Trojan.win32.obfuscated.gen
Résolu/Fermé
DDOYE
Messages postés
68
Date d'inscription
jeudi 31 août 2006
Statut
Membre
Dernière intervention
31 août 2010
-
10 sept. 2008 à 13:51
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 - 13 sept. 2008 à 07:47
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 - 13 sept. 2008 à 07:47
A voir également:
- Trojan.win32.obfuscated.gen
- Trojan.win32.hosts2.gen - Forum Virus
- Mem trojan.win32.sepeh.gen - Forum Virus
- Trojan.win32.bazon.a - Forum Virus
- Trojan.win32.generic ✓ - Forum Virus
- Trojan.Win32.Generic ✓ - Forum Virus
11 réponses
jlpjlp
Messages postés
51580
Date d'inscription
vendredi 18 mai 2007
Statut
Contributeur sécurité
Dernière intervention
3 mai 2022
5 040
10 sept. 2008 à 14:55
10 sept. 2008 à 14:55
slt,
tu télécharge Lop S&D.exe sur ton Bureau.https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
* Double-clique dessus pour lancer l'installation
* Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
* Séléctionne la langue souhaitée , puis choisis l'option 1 (Recherche)
* Patiente jusqu'à la fin du scan
* Poste le rapport généré (C:\lopR.txt)
_____________
colle un rapport hijackthis avec cette version
http://www.trendsecure.com/portal/en-US/tools/security_tools/hijackthis/download
tu télécharge Lop S&D.exe sur ton Bureau.https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
* Double-clique dessus pour lancer l'installation
* Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
* Séléctionne la langue souhaitée , puis choisis l'option 1 (Recherche)
* Patiente jusqu'à la fin du scan
* Poste le rapport généré (C:\lopR.txt)
_____________
colle un rapport hijackthis avec cette version
http://www.trendsecure.com/portal/en-US/tools/security_tools/hijackthis/download
DDOYE
Messages postés
68
Date d'inscription
jeudi 31 août 2006
Statut
Membre
Dernière intervention
31 août 2010
2
10 sept. 2008 à 15:59
10 sept. 2008 à 15:59
Bonjour,
Voici le rapport Lop S&D
--------------------\\ Lop S&D 4.2.4-2 XP/Vista
Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : Genuine Intel(R) CPU T2300 @ 1.66GHz )
BIOS : Ver 1.00PARTTBL8
USER : Dorothée ( Administrator )
BOOT : Normal boot
Antivirus : AVG Internet Security 3-pack 8.0 (Activated)
Firewall : AVG Firewall 8.0 (Activated)
"C:\Lop SD" ( MAJ : 08-09-2008|21:40 )
Option : [1] ( 10/09/2008|15:52 )
--------------------\\ Listing des dossiers dans APPLIC~1
[30/05/2008|18:03] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[30/05/2008|17:55] C:\DOCUME~1\ADMINI~1\APPLIC~1\Lavasoft
[30/05/2008|18:03] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[30/05/2008|18:06] C:\DOCUME~1\ADMINI~1\APPLIC~1\Webroot
[30/05/2008|23:23] C:\DOCUME~1\ADMINI~1.TIT\APPLIC~1\Identities
[30/05/2008|23:12] C:\DOCUME~1\ADMINI~1.TIT\APPLIC~1\Microsoft
[09/07/2008|00:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[08/09/2008|20:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\avg8
[04/05/2008|09:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Azureus
[30/04/2008|10:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Corel
[02/07/2008|20:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cyberlink
[14/04/2008|11:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink
[30/04/2008|10:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[10/04/2008|21:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Intel
[25/06/2008|09:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab
[30/07/2008|13:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ma-config.com
[18/06/2008|11:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
[09/09/2008|22:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[24/04/2008|21:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[10/04/2008|23:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[09/09/2008|22:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Help
[04/05/2008|09:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Move Bore Curb Tool
[10/04/2008|22:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
[18/06/2008|09:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Office Genuine Advantage
[23/07/2008|11:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle
