Fenêtres cid suite

Résolu
cidéré -  
jlpjlp Messages postés 52399 Statut Contributeur sécurité -
Bonjour,
Suite à mes messages est-ce quelqun d'autre peut me donner la suite de l'énigme. J'ai envoyè mon rapport lop sur le forum, que dois-je faire? cidéré
Configuration: Windows XP
Internet Explorer 7.0

4 réponses

  1. jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 041
     
    slt il est ou le rapport lop?

    colle le ici puis

    mets un rapport hijakhcits

    https://www.malekal.com/tutoriel-hijackthis/
    0
    1. cidéré
       
      Bonsoir,
      J'envoie un premier rapport hijsalut, voici le rapport


      Logfile of Trend Micro HijackThis v2.0.2
      Scan saved at 16:40:47, on 30/10/2008
      Platform: Windows XP SP3 (WinNT 5.01.2600)
      MSIE: Internet Explorer v7.00 (7.00.6000.16735)
      Boot mode: NormalHijackThis 2.0.2

      Running processes:
      C:\WINDOWS\System32\smss.exe
      C:\WINDOWS\system32\winlogon.exe
      C:\WINDOWS\system32\services.exe
      C:\WINDOWS\system32\lsass.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
      C:\Program Files\Alwil Software\Avast4\ashServ.exe
      C:\WINDOWS\system32\spoolsv.exe
      C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
      C:\WINDOWS\system32\cisvc.exe
      C:\Program Files\Controle Parental\bin\optproxy.exe
      C:\WINDOWS\system32\PSIService.exe
      C:\WINDOWS\Explorer.EXE
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\system32\MsPMSPSv.exe
      C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
      C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
      C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe
      C:\WINDOWS\system32\ctfmon.exe
      C:\Program Files\Internet Explorer\IEXPLORE.EXE
      C:\PROGRA~1\Yahoo!\MESSEN~1\ymsgr_tray.exe
      C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
      C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
      C:\WINDOWS\system32\cidaemon.exe
      C:\Program Files\Internet Explorer\iexplore.exe
      C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
      C:\DOCUME~1\CORNLI~1\LOCALS~1\Temp\Fichiers Internet temporaires\Content.IE5\Q2ZASO8W\HiJackThis[1].exe

      R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
      R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
      R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
      R3 - URLSearchHook: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
      O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
      O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
      O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
      O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
      O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
      O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
      O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
      O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
      O4 - HKLM\..\Run: [SiSUSBRG] C:\WINDOWS\SiSUSBrg.exe
      O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
      O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
      O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
      O4 - HKLM\..\Run: [RoxioEngineUtility] "C:\Program Files\Fichiers communs\Roxio Shared\System\EngUtil.exe"
      O4 - HKLM\..\Run: [RoxioDragToDisc] "C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe"
      O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
      O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
      O4 - HKLM\..\Run: [Online chin internet bolt] C:\Documents and Settings\All Users\Application Data\Bags Plus Online Chin\user loud.exe
      O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
      O4 - HKCU\..\Run: [OM_Monitor] C:\Program Files\OLYMPUS\OLYMPUS Master\Monitor.exe
      O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
      O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
      O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
      O4 - HKUS\S-1-5-21-1801674531-299502267-682003330-1004\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'User')
      O4 - HKUS\S-1-5-21-1801674531-299502267-682003330-1004\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe (User 'User')
      O4 - HKUS\S-1-5-21-1801674531-299502267-682003330-1004\..\Run: [Gluelite] C:\DOCUME~1\User\APPLIC~1\MAGSAN~1\THUNKEXIT.exe (User 'User')
      O4 - HKUS\S-1-5-21-1801674531-299502267-682003330-1004\..\Run: [ares] "C:\Program Files\Ares\Ares.exe" -h (User 'User')
      O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
      O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
      O4 - Global Startup: Adobe Gamma Loader.exe.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
      O4 - Global Startup: EPSON Status Monitor 3 Environment Check.lnk = C:\WINDOWS\system32\spool\drivers\w32x86\3\E_SRCV03.EXE
      O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
      O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
      O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
      O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
      O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
      O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
      O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab
      O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
      O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
      O16 - DPF: {C9386579-3C0F-4713-82C6-5BA8088C7C8D} (Windows Live SkyDrive Upload Tool) - http://secure.shared.live.com/
      O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
      O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL
      O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
      O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
      O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
      O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
      O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
      O23 - Service: Google Desktop Manager 5.7.805.16405 (GoogleDesktopManager-051608-133132) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
      O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
      O23 - Service: Control Parental (OPTENET_FILTER) - Contrôle Parental - C:\Program Files\Controle Parental\bin\optproxy.exe
      O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe
      O23 - Service: DelFax PRO (wfxsvc) - Symantec Corporation - C:\WINDOWS\system32\WFXSVC.EXE
      acthis et le lop suit
      0
    2. cidéré
       
