Sujet Précédent Sujet Suivant

Résultat Hijackthis, suis-je infecté ?

Antoin3 Messages postés 51 Statut Membre -  
crapoulou Messages postés 42848 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   -
Bonjour,
je me suis fait hacké mon pc, est-ce que quelqu'un décèle un soucis dans le résultat Hijackthis, ci-dessous ?!

Merci par avance de votre aide.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:25:28, on 16/09/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\ZONELABS\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLCapSvc.exe
C:\Program Files\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLServer.exe
C:\Program Files\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLService.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLSched.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\System32\svchost.exe
C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\PROGRA~1\LAUNCH~1\LManager.exe
C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\Lavasoft\Ad-Aware SE Personal\Ad-Aware.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://fr.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
R3 - URLSearchHook: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb127\SearchSettings.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb127\SearchSettings.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\InstallShield\AzMixerSel.exe
O4 - HKLM\..\Run: [ntiMUI] C:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe
O4 - HKLM\..\Run: [Acer ePresentation HPD] C:\Acer\Empowering Technology\ePresentation\ePresentation.exe
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [ePower_DMC] C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
O4 - HKLM\..\Run: [Boot] C:\Acer\Empowering Technology\ePower\Boot.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\LManager.exe
O4 - HKLM\..\Run: [eRecoveryService] C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [SearchSettings] C:\Program Files\Search Settings\SearchSettings.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [part mags] C:\DOCUME~1\AntoineD\APPLIC~1\PROGRA~1\Bodytool.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O23 - Service: Memory Check Service (AcerMemUsageCheckService) - Acer Inc. - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLSched.exe
O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLServer.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZONELABS\vsmon.exe
A voir également:

79 réponses

Précédent
Réponse 21 / 79
hooligan63780 Messages postés 867 Statut Membre 5
 
ca te met nettoyage a la fin ben met nettoyage xD
0
Réponse 22 / 79
Antoin3 Messages postés 51 Statut Membre 1
 
Ok, je fais nettoyage et je te montre le résultat après ça, pour que tu me dises ce que je dois faire ensuite.
Merci beaucoup.
0
Réponse 23 / 79
hooligan63780 Messages postés 867 Statut Membre 5
 
tu as le tutoriel pour t'aider aussi ^^
0
Réponse 24 / 79
Antoin3 Messages postés 51 Statut Membre 1
 
Voici donc les résultats du "Nettoyage" par SmitFraudFix en mode sans échec.

Que dois-je faire après ceci ?

SmitFraudFix v2.352

Rapport fait à 15:45:16,71, 17/09/2008
Executé à partir de C:\Documents and Settings\AntoineD\Bureau\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Le type du système de fichiers est FAT32
Fix executé en mode sans echec

»»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Avant SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

»»»»»»»»»»»»»»»»»»»»»»»» Arret des processus

»»»»»»»»»»»»»»»»»»»»»»»» hosts

127.0.0.1 localhost
127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD
127.0.0.1 download.errorsafe.com ## added by CiD
127.0.0.1 download.systemdoctor.com ## added by CiD
127.0.0.1 download.winantispyware.com ## added by CiD
127.0.0.1 download.windrivecleaner.com ## added by CiD
127.0.0.1 download.winfixer.com ## added by CiD
127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 es.winantivirus.com ## added by CiD
127.0.0.1 fr.winantivirus.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 go.winantivirus.com ## added by CiD
127.0.0.1 hk.winantivirus.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 instlog.winantivirus.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 kb.winantivirus.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 secure.winantivirus.com ## added by CiD
127.0.0.1 support.winantivirus.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 ulog.winantivirus.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 utils.winantivirus.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winantivirus.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 www.drivecleaner.com ## added by CiD
127.0.0.1 www.errorprotector.com ## added by CiD
127.0.0.1 www.errorsafe.com ## added by CiD
127.0.0.1 www.systemdoctor.com ## added by CiD
127.0.0.1 www.utils.winfixer.com ## added by CiD
127.0.0.1 www.win-anti-virus-pro.com ## added by CiD
127.0.0.1 www.win-virus-pro.com ## added by CiD
127.0.0.1 www.winantispam.com ## added by CiD
127.0.0.1 www.winantispy.com ## added by CiD
127.0.0.1 www.winantispyware.com ## added by CiD
127.0.0.1 www.winantivirus.com ## added by CiD
127.0.0.1 www.winantiviruspro.com ## added by CiD
127.0.0.1 www.windrivecleaner.com ## added by CiD
127.0.0.1 www.windrivesafe.com ## added by CiD
127.0.0.1 www.winfixer.com ## added by CiD
127.0.0.1 www.winfixer2006.com ## added by CiD
127.0.0.1 www.winsoftware.com ## added by CiD

»»»»»»»»»»»»»»»»»»»»»»»» VACFix

VACFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri

»»»»»»»»»»»»»»»»»»»»»»»» Winsock2 Fix

S!Ri's WS2Fix: LSP not Found.