[23/07/2008|11:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle Studio Plus
[23/07/2008|11:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle Studio Ultimate
[07/08/2008|21:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Roxio
[12/06/2008|21:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SmartSound Software Inc
[12/06/2008|21:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
[07/09/2008|08:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[23/07/2008|11:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Studio 12
[10/09/2008|14:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sunbelt
[01/09/2008|15:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ViaMichelin
[18/06/2008|09:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[30/07/2008|16:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[30/05/2008|17:55] C:\DOCUME~1\Boomscud\APPLIC~1\Microsoft
[30/05/2008|17:58] C:\DOCUME~1\Boomscud\APPLIC~1\Sun
[10/04/2008|21:57] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Intel
[10/04/2008|21:32] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[08/07/2008|23:02] C:\DOCUME~1\DOROTH~1\APPLIC~1\aAvgApi
[26/04/2008|22:29] C:\DOCUME~1\DOROTH~1\APPLIC~1\Adobe
[11/04/2008|18:44] C:\DOCUME~1\DOROTH~1\APPLIC~1\AdobeUM
[23/04/2008|16:18] C:\DOCUME~1\DOROTH~1\APPLIC~1\Ahead
[11/04/2008|10:34] C:\DOCUME~1\DOROTH~1\APPLIC~1\ArcSoft
[30/05/2008|07:16] C:\DOCUME~1\DOROTH~1\APPLIC~1\Azureus
[04/05/2008|09:52] C:\DOCUME~1\DOROTH~1\APPLIC~1\BitTorrent
[30/04/2008|10:33] C:\DOCUME~1\DOROTH~1\APPLIC~1\Corel
[02/06/2008|20:36] C:\DOCUME~1\DOROTH~1\APPLIC~1\Corel Photo Album
[14/04/2008|11:24] C:\DOCUME~1\DOROTH~1\APPLIC~1\CyberLink
[23/07/2008|12:03] C:\DOCUME~1\DOROTH~1\APPLIC~1\DivX
[07/09/2008|08:42] C:\DOCUME~1\DOROTH~1\APPLIC~1\DNA
[03/09/2008|11:27] C:\DOCUME~1\DOROTH~1\APPLIC~1\GigaTribe
[10/04/2008|21:40] C:\DOCUME~1\DOROTH~1\APPLIC~1\Identities
[30/04/2008|10:25] C:\DOCUME~1\DOROTH~1\APPLIC~1\InstallShield
[30/07/2008|12:07] C:\DOCUME~1\DOROTH~1\APPLIC~1\Intel
[30/05/2008|07:16] C:\DOCUME~1\DOROTH~1\APPLIC~1\LimeWire
[21/04/2008|20:59] C:\DOCUME~1\DOROTH~1\APPLIC~1\Lingoes
[11/04/2008|23:29] C:\DOCUME~1\DOROTH~1\APPLIC~1\Macromedia
[09/09/2008|22:19] C:\DOCUME~1\DOROTH~1\APPLIC~1\Malwarebytes
[08/09/2008|20:32] C:\DOCUME~1\DOROTH~1\APPLIC~1\Microsoft
[23/04/2008|21:03] C:\DOCUME~1\DOROTH~1\APPLIC~1\Mozilla
[23/07/2008|11:59] C:\DOCUME~1\DOROTH~1\APPLIC~1\proDAD
[23/07/2008|11:15] C:\DOCUME~1\DOROTH~1\APPLIC~1\Roxio
[27/07/2008|00:18] C:\DOCUME~1\DOROTH~1\APPLIC~1\Steinberg
[04/05/2008|10:01] C:\DOCUME~1\DOROTH~1\APPLIC~1\Sun
[28/05/2008|20:24] C:\DOCUME~1\DOROTH~1\APPLIC~1\TaoUSign
[10/04/2008|23:19] C:\DOCUME~1\DOROTH~1\APPLIC~1\WinRAR
[02/08/2008|23:24] C:\DOCUME~1\DOROTH~1.DOY\APPLIC~1\Adobe
[02/08/2008|23:46] C:\DOCUME~1\DOROTH~1.DOY\APPLIC~1\GigaTribe
[02/08/2008|23:42] C:\DOCUME~1\DOROTH~1.DOY\APPLIC~1\Help
[02/08/2008|23:07] C:\DOCUME~1\DOROTH~1.DOY\APPLIC~1\Identities
[10/04/2008|21:57] C:\DOCUME~1\DOROTH~1.DOY\APPLIC~1\Intel
[02/08/2008|23:26] C:\DOCUME~1\DOROTH~1.DOY\APPLIC~1\Macromedia
[02/08/2008|23:57] C:\DOCUME~1\DOROTH~1.DOY\APPLIC~1\Microsoft
[02/08/2008|23:24] C:\DOCUME~1\DOROTH~1.DOY\APPLIC~1\Mozilla
[02/08/2008|23:08] C:\DOCUME~1\DOROTH~1.DOY\APPLIC~1\Roxio
[10/04/2008|21:57] C:\DOCUME~1\LOCALS~1\APPLIC~1\Intel
[08/09/2008|20:32] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[12/06/2008|23:27] C:\DOCUME~1\LOCALS~1\APPLIC~1\Roxio
[11/04/2008|10:35] C:\DOCUME~1\LOCALS~1\APPLIC~1\X10 Commander
[30/05/2008|17:46] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Microsoft
[30/05/2008|23:12] C:\DOCUME~1\LOCALS~1.000\APPLIC~1\Microsoft
[08/09/2008|20:39] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[30/05/2008|17:46] C:\DOCUME~1\NETWOR~1.AUT\APPLIC~1\Microsoft
[30/05/2008|23:12] C:\DOCUME~1\NETWOR~1.000\APPLIC~1\Microsoft
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[10/09/2008 14:16][--ah-----] C:\WINDOWS\tasks\SA.DAT
[28/08/2001 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ Listing des dossiers dans C:\Program Files
[07/09/2008|23:42] C:\Program Files\a supprimer
[09/07/2008|00:03] C:\Program Files\Adobe
