTech Infosystems
[26/07/2007|04:49] C:\Program Files\Common Files\Oberon Media
[27/07/2008|21:36] C:\Program Files\Common Files\Real
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[12/08/2008|14:41] C:\Program Files\Common Files\Symantec Shared
[26/07/2007|04:19] C:\Program Files\Common Files\System
[23/07/2008|20:17] C:\Program Files\Common Files\WindowsLiveInstaller
[27/07/2008|21:36] C:\Program Files\Common Files\xing shared

--------------------\\ Process

( 73 Processus )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\Users\Lucile\AppData\Roaming\MICROS~1\Windows\Cookies\lucile@advertising[2].txt
C:\Users\Lucile\AppData\Roaming\MICROS~1\Windows\Cookies\lucile@adopt.euroclick[2].txt

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE

--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-08-12 22:38:31
Windows 6.0.6000 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------\\ Recherche d'autres infections

Aucune autre infection trouvée !

[F:11][D:2]-> C:\Users\Lucile\AppData\Local\Temp
[F:31][D:1]-> C:\Users\Lucile\AppData\Roaming\MICROS~1\Windows\Cookies
[F:756][D:5]-> C:\Users\Lucile\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:1][D:1]-> C:\$Recycle.Bin

--------------------\\ Fin du rapport a 22:40:06,22
[ UAC => 1 ]
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 25 / 34
luluululul
 
c'est compliquer lol tien voila le rapport encore merci pour tes réponse méme si je sait que tu aime pas qu'on dise merci a l'avance car sans toi j'avancerais méme pas

--------------------\\ Lop S&D 4.2.2-7 XP / Vista

[ Windows VISTA (NT 6.0) Workstation Build 6000 ]
[ USER : Lucile ] [ "C:\Lop SD" ] [ Selection : 1 ]
[ 12/08/2008 | 22:38:19 ] [ PC : PC-DE-LUCILE (Proc:x86)]
[ MAJ : 12-08-2008 | 17:58 ]
[ UAC => 0 ]

--------------------\\ Listing des dossiers dans Local

[25/07/2008|20:52] C:\Users\Lucile\AppData\Local\Acer Arcade Deluxe
[23/07/2008|14:05] C:\Users\Lucile\AppData\Local\acer eNM
[28/07/2008|00:18] C:\Users\Lucile\AppData\Local\Adobe
[23/07/2008|14:03] C:\Users\Lucile\AppData\Local\Application Data
[07/08/2008|10:23] C:\Users\Lucile\AppData\Local\cgaftaub.bat
[06/08/2008|00:54] C:\Users\Lucile\AppData\Local\eMule
[23/07/2008|14:05] C:\Users\Lucile\AppData\Local\GDIPFONTCACHEV1.DAT
[23/07/2008|14:03] C:\Users\Lucile\AppData\Local\Historique
[12/08/2008|16:34] C:\Users\Lucile\AppData\Local\Microsoft
[06/08/2008|20:49] C:\Users\Lucile\AppData\Local\Microsoft Games
[23/07/2008|16:21] C:\Users\Lucile\AppData\Local\Mozilla
[23/07/2008|14:21] C:\Users\Lucile\AppData\Local\PlayMovie
[25/07/2008|20:52] C:\Users\Lucile\AppData\Local\PowerCinema
[12/08/2008|22:38] C:\Users\Lucile\AppData\Local\Temp
[23/07/2008|14:03] C:\Users\Lucile\AppData\Local\Temporary Internet Files
[12/08/2008|15:11] C:\Users\Lucile\AppData\Local\VirtualStore

--------------------\\ Tâches planifiées dans C:\Windows\tasks

[25/07/2008 20:18][--a------] C:\Windows\tasks\Norton Internet Security - Analyse systŠme complŠte - Lucile.job
[12/08/2008 22:37][--ah-----] C:\Windows\tasks\SA.DAT
[12/08/2008 22:36][--a------] C:\Windows\tasks\SCHEDLGU.TXT

