Trojan.Win32.Pakes.jwy

Résolu
Derech -  
ric991 Messages postés 167 Statut Membre -
Bonjour,
J'ai donc trojan sur mon pc que je ne parviens pas a faire partir. J'ai fais un scan en ligne kaspersky, fait tourner spybot, mais je pense qu'il est toujours la.
Pourriez vous me filer un coup de main s'il vous plait?

Voici le rapport Hijackthis

Logfile of HijackThis v1.99.1
Scan saved at 21:41:16, on 15/10/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\ATK0100\HControl.exe
C:\Program Files\ASUS\NB Probe\NBProbe.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\Rundll32.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Progra~1\ASUS\WLAN Card Utilities\Center.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Asus\Asus ChkMail\ChkMail.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\sistray.exe
C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
C:\WINDOWS\system32\ASWLSVC.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\ATK0100\ATKOSD.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\mdm.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\NOTEPAD.EXE
C:\PROGRA~1\WinZip\winzip32.exe
C:\unzipped\hijackthis_199\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dartybox.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost;<local>
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {259F616C-A300-44F5-B04A-ED001A26C85C} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
O4 - HKLM\..\Run: [HControl] C:\WINDOWS\ATK0100\HControl.exe
O4 - HKLM\..\Run: [NB Probe] C:\Program Files\ASUS\NB Probe\NBProbe.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SiSPower] Rundll32.exe SiSPower.dll,ModeAgent
O4 - HKLM\..\Run: [Power_Gear] C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe 1
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [SmcService] C:\PROGRA~1\Sygate\SPF\smc.exe -startgui
O4 - HKLM\..\Run: [Acrobat Assistant 7.0] "C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [EPSON Stylus D68 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIAAE.EXE /P23 "EPSON Stylus D68 Series" /O6 "USB001" /M "Stylus D68"
O4 - HKLM\..\Run: [Control Center] C:\Progra~1\ASUS\WLAN Card Utilities\Center.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\WANADOO\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM=
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AdobeUpdateManager.exe" AcPro7_0_7 -reboot 1
O4 - HKCU\..\Run: [Assistant DartyBox] C:\Program Files\DartyBox_v3\Bewan\AssistantDB\AssistantDB_Bewan.exe -m
O4 - Startup: Stardock ObjectDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
O4 - Global Startup: ASUS ChkMail.lnk = C:\Program Files\Asus\Asus ChkMail\ChkMail.exe
O4 - Global Startup: Utility Tray.lnk = C:\WINDOWS\system32\sistray.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Post-it® Software Notes Lite.lnk = C:\Program Files\3M\PSNLite\PsnLite.exe
O4 - Global Startup: Adobe Acrobat Speed Launcher.lnk = ?
O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: (no name) - SolidConverterPDF - (no file) (HKCU)
O11 - Options group: [INTERNATIONAL] International*
O14 - IERESET.INF: START_PAGE_URL=https://www.asus.com/fr/
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
O16 - DPF: {2D8ED06D-3C30-438B-96AE-4D110FDC1FB8} (ActiveScan 2.0 Installer Class) - http://acs.pandasoftware.com/activescan/cabs/as2stubie.cab
O16 - DPF: {80DD2229-B8E4-4C77-B72F-F22972D723EA} (AvxScanOnline Control) - http://www.inoculer.com/antivirus/Msie/bitdefender.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: GoToAssist - C:\Program Files\Citrix\GoToAssist\508\G2AWinLogon.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: ASWLSVC - Unknown owner - C:\WINDOWS\system32\ASWLSVC.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: GoToAssist - Unknown owner - C:\Program Files\Citrix\GoToAssist\508\g2aservice.exe" Start=service (file missing)
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Jumpstart Wifi Protected Setup (jswpsapi) - Atheros Communications, Inc. - C:\Program Files\DartyBox_v3\Bewan\NetAgent\jswpsapi.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: GetPDF Printing (Service1) - Unknown owner - C:\Program Files\GetPDF\GetPDFPrinting.exe (file missing)
O23 - Service: Sygate Personal Firewall (SmcService) - Sygate Technologies, Inc. - C:\Program Files\Sygate\SPF\smc.exe
O23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
Configuration: Windows XP
Internet Explorer 7.0; Firefox

31 réponses

  • 1
  • 2
  1. Derech Messages postés 16 Statut Membre
     
    Bonjour,

    au vue du dernier rapport qu'en pensez vous, mon ordinateur est-il toujours infecté?
    Quelle manip puis-je faire pour m'en assurer?
    Merci
    1
  2. ric991 Messages postés 167 Statut Membre
     
    Refais un petit coup de hijackthis ainsi que de MalwareByte's Anti-Malware

    Et poste les rapports (n'oublie pas de mettre MalwareByte's Anti-Malware à jour dans la partie mise a jour avant de faire l'analyse complète )
    0
  3. ric991 Messages postés 167 Statut Membre
     
    Bonsoir,

    Pour commencer n'oublie pas de mettre acrobat reader a jour

    Ensuite, Télécharge MalwareByte's Anti-Malware

    Et installe le raccourci sur ton bureau

    Double clique sur le fichier téléchargé pour lancer le processus d'installation

    Dans l'onglet "Mise à jour", clique sur le bouton "Recherche de mise à jour": si le pare-feu demande l'autorisation à MBAM de se connecter, accepte.

    Une fois la mise à jour terminée, redémarre en mode sans échec
    onglet "Recherche". Et Sélectionne "Exécuter un examen complet"
    Clique sur "Rechercher"
    - L'analyse démarre, le scan est relativement long, c'est normal.
    A la fin de l'analyse, un message s'affiche :
    « L'examen s'est terminé normalement. Clique sur 'Afficher les résultats' pour afficher tous les objets trouvés. »

    Clique sur "Ok" pour poursuivre. Si MBAM n'a rien trouvé, il te le dira aussi.

    Si des malwares ont été détectés, clique sur Afficher les résultats.
    Sélectionne tout (ou laisse coché) et clique sur Supprimer la sélection, MBAM va détruire les fichiers et clés de registre et en mettre une copie dans la quarantaine.

    MBAM va ouvrir le Bloc-notes et y copier le rapport d'analyse.

    Copie colle ce rapport et poste-le dans ta prochaine réponse.
    -1
  4. Derech Messages postés 16 Statut Membre
     
    Bonjour, merci pour ta réponse,

    voici le rapport de MBAM

    Malwarebytes' Anti-Malware 1.29
    Version de la base de données: 1276
    Windows 5.1.2600 Service Pack 2

    17/10/2008 15:57:13
    mbam-log-2008-10-17 (15-57-06).txt

    Type de recherche: Examen complet (C:\|D:\|)
    Eléments examinés: 117672
    Temps écoulé: 2 hour(s), 29 minute(s), 28 second(s)

    Processus mémoire infecté(s): 0
    Module(s) mémoire infecté(s): 0
    Clé(s) du Registre infectée(s): 5
    Valeur(s) du Registre infectée(s): 1
    Elément(s) de données du Registre infecté(s): 0
    Dossier(s) infecté(s): 0
    Fichier(s) infecté(s): 1

    Processus mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Module(s) mémoire infecté(s):
    (Aucun élément nuisible détecté)

    Clé(s) du Registre infectée(s):
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\{def85c80-216a-43ab-af70-1665edbe2780} (Spyware.Sinowal) -> No action taken.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{00000162-9980-0010-8000-00aa00389b71} (Rogue.WinAntivirus) -> No action taken.
    HKEY_CLASSES_ROOT\AppID\ToolbarInst.DLL (Trojan.BHO) -> No action taken.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\c:/windows/downloaded program files/uninst.bat (Trojan.Agent) -> No action taken.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CMDSERVICE (Trojan.Downloader) -> No action taken.

    Valeur(s) du Registre infectée(s):
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\C:\WINDOWS\Downloaded Program Files\uninst.bat (Trojan.Agent) -> No action taken.

    Elément(s) de données du Registre infecté(s):
    (Aucun élément nuisible détecté)

    Dossier(s) infecté(s):
    (Aucun élément nuisible détecté)

    Fichier(s) infecté(s):
    C:\WINDOWS\Downloaded Program Files\uninst.bat (Trojan.Agent) -> No action taken.
    -1
  5. Vous n’avez pas trouvé la réponse que vous recherchez ?

