Sujet Précédent Sujet Suivant

Virus trojan probleme deja mis scan

Résolu/Fermé
tyrian70 Messages postés 55 Date d'inscription samedi 7 juillet 2007 Statut Membre Dernière intervention 9 octobre 2011 - 13 sept. 2008 à 20:40
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 - 16 sept. 2008 à 21:19
Bonjour,
je psoe un message sur le forum pour vous demande de l'aide depuis une semaine j'ai des trojan sur mon ordi, j'ai fait un scan avec mon anti virus avast mise a jour et essaye de les effacer ca n'as pas marcher j'ai essaye de trouve les fichier poru les effacer je n'est pas reussi alors je vous met ci desous le scan que j'ai avec hijackthis merci:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:40:10, on 13/09/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\a-squared Free\a2service.exe
C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlservr.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\system32\svchost.exe
c:\program files\pinnacle\shared files\programs\mediaserver\pmshost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Phoenix Technologies Ltd\RecoverPro_XP\VBPTASK.EXE
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\Pinnacle\Shared Files\Programs\MediaCenterService\PMC.Service.Main.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\Pinnacle\Shared Files\Programs\Remote\Remoterm.exe
C:\WINDOWS\system32\RunDll32.exe
C:\WINDOWS\VM_STI.EXE
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
C:\Program Files\TF1Vision\TF1vision.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
C:\Program Files\RALINK\RT2400 Wireless LAN Card\Installer\WINXP\RaConfig.exe
C:\Program Files\Philips\SPC 200NC PC Camera\TrayMin200.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
C:\PROGRA~1\FICHIE~1\Nokia\MPAPI\MPAPI3s.exe
C:\Program Files\Fichiers communs\PCSuite\Services\ServiceLayer.exe
C:\Program Files\Wanadoo\EspaceWanadoo.exe
C:\Program Files\Wanadoo\ComComp.exe
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\Program Files\Wanadoo\Watch.exe
C:\Program Files\Fichiers communs\Teleca Shared\Generic.exe
C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\AcroRd32.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Documents and Settings\Michel\Bureau\stng260.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [RestoreIT!] "C:\Program Files\Phoenix Technologies Ltd\RecoverPro_XP\VBPTASK.EXE" VBStart
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [Raccourci vers la page des propriétés de High Definition Audio] HDAShCut.exe
O4 - HKLM\..\Run: [PMCS] "C:\Program Files\Pinnacle\Shared Files\Programs\MediaCenterService\PMC.Service.Main.exe" -host -clearDebug
O4 - HKLM\..\Run: [PMCRemote] C:\Program Files\Pinnacle\Shared Files\Programs\Remote\Remoterm.exe
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe -CheckReg
O4 - HKLM\..\Run: [fenaffiche] C:\Program Files\FenAffiche\FenUnika.exe
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [BigDogPath] C:\WINDOWS\VM_STI.EXE Philips SPC 200NC PC Camera
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [e-TF1] C:\Program Files\TF1Vision\TF1vision.exe
O4 - HKLM\..\Run: [Stupid Data Dart Wave] C:\Documents and Settings\All Users\Application Data\flag ace stupid data\2 size.exe
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [DWQueuedReporting] "C:\PROGRA~1\FICHIE~1\MICROS~1\DW\dwtrig20.exe" -t
O4 - HKCU\..\Run: [Veoh] "C:\Program Files\Veoh Networks\Veoh\VeohClient.exe" /VeohHide
O4 - HKCU\..\Run: [PcSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: wkcalrem.LNK = C:\Program Files\Fichiers communs\Microsoft Shared\Works Shared\WkCalRem.exe
O4 - Global Startup: AutorunsDisabled
O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Raconfig.lnk = C:\Program Files\RALINK\RT2400 Wireless LAN Card\Installer\WINXP\RaConfig.exe
O4 - Global Startup: TrayMin300.exe.lnk = ?
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {029FDBA6-3547-11D7-AA4C-0050BF051A00} (Rawflow ICD Client) - http://s.tf1.fr/mmdia/static/rawflow/clients/5.3.1.0/Rawflow.cab
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - https://www.touslesdrivers.com/index.php?v_page=29
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {B79A53C0-1DAC-4636-BACE-FD086A7A79BF} (AdSignerLCContrl Class) - https://static.impots.gouv.fr/tdir/static/adpform/AdSignerADP.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{690CFFBB-C519-4E44-B422-1C0A2ACB264D}: NameServer = 81.253.149.1 80.10.246.3
O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: Pinnacle Systems tvtv Spooler (EpgSpooler) - - c:\progra~1\pinnacle\mediac~1\pmctvt~1.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: Pinnacle Systems Media Service (PinnacleSys.MediaServer) - Pinnacle Systems - c:\program files\pinnacle\shared files\programs\mediaserver\pmshost.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: PsShutdown (PsShutdownSvc) - Systems Internals - C:\WINDOWS\System32\PSSDNSVC.EXE
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Fichiers communs\PCSuite\Services\ServiceLayer.exe
A voir également:

22 réponses

  • 1
  • 2
Réponse 1 / 22
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 5 040
13 sept. 2008 à 20:44
slt

analyse ce fichier sur virus tolal: et colles le rapport:

C:\Documents and Settings\Michel\Bureau\stng260.exe


____________


scan avec
MalwareByte's Anti-Malware et vire ce qui est trouvé et colle le rapport

https://www.malekal.com/tutoriel-malwarebyte-anti-malware/
0
Réponse 2 / 22
hooligan63780 Messages postés 835 Date d'inscription lundi 25 août 2008 Statut Membre Dernière intervention 29 novembre 2008 5
13 sept. 2008 à 20:45
salut
télécharge combofix (par sUBs) à cette adresse :

(c est le numéro 5 en bas de la page) : https://www.androidworld.fr/

et enregistre le sur le Bureau.


désactive tes protections et ferme toutes tes applications(antivirus, parefeu, garde en temps réel de l'antispyware)


Voici un tuto pour bien l'installer et savoir l utiliser : https://www.androidworld.fr/


ensuite envois le rapport et refais un nouveau rapport hijackthis stp
0
Réponse 3 / 22
tyrian70 Messages postés 55 Date d'inscription samedi 7 juillet 2007 Statut Membre Dernière intervention 9 octobre 2011
13 sept. 2008 à 20:49
Pour la premeire reponse en seul resultat j'ai obtenu:
0 bytes size received / Se ha recibido un archivo vacio
Et pour la deuxième je mis met des maintenant. Merci pour vos reponses
0
Réponse 4 / 22
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 5 040
13 sept. 2008 à 20:55
ok
on attends malwarebyte

a plus
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 22
tyrian70 Messages postés 55 Date d'inscription samedi 7 juillet 2007 Statut Membre Dernière intervention 9 octobre 2011
13 sept. 2008 à 21:42
Ne perder pas patient ça prend du temp.
0
Réponse 6 / 22
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 5 040
13 sept. 2008 à 22:10
ok

ensuite fais ceci:


télécharge OTMoveIt
http://download.bleepingcomputer.com/oldtimer/OTMoveIt2.exe (de Old_Timer) sur ton Bureau. Ou sur https://www.luanagames.com/index.fr.html
double-clique sur OTMoveIt.exe pour le lancer.
copie la liste qui se trouve en citation ci-dessous,
et colle-la dans le cadre de gauche de OTMoveIt :Paste List of Files/Folders to be moved.

