Fenêtres cid suite

Résolu/Fermé
cidéré - 31 oct. 2008 à 11:37
jlpjlp
Messages postés
51571
Date d'inscription
vendredi 18 mai 2007
Statut
Contributeur sécurité
Dernière intervention
3 mai 2022
- 31 oct. 2008 à 18:37
Bonjour,
Suite à mes messages est-ce quelqun d'autre peut me donner la suite de l'énigme. J'ai envoyè mon rapport lop sur le forum, que dois-je faire? cidéré

4 réponses

jlpjlp
Messages postés
51571
Date d'inscription
vendredi 18 mai 2007
Statut
Contributeur sécurité
Dernière intervention
3 mai 2022
5 046
31 oct. 2008 à 11:43
slt il est ou le rapport lop?

colle le ici puis

mets un rapport hijakhcits

https://www.malekal.com/tutoriel-hijackthis/
0
Bonsoir,
J'envoie un premier rapport hijsalut, voici le rapport


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:40:47, on 30/10/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: NormalHijackThis 2.0.2

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\system32\cisvc.exe
C:\Program Files\Controle Parental\bin\optproxy.exe
C:\WINDOWS\system32\PSIService.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\PROGRA~1\Yahoo!\MESSEN~1\ymsgr_tray.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\cidaemon.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\DOCUME~1\CORNLI~1\LOCALS~1\Temp\Fichiers Internet temporaires\Content.IE5\Q2ZASO8W\HiJackThis[1].exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [SiSUSBRG] C:\WINDOWS\SiSUSBrg.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [RoxioEngineUtility] "C:\Program Files\Fichiers communs\Roxio Shared\System\EngUtil.exe"
O4 - HKLM\..\Run: [RoxioDragToDisc] "C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Online chin internet bolt] C:\Documents and Settings\All Users\Application Data\Bags Plus Online Chin\user loud.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [OM_Monitor] C:\Program Files\OLYMPUS\OLYMPUS Master\Monitor.exe
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-21-1801674531-299502267-682003330-1004\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'User')
O4 - HKUS\S-1-5-21-1801674531-299502267-682003330-1004\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe (User 'User')
O4 - HKUS\S-1-5-21-1801674531-299502267-682003330-1004\..\Run: [Gluelite] C:\DOCUME~1\User\APPLIC~1\MAGSAN~1\THUNKEXIT.exe (User 'User')
O4 - HKUS\S-1-5-21-1801674531-299502267-682003330-1004\..\Run: [ares] "C:\Program Files\Ares\Ares.exe" -h (User 'User')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Gamma Loader.exe.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: EPSON Status Monitor 3 Environment Check.lnk = C:\WINDOWS\system32\spool\drivers\w32x86\3\E_SRCV03.EXE
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {C9386579-3C0F-4713-82C6-5BA8088C7C8D} (Windows Live SkyDrive Upload Tool) - http://secure.shared.live.com/
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Google Desktop Manager 5.7.805.16405 (GoogleDesktopManager-051608-133132) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Control Parental (OPTENET_FILTER) - Contrôle Parental - C:\Program Files\Controle Parental\bin\optproxy.exe
O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe
O23 - Service: DelFax PRO (wfxsvc) - Symantec Corporation - C:\WINDOWS\system32\WFXSVC.EXE
acthis et le lop suit
0
voici le rapport lop



--------------------\\ Lop S&D 4.2.4-8 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Sempron(tm) 2500+ )
BIOS : Version 1.00
USER : Cornélia Nobili ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 081030-0] 4.8.1229 (Activated)
C:\ (Local Disk) - NTFS - Total:38 Go (Free:5 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 27-10-2008|09:15 )
Option : [1] ( 31/10/2008| 9:10 )

--------------------\\ Listing des dossiers dans APPLIC~1

[11/05/2008|11:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[22/08/2007|20:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
[01/09/2007|11:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[17/06/2007|18:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[21/01/2007|12:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\avg7
[12/09/2008|12:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Bags Plus Online Chin
[23/04/2005|14:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Coktel
[25/04/2008|12:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Corel
[04/05/2006|18:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[10/10/2008|11:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[14/10/2008|11:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[12/06/2007|19:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[26/10/2007|10:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[12/12/2005|21:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[31/10/2008|07:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[09/05/2007|12:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[13/01/2007|13:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[09/07/2008|10:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo!