»»»»»»»»»»»»»»»»»»»»»»»» Generic Renos Fix

GenericRenosFix by S!Ri

»»»»»»»»»»»»»»»»»»»»»»»» Suppression des fichiers infectés

»»»»»»»»»»»»»»»»»»»»»»»» IEDFix

IEDFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri

»»»»»»»»»»»»»»»»»»»»»»»» 404Fix

404Fix
Credits: Malware Analysis & Diagnostic
Code: S!Ri

»»»»»»»»»»»»»»»»»»»»»»»» AntiXPVSTFix

AntiXPVSTFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri

»»»»»»»»»»»»»»»»»»»»»»»» RK

»»»»»»»»»»»»»»»»»»»»»»»» DNS

HKLM\SYSTEM\CCS\Services\Tcpip\..\{7662D4E9-5E22-4E5C-8635-41A6BB7F6F3E}: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS1\Services\Tcpip\..\{7662D4E9-5E22-4E5C-8635-41A6BB7F6F3E}: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1

»»»»»»»»»»»»»»»»»»»»»»»» Suppression Fichiers Temporaires

»»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"System"=""

»»»»»»»»»»»»»»»»»»»»»»»» Nettoyage du registre

Nettoyage terminé.

»»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Après SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

»»»»»»»»»»»»»»»»»»»»»»»» Fin
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 25 / 79
hooligan63780 Messages postés 867 Statut Membre 5
 
tu fait néttoyage
0
Réponse 26 / 79
Antoin3 Messages postés 51 Statut Membre 1
 
Mais c'est ce que je viens de faire là.

Les résultats dans mon poste précédent correspondent au "Nettoyage".

Donc après ce "Nettoyage", je dois faire quoi ?

Merci de ton aide.
0
Réponse 27 / 79
hooligan63780 Messages postés 867 Statut Membre 5
 
ben SmitFraudFix a fini sont travail ^^
0
Réponse 28 / 79
Antoin3 Messages postés 51 Statut Membre 1
 
Et je fais quoi alors maitenant ?

Je refais un Hijackthis et je le post, pour voir si j'ai plus de problèmes ?!
0
Réponse 29 / 79
hooligan63780 Messages postés 867 Statut Membre 5
 
oui poste moi un rapport pour voir
0
Réponse 30 / 79
Antoin3 Messages postés 51 Statut Membre 1
 
Voici :

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:00:27, on 17/09/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\ZONELABS\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLCapSvc.exe
C:\Program Files\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLServer.exe
C:\Program Files\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLService.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLSched.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\System32\svchost.exe
C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\PROGRA~1\LAUNCH~1\LManager.exe
C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://fr.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\InstallShield\AzMixerSel.exe
O4 - HKLM\..\Run: [ntiMUI] C:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe
O4 - HKLM\..\Run: [Acer ePresentation HPD] C:\Acer\Empowering Technology\ePresentation\ePresentation.exe
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [ePower_DMC] C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
O4 - HKLM\..\Run: [Boot] C:\Acer\Empowering Technology\ePower\Boot.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\LManager.exe
O4 - HKLM\..\Run: [eRecoveryService] C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [part mags] C:\DOCUME~1\AntoineD\APPLIC~1\PROGRA~1\Bodytool.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O23 - Service: Memory Check Service (AcerMemUsageCheckService) - Acer Inc. - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLSched.exe
O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLServer.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZONELABS\vsmon.exe
0
Réponse 31 / 79
crapoulou Messages postés 42848 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   8 017
 
Passe à l'option 2 de Lop S&D car il y a toujours l'infection lop.
Poste le rapport.
0
Réponse 32 / 79
Antoin3 Messages postés 51 Statut Membre 1
 
Voici ci-dessous le rapport de l'option 2 de "Lop S&D" :

Que dois-je faire ensuite ?