Citation :

C:\Documents and Settings\Michel\Bureau\stng260.exe


clique sur MoveIt! pour lancer la suppression.
le résultat apparaitra dans le cadre "Results".
clique sur Exit pour fermer.
poste le rapport situé dans C:\_OTMoveIt\MovedFiles.

il te sera peut-être demander de redémarrer le pc pour achever la suppression.si c'est le cas accepte par Yes.
0
Réponse 7 / 22
tyrian70 Messages postés 55 Date d'inscription samedi 7 juillet 2007 Statut Membre Dernière intervention 9 octobre 2011
13 sept. 2008 à 22:20
Voila le san de OTMovelt:

Created on 09/13/2008 22:17:28
File/Folder C:\avenger.zip not found.
File/Folder C:\avenger.exe not found.
File/Folder C:\Avenger not found.
File/Folder C:\avenger.txt not found.
File/Folder C:\bfu.zip not found.
File/Folder C:\BFU not found.
File/Folder C:\combofix.exe not found.
File/Folder C:\Combo-Fix.sys not found.
File/Folder C:\ComboFix not found.
File/Folder C:\erdnt\subs not found.
File/Folder C:\QooBox not found.
C:\ComboFix*.txt moved successfully.
C:\ComboFix*.txt moved successfully.
File move failed. C:\Documents and Settings\Michel\Desktop\ComboFix*.txt scheduled to be moved on reboot.
C:\WINDOWS\ComboFix*.txt moved successfully.
C:\WINDOWS\system32\ComboFix*.txt moved successfully.
C:\WINDOWS\system32\drivers\ComboFix*.txt moved successfully.
Unable to delete service catchme.
File/Folder C:\catchme.exe not found.
File/Folder C:\fdsv.exe not found.
File/Folder C:\grep.exe not found.
File/Folder C:\moveex.exe not found.
File/Folder C:\nircmd.exe not found.
File/Folder C:\sed.exe not found.
File/Folder C:\swreg.exe not found.
File/Folder C:\Swsc.exe not found.
File/Folder C:\Swxcacls.exe not found.
File/Folder C:\VFind.exe not found.
File/Folder C:\WS2Fix.exe not found.
File/Folder C:\zip.exe not found.
File/Folder C:\tmp.reg not found.
File/Folder C:\dss.exe not found.
File/Folder C:\Deckard not found.
File/Folder C:\deljob.exe not found.
File/Folder C:\deljob not found.
File/Folder C:\logit.txt not found.
File/Folder C:\FindAWF.exe not found.
File/Folder C:\AWF.txt not found.
File/Folder C:\fixwareout.exe not found.
File/Folder C:\fixwareout not found.
File/Folder C:\fsbl.exe not found.
C:\fsbl*.log moved successfully.
C:\fsbl*.log moved successfully.
File move failed. C:\Documents and Settings\Michel\Desktop\fsbl*.log scheduled to be moved on reboot.
C:\WINDOWS\fsbl*.log moved successfully.
C:\WINDOWS\system32\fsbl*.log moved successfully.
C:\WINDOWS\system32\drivers\fsbl*.log moved successfully.
File/Folder C:\gmer.exe not found.
File/Folder C:\gmer.dll not found.
File/Folder C:\gmer.ini not found.
File/Folder C:\gmer.log not found.
File/Folder C:\gmer_uninstall.cmd not found.
File/Folder C:\gmer.sys not found.
Unable to delete service gmer.
File/Folder C:\haxfix.exe not found.
File/Folder C:\haxfix.txt not found.
File/Folder C:\killbox.exe not found.
File/Folder C:\!Killbox not found.
File/Folder C:\NoLop.exe not found.
File/Folder C:\NoLop.txt not found.
File/Folder C:\NoLopOLD.txt not found.
File/Folder C:\delete.bat not found.
File/Folder C:\OTMoveIt.exe not found.
File/Folder C:\OTMoveIt2.exe not found.
C:\_OTMoveIt\MovedFiles\09132008_221221 moved successfully.
C:\_OTMoveIt\MovedFiles moved successfully.
C:\_OTMoveIt moved successfully.
File/Folder C:\OTScanIt.exe not found.
File/Folder C:\OTScanIt not found.
File/Folder C:\_OTScanIt not found.
File/Folder C:\OTViewIt.exe not found.
File/Folder C:\OTViewIt.txt not found.
File/Folder C:\Extras.txt not found.
File/Folder C:\rustbfix.exe not found.
File/Folder C:\Rustbfix not found.
File/Folder C:\Runscanner.zip not found.
File/Folder C:\Runscanner.exe not found.
File/Folder C:\Runscanner.net not found.
C:\*.run moved successfully.
C:\*.run moved successfully.
File move failed. C:\Documents and Settings\Michel\Desktop\*.run scheduled to be moved on reboot.
C:\WINDOWS\*.run moved successfully.
C:\WINDOWS\system32\*.run moved successfully.
C:\WINDOWS\system32\drivers\*.run moved successfully.
File/Folder C:\Runscanner not found.
File/Folder C:\sdfix.exe not found.
File/Folder C:\SDFix not found.
File/Folder C:\Silent Runners.vbs not found.
File/Folder C:\SmitfraudFix.exe not found.
File/Folder C:\SmitfraudFix not found.
File/Folder C:\dumphive.exe not found.
File/Folder C:\iedfix.exe not found.
File/Folder C:\rapport.txt not found.
File/Folder C:\vacfix.exe not found.
File/Folder C:\vcclsid.exe not found.
File/Folder C:\404fix.exe not found.
File/Folder C:\SysInsite not found.
File/Folder C:\VundoFix.exe not found.
File/Folder C:\VundoFix Backups not found.
File/Folder C:\vundofix.txt not found.
File/Folder C:\vundofix.vft not found.
File/Folder C:\win32delfkil.exe not found.
File/Folder C:\_backupD not found.
File/Folder C:\windelf.txt not found.
File/Folder C:\winpfind.exe not found.
File/Folder C:\WinPfind not found.
File/Folder C:\WinPFind3u.exe not found.
File/Folder C:\WinPFind3u not found.
File/Folder C:\WinPFind35u.exe not found.
File/Folder C:\WinPFind35u not found.
C:\cleanup.txt moved successfully.
File move failed. C:\Documents and Settings\Michel\Bureau\OTMoveIt.exe scheduled to be moved on reboot.
0
Réponse 8 / 22
hooligan63780 Messages postés 835 Date d'inscription lundi 25 août 2008 Statut Membre Dernière intervention 29 novembre 2008 5
13 sept. 2008 à 22:26
t'avai vrément de la merde sur ton ordi mdr
0
Réponse 9 / 22
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 5 040
13 sept. 2008 à 22:30
le rapport malwarebyte?
0
Réponse 10 / 22
tyrian70 Messages postés 55 Date d'inscription samedi 7 juillet 2007 Statut Membre Dernière intervention 9 octobre 2011
13 sept. 2008 à 22:49
Voici le scan e MalwareByte's qui me semble bizzare avast ma afirme que des virus sont present.
Malwarebytes' Anti-Malware 1.28
Version de la base de données: 1134
Windows 5.1.2600 Service Pack 3