[21/08/2004|13:24] C:\Program Files\Ahead
[30/05/2008|18:00] C:\Program Files\Alcohol Soft
[07/09/2008|23:49] C:\Program Files\AVG
[30/05/2008|17:56] C:\Program Files\Azureus
[04/05/2008|09:42] C:\Program Files\BitDownload
[07/05/2008|09:07] C:\Program Files\BitTorrent Fastest Tool
[23/07/2008|11:58] C:\Program Files\Boris FX, Inc
[08/09/2008|19:59] C:\Program Files\CCleaner
[04/05/2008|08:33] C:\Program Files\Common Files
[10/04/2008|21:27] C:\Program Files\ComPlus Applications
[17/05/2008|18:23] C:\Program Files\Corel
[11/04/2008|10:10] C:\Program Files\Cyberlink
[11/04/2008|10:05] C:\Program Files\DivX
[04/05/2008|09:52] C:\Program Files\DNA
[10/04/2008|23:25] C:\Program Files\DVDFab Gold
[30/05/2008|17:56] C:\Program Files\eMule
[07/08/2008|21:00] C:\Program Files\Fichiers communs
[25/06/2008|09:59] C:\Program Files\FlashGet
[06/08/2008|13:22] C:\Program Files\GigaTribe
[11/04/2008|10:31] C:\Program Files\Hercules
[11/04/2008|10:08] C:\Program Files\Home Cinema
[23/07/2008|11:57] C:\Program Files\InstallShield Installation Information
[02/06/2008|19:09] C:\Program Files\Intel
[23/07/2008|11:32] C:\Program Files\Internet Explorer
[16/07/2008|10:59] C:\Program Files\Java
[10/04/2008|22:27] C:\Program Files\Kaspersky Lab
[30/05/2008|18:00] C:\Program Files\Kazaa Lite Resurrection
[30/05/2008|17:55] C:\Program Files\Lavasoft
[23/07/2008|11:59] C:\Program Files\LooksBuilderSE
[30/07/2008|13:39] C:\Program Files\ma-config.com
[10/04/2008|21:53] C:\Program Files\Marvell
[20/08/2008|21:42] C:\Program Files\Messenger
[19/07/2008|17:30] C:\Program Files\Microsoft ActiveSync
[10/04/2008|21:32] C:\Program Files\microsoft frontpage
[14/05/2008|13:07] C:\Program Files\Microsoft Office
[10/04/2008|22:59] C:\Program Files\Microsoft Visual Studio
[10/04/2008|23:01] C:\Program Files\Microsoft Works
[02/06/2008|13:09] C:\Program Files\Movie Maker
[30/05/2008|17:59] C:\Program Files\mozilla
[30/05/2008|07:18] C:\Program Files\Mozilla Firefox
[10/09/2008|15:47] C:\Program Files\Mozilla Firefox 3 Beta 5
[10/04/2008|21:26] C:\Program Files\MSN
[02/06/2008|14:50] C:\Program Files\msn gaming zone
[30/05/2008|17:56] C:\Program Files\MSN Messenger
[11/04/2008|23:36] C:\Program Files\MSXML 4.0
[10/04/2008|23:25] C:\Program Files\MSXML 6.0
[11/04/2008|11:08] C:\Program Files\Nero
[02/06/2008|13:09] C:\Program Files\NetMeeting
[10/04/2008|21:27] C:\Program Files\Online Services
[09/07/2008|14:07] C:\Program Files\OO Software
[02/06/2008|13:09] C:\Program Files\Outlook Express
[18/06/2008|15:55] C:\Program Files\PENTAX
[27/07/2008|00:17] C:\Program Files\Pinnacle
[23/07/2008|11:59] C:\Program Files\proDAD
[16/07/2008|13:41] C:\Program Files\Realtek
[30/05/2008|17:59] C:\Program Files\Satsuki Decodeur Pack
[20/05/2008|22:35] C:\Program Files\ScanSoft
[10/04/2008|21:30] C:\Program Files\Services en ligne
[05/05/2008|07:08] C:\Program Files\SlySoft
[12/06/2008|21:35] C:\Program Files\SmartSound Software
[08/09/2008|07:37] C:\Program Files\Spybot - Search & Destroy
[27/07/2008|00:16] C:\Program Files\Steinberg
[19/07/2008|17:30] C:\Program Files\Sunnysoft
[11/04/2008|18:42] C:\Program Files\Synaptics
[30/04/2008|17:20] C:\Program Files\Syncrosoft
[02/06/2008|16:36] C:\Program Files\SystemRequirementsLab
[07/09/2008|08:18] C:\Program Files\TeaTimer (Spybot - Search & Destroy)
[07/05/2008|09:06] C:\Program Files\torrent_search
[10/04/2008|21:40] C:\Program Files\Uninstall Information
[07/09/2008|23:16] C:\Program Files\Unlocker
[16/07/2008|13:32] C:\Program Files\vanBasco's Karaoke Player
[12/05/2008|20:02] C:\Program Files\ViaMichelin
[07/09/2008|22:09] C:\Program Files\VS Revo Group
[23/08/2004|15:38] C:\Program Files\WINAMP
[30/07/2008|16:27] C:\Program Files\Windows Live
[02/07/2008|20:57] C:\Program Files\Windows Media Connect 2
[30/07/2008|16:34] C:\Program Files\Windows Media Player
[02/06/2008|13:07] C:\Program Files\Windows NT
[10/04/2008|21:30] C:\Program Files\WindowsUpdate
[30/05/2008|18:00] C:\Program Files\WinISO
[30/05/2008|17:59] C:\Program Files\WinRAR
[11/04/2008|10:07] C:\Program Files\X10 Hardware
[10/04/2008|21:32] C:\Program Files\xerox
[30/04/2008|16:54] C:\Program Files\Yahoo!
