Résultat Hijackthis, suis-je infecté ?
Fermé
Antoin3
Messages postés
51
Date d'inscription
mardi 16 septembre 2008
Statut
Membre
Dernière intervention
1 novembre 2008
-
16 sept. 2008 à 18:44
crapoulou Messages postés 28093 Date d'inscription mercredi 28 novembre 2007 Statut Modérateur, Contributeur sécurité Dernière intervention 19 mars 2023 - 2 oct. 2008 à 00:02
crapoulou Messages postés 28093 Date d'inscription mercredi 28 novembre 2007 Statut Modérateur, Contributeur sécurité Dernière intervention 19 mars 2023 - 2 oct. 2008 à 00:02
A voir également:
- Résultat Hijackthis, suis-je infecté ?
- Resultat loto d'aujourd'hui ✓ - Forum Excel
- Hijackthis windows 10 - Télécharger - Antivirus & Antimalwares
- Casio fx 92 resultat sans fraction ✓ - Forum calculatrices
- Archive resultat bac ✓ - Forum Internet / Réseaux sociaux
- Bonjour,j'ai besoin des résultats d'aujourd'hui vendredi 29 octobre 2021 de 17h ✓ - Forum Excel
79 réponses
hooligan63780
Messages postés
835
Date d'inscription
lundi 25 août 2008
Statut
Membre
Dernière intervention
29 novembre 2008
5
17 sept. 2008 à 14:45
17 sept. 2008 à 14:45
ca te met nettoyage a la fin ben met nettoyage xD
Antoin3
Messages postés
51
Date d'inscription
mardi 16 septembre 2008
Statut
Membre
Dernière intervention
1 novembre 2008
1
17 sept. 2008 à 14:47
17 sept. 2008 à 14:47
Ok, je fais nettoyage et je te montre le résultat après ça, pour que tu me dises ce que je dois faire ensuite.
Merci beaucoup.
Merci beaucoup.
hooligan63780
Messages postés
835
Date d'inscription
lundi 25 août 2008
Statut
Membre
Dernière intervention
29 novembre 2008
5
17 sept. 2008 à 14:48
17 sept. 2008 à 14:48
tu as le tutoriel pour t'aider aussi ^^
Antoin3
Messages postés
51
Date d'inscription
mardi 16 septembre 2008
Statut
Membre
Dernière intervention
1 novembre 2008
1
17 sept. 2008 à 16:07
17 sept. 2008 à 16:07
Voici donc les résultats du "Nettoyage" par SmitFraudFix en mode sans échec.
Que dois-je faire après ceci ?
SmitFraudFix v2.352
Rapport fait à 15:45:16,71, 17/09/2008
Executé à partir de C:\Documents and Settings\AntoineD\Bureau\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Le type du système de fichiers est FAT32
Fix executé en mode sans echec
»»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Avant SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll
»»»»»»»»»»»»»»»»»»»»»»»» Arret des processus
»»»»»»»»»»»»»»»»»»»»»»»» hosts
127.0.0.1 localhost
127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD
127.0.0.1 download.errorsafe.com ## added by CiD
127.0.0.1 download.systemdoctor.com ## added by CiD
127.0.0.1 download.winantispyware.com ## added by CiD
127.0.0.1 download.windrivecleaner.com ## added by CiD
127.0.0.1 download.winfixer.com ## added by CiD
127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 es.winantivirus.com ## added by CiD
127.0.0.1 fr.winantivirus.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 go.winantivirus.com ## added by CiD
127.0.0.1 hk.winantivirus.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 instlog.winantivirus.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 kb.winantivirus.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 secure.winantivirus.com ## added by CiD
127.0.0.1 support.winantivirus.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 ulog.winantivirus.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 utils.winantivirus.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winantivirus.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 www.drivecleaner.com ## added by CiD
127.0.0.1 www.errorprotector.com ## added by CiD
127.0.0.1 www.errorsafe.com ## added by CiD
127.0.0.1 www.systemdoctor.com ## added by CiD
127.0.0.1 www.utils.winfixer.com ## added by CiD
127.0.0.1 www.win-anti-virus-pro.com ## added by CiD
127.0.0.1 www.win-virus-pro.com ## added by CiD
127.0.0.1 www.winantispam.com ## added by CiD
127.0.0.1 www.winantispy.com ## added by CiD
127.0.0.1 www.winantispyware.com ## added by CiD
127.0.0.1 www.winantivirus.com ## added by CiD
127.0.0.1 www.winantiviruspro.com ## added by CiD
127.0.0.1 www.windrivecleaner.com ## added by CiD
127.0.0.1 www.windrivesafe.com ## added by CiD
127.0.0.1 www.winfixer.com ## added by CiD
127.0.0.1 www.winfixer2006.com ## added by CiD
127.0.0.1 www.winsoftware.com ## added by CiD
»»»»»»»»»»»»»»»»»»»»»»»» VACFix
VACFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri
»»»»»»»»»»»»»»»»»»»»»»»» Winsock2 Fix
S!Ri's WS2Fix: LSP not Found.
»»»»»»»»»»»»»»»»»»»»»»»» Generic Renos Fix
GenericRenosFix by S!Ri
»»»»»»»»»»»»»»»»»»»»»»»» Suppression des fichiers infectés
»»»»»»»»»»»»»»»»»»»»»»»» IEDFix
IEDFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri
»»»»»»»»»»»»»»»»»»»»»»»» 404Fix
404Fix
Credits: Malware Analysis & Diagnostic
Code: S!Ri
»»»»»»»»»»»»»»»»»»»»»»»» AntiXPVSTFix
AntiXPVSTFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri
»»»»»»»»»»»»»»»»»»»»»»»» RK
»»»»»»»»»»»»»»»»»»»»»»»» DNS
HKLM\SYSTEM\CCS\Services\Tcpip\..\{7662D4E9-5E22-4E5C-8635-41A6BB7F6F3E}: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS1\Services\Tcpip\..\{7662D4E9-5E22-4E5C-8635-41A6BB7F6F3E}: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1
»»»»»»»»»»»»»»»»»»»»»»»» Suppression Fichiers Temporaires
»»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"System"=""
»»»»»»»»»»»»»»»»»»»»»»»» Nettoyage du registre
Nettoyage terminé.
»»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Après SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll
»»»»»»»»»»»»»»»»»»»»»»»» Fin
Que dois-je faire après ceci ?
SmitFraudFix v2.352
Rapport fait à 15:45:16,71, 17/09/2008
Executé à partir de C:\Documents and Settings\AntoineD\Bureau\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Le type du système de fichiers est FAT32
Fix executé en mode sans echec
»»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Avant SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll
»»»»»»»»»»»»»»»»»»»»»»»» Arret des processus
»»»»»»»»»»»»»»»»»»»»»»»» hosts
127.0.0.1 localhost
127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD
127.0.0.1 download.errorsafe.com ## added by CiD
127.0.0.1 download.systemdoctor.com ## added by CiD
127.0.0.1 download.winantispyware.com ## added by CiD
127.0.0.1 download.windrivecleaner.com ## added by CiD
127.0.0.1 download.winfixer.com ## added by CiD
127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 es.winantivirus.com ## added by CiD
127.0.0.1 fr.winantivirus.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 go.winantivirus.com ## added by CiD
127.0.0.1 hk.winantivirus.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 instlog.winantivirus.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 kb.winantivirus.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 secure.winantivirus.com ## added by CiD
127.0.0.1 support.winantivirus.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 ulog.winantivirus.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 utils.winantivirus.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winantivirus.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 www.drivecleaner.com ## added by CiD
127.0.0.1 www.errorprotector.com ## added by CiD
127.0.0.1 www.errorsafe.com ## added by CiD
127.0.0.1 www.systemdoctor.com ## added by CiD
127.0.0.1 www.utils.winfixer.com ## added by CiD
127.0.0.1 www.win-anti-virus-pro.com ## added by CiD
127.0.0.1 www.win-virus-pro.com ## added by CiD
127.0.0.1 www.winantispam.com ## added by CiD
127.0.0.1 www.winantispy.com ## added by CiD
127.0.0.1 www.winantispyware.com ## added by CiD
127.0.0.1 www.winantivirus.com ## added by CiD
127.0.0.1 www.winantiviruspro.com ## added by CiD
127.0.0.1 www.windrivecleaner.com ## added by CiD
127.0.0.1 www.windrivesafe.com ## added by CiD
127.0.0.1 www.winfixer.com ## added by CiD
127.0.0.1 www.winfixer2006.com ## added by CiD
127.0.0.1 www.winsoftware.com ## added by CiD
»»»»»»»»»»»»»»»»»»»»»»»» VACFix
VACFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri
»»»»»»»»»»»»»»»»»»»»»»»» Winsock2 Fix
S!Ri's WS2Fix: LSP not Found.