    Posez votre question
  6. ric991 Messages postés 167 Statut Membre
     
    Télécharge Lop S&D (de Angeldark et Eric71) sur le Bureau :
    https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2

    .Double-cliques sur Lop S&D.exe pour lancer l'installation,
    .Puis double-cliques sur le raccourci Lop S&D présent sur le Bureau.
    .Séléctionnes la langue souhaitée , puis choisis l'Option 1 (Recherche)
    Le scan prend moins d'une minute.
    .A l'issue du scan, le bloc-notes va s'ouvrir avec le résultat de la recherche.
    .Enregistres le rapport LopR.txt sur le Bureau pour le retrouver facilement, sinon il sauvegardé à la racine de la partition système : C:\LopR.txt

    TUTO: http://bibou0007.com/outils-specifiques-f78/tutorial-lop-sd-t956.htm#11431

    Cordialement
    -1
  7. Derech Messages postés 16 Statut Membre
     
    Test
    -1
  8. Derech Messages postés 16 Statut Membre
     
    Je ne parviens pas a poster le rapport, à chaque fois j'ai un message de confirmation disant que mon message a bien été posté mais lorsque je reviens à la discussion il n'est pas visible.
    Le rapport est il trop long pour être posté?
    Cordialement
    -1
  9. ^^Marie^^ Messages postés 41884 Date d'inscription   Statut Membre Dernière intervention   3 280
     
    Salut

    --------------------\\ Lop S&D 4.2.4-5 XP/Vista
    
    Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
    X86-based PC ( Uniprocessor Free : Mobile AMD Sempron(tm) Processor 3100+ )
    BIOS : Default System BIOS
    USER : Vincent ( Administrator )
    BOOT : Normal boot
    Antivirus : Kaspersky Internet Security 8.0.0.454 (Not Activated)
    Firewall : Kaspersky Internet Security 8.0.0.454 (Not Activated)
    C:\ (Local Disk) - FAT32 - Total : 32 Go Free : 5 Go
    D:\ (Local Disk) - FAT32 - Total : 21 Go Free : 4 Go
    E:\ (CD or DVD)
    
    "C:\Lop SD" ( MAJ : 02-10-2008|23:42 )
    Option : [1] ( 17/10/2008|16:42 )
    
    --------------------\\ Listing des dossiers dans APPLIC~1
    
    [28/03/2006|18:28] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
    [28/03/2006|18:49] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
    [28/03/2006|18:20] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
    [28/03/2006|18:42] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec
    
    [30/01/2007|13:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
    [19/01/2007|15:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe Systems
    [06/05/2006|02:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
    [26/09/2006|13:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
    [05/10/2008|19:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DartyBox
    [08/02/2007|14:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink
    [17/10/2008|16:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab
    [15/10/2008|23:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab Setup Files
    [06/05/2006|18:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
    [17/10/2008|13:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
    [19/09/2006|20:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee.com
    [28/03/2006|18:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
    [28/03/2006|18:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
    [15/07/2007|16:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
    [06/02/2007|10:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SolidDocuments
    [02/12/2006|19:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
    [28/03/2006|18:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
    [06/02/2007|12:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
    [28/08/2006|14:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
    [28/07/2006|11:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo!
    
    [28/03/2006|18:20] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
    
    [23/09/2006|18:04] C:\DOCUME~1\LOCALS~1\APPLIC~1\Macromedia
    [28/03/2006|18:20] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
    
    [06/01/2007|17:23] C:\DOCUME~1\VINCENT\APPLIC~1\{3C87C896-C2CD-4692-8FB9-C3C8358C2708}
    [08/05/2006|13:35] C:\DOCUME~1\VINCENT\APPLIC~1\3M
    [05/05/2006|21:19] C:\DOCUME~1\VINCENT\APPLIC~1\Adobe
    [05/05/2006|21:49] C:\DOCUME~1\VINCENT\APPLIC~1\AdobeUM
    [26/09/2006|14:07] C:\DOCUME~1\VINCENT\APPLIC~1\Apple Computer
    [29/09/2006|14:38] C:\DOCUME~1\VINCENT\APPLIC~1\Azureus
    [26/10/2007|19:32] C:\DOCUME~1\VINCENT\APPLIC~1\Cimaware
    [11/08/2006|16:29] C:\DOCUME~1\VINCENT\APPLIC~1\Creative
    [06/05/2006|02:16] C:\DOCUME~1\VINCENT\APPLIC~1\CyberLink
    [05/10/2008|20:04] C:\DOCUME~1\VINCENT\APPLIC~1\DartyBox
    [31/05/2006|23:46] C:\DOCUME~1\VINCENT\APPLIC~1\dvdcss
    [16/10/2008|19:37] C:\DOCUME~1\VINCENT\APPLIC~1\Grisoft
    [06/05/2006|16:08] C:\DOCUME~1\VINCENT\APPLIC~1\Help
    [28/03/2006|18:28] C:\DOCUME~1\VINCENT\APPLIC~1\Identities
    [24/07/2008|17:29] C:\DOCUME~1\VINCENT\APPLIC~1\InstallShield
    [28/03/2006|18:49] C:\DOCUME~1\VINCENT\APPLIC~1\Macromedia
    [17/10/2008|13:02] C:\DOCUME~1\VINCENT\APPLIC~1\Malwarebytes
    [04/02/2007|17:47] C:\DOCUME~1\VINCENT\APPLIC~1\Media Player Classic
    [28/03/2006|18:20] C:\DOCUME~1\VINCENT\APPLIC~1\Microsoft
    [24/01/2007|01:45] C:\DOCUME~1\VINCENT\APPLIC~1\Mozilla
    [22/03/2007|23:49] C:\DOCUME~1\VINCENT\APPLIC~1\Nvu
    [09/01/2007|10:31] C:\DOCUME~1\VINCENT\APPLIC~1\Publish Providers
    [05/02/2007|01:27] C:\DOCUME~1\VINCENT\APPLIC~1\Real
    [03/11/2007|15:24] C:\DOCUME~1\VINCENT\APPLIC~1\SecondLife
    [06/01/2007|17:22] C:\DOCUME~1\VINCENT\APPLIC~1\Seven Zip
    [10/05/2006|22:56] C:\DOCUME~1\VINCENT\APPLIC~1\Skype
    [17/01/2007|14:31] C:\DOCUME~1\VINCENT\APPLIC~1\SolidDocuments
    [09/01/2007|10:25] C:\DOCUME~1\VINCENT\APPLIC~1\Sony
    [24/08/2006|22:13] C:\DOCUME~1\VINCENT\APPLIC~1\Sowedoo Software
    [24/02/2007|18:05] C:\DOCUME~1\VINCENT\APPLIC~1\Sphinx
    [27/02/2007|19:03] C:\DOCUME~1\VINCENT\APPLIC~1\Sun
    [28/03/2006|18:42] C:\DOCUME~1\VINCENT\APPLIC~1\Symantec
    [09/03/2008|17:47] C:\DOCUME~1\VINCENT\APPLIC~1\Talkback
    [22/06/2006|19:00] C:\DOCUME~1\VINCENT\APPLIC~1\Template
    [02/10/2008|09:25] C:\DOCUME~1\VINCENT\APPLIC~1\U3
    [25/01/2007|16:59] C:\DOCUME~1\VINCENT\APPLIC~1\uTorrent
    [06/05/2006|18:24] C:\DOCUME~1\VINCENT\APPLIC~1\vlc
    [29/04/2007|14:54] C:\DOCUME~1\VINCENT\APPLIC~1\VoipCheapCom
    
    --------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
    
    [30/06/2008 16:15][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    [17/10/2008 16:14][--ah-----] C:\WINDOWS\tasks\SA.DAT
    [05/08/2004 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
    