      voici le rapport lop



      --------------------\\ Lop S&D 4.2.4-8 XP/Vista

      Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
      X86-based PC ( Uniprocessor Free : AMD Sempron(tm) 2500+ )
      BIOS : Version 1.00
      USER : Cornélia Nobili ( Administrator )
      BOOT : Normal boot
      Antivirus : avast! antivirus 4.8.1229 [VPS 081030-0] 4.8.1229 (Activated)
      C:\ (Local Disk) - NTFS - Total:38 Go (Free:5 Go)
      D:\ (CD or DVD)
      E:\ (CD or DVD)

      "C:\Lop SD" ( MAJ : 27-10-2008|09:15 )
      Option : [1] ( 31/10/2008| 9:10 )

      --------------------\\ Listing des dossiers dans APPLIC~1

      [11/05/2008|11:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
      [22/08/2007|20:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
      [01/09/2007|11:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
      [17/06/2007|18:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
      [21/01/2007|12:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\avg7
      [12/09/2008|12:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Bags Plus Online Chin
      [23/04/2005|14:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Coktel
      [25/04/2008|12:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Corel
      [04/05/2006|18:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
      [10/10/2008|11:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
      [14/10/2008|11:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
      [12/06/2007|19:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
      [26/10/2007|10:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
      [12/12/2005|21:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
      [31/10/2008|07:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
      [09/05/2007|12:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
      [13/01/2007|13:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
      [09/07/2008|10:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo!

      [09/09/2006|15:20] C:\DOCUME~1\CORNLI~1\APPLIC~1\3M
      [12/07/2008|10:17] C:\DOCUME~1\CORNLI~1\APPLIC~1\Adobe
      [19/11/2007|17:12] C:\DOCUME~1\CORNLI~1\APPLIC~1\Apple Computer
      [20/01/2007|14:31] C:\DOCUME~1\CORNLI~1\APPLIC~1\AVG7
      [25/04/2008|17:41] C:\DOCUME~1\CORNLI~1\APPLIC~1\Corel
      [10/06/2006|13:26] C:\DOCUME~1\CORNLI~1\APPLIC~1\CyberLink
      [28/01/2007|21:26] C:\DOCUME~1\CORNLI~1\APPLIC~1\F-Secure
      [09/05/2007|13:09] C:\DOCUME~1\CORNLI~1\APPLIC~1\Google
      [11/09/2006|12:17] C:\DOCUME~1\CORNLI~1\APPLIC~1\Help
      [06/05/2005|13:51] C:\DOCUME~1\CORNLI~1\APPLIC~1\Identities
      [22/01/2007|12:38] C:\DOCUME~1\CORNLI~1\APPLIC~1\ispnews
      [17/07/2008|19:38] C:\DOCUME~1\CORNLI~1\APPLIC~1\Macromedia
      [14/10/2008|11:52] C:\DOCUME~1\CORNLI~1\APPLIC~1\Malwarebytes
      [27/09/2008|16:29] C:\DOCUME~1\CORNLI~1\APPLIC~1\Microsoft
      [03/06/2007|14:30] C:\DOCUME~1\CORNLI~1\APPLIC~1\Microsoft Web Folders
      [11/06/2006|20:29] C:\DOCUME~1\CORNLI~1\APPLIC~1\OLYMPUS
      [11/06/2007|12:47] C:\DOCUME~1\CORNLI~1\APPLIC~1\OpenOffice.org2
      [15/02/2007|22:22] C:\DOCUME~1\CORNLI~1\APPLIC~1\PEX
      [02/09/2008|18:25] C:\DOCUME~1\CORNLI~1\APPLIC~1\Real
      [21/05/2007|21:10] C:\DOCUME~1\CORNLI~1\APPLIC~1\Sony Ericsson
      [16/01/2007|17:23] C:\DOCUME~1\CORNLI~1\APPLIC~1\Sun
      [21/05/2007|21:13] C:\DOCUME~1\CORNLI~1\APPLIC~1\Teleca
      [01/03/2008|13:21] C:\DOCUME~1\CORNLI~1\APPLIC~1\Yahoo!