»»»»»»»»»»»»»»»»»»»»»»»» Generic Renos Fix
GenericRenosFix by S!Ri
»»»»»»»»»»»»»»»»»»»»»»»» Suppression des fichiers infectés
»»»»»»»»»»»»»»»»»»»»»»»» IEDFix
IEDFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri
»»»»»»»»»»»»»»»»»»»»»»»» 404Fix
404Fix
Credits: Malware Analysis & Diagnostic
Code: S!Ri
»»»»»»»»»»»»»»»»»»»»»»»» AntiXPVSTFix
AntiXPVSTFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri
»»»»»»»»»»»»»»»»»»»»»»»» RK
»»»»»»»»»»»»»»»»»»»»»»»» DNS
HKLM\SYSTEM\CCS\Services\Tcpip\..\{7662D4E9-5E22-4E5C-8635-41A6BB7F6F3E}: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS1\Services\Tcpip\..\{7662D4E9-5E22-4E5C-8635-41A6BB7F6F3E}: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1
»»»»»»»»»»»»»»»»»»»»»»»» Suppression Fichiers Temporaires
»»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"System"=""
»»»»»»»»»»»»»»»»»»»»»»»» Nettoyage du registre
Nettoyage terminé.
»»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Après SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll
»»»»»»»»»»»»»»»»»»»»»»»» Fin
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
hooligan63780
Messages postés
835
Date d'inscription
lundi 25 août 2008
Statut
Membre
Dernière intervention
29 novembre 2008
5
17 sept. 2008 à 16:12
17 sept. 2008 à 16:12
tu fait néttoyage
Antoin3
Messages postés
51
Date d'inscription
mardi 16 septembre 2008
Statut
Membre
Dernière intervention
1 novembre 2008
1
17 sept. 2008 à 16:23
17 sept. 2008 à 16:23
Mais c'est ce que je viens de faire là.
Les résultats dans mon poste précédent correspondent au "Nettoyage".
Donc après ce "Nettoyage", je dois faire quoi ?
Merci de ton aide.
Les résultats dans mon poste précédent correspondent au "Nettoyage".
Donc après ce "Nettoyage", je dois faire quoi ?
Merci de ton aide.
hooligan63780
Messages postés
835
Date d'inscription
lundi 25 août 2008
Statut
Membre
Dernière intervention
29 novembre 2008
5
17 sept. 2008 à 16:30
17 sept. 2008 à 16:30
ben SmitFraudFix a fini sont travail ^^
Antoin3
Messages postés
51
Date d'inscription
mardi 16 septembre 2008
Statut
Membre
Dernière intervention
1 novembre 2008
1
17 sept. 2008 à 16:43
17 sept. 2008 à 16:43
Et je fais quoi alors maitenant ?
Je refais un Hijackthis et je le post, pour voir si j'ai plus de problèmes ?!
Je refais un Hijackthis et je le post, pour voir si j'ai plus de problèmes ?!
hooligan63780
Messages postés
835
Date d'inscription
lundi 25 août 2008
Statut
Membre
Dernière intervention
29 novembre 2008
5
17 sept. 2008 à 16:58
17 sept. 2008 à 16:58
oui poste moi un rapport pour voir
Antoin3
Messages postés
51
Date d'inscription
mardi 16 septembre 2008
Statut
Membre
Dernière intervention
1 novembre 2008
1
17 sept. 2008 à 17:01
17 sept. 2008 à 17:01
Voici :
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:00:27, on 17/09/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\ZONELABS\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLCapSvc.exe
C:\Program Files\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLServer.exe
C:\Program Files\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLService.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLSched.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\System32\svchost.exe
C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\PROGRA~1\LAUNCH~1\LManager.exe
C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://fr.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\InstallShield\AzMixerSel.exe
O4 - HKLM\..\Run: [ntiMUI] C:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe
O4 - HKLM\..\Run: [Acer ePresentation HPD] C:\Acer\Empowering Technology\ePresentation\ePresentation.exe
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [ePower_DMC] C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
O4 - HKLM\..\Run: [Boot] C:\Acer\Empowering Technology\ePower\Boot.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\LManager.exe
O4 - HKLM\..\Run: [eRecoveryService] C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [part mags] C:\DOCUME~1\AntoineD\APPLIC~1\PROGRA~1\Bodytool.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O23 - Service: Memory Check Service (AcerMemUsageCheckService) - Acer Inc. - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLSched.exe
O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLServer.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZONELABS\vsmon.exe
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:00:27, on 17/09/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\ZONELABS\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLCapSvc.exe
C:\Program Files\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLServer.exe
C:\Program Files\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLService.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLSched.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\System32\svchost.exe
C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\PROGRA~1\LAUNCH~1\LManager.exe
C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://fr.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\InstallShield\AzMixerSel.exe
O4 - HKLM\..\Run: [ntiMUI] C:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe
O4 - HKLM\..\Run: [Acer ePresentation HPD] C:\Acer\Empowering Technology\ePresentation\ePresentation.exe
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [ePower_DMC] C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
O4 - HKLM\..\Run: [Boot] C:\Acer\Empowering Technology\ePower\Boot.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\LManager.exe
O4 - HKLM\..\Run: [eRecoveryService] C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [part mags] C:\DOCUME~1\AntoineD\APPLIC~1\PROGRA~1\Bodytool.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O23 - Service: Memory Check Service (AcerMemUsageCheckService) - Acer Inc. - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLSched.exe
O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLServer.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZONELABS\vsmon.exe
crapoulou
Messages postés
28093
Date d'inscription
mercredi 28 novembre 2007
Statut
Modérateur, Contributeur sécurité
Dernière intervention
19 mars 2023
8 005
17 sept. 2008 à 21:00
17 sept. 2008 à 21:00
Passe à l'option 2 de Lop S&D car il y a toujours l'infection lop.
Poste le rapport.
Poste le rapport.
Antoin3
Messages postés
51
Date d'inscription
mardi 16 septembre 2008
Statut
Membre
Dernière intervention
1 novembre 2008
1
18 sept. 2008 à 19:17
18 sept. 2008 à 19:17
Voici ci-dessous le rapport de l'option 2 de "Lop S&D" :
Que dois-je faire ensuite ?
--------------------\\ Lop S&D 4.2.4-3 XP/Vista
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : Mobile AMD Sempron(tm) Processor 3400+ )
BIOS : Ver 1.00PARTTBL
USER : AntoineD ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 080918-0] 4.8.1229 (Activated)
Firewall : ZoneAlarm Firewall 7.0.462.000 (Activated)
C:\ (Local Disk) - FAT32 - Total : 23 Go Free : 5 Go
D:\ (Local Disk) - FAT32 - Total : 8 Go Free : 4 Go
E:\ (CD or DVD)
"C:\Lop SD" ( MAJ : 14-09-2008|22:40 )
Option : [2] ( 18/09/2008|18:53 )
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION
Supprime! - C:\DOCUME~1\AntoineD\LOCALS~1\Temp\NSIS
Supprime! - C:\Program Files\Adverts\uninst.exe
Supprime! - C:\Program Files\Adverts
-
[ Fichier Hosts ] .. Restaure!