    --------------------\\ Listing des dossiers dans C:\Program Files
    
    [08/05/2006|13:35] C:\Program Files\3M
    [28/03/2006|18:35] C:\Program Files\Adobe
    [11/01/2007|19:26] C:\Program Files\Adolix
    [06/05/2006|02:01] C:\Program Files\Ahead
    [04/12/2006|20:54] C:\Program Files\Alwil Software
    [06/01/2007|17:23] C:\Program Files\AMR Converter Pro
    [15/03/2007|18:52] C:\Program Files\Apple Software Update
    [28/03/2006|18:38] C:\Program Files\Asus
    [06/05/2006|02:10] C:\Program Files\ASUSTeK
    [28/03/2006|18:36] C:\Program Files\AvRack
    [19/02/2007|15:30] C:\Program Files\Azureus
    [03/12/2006|17:19] C:\Program Files\CCleaner
    [05/10/2008|19:50] C:\Program Files\CD_DartyBox
    [26/10/2007|19:28] C:\Program Files\Cimaware
    [05/10/2008|19:52] C:\Program Files\Citrix
    [28/03/2006|18:26] C:\Program Files\ComPlus Applications
    [05/10/2008|19:53] C:\Program Files\DartyBox_v3
    [28/06/2007|01:33] C:\Program Files\DivX
    [02/12/2006|20:13] C:\Program Files\Druide
    [08/02/2007|14:55] C:\Program Files\DVD Shrink
    [27/05/2006|01:04] C:\Program Files\eMule
    [17/07/2007|19:45] C:\Program Files\EPSON
    [28/03/2006|18:21] C:\Program Files\Fichiers communs
    [25/07/2006|23:49] C:\Program Files\Gabest
    [16/10/2008|19:37] C:\Program Files\Grisoft
    [24/08/2006|19:58] C:\Program Files\Hewlett-Packard
    [24/08/2006|20:11] C:\Program Files\HP
    [28/03/2006|18:35] C:\Program Files\InstallShield Installation Information
    [28/03/2006|18:27] C:\Program Files\Internet Explorer
    [15/03/2007|18:59] C:\Program Files\iPod
    [15/03/2007|18:59] C:\Program Files\iTunes
    [27/05/2006|00:22] C:\Program Files\Java
    [17/10/2008|16:11] C:\Program Files\Kaspersky Lab
    [06/05/2006|17:30] C:\Program Files\Lavasoft
    [19/08/2006|23:24] C:\Program Files\Logitech
    [17/10/2008|13:02] C:\Program Files\Malwarebytes' Anti-Malware
    [28/03/2006|18:26] C:\Program Files\Messenger
    [03/06/2007|02:02] C:\Program Files\Microsoft CAPICOM 2.1.0.2
    [28/03/2006|18:28] C:\Program Files\microsoft frontpage
    [06/05/2006|17:02] C:\Program Files\Microsoft Office
    [10/10/2007|22:18] C:\Program Files\Microsoft Visual Studio
    [06/05/2006|16:58] C:\Program Files\Microsoft Works
    [15/01/2007|14:03] C:\Program Files\Microsoft.NET
    [28/03/2006|18:27] C:\Program Files\Movie Maker
    [24/01/2007|01:45] C:\Program Files\Mozilla Firefox
    [09/10/2008|16:40] C:\Program Files\MSECache
    [28/03/2006|18:26] C:\Program Files\MSN Gaming Zone
    [24/02/2007|14:43] C:\Program Files\MSN Messenger
    [28/03/2006|18:27] C:\Program Files\NetMeeting
    [28/03/2006|18:26] C:\Program Files\Online Services
    [28/03/2006|18:27] C:\Program Files\Outlook Express
    [14/10/2008|19:08] C:\Program Files\Panda Security
    [11/01/2007|19:16] C:\Program Files\PDF2W
    [04/02/2007|17:36] C:\Program Files\PeerCast
    [05/02/2007|01:41] C:\Program Files\PeerTV
    [26/11/2006|20:31] C:\Program Files\PNG divers
    [16/01/2007|16:35] C:\Program Files\psconvert
    [07/02/2007|15:54] C:\Program Files\QuickTime
    [05/02/2007|01:27] C:\Program Files\Real
    [28/03/2006|18:36] C:\Program Files\Realtek Sound Manager
    [05/10/2007|21:06] C:\Program Files\Securitoo
    [28/03/2006|18:27] C:\Program Files\Services en ligne
    [28/03/2006|18:40] C:\Program Files\SiS VGA Utilities V3.65g
    [28/03/2006|18:40] C:\Program Files\sisagp
    [15/07/2007|16:18] C:\Program Files\Skype
    [17/01/2007|14:29] C:\Program Files\Soliddocuments
    [09/01/2007|10:21] C:\Program Files\Sony
    [06/01/2007|17:33] C:\Program Files\Sony Setup
    [02/12/2006|20:23] C:\Program Files\Spybot - Search & Destroy
    [13/09/2008|14:00] C:\Program Files\Sun
    [04/12/2006|22:23] C:\Program Files\Sygate
    [28/03/2006|18:41] C:\Program Files\Symantec
    [28/03/2006|18:39] C:\Program Files\Synaptics
    [05/10/2008|20:07] C:\Program Files\Utilitaire r‚seau pour SAGEM Wi-Fi 11g USB adapter
    [30/03/2008|16:04] C:\Program Files\Veoh Networks
    [08/05/2006|13:55] C:\Program Files\VideoLAN
    [09/01/2007|10:31] C:\Program Files\VSTplugins
    [27/05/2006|00:20] C:\Program Files\Wanadoo
    [27/05/2006|00:21] C:\Program Files\Wanadoo Messager
    [10/10/2007|22:21] C:\Program Files\Web Publish
    [28/03/2006|18:26] C:\Program Files\Windows Media Player
    [28/03/2006|18:25] C:\Program Files\Windows NT
    [28/03/2006|18:27] C:\Program Files\WindowsUpdate
    [06/05/2006|17:08] C:\Program Files\WinRAR
    [06/05/2006|17:19] C:\Program Files\WinZip
    [28/03/2006|18:28] C:\Program Files\xerox
    [18/02/2007|20:42] C:\Program Files\Yahoo!
    [16/01/2007|16:13] C:\Program Files\Zapu
    
    --------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
    
    [28/03/2006|18:35] C:\Program Files\Fichiers communs\Adobe
    [06/05/2006|18:47] C:\Program Files\Fichiers communs\Adobe Systems Shared
    [06/05/2006|02:01] C:\Program Files\Fichiers communs\Ahead
    [06/05/2006|17:13] C:\Program Files\Fichiers communs\Designer
    [28/03/2006|18:35] C:\Program Files\Fichiers communs\InstallShield
    [20/02/2007|15:21] C:\Program Files\Fichiers communs\Java
    [06/05/2006|02:07] C:\Program Files\Fichiers communs\LightScribe
    [19/08/2006|23:25] C:\Program Files\Fichiers communs\Logitech
    [28/03/2006|18:21] C:\Program Files\Fichiers communs\Microsoft Shared
    [28/03/2006|18:27] C:\Program Files\Fichiers communs\MSSoap
    [06/05/2006|02:04] C:\Program Files\Fichiers communs\Nero
    [28/03/2006|18:21] C:\Program Files\Fichiers communs\ODBC
    [05/02/2007|01:27] C:\Program Files\Fichiers communs\Real
    [28/03/2006|18:27] C:\Program Files\Fichiers communs\Services
    [15/07/2007|16:18] C:\Program Files\Fichiers communs\Skype
    [28/03/2006|18:21] C:\Program Files\Fichiers communs\SpeechEngines
    [28/03/2006|18:27] C:\Program Files\Fichiers communs\System
    
    --------------------\\ Process
    
    ( 43 Processes )
    
    ... OK !
    
    --------------------\\ Recherche avec S_Lop
    
    Aucun fichier / dossier Lop trouvé !
    
    --------------------\\ Recherche de Fichiers / Dossiers Lop
    
    Aucun fichier / dossier Lop trouvé !
    
    --------------------\\ Verification du Registre
    
    ..... OK !
    
    --------------------\\ Verification du fichier Hosts
    
    Fichier Hosts PROPRE
    
    
    --------------------\\ Recherche de fichiers avec Catchme
    
    catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2008-10-17 16:43:37
    Windows 5.1.2600 Service Pack 2 FAT NTAPI
    scanning hidden processes ...
    scanning hidden files ...
    scan completed successfully
    hidden processes: 0
    hidden files: 0
    
    --------------------\\ Recherche d'autres infections
    
    --------------------\\ Cracks & Keygens ..
    