[09/09/2006|15:20] C:\DOCUME~1\CORNLI~1\APPLIC~1\3M
[12/07/2008|10:17] C:\DOCUME~1\CORNLI~1\APPLIC~1\Adobe
[19/11/2007|17:12] C:\DOCUME~1\CORNLI~1\APPLIC~1\Apple Computer
[20/01/2007|14:31] C:\DOCUME~1\CORNLI~1\APPLIC~1\AVG7
[25/04/2008|17:41] C:\DOCUME~1\CORNLI~1\APPLIC~1\Corel
[10/06/2006|13:26] C:\DOCUME~1\CORNLI~1\APPLIC~1\CyberLink
[28/01/2007|21:26] C:\DOCUME~1\CORNLI~1\APPLIC~1\F-Secure
[09/05/2007|13:09] C:\DOCUME~1\CORNLI~1\APPLIC~1\Google
[11/09/2006|12:17] C:\DOCUME~1\CORNLI~1\APPLIC~1\Help
[06/05/2005|13:51] C:\DOCUME~1\CORNLI~1\APPLIC~1\Identities
[22/01/2007|12:38] C:\DOCUME~1\CORNLI~1\APPLIC~1\ispnews
[17/07/2008|19:38] C:\DOCUME~1\CORNLI~1\APPLIC~1\Macromedia
[14/10/2008|11:52] C:\DOCUME~1\CORNLI~1\APPLIC~1\Malwarebytes
[27/09/2008|16:29] C:\DOCUME~1\CORNLI~1\APPLIC~1\Microsoft
[03/06/2007|14:30] C:\DOCUME~1\CORNLI~1\APPLIC~1\Microsoft Web Folders
[11/06/2006|20:29] C:\DOCUME~1\CORNLI~1\APPLIC~1\OLYMPUS
[11/06/2007|12:47] C:\DOCUME~1\CORNLI~1\APPLIC~1\OpenOffice.org2
[15/02/2007|22:22] C:\DOCUME~1\CORNLI~1\APPLIC~1\PEX
[02/09/2008|18:25] C:\DOCUME~1\CORNLI~1\APPLIC~1\Real
[21/05/2007|21:10] C:\DOCUME~1\CORNLI~1\APPLIC~1\Sony Ericsson
[16/01/2007|17:23] C:\DOCUME~1\CORNLI~1\APPLIC~1\Sun
[21/05/2007|21:13] C:\DOCUME~1\CORNLI~1\APPLIC~1\Teleca
[01/03/2008|13:21] C:\DOCUME~1\CORNLI~1\APPLIC~1\Yahoo!

[08/04/2005|11:39] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[13/01/2007|18:17] C:\DOCUME~1\LOCALS~1\APPLIC~1\AVG7
[27/02/2007|18:19] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[21/01/2007|12:41] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft


--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[12/09/2008 22:22][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[24/10/2008 14:36][--a------] C:\WINDOWS\tasks\Norton Security Scan.job
[31/10/2008 07:57][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 13:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[15/01/2007|19:31] C:\Program Files\3M
[17/08/2008|12:04] C:\Program Files\Adobe
[16/06/2007|13:24] C:\Program Files\Agfa
[17/09/2007|09:41] C:\Program Files\Ahead
[30/06/2007|12:03] C:\Program Files\Alwil Software
[30/06/2007|11:27] C:\Program Files\AntivirusFirewall
[27/09/2007|17:14] C:\Program Files\Apple Software Update
[31/05/2008|17:51] C:\Program Files\Ares
[16/01/2007|17:40] C:\Program Files\AurynQuest
[08/04/2005|11:48] C:\Program Files\C-Media 3D Audio
[15/10/2006|18:38] C:\Program Files\Common Files
[08/04/2005|11:35] C:\Program Files\ComPlus Applications
[13/01/2007|11:54] C:\Program Files\Controle Parental
[28/04/2008|13:44] C:\Program Files\Corel
[04/05/2006|18:09] C:\Program Files\CyberLink
[14/12/2007|19:30] C:\Program Files\Dictionnaire
[28/04/2005|18:47] C:\Program Files\DigitalImagingDevice
[29/04/2005|10:08] C:\Program Files\directx
[29/02/2008|16:27] C:\Program Files\DivX
[16/05/2005|18:13] C:\Program Files\Eidos Interactive
[03/05/2005|17:02] C:\Program Files\Empire Interactive
[11/05/2008|11:33] C:\Program Files\Fichiers communs
[10/10/2008|16:30] C:\Program Files\Google
[18/05/2008|10:30] C:\Program Files\IGN
[10/05/2008|19:34] C:\Program Files\InstallShield Installation Information
[16/10/2008|09:10] C:\Program Files\Internet Explorer
[13/01/2007|11:52] C:\Program Files\Inventel
[10/05/2008|19:37] C:\Program Files\iPod
[23/08/2008|12:04] C:\Program Files\Java
[08/04/2007|10:35] C:\Program Files\JawsSystems
[15/01/2007|18:10] C:\Program Files\Jeune Styliste
[04/05/2005|14:54] C:\Program Files\Lasermedia
[25/10/2008|18:50] C:\Program Files\LimeWire
[12/09/2008|12:55] C:\Program Files\Magsanticool
[29/10/2008|17:19] C:\Program Files\Malwarebytes' Anti-Malware
[12/05/2006|17:59] C:\Program Files\Maxis
[18/09/2008|09:08] C:\Program Files\Messenger
[12/09/2008|12:54] C:\Program Files\Messenger Plus! Live
[15/06/2008|20:01] C:\Program Files\Microsoft ActiveSync
[03/06/2007|14:37] C:\Program Files\microsoft frontpage
[26/10/2007|10:31] C:\Program Files\Microsoft Office
[26/10/2007|10:31] C:\Program Files\Microsoft.NET
[18/09/2008|09:00] C:\Program Files\Movie Maker
[25/05/2008|10:29] C:\Program Files\Mozilla Firefox
[13/01/2007|13:58] C:\Program Files\MSN
[08/04/2005|11:35] C:\Program Files\MSN Gaming Zone
[18/09/2008|09:47] C:\Program Files\MSN Messenger
[15/01/2007|16:10] C:\Program Files\MSXML 4.0
[18/09/2008|08:48] C:\Program Files\NetMeeting
[28/04/2005|18:50] C:\Program Files\NewSoft
[16/10/2006|18:43] C:\Program Files\Norton CleanSweep
[15/01/2007|18:14] C:\Program Files\Norton CrashGuard
[24/10/2008|14:00] C:\Program Files\Norton Security Scan
[15/01/2007|18:15] C:\Program Files\Norton Web Services
[08/04/2005|11:35] C:\Program Files\Online Services
[03/06/2007|14:48] C:\Program Files\OpenOffice.org 2.1
[16/06/2007|14:08] C:\Program Files\OpenOffice.org 2.2
[18/09/2008|08:47] C:\Program Files\Outlook Express
[29/02/2008|18:21] C:\Program Files\QuickTime
[13/01/2007|14:12] C:\Program Files\Real
[08/04/2005|11:52] C:\Program Files\Roxio
[08/04/2005|11:37] C:\Program Files\Services en ligne
[03/07/2006|21:44] C:\Program Files\Sierra On-Line
[08/04/2005|11:49] C:\Program Files\SiSLan
[25/05/2008|10:30] C:\Program Files\SpecialK
[31/10/2008|07:57] C:\Program Files\Spybot - Search & Destroy
[15/01/2007|18:14] C:\Program Files\Symantec
[07/10/2008|15:10] C:\Program Files\TeaTimer (Spybot - Search & Destroy)
[02/07/2006|17:16] C:\Program Files\The Adventure Company
[15/01/2007|18:36] C:\Program Files\Tropico
[30/08/2005|22:49] C:\Program Files\Ubi Soft
[08/04/2005|11:45] C:\Program Files\Uninstall Information
[25/05/2008|10:33] C:\Program Files\VSO
[13/01/2007|12:08] C:\Program Files\Wanadoo
[12/06/2007|18:43] C:\Program Files\Windows Live
[31/05/2008|10:31] C:\Program Files\Windows Live SkyDrive
[25/02/2007|20:08] C:\Program Files\Windows Media Connect 2
[18/09/2008|08:48] C:\Program Files\Windows Media Player
[26/10/2007|10:31] C:\Program Files\Windows Messaging
[18/09/2008|08:47] C:\Program Files\Windows NT
[08/04/2005|11:37] C:\Program Files\WindowsUpdate
[08/04/2007|10:31] C:\Program Files\WinRAR
[21/10/2006|21:41] C:\Program Files\WinZip
[08/04/2005|11:39] C:\Program Files\xerox
[02/05/2007|19:11] C:\Program Files\Xvid
[09/08/2008|22:45] C:\Program Files\Yahoo!