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing des dossiers dans APPLIC~1
[23/05/2006|16:43] C:\DOCUME~1\DEFAUL~1\APPLIC~1\ATI
[23/05/2006|16:34] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[23/05/2006|16:22] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[18/05/2008|10:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[23/05/2006|16:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[11/12/2006|21:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[11/07/2008|11:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MailFrontier
[07/06/2007|12:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[23/05/2006|16:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[06/06/2007|12:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\software clock debug 16
[11/02/2007|10:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[23/12/2006|20:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[14/02/2008|18:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[23/05/2006|16:22] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[23/05/2006|16:22] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[11/12/2006|21:36] C:\DOCUME~1\ANTOINED\APPLIC~1\Adobe
[11/12/2006|21:36] C:\DOCUME~1\ANTOINED\APPLIC~1\AdobeUM
[08/12/2007|15:39] C:\DOCUME~1\ANTOINED\APPLIC~1\Apple Computer
[23/05/2006|16:43] C:\DOCUME~1\ANTOINED\APPLIC~1\ATI
[28/08/2008|15:53] C:\DOCUME~1\ANTOINED\APPLIC~1\CyberLink
[17/05/2008|21:27] C:\DOCUME~1\ANTOINED\APPLIC~1\dvdcss
[11/12/2006|21:14] C:\DOCUME~1\ANTOINED\APPLIC~1\Google
[23/05/2006|16:34] C:\DOCUME~1\ANTOINED\APPLIC~1\Identities
[11/02/2007|20:50] C:\DOCUME~1\ANTOINED\APPLIC~1\Lavasoft
[23/12/2007|13:18] C:\DOCUME~1\ANTOINED\APPLIC~1\LG Electronics
[10/12/2006|00:59] C:\DOCUME~1\ANTOINED\APPLIC~1\Macromedia
[20/06/2008|22:17] C:\DOCUME~1\ANTOINED\APPLIC~1\Media Player Classic
[23/05/2006|16:22] C:\DOCUME~1\ANTOINED\APPLIC~1\Microsoft
[08/05/2007|10:26] C:\DOCUME~1\ANTOINED\APPLIC~1\Mozilla
[09/12/2006|20:46] C:\DOCUME~1\ANTOINED\APPLIC~1\MSNInstaller
[27/08/2007|13:35] C:\DOCUME~1\ANTOINED\APPLIC~1\Notepad++
[06/06/2007|12:23] C:\DOCUME~1\ANTOINED\APPLIC~1\Programaxis
[06/06/2007|12:24] C:\DOCUME~1\ANTOINED\APPLIC~1\Screenshot Sender
[11/12/2006|21:06] C:\DOCUME~1\ANTOINED\APPLIC~1\Sun
[26/06/2008|20:11] C:\DOCUME~1\ANTOINED\APPLIC~1\U3
[18/05/2008|00:16] C:\DOCUME~1\ANTOINED\APPLIC~1\vlc
[19/02/2008|19:22] C:\DOCUME~1\ANTOINED\APPLIC~1\Xfire
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[18/09/2008 18:41][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 05:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ Listing des dossiers dans C:\Program Files
[23/05/2006|16:53] C:\Program Files\Acer
[23/05/2006|16:50] C:\Program Files\Acer Inc
[23/05/2006|16:50] C:\Program Files\Adobe
[09/12/2006|20:24] C:\Program Files\Alwil Software
[23/05/2006|16:35] C:\Program Files\ATI Technologies
[15/04/2008|13:41] C:\Program Files\Audacity
[23/05/2006|16:28] C:\Program Files\AviSynth 2.5
[16/01/2008|13:18] C:\Program Files\Call of Duty Game of the Year Edition
[02/07/2007|18:54] C:\Program Files\CCleaner
[23/05/2006|16:27] C:\Program Files\ComPlus Applications
[23/05/2006|16:47] C:\Program Files\CONEXANT
[23/05/2006|16:53] C:\Program Files\CyberLink
[24/05/2006|11:12] C:\Program Files\DIFX
[28/02/2007|13:55] C:\Program Files\eMule
[23/05/2006|16:22] C:\Program Files\Fichiers communs
[29/11/2007|10:30] C:\Program Files\Filzip
[09/08/2008|15:06] C:\Program Files\Free Video Converter
[11/12/2006|21:14] C:\Program Files\Google
[05/04/2008|14:48] C:\Program Files\GUILD WARS
[23/05/2006|16:35] C:\Program Files\InstallShield Installation Information
[02/04/2007|13:50] C:\Program Files\InterActual
[23/05/2006|16:28] C:\Program Files\Internet Explorer
[11/12/2006|21:01] C:\Program Files\Java
[10/12/2006|01:34] C:\Program Files\Launch Manager
[11/02/2007|20:50] C:\Program Files\Lavasoft
[23/12/2007|12:41] C:\Program Files\LG Electronics
[23/12/2007|12:45] C:\Program Files\LG PC Suite
[23/05/2006|16:27] C:\Program Files\Messenger
[06/06/2007|12:23] C:\Program Files\Messenger Plus! Live
[23/05/2006|16:29] C:\Program Files\microsoft frontpage
[25/02/2007|19:28] C:\Program Files\Microsoft Games
[11/12/2006|19:52] C:\Program Files\Microsoft Office
[11/12/2006|19:54] C:\Program Files\Microsoft Visual Studio
[23/05/2006|16:28] C:\Program Files\Movie Maker
[08/05/2007|10:26] C:\Program Files\Mozilla Firefox
[23/05/2006|16:26] C:\Program Files\MSN
[23/05/2006|16:27] C:\Program Files\MSN Gaming Zone
[09/12/2006|20:53] C:\Program Files\MSN Messenger
[11/12/2006|20:57] C:\Program Files\MSXML 4.0
[23/05/2006|16:28] C:\Program Files\NetMeeting
[23/05/2006|16:59] C:\Program Files\NewTech Infosystems
[27/08/2007|13:35] C:\Program Files\Notepad++
[23/05/2006|16:27] C:\Program Files\Online Services
[23/05/2006|16:28] C:\Program Files\Outlook Express
[02/07/2007|19:23] C:\Program Files\Paragon Software
[11/10/2007|13:33] C:\Program Files\PhotoFiltre
[08/06/2007|20:58] C:\Program Files\Picasa2
[23/08/2007|09:27] C:\Program Files\PowerQuest
[06/06/2007|16:33] C:\Program Files\Programaxis
[05/07/2008|17:53] C:\Program Files\Project64 1.6
[23/05/2006|16:44] C:\Program Files\Realtek
[07/06/2008|11:22] C:\Program Files\Red Kawa
[23/05/2006|16:28] C:\Program Files\Services en ligne
[10/04/2008|22:03] C:\Program Files\SLD Codec Pack
[07/09/2007|19:31] C:\Program Files\Speed Gear 5
[11/02/2007|10:46] C:\Program Files\Spybot - Search & Destroy
[10/12/2006|01:33] C:\Program Files\Synaptics
[10/07/2008|17:56] C:\Program Files\TGTSoft
[09/03/2007|20:14] C:\Program Files\TrackMania Nations ESWC
[16/09/2008|18:23] C:\Program Files\Trend Micro
[23/05/2006|16:34] C:\Program Files\Uninstall Information
[17/05/2008|21:25] C:\Program Files\VideoLAN
[02/07/2008|16:42] C:\Program Files\Western Digital
[06/06/2007|16:33] C:\Program Files\Windows Live
[16/01/2007|20:47] C:\Program Files\Windows Media Connect 2
[23/05/2006|16:27] C:\Program Files\Windows Media Player
[23/05/2006|16:26] C:\Program Files\Windows NT
[23/05/2006|16:28] C:\Program Files\WindowsUpdate
[23/05/2006|16:29] C:\Program Files\xerox
[19/02/2008|19:22] C:\Program Files\Xfire
[10/12/2006|01:44] C:\Program Files\Yahoo!