      [08/04/2005|11:39] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

      [13/01/2007|18:17] C:\DOCUME~1\LOCALS~1\APPLIC~1\AVG7
      [27/02/2007|18:19] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

      [21/01/2007|12:41] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft


      --------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

      [12/09/2008 22:22][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
      [24/10/2008 14:36][--a------] C:\WINDOWS\tasks\Norton Security Scan.job
      [31/10/2008 07:57][--ah-----] C:\WINDOWS\tasks\SA.DAT
      [05/08/2004 13:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

      --------------------\\ Listing des dossiers dans C:\Program Files

      [15/01/2007|19:31] C:\Program Files\3M
      [17/08/2008|12:04] C:\Program Files\Adobe
      [16/06/2007|13:24] C:\Program Files\Agfa
      [17/09/2007|09:41] C:\Program Files\Ahead
      [30/06/2007|12:03] C:\Program Files\Alwil Software
      [30/06/2007|11:27] C:\Program Files\AntivirusFirewall
      [27/09/2007|17:14] C:\Program Files\Apple Software Update
      [31/05/2008|17:51] C:\Program Files\Ares
      [16/01/2007|17:40] C:\Program Files\AurynQuest
      [08/04/2005|11:48] C:\Program Files\C-Media 3D Audio
      [15/10/2006|18:38] C:\Program Files\Common Files
      [08/04/2005|11:35] C:\Program Files\ComPlus Applications
      [13/01/2007|11:54] C:\Program Files\Controle Parental
      [28/04/2008|13:44] C:\Program Files\Corel
      [04/05/2006|18:09] C:\Program Files\CyberLink
      [14/12/2007|19:30] C:\Program Files\Dictionnaire
      [28/04/2005|18:47] C:\Program Files\DigitalImagingDevice
      [29/04/2005|10:08] C:\Program Files\directx
      [29/02/2008|16:27] C:\Program Files\DivX
      [16/05/2005|18:13] C:\Program Files\Eidos Interactive
      [03/05/2005|17:02] C:\Program Files\Empire Interactive
      [11/05/2008|11:33] C:\Program Files\Fichiers communs
      [10/10/2008|16:30] C:\Program Files\Google
      [18/05/2008|10:30] C:\Program Files\IGN
      [10/05/2008|19:34] C:\Program Files\InstallShield Installation Information
      [16/10/2008|09:10] C:\Program Files\Internet Explorer
      [13/01/2007|11:52] C:\Program Files\Inventel
      [10/05/2008|19:37] C:\Program Files\iPod
      [23/08/2008|12:04] C:\Program Files\Java
      [08/04/2007|10:35] C:\Program Files\JawsSystems
      [15/01/2007|18:10] C:\Program Files\Jeune Styliste
      [04/05/2005|14:54] C:\Program Files\Lasermedia
      [25/10/2008|18:50] C:\Program Files\LimeWire
      [12/09/2008|12:55] C:\Program Files\Magsanticool
      [29/10/2008|17:19] C:\Program Files\Malwarebytes' Anti-Malware
      [12/05/2006|17:59] C:\Program Files\Maxis
      [18/09/2008|09:08] C:\Program Files\Messenger
      [12/09/2008|12:54] C:\Program Files\Messenger Plus! Live
      [15/06/2008|20:01] C:\Program Files\Microsoft ActiveSync
      [03/06/2007|14:37] C:\Program Files\microsoft frontpage
      [26/10/2007|10:31] C:\Program Files\Microsoft Office
      [26/10/2007|10:31] C:\Program Files\Microsoft.NET
      [18/09/2008|09:00] C:\Program Files\Movie Maker
      [25/05/2008|10:29] C:\Program Files\Mozilla Firefox
      [13/01/2007|13:58] C:\Program Files\MSN
      [08/04/2005|11:35] C:\Program Files\MSN Gaming Zone
      [18/09/2008|09:47] C:\Program Files\MSN Messenger
      [15/01/2007|16:10] C:\Program Files\MSXML 4.0
      [18/09/2008|08:48] C:\Program Files\NetMeeting
      [28/04/2005|18:50] C:\Program Files\NewSoft
      [16/10/2006|18:43] C:\Program Files\Norton CleanSweep
      [15/01/2007|18:14] C:\Program Files\Norton CrashGuard
      [24/10/2008|14:00] C:\Program Files\Norton Security Scan
      [15/01/2007|18:15] C:\Program Files\Norton Web Services
      [08/04/2005|11:35] C:\Program Files\Online Services
      [03/06/2007|14:48] C:\Program Files\OpenOffice.org 2.1
      [16/06/2007|14:08] C:\Program Files\OpenOffice.org 2.2
      [18/09/2008|08:47] C:\Program Files\Outlook Express
      [29/02/2008|18:21] C:\Program Files\QuickTime
      [13/01/2007|14:12] C:\Program Files\Real
      [08/04/2005|11:52] C:\Program Files\Roxio
      [08/04/2005|11:37] C:\Program Files\Services en ligne
      [03/07/2006|21:44] C:\Program Files\Sierra On-Line
      [08/04/2005|11:49] C:\Program Files\SiSLan
      [25/05/2008|10:30] C:\Program Files\SpecialK
      [31/10/2008|07:57] C:\Program Files\Spybot - Search & Destroy
      [15/01/2007|18:14] C:\Program Files\Symantec
      [07/10/2008|15:10] C:\Program Files\TeaTimer (Spybot - Search & Destroy)
      [02/07/2006|17:16] C:\Program Files\The Adventure Company
      [15/01/2007|18:36] C:\Program Files\Tropico
      [30/08/2005|22:49] C:\Program Files\Ubi Soft
      [08/04/2005|11:45] C:\Program Files\Uninstall Information
      [25/05/2008|10:33] C:\Program Files\VSO
      [13/01/2007|12:08] C:\Program Files\Wanadoo
      [12/06/2007|18:43] C:\Program Files\Windows Live
      [31/05/2008|10:31] C:\Program Files\Windows Live SkyDrive
      [25/02/2007|20:08] C:\Program Files\Windows Media Connect 2
      [18/09/2008|08:48] C:\Program Files\Windows Media Player
      [26/10/2007|10:31] C:\Program Files\Windows Messaging
      [18/09/2008|08:47] C:\Program Files\Windows NT
      [08/04/2005|11:37] C:\Program Files\WindowsUpdate
      [08/04/2007|10:31] C:\Program Files\WinRAR
      [21/10/2006|21:41] C:\Program Files\WinZip
      [08/04/2005|11:39] C:\Program Files\xerox
      [02/05/2007|19:11] C:\Program Files\Xvid
      [09/08/2008|22:45] C:\Program Files\Yahoo!