13/09/2008 22:47:45
mbam-log-2008-09-13 (22-47-45).txt

Type de recherche: Examen complet (C:\|)
Eléments examinés: 194988
Temps écoulé: 1 hour(s), 32 minute(s), 16 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)
0
Réponse 11 / 22
tyrian70 Messages postés 55 Date d'inscription samedi 7 juillet 2007 Statut Membre Dernière intervention 9 octobre 2011
13 sept. 2008 à 22:50
Hooligan si tu veux bien me dire ce qu'il me faut effacer pour qu'il y est moins de merde sur mon ordi j'en serait reconnaisant
0
Réponse 12 / 22
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 5 040
14 sept. 2008 à 10:34
colle le rapport d'un scan en ligne
avec un des suivants:


bitdefender en ligne :
http://www.bitdefender.fr/scan_fr/scan8/ie.html

Panda en ligne :
http://pandasoftware.fr

Kaspersky en ligne
https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
0
Réponse 13 / 22
tyrian70 Messages postés 55 Date d'inscription samedi 7 juillet 2007 Statut Membre Dernière intervention 9 octobre 2011
14 sept. 2008 à 11:49
Bonjour, je viens de me connecter je vais le mettre dans quelques minutes.
0
Réponse 14 / 22
tyrian70 Messages postés 55 Date d'inscription samedi 7 juillet 2007 Statut Membre Dernière intervention 9 octobre 2011
14 sept. 2008 à 13:40
Voile l scan fait avec bit defender en ligne:
BitDefender Online Scanner



Rapport d'analyse généré à: Sun, Sep 14, 2008 - 13:08:59





Voie d'analyse: C:\;D:\;







Statistiques

Temps
01:02:37

Fichiers
125165

Directoires
10543

Secteurs de boot
0

Archives
1921

Paquets programmes
8648




Résultats

Virus identifiés
1

Fichiers infectés
2

Fichiers suspects
0

Avertissements
0

Désinfectés
0

Fichiers effacés
2




Info sur les moteurs

Définition virus
1756957

Version des moteurs
AVCORE v1.7 (build 8314.19) (i386) (Sep 10 2008 19:37:42)

Analyse des plugins
16

Archive des plugins
43

Unpack des plugins
7

E-mail plugins
6

Système plugins
4




Paramètres d'analyse

Première action
Désinfecté

Seconde Action
Supprimé

Heuristique
Oui

Acceptez les avertissements
Oui

Extensions analysées
exe;com;dll;ocx;scr;bin;dat;386;vxd;sys;wdm;cla;class;ovl;ole;hlp;doc;dot;xls;ppt;wbk;wiz;pot;ppa;xla;xlt;vbs;vbe;mdb;rtf;htm;hta;html;xml;xtp;php;asp;js;shs;chm;lnk;pif;prc;url;smm;pfd;msi;ini;csc;cmd;bas;

Excludez les extensions


Analyse d'emails
Oui

Analyse des Archives
Oui

Analyser paquets programmes
Oui

Analyse des fichiers
Oui

Analyse de boot
Oui




Fichier analysé
Statut

C:\Program Files\Circle Developement\Uninstall.exe
Infecté par: Trojan.Swizzor.AAM

C:\Program Files\Circle Developement\Uninstall.exe
Supprimé

C:\System Volume Information\_restore{CCFB3A11-1B98-4648-B25B-AC06EDA79646}\RP286\A0242415.exe
Infecté par: Trojan.Swizzor.AAM

C:\System Volume Information\_restore{CCFB3A11-1B98-4648-B25B-AC06EDA79646}\RP286\A0242415.exe
0
Réponse 15 / 22
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 5 040
14 sept. 2008 à 20:16
tu télécharge Lop S&D.exe sur ton Bureau.https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2

* Double-clique dessus pour lancer l'installation
* Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
* Séléctionne la langue souhaitée , puis choisis l'option 1 (Recherche)
* Patiente jusqu'à la fin du scan
* Poste le rapport généré (C:\lopR.txt)
0
tyrian70 Messages postés 55 Date d'inscription samedi 7 juillet 2007 Statut Membre Dernière intervention 9 octobre 2011
14 sept. 2008 à 23:06
Je n'est pas réussi a poster le scan
donc je le refait et te l'en en mp merci.
0
Réponse 16 / 22
Sacabouffe Messages postés 9427 Date d'inscription dimanche 19 août 2007 Statut Membre Dernière intervention 29 mai 2009 1 832
14 sept. 2008 à 23:26
Salut
Voilà le scan :

"C:\Lop SD" ( MAJ : 08-09-2008|21:40 )
Option : [1] ( 14/09/2008|23:05 )

--------------------\\ Listing des dossiers dans APPLIC~1

[04/08/2005|12:05] C:\DOCUME~1\ADMINI~1\APPLIC~1\Adobe
[28/07/2005|12:05] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[31/01/2008|21:16] C:\DOCUME~1\ADMINI~1\APPLIC~1\Lavasoft
[28/07/2005|12:41] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft

[30/11/2006|00:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{C47EC3A5-D5BD-40F0-80E0-F8BEFF9D776F}
[06/11/2007|14:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[28/07/2005|12:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
[16/04/2007|23:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[25/05/2008|19:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ATI
[28/02/2007|17:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\avg7
[14/03/2007|15:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Bluetooth
[28/07/2005|12:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[28/06/2008|01:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Downloaded Installations
[02/09/2008|21:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\flag ace stupid data
[05/08/2006|10:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FreeTest
[27/06/2008|23:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[25/05/2008|19:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ma-config.com
[13/09/2008|20:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[28/07/2005|12:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee.com
[26/08/2005|22:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee.com Personal Firewall
[26/02/2008|23:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[17/12/2007|10:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[25/01/2006|16:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSScanAppDataDir
[28/06/2008|01:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PC Suite
[28/07/2005|14:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle
[28/07/2005|12:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[19/11/2005|17:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ScanSoft
[30/06/2008|00:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony Ericsson
[14/04/2008|18:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[02/11/2005|15:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SSScanAppDataDir
[02/11/2005|15:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SSScanWizard
[21/02/2007|19:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[30/06/2008|00:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Teleca
[02/01/2007|21:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[31/01/2007|22:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TuneUp Software
[16/03/2007|22:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[26/02/2008|19:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller

[04/08/2005|12:05] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Adobe
[28/07/2005|12:05] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[28/07/2005|12:41] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[27/01/2007|23:55] C:\DOCUME~1\LOCALS~1\APPLIC~1\AVG7
[27/08/2005|09:02] C:\DOCUME~1\LOCALS~1\APPLIC~1\McAfee.com Personal Firewall
[28/02/2007|17:01] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[20/01/2008|17:01] C:\DOCUME~1\Michel\APPLIC~1\Adobe
[11/05/2008|00:21] C:\DOCUME~1\Michel\APPLIC~1\AdobeUM
[04/01/2006|15:14] C:\DOCUME~1\Michel\APPLIC~1\Ahead
[16/04/2007|23:29] C:\DOCUME~1\Michel\APPLIC~1\Apple Computer
[29/01/2006|22:21] C:\DOCUME~1\Michel\APPLIC~1\ArcSoft
[25/05/2008|19:38] C:\DOCUME~1\Michel\APPLIC~1\ATI
[11/04/2008|02:00] C:\DOCUME~1\Michel\APPLIC~1\Auslogics
[25/02/2007|10:36] C:\DOCUME~1\Michel\APPLIC~1\AVG7
[29/02/2008|14:40] C:\DOCUME~1\Michel\APPLIC~1\BitTorrent
[10/09/2008|21:32] C:\DOCUME~1\Michel\APPLIC~1\Canon
[02/11/2005|16:31] C:\DOCUME~1\Michel\APPLIC~1\CyberLink
[28/06/2008|02:43] C:\DOCUME~1\Michel\APPLIC~1\Datalayer
[09/06/2006|19:57] C:\DOCUME~1\Michel\APPLIC~1\DeskSoft
[22/08/2008|20:53] C:\DOCUME~1\Michel\APPLIC~1\DivX
[26/06/2007|15:02] C:\DOCUME~1\Michel\APPLIC~1\dvdcss
[06/04/2008|21:59] C:\DOCUME~1\Michel\APPLIC~1\FLV Extract
[06/04/2008|21:39] C:\DOCUME~1\Michel\APPLIC~1\FMZilla
[25/07/2008|17:36] C:\DOCUME~1\Michel\APPLIC~1\fretsonfire
[31/01/2008|23:39] C:\DOCUME~1\Michel\APPLIC~1\GlarySoft
[01/05/2006|12:31] C:\DOCUME~1\Michel\APPLIC~1\Help
[28/07/2005|12:05] C:\DOCUME~1\Michel\APPLIC~1\Identities
[10/09/2008|21:03] C:\DOCUME~1\Michel\APPLIC~1\keep up active
[19/12/2005|16:02] C:\DOCUME~1\Michel\APPLIC~1\La Bataille pour la Terre du Milieu
[25/03/2008|19:43] C:\DOCUME~1\Michel\APPLIC~1\Lavasoft
[17/12/2007|11:43] C:\DOCUME~1\Michel\APPLIC~1\LimeWire
[11/01/2008|00:40] C:\DOCUME~1\Michel\APPLIC~1\ma-config.com
[24/05/2006|12:23] C:\DOCUME~1\Michel\APPLIC~1\Macromedia
[13/09/2008|21:00] C:\DOCUME~1\Michel\APPLIC~1\Malwarebytes
[26/08/2005|22:25] C:\DOCUME~1\Michel\APPLIC~1\McAfee.com Personal Firewall
[17/03/2008|19:07] C:\DOCUME~1\Michel\APPLIC~1\Microsoft
[27/08/2008|13:15] C:\DOCUME~1\Michel\APPLIC~1\Mozilla
[21/01/2006|10:50] C:\DOCUME~1\Michel\APPLIC~1\MSNInstaller
[04/10/2007|21:57] C:\DOCUME~1\Michel\APPLIC~1\MySpace
[28/06/2008|02:43] C:\DOCUME~1\Michel\APPLIC~1\Nokia
[06/08/2008|23:29] C:\DOCUME~1\Michel\APPLIC~1\Nokia Multimedia Player
[28/06/2008|01:13] C:\DOCUME~1\Michel\APPLIC~1\PC Suite
[03/11/2005|16:48] C:\DOCUME~1\Michel\APPLIC~1\Pinnacle Systems
[15/04/2008|01:44] C:\DOCUME~1\Michel\APPLIC~1\Samsung
[02/11/2005|15:04] C:\DOCUME~1\Michel\APPLIC~1\ScanSoft
[01/06/2007|17:57] C:\DOCUME~1\Michel\APPLIC~1\Screenshot Sender
[30/06/2008|00:57] C:\DOCUME~1\Michel\APPLIC~1\Sony Ericsson
[03/02/2007|19:19] C:\DOCUME~1\Michel\APPLIC~1\Sun
[25/03/2007|18:52] C:\DOCUME~1\Michel\APPLIC~1\Talkback
[10/06/2008|20:35] C:\DOCUME~1\Michel\APPLIC~1\teamspeak2
[30/06/2008|02:48] C:\DOCUME~1\Michel\APPLIC~1\Teleca
[02/11/2005|14:15] C:\DOCUME~1\Michel\APPLIC~1\Template
[31/01/2007|22:11] C:\DOCUME~1\Michel\APPLIC~1\TuneUp Software
[25/11/2007|14:45] C:\DOCUME~1\Michel\APPLIC~1\uTorrent

[04/08/2005|12:05] C:\DOCUME~1\Natalie\APPLIC~1\Adobe
[25/05/2008|19:28] C:\DOCUME~1\Natalie\APPLIC~1\ATI
[28/07/2005|12:05] C:\DOCUME~1\Natalie\APPLIC~1\Identities
[28/04/2008|16:41] C:\DOCUME~1\Natalie\APPLIC~1\Macromedia
[23/03/2007|18:05] C:\DOCUME~1\Natalie\APPLIC~1\Microsoft
[12/03/2007|11:21] C:\DOCUME~1\Natalie\APPLIC~1\Template

[01/02/2007|21:24] C:\DOCUME~1\NETWOR~1\APPLIC~1\AVG7
[28/02/2007|17:01] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft


--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[13/09/2008 21:47][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[22/08/2008 17:15][--a------] C:\WINDOWS\tasks\Maintenance en 1 clic.job
[05/08/2004 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
[14/09/2008 11:36][--ah-----] C:\WINDOWS\tasks\SA.DAT