[11/02/2007|20:58] C:\Program Files\Zone Labs
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[18/05/2008|10:30] C:\Program Files\Fichiers communs\Adobe
[23/05/2006|16:39] C:\Program Files\Fichiers communs\ATI Technologies
[11/12/2006|19:54] C:\Program Files\Fichiers communs\Designer
[23/05/2006|16:35] C:\Program Files\Fichiers communs\InstallShield
[11/12/2006|20:59] C:\Program Files\Fichiers communs\Java
[23/05/2006|17:00] C:\Program Files\Fichiers communs\LightScribe
[23/05/2006|16:22] C:\Program Files\Fichiers communs\Microsoft Shared
[23/05/2006|16:28] C:\Program Files\Fichiers communs\MSSoap
[23/05/2006|17:00] C:\Program Files\Fichiers communs\muvee Technologies
[23/05/2006|16:59] C:\Program Files\Fichiers communs\NewTech Infosystems
[23/05/2006|16:22] C:\Program Files\Fichiers communs\ODBC
[23/05/2006|16:28] C:\Program Files\Fichiers communs\Services
[23/05/2006|16:22] C:\Program Files\Fichiers communs\SpeechEngines
[23/05/2006|16:28] C:\Program Files\Fichiers communs\System
[14/02/2008|18:52] C:\Program Files\Fichiers communs\WindowsLiveInstaller
--------------------\\ Process
( 48 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-18 18:59:25
Windows 5.1.2600 Service Pack 3 FAT NTAPI
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:801][D:20]-> C:\DOCUME~1\AntoineD\LOCALS~1\Temp
[F:213][D:0]-> C:\DOCUME~1\AntoineD\Cookies
[F:11848][D:9]-> C:\DOCUME~1\AntoineD\LOCALS~1\TEMPOR~1\content.IE5
[F:23][D:0]-> C:\Recycled
1 - "C:\Lop SD\LopR_1.txt" - 17/09/2008|13:19 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 18/09/2008|19:02 - Option : [2]
--------------------\\ Fin du rapport a 19:02:58
Que dois-je faire ensuite ?
--------------------\\ Lop S&D 4.2.4-3 XP/Vista
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : Mobile AMD Sempron(tm) Processor 3400+ )
BIOS : Ver 1.00PARTTBL
USER : AntoineD ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 080918-0] 4.8.1229 (Activated)
Firewall : ZoneAlarm Firewall 7.0.462.000 (Activated)
C:\ (Local Disk) - FAT32 - Total : 23 Go Free : 5 Go
D:\ (Local Disk) - FAT32 - Total : 8 Go Free : 4 Go
E:\ (CD or DVD)
"C:\Lop SD" ( MAJ : 14-09-2008|22:40 )
Option : [2] ( 18/09/2008|18:53 )
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION
Supprime! - C:\DOCUME~1\AntoineD\LOCALS~1\Temp\NSIS
Supprime! - C:\Program Files\Adverts\uninst.exe
Supprime! - C:\Program Files\Adverts
-
[ Fichier Hosts ] .. Restaure!
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing des dossiers dans APPLIC~1
[23/05/2006|16:43] C:\DOCUME~1\DEFAUL~1\APPLIC~1\ATI
[23/05/2006|16:34] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[23/05/2006|16:22] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[18/05/2008|10:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[23/05/2006|16:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[11/12/2006|21:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[11/07/2008|11:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MailFrontier
[07/06/2007|12:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[23/05/2006|16:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[06/06/2007|12:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\software clock debug 16
[11/02/2007|10:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[23/12/2006|20:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[14/02/2008|18:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[23/05/2006|16:22] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[23/05/2006|16:22] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[11/12/2006|21:36] C:\DOCUME~1\ANTOINED\APPLIC~1\Adobe
[11/12/2006|21:36] C:\DOCUME~1\ANTOINED\APPLIC~1\AdobeUM
[08/12/2007|15:39] C:\DOCUME~1\ANTOINED\APPLIC~1\Apple Computer
[23/05/2006|16:43] C:\DOCUME~1\ANTOINED\APPLIC~1\ATI
[28/08/2008|15:53] C:\DOCUME~1\ANTOINED\APPLIC~1\CyberLink
[17/05/2008|21:27] C:\DOCUME~1\ANTOINED\APPLIC~1\dvdcss
[11/12/2006|21:14] C:\DOCUME~1\ANTOINED\APPLIC~1\Google
[23/05/2006|16:34] C:\DOCUME~1\ANTOINED\APPLIC~1\Identities
[11/02/2007|20:50] C:\DOCUME~1\ANTOINED\APPLIC~1\Lavasoft
[23/12/2007|13:18] C:\DOCUME~1\ANTOINED\APPLIC~1\LG Electronics
[10/12/2006|00:59] C:\DOCUME~1\ANTOINED\APPLIC~1\Macromedia
[20/06/2008|22:17] C:\DOCUME~1\ANTOINED\APPLIC~1\Media Player Classic
[23/05/2006|16:22] C:\DOCUME~1\ANTOINED\APPLIC~1\Microsoft
[08/05/2007|10:26] C:\DOCUME~1\ANTOINED\APPLIC~1\Mozilla
[09/12/2006|20:46] C:\DOCUME~1\ANTOINED\APPLIC~1\MSNInstaller
[27/08/2007|13:35] C:\DOCUME~1\ANTOINED\APPLIC~1\Notepad++
[06/06/2007|12:23] C:\DOCUME~1\ANTOINED\APPLIC~1\Programaxis
[06/06/2007|12:24] C:\DOCUME~1\ANTOINED\APPLIC~1\Screenshot Sender
[11/12/2006|21:06] C:\DOCUME~1\ANTOINED\APPLIC~1\Sun
[26/06/2008|20:11] C:\DOCUME~1\ANTOINED\APPLIC~1\U3
[18/05/2008|00:16] C:\DOCUME~1\ANTOINED\APPLIC~1\vlc
[19/02/2008|19:22] C:\DOCUME~1\ANTOINED\APPLIC~1\Xfire
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[18/09/2008 18:41][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 05:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ Listing des dossiers dans C:\Program Files
[23/05/2006|16:53] C:\Program Files\Acer
[23/05/2006|16:50] C:\Program Files\Acer Inc
[23/05/2006|16:50] C:\Program Files\Adobe
[09/12/2006|20:24] C:\Program Files\Alwil Software
[23/05/2006|16:35] C:\Program Files\ATI Technologies
[15/04/2008|13:41] C:\Program Files\Audacity
[23/05/2006|16:28] C:\Program Files\AviSynth 2.5
[16/01/2008|13:18] C:\Program Files\Call of Duty Game of the Year Edition
[02/07/2007|18:54] C:\Program Files\CCleaner
[23/05/2006|16:27] C:\Program Files\ComPlus Applications
[23/05/2006|16:47] C:\Program Files\CONEXANT
[23/05/2006|16:53] C:\Program Files\CyberLink
[24/05/2006|11:12] C:\Program Files\DIFX
[28/02/2007|13:55] C:\Program Files\eMule
[23/05/2006|16:22] C:\Program Files\Fichiers communs
[29/11/2007|10:30] C:\Program Files\Filzip
[09/08/2008|15:06] C:\Program Files\Free Video Converter
[11/12/2006|21:14] C:\Program Files\Google
[05/04/2008|14:48] C:\Program Files\GUILD WARS
[23/05/2006|16:35] C:\Program Files\InstallShield Installation Information
[02/04/2007|13:50] C:\Program Files\InterActual
[23/05/2006|16:28] C:\Program Files\Internet Explorer
[11/12/2006|21:01] C:\Program Files\Java
[10/12/2006|01:34] C:\Program Files\Launch Manager
[11/02/2007|20:50] C:\Program Files\Lavasoft
[23/12/2007|12:41] C:\Program Files\LG Electronics
[23/12/2007|12:45] C:\Program Files\LG PC Suite
[23/05/2006|16:27] C:\Program Files\Messenger
[06/06/2007|12:23] C:\Program Files\Messenger Plus! Live
[23/05/2006|16:29] C:\Program Files\microsoft frontpage
[25/02/2007|19:28] C:\Program Files\Microsoft Games
[11/12/2006|19:52] C:\Program Files\Microsoft Office
[11/12/2006|19:54] C:\Program Files\Microsoft Visual Studio
[23/05/2006|16:28] C:\Program Files\Movie Maker
[08/05/2007|10:26] C:\Program Files\Mozilla Firefox
[23/05/2006|16:26] C:\Program Files\MSN
[23/05/2006|16:27] C:\Program Files\MSN Gaming Zone
[09/12/2006|20:53] C:\Program Files\MSN Messenger
[11/12/2006|20:57] C:\Program Files\MSXML 4.0
[23/05/2006|16:28] C:\Program Files\NetMeeting
[23/05/2006|16:59] C:\Program Files\NewTech Infosystems
[27/08/2007|13:35] C:\Program Files\Notepad++
[23/05/2006|16:27] C:\Program Files\Online Services
[23/05/2006|16:28] C:\Program Files\Outlook Express
[02/07/2007|19:23] C:\Program Files\Paragon Software
[11/10/2007|13:33] C:\Program Files\PhotoFiltre
[08/06/2007|20:58] C:\Program Files\Picasa2
[23/08/2007|09:27] C:\Program Files\PowerQuest
[06/06/2007|16:33] C:\Program Files\Programaxis
[05/07/2008|17:53] C:\Program Files\Project64 1.6
[23/05/2006|16:44] C:\Program Files\Realtek
[07/06/2008|11:22] C:\Program Files\Red Kawa
[23/05/2006|16:28] C:\Program Files\Services en ligne
[10/04/2008|22:03] C:\Program Files\SLD Codec Pack
[07/09/2007|19:31] C:\Program Files\Speed Gear 5
[11/02/2007|10:46] C:\Program Files\Spybot - Search & Destroy
[10/12/2006|01:33] C:\Program Files\Synaptics
[10/07/2008|17:56] C:\Program Files\TGTSoft
[09/03/2007|20:14] C:\Program Files\TrackMania Nations ESWC
[16/09/2008|18:23] C:\Program Files\Trend Micro
[23/05/2006|16:34] C:\Program Files\Uninstall Information
[17/05/2008|21:25] C:\Program Files\VideoLAN
[02/07/2008|16:42] C:\Program Files\Western Digital
[06/06/2007|16:33] C:\Program Files\Windows Live
[16/01/2007|20:47] C:\Program Files\Windows Media Connect 2
[23/05/2006|16:27] C:\Program Files\Windows Media Player
[23/05/2006|16:26] C:\Program Files\Windows NT
[23/05/2006|16:28] C:\Program Files\WindowsUpdate
[23/05/2006|16:29] C:\Program Files\xerox
[19/02/2008|19:22] C:\Program Files\Xfire
[10/12/2006|01:44] C:\Program Files\Yahoo!