      --------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

      [17/04/2008|21:56] C:\Program Files\Fichiers communs\Adobe
      [11/05/2008|11:33] C:\Program Files\Fichiers communs\Adobe AIR
      [01/09/2007|11:48] C:\Program Files\Fichiers communs\Apple
      [03/06/2007|14:32] C:\Program Files\Fichiers communs\Designer
      [29/04/2005|11:49] C:\Program Files\Fichiers communs\EPSON
      [16/06/2007|14:04] C:\Program Files\Fichiers communs\FotoWire
      [02/04/2006|19:26] C:\Program Files\Fichiers communs\InstallShield
      [19/01/2007|19:32] C:\Program Files\Fichiers communs\Java
      [30/10/2008|19:50] C:\Program Files\Fichiers communs\Microsoft Shared
      [08/04/2005|11:36] C:\Program Files\Fichiers communs\MSSoap
      [22/08/2007|20:44] C:\Program Files\Fichiers communs\Nero
      [08/04/2005|13:28] C:\Program Files\Fichiers communs\ODBC
      [07/05/2008|19:49] C:\Program Files\Fichiers communs\Real
      [08/04/2005|11:52] C:\Program Files\Fichiers communs\Roxio Shared
      [08/04/2005|11:36] C:\Program Files\Fichiers communs\Services
      [08/04/2005|13:28] C:\Program Files\Fichiers communs\SpeechEngines
      [01/08/2006|18:36] C:\Program Files\Fichiers communs\SWF Studio
      [24/10/2008|14:01] C:\Program Files\Fichiers communs\Symantec Shared
      [18/09/2008|08:47] C:\Program Files\Fichiers communs\System
      [07/05/2008|19:50] C:\Program Files\Fichiers communs\xing shared

      --------------------\\ Process

      ( 41 Processes )

      IEXPLORE.EXE ~ [PID:2176]
      iexplore.exe ~ [PID:4092]
      iexplore.exe ~ [PID:1560]

      --------------------\\ Recherche avec S_Lop

      Aucun fichier / dossier Lop trouvé !