--------------------\\ Listing des dossiers dans C:\ProgramData

[26/07/2007|04:43] C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
[27/07/2008|21:29] C:\ProgramData\2ACA5CC3-0F83-453D-A079-1076FE1A8B65
[26/07/2007|04:54] C:\ProgramData\Adobe
[02/11/2006|15:02] C:\ProgramData\Application Data
[23/07/2008|14:00] C:\ProgramData\Bureau
[06/08/2008|22:12] C:\ProgramData\CyberLink
[02/11/2006|15:02] C:\ProgramData\Desktop
[02/11/2006|15:02] C:\ProgramData\Documents
[06/08/2008|00:57] C:\ProgramData\eMule
[23/07/2008|14:00] C:\ProgramData\Favoris
[02/11/2006|15:02] C:\ProgramData\Favorites
[23/07/2008|14:00] C:\ProgramData\Menu D‚marrer
[23/07/2008|15:14] C:\ProgramData\Microsoft
[23/07/2008|20:35] C:\ProgramData\Microsoft Help
[23/07/2008|14:00] C:\ProgramData\ModŠles
[02/11/2006|15:02] C:\ProgramData\Start Menu
[12/08/2008|21:33] C:\ProgramData\Symantec
[02/11/2006|15:02] C:\ProgramData\Templates
[23/07/2008|20:09] C:\ProgramData\WLInstaller
[02/08/2008|22:36] C:\ProgramData\wmp
[13/08/2008|00:32] C:\ProgramData\Yahoo! Companion

--------------------\\ Listing des dossiers dans C:\Program Files

[23/07/2008|14:07] C:\Program Files\Acer Arcade Deluxe
[26/07/2007|04:52] C:\Program Files\Acer GameZone
[23/07/2008|14:22] C:\Program Files\Acer Inc
[26/07/2007|04:43] C:\Program Files\Activation Assistant for the 2007 Microsoft Office suites
[26/07/2007|04:54] C:\Program Files\Adobe
[23/07/2008|14:16] C:\Program Files\Apoint2K
[23/07/2008|16:21] C:\Program Files\CCleaner
[27/07/2008|21:36] C:\Program Files\Common Files
[26/07/2007|03:29] C:\Program Files\CONEXANT
[26/07/2007|04:13] C:\Program Files\CyberLink
[23/07/2008|15:53] C:\Program Files\desktop.ini
[06/08/2008|00:54] C:\Program Files\eMule
[23/07/2008|14:00] C:\Program Files\Fichiers communs [C:\Program Files\Common Files]
[10/08/2008|15:13] C:\Program Files\Grisoft
[23/07/2008|14:07] C:\Program Files\InstallShield Installation Information
[27/07/2008|21:35] C:\Program Files\Internet Explorer
[23/07/2008|14:05] C:\Program Files\Launch Manager
[02/11/2006|14:37] C:\Program Files\Microsoft Games
[26/07/2007|04:43] C:\Program Files\Microsoft Office
[26/07/2007|04:43] C:\Program Files\Microsoft Works
[26/07/2007|04:40] C:\Program Files\Microsoft.NET
[02/11/2006|14:42] C:\Program Files\Movie Maker
[23/07/2008|16:15] C:\Program Files\Mozilla Firefox
[02/11/2006|14:37] C:\Program Files\MSBuild
[02/11/2006|14:37] C:\Program Files\MSN
[23/07/2008|20:26] C:\Program Files\MSXML 4.0
[07/08/2008|11:23] C:\Program Files\NASA
[12/08/2008|16:34] C:\Program Files\Navilog1
[26/07/2007|04:11] C:\Program Files\NewTech Infosystems
[23/07/2008|15:48] C:\Program Files\Norton Internet Security
[25/07/2008|13:28] C:\Program Files\Norton Security Scan
[23/07/2008|16:13] C:\Program Files\Notepad++
[27/07/2008|21:36] C:\Program Files\Real
[23/07/2008|14:08] C:\Program Files\Realtek
[02/11/2006|14:37] C:\Program Files\Reference Assemblies
[23/07/2008|15:14] C:\Program Files\Symantec
[02/11/2006|15:01] C:\Program Files\Uninstall Information
[23/07/2008|15:46] C:\Program Files\Windows Calendar
[02/11/2006|14:42] C:\Program Files\Windows Collaboration
[26/07/2007|04:19] C:\Program Files\Windows Defender
[02/11/2006|14:42] C:\Program Files\Windows Journal
[23/07/2008|20:17] C:\Program Files\Windows Live
[23/07/2008|15:46] C:\Program Files\Windows Mail
[23/07/2008|15:46] C:\Program Files\Windows Media Player
[23/07/2008|14:00] C:\Program Files\Windows NT
[02/11/2006|14:42] C:\Program Files\Windows Photo Gallery
[23/07/2008|15:46] C:\Program Files\Windows Sidebar
[23/07/2008|14:04] C:\Program Files\Yahoo!
[13/08/2008|00:31] C:\Program Files\Zango