[11/02/2007|20:58] C:\Program Files\Zone Labs
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[18/05/2008|10:30] C:\Program Files\Fichiers communs\Adobe
[23/05/2006|16:39] C:\Program Files\Fichiers communs\ATI Technologies
[11/12/2006|19:54] C:\Program Files\Fichiers communs\Designer
[23/05/2006|16:35] C:\Program Files\Fichiers communs\InstallShield
[11/12/2006|20:59] C:\Program Files\Fichiers communs\Java
[23/05/2006|17:00] C:\Program Files\Fichiers communs\LightScribe
[23/05/2006|16:22] C:\Program Files\Fichiers communs\Microsoft Shared
[23/05/2006|16:28] C:\Program Files\Fichiers communs\MSSoap
[23/05/2006|17:00] C:\Program Files\Fichiers communs\muvee Technologies
[23/05/2006|16:59] C:\Program Files\Fichiers communs\NewTech Infosystems
[23/05/2006|16:22] C:\Program Files\Fichiers communs\ODBC
[23/05/2006|16:28] C:\Program Files\Fichiers communs\Services
[23/05/2006|16:22] C:\Program Files\Fichiers communs\SpeechEngines
[23/05/2006|16:28] C:\Program Files\Fichiers communs\System
[14/02/2008|18:52] C:\Program Files\Fichiers communs\WindowsLiveInstaller
--------------------\\ Process
( 48 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-18 18:59:25
Windows 5.1.2600 Service Pack 3 FAT NTAPI
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:801][D:20]-> C:\DOCUME~1\AntoineD\LOCALS~1\Temp
[F:213][D:0]-> C:\DOCUME~1\AntoineD\Cookies
[F:11848][D:9]-> C:\DOCUME~1\AntoineD\LOCALS~1\TEMPOR~1\content.IE5
[F:23][D:0]-> C:\Recycled
1 - "C:\Lop SD\LopR_1.txt" - 17/09/2008|13:19 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 18/09/2008|19:02 - Option : [2]
--------------------\\ Fin du rapport a 19:02:58
Antoin3
Messages postés
51
Date d'inscription
mardi 16 septembre 2008
Statut
Membre
Dernière intervention
1 novembre 2008
1
19 sept. 2008 à 19:21
19 sept. 2008 à 19:21
Que dois-je faire à présent s'il vous plait ?
crapoulou
Messages postés
28093
Date d'inscription
mercredi 28 novembre 2007
Statut
Modérateur, Contributeur sécurité
Dernière intervention
19 mars 2023
8 005
21 sept. 2008 à 20:32
21 sept. 2008 à 20:32
Postes un nouveau rapport hijackthis.
Antoin3
Messages postés
51
Date d'inscription
mardi 16 septembre 2008
Statut
Membre
Dernière intervention
1 novembre 2008
1
21 sept. 2008 à 20:36
21 sept. 2008 à 20:36
Voici le rapport Hijackthis :
Merci beaucoup de ton aide Crapoulou.
Dois-je faire autre chose ensuite ?
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:34:55, on 21/09/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\ZONELABS\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLCapSvc.exe
C:\Program Files\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLServer.exe
C:\Program Files\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLService.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLSched.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\System32\svchost.exe
C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\PROGRA~1\LAUNCH~1\LManager.exe
C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://fr.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\InstallShield\AzMixerSel.exe
O4 - HKLM\..\Run: [ntiMUI] C:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe
O4 - HKLM\..\Run: [Acer ePresentation HPD] C:\Acer\Empowering Technology\ePresentation\ePresentation.exe
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [ePower_DMC] C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
O4 - HKLM\..\Run: [Boot] C:\Acer\Empowering Technology\ePower\Boot.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\LManager.exe
O4 - HKLM\..\Run: [eRecoveryService] C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [part mags] C:\DOCUME~1\AntoineD\APPLIC~1\PROGRA~1\Bodytool.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O23 - Service: Memory Check Service (AcerMemUsageCheckService) - Acer Inc. - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLSched.exe
O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLServer.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZONELABS\vsmon.exe
Merci beaucoup de ton aide Crapoulou.
Dois-je faire autre chose ensuite ?
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:34:55, on 21/09/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\ZONELABS\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLCapSvc.exe
C:\Program Files\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLServer.exe
C:\Program Files\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLService.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLSched.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\System32\svchost.exe
C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\PROGRA~1\LAUNCH~1\LManager.exe
C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://fr.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\InstallShield\AzMixerSel.exe
O4 - HKLM\..\Run: [ntiMUI] C:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe
O4 - HKLM\..\Run: [Acer ePresentation HPD] C:\Acer\Empowering Technology\ePresentation\ePresentation.exe
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [ePower_DMC] C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
O4 - HKLM\..\Run: [Boot] C:\Acer\Empowering Technology\ePower\Boot.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\LManager.exe
O4 - HKLM\..\Run: [eRecoveryService] C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [part mags] C:\DOCUME~1\AntoineD\APPLIC~1\PROGRA~1\Bodytool.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O23 - Service: Memory Check Service (AcerMemUsageCheckService) - Acer Inc. - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLSched.exe
O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLServer.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZONELABS\vsmon.exe
crapoulou
Messages postés
28093
Date d'inscription
mercredi 28 novembre 2007
Statut
Modérateur, Contributeur sécurité
Dernière intervention
19 mars 2023
8 005
21 sept. 2008 à 20:39
21 sept. 2008 à 20:39
Télécharge internet explorer version 7 :
https://www.01net.com/telecharger/windows/Internet/navigateur/fiches/33081.html
Télécharge LopS&D (de eric_71) :
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
Enregistre le fichier sur ton bureau.
Lance l'installation.
Une fois le programme lancé tape F pour être en Français.
Puis exécute l'option 1 : Recherche.
Un rapport sera généré.
Poste le ici.
(Dans le cas où le rapport ne s'ouvre pas, ce dernier se trouve sur C:\LopR.txt)
Petit tuto ici si besoin : http://www.malekal.com/tutorial_Lop_SD.php
https://www.01net.com/telecharger/windows/Internet/navigateur/fiches/33081.html
Télécharge LopS&D (de eric_71) :
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
Enregistre le fichier sur ton bureau.
Lance l'installation.
Une fois le programme lancé tape F pour être en Français.
Puis exécute l'option 1 : Recherche.
Un rapport sera généré.
Poste le ici.