    C:\DOCUME~1\VINCENT\Bureau\Musique\Tito & Tarantula\Little Bitch\03 Crack In The World.mp3
    C:\DOCUME~1\VINCENT\Application Data\Azureus\torrents\Adobe_Acrobat_7.0_Professional_incl_KeyGen-PARADOX.3279131.TPB[1].torrent
    C:\DOCUME~1\VINCENT\Application Data\Azureus\torrents\[isoHunt] Avast.Antivirus.Pro.v4.7.892.FR.Incl-Keygen.rar.torrent
    C:\DOCUME~1\VINCENT\Application Data\Azureus\torrents\Antivirus - Avast Profesional + Keygen [mininova].torrent
    
    
    [F:4][D:1]-> C:\DOCUME~1\Vincent\LOCALS~1\Temp
    [F:15][D:0]-> C:\DOCUME~1\Vincent\Cookies
    [F:293][D:5]-> C:\DOCUME~1\Vincent\LOCALS~1\TEMPOR~1\content.IE5
    [F:2][D:0]-> C:\Recycled
    
    1 - "C:\Lop SD\LopR_1.txt" - 17/10/2008|16:44 - Option : [1]
    
    --------------------\\ Fin du rapport a 16:44:45
    -1
  10. Derech Messages postés 16 Statut Membre
     
    Merci d'avoir posté le rapport
    -1
  11. ric991 Messages postés 167 Statut Membre
     
    tu relances lop et tu fait l'option 2 , comme expliqué, tu postes le rapport suivi d'un nouveau hijackthis , Merci

    Relance Lop S&D
    · Choisis cette fois ci l'Option 2 ( Suppression )
    · Ne ferme pas la fenêtre lors de la suppression !
    · Poste le rapport généré ( C:\lopR.txt )

    ( Si le Bureau ne réapparît pas presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tapes explorer.exe et valide avec ok )
    -1
  12. Derech Messages postés 16 Statut Membre
     
    Suivi du rapport Hijackthis,

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 11:12:53, on 18/10/2008
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16735)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\system32\ASWLSVC.exe
    C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
    C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\ATK0100\HControl.exe
    C:\Program Files\ASUS\NB Probe\NBProbe.exe
    C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    C:\WINDOWS\system32\Rundll32.exe
    C:\WINDOWS\system32\LVCOMSX.EXE
    C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe
    C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIAAE.EXE
    C:\Progra~1\ASUS\WLAN Card Utilities\Center.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Asus\Asus ChkMail\ChkMail.exe
    C:\WINDOWS\system32\sistray.exe
    C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\WINDOWS\ATK0100\ATKOSD.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\wscntfy.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Documents and Settings\Vincent\Bureau\HiJackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dartybox.com
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost;<local>
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: (no name) - {259F616C-A300-44F5-B04A-ED001A26C85C} - (no file)
    O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
    O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
    O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
    O4 - HKLM\..\Run: [HControl] C:\WINDOWS\ATK0100\HControl.exe
    O4 - HKLM\..\Run: [NB Probe] C:\Program Files\ASUS\NB Probe\NBProbe.exe
    O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
    O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    O4 - HKLM\..\Run: [SiSPower] Rundll32.exe SiSPower.dll,ModeAgent
    O4 - HKLM\..\Run: [Power_Gear] C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe 1
    O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
    O4 - HKLM\..\Run: [SmcService] C:\PROGRA~1\Sygate\SPF\smc.exe -startgui
    O4 - HKLM\..\Run: [Acrobat Assistant 7.0] "C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe"
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [EPSON Stylus D68 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIAAE.EXE /P23 "EPSON Stylus D68 Series" /O6 "USB001" /M "Stylus D68"
    O4 - HKLM\..\Run: [Control Center] C:\Progra~1\ASUS\WLAN Card Utilities\Center.exe
    O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe"
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\WANADOO\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM=
    O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AdobeUpdateManager.exe" AcPro7_0_7 -reboot 1
    O4 - HKCU\..\Run: [Assistant DartyBox] C:\Program Files\DartyBox_v3\Bewan\AssistantDB\AssistantDB_Bewan.exe -m
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
    O4 - Startup: Stardock ObjectDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
    O4 - Global Startup: ASUS ChkMail.lnk = C:\Program Files\Asus\Asus ChkMail\ChkMail.exe
    O4 - Global Startup: Utility Tray.lnk = C:\WINDOWS\system32\sistray.exe
    O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
    O4 - Global Startup: Post-it® Software Notes Lite.lnk = C:\Program Files\3M\PSNLite\PsnLite.exe
    O4 - Global Startup: Adobe Acrobat Speed Launcher.lnk = ?
    O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
    O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
    O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
    O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
    O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
    O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
    O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
    O8 - Extra context menu item: Convert to existing PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
    O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
    O9 - Extra button: Web traffic protection statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\SCIEPlgn.dll
    O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra button: (no name) - SolidConverterPDF - (no file) (HKCU)
    O14 - IERESET.INF: START_PAGE_URL=https://www.asus.com/fr/
    O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
    O16 - DPF: {2D8ED06D-3C30-438B-96AE-4D110FDC1FB8} (ActiveScan 2.0 Installer Class) - http://acs.pandasoftware.com/activescan/cabs/as2stubie.cab
    O16 - DPF: {80DD2229-B8E4-4C77-B72F-F22972D723EA} (AvxScanOnline Control) - http://www.inoculer.com/antivirus/Msie/bitdefender.cab
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
    O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd.dll,C:\PROGRA~1\KASPER~1\KASPER~1\mzvkbd3.dll,C:\PROGRA~1\KASPER~1\KASPER~1\adialhk.dll,C:\PROGRA~1\KASPER~1\KASPER~1\kloehk.dll
    O20 - Winlogon Notify: GoToAssist - C:\Program Files\Citrix\GoToAssist\508\G2AWinLogon.dll
    O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
    O23 - Service: ASWLSVC - Unknown owner - C:\WINDOWS\system32\ASWLSVC.exe
    O23 - Service: Kaspersky Internet Security (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
    O23 - Service: GoToAssist - Citrix Online, a division of Citrix Systems, Inc. - C:\Program Files\Citrix\GoToAssist\508\g2aservice.exe
    O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: Jumpstart Wifi Protected Setup (jswpsapi) - Atheros Communications, Inc. - C:\Program Files\DartyBox_v3\Bewan\NetAgent\jswpsapi.exe
    O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
    O23 - Service: GetPDF Printing (Service1) - Unknown owner - C:\Program Files\GetPDF\GetPDFPrinting.exe (file missing)
    O23 - Service: Sygate Personal Firewall (SmcService) - Sygate Technologies, Inc. - C:\Program Files\Sygate\SPF\smc.exe
    O23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
    O24 - Desktop Component 0: (no name) - file:///C:/DOCUME~1/Vincent/LOCALS~1/Temp/msohtml1/01/clip_image002.jpg
    -1
  13. ric991 Messages postés 167 Statut Membre
     
    Tu n'as pas poster le rapport: Lop S&D, dans va C:\lopR.txt.
    Il faudra aussi que tu fasses un tri dans tes toolbars, parce que ça te sert a rien en avoir plusieurs à part pour ralentir ta navigation.

    O4 - Global Startup: Utility Tray.lnk = C:\WINDOWS\system32\sistray.exe
    -1
  14. Sacabouffe Messages postés 9427 Date d'inscription   Statut Membre Dernière intervention   1 863
     
    Salut
    Un petit souci, voilà le rapport...

    bonjour, voici le rapport

    --------------------\\ Lop S&D 4.2.4-5 XP/Vista

    Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
    X86-based PC ( Uniprocessor Free : Mobile AMD Sempron(tm) Processor 3100+ )
    BIOS : Default System BIOS
    USER : Vincent ( Administrator )
    BOOT : Normal boot
    Antivirus : Kaspersky Internet Security 8.0.0.454 (Not Activated)
    Firewall : Kaspersky Internet Security 8.0.0.454 (Not Activated)
    C:\ (Local Disk) - FAT32 - Total : 32 Go Free : 5 Go
    D:\ (Local Disk) - FAT32 - Total : 21 Go Free : 4 Go
    E:\ (CD or DVD)

    "C:\Lop SD" ( MAJ : 02-10-2008|23:42 )
    Option : [2] ( 18/10/2008|11:00 )

    \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

    --------------------\\ Listing des dossiers dans APPLIC~1

    [28/03/2006|18:28] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
    [28/03/2006|18:49] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
    [28/03/2006|18:20] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
    [28/03/2006|18:42] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec

    [30/01/2007|13:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
    [19/01/2007|15:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe Systems
    [06/05/2006|02:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
    [26/09/2006|13:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
    [05/10/2008|19:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DartyBox
    [08/02/2007|14:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink
    [17/10/2008|16:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab
    [15/10/2008|23:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab Setup Files
    [06/05/2006|18:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
    [17/10/2008|13:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
    [19/09/2006|20:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee.com
    [28/03/2006|18:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
    [28/03/2006|18:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
    [15/07/2007|16:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
    [06/02/2007|10:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SolidDocuments
    [02/12/2006|19:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
    [28/03/2006|18:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
    [06/02/2007|12:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
    [28/08/2006|14:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
    [28/07/2006|11:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo!