      --------------------\\ Recherche de Fichiers / Dossiers Lop

      C:\DOCUME~1\ALLUSE~1\APPLIC~1\Bags Plus Online Chin
      C:\DOCUME~1\ALLUSE~1\APPLIC~1\Bags Plus Online Chin\user loud.exe

      --------------------\\ Verification du Registre

      [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "Online chin internet bolt"="C:\\Documents and Settings\\All Users\\Application Data\\Bags Plus Online Chin\\user loud.exe"

      --------------------\\ Verification du fichier Hosts

      Fichier Hosts PROPRE


      --------------------\\ Recherche de fichiers avec Catchme

      catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
      Rootkit scan 2008-10-31 09:12:25
      Windows 5.1.2600 Service Pack 3 NTFS
      scanning hidden processes ...
      scanning hidden files ...
      scan completed successfully
      hidden processes: 0
      hidden files: 0

      --------------------\\ Recherche d'autres infections


      Aucune autre infection trouvée !

      [F:629][D:43]-> C:\DOCUME~1\CORNLI~1\LOCALS~1\Temp
      [F:1][D:0]-> C:\DOCUME~1\CORNLI~1\Cookies
      [F:2][D:16]-> C:\DOCUME~1\CORNLI~1\LOCALS~1\TEMPOR~1\content.IE5

      1 - "C:\Lop SD\LopR_1.txt" - 31/10/2008| 9:14 - Option : [1]

      --------------------\\ Fin du rapport a 9:14:14
      0
    3. cidéré
       
      voici le rapport lop



      --------------------\\ Lop S&D 4.2.4-8 XP/Vista

      Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
      X86-based PC ( Uniprocessor Free : AMD Sempron(tm) 2500+ )
      BIOS : Version 1.00
      USER : Cornélia Nobili ( Administrator )
      BOOT : Normal boot
      Antivirus : avast! antivirus 4.8.1229 [VPS 081030-0] 4.8.1229 (Activated)
      C:\ (Local Disk) - NTFS - Total:38 Go (Free:5 Go)
      D:\ (CD or DVD)
      E:\ (CD or DVD)

      "C:\Lop SD" ( MAJ : 27-10-2008|09:15 )
      Option : [1] ( 31/10/2008| 9:10 )

      --------------------\\ Listing des dossiers dans APPLIC~1

      [11/05/2008|11:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
      [22/08/2007|20:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
      [01/09/2007|11:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
      [17/06/2007|18:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
      [21/01/2007|12:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\avg7
      [12/09/2008|12:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Bags Plus Online Chin
      [23/04/2005|14:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Coktel
      [25/04/2008|12:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Corel
      [04/05/2006|18:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
      [10/10/2008|11:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
      [14/10/2008|11:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
      [12/06/2007|19:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
      [26/10/2007|10:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
      [12/12/2005|21:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
      [31/10/2008|07:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
      [09/05/2007|12:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
      [13/01/2007|13:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
      [09/07/2008|10:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo!