--------------------\\ Lop S&D 4.2.4-3 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : Mobile AMD Sempron(tm) Processor 3400+ )
BIOS : Ver 1.00PARTTBL
USER : AntoineD ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 080918-0] 4.8.1229 (Activated)
Firewall : ZoneAlarm Firewall 7.0.462.000 (Activated)
C:\ (Local Disk) - FAT32 - Total : 23 Go Free : 5 Go
D:\ (Local Disk) - FAT32 - Total : 8 Go Free : 4 Go
E:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 14-09-2008|22:40 )
Option : [2] ( 18/09/2008|18:53 )

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

Supprime! - C:\DOCUME~1\AntoineD\LOCALS~1\Temp\NSIS
Supprime! - C:\Program Files\Adverts\uninst.exe
Supprime! - C:\Program Files\Adverts
-
[ Fichier Hosts ] .. Restaure!

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

--------------------\\ Listing des dossiers dans APPLIC~1

[23/05/2006|16:43] C:\DOCUME~1\DEFAUL~1\APPLIC~1\ATI
[23/05/2006|16:34] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[23/05/2006|16:22] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[18/05/2008|10:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[23/05/2006|16:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[11/12/2006|21:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[11/07/2008|11:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MailFrontier
[07/06/2007|12:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[23/05/2006|16:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[06/06/2007|12:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\software clock debug 16
[11/02/2007|10:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[23/12/2006|20:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[14/02/2008|18:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller

[23/05/2006|16:22] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

[23/05/2006|16:22] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[11/12/2006|21:36] C:\DOCUME~1\ANTOINED\APPLIC~1\Adobe
[11/12/2006|21:36] C:\DOCUME~1\ANTOINED\APPLIC~1\AdobeUM
[08/12/2007|15:39] C:\DOCUME~1\ANTOINED\APPLIC~1\Apple Computer
[23/05/2006|16:43] C:\DOCUME~1\ANTOINED\APPLIC~1\ATI
[28/08/2008|15:53] C:\DOCUME~1\ANTOINED\APPLIC~1\CyberLink
[17/05/2008|21:27] C:\DOCUME~1\ANTOINED\APPLIC~1\dvdcss
[11/12/2006|21:14] C:\DOCUME~1\ANTOINED\APPLIC~1\Google
[23/05/2006|16:34] C:\DOCUME~1\ANTOINED\APPLIC~1\Identities
[11/02/2007|20:50] C:\DOCUME~1\ANTOINED\APPLIC~1\Lavasoft
[23/12/2007|13:18] C:\DOCUME~1\ANTOINED\APPLIC~1\LG Electronics
[10/12/2006|00:59] C:\DOCUME~1\ANTOINED\APPLIC~1\Macromedia
[20/06/2008|22:17] C:\DOCUME~1\ANTOINED\APPLIC~1\Media Player Classic
[23/05/2006|16:22] C:\DOCUME~1\ANTOINED\APPLIC~1\Microsoft
[08/05/2007|10:26] C:\DOCUME~1\ANTOINED\APPLIC~1\Mozilla
[09/12/2006|20:46] C:\DOCUME~1\ANTOINED\APPLIC~1\MSNInstaller
[27/08/2007|13:35] C:\DOCUME~1\ANTOINED\APPLIC~1\Notepad++
[06/06/2007|12:23] C:\DOCUME~1\ANTOINED\APPLIC~1\Programaxis
[06/06/2007|12:24] C:\DOCUME~1\ANTOINED\APPLIC~1\Screenshot Sender
[11/12/2006|21:06] C:\DOCUME~1\ANTOINED\APPLIC~1\Sun
[26/06/2008|20:11] C:\DOCUME~1\ANTOINED\APPLIC~1\U3
[18/05/2008|00:16] C:\DOCUME~1\ANTOINED\APPLIC~1\vlc
[19/02/2008|19:22] C:\DOCUME~1\ANTOINED\APPLIC~1\Xfire