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[22/04/2008|20:57] C:\Program Files\Fichiers communs\Adobe
[11/04/2008|11:09] C:\Program Files\Fichiers communs\Ahead
[11/04/2008|10:33] C:\Program Files\Fichiers communs\ArcSoft
[27/07/2008|00:25] C:\Program Files\Fichiers communs\Bcgsoft
[30/04/2008|10:29] C:\Program Files\Fichiers communs\Corel
[10/04/2008|22:59] C:\Program Files\Fichiers communs\DESIGNER
[02/06/2008|21:14] C:\Program Files\Fichiers communs\InstallShield
[04/05/2008|09:07] C:\Program Files\Fichiers communs\Java
[25/06/2008|09:26] C:\Program Files\Fichiers communs\Microsoft Shared
[10/04/2008|21:29] C:\Program Files\Fichiers communs\MSSoap
[10/04/2008|23:18] C:\Program Files\Fichiers communs\ODBC
[23/07/2008|11:47] C:\Program Files\Fichiers communs\Pinnacle
[07/08/2008|21:01] C:\Program Files\Fichiers communs\Roxio Shared
[10/04/2008|21:29] C:\Program Files\Fichiers communs\Services
[10/04/2008|23:18] C:\Program Files\Fichiers communs\SpeechEngines
[30/04/2008|09:07] C:\Program Files\Fichiers communs\Steinberg
[02/06/2008|13:09] C:\Program Files\Fichiers communs\System
[10/04/2008|23:50] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[23/07/2008|11:41] C:\Program Files\Fichiers communs\Yahoo!
--------------------\\ Process
( 54 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Move Bore Curb Tool
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Move Bore Curb Tool\platform bin.exe
C:\Program Files\BitDownload
C:\Program Files\BitTorrent Fastest Tool
C:\Program Files\BitTorrent Fastest Tool\BitP.exe
C:\Program Files\BitTorrent Fastest Tool\INSTALL.LOG
C:\Program Files\BitTorrent Fastest Tool\torrent_search.exe
--------------------\\ Verification du Registre
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-10 15:54:02
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 118
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:818][D:15]-> C:\DOCUME~1\DOROTH~1\LOCALS~1\Temp
[F:11][D:0]-> C:\DOCUME~1\DOROTH~1\Cookies
[F:135][D:4]-> C:\DOCUME~1\DOROTH~1\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 10/09/2008|15:55 - Option : [1]
--------------------\\ Fin du rapport a 15:55:16
Et voici le rapport hijackthis
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:57:54, on 10/09/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\PROGRA~1\AVG\AVG8\avgfws8.exe
C:\Program Files\Home Cinema\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\oodag.exe
C:\WINDOWS\system32\PSIService.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\Cyberlink\Shared files\RichVideo.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\SlySoft\AnyDVD\AnyDVD.exe
C:\Program Files\Home Cinema\PowerDVD\PDVDServ.exe
C:\Program Files\Home Cinema\PowerCinema\PCMService.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\PROGRA~1\AVG\AVG8\avgam.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Unlocker\UnlockerAssistant.exe
C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Mozilla Firefox 3 Beta 5\firefox.exe
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\AVG\AVG8\avgtray.exe
C:\Documents and Settings\Dorothée.DOYEN-A9F4DC417\Bureau\Antivirus\HiJackThis2.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [AnyDVD] "C:\Program Files\SlySoft\AnyDVD\AnyDVD.exe"
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\Home Cinema\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Home Cinema\PowerCinema\PCMService.exe"
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\isuspm.exe" -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [InstantOn] "C:\Program Files\CyberLink\PowerCinema Linux\ion_install.exe /c "
O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe"
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: GigaTribe.lnk.disabled
O4 - Global Startup: Sunnysoft Backup Manager.lnk.disabled
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .mu3: C:\Program Files\Internet Explorer\Plugins\NPMyrMus.dll
O12 - Plugin for .mus: C:\Program Files\Internet Explorer\Plugins\NPMyrMus.dll
O12 - Plugin for .mut: C:\Program Files\Internet Explorer\Plugins\NPMyrMus.dll