--------------------\\ Listing des dossiers dans C:\Program Files\Common Files

[26/07/2007|04:54] C:\Program Files\Common Files\Adobe
[26/07/2007|04:40] C:\Program Files\Common Files\DESIGNER
[26/07/2007|04:13] C:\Program Files\Common Files\InstallShield
[26/07/2007|04:11] C:\Program Files\Common Files\LightScribe
[23/07/2008|20:29] C:\Program Files\Common Files\microsoft shared
[26/07/2007|04:11] C:\Program Files\Common Files\muvee Technologies
[26/07/2007|04:11] C:\Program Files\Common Files\NewTech Infosystems
[26/07/2007|04:49] C:\Program Files\Common Files\Oberon Media
[27/07/2008|21:36] C:\Program Files\Common Files\Real
[02/11/2006|13:18] C:\Program Files\Common Files\Services
[02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines
[12/08/2008|14:41] C:\Program Files\Common Files\Symantec Shared
[26/07/2007|04:19] C:\Program Files\Common Files\System
[23/07/2008|20:17] C:\Program Files\Common Files\WindowsLiveInstaller
[27/07/2008|21:36] C:\Program Files\Common Files\xing shared

--------------------\\ Process

( 73 Processus )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\Users\Lucile\AppData\Roaming\MICROS~1\Windows\Cookies\lucile@advertising[2].txt
C:\Users\Lucile\AppData\Roaming\MICROS~1\Windows\Cookies\lucile@adopt.euroclick[2].txt

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE

--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-08-12 22:38:31
Windows 6.0.6000 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------\\ Recherche d'autres infections

Aucune autre infection trouvée !

[F:11][D:2]-> C:\Users\Lucile\AppData\Local\Temp
[F:31][D:1]-> C:\Users\Lucile\AppData\Roaming\MICROS~1\Windows\Cookies
[F:756][D:5]-> C:\Users\Lucile\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5
[F:1][D:1]-> C:\$Recycle.Bin

--------------------\\ Fin du rapport a 22:40:06,22
[ UAC => 1 ]
0
Réponse 26 / 34
luluululul
 
up
0
Réponse 27 / 34
lulululululu
 
voila le raport

Malwarebytes' Anti-Malware 1.24
Version de la base de données: 1047
Windows 6.0.6000

16:18:00 13/08/2008
mbam-log-8-13-2008 (16-17-55).txt

Type de recherche: Examen complet (C:\|D:\|E:\|)
Eléments examinés: 110482
Temps écoulé: 13 minute(s), 18 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 2
Valeur(s) du Registre infectée(s): 2
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 5
Fichier(s) infecté(s): 3

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\zangosa (Adware.Zango) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\zango (Adware.180Solutions) -> No action taken.

Valeur(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Firefox\Extensions\Zango@Zango.com (Adware.Zango) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform\zango 10.3.74.0 (Adware.Zango) -> No action taken.

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
C:\Program Files\Zango (Adware.180Solutions) -> No action taken.
C:\Program Files\Zango\bin (Adware.180Solutions) -> No action taken.
C:\Program Files\Zango\bin\10.3.74.0 (Adware.180Solutions) -> No action taken.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spyware-Secure (Rogue.Spyware-Secure) -> No action taken.
C:\ProgramData\2ACA5CC3-0F83-453D-A079-1076FE1A8B65 (Adware.Seekmo) -> No action taken.