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[18/09/2008 18:41][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 05:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[23/05/2006|16:53] C:\Program Files\Acer
[23/05/2006|16:50] C:\Program Files\Acer Inc
[23/05/2006|16:50] C:\Program Files\Adobe
[09/12/2006|20:24] C:\Program Files\Alwil Software
[23/05/2006|16:35] C:\Program Files\ATI Technologies
[15/04/2008|13:41] C:\Program Files\Audacity
[23/05/2006|16:28] C:\Program Files\AviSynth 2.5
[16/01/2008|13:18] C:\Program Files\Call of Duty Game of the Year Edition
[02/07/2007|18:54] C:\Program Files\CCleaner
[23/05/2006|16:27] C:\Program Files\ComPlus Applications
[23/05/2006|16:47] C:\Program Files\CONEXANT
[23/05/2006|16:53] C:\Program Files\CyberLink
[24/05/2006|11:12] C:\Program Files\DIFX
[28/02/2007|13:55] C:\Program Files\eMule
[23/05/2006|16:22] C:\Program Files\Fichiers communs
[29/11/2007|10:30] C:\Program Files\Filzip
[09/08/2008|15:06] C:\Program Files\Free Video Converter
[11/12/2006|21:14] C:\Program Files\Google
[05/04/2008|14:48] C:\Program Files\GUILD WARS
[23/05/2006|16:35] C:\Program Files\InstallShield Installation Information
[02/04/2007|13:50] C:\Program Files\InterActual
[23/05/2006|16:28] C:\Program Files\Internet Explorer
[11/12/2006|21:01] C:\Program Files\Java
[10/12/2006|01:34] C:\Program Files\Launch Manager
[11/02/2007|20:50] C:\Program Files\Lavasoft
[23/12/2007|12:41] C:\Program Files\LG Electronics
[23/12/2007|12:45] C:\Program Files\LG PC Suite
[23/05/2006|16:27] C:\Program Files\Messenger
[06/06/2007|12:23] C:\Program Files\Messenger Plus! Live
[23/05/2006|16:29] C:\Program Files\microsoft frontpage
[25/02/2007|19:28] C:\Program Files\Microsoft Games
[11/12/2006|19:52] C:\Program Files\Microsoft Office
[11/12/2006|19:54] C:\Program Files\Microsoft Visual Studio
[23/05/2006|16:28] C:\Program Files\Movie Maker
[08/05/2007|10:26] C:\Program Files\Mozilla Firefox
[23/05/2006|16:26] C:\Program Files\MSN
[23/05/2006|16:27] C:\Program Files\MSN Gaming Zone
[09/12/2006|20:53] C:\Program Files\MSN Messenger
[11/12/2006|20:57] C:\Program Files\MSXML 4.0
[23/05/2006|16:28] C:\Program Files\NetMeeting
[23/05/2006|16:59] C:\Program Files\NewTech Infosystems
[27/08/2007|13:35] C:\Program Files\Notepad++
[23/05/2006|16:27] C:\Program Files\Online Services
[23/05/2006|16:28] C:\Program Files\Outlook Express
[02/07/2007|19:23] C:\Program Files\Paragon Software
[11/10/2007|13:33] C:\Program Files\PhotoFiltre
[08/06/2007|20:58] C:\Program Files\Picasa2
[23/08/2007|09:27] C:\Program Files\PowerQuest
[06/06/2007|16:33] C:\Program Files\Programaxis
[05/07/2008|17:53] C:\Program Files\Project64 1.6
[23/05/2006|16:44] C:\Program Files\Realtek
[07/06/2008|11:22] C:\Program Files\Red Kawa
[23/05/2006|16:28] C:\Program Files\Services en ligne
[10/04/2008|22:03] C:\Program Files\SLD Codec Pack
[07/09/2007|19:31] C:\Program Files\Speed Gear 5
[11/02/2007|10:46] C:\Program Files\Spybot - Search & Destroy
[10/12/2006|01:33] C:\Program Files\Synaptics
[10/07/2008|17:56] C:\Program Files\TGTSoft
[09/03/2007|20:14] C:\Program Files\TrackMania Nations ESWC
[16/09/2008|18:23] C:\Program Files\Trend Micro
[23/05/2006|16:34] C:\Program Files\Uninstall Information
[17/05/2008|21:25] C:\Program Files\VideoLAN
[02/07/2008|16:42] C:\Program Files\Western Digital
[06/06/2007|16:33] C:\Program Files\Windows Live
[16/01/2007|20:47] C:\Program Files\Windows Media Connect 2
[23/05/2006|16:27] C:\Program Files\Windows Media Player
[23/05/2006|16:26] C:\Program Files\Windows NT
[23/05/2006|16:28] C:\Program Files\WindowsUpdate
[23/05/2006|16:29] C:\Program Files\xerox
[19/02/2008|19:22] C:\Program Files\Xfire
[10/12/2006|01:44] C:\Program Files\Yahoo!
[11/02/2007|20:58] C:\Program Files\Zone Labs