O12 - Plugin for .myr: C:\Program Files\Internet Explorer\Plugins\NPMyrMus.dll
O12 - Plugin for .xmz: C:\Program Files\Internet Explorer\Plugins\NPMyrMus.dll
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} (Office Genuine Advantage Validation Tool) - http://download.microsoft.com/download/C/B/F/CBF23A2C-3E55-4664-BC5C-762780D79BA0/OGAControl.cab
O16 - DPF: {1E3F1348-4370-4BBE-A67A-CC7ED824CA85} (Microsoft Genuine Advantage Self Support Tool) - http://download.microsoft.com/download/7/4/9/749b0dc5-2175-4d5b-a6dd-9c4bc923683e/Selfhelpcontrol.cab
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} (System Requirements Lab) - http://dev.srtest.com/srl_bin/sysreqlab3.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} -
O17 - HKLM\System\CCS\Services\Tcpip\..\{B4470F6D-F9BE-4B61-AAFA-3D5DF4A23C40}: NameServer = 192.168.1.1
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - AppInit_DLLs: avgrsstx.dll
O23 - Service: AVG8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: AVG8 Firewall (avgfws8) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgfws8.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\Home Cinema\PowerCinema\Kernel\TV\CLCapSvc.exe (file missing)
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\Home Cinema\PowerCinema\Kernel\TV\CLSched.exe
O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\Home Cinema\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Unknown owner - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe (file missing)
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\Cyberlink\Shared files\RichVideo.exe
O23 - Service: LiveShare P2P Server 10 (RoxLiveShare10) - Unknown owner - C:\Program Files\Fichiers communs\Roxio Shared\10.0\SharedCOM\RoxLiveShare10.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
Voici le rapport Lop S&D
--------------------\\ Lop S&D 4.2.4-2 XP/Vista
Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : Genuine Intel(R) CPU T2300 @ 1.66GHz )
BIOS : Ver 1.00PARTTBL8
USER : Dorothée ( Administrator )
BOOT : Normal boot
Antivirus : AVG Internet Security 3-pack 8.0 (Activated)
Firewall : AVG Firewall 8.0 (Activated)
"C:\Lop SD" ( MAJ : 08-09-2008|21:40 )
Option : [1] ( 10/09/2008|15:52 )
--------------------\\ Listing des dossiers dans APPLIC~1
[30/05/2008|18:03] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[30/05/2008|17:55] C:\DOCUME~1\ADMINI~1\APPLIC~1\Lavasoft
[30/05/2008|18:03] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[30/05/2008|18:06] C:\DOCUME~1\ADMINI~1\APPLIC~1\Webroot
[30/05/2008|23:23] C:\DOCUME~1\ADMINI~1.TIT\APPLIC~1\Identities
[30/05/2008|23:12] C:\DOCUME~1\ADMINI~1.TIT\APPLIC~1\Microsoft
[09/07/2008|00:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[08/09/2008|20:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\avg8
[04/05/2008|09:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Azureus
[30/04/2008|10:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Corel
[02/07/2008|20:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cyberlink
[14/04/2008|11:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink
[30/04/2008|10:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[10/04/2008|21:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Intel
[25/06/2008|09:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab
[30/07/2008|13:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ma-config.com
[18/06/2008|11:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
[09/09/2008|22:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[24/04/2008|21:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[10/04/2008|23:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[09/09/2008|22:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Help
[04/05/2008|09:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Move Bore Curb Tool
[10/04/2008|22:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
[18/06/2008|09:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Office Genuine Advantage
[23/07/2008|11:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle
[23/07/2008|11:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle Studio Plus