    [28/03/2006|18:20] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

    [23/09/2006|18:04] C:\DOCUME~1\LOCALS~1\APPLIC~1\Macromedia
    [28/03/2006|18:20] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

    [06/01/2007|17:23] C:\DOCUME~1\VINCENT\APPLIC~1\{3C87C896-C2CD-4692-8FB9-C3C8358C2708}
    [08/05/2006|13:35] C:\DOCUME~1\VINCENT\APPLIC~1\3M
    [05/05/2006|21:19] C:\DOCUME~1\VINCENT\APPLIC~1\Adobe
    [05/05/2006|21:49] C:\DOCUME~1\VINCENT\APPLIC~1\AdobeUM
    [26/09/2006|14:07] C:\DOCUME~1\VINCENT\APPLIC~1\Apple Computer
    [29/09/2006|14:38] C:\DOCUME~1\VINCENT\APPLIC~1\Azureus
    [26/10/2007|19:32] C:\DOCUME~1\VINCENT\APPLIC~1\Cimaware
    [11/08/2006|16:29] C:\DOCUME~1\VINCENT\APPLIC~1\Creative
    [06/05/2006|02:16] C:\DOCUME~1\VINCENT\APPLIC~1\CyberLink
    [05/10/2008|20:04] C:\DOCUME~1\VINCENT\APPLIC~1\DartyBox
    [31/05/2006|23:46] C:\DOCUME~1\VINCENT\APPLIC~1\dvdcss
    [16/10/2008|19:37] C:\DOCUME~1\VINCENT\APPLIC~1\Grisoft
    [06/05/2006|16:08] C:\DOCUME~1\VINCENT\APPLIC~1\Help
    [28/03/2006|18:28] C:\DOCUME~1\VINCENT\APPLIC~1\Identities
    [24/07/2008|17:29] C:\DOCUME~1\VINCENT\APPLIC~1\InstallShield
    [28/03/2006|18:49] C:\DOCUME~1\VINCENT\APPLIC~1\Macromedia
    [17/10/2008|13:02] C:\DOCUME~1\VINCENT\APPLIC~1\Malwarebytes
    [04/02/2007|17:47] C:\DOCUME~1\VINCENT\APPLIC~1\Media Player Classic
    [28/03/2006|18:20] C:\DOCUME~1\VINCENT\APPLIC~1\Microsoft
    [24/01/2007|01:45] C:\DOCUME~1\VINCENT\APPLIC~1\Mozilla
    [22/03/2007|23:49] C:\DOCUME~1\VINCENT\APPLIC~1\Nvu
    [09/01/2007|10:31] C:\DOCUME~1\VINCENT\APPLIC~1\Publish Providers
    [05/02/2007|01:27] C:\DOCUME~1\VINCENT\APPLIC~1\Real
    [03/11/2007|15:24] C:\DOCUME~1\VINCENT\APPLIC~1\SecondLife
    [06/01/2007|17:22] C:\DOCUME~1\VINCENT\APPLIC~1\Seven Zip
    [10/05/2006|22:56] C:\DOCUME~1\VINCENT\APPLIC~1\Skype
    [17/01/2007|14:31] C:\DOCUME~1\VINCENT\APPLIC~1\SolidDocuments
    [09/01/2007|10:25] C:\DOCUME~1\VINCENT\APPLIC~1\Sony
    [24/08/2006|22:13] C:\DOCUME~1\VINCENT\APPLIC~1\Sowedoo Software
    [24/02/2007|18:05] C:\DOCUME~1\VINCENT\APPLIC~1\Sphinx
    [27/02/2007|19:03] C:\DOCUME~1\VINCENT\APPLIC~1\Sun
    [28/03/2006|18:42] C:\DOCUME~1\VINCENT\APPLIC~1\Symantec
    [09/03/2008|17:47] C:\DOCUME~1\VINCENT\APPLIC~1\Talkback
    [22/06/2006|19:00] C:\DOCUME~1\VINCENT\APPLIC~1\Template
    [02/10/2008|09:25] C:\DOCUME~1\VINCENT\APPLIC~1\U3
    [25/01/2007|16:59] C:\DOCUME~1\VINCENT\APPLIC~1\uTorrent
    [06/05/2006|18:24] C:\DOCUME~1\VINCENT\APPLIC~1\vlc
    [29/04/2007|14:54] C:\DOCUME~1\VINCENT\APPLIC~1\VoipCheapCom

    --------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

    [30/06/2008 16:15][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    [18/10/2008 10:38][--ah-----] C:\WINDOWS\tasks\SA.DAT
    [05/08/2004 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