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[18/05/2008|10:30] C:\Program Files\Fichiers communs\Adobe
[23/05/2006|16:39] C:\Program Files\Fichiers communs\ATI Technologies
[11/12/2006|19:54] C:\Program Files\Fichiers communs\Designer
[23/05/2006|16:35] C:\Program Files\Fichiers communs\InstallShield
[11/12/2006|20:59] C:\Program Files\Fichiers communs\Java
[23/05/2006|17:00] C:\Program Files\Fichiers communs\LightScribe
[23/05/2006|16:22] C:\Program Files\Fichiers communs\Microsoft Shared
[23/05/2006|16:28] C:\Program Files\Fichiers communs\MSSoap
[23/05/2006|17:00] C:\Program Files\Fichiers communs\muvee Technologies
[23/05/2006|16:59] C:\Program Files\Fichiers communs\NewTech Infosystems
[23/05/2006|16:22] C:\Program Files\Fichiers communs\ODBC
[23/05/2006|16:28] C:\Program Files\Fichiers communs\Services
[23/05/2006|16:22] C:\Program Files\Fichiers communs\SpeechEngines
[23/05/2006|16:28] C:\Program Files\Fichiers communs\System
[14/02/2008|18:52] C:\Program Files\Fichiers communs\WindowsLiveInstaller

--------------------\\ Process

( 48 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE

--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-18 18:59:25
Windows 5.1.2600 Service Pack 3 FAT NTAPI
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------\\ Recherche d'autres infections

Aucune autre infection trouvée !

[F:801][D:20]-> C:\DOCUME~1\AntoineD\LOCALS~1\Temp
[F:213][D:0]-> C:\DOCUME~1\AntoineD\Cookies
[F:11848][D:9]-> C:\DOCUME~1\AntoineD\LOCALS~1\TEMPOR~1\content.IE5
[F:23][D:0]-> C:\Recycled

1 - "C:\Lop SD\LopR_1.txt" - 17/09/2008|13:19 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 18/09/2008|19:02 - Option : [2]

--------------------\\ Fin du rapport a 19:02:58
0
Réponse 33 / 79
Antoin3 Messages postés 51 Statut Membre 1
 
Que dois-je faire à présent s'il vous plait ?
0
Réponse 34 / 79
crapoulou Messages postés 42848 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   8 017
 
Postes un nouveau rapport hijackthis.
0
Réponse 35 / 79
Antoin3 Messages postés 51 Statut Membre 1
 
Voici le rapport Hijackthis :

Merci beaucoup de ton aide Crapoulou.

Dois-je faire autre chose ensuite ?

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:34:55, on 21/09/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\ZONELABS\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLCapSvc.exe
C:\Program Files\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLServer.exe
C:\Program Files\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLService.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLSched.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\System32\svchost.exe
C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\PROGRA~1\LAUNCH~1\LManager.exe
C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://fr.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\InstallShield\AzMixerSel.exe
O4 - HKLM\..\Run: [ntiMUI] C:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe
O4 - HKLM\..\Run: [Acer ePresentation HPD] C:\Acer\Empowering Technology\ePresentation\ePresentation.exe
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [ePower_DMC] C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
O4 - HKLM\..\Run: [Boot] C:\Acer\Empowering Technology\ePower\Boot.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\LManager.exe
O4 - HKLM\..\Run: [eRecoveryService] C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [part mags] C:\DOCUME~1\AntoineD\APPLIC~1\PROGRA~1\Bodytool.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O23 - Service: Memory Check Service (AcerMemUsageCheckService) - Acer Inc. - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\Acer\Acer Arcade\Kernel\TV\CLSched.exe
O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\Acer\Acer Arcade\Kernel\CLML_NTService\CLMLServer.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZONELABS\vsmon.exe
0
Réponse 36 / 79
crapoulou Messages postés 42848 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   8 017
 
Télécharge internet explorer version 7 :
https://www.01net.com/telecharger/windows/Internet/navigateur/fiches/33081.html

Télécharge LopS&D (de eric_71) :
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
Enregistre le fichier sur ton bureau.
Lance l'installation.
Une fois le programme lancé tape F pour être en Français.
Puis exécute l'option 1 : Recherche.
Un rapport sera généré.
Poste le ici.
(Dans le cas où le rapport ne s'ouvre pas, ce dernier se trouve sur C:\LopR.txt)
Petit tuto ici si besoin : http://www.malekal.com/tutorial_Lop_SD.php
0
Réponse 37 / 79
Antoin3 Messages postés 51 Statut Membre 1
 