--------------------\\ Listing des dossiers dans C:\Program Files

[31/12/2006|21:32] C:\Program Files\Adobe
[21/02/2007|23:55] C:\Program Files\Ahead
[20/05/2008|23:25] C:\Program Files\Alwil Software
[06/10/2007|21:49] C:\Program Files\Apple Software Update
[02/11/2005|15:01] C:\Program Files\ArcSoft
[10/09/2008|20:44] C:\Program Files\a-squared Free
[25/05/2008|19:32] C:\Program Files\ATI Technologies
[11/04/2008|02:00] C:\Program Files\Auslogics
[08/08/2008|12:57] C:\Program Files\AviSynth 2.5
[08/08/2008|02:14] C:\Program Files\CamStudio
[29/04/2006|11:44] C:\Program Files\Canon
[18/04/2007|11:01] C:\Program Files\CCleaner
[14/09/2008|12:24] C:\Program Files\Circle Developement
[28/07/2005|12:04] C:\Program Files\ComPlus Applications
[04/03/2007|23:37] C:\Program Files\CyberLink
[28/06/2008|01:12] C:\Program Files\DIFX
[10/08/2008|13:40] C:\Program Files\DivX
[13/04/2007|20:18] C:\Program Files\Documalis Free
[10/09/2008|21:53] C:\Program Files\EA GAMES
[19/11/2006|15:09] C:\Program Files\Elaborate Bytes
[14/11/2005|15:18] C:\Program Files\Empire Interactive
[16/07/2008|23:32] C:\Program Files\eMule
[29/01/2008|22:53] C:\Program Files\Executive Software
[28/07/2005|12:23] C:\Program Files\FenAffiche
[30/06/2008|00:55] C:\Program Files\Fichiers communs
[21/04/2007|10:20] C:\Program Files\FireFly Studios
[18/05/2008|23:19] C:\Program Files\Free Music Zilla
[25/07/2008|17:35] C:\Program Files\Frets on Fire
[31/12/2006|21:47] C:\Program Files\Google
[19/04/2008|18:43] C:\Program Files\HighMAT CD Writing Wizard
[05/08/2008|12:59] C:\Program Files\Illustrate
[06/08/2008|21:03] C:\Program Files\InstallShield Installation Information
[28/07/2005|12:25] C:\Program Files\Intel
[13/08/2008|20:49] C:\Program Files\Internet Explorer
[29/11/2006|23:30] C:\Program Files\IVT Corporation
[26/07/2008|16:28] C:\Program Files\IZArc
[14/10/2006|17:26] C:\Program Files\Jasc Software Inc
[11/07/2008|13:49] C:\Program Files\Java
[23/05/2008|18:57] C:\Program Files\Kaspersky Lab
[02/09/2008|21:48] C:\Program Files\keep up active
[25/05/2008|19:08] C:\Program Files\ma-config.com
[13/09/2008|21:00] C:\Program Files\Malwarebytes' Anti-Malware
[13/09/2008|14:09] C:\Program Files\Messenger
[02/09/2008|21:48] C:\Program Files\Messenger Plus! Live
[28/04/2008|16:36] C:\Program Files\Micro Application
[03/01/2007|14:16] C:\Program Files\Microsoft
[17/12/2007|16:17] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[28/07/2005|12:05] C:\Program Files\microsoft frontpage
[24/12/2005|22:50] C:\Program Files\Microsoft Games
[22/02/2008|16:12] C:\Program Files\Microsoft GIF Animator
[14/01/2006|12:26] C:\Program Files\Microsoft Office
[28/07/2005|14:21] C:\Program Files\Microsoft SQL Server
[29/11/2005|20:05] C:\Program Files\Microsoft Works
[28/07/2005|12:20] C:\Program Files\Microsoft.NET
[11/09/2008|22:25] C:\Program Files\Movie Maker
[14/09/2008|16:53] C:\Program Files\Mozilla Firefox
[11/09/2008|22:25] C:\Program Files\msn
[28/07/2005|12:03] C:\Program Files\MSN Gaming Zone
[03/11/2005|18:32] C:\Program Files\MSXML 4.0
[11/09/2008|22:18] C:\Program Files\NetMeeting
[28/06/2008|01:17] C:\Program Files\Nokia
[29/05/2006|21:24] C:\Program Files\Online Services
[11/09/2008|22:18] C:\Program Files\Outlook Express
[21/02/2007|23:50] C:\Program Files\Philips
[28/07/2005|12:12] C:\Program Files\Phoenix Technologies Ltd
[28/07/2005|14:21] C:\Program Files\Pinnacle
[07/08/2008|23:18] C:\Program Files\Project64 1.6
[07/10/2007|00:40] C:\Program Files\QuickTime
[31/01/2007|16:13] C:\Program Files\RALINK
[02/01/2007|20:59] C:\Program Files\RegCleaner
[11/04/2008|01:52] C:\Program Files\RegSupreme
[11/04/2008|02:02] C:\Program Files\Safarp
[31/01/2007|21:44] C:\Program Files\SAGEM
[15/04/2008|01:37] C:\Program Files\Samsung
[02/11/2005|15:04] C:\Program Files\ScanSoft
[28/07/2005|12:04] C:\Program Files\Services en ligne
[02/07/2008|01:09] C:\Program Files\Shutter
[07/09/2008|14:02] C:\Program Files\Slayers Online
[19/11/2006|12:11] C:\Program Files\SlySoft
[30/06/2008|00:55] C:\Program Files\Sony Ericsson
[14/04/2008|11:39] C:\Program Files\Spybot - Search & Destroy
[30/08/2007|19:37] C:\Program Files\Sunbelt Software
[21/02/2007|19:38] C:\Program Files\Symantec
[23/10/2007|18:38] C:\Program Files\Teamspeak2_RC2
[17/08/2008|23:50] C:\Program Files\TF1Vision
[12/04/2008|19:06] C:\Program Files\The Seal Hunter
[03/01/2007|16:14] C:\Program Files\ToniArts
[15/02/2008|22:54] C:\Program Files\Trend Micro
[16/12/2007|16:33] C:\Program Files\Ubisoft
[28/07/2005|12:08] C:\Program Files\Uninstall Information
[26/03/2008|16:31] C:\Program Files\Valve
[21/08/2008|17:55] C:\Program Files\Veoh Networks
[02/09/2007|12:31] C:\Program Files\VideoLAN
[20/10/2007|20:43] C:\Program Files\Vopt8
[14/09/2008|11:42] C:\Program Files\Wanadoo
[24/04/2006|11:13] C:\Program Files\Wanadoo Messager
[03/11/2005|18:53] C:\Program Files\Webteh
[28/07/2005|12:08] C:\Program Files\Windows Journal Viewer
[26/02/2008|19:40] C:\Program Files\Windows Live
[11/05/2007|00:08] C:\Program Files\Windows Media Connect 2
[11/09/2008|22:18] C:\Program Files\Windows Media Player
[11/09/2008|22:18] C:\Program Files\Windows NT
[28/07/2005|12:04] C:\Program Files\WindowsUpdate
[28/07/2005|12:05] C:\Program Files\xerox
[29/03/2006|15:02] C:\Program Files\Xing
[06/08/2008|22:16] C:\Program Files\Yahoo!

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[28/07/2005|12:43] C:\Program Files\Fichiers communs\Adobe
[21/02/2007|23:55] C:\Program Files\Fichiers communs\Ahead
[15/01/2006|13:02] C:\Program Files\Fichiers communs\AOL
[28/07/2005|12:20] C:\Program Files\Fichiers communs\DESIGNER
[23/02/2006|20:03] C:\Program Files\Fichiers communs\DirectX
[27/06/2008|23:50] C:\Program Files\Fichiers communs\InstallShield
[10/08/2006|17:22] C:\Program Files\Fichiers communs\Java
[05/03/2008|21:06] C:\Program Files\Fichiers communs\Microsoft Shared
[28/07/2005|12:04] C:\Program Files\Fichiers communs\MSSoap
[28/07/2005|12:49] C:\Program Files\Fichiers communs\Nero
[28/06/2008|01:12] C:\Program Files\Fichiers communs\Nokia
[07/04/2007|10:53] C:\Program Files\Fichiers communs\ODBC
[28/06/2008|01:12] C:\Program Files\Fichiers communs\PCSuite
[05/05/2006|18:41] C:\Program Files\Fichiers communs\ScanSoft Shared
[28/07/2005|12:04] C:\Program Files\Fichiers communs\Services
[13/04/2006|17:40] C:\Program Files\Fichiers communs\Softwin
[30/06/2008|00:55] C:\Program Files\Fichiers communs\Sony Ericsson Shared
[28/07/2005|13:59] C:\Program Files\Fichiers communs\SpeechEngines
[21/02/2007|19:47] C:\Program Files\Fichiers communs\Symantec Shared
[11/09/2008|22:18] C:\Program Files\Fichiers communs\System
[30/06/2008|01:00] C:\Program Files\Fichiers communs\Teleca Shared
[16/12/2007|15:11] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[13/01/2006|23:07] C:\Program Files\Fichiers communs\Xing Shared

--------------------\\ Process

( 76 Processes )

IEXPLORE.EXE ~ [PID:3892]
iexplore.exe ~ [PID:892]

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\DOCUME~1\ALLUSE~1\APPLIC~1\flag ace stupid data
C:\DOCUME~1\ALLUSE~1\APPLIC~1\flag ace stupid data\2 size.exe
C:\DOCUME~1\Michel\LOCALS~1\Temp\nsh18.tmp
C:\DOCUME~1\Michel\LOCALS~1\Temp\nsx84.tmp
C:\DOCUME~1\Michel\LOCALS~1\Temp\nsx85.tmp
C:\Program Files\Circle Developement
C:\DOCUME~1\Michel\Cookies\michel@bigpoint[2].txt
C:\DOCUME~1\Michel\Cookies\michel@fr.xblaster.bigpoint[2].txt
C:\DOCUME~1\Michel\Cookies\michel@banner.cotedazurpalace[2].txt
C:\DOCUME~1\Michel\Cookies\michel@cotedazurpalace[2].txt
C:\DOCUME~1\Michel\Cookies\michel@www.cotedazurpalace[1].txt
C:\DOCUME~1\Michel\Cookies\michel@adopt.euroclick[1].txt
C:\DOCUME~1\Michel\Cookies\michel@pacificpoker[1].txt
C:\DOCUME~1\Michel\Cookies\michel@partypoker[1].txt
C:\DOCUME~1\Michel\Cookies\michel@32vegas[2].txt
C:\DOCUME~1\Michel\Cookies\michel@banner.32vegas[2].txt

--------------------\\ Verification du Registre

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Stupid Data Dart Wave"="C:\\Documents and Settings\\All Users\\Application Data\\flag ace stupid data\\2 size.exe"

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-14 23:07:25
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 908

--------------------\\ Recherche d'autres infections

--------------------\\ Cracks & Keygens ..