    --------------------\\ Listing des dossiers dans C:\Program Files

    [08/05/2006|13:35] C:\Program Files\3M
    [28/03/2006|18:35] C:\Program Files\Adobe
    [11/01/2007|19:26] C:\Program Files\Adolix
    [06/05/2006|02:01] C:\Program Files\Ahead
    [04/12/2006|20:54] C:\Program Files\Alwil Software
    [06/01/2007|17:23] C:\Program Files\AMR Converter Pro
    [15/03/2007|18:52] C:\Program Files\Apple Software Update
    [28/03/2006|18:38] C:\Program Files\Asus
    [06/05/2006|02:10] C:\Program Files\ASUSTeK
    [28/03/2006|18:36] C:\Program Files\AvRack
    [19/02/2007|15:30] C:\Program Files\Azureus
    [03/12/2006|17:19] C:\Program Files\CCleaner
    [05/10/2008|19:50] C:\Program Files\CD_DartyBox
    [26/10/2007|19:28] C:\Program Files\Cimaware
    [05/10/2008|19:52] C:\Program Files\Citrix
    [28/03/2006|18:26] C:\Program Files\ComPlus Applications
    [05/10/2008|19:53] C:\Program Files\DartyBox_v3
    [28/06/2007|01:33] C:\Program Files\DivX
    [02/12/2006|20:13] C:\Program Files\Druide
    [08/02/2007|14:55] C:\Program Files\DVD Shrink
    [27/05/2006|01:04] C:\Program Files\eMule
    [17/07/2007|19:45] C:\Program Files\EPSON
    [28/03/2006|18:21] C:\Program Files\Fichiers communs
    [25/07/2006|23:49] C:\Program Files\Gabest
    [16/10/2008|19:37] C:\Program Files\Grisoft
    [24/08/2006|19:58] C:\Program Files\Hewlett-Packard
    [24/08/2006|20:11] C:\Program Files\HP
    [28/03/2006|18:35] C:\Program Files\InstallShield Installation Information
    [28/03/2006|18:27] C:\Program Files\Internet Explorer
    [15/03/2007|18:59] C:\Program Files\iPod
    [15/03/2007|18:59] C:\Program Files\iTunes
    [27/05/2006|00:22] C:\Program Files\Java
    [17/10/2008|16:11] C:\Program Files\Kaspersky Lab
    [06/05/2006|17:30] C:\Program Files\Lavasoft
    [19/08/2006|23:24] C:\Program Files\Logitech
    [17/10/2008|13:02] C:\Program Files\Malwarebytes' Anti-Malware
    [28/03/2006|18:26] C:\Program Files\Messenger
    [03/06/2007|02:02] C:\Program Files\Microsoft CAPICOM 2.1.0.2
    [28/03/2006|18:28] C:\Program Files\microsoft frontpage
    [06/05/2006|17:02] C:\Program Files\Microsoft Office
    [10/10/2007|22:18] C:\Program Files\Microsoft Visual Studio
    [06/05/2006|16:58] C:\Program Files\Microsoft Works
    [15/01/2007|14:03] C:\Program Files\Microsoft.NET
    [28/03/2006|18:27] C:\Program Files\Movie Maker
    [24/01/2007|01:45] C:\Program Files\Mozilla Firefox
    [09/10/2008|16:40] C:\Program Files\MSECache
    [28/03/2006|18:26] C:\Program Files\MSN Gaming Zone
    [24/02/2007|14:43] C:\Program Files\MSN Messenger
    [28/03/2006|18:27] C:\Program Files\NetMeeting
    [28/03/2006|18:26] C:\Program Files\Online Services
    [28/03/2006|18:27] C:\Program Files\Outlook Express
    [14/10/2008|19:08] C:\Program Files\Panda Security
    [11/01/2007|19:16] C:\Program Files\PDF2W
    [04/02/2007|17:36] C:\Program Files\PeerCast
    [05/02/2007|01:41] C:\Program Files\PeerTV
    [26/11/2006|20:31] C:\Program Files\PNG divers
    [16/01/2007|16:35] C:\Program Files\psconvert
    [07/02/2007|15:54] C:\Program Files\QuickTime
    [05/02/2007|01:27] C:\Program Files\Real
    [28/03/2006|18:36] C:\Program Files\Realtek Sound Manager
    [05/10/2007|21:06] C:\Program Files\Securitoo
    [28/03/2006|18:27] C:\Program Files\Services en ligne
    [28/03/2006|18:40] C:\Program Files\SiS VGA Utilities V3.65g
    [28/03/2006|18:40] C:\Program Files\sisagp
    [15/07/2007|16:18] C:\Program Files\Skype
    [17/01/2007|14:29] C:\Program Files\Soliddocuments
    [09/01/2007|10:21] C:\Program Files\Sony
    [06/01/2007|17:33] C:\Program Files\Sony Setup
    [02/12/2006|20:23] C:\Program Files\Spybot - Search & Destroy
    [13/09/2008|14:00] C:\Program Files\Sun
    [04/12/2006|22:23] C:\Program Files\Sygate
    [28/03/2006|18:41] C:\Program Files\Symantec
    [28/03/2006|18:39] C:\Program Files\Synaptics
    [05/10/2008|20:07] C:\Program Files\Utilitaire r‚seau pour SAGEM Wi-Fi 11g USB adapter
    [30/03/2008|16:04] C:\Program Files\Veoh Networks
    [08/05/2006|13:55] C:\Program Files\VideoLAN
    [09/01/2007|10:31] C:\Program Files\VSTplugins
    [27/05/2006|00:20] C:\Program Files\Wanadoo
    [27/05/2006|00:21] C:\Program Files\Wanadoo Messager
    [10/10/2007|22:21] C:\Program Files\Web Publish
    [28/03/2006|18:26] C:\Program Files\Windows Media Player
    [28/03/2006|18:25] C:\Program Files\Windows NT
    [28/03/2006|18:27] C:\Program Files\WindowsUpdate
    [06/05/2006|17:08] C:\Program Files\WinRAR
    [06/05/2006|17:19] C:\Program Files\WinZip
    [28/03/2006|18:28] C:\Program Files\xerox
    [18/02/2007|20:42] C:\Program Files\Yahoo!
    [16/01/2007|16:13] C:\Program Files\Zapu

    --------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

    [28/03/2006|18:35] C:\Program Files\Fichiers communs\Adobe
    [06/05/2006|18:47] C:\Program Files\Fichiers communs\Adobe Systems Shared
    [06/05/2006|02:01] C:\Program Files\Fichiers communs\Ahead
    [06/05/2006|17:13] C:\Program Files\Fichiers communs\Designer
    [28/03/2006|18:35] C:\Program Files\Fichiers communs\InstallShield
    [20/02/2007|15:21] C:\Program Files\Fichiers communs\Java
    [06/05/2006|02:07] C:\Program Files\Fichiers communs\LightScribe
    [19/08/2006|23:25] C:\Program Files\Fichiers communs\Logitech
    [28/03/2006|18:21] C:\Program Files\Fichiers communs\Microsoft Shared
    [28/03/2006|18:27] C:\Program Files\Fichiers communs\MSSoap
    [06/05/2006|02:04] C:\Program Files\Fichiers communs\Nero
    [28/03/2006|18:21] C:\Program Files\Fichiers communs\ODBC
    [05/02/2007|01:27] C:\Program Files\Fichiers communs\Real
    [28/03/2006|18:27] C:\Program Files\Fichiers communs\Services
    [15/07/2007|16:18] C:\Program Files\Fichiers communs\Skype
    [28/03/2006|18:21] C:\Program Files\Fichiers communs\SpeechEngines
    [28/03/2006|18:27] C:\Program Files\Fichiers communs\System

    --------------------\\ Process

    ( 41 Processes )

    ... OK !

    --------------------\\ Recherche avec S_Lop

    Aucun fichier / dossier Lop trouvé !

    --------------------\\ Recherche de Fichiers / Dossiers Lop

    Aucun fichier / dossier Lop trouvé !

    --------------------\\ Verification du Registre

    ..... OK !

    --------------------\\ Verification du fichier Hosts

    Fichier Hosts PROPRE

    --------------------\\ Recherche de fichiers avec Catchme

    catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2008-10-18 11:02:54
    Windows 5.1.2600 Service Pack 2 FAT NTAPI
    scanning hidden processes ...
    scanning hidden files ...
    scan completed successfully
    hidden processes: 0
    hidden files: 0

    --------------------\\ Recherche d'autres infections

    --------------------\\ Cracks & Keygens ..

    C:\DOCUME~1\VINCENT\Bureau\Musique\Tito & Tarantula\Little Bitch\03 Crack In The World.mp3
    C:\DOCUME~1\VINCENT\Application Data\Azureus\torrents\Adobe_Acrobat_7.0_Professional_incl_KeyGen-PARADOX.3279131.TPB[1].torrent
    C:\DOCUME~1\VINCENT\Application Data\Azureus\torrents\[isoHunt] Avast.Antivirus.Pro.v4.7.892.FR.Incl-Keygen.rar.torrent
    C:\DOCUME~1\VINCENT\Application Data\Azureus\torrents\Antivirus - Avast Profesional + Keygen [mininova].torrent

    [F:11][D:5]-> C:\DOCUME~1\Vincent\LOCALS~1\Temp
    [F:18][D:0]-> C:\DOCUME~1\Vincent\Cookies
    [F:305][D:5]-> C:\DOCUME~1\Vincent\LOCALS~1\TEMPOR~1\content.IE5
    [F:2][D:0]-> C:\Recycled

    1 - "C:\Lop SD\LopR_1.txt" - 17/10/2008|16:44 - Option : [1]
    2 - "C:\Lop SD\LopR_2.txt" - 18/10/2008|11:04 - Option : [2]

    --------------------\\ Fin du rapport a 11:04:01

    Bonne continuation ;-)
    -1
  15. Derech Messages postés 16 Statut Membre
     
    J'ai posté le rapport LOP S&D, mais il me semble que ce post est géré par le modérateur du site (Marie). De la même manière hier je l'ai posté trois fois et il n'est pas apparu desuite. C'est Marie qui l'a posté a posteriori.
    J'essaye un nouvelle fois de le poster
    Merci pour l'astuce au niveau de la toolbars
    -1
  16. Derech Messages postés 16 Statut Membre
     
    Merci
    -1
  17. ric991 Messages postés 167 Statut Membre
     
    Vire tout tes cracks, keygens, etc
    -1
  18. ric991 Messages postés 167 Statut Membre
     
    Va sur: https://www.virustotal.com/gui/
    Et verifie ce fichier: Tu le recherches en faisant parcourir:
    C:\WINDOWS\system32\sistray.exe (si tu trouve pas fait une recherche un incluant les fichiers cachés)

    Cordialement
    -1
  19. ^^Marie^^ Messages postés 41884 Date d'inscription   Statut Membre Dernière intervention   3 280
     
    lu

    --------------------\\ Lop S&D 4.2.4-5 XP/Vista
    
    Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
    X86-based PC ( Uniprocessor Free : Mobile AMD Sempron(tm) Processor 3100+ )
    BIOS : Default System BIOS
    USER : Vincent ( Administrator )
    BOOT : Normal boot
    Antivirus : Kaspersky Internet Security 8.0.0.454 (Not Activated)
    Firewall : Kaspersky Internet Security 8.0.0.454 (Not Activated)
    C:\ (Local Disk) - FAT32 - Total : 32 Go Free : 5 Go
    D:\ (Local Disk) - FAT32 - Total : 21 Go Free : 4 Go
    E:\ (CD or DVD)
    