(Dans le cas où le rapport ne s'ouvre pas, ce dernier se trouve sur C:\LopR.txt)
Petit tuto ici si besoin : http://www.malekal.com/tutorial_Lop_SD.php
Antoin3
Messages postés
51
Date d'inscription
mardi 16 septembre 2008
Statut
Membre
Dernière intervention
1 novembre 2008
1
21 sept. 2008 à 20:40
21 sept. 2008 à 20:40
Ok y'a pas de soucis merci.
A tout de suite =).
A tout de suite =).
crapoulou
Messages postés
28093
Date d'inscription
mercredi 28 novembre 2007
Statut
Modérateur, Contributeur sécurité
Dernière intervention
19 mars 2023
8 005
21 sept. 2008 à 20:41
21 sept. 2008 à 20:41
Attention : j'ai modifié le message précédent !
Suis les instructions.
Suis les instructions.
Antoin3
Messages postés
51
Date d'inscription
mardi 16 septembre 2008
Statut
Membre
Dernière intervention
1 novembre 2008
1
21 sept. 2008 à 21:04
21 sept. 2008 à 21:04
D'accord. De toute façon je l'ai déjà télécharger précédemment Lop S&D.
Jte poste le rapport d'ici 5 minutes ; ).
Mais c'est pour quoi faire IE 7 ?
Jte poste le rapport d'ici 5 minutes ; ).
Mais c'est pour quoi faire IE 7 ?
crapoulou
Messages postés
28093
Date d'inscription
mercredi 28 novembre 2007
Statut
Modérateur, Contributeur sécurité
Dernière intervention
19 mars 2023
8 005
21 sept. 2008 à 21:11
21 sept. 2008 à 21:11
C'est une faille de sécurité de ne pas mettre à jour Internet Explorer, même si ce n'est pas ton navigateur.
Preuve : https://forum.malekal.com/viewtopic.php?f=45&t=12405
Preuve : https://forum.malekal.com/viewtopic.php?f=45&t=12405
Antoin3
Messages postés
51
Date d'inscription
mardi 16 septembre 2008
Statut
Membre
Dernière intervention
1 novembre 2008
1
21 sept. 2008 à 21:20
21 sept. 2008 à 21:20
Voici le rapport de Lop S&D.
Cependant j'ai un problème dans l'installation de IE 7. J'ai un icône sur mon bureau où il y a écrit : "Internet Explorer - résolution de problèmes" et quand je double-clique dessus, je vais sur la page internet suivante : https://support.microsoft.com/en-us/help/917925
Que dois-je faire ?
--------------------\\ Lop S&D 4.2.4-3 XP/Vista
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : Mobile AMD Sempron(tm) Processor 3400+ )
BIOS : Ver 1.00PARTTBL
USER : AntoineD ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 080920-0] 4.8.1229 (Activated)
Firewall : ZoneAlarm Firewall 7.0.462.000 (Activated)
C:\ (Local Disk) - FAT32 - Total : 23 Go Free : 6 Go
D:\ (Local Disk) - FAT32 - Total : 8 Go Free : 4 Go
E:\ (CD or DVD)
"C:\Lop SD" ( MAJ : 14-09-2008|22:40 )
Option : [1] ( 21/09/2008|21:07 )
--------------------\\ Listing des dossiers dans APPLIC~1
[23/05/2006|16:43] C:\DOCUME~1\DEFAUL~1\APPLIC~1\ATI
[23/05/2006|16:34] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[23/05/2006|16:22] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[18/05/2008|10:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[23/05/2006|16:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[11/12/2006|21:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[11/07/2008|11:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MailFrontier
[07/06/2007|12:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[23/05/2006|16:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[06/06/2007|12:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\software clock debug 16
[11/02/2007|10:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[23/12/2006|20:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[14/02/2008|18:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[23/05/2006|16:22] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[23/05/2006|16:22] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[11/12/2006|21:36] C:\DOCUME~1\ANTOINED\APPLIC~1\Adobe
[11/12/2006|21:36] C:\DOCUME~1\ANTOINED\APPLIC~1\AdobeUM
[08/12/2007|15:39] C:\DOCUME~1\ANTOINED\APPLIC~1\Apple Computer
[23/05/2006|16:43] C:\DOCUME~1\ANTOINED\APPLIC~1\ATI
[28/08/2008|15:53] C:\DOCUME~1\ANTOINED\APPLIC~1\CyberLink
[17/05/2008|21:27] C:\DOCUME~1\ANTOINED\APPLIC~1\dvdcss
[19/09/2008|21:33] C:\DOCUME~1\ANTOINED\APPLIC~1\GetRightToGo
[11/12/2006|21:14] C:\DOCUME~1\ANTOINED\APPLIC~1\Google
[23/05/2006|16:34] C:\DOCUME~1\ANTOINED\APPLIC~1\Identities
[11/02/2007|20:50] C:\DOCUME~1\ANTOINED\APPLIC~1\Lavasoft
[23/12/2007|13:18] C:\DOCUME~1\ANTOINED\APPLIC~1\LG Electronics
[10/12/2006|00:59] C:\DOCUME~1\ANTOINED\APPLIC~1\Macromedia
[20/06/2008|22:17] C:\DOCUME~1\ANTOINED\APPLIC~1\Media Player Classic
[23/05/2006|16:22] C:\DOCUME~1\ANTOINED\APPLIC~1\Microsoft
[08/05/2007|10:26] C:\DOCUME~1\ANTOINED\APPLIC~1\Mozilla
[09/12/2006|20:46] C:\DOCUME~1\ANTOINED\APPLIC~1\MSNInstaller
[27/08/2007|13:35] C:\DOCUME~1\ANTOINED\APPLIC~1\Notepad++
[06/06/2007|12:23] C:\DOCUME~1\ANTOINED\APPLIC~1\Programaxis
[06/06/2007|12:24] C:\DOCUME~1\ANTOINED\APPLIC~1\Screenshot Sender
[11/12/2006|21:06] C:\DOCUME~1\ANTOINED\APPLIC~1\Sun
[26/06/2008|20:11] C:\DOCUME~1\ANTOINED\APPLIC~1\U3
[18/05/2008|00:16] C:\DOCUME~1\ANTOINED\APPLIC~1\vlc
[21/09/2008|13:33] C:\DOCUME~1\ANTOINED\APPLIC~1\WinRAR
[19/02/2008|19:22] C:\DOCUME~1\ANTOINED\APPLIC~1\Xfire
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[21/09/2008 20:53][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 05:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ Listing des dossiers dans C:\Program Files
[23/05/2006|16:53] C:\Program Files\Acer
[23/05/2006|16:50] C:\Program Files\Acer Inc
[23/05/2006|16:50] C:\Program Files\Adobe
[09/12/2006|20:24] C:\Program Files\Alwil Software
[23/05/2006|16:35] C:\Program Files\ATI Technologies
[15/04/2008|13:41] C:\Program Files\Audacity
[23/05/2006|16:28] C:\Program Files\AviSynth 2.5
[16/01/2008|13:18] C:\Program Files\Call of Duty Game of the Year Edition
[02/07/2007|18:54] C:\Program Files\CCleaner
[23/05/2006|16:27] C:\Program Files\ComPlus Applications
[23/05/2006|16:47] C:\Program Files\CONEXANT
[23/05/2006|16:53] C:\Program Files\CyberLink
[24/05/2006|11:12] C:\Program Files\DIFX
[28/02/2007|13:55] C:\Program Files\eMule
[23/05/2006|16:22] C:\Program Files\Fichiers communs
[29/11/2007|10:30] C:\Program Files\Filzip
[09/08/2008|15:06] C:\Program Files\Free Video Converter
[11/12/2006|21:14] C:\Program Files\Google
[05/04/2008|14:48] C:\Program Files\GUILD WARS
[23/05/2006|16:35] C:\Program Files\InstallShield Installation Information
[02/04/2007|13:50] C:\Program Files\InterActual
[23/05/2006|16:28] C:\Program Files\Internet Explorer
[11/12/2006|21:01] C:\Program Files\Java
[10/12/2006|01:34] C:\Program Files\Launch Manager