C:\DOCUME~1\Michel\Mes documents\Mes fichiers re‡us\diver\Foetus%20Party%20-%20Joyeux%20Crack%20%20(%20www.RESISTANCE.tk%20)[1].mp3


[F:2933][D:280]-> C:\DOCUME~1\Michel\LOCALS~1\Temp
[F:210][D:0]-> C:\DOCUME~1\Michel\Cookies
[F:9540][D:16]-> C:\DOCUME~1\Michel\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 14/09/2008|21:14 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 14/09/2008|23:10 - Option : [1]

--------------------\\ Fin du rapport a 23:10:14

Bonne continuation ;-)
0
Réponse 17 / 22
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 5 040
15 sept. 2008 à 11:47
ok vire le crack trouvé qui doit être infecté puis refais lopsd et choisi l'option 2 et colle le rapport et dis tes soucis actuels
0
Réponse 18 / 22
tyrian70 Messages postés 55 Date d'inscription samedi 7 juillet 2007 Statut Membre Dernière intervention 9 octobre 2011
15 sept. 2008 à 20:05
Voilaqui est fait, mon ordi est plus lent qu'au paravant et mon anti virus avast a detecte plussieurs trojan et un virus de plus des fenetre aparaisent pour aucune raison alors que je les est bloque sur internet explorer et mozzila, souvent internet explorer a des problemes aussi depuis que les trojan sont la. Encor merci de m'aider.
0
Réponse 19 / 22
tyrian70 Messages postés 55 Date d'inscription samedi 7 juillet 2007 Statut Membre Dernière intervention 9 octobre 2011
15 sept. 2008 à 20:06
Voila scan demander:

--------------------\\ Lop S&D 4.2.4-2 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : Intel(R) Pentium(R) D CPU 2.80GHz )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : Michel ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 080914-0] 4.8.1229 (Activated)

"C:\Lop SD" ( MAJ : 08-09-2008|21:40 )
Option : [2] ( 15/09/2008|20:01 )


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\flag ace stupid data\2 size.exe
Supprime! - C:\DOCUME~1\Michel\LOCALS~1\Temp\nsh18.tmp
Supprime! - C:\DOCUME~1\Michel\LOCALS~1\Temp\nsx84.tmp
Supprime! - C:\DOCUME~1\Michel\LOCALS~1\Temp\nsx85.tmp
Supprime! - C:\DOCUME~1\Michel\Cookies\michel@bigpoint[2].txt
Supprime! - C:\DOCUME~1\Michel\Cookies\michel@fr.xblaster.bigpoint[2].txt
Supprime! - C:\DOCUME~1\Michel\Cookies\michel@banner.cotedazurpalace[2].txt
Supprime! - C:\DOCUME~1\Michel\Cookies\michel@cotedazurpalace[2].txt
Supprime! - C:\DOCUME~1\Michel\Cookies\michel@www.cotedazurpalace[1].txt
Supprime! - C:\DOCUME~1\Michel\Cookies\michel@adopt.euroclick[1].txt
Supprime! - C:\DOCUME~1\Michel\Cookies\michel@pacificpoker[1].txt
Supprime! - C:\DOCUME~1\Michel\Cookies\michel@partypoker[1].txt
Supprime! - C:\DOCUME~1\Michel\Cookies\michel@32vegas[2].txt
Supprime! - C:\DOCUME~1\Michel\Cookies\michel@banner.32vegas[2].txt
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\flag ace stupid data
Supprime! - C:\Program Files\Circle Developement
-
[ Fichier Hosts ] .. Restaure!

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


--------------------\\ Listing des dossiers dans APPLIC~1

[04/08/2005|12:05] C:\DOCUME~1\ADMINI~1\APPLIC~1\Adobe
[28/07/2005|12:05] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[31/01/2008|21:16] C:\DOCUME~1\ADMINI~1\APPLIC~1\Lavasoft
[28/07/2005|12:41] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft

[30/11/2006|00:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{C47EC3A5-D5BD-40F0-80E0-F8BEFF9D776F}
[06/11/2007|14:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[28/07/2005|12:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
[16/04/2007|23:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[25/05/2008|19:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ATI
[28/02/2007|17:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\avg7
[14/03/2007|15:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Bluetooth
[28/07/2005|12:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[28/06/2008|01:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Downloaded Installations
[05/08/2006|10:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FreeTest
[27/06/2008|23:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[25/05/2008|19:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ma-config.com
[13/09/2008|20:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[28/07/2005|12:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee.com
[26/08/2005|22:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\McAfee.com Personal Firewall
[26/02/2008|23:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[17/12/2007|10:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[25/01/2006|16:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSScanAppDataDir
[28/06/2008|01:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PC Suite
[28/07/2005|14:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle
[28/07/2005|12:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[19/11/2005|17:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ScanSoft
[30/06/2008|00:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony Ericsson
[14/04/2008|18:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[02/11/2005|15:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SSScanAppDataDir
[02/11/2005|15:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SSScanWizard
[21/02/2007|19:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[30/06/2008|00:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Teleca
[02/01/2007|21:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[31/01/2007|22:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TuneUp Software
[16/03/2007|22:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[26/02/2008|19:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller

[04/08/2005|12:05] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Adobe
[28/07/2005|12:05] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[28/07/2005|12:41] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[27/01/2007|23:55] C:\DOCUME~1\LOCALS~1\APPLIC~1\AVG7
[27/08/2005|09:02] C:\DOCUME~1\LOCALS~1\APPLIC~1\McAfee.com Personal Firewall
[28/02/2007|17:01] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[20/01/2008|17:01] C:\DOCUME~1\Michel\APPLIC~1\Adobe
[11/05/2008|00:21] C:\DOCUME~1\Michel\APPLIC~1\AdobeUM
[04/01/2006|15:14] C:\DOCUME~1\Michel\APPLIC~1\Ahead
[16/04/2007|23:29] C:\DOCUME~1\Michel\APPLIC~1\Apple Computer
[29/01/2006|22:21] C:\DOCUME~1\Michel\APPLIC~1\ArcSoft
[25/05/2008|19:38] C:\DOCUME~1\Michel\APPLIC~1\ATI
[11/04/2008|02:00] C:\DOCUME~1\Michel\APPLIC~1\Auslogics
[25/02/2007|10:36] C:\DOCUME~1\Michel\APPLIC~1\AVG7
[29/02/2008|14:40] C:\DOCUME~1\Michel\APPLIC~1\BitTorrent
[10/09/2008|21:32] C:\DOCUME~1\Michel\APPLIC~1\Canon
[02/11/2005|16:31] C:\DOCUME~1\Michel\APPLIC~1\CyberLink
[28/06/2008|02:43] C:\DOCUME~1\Michel\APPLIC~1\Datalayer
[09/06/2006|19:57] C:\DOCUME~1\Michel\APPLIC~1\DeskSoft
[22/08/2008|20:53] C:\DOCUME~1\Michel\APPLIC~1\DivX
[26/06/2007|15:02] C:\DOCUME~1\Michel\APPLIC~1\dvdcss
[06/04/2008|21:59] C:\DOCUME~1\Michel\APPLIC~1\FLV Extract
[06/04/2008|21:39] C:\DOCUME~1\Michel\APPLIC~1\FMZilla
[25/07/2008|17:36] C:\DOCUME~1\Michel\APPLIC~1\fretsonfire
[31/01/2008|23:39] C:\DOCUME~1\Michel\APPLIC~1\GlarySoft
[01/05/2006|12:31] C:\DOCUME~1\Michel\APPLIC~1\Help
[28/07/2005|12:05] C:\DOCUME~1\Michel\APPLIC~1\Identities
[10/09/2008|21:03] C:\DOCUME~1\Michel\APPLIC~1\keep up active
[19/12/2005|16:02] C:\DOCUME~1\Michel\APPLIC~1\La Bataille pour la Terre du Milieu
[25/03/2008|19:43] C:\DOCUME~1\Michel\APPLIC~1\Lavasoft
[17/12/2007|11:43] C:\DOCUME~1\Michel\APPLIC~1\LimeWire
[11/01/2008|00:40] C:\DOCUME~1\Michel\APPLIC~1\ma-config.com
[24/05/2006|12:23] C:\DOCUME~1\Michel\APPLIC~1\Macromedia
[13/09/2008|21:00] C:\DOCUME~1\Michel\APPLIC~1\Malwarebytes
[26/08/2005|22:25] C:\DOCUME~1\Michel\APPLIC~1\McAfee.com Personal Firewall
[17/03/2008|19:07] C:\DOCUME~1\Michel\APPLIC~1\Microsoft
[27/08/2008|13:15] C:\DOCUME~1\Michel\APPLIC~1\Mozilla
[21/01/2006|10:50] C:\DOCUME~1\Michel\APPLIC~1\MSNInstaller
[04/10/2007|21:57] C:\DOCUME~1\Michel\APPLIC~1\MySpace
[28/06/2008|02:43] C:\DOCUME~1\Michel\APPLIC~1\Nokia
[06/08/2008|23:29] C:\DOCUME~1\Michel\APPLIC~1\Nokia Multimedia Player
[28/06/2008|01:13] C:\DOCUME~1\Michel\APPLIC~1\PC Suite
[03/11/2005|16:48] C:\DOCUME~1\Michel\APPLIC~1\Pinnacle Systems
[15/04/2008|01:44] C:\DOCUME~1\Michel\APPLIC~1\Samsung
[02/11/2005|15:04] C:\DOCUME~1\Michel\APPLIC~1\ScanSoft
[01/06/2007|17:57] C:\DOCUME~1\Michel\APPLIC~1\Screenshot Sender
[30/06/2008|00:57] C:\DOCUME~1\Michel\APPLIC~1\Sony Ericsson
[03/02/2007|19:19] C:\DOCUME~1\Michel\APPLIC~1\Sun
[25/03/2007|18:52] C:\DOCUME~1\Michel\APPLIC~1\Talkback
[10/06/2008|20:35] C:\DOCUME~1\Michel\APPLIC~1\teamspeak2
[30/06/2008|02:48] C:\DOCUME~1\Michel\APPLIC~1\Teleca
[02/11/2005|14:15] C:\DOCUME~1\Michel\APPLIC~1\Template
[31/01/2007|22:11] C:\DOCUME~1\Michel\APPLIC~1\TuneUp Software
[25/11/2007|14:45] C:\DOCUME~1\Michel\APPLIC~1\uTorrent

[04/08/2005|12:05] C:\DOCUME~1\Natalie\APPLIC~1\Adobe
[25/05/2008|19:28] C:\DOCUME~1\Natalie\APPLIC~1\ATI
[28/07/2005|12:05] C:\DOCUME~1\Natalie\APPLIC~1\Identities
[28/04/2008|16:41] C:\DOCUME~1\Natalie\APPLIC~1\Macromedia
[23/03/2007|18:05] C:\DOCUME~1\Natalie\APPLIC~1\Microsoft
[12/03/2007|11:21] C:\DOCUME~1\Natalie\APPLIC~1\Template

[01/02/2007|21:24] C:\DOCUME~1\NETWOR~1\APPLIC~1\AVG7
[28/02/2007|17:01] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft


--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[13/09/2008 21:47][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[22/08/2008 17:15][--a------] C:\WINDOWS\tasks\Maintenance en 1 clic.job
[05/08/2004 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
[15/09/2008 19:28][--ah-----] C:\WINDOWS\tasks\SA.DAT