      [09/09/2006|15:20] C:\DOCUME~1\CORNLI~1\APPLIC~1\3M
      [12/07/2008|10:17] C:\DOCUME~1\CORNLI~1\APPLIC~1\Adobe
      [19/11/2007|17:12] C:\DOCUME~1\CORNLI~1\APPLIC~1\Apple Computer
      [20/01/2007|14:31] C:\DOCUME~1\CORNLI~1\APPLIC~1\AVG7
      [25/04/2008|17:41] C:\DOCUME~1\CORNLI~1\APPLIC~1\Corel
      [10/06/2006|13:26] C:\DOCUME~1\CORNLI~1\APPLIC~1\CyberLink
      [28/01/2007|21:26] C:\DOCUME~1\CORNLI~1\APPLIC~1\F-Secure
      [09/05/2007|13:09] C:\DOCUME~1\CORNLI~1\APPLIC~1\Google
      [11/09/2006|12:17] C:\DOCUME~1\CORNLI~1\APPLIC~1\Help
      [06/05/2005|13:51] C:\DOCUME~1\CORNLI~1\APPLIC~1\Identities
      [22/01/2007|12:38] C:\DOCUME~1\CORNLI~1\APPLIC~1\ispnews
      [17/07/2008|19:38] C:\DOCUME~1\CORNLI~1\APPLIC~1\Macromedia
      [14/10/2008|11:52] C:\DOCUME~1\CORNLI~1\APPLIC~1\Malwarebytes
      [27/09/2008|16:29] C:\DOCUME~1\CORNLI~1\APPLIC~1\Microsoft
      [03/06/2007|14:30] C:\DOCUME~1\CORNLI~1\APPLIC~1\Microsoft Web Folders
      [11/06/2006|20:29] C:\DOCUME~1\CORNLI~1\APPLIC~1\OLYMPUS
      [11/06/2007|12:47] C:\DOCUME~1\CORNLI~1\APPLIC~1\OpenOffice.org2
      [15/02/2007|22:22] C:\DOCUME~1\CORNLI~1\APPLIC~1\PEX
      [02/09/2008|18:25] C:\DOCUME~1\CORNLI~1\APPLIC~1\Real
      [21/05/2007|21:10] C:\DOCUME~1\CORNLI~1\APPLIC~1\Sony Ericsson
      [16/01/2007|17:23] C:\DOCUME~1\CORNLI~1\APPLIC~1\Sun
      [21/05/2007|21:13] C:\DOCUME~1\CORNLI~1\APPLIC~1\Teleca
      [01/03/2008|13:21] C:\DOCUME~1\CORNLI~1\APPLIC~1\Yahoo!

      [08/04/2005|11:39] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

      [13/01/2007|18:17] C:\DOCUME~1\LOCALS~1\APPLIC~1\AVG7
      [27/02/2007|18:19] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

      [21/01/2007|12:41] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft


      --------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

      [12/09/2008 22:22][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
      [24/10/2008 14:36][--a------] C:\WINDOWS\tasks\Norton Security Scan.job
      [31/10/2008 07:57][--ah-----] C:\WINDOWS\tasks\SA.DAT
      [05/08/2004 13:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