Ok y'a pas de soucis merci.
A tout de suite =).
0
crapoulou Messages postés 42848 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   8 017
 
Attention : j'ai modifié le message précédent !
Suis les instructions.
0
Réponse 38 / 79
Antoin3 Messages postés 51 Statut Membre 1
 
D'accord. De toute façon je l'ai déjà télécharger précédemment Lop S&D.
Jte poste le rapport d'ici 5 minutes ; ).
Mais c'est pour quoi faire IE 7 ?
0
Réponse 39 / 79
crapoulou Messages postés 42848 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   8 017
 
C'est une faille de sécurité de ne pas mettre à jour Internet Explorer, même si ce n'est pas ton navigateur.
Preuve : https://forum.malekal.com/viewtopic.php?f=45&t=12405
0
Réponse 40 / 79
Antoin3 Messages postés 51 Statut Membre 1
 
Voici le rapport de Lop S&D.

Cependant j'ai un problème dans l'installation de IE 7. J'ai un icône sur mon bureau où il y a écrit : "Internet Explorer - résolution de problèmes" et quand je double-clique dessus, je vais sur la page internet suivante : https://support.microsoft.com/en-us/help/917925

Que dois-je faire ?

--------------------\\ Lop S&D 4.2.4-3 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : Mobile AMD Sempron(tm) Processor 3400+ )
BIOS : Ver 1.00PARTTBL
USER : AntoineD ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 080920-0] 4.8.1229 (Activated)
Firewall : ZoneAlarm Firewall 7.0.462.000 (Activated)
C:\ (Local Disk) - FAT32 - Total : 23 Go Free : 6 Go
D:\ (Local Disk) - FAT32 - Total : 8 Go Free : 4 Go
E:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 14-09-2008|22:40 )
Option : [1] ( 21/09/2008|21:07 )

--------------------\\ Listing des dossiers dans APPLIC~1

[23/05/2006|16:43] C:\DOCUME~1\DEFAUL~1\APPLIC~1\ATI
[23/05/2006|16:34] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[23/05/2006|16:22] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[18/05/2008|10:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[23/05/2006|16:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[11/12/2006|21:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[11/07/2008|11:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MailFrontier
[07/06/2007|12:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[23/05/2006|16:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[06/06/2007|12:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\software clock debug 16
[11/02/2007|10:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[23/12/2006|20:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[14/02/2008|18:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller

[23/05/2006|16:22] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

[23/05/2006|16:22] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[11/12/2006|21:36] C:\DOCUME~1\ANTOINED\APPLIC~1\Adobe
[11/12/2006|21:36] C:\DOCUME~1\ANTOINED\APPLIC~1\AdobeUM
[08/12/2007|15:39] C:\DOCUME~1\ANTOINED\APPLIC~1\Apple Computer
[23/05/2006|16:43] C:\DOCUME~1\ANTOINED\APPLIC~1\ATI
[28/08/2008|15:53] C:\DOCUME~1\ANTOINED\APPLIC~1\CyberLink
[17/05/2008|21:27] C:\DOCUME~1\ANTOINED\APPLIC~1\dvdcss
[19/09/2008|21:33] C:\DOCUME~1\ANTOINED\APPLIC~1\GetRightToGo
[11/12/2006|21:14] C:\DOCUME~1\ANTOINED\APPLIC~1\Google
[23/05/2006|16:34] C:\DOCUME~1\ANTOINED\APPLIC~1\Identities
[11/02/2007|20:50] C:\DOCUME~1\ANTOINED\APPLIC~1\Lavasoft
[23/12/2007|13:18] C:\DOCUME~1\ANTOINED\APPLIC~1\LG Electronics
[10/12/2006|00:59] C:\DOCUME~1\ANTOINED\APPLIC~1\Macromedia
[20/06/2008|22:17] C:\DOCUME~1\ANTOINED\APPLIC~1\Media Player Classic
[23/05/2006|16:22] C:\DOCUME~1\ANTOINED\APPLIC~1\Microsoft
[08/05/2007|10:26] C:\DOCUME~1\ANTOINED\APPLIC~1\Mozilla
[09/12/2006|20:46] C:\DOCUME~1\ANTOINED\APPLIC~1\MSNInstaller
[27/08/2007|13:35] C:\DOCUME~1\ANTOINED\APPLIC~1\Notepad++
[06/06/2007|12:23] C:\DOCUME~1\ANTOINED\APPLIC~1\Programaxis
[06/06/2007|12:24] C:\DOCUME~1\ANTOINED\APPLIC~1\Screenshot Sender
[11/12/2006|21:06] C:\DOCUME~1\ANTOINED\APPLIC~1\Sun
[26/06/2008|20:11] C:\DOCUME~1\ANTOINED\APPLIC~1\U3
[18/05/2008|00:16] C:\DOCUME~1\ANTOINED\APPLIC~1\vlc
[21/09/2008|13:33] C:\DOCUME~1\ANTOINED\APPLIC~1\WinRAR
[19/02/2008|19:22] C:\DOCUME~1\ANTOINED\APPLIC~1\Xfire