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[17/04/2008|21:56] C:\Program Files\Fichiers communs\Adobe
[11/05/2008|11:33] C:\Program Files\Fichiers communs\Adobe AIR
[01/09/2007|11:48] C:\Program Files\Fichiers communs\Apple
[03/06/2007|14:32] C:\Program Files\Fichiers communs\Designer
[29/04/2005|11:49] C:\Program Files\Fichiers communs\EPSON
[16/06/2007|14:04] C:\Program Files\Fichiers communs\FotoWire
[02/04/2006|19:26] C:\Program Files\Fichiers communs\InstallShield
[19/01/2007|19:32] C:\Program Files\Fichiers communs\Java
[30/10/2008|19:50] C:\Program Files\Fichiers communs\Microsoft Shared
[08/04/2005|11:36] C:\Program Files\Fichiers communs\MSSoap
[22/08/2007|20:44] C:\Program Files\Fichiers communs\Nero
[08/04/2005|13:28] C:\Program Files\Fichiers communs\ODBC
[07/05/2008|19:49] C:\Program Files\Fichiers communs\Real
[08/04/2005|11:52] C:\Program Files\Fichiers communs\Roxio Shared
[08/04/2005|11:36] C:\Program Files\Fichiers communs\Services
[08/04/2005|13:28] C:\Program Files\Fichiers communs\SpeechEngines
[01/08/2006|18:36] C:\Program Files\Fichiers communs\SWF Studio
[24/10/2008|14:01] C:\Program Files\Fichiers communs\Symantec Shared
[18/09/2008|08:47] C:\Program Files\Fichiers communs\System
[07/05/2008|19:50] C:\Program Files\Fichiers communs\xing shared

--------------------\\ Process

( 41 Processes )

IEXPLORE.EXE ~ [PID:2176]
iexplore.exe ~ [PID:4092]
iexplore.exe ~ [PID:1560]

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\DOCUME~1\ALLUSE~1\APPLIC~1\Bags Plus Online Chin
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Bags Plus Online Chin\user loud.exe

--------------------\\ Verification du Registre

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Online chin internet bolt"="C:\\Documents and Settings\\All Users\\Application Data\\Bags Plus Online Chin\\user loud.exe"

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-10-31 09:12:25
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:629][D:43]-> C:\DOCUME~1\CORNLI~1\LOCALS~1\Temp
[F:1][D:0]-> C:\DOCUME~1\CORNLI~1\Cookies
[F:2][D:16]-> C:\DOCUME~1\CORNLI~1\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 31/10/2008| 9:14 - Option : [1]

--------------------\\ Fin du rapport a 9:14:14
0
voici le rapport lop



--------------------\\ Lop S&D 4.2.4-8 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Sempron(tm) 2500+ )
BIOS : Version 1.00
USER : Cornélia Nobili ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 081030-0] 4.8.1229 (Activated)
C:\ (Local Disk) - NTFS - Total:38 Go (Free:5 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 27-10-2008|09:15 )
Option : [1] ( 31/10/2008| 9:10 )

--------------------\\ Listing des dossiers dans APPLIC~1

[11/05/2008|11:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[22/08/2007|20:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
[01/09/2007|11:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[17/06/2007|18:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[21/01/2007|12:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\avg7
[12/09/2008|12:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Bags Plus Online Chin
[23/04/2005|14:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Coktel
[25/04/2008|12:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Corel
[04/05/2006|18:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[10/10/2008|11:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[14/10/2008|11:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[12/06/2007|19:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[26/10/2007|10:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[12/12/2005|21:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[31/10/2008|07:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[09/05/2007|12:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[13/01/2007|13:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[09/07/2008|10:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo!