      --------------------\\ Listing des dossiers dans C:\Program Files

      [15/01/2007|19:31] C:\Program Files\3M
      [17/08/2008|12:04] C:\Program Files\Adobe
      [16/06/2007|13:24] C:\Program Files\Agfa
      [17/09/2007|09:41] C:\Program Files\Ahead
      [30/06/2007|12:03] C:\Program Files\Alwil Software
      [30/06/2007|11:27] C:\Program Files\AntivirusFirewall
      [27/09/2007|17:14] C:\Program Files\Apple Software Update
      [31/05/2008|17:51] C:\Program Files\Ares
      [16/01/2007|17:40] C:\Program Files\AurynQuest
      [08/04/2005|11:48] C:\Program Files\C-Media 3D Audio
      [15/10/2006|18:38] C:\Program Files\Common Files
      [08/04/2005|11:35] C:\Program Files\ComPlus Applications
      [13/01/2007|11:54] C:\Program Files\Controle Parental
      [28/04/2008|13:44] C:\Program Files\Corel
      [04/05/2006|18:09] C:\Program Files\CyberLink
      [14/12/2007|19:30] C:\Program Files\Dictionnaire
      [28/04/2005|18:47] C:\Program Files\DigitalImagingDevice
      [29/04/2005|10:08] C:\Program Files\directx
      [29/02/2008|16:27] C:\Program Files\DivX
      [16/05/2005|18:13] C:\Program Files\Eidos Interactive
      [03/05/2005|17:02] C:\Program Files\Empire Interactive
      [11/05/2008|11:33] C:\Program Files\Fichiers communs
      [10/10/2008|16:30] C:\Program Files\Google
      [18/05/2008|10:30] C:\Program Files\IGN
      [10/05/2008|19:34] C:\Program Files\InstallShield Installation Information
      [16/10/2008|09:10] C:\Program Files\Internet Explorer
      [13/01/2007|11:52] C:\Program Files\Inventel
      [10/05/2008|19:37] C:\Program Files\iPod
      [23/08/2008|12:04] C:\Program Files\Java
      [08/04/2007|10:35] C:\Program Files\JawsSystems
      [15/01/2007|18:10] C:\Program Files\Jeune Styliste
      [04/05/2005|14:54] C:\Program Files\Lasermedia
      [25/10/2008|18:50] C:\Program Files\LimeWire
      [12/09/2008|12:55] C:\Program Files\Magsanticool
      [29/10/2008|17:19] C:\Program Files\Malwarebytes' Anti-Malware
      [12/05/2006|17:59] C:\Program Files\Maxis
      [18/09/2008|09:08] C:\Program Files\Messenger
      [12/09/2008|12:54] C:\Program Files\Messenger Plus! Live
      [15/06/2008|20:01] C:\Program Files\Microsoft ActiveSync
      [03/06/2007|14:37] C:\Program Files\microsoft frontpage
      [26/10/2007|10:31] C:\Program Files\Microsoft Office
      [26/10/2007|10:31] C:\Program Files\Microsoft.NET
      [18/09/2008|09:00] C:\Program Files\Movie Maker
      [25/05/2008|10:29] C:\Program Files\Mozilla Firefox
      [13/01/2007|13:58] C:\Program Files\MSN
      [08/04/2005|11:35] C:\Program Files\MSN Gaming Zone
      [18/09/2008|09:47] C:\Program Files\MSN Messenger
      [15/01/2007|16:10] C:\Program Files\MSXML 4.0
      [18/09/2008|08:48] C:\Program Files\NetMeeting
      [28/04/2005|18:50] C:\Program Files\NewSoft
      [16/10/2006|18:43] C:\Program Files\Norton CleanSweep
      [15/01/2007|18:14] C:\Program Files\Norton CrashGuard
      [24/10/2008|14:00] C:\Program Files\Norton Security Scan
      [15/01/2007|18:15] C:\Program Files\Norton Web Services
      [08/04/2005|11:35] C:\Program Files\Online Services
      [03/06/2007|14:48] C:\Program Files\OpenOffice.org 2.1
      [16/06/2007|14:08] C:\Program Files\OpenOffice.org 2.2
      [18/09/2008|08:47] C:\Program Files\Outlook Express
      [29/02/2008|18:21] C:\Program Files\QuickTime
      [13/01/2007|14:12] C:\Program Files\Real
      [08/04/2005|11:52] C:\Program Files\Roxio
      [08/04/2005|11:37] C:\Program Files\Services en ligne
      [03/07/2006|21:44] C:\Program Files\Sierra On-Line
      [08/04/2005|11:49] C:\Program Files\SiSLan
      [25/05/2008|10:30] C:\Program Files\SpecialK
      [31/10/2008|07:57] C:\Program Files\Spybot - Search & Destroy
      [15/01/2007|18:14] C:\Program Files\Symantec
      [07/10/2008|15:10] C:\Program Files\TeaTimer (Spybot - Search & Destroy)
      [02/07/2006|17:16] C:\Program Files\The Adventure Company
      [15/01/2007|18:36] C:\Program Files\Tropico
      [30/08/2005|22:49] C:\Program Files\Ubi Soft
      [08/04/2005|11:45] C:\Program Files\Uninstall Information
      [25/05/2008|10:33] C:\Program Files\VSO
      [13/01/2007|12:08] C:\Program Files\Wanadoo
      [12/06/2007|18:43] C:\Program Files\Windows Live
      [31/05/2008|10:31] C:\Program Files\Windows Live SkyDrive
      [25/02/2007|20:08] C:\Program Files\Windows Media Connect 2
      [18/09/2008|08:48] C:\Program Files\Windows Media Player
      [26/10/2007|10:31] C:\Program Files\Windows Messaging
      [18/09/2008|08:47] C:\Program Files\Windows NT
      [08/04/2005|11:37] C:\Program Files\WindowsUpdate
      [08/04/2007|10:31] C:\Program Files\WinRAR
      [21/10/2006|21:41] C:\Program Files\WinZip
      [08/04/2005|11:39] C:\Program Files\xerox
      [02/05/2007|19:11] C:\Program Files\Xvid
      [09/08/2008|22:45] C:\Program Files\Yahoo!