    "C:\Lop SD" ( MAJ : 02-10-2008|23:42 )
    Option : [2] ( 18/10/2008|11:00 )
    
    
    \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
    
    
    --------------------\\ Listing des dossiers dans APPLIC~1
    
    [28/03/2006|18:28] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
    [28/03/2006|18:49] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
    [28/03/2006|18:20] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
    [28/03/2006|18:42] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec
    
    [30/01/2007|13:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
    [19/01/2007|15:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe Systems
    [06/05/2006|02:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
    [26/09/2006|13:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
    [05/10/2008|19:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DartyBox
    [08/02/2007|14:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink
    [17/10/2008|16:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab
    [15/10/2008|23:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab Setup Files
    [06/05/2006|18:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
    [17/10/2008|13:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
    [19/09/2006|20:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee.com
    [28/03/2006|18:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
    [28/03/2006|18:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
    [15/07/2007|16:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
    [06/02/2007|10:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SolidDocuments
    [02/12/2006|19:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
    [28/03/2006|18:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
    [06/02/2007|12:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
    [28/08/2006|14:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
    [28/07/2006|11:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo!
    
    [28/03/2006|18:20] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
    
    [23/09/2006|18:04] C:\DOCUME~1\LOCALS~1\APPLIC~1\Macromedia
    [28/03/2006|18:20] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
    
    [06/01/2007|17:23] C:\DOCUME~1\VINCENT\APPLIC~1\{3C87C896-C2CD-4692-8FB9-C3C8358C2708}
    [08/05/2006|13:35] C:\DOCUME~1\VINCENT\APPLIC~1\3M
    [05/05/2006|21:19] C:\DOCUME~1\VINCENT\APPLIC~1\Adobe
    [05/05/2006|21:49] C:\DOCUME~1\VINCENT\APPLIC~1\AdobeUM
    [26/09/2006|14:07] C:\DOCUME~1\VINCENT\APPLIC~1\Apple Computer
    [29/09/2006|14:38] C:\DOCUME~1\VINCENT\APPLIC~1\Azureus
    [26/10/2007|19:32] C:\DOCUME~1\VINCENT\APPLIC~1\Cimaware
    [11/08/2006|16:29] C:\DOCUME~1\VINCENT\APPLIC~1\Creative
    [06/05/2006|02:16] C:\DOCUME~1\VINCENT\APPLIC~1\CyberLink
    [05/10/2008|20:04] C:\DOCUME~1\VINCENT\APPLIC~1\DartyBox
    [31/05/2006|23:46] C:\DOCUME~1\VINCENT\APPLIC~1\dvdcss
    [16/10/2008|19:37] C:\DOCUME~1\VINCENT\APPLIC~1\Grisoft
    [06/05/2006|16:08] C:\DOCUME~1\VINCENT\APPLIC~1\Help
    [28/03/2006|18:28] C:\DOCUME~1\VINCENT\APPLIC~1\Identities
    [24/07/2008|17:29] C:\DOCUME~1\VINCENT\APPLIC~1\InstallShield
    [28/03/2006|18:49] C:\DOCUME~1\VINCENT\APPLIC~1\Macromedia
    [17/10/2008|13:02] C:\DOCUME~1\VINCENT\APPLIC~1\Malwarebytes
    [04/02/2007|17:47] C:\DOCUME~1\VINCENT\APPLIC~1\Media Player Classic
    [28/03/2006|18:20] C:\DOCUME~1\VINCENT\APPLIC~1\Microsoft
    [24/01/2007|01:45] C:\DOCUME~1\VINCENT\APPLIC~1\Mozilla
    [22/03/2007|23:49] C:\DOCUME~1\VINCENT\APPLIC~1\Nvu
    [09/01/2007|10:31] C:\DOCUME~1\VINCENT\APPLIC~1\Publish Providers
    [05/02/2007|01:27] C:\DOCUME~1\VINCENT\APPLIC~1\Real
    [03/11/2007|15:24] C:\DOCUME~1\VINCENT\APPLIC~1\SecondLife
    [06/01/2007|17:22] C:\DOCUME~1\VINCENT\APPLIC~1\Seven Zip
    [10/05/2006|22:56] C:\DOCUME~1\VINCENT\APPLIC~1\Skype
    [17/01/2007|14:31] C:\DOCUME~1\VINCENT\APPLIC~1\SolidDocuments
    [09/01/2007|10:25] C:\DOCUME~1\VINCENT\APPLIC~1\Sony
    [24/08/2006|22:13] C:\DOCUME~1\VINCENT\APPLIC~1\Sowedoo Software
    [24/02/2007|18:05] C:\DOCUME~1\VINCENT\APPLIC~1\Sphinx
    [27/02/2007|19:03] C:\DOCUME~1\VINCENT\APPLIC~1\Sun
    [28/03/2006|18:42] C:\DOCUME~1\VINCENT\APPLIC~1\Symantec
    [09/03/2008|17:47] C:\DOCUME~1\VINCENT\APPLIC~1\Talkback
    [22/06/2006|19:00] C:\DOCUME~1\VINCENT\APPLIC~1\Template
    [02/10/2008|09:25] C:\DOCUME~1\VINCENT\APPLIC~1\U3
    [25/01/2007|16:59] C:\DOCUME~1\VINCENT\APPLIC~1\uTorrent
    [06/05/2006|18:24] C:\DOCUME~1\VINCENT\APPLIC~1\vlc
    [29/04/2007|14:54] C:\DOCUME~1\VINCENT\APPLIC~1\VoipCheapCom
    
    --------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
    
    [30/06/2008 16:15][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
    [18/10/2008 10:38][--ah-----] C:\WINDOWS\tasks\SA.DAT
    [05/08/2004 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
    