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[21/09/2008 20:53][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 05:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[23/05/2006|16:53] C:\Program Files\Acer
[23/05/2006|16:50] C:\Program Files\Acer Inc
[23/05/2006|16:50] C:\Program Files\Adobe
[09/12/2006|20:24] C:\Program Files\Alwil Software
[23/05/2006|16:35] C:\Program Files\ATI Technologies
[15/04/2008|13:41] C:\Program Files\Audacity
[23/05/2006|16:28] C:\Program Files\AviSynth 2.5
[16/01/2008|13:18] C:\Program Files\Call of Duty Game of the Year Edition
[02/07/2007|18:54] C:\Program Files\CCleaner
[23/05/2006|16:27] C:\Program Files\ComPlus Applications
[23/05/2006|16:47] C:\Program Files\CONEXANT
[23/05/2006|16:53] C:\Program Files\CyberLink
[24/05/2006|11:12] C:\Program Files\DIFX
[28/02/2007|13:55] C:\Program Files\eMule
[23/05/2006|16:22] C:\Program Files\Fichiers communs
[29/11/2007|10:30] C:\Program Files\Filzip
[09/08/2008|15:06] C:\Program Files\Free Video Converter
[11/12/2006|21:14] C:\Program Files\Google
[05/04/2008|14:48] C:\Program Files\GUILD WARS
[23/05/2006|16:35] C:\Program Files\InstallShield Installation Information
[02/04/2007|13:50] C:\Program Files\InterActual
[23/05/2006|16:28] C:\Program Files\Internet Explorer
[11/12/2006|21:01] C:\Program Files\Java
[10/12/2006|01:34] C:\Program Files\Launch Manager
[11/02/2007|20:50] C:\Program Files\Lavasoft
[23/12/2007|12:41] C:\Program Files\LG Electronics
[23/12/2007|12:45] C:\Program Files\LG PC Suite
[23/05/2006|16:27] C:\Program Files\Messenger
[06/06/2007|12:23] C:\Program Files\Messenger Plus! Live
[23/05/2006|16:29] C:\Program Files\microsoft frontpage
[25/02/2007|19:28] C:\Program Files\Microsoft Games
[11/12/2006|19:52] C:\Program Files\Microsoft Office
[11/12/2006|19:54] C:\Program Files\Microsoft Visual Studio
[23/05/2006|16:28] C:\Program Files\Movie Maker
[08/05/2007|10:26] C:\Program Files\Mozilla Firefox
[23/05/2006|16:26] C:\Program Files\MSN
[23/05/2006|16:27] C:\Program Files\MSN Gaming Zone
[09/12/2006|20:53] C:\Program Files\MSN Messenger
[11/12/2006|20:57] C:\Program Files\MSXML 4.0
[23/05/2006|16:28] C:\Program Files\NetMeeting
[23/05/2006|16:59] C:\Program Files\NewTech Infosystems
[27/08/2007|13:35] C:\Program Files\Notepad++
[23/05/2006|16:27] C:\Program Files\Online Services
[23/05/2006|16:28] C:\Program Files\Outlook Express
[02/07/2007|19:23] C:\Program Files\Paragon Software
[11/10/2007|13:33] C:\Program Files\PhotoFiltre
[08/06/2007|20:58] C:\Program Files\Picasa2
[23/08/2007|09:27] C:\Program Files\PowerQuest
[06/06/2007|16:33] C:\Program Files\Programaxis
[05/07/2008|17:53] C:\Program Files\Project64 1.6
[23/05/2006|16:44] C:\Program Files\Realtek
[07/06/2008|11:22] C:\Program Files\Red Kawa
[23/05/2006|16:28] C:\Program Files\Services en ligne
[10/04/2008|22:03] C:\Program Files\SLD Codec Pack
[07/09/2007|19:31] C:\Program Files\Speed Gear 5
[11/02/2007|10:46] C:\Program Files\Spybot - Search & Destroy
[10/12/2006|01:33] C:\Program Files\Synaptics
[10/07/2008|17:56] C:\Program Files\TGTSoft
[09/03/2007|20:14] C:\Program Files\TrackMania Nations ESWC
[16/09/2008|18:23] C:\Program Files\Trend Micro
[23/05/2006|16:34] C:\Program Files\Uninstall Information
[17/05/2008|21:25] C:\Program Files\VideoLAN
[02/07/2008|16:42] C:\Program Files\Western Digital
[06/06/2007|16:33] C:\Program Files\Windows Live
[16/01/2007|20:47] C:\Program Files\Windows Media Connect 2
[23/05/2006|16:27] C:\Program Files\Windows Media Player
[23/05/2006|16:26] C:\Program Files\Windows NT
[23/05/2006|16:28] C:\Program Files\WindowsUpdate
[21/09/2008|13:31] C:\Program Files\WinRAR
[23/05/2006|16:29] C:\Program Files\xerox
[19/02/2008|19:22] C:\Program Files\Xfire
[10/12/2006|01:44] C:\Program Files\Yahoo!
[11/02/2007|20:58] C:\Program Files\Zone Labs