[23/07/2008|11:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle Studio Ultimate
[07/08/2008|21:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Roxio
[12/06/2008|21:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SmartSound Software Inc
[12/06/2008|21:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
[07/09/2008|08:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[23/07/2008|11:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Studio 12
[10/09/2008|14:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sunbelt
[01/09/2008|15:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ViaMichelin
[18/06/2008|09:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[30/07/2008|16:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[30/05/2008|17:55] C:\DOCUME~1\Boomscud\APPLIC~1\Microsoft
[30/05/2008|17:58] C:\DOCUME~1\Boomscud\APPLIC~1\Sun
[10/04/2008|21:57] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Intel
[10/04/2008|21:32] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[08/07/2008|23:02] C:\DOCUME~1\DOROTH~1\APPLIC~1\aAvgApi
[26/04/2008|22:29] C:\DOCUME~1\DOROTH~1\APPLIC~1\Adobe
[11/04/2008|18:44] C:\DOCUME~1\DOROTH~1\APPLIC~1\AdobeUM
[23/04/2008|16:18] C:\DOCUME~1\DOROTH~1\APPLIC~1\Ahead
[11/04/2008|10:34] C:\DOCUME~1\DOROTH~1\APPLIC~1\ArcSoft
[30/05/2008|07:16] C:\DOCUME~1\DOROTH~1\APPLIC~1\Azureus
[04/05/2008|09:52] C:\DOCUME~1\DOROTH~1\APPLIC~1\BitTorrent
[30/04/2008|10:33] C:\DOCUME~1\DOROTH~1\APPLIC~1\Corel
[02/06/2008|20:36] C:\DOCUME~1\DOROTH~1\APPLIC~1\Corel Photo Album
[14/04/2008|11:24] C:\DOCUME~1\DOROTH~1\APPLIC~1\CyberLink
[23/07/2008|12:03] C:\DOCUME~1\DOROTH~1\APPLIC~1\DivX
[07/09/2008|08:42] C:\DOCUME~1\DOROTH~1\APPLIC~1\DNA
[03/09/2008|11:27] C:\DOCUME~1\DOROTH~1\APPLIC~1\GigaTribe
[10/04/2008|21:40] C:\DOCUME~1\DOROTH~1\APPLIC~1\Identities
[30/04/2008|10:25] C:\DOCUME~1\DOROTH~1\APPLIC~1\InstallShield
[30/07/2008|12:07] C:\DOCUME~1\DOROTH~1\APPLIC~1\Intel
[30/05/2008|07:16] C:\DOCUME~1\DOROTH~1\APPLIC~1\LimeWire
[21/04/2008|20:59] C:\DOCUME~1\DOROTH~1\APPLIC~1\Lingoes
[11/04/2008|23:29] C:\DOCUME~1\DOROTH~1\APPLIC~1\Macromedia
[09/09/2008|22:19] C:\DOCUME~1\DOROTH~1\APPLIC~1\Malwarebytes
[08/09/2008|20:32] C:\DOCUME~1\DOROTH~1\APPLIC~1\Microsoft
[23/04/2008|21:03] C:\DOCUME~1\DOROTH~1\APPLIC~1\Mozilla
[23/07/2008|11:59] C:\DOCUME~1\DOROTH~1\APPLIC~1\proDAD
[23/07/2008|11:15] C:\DOCUME~1\DOROTH~1\APPLIC~1\Roxio
[27/07/2008|00:18] C:\DOCUME~1\DOROTH~1\APPLIC~1\Steinberg
[04/05/2008|10:01] C:\DOCUME~1\DOROTH~1\APPLIC~1\Sun
[28/05/2008|20:24] C:\DOCUME~1\DOROTH~1\APPLIC~1\TaoUSign
[10/04/2008|23:19] C:\DOCUME~1\DOROTH~1\APPLIC~1\WinRAR
[02/08/2008|23:24] C:\DOCUME~1\DOROTH~1.DOY\APPLIC~1\Adobe
[02/08/2008|23:46] C:\DOCUME~1\DOROTH~1.DOY\APPLIC~1\GigaTribe
[02/08/2008|23:42] C:\DOCUME~1\DOROTH~1.DOY\APPLIC~1\Help
[02/08/2008|23:07] C:\DOCUME~1\DOROTH~1.DOY\APPLIC~1\Identities
[10/04/2008|21:57] C:\DOCUME~1\DOROTH~1.DOY\APPLIC~1\Intel
[02/08/2008|23:26] C:\DOCUME~1\DOROTH~1.DOY\APPLIC~1\Macromedia
[02/08/2008|23:57] C:\DOCUME~1\DOROTH~1.DOY\APPLIC~1\Microsoft
[02/08/2008|23:24] C:\DOCUME~1\DOROTH~1.DOY\APPLIC~1\Mozilla
[02/08/2008|23:08] C:\DOCUME~1\DOROTH~1.DOY\APPLIC~1\Roxio
[10/04/2008|21:57] C:\DOCUME~1\LOCALS~1\APPLIC~1\Intel
[08/09/2008|20:32] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[12/06/2008|23:27] C:\DOCUME~1\LOCALS~1\APPLIC~1\Roxio
[11/04/2008|10:35] C:\DOCUME~1\LOCALS~1\APPLIC~1\X10 Commander
[30/05/2008|17:46] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Microsoft
[30/05/2008|23:12] C:\DOCUME~1\LOCALS~1.000\APPLIC~1\Microsoft
[08/09/2008|20:39] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[30/05/2008|17:46] C:\DOCUME~1\NETWOR~1.AUT\APPLIC~1\Microsoft
[30/05/2008|23:12] C:\DOCUME~1\NETWOR~1.000\APPLIC~1\Microsoft
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[10/09/2008 14:16][--ah-----] C:\WINDOWS\tasks\SA.DAT
[28/08/2001 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ Listing des dossiers dans C:\Program Files
[07/09/2008|23:42] C:\Program Files\a supprimer
[09/07/2008|00:03] C:\Program Files\Adobe
[21/08/2004|13:24] C:\Program Files\Ahead