[11/02/2007|20:50] C:\Program Files\Lavasoft
[23/12/2007|12:41] C:\Program Files\LG Electronics
[23/12/2007|12:45] C:\Program Files\LG PC Suite
[23/05/2006|16:27] C:\Program Files\Messenger
[06/06/2007|12:23] C:\Program Files\Messenger Plus! Live
[23/05/2006|16:29] C:\Program Files\microsoft frontpage
[25/02/2007|19:28] C:\Program Files\Microsoft Games
[11/12/2006|19:52] C:\Program Files\Microsoft Office
[11/12/2006|19:54] C:\Program Files\Microsoft Visual Studio
[23/05/2006|16:28] C:\Program Files\Movie Maker
[08/05/2007|10:26] C:\Program Files\Mozilla Firefox
[23/05/2006|16:26] C:\Program Files\MSN
[23/05/2006|16:27] C:\Program Files\MSN Gaming Zone
[09/12/2006|20:53] C:\Program Files\MSN Messenger
[11/12/2006|20:57] C:\Program Files\MSXML 4.0
[23/05/2006|16:28] C:\Program Files\NetMeeting
[23/05/2006|16:59] C:\Program Files\NewTech Infosystems
[27/08/2007|13:35] C:\Program Files\Notepad++
[23/05/2006|16:27] C:\Program Files\Online Services
[23/05/2006|16:28] C:\Program Files\Outlook Express
[02/07/2007|19:23] C:\Program Files\Paragon Software
[11/10/2007|13:33] C:\Program Files\PhotoFiltre
[08/06/2007|20:58] C:\Program Files\Picasa2
[23/08/2007|09:27] C:\Program Files\PowerQuest
[06/06/2007|16:33] C:\Program Files\Programaxis
[05/07/2008|17:53] C:\Program Files\Project64 1.6
[23/05/2006|16:44] C:\Program Files\Realtek
[07/06/2008|11:22] C:\Program Files\Red Kawa
[23/05/2006|16:28] C:\Program Files\Services en ligne
[10/04/2008|22:03] C:\Program Files\SLD Codec Pack
[07/09/2007|19:31] C:\Program Files\Speed Gear 5
[11/02/2007|10:46] C:\Program Files\Spybot - Search & Destroy
[10/12/2006|01:33] C:\Program Files\Synaptics
[10/07/2008|17:56] C:\Program Files\TGTSoft
[09/03/2007|20:14] C:\Program Files\TrackMania Nations ESWC
[16/09/2008|18:23] C:\Program Files\Trend Micro
[23/05/2006|16:34] C:\Program Files\Uninstall Information
[17/05/2008|21:25] C:\Program Files\VideoLAN
[02/07/2008|16:42] C:\Program Files\Western Digital
[06/06/2007|16:33] C:\Program Files\Windows Live
[16/01/2007|20:47] C:\Program Files\Windows Media Connect 2
[23/05/2006|16:27] C:\Program Files\Windows Media Player
[23/05/2006|16:26] C:\Program Files\Windows NT
[23/05/2006|16:28] C:\Program Files\WindowsUpdate
[21/09/2008|13:31] C:\Program Files\WinRAR
[23/05/2006|16:29] C:\Program Files\xerox
[19/02/2008|19:22] C:\Program Files\Xfire
[10/12/2006|01:44] C:\Program Files\Yahoo!
[11/02/2007|20:58] C:\Program Files\Zone Labs
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[18/05/2008|10:30] C:\Program Files\Fichiers communs\Adobe
[23/05/2006|16:39] C:\Program Files\Fichiers communs\ATI Technologies
[11/12/2006|19:54] C:\Program Files\Fichiers communs\Designer
[23/05/2006|16:35] C:\Program Files\Fichiers communs\InstallShield
[11/12/2006|20:59] C:\Program Files\Fichiers communs\Java
[23/05/2006|17:00] C:\Program Files\Fichiers communs\LightScribe
[23/05/2006|16:22] C:\Program Files\Fichiers communs\Microsoft Shared
[23/05/2006|16:28] C:\Program Files\Fichiers communs\MSSoap
[23/05/2006|17:00] C:\Program Files\Fichiers communs\muvee Technologies
[23/05/2006|16:59] C:\Program Files\Fichiers communs\NewTech Infosystems
[23/05/2006|16:22] C:\Program Files\Fichiers communs\ODBC
[23/05/2006|16:28] C:\Program Files\Fichiers communs\Services
[23/05/2006|16:22] C:\Program Files\Fichiers communs\SpeechEngines
[23/05/2006|16:28] C:\Program Files\Fichiers communs\System
[14/02/2008|18:52] C:\Program Files\Fichiers communs\WindowsLiveInstaller
--------------------\\ Process
( 48 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-21 21:13:09
Windows 5.1.2600 Service Pack 3 FAT NTAPI
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:837][D:21]-> C:\DOCUME~1\AntoineD\LOCALS~1\Temp
[F:237][D:0]-> C:\DOCUME~1\AntoineD\Cookies
[F:13036][D:9]-> C:\DOCUME~1\AntoineD\LOCALS~1\TEMPOR~1\content.IE5
[F:23][D:0]-> C:\Recycled
1 - "C:\Lop SD\LopR_1.txt" - 17/09/2008|13:19 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 18/09/2008|19:02 - Option : [2]
3 - "C:\Lop SD\LopR_3.txt" - 21/09/2008|21:16 - Option : [1]
--------------------\\ Fin du rapport a 21:16:45
Cependant j'ai un problème dans l'installation de IE 7. J'ai un icône sur mon bureau où il y a écrit : "Internet Explorer - résolution de problèmes" et quand je double-clique dessus, je vais sur la page internet suivante : https://support.microsoft.com/en-us/help/917925
Que dois-je faire ?
--------------------\\ Lop S&D 4.2.4-3 XP/Vista
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : Mobile AMD Sempron(tm) Processor 3400+ )
BIOS : Ver 1.00PARTTBL
USER : AntoineD ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 080920-0] 4.8.1229 (Activated)
Firewall : ZoneAlarm Firewall 7.0.462.000 (Activated)
C:\ (Local Disk) - FAT32 - Total : 23 Go Free : 6 Go
D:\ (Local Disk) - FAT32 - Total : 8 Go Free : 4 Go
E:\ (CD or DVD)
"C:\Lop SD" ( MAJ : 14-09-2008|22:40 )
Option : [1] ( 21/09/2008|21:07 )
--------------------\\ Listing des dossiers dans APPLIC~1
[23/05/2006|16:43] C:\DOCUME~1\DEFAUL~1\APPLIC~1\ATI
[23/05/2006|16:34] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[23/05/2006|16:22] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[18/05/2008|10:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[23/05/2006|16:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[11/12/2006|21:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[11/07/2008|11:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MailFrontier
[07/06/2007|12:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[23/05/2006|16:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[06/06/2007|12:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\software clock debug 16
[11/02/2007|10:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[23/12/2006|20:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[14/02/2008|18:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[23/05/2006|16:22] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[23/05/2006|16:22] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[11/12/2006|21:36] C:\DOCUME~1\ANTOINED\APPLIC~1\Adobe
[11/12/2006|21:36] C:\DOCUME~1\ANTOINED\APPLIC~1\AdobeUM
[08/12/2007|15:39] C:\DOCUME~1\ANTOINED\APPLIC~1\Apple Computer
[23/05/2006|16:43] C:\DOCUME~1\ANTOINED\APPLIC~1\ATI
[28/08/2008|15:53] C:\DOCUME~1\ANTOINED\APPLIC~1\CyberLink
[17/05/2008|21:27] C:\DOCUME~1\ANTOINED\APPLIC~1\dvdcss
[19/09/2008|21:33] C:\DOCUME~1\ANTOINED\APPLIC~1\GetRightToGo
[11/12/2006|21:14] C:\DOCUME~1\ANTOINED\APPLIC~1\Google