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[18/05/2008|10:30] C:\Program Files\Fichiers communs\Adobe
[23/05/2006|16:39] C:\Program Files\Fichiers communs\ATI Technologies
[11/12/2006|19:54] C:\Program Files\Fichiers communs\Designer
[23/05/2006|16:35] C:\Program Files\Fichiers communs\InstallShield
[11/12/2006|20:59] C:\Program Files\Fichiers communs\Java
[23/05/2006|17:00] C:\Program Files\Fichiers communs\LightScribe
[23/05/2006|16:22] C:\Program Files\Fichiers communs\Microsoft Shared
[23/05/2006|16:28] C:\Program Files\Fichiers communs\MSSoap
[23/05/2006|17:00] C:\Program Files\Fichiers communs\muvee Technologies
[23/05/2006|16:59] C:\Program Files\Fichiers communs\NewTech Infosystems
[23/05/2006|16:22] C:\Program Files\Fichiers communs\ODBC
[23/05/2006|16:28] C:\Program Files\Fichiers communs\Services
[23/05/2006|16:22] C:\Program Files\Fichiers communs\SpeechEngines
[23/05/2006|16:28] C:\Program Files\Fichiers communs\System
[14/02/2008|18:52] C:\Program Files\Fichiers communs\WindowsLiveInstaller

--------------------\\ Process

( 48 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE

--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-21 21:13:09
Windows 5.1.2600 Service Pack 3 FAT NTAPI
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------\\ Recherche d'autres infections

Aucune autre infection trouvée !

[F:837][D:21]-> C:\DOCUME~1\AntoineD\LOCALS~1\Temp
[F:237][D:0]-> C:\DOCUME~1\AntoineD\Cookies
[F:13036][D:9]-> C:\DOCUME~1\AntoineD\LOCALS~1\TEMPOR~1\content.IE5
[F:23][D:0]-> C:\Recycled

1 - "C:\Lop SD\LopR_1.txt" - 17/09/2008|13:19 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 18/09/2008|19:02 - Option : [2]
3 - "C:\Lop SD\LopR_3.txt" - 21/09/2008|21:16 - Option : [1]

--------------------\\ Fin du rapport a 21:16:45
0

Discussions similaires

Trouver application résultat loterie Azerb Bulgarie Autriche
PoussinRassurant87 -
georges97 -

3 réponses
Loto Autriche, Bulgarie et Azerbaïdjan [SUJET GROUPÉ] .
Dja -
Panth33ra -

2 réponses
Besoin d'un lien pour avoir les résultats de Loto de Autrich
DOSSO -
Qwtop -

6 réponses
Avoir les résultats du dernier tirage du loto :)
Tutozz -
Tutozz -

9 réponses
Récupérer un résultat selon la date d'aujourd'hui
l1607 -
l1607 -

3 réponses