[30/05/2008|18:00] C:\Program Files\Alcohol Soft
[07/09/2008|23:49] C:\Program Files\AVG
[30/05/2008|17:56] C:\Program Files\Azureus
[04/05/2008|09:42] C:\Program Files\BitDownload
[07/05/2008|09:07] C:\Program Files\BitTorrent Fastest Tool
[23/07/2008|11:58] C:\Program Files\Boris FX, Inc
[08/09/2008|19:59] C:\Program Files\CCleaner
[04/05/2008|08:33] C:\Program Files\Common Files
[10/04/2008|21:27] C:\Program Files\ComPlus Applications
[17/05/2008|18:23] C:\Program Files\Corel
[11/04/2008|10:10] C:\Program Files\Cyberlink
[11/04/2008|10:05] C:\Program Files\DivX
[04/05/2008|09:52] C:\Program Files\DNA
[10/04/2008|23:25] C:\Program Files\DVDFab Gold
[30/05/2008|17:56] C:\Program Files\eMule
[07/08/2008|21:00] C:\Program Files\Fichiers communs
[25/06/2008|09:59] C:\Program Files\FlashGet
[06/08/2008|13:22] C:\Program Files\GigaTribe
[11/04/2008|10:31] C:\Program Files\Hercules
[11/04/2008|10:08] C:\Program Files\Home Cinema
[23/07/2008|11:57] C:\Program Files\InstallShield Installation Information
[02/06/2008|19:09] C:\Program Files\Intel
[23/07/2008|11:32] C:\Program Files\Internet Explorer
[16/07/2008|10:59] C:\Program Files\Java
[10/04/2008|22:27] C:\Program Files\Kaspersky Lab
[30/05/2008|18:00] C:\Program Files\Kazaa Lite Resurrection
[30/05/2008|17:55] C:\Program Files\Lavasoft
[23/07/2008|11:59] C:\Program Files\LooksBuilderSE
[30/07/2008|13:39] C:\Program Files\ma-config.com
[10/04/2008|21:53] C:\Program Files\Marvell
[20/08/2008|21:42] C:\Program Files\Messenger
[19/07/2008|17:30] C:\Program Files\Microsoft ActiveSync
[10/04/2008|21:32] C:\Program Files\microsoft frontpage
[14/05/2008|13:07] C:\Program Files\Microsoft Office
[10/04/2008|22:59] C:\Program Files\Microsoft Visual Studio
[10/04/2008|23:01] C:\Program Files\Microsoft Works
[02/06/2008|13:09] C:\Program Files\Movie Maker
[30/05/2008|17:59] C:\Program Files\mozilla
[30/05/2008|07:18] C:\Program Files\Mozilla Firefox
[10/09/2008|15:47] C:\Program Files\Mozilla Firefox 3 Beta 5
[10/04/2008|21:26] C:\Program Files\MSN
[02/06/2008|14:50] C:\Program Files\msn gaming zone
[30/05/2008|17:56] C:\Program Files\MSN Messenger
[11/04/2008|23:36] C:\Program Files\MSXML 4.0
[10/04/2008|23:25] C:\Program Files\MSXML 6.0
[11/04/2008|11:08] C:\Program Files\Nero
[02/06/2008|13:09] C:\Program Files\NetMeeting
[10/04/2008|21:27] C:\Program Files\Online Services
[09/07/2008|14:07] C:\Program Files\OO Software
[02/06/2008|13:09] C:\Program Files\Outlook Express
[18/06/2008|15:55] C:\Program Files\PENTAX
[27/07/2008|00:17] C:\Program Files\Pinnacle
[23/07/2008|11:59] C:\Program Files\proDAD
[16/07/2008|13:41] C:\Program Files\Realtek
[30/05/2008|17:59] C:\Program Files\Satsuki Decodeur Pack
[20/05/2008|22:35] C:\Program Files\ScanSoft
[10/04/2008|21:30] C:\Program Files\Services en ligne
[05/05/2008|07:08] C:\Program Files\SlySoft
[12/06/2008|21:35] C:\Program Files\SmartSound Software
[08/09/2008|07:37] C:\Program Files\Spybot - Search & Destroy
[27/07/2008|00:16] C:\Program Files\Steinberg
[19/07/2008|17:30] C:\Program Files\Sunnysoft
[11/04/2008|18:42] C:\Program Files\Synaptics
[30/04/2008|17:20] C:\Program Files\Syncrosoft
[02/06/2008|16:36] C:\Program Files\SystemRequirementsLab
[07/09/2008|08:18] C:\Program Files\TeaTimer (Spybot - Search & Destroy)
[07/05/2008|09:06] C:\Program Files\torrent_search
[10/04/2008|21:40] C:\Program Files\Uninstall Information
[07/09/2008|23:16] C:\Program Files\Unlocker
[16/07/2008|13:32] C:\Program Files\vanBasco's Karaoke Player
[12/05/2008|20:02] C:\Program Files\ViaMichelin
[07/09/2008|22:09] C:\Program Files\VS Revo Group
[23/08/2004|15:38] C:\Program Files\WINAMP
[30/07/2008|16:27] C:\Program Files\Windows Live
[02/07/2008|20:57] C:\Program Files\Windows Media Connect 2
[30/07/2008|16:34] C:\Program Files\Windows Media Player
[02/06/2008|13:07] C:\Program Files\Windows NT
[10/04/2008|21:30] C:\Program Files\WindowsUpdate
[30/05/2008|18:00] C:\Program Files\WinISO
[30/05/2008|17:59] C:\Program Files\WinRAR
[11/04/2008|10:07] C:\Program Files\X10 Hardware
[10/04/2008|21:32] C:\Program Files\xerox
[30/04/2008|16:54] C:\Program Files\Yahoo!