[23/05/2006|16:34] C:\DOCUME~1\ANTOINED\APPLIC~1\Identities
[11/02/2007|20:50] C:\DOCUME~1\ANTOINED\APPLIC~1\Lavasoft
[23/12/2007|13:18] C:\DOCUME~1\ANTOINED\APPLIC~1\LG Electronics
[10/12/2006|00:59] C:\DOCUME~1\ANTOINED\APPLIC~1\Macromedia
[20/06/2008|22:17] C:\DOCUME~1\ANTOINED\APPLIC~1\Media Player Classic
[23/05/2006|16:22] C:\DOCUME~1\ANTOINED\APPLIC~1\Microsoft
[08/05/2007|10:26] C:\DOCUME~1\ANTOINED\APPLIC~1\Mozilla
[09/12/2006|20:46] C:\DOCUME~1\ANTOINED\APPLIC~1\MSNInstaller
[27/08/2007|13:35] C:\DOCUME~1\ANTOINED\APPLIC~1\Notepad++
[06/06/2007|12:23] C:\DOCUME~1\ANTOINED\APPLIC~1\Programaxis
[06/06/2007|12:24] C:\DOCUME~1\ANTOINED\APPLIC~1\Screenshot Sender
[11/12/2006|21:06] C:\DOCUME~1\ANTOINED\APPLIC~1\Sun
[26/06/2008|20:11] C:\DOCUME~1\ANTOINED\APPLIC~1\U3
[18/05/2008|00:16] C:\DOCUME~1\ANTOINED\APPLIC~1\vlc
[21/09/2008|13:33] C:\DOCUME~1\ANTOINED\APPLIC~1\WinRAR
[19/02/2008|19:22] C:\DOCUME~1\ANTOINED\APPLIC~1\Xfire
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[21/09/2008 20:53][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 05:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ Listing des dossiers dans C:\Program Files
[23/05/2006|16:53] C:\Program Files\Acer
[23/05/2006|16:50] C:\Program Files\Acer Inc
[23/05/2006|16:50] C:\Program Files\Adobe
[09/12/2006|20:24] C:\Program Files\Alwil Software
[23/05/2006|16:35] C:\Program Files\ATI Technologies
[15/04/2008|13:41] C:\Program Files\Audacity
[23/05/2006|16:28] C:\Program Files\AviSynth 2.5
[16/01/2008|13:18] C:\Program Files\Call of Duty Game of the Year Edition
[02/07/2007|18:54] C:\Program Files\CCleaner
[23/05/2006|16:27] C:\Program Files\ComPlus Applications
[23/05/2006|16:47] C:\Program Files\CONEXANT
[23/05/2006|16:53] C:\Program Files\CyberLink
[24/05/2006|11:12] C:\Program Files\DIFX
[28/02/2007|13:55] C:\Program Files\eMule
[23/05/2006|16:22] C:\Program Files\Fichiers communs
[29/11/2007|10:30] C:\Program Files\Filzip
[09/08/2008|15:06] C:\Program Files\Free Video Converter
[11/12/2006|21:14] C:\Program Files\Google
[05/04/2008|14:48] C:\Program Files\GUILD WARS
[23/05/2006|16:35] C:\Program Files\InstallShield Installation Information
[02/04/2007|13:50] C:\Program Files\InterActual
[23/05/2006|16:28] C:\Program Files\Internet Explorer
[11/12/2006|21:01] C:\Program Files\Java
[10/12/2006|01:34] C:\Program Files\Launch Manager
[11/02/2007|20:50] C:\Program Files\Lavasoft
[23/12/2007|12:41] C:\Program Files\LG Electronics
[23/12/2007|12:45] C:\Program Files\LG PC Suite
[23/05/2006|16:27] C:\Program Files\Messenger
[06/06/2007|12:23] C:\Program Files\Messenger Plus! Live
[23/05/2006|16:29] C:\Program Files\microsoft frontpage
[25/02/2007|19:28] C:\Program Files\Microsoft Games
[11/12/2006|19:52] C:\Program Files\Microsoft Office
[11/12/2006|19:54] C:\Program Files\Microsoft Visual Studio
[23/05/2006|16:28] C:\Program Files\Movie Maker
[08/05/2007|10:26] C:\Program Files\Mozilla Firefox
[23/05/2006|16:26] C:\Program Files\MSN
[23/05/2006|16:27] C:\Program Files\MSN Gaming Zone
[09/12/2006|20:53] C:\Program Files\MSN Messenger
[11/12/2006|20:57] C:\Program Files\MSXML 4.0
[23/05/2006|16:28] C:\Program Files\NetMeeting
[23/05/2006|16:59] C:\Program Files\NewTech Infosystems
[27/08/2007|13:35] C:\Program Files\Notepad++
[23/05/2006|16:27] C:\Program Files\Online Services
[23/05/2006|16:28] C:\Program Files\Outlook Express
[02/07/2007|19:23] C:\Program Files\Paragon Software
[11/10/2007|13:33] C:\Program Files\PhotoFiltre
[08/06/2007|20:58] C:\Program Files\Picasa2
[23/08/2007|09:27] C:\Program Files\PowerQuest
[06/06/2007|16:33] C:\Program Files\Programaxis
[05/07/2008|17:53] C:\Program Files\Project64 1.6
[23/05/2006|16:44] C:\Program Files\Realtek
[07/06/2008|11:22] C:\Program Files\Red Kawa
[23/05/2006|16:28] C:\Program Files\Services en ligne
[10/04/2008|22:03] C:\Program Files\SLD Codec Pack
[07/09/2007|19:31] C:\Program Files\Speed Gear 5
[11/02/2007|10:46] C:\Program Files\Spybot - Search & Destroy
[10/12/2006|01:33] C:\Program Files\Synaptics
[10/07/2008|17:56] C:\Program Files\TGTSoft
[09/03/2007|20:14] C:\Program Files\TrackMania Nations ESWC
[16/09/2008|18:23] C:\Program Files\Trend Micro
[23/05/2006|16:34] C:\Program Files\Uninstall Information
[17/05/2008|21:25] C:\Program Files\VideoLAN
[02/07/2008|16:42] C:\Program Files\Western Digital
[06/06/2007|16:33] C:\Program Files\Windows Live
[16/01/2007|20:47] C:\Program Files\Windows Media Connect 2
[23/05/2006|16:27] C:\Program Files\Windows Media Player
[23/05/2006|16:26] C:\Program Files\Windows NT
[23/05/2006|16:28] C:\Program Files\WindowsUpdate
[21/09/2008|13:31] C:\Program Files\WinRAR
[23/05/2006|16:29] C:\Program Files\xerox
[19/02/2008|19:22] C:\Program Files\Xfire
[10/12/2006|01:44] C:\Program Files\Yahoo!
[11/02/2007|20:58] C:\Program Files\Zone Labs
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[18/05/2008|10:30] C:\Program Files\Fichiers communs\Adobe
[23/05/2006|16:39] C:\Program Files\Fichiers communs\ATI Technologies
[11/12/2006|19:54] C:\Program Files\Fichiers communs\Designer
[23/05/2006|16:35] C:\Program Files\Fichiers communs\InstallShield
[11/12/2006|20:59] C:\Program Files\Fichiers communs\Java
[23/05/2006|17:00] C:\Program Files\Fichiers communs\LightScribe
[23/05/2006|16:22] C:\Program Files\Fichiers communs\Microsoft Shared
[23/05/2006|16:28] C:\Program Files\Fichiers communs\MSSoap
[23/05/2006|17:00] C:\Program Files\Fichiers communs\muvee Technologies
[23/05/2006|16:59] C:\Program Files\Fichiers communs\NewTech Infosystems
[23/05/2006|16:22] C:\Program Files\Fichiers communs\ODBC
[23/05/2006|16:28] C:\Program Files\Fichiers communs\Services
[23/05/2006|16:22] C:\Program Files\Fichiers communs\SpeechEngines
[23/05/2006|16:28] C:\Program Files\Fichiers communs\System
[14/02/2008|18:52] C:\Program Files\Fichiers communs\WindowsLiveInstaller
--------------------\\ Process
( 48 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-21 21:13:09
Windows 5.1.2600 Service Pack 3 FAT NTAPI
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:837][D:21]-> C:\DOCUME~1\AntoineD\LOCALS~1\Temp
[F:237][D:0]-> C:\DOCUME~1\AntoineD\Cookies
[F:13036][D:9]-> C:\DOCUME~1\AntoineD\LOCALS~1\TEMPOR~1\content.IE5
[F:23][D:0]-> C:\Recycled
1 - "C:\Lop SD\LopR_1.txt" - 17/09/2008|13:19 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 18/09/2008|19:02 - Option : [2]
3 - "C:\Lop SD\LopR_3.txt" - 21/09/2008|21:16 - Option : [1]
--------------------\\ Fin du rapport a 21:16:45