--------------------\\ Listing des dossiers dans C:\Program Files

[31/12/2006|21:32] C:\Program Files\Adobe
[21/02/2007|23:55] C:\Program Files\Ahead
[20/05/2008|23:25] C:\Program Files\Alwil Software
[06/10/2007|21:49] C:\Program Files\Apple Software Update
[02/11/2005|15:01] C:\Program Files\ArcSoft
[10/09/2008|20:44] C:\Program Files\a-squared Free
[25/05/2008|19:32] C:\Program Files\ATI Technologies
[11/04/2008|02:00] C:\Program Files\Auslogics
[08/08/2008|12:57] C:\Program Files\AviSynth 2.5
[08/08/2008|02:14] C:\Program Files\CamStudio
[29/04/2006|11:44] C:\Program Files\Canon
[18/04/2007|11:01] C:\Program Files\CCleaner
[28/07/2005|12:04] C:\Program Files\ComPlus Applications
[04/03/2007|23:37] C:\Program Files\CyberLink
[28/06/2008|01:12] C:\Program Files\DIFX
[10/08/2008|13:40] C:\Program Files\DivX
[13/04/2007|20:18] C:\Program Files\Documalis Free
[10/09/2008|21:53] C:\Program Files\EA GAMES
[19/11/2006|15:09] C:\Program Files\Elaborate Bytes
[14/11/2005|15:18] C:\Program Files\Empire Interactive
[16/07/2008|23:32] C:\Program Files\eMule
[29/01/2008|22:53] C:\Program Files\Executive Software
[28/07/2005|12:23] C:\Program Files\FenAffiche
[30/06/2008|00:55] C:\Program Files\Fichiers communs
[21/04/2007|10:20] C:\Program Files\FireFly Studios
[18/05/2008|23:19] C:\Program Files\Free Music Zilla
[25/07/2008|17:35] C:\Program Files\Frets on Fire
[31/12/2006|21:47] C:\Program Files\Google
[19/04/2008|18:43] C:\Program Files\HighMAT CD Writing Wizard
[05/08/2008|12:59] C:\Program Files\Illustrate
[06/08/2008|21:03] C:\Program Files\InstallShield Installation Information
[28/07/2005|12:25] C:\Program Files\Intel
[13/08/2008|20:49] C:\Program Files\Internet Explorer
[29/11/2006|23:30] C:\Program Files\IVT Corporation
[26/07/2008|16:28] C:\Program Files\IZArc
[14/10/2006|17:26] C:\Program Files\Jasc Software Inc
[11/07/2008|13:49] C:\Program Files\Java
[23/05/2008|18:57] C:\Program Files\Kaspersky Lab
[02/09/2008|21:48] C:\Program Files\keep up active
[25/05/2008|19:08] C:\Program Files\ma-config.com
[13/09/2008|21:00] C:\Program Files\Malwarebytes' Anti-Malware
[13/09/2008|14:09] C:\Program Files\Messenger
[02/09/2008|21:48] C:\Program Files\Messenger Plus! Live
[28/04/2008|16:36] C:\Program Files\Micro Application
[03/01/2007|14:16] C:\Program Files\Microsoft
[17/12/2007|16:17] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[28/07/2005|12:05] C:\Program Files\microsoft frontpage
[24/12/2005|22:50] C:\Program Files\Microsoft Games
[22/02/2008|16:12] C:\Program Files\Microsoft GIF Animator
[14/01/2006|12:26] C:\Program Files\Microsoft Office
[28/07/2005|14:21] C:\Program Files\Microsoft SQL Server
[29/11/2005|20:05] C:\Program Files\Microsoft Works
[28/07/2005|12:20] C:\Program Files\Microsoft.NET
[11/09/2008|22:25] C:\Program Files\Movie Maker
[15/09/2008|19:46] C:\Program Files\Mozilla Firefox
[11/09/2008|22:25] C:\Program Files\msn
[28/07/2005|12:03] C:\Program Files\MSN Gaming Zone
[03/11/2005|18:32] C:\Program Files\MSXML 4.0
[11/09/2008|22:18] C:\Program Files\NetMeeting
[28/06/2008|01:17] C:\Program Files\Nokia
[29/05/2006|21:24] C:\Program Files\Online Services
[11/09/2008|22:18] C:\Program Files\Outlook Express
[21/02/2007|23:50] C:\Program Files\Philips
[28/07/2005|12:12] C:\Program Files\Phoenix Technologies Ltd
[28/07/2005|14:21] C:\Program Files\Pinnacle
[07/08/2008|23:18] C:\Program Files\Project64 1.6
[07/10/2007|00:40] C:\Program Files\QuickTime
[31/01/2007|16:13] C:\Program Files\RALINK
[02/01/2007|20:59] C:\Program Files\RegCleaner
[11/04/2008|01:52] C:\Program Files\RegSupreme
[11/04/2008|02:02] C:\Program Files\Safarp
[31/01/2007|21:44] C:\Program Files\SAGEM
[15/04/2008|01:37] C:\Program Files\Samsung
[02/11/2005|15:04] C:\Program Files\ScanSoft
[28/07/2005|12:04] C:\Program Files\Services en ligne
[02/07/2008|01:09] C:\Program Files\Shutter
[07/09/2008|14:02] C:\Program Files\Slayers Online
[19/11/2006|12:11] C:\Program Files\SlySoft
[30/06/2008|00:55] C:\Program Files\Sony Ericsson
[14/04/2008|11:39] C:\Program Files\Spybot - Search & Destroy
[30/08/2007|19:37] C:\Program Files\Sunbelt Software
[21/02/2007|19:38] C:\Program Files\Symantec
[23/10/2007|18:38] C:\Program Files\Teamspeak2_RC2
[17/08/2008|23:50] C:\Program Files\TF1Vision
[12/04/2008|19:06] C:\Program Files\The Seal Hunter
[03/01/2007|16:14] C:\Program Files\ToniArts
[15/02/2008|22:54] C:\Program Files\Trend Micro
[16/12/2007|16:33] C:\Program Files\Ubisoft
[28/07/2005|12:08] C:\Program Files\Uninstall Information
[26/03/2008|16:31] C:\Program Files\Valve
[21/08/2008|17:55] C:\Program Files\Veoh Networks
[02/09/2007|12:31] C:\Program Files\VideoLAN
[20/10/2007|20:43] C:\Program Files\Vopt8
[15/09/2008|19:36] C:\Program Files\Wanadoo
[24/04/2006|11:13] C:\Program Files\Wanadoo Messager
[03/11/2005|18:53] C:\Program Files\Webteh
[28/07/2005|12:08] C:\Program Files\Windows Journal Viewer
[26/02/2008|19:40] C:\Program Files\Windows Live
[11/05/2007|00:08] C:\Program Files\Windows Media Connect 2
[11/09/2008|22:18] C:\Program Files\Windows Media Player
[11/09/2008|22:18] C:\Program Files\Windows NT
[28/07/2005|12:04] C:\Program Files\WindowsUpdate
[28/07/2005|12:05] C:\Program Files\xerox
[29/03/2006|15:02] C:\Program Files\Xing
[06/08/2008|22:16] C:\Program Files\Yahoo!

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[28/07/2005|12:43] C:\Program Files\Fichiers communs\Adobe
[21/02/2007|23:55] C:\Program Files\Fichiers communs\Ahead
[15/01/2006|13:02] C:\Program Files\Fichiers communs\AOL
[28/07/2005|12:20] C:\Program Files\Fichiers communs\DESIGNER
[23/02/2006|20:03] C:\Program Files\Fichiers communs\DirectX
[27/06/2008|23:50] C:\Program Files\Fichiers communs\InstallShield
[10/08/2006|17:22] C:\Program Files\Fichiers communs\Java
[05/03/2008|21:06] C:\Program Files\Fichiers communs\Microsoft Shared
[28/07/2005|12:04] C:\Program Files\Fichiers communs\MSSoap
[28/07/2005|12:49] C:\Program Files\Fichiers communs\Nero
[28/06/2008|01:12] C:\Program Files\Fichiers communs\Nokia
[07/04/2007|10:53] C:\Program Files\Fichiers communs\ODBC
[28/06/2008|01:12] C:\Program Files\Fichiers communs\PCSuite
[05/05/2006|18:41] C:\Program Files\Fichiers communs\ScanSoft Shared
[28/07/2005|12:04] C:\Program Files\Fichiers communs\Services
[13/04/2006|17:40] C:\Program Files\Fichiers communs\Softwin
[30/06/2008|00:55] C:\Program Files\Fichiers communs\Sony Ericsson Shared
[28/07/2005|13:59] C:\Program Files\Fichiers communs\SpeechEngines
[21/02/2007|19:47] C:\Program Files\Fichiers communs\Symantec Shared
[11/09/2008|22:18] C:\Program Files\Fichiers communs\System
[30/06/2008|01:00] C:\Program Files\Fichiers communs\Teleca Shared
[16/12/2007|15:11] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[13/01/2006|23:07] C:\Program Files\Fichiers communs\Xing Shared

--------------------\\ Process

( 72 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-15 20:03:19
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 908

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:2929][D:278]-> C:\DOCUME~1\Michel\LOCALS~1\Temp
[F:200][D:0]-> C:\DOCUME~1\Michel\Cookies
[F:9595][D:16]-> C:\DOCUME~1\Michel\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 14/09/2008|21:14 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 14/09/2008|23:10 - Option : [1]
3 - "C:\Lop SD\LopR_3.txt" - 15/09/2008|19:55 - Option : [1]
4 - "C:\Lop SD\LopR_4.txt" - 15/09/2008|20:05 - Option : [2]

--------------------\\ Fin du rapport a 20:05:36
0
Réponse 20 / 22
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 5 040
16 sept. 2008 à 12:33
ok . Encore des pubs..? Des problèmes? Recolle un rapport hijackthis
-1

Discussions similaires

Est ce que le site tlauncher est dangereux ?
caribou -
bazfile -

1 réponse
scan comics
daraen -
dsyren -

1 réponse
comment lire des bd gratuitement en ligne sur internet ?
theodu13480 -
Ereka -

2 réponses
Problème lecture Scan manga
léa -
nagisa_hl -

14 réponses
Virus : trojan:win32/wacatac.h!ml
Alky09 -
bazfile -

8 réponses