[09/09/2006|15:20] C:\DOCUME~1\CORNLI~1\APPLIC~1\3M
[12/07/2008|10:17] C:\DOCUME~1\CORNLI~1\APPLIC~1\Adobe
[19/11/2007|17:12] C:\DOCUME~1\CORNLI~1\APPLIC~1\Apple Computer
[20/01/2007|14:31] C:\DOCUME~1\CORNLI~1\APPLIC~1\AVG7
[25/04/2008|17:41] C:\DOCUME~1\CORNLI~1\APPLIC~1\Corel
[10/06/2006|13:26] C:\DOCUME~1\CORNLI~1\APPLIC~1\CyberLink
[28/01/2007|21:26] C:\DOCUME~1\CORNLI~1\APPLIC~1\F-Secure
[09/05/2007|13:09] C:\DOCUME~1\CORNLI~1\APPLIC~1\Google
[11/09/2006|12:17] C:\DOCUME~1\CORNLI~1\APPLIC~1\Help
[06/05/2005|13:51] C:\DOCUME~1\CORNLI~1\APPLIC~1\Identities
[22/01/2007|12:38] C:\DOCUME~1\CORNLI~1\APPLIC~1\ispnews
[17/07/2008|19:38] C:\DOCUME~1\CORNLI~1\APPLIC~1\Macromedia
[14/10/2008|11:52] C:\DOCUME~1\CORNLI~1\APPLIC~1\Malwarebytes
[27/09/2008|16:29] C:\DOCUME~1\CORNLI~1\APPLIC~1\Microsoft
[03/06/2007|14:30] C:\DOCUME~1\CORNLI~1\APPLIC~1\Microsoft Web Folders
[11/06/2006|20:29] C:\DOCUME~1\CORNLI~1\APPLIC~1\OLYMPUS
[11/06/2007|12:47] C:\DOCUME~1\CORNLI~1\APPLIC~1\OpenOffice.org2
[15/02/2007|22:22] C:\DOCUME~1\CORNLI~1\APPLIC~1\PEX
[02/09/2008|18:25] C:\DOCUME~1\CORNLI~1\APPLIC~1\Real
[21/05/2007|21:10] C:\DOCUME~1\CORNLI~1\APPLIC~1\Sony Ericsson
[16/01/2007|17:23] C:\DOCUME~1\CORNLI~1\APPLIC~1\Sun
[21/05/2007|21:13] C:\DOCUME~1\CORNLI~1\APPLIC~1\Teleca
[01/03/2008|13:21] C:\DOCUME~1\CORNLI~1\APPLIC~1\Yahoo!

[08/04/2005|11:39] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[13/01/2007|18:17] C:\DOCUME~1\LOCALS~1\APPLIC~1\AVG7
[27/02/2007|18:19] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[21/01/2007|12:41] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft


--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[12/09/2008 22:22][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[24/10/2008 14:36][--a------] C:\WINDOWS\tasks\Norton Security Scan.job
[31/10/2008 07:57][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 13:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[15/01/2007|19:31] C:\Program Files\3M
[17/08/2008|12:04] C:\Program Files\Adobe
[16/06/2007|13:24] C:\Program Files\Agfa
[17/09/2007|09:41] C:\Program Files\Ahead
[30/06/2007|12:03] C:\Program Files\Alwil Software
[30/06/2007|11:27] C:\Program Files\AntivirusFirewall
[27/09/2007|17:14] C:\Program Files\Apple Software Update
[31/05/2008|17:51] C:\Program Files\Ares
[16/01/2007|17:40] C:\Program Files\AurynQuest
[08/04/2005|11:48] C:\Program Files\C-Media 3D Audio
[15/10/2006|18:38] C:\Program Files\Common Files
[08/04/2005|11:35] C:\Program Files\ComPlus Applications
[13/01/2007|11:54] C:\Program Files\Controle Parental
[28/04/2008|13:44] C:\Program Files\Corel
[04/05/2006|18:09] C:\Program Files\CyberLink
[14/12/2007|19:30] C:\Program Files\Dictionnaire
[28/04/2005|18:47] C:\Program Files\DigitalImagingDevice
[29/04/2005|10:08] C:\Program Files\directx
[29/02/2008|16:27] C:\Program Files\DivX
[16/05/2005|18:13] C:\Program Files\Eidos Interactive
[03/05/2005|17:02] C:\Program Files\Empire Interactive
[11/05/2008|11:33] C:\Program Files\Fichiers communs
[10/10/2008|16:30] C:\Program Files\Google
[18/05/2008|10:30] C:\Program Files\IGN
[10/05/2008|19:34] C:\Program Files\InstallShield Installation Information
[16/10/2008|09:10] C:\Program Files\Internet Explorer
[13/01/2007|11:52] C:\Program Files\Inventel
[10/05/2008|19:37] C:\Program Files\iPod
[23/08/2008|12:04] C:\Program Files\Java
[08/04/2007|10:35] C:\Program Files\JawsSystems
[15/01/2007|18:10] C:\Program Files\Jeune Styliste
[04/05/2005|14:54] C:\Program Files\Lasermedia
[25/10/2008|18:50] C:\Program Files\LimeWire
[12/09/2008|12:55] C:\Program Files\Magsanticool
[29/10/2008|17:19] C:\Program Files\Malwarebytes' Anti-Malware
[12/05/2006|17:59] C:\Program Files\Maxis
[18/09/2008|09:08] C:\Program Files\Messenger
[12/09/2008|12:54] C:\Program Files\Messenger Plus! Live
[15/06/2008|20:01] C:\Program Files\Microsoft ActiveSync
[03/06/2007|14:37] C:\Program Files\microsoft frontpage
[26/10/2007|10:31] C:\Program Files\Microsoft Office
[26/10/2007|10:31] C:\Program Files\Microsoft.NET
[18/09/2008|09:00] C:\Program Files\Movie Maker
[25/05/2008|10:29] C:\Program Files\Mozilla Firefox
[13/01/2007|13:58] C:\Program Files\MSN
[08/04/2005|11:35] C:\Program Files\MSN Gaming Zone
[18/09/2008|09:47] C:\Program Files\MSN Messenger
[15/01/2007|16:10] C:\Program Files\MSXML 4.0
[18/09/2008|08:48] C:\Program Files\NetMeeting
[28/04/2005|18:50] C:\Program Files\NewSoft
[16/10/2006|18:43] C:\Program Files\Norton CleanSweep
[15/01/2007|18:14] C:\Program Files\Norton CrashGuard
[24/10/2008|14:00] C:\Program Files\Norton Security Scan
[15/01/2007|18:15] C:\Program Files\Norton Web Services
[08/04/2005|11:35] C:\Program Files\Online Services
[03/06/2007|14:48] C:\Program Files\OpenOffice.org 2.1
[16/06/2007|14:08] C:\Program Files\OpenOffice.org 2.2
[18/09/2008|08:47] C:\Program Files\Outlook Express
[29/02/2008|18:21] C:\Program Files\QuickTime
[13/01/2007|14:12] C:\Program Files\Real
[08/04/2005|11:52] C:\Program Files\Roxio
[08/04/2005|11:37] C:\Program Files\Services en ligne
[03/07/2006|21:44] C:\Program Files\Sierra On-Line
[08/04/2005|11:49] C:\Program Files\SiSLan
[25/05/2008|10:30] C:\Program Files\SpecialK
[31/10/2008|07:57] C:\Program Files\Spybot - Search & Destroy
[15/01/2007|18:14] C:\Program Files\Symantec
[07/10/2008|15:10] C:\Program Files\TeaTimer (Spybot - Search & Destroy)
[02/07/2006|17:16] C:\Program Files\The Adventure Company
[15/01/2007|18:36] C:\Program Files\Tropico
[30/08/2005|22:49] C:\Program Files\Ubi Soft
[08/04/2005|11:45] C:\Program Files\Uninstall Information
[25/05/2008|10:33] C:\Program Files\VSO
[13/01/2007|12:08] C:\Program Files\Wanadoo
[12/06/2007|18:43] C:\Program Files\Windows Live
[31/05/2008|10:31] C:\Program Files\Windows Live SkyDrive
[25/02/2007|20:08] C:\Program Files\Windows Media Connect 2
[18/09/2008|08:48] C:\Program Files\Windows Media Player
[26/10/2007|10:31] C:\Program Files\Windows Messaging
[18/09/2008|08:47] C:\Program Files\Windows NT
[08/04/2005|11:37] C:\Program Files\WindowsUpdate
[08/04/2007|10:31] C:\Program Files\WinRAR
[21/10/2006|21:41] C:\Program Files\WinZip
[08/04/2005|11:39] C:\Program Files\xerox
[02/05/2007|19:11] C:\Program Files\Xvid
[09/08/2008|22:45] C:\Program Files\Yahoo!