    --------------------\\ Listing des dossiers dans C:\Program Files
    
    [08/05/2006|13:35] C:\Program Files\3M
    [28/03/2006|18:35] C:\Program Files\Adobe
    [11/01/2007|19:26] C:\Program Files\Adolix
    [06/05/2006|02:01] C:\Program Files\Ahead
    [04/12/2006|20:54] C:\Program Files\Alwil Software
    [06/01/2007|17:23] C:\Program Files\AMR Converter Pro
    [15/03/2007|18:52] C:\Program Files\Apple Software Update
    [28/03/2006|18:38] C:\Program Files\Asus
    [06/05/2006|02:10] C:\Program Files\ASUSTeK
    [28/03/2006|18:36] C:\Program Files\AvRack
    [19/02/2007|15:30] C:\Program Files\Azureus
    [03/12/2006|17:19] C:\Program Files\CCleaner
    [05/10/2008|19:50] C:\Program Files\CD_DartyBox
    [26/10/2007|19:28] C:\Program Files\Cimaware
    [05/10/2008|19:52] C:\Program Files\Citrix
    [28/03/2006|18:26] C:\Program Files\ComPlus Applications
    [05/10/2008|19:53] C:\Program Files\DartyBox_v3
    [28/06/2007|01:33] C:\Program Files\DivX
    [02/12/2006|20:13] C:\Program Files\Druide
    [08/02/2007|14:55] C:\Program Files\DVD Shrink
    [27/05/2006|01:04] C:\Program Files\eMule
    [17/07/2007|19:45] C:\Program Files\EPSON
    [28/03/2006|18:21] C:\Program Files\Fichiers communs
    [25/07/2006|23:49] C:\Program Files\Gabest
    [16/10/2008|19:37] C:\Program Files\Grisoft
    [24/08/2006|19:58] C:\Program Files\Hewlett-Packard
    [24/08/2006|20:11] C:\Program Files\HP
    [28/03/2006|18:35] C:\Program Files\InstallShield Installation Information
    [28/03/2006|18:27] C:\Program Files\Internet Explorer
    [15/03/2007|18:59] C:\Program Files\iPod
    [15/03/2007|18:59] C:\Program Files\iTunes
    [27/05/2006|00:22] C:\Program Files\Java
    [17/10/2008|16:11] C:\Program Files\Kaspersky Lab
    [06/05/2006|17:30] C:\Program Files\Lavasoft
    [19/08/2006|23:24] C:\Program Files\Logitech
    [17/10/2008|13:02] C:\Program Files\Malwarebytes' Anti-Malware
    [28/03/2006|18:26] C:\Program Files\Messenger
    [03/06/2007|02:02] C:\Program Files\Microsoft CAPICOM 2.1.0.2
    [28/03/2006|18:28] C:\Program Files\microsoft frontpage
    [06/05/2006|17:02] C:\Program Files\Microsoft Office
    [10/10/2007|22:18] C:\Program Files\Microsoft Visual Studio
    [06/05/2006|16:58] C:\Program Files\Microsoft Works
    [15/01/2007|14:03] C:\Program Files\Microsoft.NET
    [28/03/2006|18:27] C:\Program Files\Movie Maker
    [24/01/2007|01:45] C:\Program Files\Mozilla Firefox
    [09/10/2008|16:40] C:\Program Files\MSECache
    [28/03/2006|18:26] C:\Program Files\MSN Gaming Zone
    [24/02/2007|14:43] C:\Program Files\MSN Messenger
    [28/03/2006|18:27] C:\Program Files\NetMeeting
    [28/03/2006|18:26] C:\Program Files\Online Services
    [28/03/2006|18:27] C:\Program Files\Outlook Express
    [14/10/2008|19:08] C:\Program Files\Panda Security
    [11/01/2007|19:16] C:\Program Files\PDF2W
    [04/02/2007|17:36] C:\Program Files\PeerCast
    [05/02/2007|01:41] C:\Program Files\PeerTV
    [26/11/2006|20:31] C:\Program Files\PNG divers
    [16/01/2007|16:35] C:\Program Files\psconvert
    [07/02/2007|15:54] C:\Program Files\QuickTime
    [05/02/2007|01:27] C:\Program Files\Real
    [28/03/2006|18:36] C:\Program Files\Realtek Sound Manager
    [05/10/2007|21:06] C:\Program Files\Securitoo
    [28/03/2006|18:27] C:\Program Files\Services en ligne
    [28/03/2006|18:40] C:\Program Files\SiS VGA Utilities V3.65g
    [28/03/2006|18:40] C:\Program Files\sisagp
    [15/07/2007|16:18] C:\Program Files\Skype
    [17/01/2007|14:29] C:\Program Files\Soliddocuments
    [09/01/2007|10:21] C:\Program Files\Sony
    [06/01/2007|17:33] C:\Program Files\Sony Setup
    [02/12/2006|20:23] C:\Program Files\Spybot - Search & Destroy
    [13/09/2008|14:00] C:\Program Files\Sun
    [04/12/2006|22:23] C:\Program Files\Sygate
    [28/03/2006|18:41] C:\Program Files\Symantec
    [28/03/2006|18:39] C:\Program Files\Synaptics
    [05/10/2008|20:07] C:\Program Files\Utilitaire r‚seau pour SAGEM Wi-Fi 11g USB adapter
    [30/03/2008|16:04] C:\Program Files\Veoh Networks
    [08/05/2006|13:55] C:\Program Files\VideoLAN
    [09/01/2007|10:31] C:\Program Files\VSTplugins
    [27/05/2006|00:20] C:\Program Files\Wanadoo
    [27/05/2006|00:21] C:\Program Files\Wanadoo Messager
    [10/10/2007|22:21] C:\Program Files\Web Publish
    [28/03/2006|18:26] C:\Program Files\Windows Media Player
    [28/03/2006|18:25] C:\Program Files\Windows NT
    [28/03/2006|18:27] C:\Program Files\WindowsUpdate
    [06/05/2006|17:08] C:\Program Files\WinRAR
    [06/05/2006|17:19] C:\Program Files\WinZip
    [28/03/2006|18:28] C:\Program Files\xerox
    [18/02/2007|20:42] C:\Program Files\Yahoo!
    [16/01/2007|16:13] C:\Program Files\Zapu
    
    --------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
    
    [28/03/2006|18:35] C:\Program Files\Fichiers communs\Adobe
    [06/05/2006|18:47] C:\Program Files\Fichiers communs\Adobe Systems Shared
    [06/05/2006|02:01] C:\Program Files\Fichiers communs\Ahead
    [06/05/2006|17:13] C:\Program Files\Fichiers communs\Designer
    [28/03/2006|18:35] C:\Program Files\Fichiers communs\InstallShield
    [20/02/2007|15:21] C:\Program Files\Fichiers communs\Java
    [06/05/2006|02:07] C:\Program Files\Fichiers communs\LightScribe
    [19/08/2006|23:25] C:\Program Files\Fichiers communs\Logitech
    [28/03/2006|18:21] C:\Program Files\Fichiers communs\Microsoft Shared
    [28/03/2006|18:27] C:\Program Files\Fichiers communs\MSSoap
    [06/05/2006|02:04] C:\Program Files\Fichiers communs\Nero
    [28/03/2006|18:21] C:\Program Files\Fichiers communs\ODBC
    [05/02/2007|01:27] C:\Program Files\Fichiers communs\Real
    [28/03/2006|18:27] C:\Program Files\Fichiers communs\Services
    [15/07/2007|16:18] C:\Program Files\Fichiers communs\Skype
    [28/03/2006|18:21] C:\Program Files\Fichiers communs\SpeechEngines
    [28/03/2006|18:27] C:\Program Files\Fichiers communs\System
    
    --------------------\\ Process
    
    ( 41 Processes )
    
    ... OK !
    
    --------------------\\ Recherche avec S_Lop
    
    Aucun fichier / dossier Lop trouvé !
    
    --------------------\\ Recherche de Fichiers / Dossiers Lop
    
    Aucun fichier / dossier Lop trouvé !
    
    --------------------\\ Verification du Registre
    
    ..... OK !
    
    --------------------\\ Verification du fichier Hosts
    
    Fichier Hosts PROPRE
    
    
    --------------------\\ Recherche de fichiers avec Catchme
    
    catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2008-10-18 11:02:54
    Windows 5.1.2600 Service Pack 2 FAT NTAPI
    scanning hidden processes ...
    scanning hidden files ...
    scan completed successfully
    hidden processes: 0
    hidden files: 0
    
    --------------------\\ Recherche d'autres infections
    
    --------------------\\ Cracks & Keygens ..
    
    C:\DOCUME~1\VINCENT\Bureau\Musique\Tito & Tarantula\Little Bitch\03 Crack In The World.mp3
    C:\DOCUME~1\VINCENT\Application Data\Azureus\torrents\Adobe_Acrobat_7.0_Professional_incl_KeyGen-PARADOX.3279131.TPB[1].torrent
    C:\DOCUME~1\VINCENT\Application Data\Azureus\torrents\[isoHunt] Avast.Antivirus.Pro.v4.7.892.FR.Incl-Keygen.rar.torrent
    C:\DOCUME~1\VINCENT\Application Data\Azureus\torrents\Antivirus - Avast Profesional + Keygen [mininova].torrent
    
    
    [F:11][D:5]-> C:\DOCUME~1\Vincent\LOCALS~1\Temp
    [F:18][D:0]-> C:\DOCUME~1\Vincent\Cookies
    [F:305][D:5]-> C:\DOCUME~1\Vincent\LOCALS~1\TEMPOR~1\content.IE5
    [F:2][D:0]-> C:\Recycled
    
    1 - "C:\Lop SD\LopR_1.txt" - 17/10/2008|16:44 - Option : [1]
    2 - "C:\Lop SD\LopR_2.txt" - 18/10/2008|11:04 - Option : [2]
    
    --------------------\\ Fin du rapport a 11:04:01
    -1
  20. ric991 Messages postés 167 Statut Membre
     
    Ton antivrus n'est pas activé?
    Antivirus : Kaspersky Internet Security 8.0.0.454 (Not Activated)
    Firewall : Kaspersky Internet Security 8.0.0.454 (Not Activated)

    Comme dit plus haut commence par viré tout tes cracks
    -1
  21. Derech Messages postés 16 Statut Membre
     
    C'est fait, résultat 0/36 le fichier ne semble pas infecté
    cordialement
    -1
  • 1
  • 2