      --------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

      [17/04/2008|21:56] C:\Program Files\Fichiers communs\Adobe
      [11/05/2008|11:33] C:\Program Files\Fichiers communs\Adobe AIR
      [01/09/2007|11:48] C:\Program Files\Fichiers communs\Apple
      [03/06/2007|14:32] C:\Program Files\Fichiers communs\Designer
      [29/04/2005|11:49] C:\Program Files\Fichiers communs\EPSON
      [16/06/2007|14:04] C:\Program Files\Fichiers communs\FotoWire
      [02/04/2006|19:26] C:\Program Files\Fichiers communs\InstallShield
      [19/01/2007|19:32] C:\Program Files\Fichiers communs\Java
      [30/10/2008|19:50] C:\Program Files\Fichiers communs\Microsoft Shared
      [08/04/2005|11:36] C:\Program Files\Fichiers communs\MSSoap
      [22/08/2007|20:44] C:\Program Files\Fichiers communs\Nero
      [08/04/2005|13:28] C:\Program Files\Fichiers communs\ODBC
      [07/05/2008|19:49] C:\Program Files\Fichiers communs\Real
      [08/04/2005|11:52] C:\Program Files\Fichiers communs\Roxio Shared
      [08/04/2005|11:36] C:\Program Files\Fichiers communs\Services
      [08/04/2005|13:28] C:\Program Files\Fichiers communs\SpeechEngines
      [01/08/2006|18:36] C:\Program Files\Fichiers communs\SWF Studio
      [24/10/2008|14:01] C:\Program Files\Fichiers communs\Symantec Shared
      [18/09/2008|08:47] C:\Program Files\Fichiers communs\System
      [07/05/2008|19:50] C:\Program Files\Fichiers communs\xing shared

      --------------------\\ Process

      ( 41 Processes )

      IEXPLORE.EXE ~ [PID:2176]
      iexplore.exe ~ [PID:4092]
      iexplore.exe ~ [PID:1560]

      --------------------\\ Recherche avec S_Lop

      Aucun fichier / dossier Lop trouvé !

      --------------------\\ Recherche de Fichiers / Dossiers Lop

      C:\DOCUME~1\ALLUSE~1\APPLIC~1\Bags Plus Online Chin
      C:\DOCUME~1\ALLUSE~1\APPLIC~1\Bags Plus Online Chin\user loud.exe

      --------------------\\ Verification du Registre

      [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "Online chin internet bolt"="C:\\Documents and Settings\\All Users\\Application Data\\Bags Plus Online Chin\\user loud.exe"

      --------------------\\ Verification du fichier Hosts

      Fichier Hosts PROPRE


      --------------------\\ Recherche de fichiers avec Catchme

      catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
      Rootkit scan 2008-10-31 09:12:25
      Windows 5.1.2600 Service Pack 3 NTFS
      scanning hidden processes ...
      scanning hidden files ...
      scan completed successfully
      hidden processes: 0
      hidden files: 0

      --------------------\\ Recherche d'autres infections


      Aucune autre infection trouvée !

      [F:629][D:43]-> C:\DOCUME~1\CORNLI~1\LOCALS~1\Temp
      [F:1][D:0]-> C:\DOCUME~1\CORNLI~1\Cookies
      [F:2][D:16]-> C:\DOCUME~1\CORNLI~1\LOCALS~1\TEMPOR~1\content.IE5

      1 - "C:\Lop SD\LopR_1.txt" - 31/10/2008| 9:14 - Option : [1]

      --------------------\\ Fin du rapport a 9:14:14
      0
  2. jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 041
     
    ---> Télécharge Lop S&D sur ton Bureau
    https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
    ---> Double-clique dessus pour lancer l'installation
    ---> Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
    ---> Séléctionne la langue souhaitée, puis choisis l'option 1 (Recherche)
    ---> Patiente jusqu'à la fin du scan
    ---> Poste le rapport généré (C:\lopR.txt)

    (Si le Bureau ne réapparait pas, presse Ctrl+Alt+Suppr, Onglet Fichier, Nouvelle tâche, tape explorer.exe et valide)

    Si tu as un problème pour utiliser Lop S&D, regarde dans le tutorial :
    http://bibou0007.com/outils-specifiques-f78/tutorial-lop-sd-t956.htm#11431
    0
    1. cidéré
       
      je viens d'envoyer le rapport lop
      0
  3. jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 041
     
    refais lop sd choisi l'option 2 et colle le rapport et dis si encore des pubs
    0
    1. cidéré
       
      Bonsoir,
      Après cette manip lop option 2, je n'ai plus de fenêtres cid. Je je remercie beaucoup. Bravo. cidéré.
      0
  4. jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 041
     
    ok

    tu peux virer les deux logiciels

    bonne suite
    0