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[17/04/2008|21:56] C:\Program Files\Fichiers communs\Adobe
[11/05/2008|11:33] C:\Program Files\Fichiers communs\Adobe AIR
[01/09/2007|11:48] C:\Program Files\Fichiers communs\Apple
[03/06/2007|14:32] C:\Program Files\Fichiers communs\Designer
[29/04/2005|11:49] C:\Program Files\Fichiers communs\EPSON
[16/06/2007|14:04] C:\Program Files\Fichiers communs\FotoWire
[02/04/2006|19:26] C:\Program Files\Fichiers communs\InstallShield
[19/01/2007|19:32] C:\Program Files\Fichiers communs\Java
[30/10/2008|19:50] C:\Program Files\Fichiers communs\Microsoft Shared
[08/04/2005|11:36] C:\Program Files\Fichiers communs\MSSoap
[22/08/2007|20:44] C:\Program Files\Fichiers communs\Nero
[08/04/2005|13:28] C:\Program Files\Fichiers communs\ODBC
[07/05/2008|19:49] C:\Program Files\Fichiers communs\Real
[08/04/2005|11:52] C:\Program Files\Fichiers communs\Roxio Shared
[08/04/2005|11:36] C:\Program Files\Fichiers communs\Services
[08/04/2005|13:28] C:\Program Files\Fichiers communs\SpeechEngines
[01/08/2006|18:36] C:\Program Files\Fichiers communs\SWF Studio
[24/10/2008|14:01] C:\Program Files\Fichiers communs\Symantec Shared
[18/09/2008|08:47] C:\Program Files\Fichiers communs\System
[07/05/2008|19:50] C:\Program Files\Fichiers communs\xing shared

--------------------\\ Process

( 41 Processes )

IEXPLORE.EXE ~ [PID:2176]
iexplore.exe ~ [PID:4092]
iexplore.exe ~ [PID:1560]

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\DOCUME~1\ALLUSE~1\APPLIC~1\Bags Plus Online Chin
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Bags Plus Online Chin\user loud.exe

--------------------\\ Verification du Registre

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Online chin internet bolt"="C:\\Documents and Settings\\All Users\\Application Data\\Bags Plus Online Chin\\user loud.exe"

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-10-31 09:12:25
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:629][D:43]-> C:\DOCUME~1\CORNLI~1\LOCALS~1\Temp
[F:1][D:0]-> C:\DOCUME~1\CORNLI~1\Cookies
[F:2][D:16]-> C:\DOCUME~1\CORNLI~1\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 31/10/2008| 9:14 - Option : [1]

--------------------\\ Fin du rapport a 9:14:14
0
jlpjlp
Messages postés
51571
Date d'inscription
vendredi 18 mai 2007
Statut
Contributeur sécurité
Dernière intervention
3 mai 2022
5 046
31 oct. 2008 à 17:49
---> Télécharge Lop S&D sur ton Bureau
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
---> Double-clique dessus pour lancer l'installation
---> Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
---> Séléctionne la langue souhaitée, puis choisis l'option 1 (Recherche)
---> Patiente jusqu'à la fin du scan
---> Poste le rapport généré (C:\lopR.txt)

(Si le Bureau ne réapparait pas, presse Ctrl+Alt+Suppr, Onglet Fichier, Nouvelle tâche, tape explorer.exe et valide)

Si tu as un problème pour utiliser Lop S&D, regarde dans le tutorial :
http://bibou0007.com/outils-specifiques-f78/tutorial-lop-sd-t956.htm#11431
0
je viens d'envoyer le rapport lop
0
jlpjlp
Messages postés
51571
Date d'inscription
vendredi 18 mai 2007
Statut
Contributeur sécurité
Dernière intervention
3 mai 2022
5 046
31 oct. 2008 à 18:09
refais lop sd choisi l'option 2 et colle le rapport et dis si encore des pubs
0
Bonsoir,
Après cette manip lop option 2, je n'ai plus de fenêtres cid. Je je remercie beaucoup. Bravo. cidéré.
0
jlpjlp
Messages postés
51571
Date d'inscription
vendredi 18 mai 2007
Statut
Contributeur sécurité
Dernière intervention
3 mai 2022
5 046
31 oct. 2008 à 18:37
ok

tu peux virer les deux logiciels

bonne suite
0