Fichier(s) infecté(s):
C:\Program Files\Zango\bin\10.3.74.0\WeSkin.dll (Adware.180Solutions) -> No action taken.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spyware-Secure\Spyware-Secure trial.lnk (Rogue.Spyware-Secure) -> No action taken.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spyware-Secure\Website.lnk (Rogue.Spyware-Secure) -> No action taken.
0
Réponse 28 / 34
Utilisateur anonyme
 
va dans MBAM fait quarantaine et supprime car aucune action entreprise
0
Réponse 29 / 34
lulululululu
 
j'ai tt suprimée c'est tout?
0
Réponse 30 / 34
Utilisateur anonyme
 
poste un log hijackthis stp
0
Réponse 31 / 34
lulululululu
 
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:32:16, on 13/08/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16681)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\RtHDVCpl.exe
C:\Acer\Empowering Technology\eDataSecurity\eDSLoader.exe
C:\Acer\Empowering Technology\eAudio\eAudio.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe
C:\Users\Lucile\AppData\Local\Temp\RtkBtMnt.exe
C:\Program Files\Acer Arcade Deluxe\Play Movie\PMVService.exe
C:\Program Files\Apoint2K\Apoint.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Acer\Empowering Technology\ENET\ENMTRAY.EXE
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\Acer\Empowering Technology\EPOWER\EPOWER_DMC.EXE
C:\Acer\Empowering Technology\ACER.EMPOWERING.FRAMEWORK.SUPERVISOR.EXE
C:\Acer\Empowering Technology\eRecovery\ERAGENT.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Users\Lucile\Desktop\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.fr.acer.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\NppBho.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: ShowBarObj Class - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Windows\system32\ActiveToolBand.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\system32\eDStoolbar.dll
O3 - Toolbar: Show Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\UIBHO.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: (no name) - {90B8B761-DF2B-48AC-BBE0-BCC03A819B3B} - (no file)
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
O4 - HKLM\..\Run: [eAudio] "C:\Acer\Empowering Technology\eAudio\eAudio.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton Internet Security\osCheck.exe"
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\LManager.exe
O4 - HKLM\..\Run: [PlayMovie] "C:\Program Files\Acer Arcade Deluxe\Play Movie\PMVService.exe"
O4 - HKLM\..\Run: [WarReg_PopUp] C:\Acer\WR_PopUp\WarReg_PopUp.exe
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKUS\S-1-5-18\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe (User 'Default user')
O4 - Global Startup: Empowering Technology Launcher.lnk = C:\Acer\Empowering Technology\eAPLauncher.exe
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - cmdmapping - (no file) (HKCU)
O13 - Gopher Prefix:
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: eDSService.exe (eDataSecurity Service) - HiTRSUT - C:\Acer\Empowering Technology\eDataSecurity\eDSService.exe
O23 - Service: eLock Service (eLockService) - Acer Inc. - C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe
O23 - Service: eNet Service - Acer Inc. - C:\Acer\Empowering Technology\eNet\eNet Service.exe
O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
O23 - Service: eSettings Service (eSettingsService) - Unknown owner - C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe
O23 - Service: Validation de mot de passe Symantec IS (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\isPwdSvc.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: MobilityService - Unknown owner - C:\Acer\Mobility Center\MobilityService.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: ePower Service (WMIService) - acer - C:\Acer\Empowering Technology\ePower\ePowerSvc.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe
0
Réponse 32 / 34
lulululululu
 
up
0
Réponse 33 / 34
jacques.gache Messages postés 34829 Statut Contributeur sécurité 1 618
 
bonjour à vous si vous me permettez sur malwarebytes " No action taken. " tu n'as pas du cliquer sur supprimer la sélection en fin d'analyse perso je te conseillerais de refaire l'analyse de malwarebytes en modes sans echec et de bien supprimer la sélection en fin d'analyse si tu as besion d'aide regarde ce tutoriel https://forum.pcastuces.com/sujet.asp?f=31&s=3
0
Réponse 34 / 34
Utilisateur anonyme
 
bonsoir jacques.gache a raison tu n'a pas posté le rapport quand tu a supprimer la quarantaine j'aurais souhaité le voir stp
0

Discussions similaires

Analyse des logs hijackthis
philnoug -
nayas13 -

35 réponses
Demande d'aide pour un Log Hijackthis
Lord_Astriel -
Utilisateur anonyme -

32 réponses
spywar
stephane74 -
stephane74 -

4 réponses
Processus et démarrage
baptcollot -
baptcollot -

4 réponses
Analyse logs hijackthis
embêté -
Utilisateur anonyme -

21 réponses