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[22/04/2008|20:57] C:\Program Files\Fichiers communs\Adobe
[11/04/2008|11:09] C:\Program Files\Fichiers communs\Ahead
[11/04/2008|10:33] C:\Program Files\Fichiers communs\ArcSoft
[27/07/2008|00:25] C:\Program Files\Fichiers communs\Bcgsoft
[30/04/2008|10:29] C:\Program Files\Fichiers communs\Corel
[10/04/2008|22:59] C:\Program Files\Fichiers communs\DESIGNER
[02/06/2008|21:14] C:\Program Files\Fichiers communs\InstallShield
[04/05/2008|09:07] C:\Program Files\Fichiers communs\Java
[25/06/2008|09:26] C:\Program Files\Fichiers communs\Microsoft Shared
[10/04/2008|21:29] C:\Program Files\Fichiers communs\MSSoap
[10/04/2008|23:18] C:\Program Files\Fichiers communs\ODBC
[23/07/2008|11:47] C:\Program Files\Fichiers communs\Pinnacle
[07/08/2008|21:01] C:\Program Files\Fichiers communs\Roxio Shared
[10/04/2008|21:29] C:\Program Files\Fichiers communs\Services
[10/04/2008|23:18] C:\Program Files\Fichiers communs\SpeechEngines
[30/04/2008|09:07] C:\Program Files\Fichiers communs\Steinberg
[02/06/2008|13:09] C:\Program Files\Fichiers communs\System
[10/04/2008|23:50] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[23/07/2008|11:41] C:\Program Files\Fichiers communs\Yahoo!
--------------------\\ Process
( 54 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Move Bore Curb Tool
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Move Bore Curb Tool\platform bin.exe
C:\Program Files\BitDownload
C:\Program Files\BitTorrent Fastest Tool
C:\Program Files\BitTorrent Fastest Tool\BitP.exe
C:\Program Files\BitTorrent Fastest Tool\INSTALL.LOG
C:\Program Files\BitTorrent Fastest Tool\torrent_search.exe
--------------------\\ Verification du Registre
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-10 15:54:02
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 118
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:818][D:15]-> C:\DOCUME~1\DOROTH~1\LOCALS~1\Temp
[F:11][D:0]-> C:\DOCUME~1\DOROTH~1\Cookies
[F:135][D:4]-> C:\DOCUME~1\DOROTH~1\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 10/09/2008|15:55 - Option : [1]
--------------------\\ Fin du rapport a 15:55:16
Et voici le rapport hijackthis
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:57:54, on 10/09/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\PROGRA~1\AVG\AVG8\avgfws8.exe
C:\Program Files\Home Cinema\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\oodag.exe
C:\WINDOWS\system32\PSIService.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\Cyberlink\Shared files\RichVideo.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\SlySoft\AnyDVD\AnyDVD.exe
C:\Program Files\Home Cinema\PowerDVD\PDVDServ.exe
C:\Program Files\Home Cinema\PowerCinema\PCMService.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\PROGRA~1\AVG\AVG8\avgam.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Unlocker\UnlockerAssistant.exe
C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Mozilla Firefox 3 Beta 5\firefox.exe
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\AVG\AVG8\avgtray.exe
C:\Documents and Settings\Dorothée.DOYEN-A9F4DC417\Bureau\Antivirus\HiJackThis2.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [AnyDVD] "C:\Program Files\SlySoft\AnyDVD\AnyDVD.exe"
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\Home Cinema\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Home Cinema\PowerCinema\PCMService.exe"
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\isuspm.exe" -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [InstantOn] "C:\Program Files\CyberLink\PowerCinema Linux\ion_install.exe /c "
O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe"
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: GigaTribe.lnk.disabled
O4 - Global Startup: Sunnysoft Backup Manager.lnk.disabled
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .mu3: C:\Program Files\Internet Explorer\Plugins\NPMyrMus.dll
O12 - Plugin for .mus: C:\Program Files\Internet Explorer\Plugins\NPMyrMus.dll
O12 - Plugin for .mut: C:\Program Files\Internet Explorer\Plugins\NPMyrMus.dll
O12 - Plugin for .myr: C:\Program Files\Internet Explorer\Plugins\NPMyrMus.dll
O12 - Plugin for .xmz: C:\Program Files\Internet Explorer\Plugins\NPMyrMus.dll
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} (Office Genuine Advantage Validation Tool) - http://download.microsoft.com/download/C/B/F/CBF23A2C-3E55-4664-BC5C-762780D79BA0/OGAControl.cab
O16 - DPF: {1E3F1348-4370-4BBE-A67A-CC7ED824CA85} (Microsoft Genuine Advantage Self Support Tool) - http://download.microsoft.com/download/7/4/9/749b0dc5-2175-4d5b-a6dd-9c4bc923683e/Selfhelpcontrol.cab
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} (System Requirements Lab) - http://dev.srtest.com/srl_bin/sysreqlab3.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} -
O17 - HKLM\System\CCS\Services\Tcpip\..\{B4470F6D-F9BE-4B61-AAFA-3D5DF4A23C40}: NameServer = 192.168.1.1
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - AppInit_DLLs: avgrsstx.dll
O23 - Service: AVG8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: AVG8 Firewall (avgfws8) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgfws8.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\Home Cinema\PowerCinema\Kernel\TV\CLCapSvc.exe (file missing)
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\Home Cinema\PowerCinema\Kernel\TV\CLSched.exe
O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\Home Cinema\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Unknown owner - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe (file missing)
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\Cyberlink\Shared files\RichVideo.exe
O23 - Service: LiveShare P2P Server 10 (RoxLiveShare10) - Unknown owner - C:\Program Files\Fichiers communs\Roxio Shared\10.0\SharedCOM\RoxLiveShare10.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
jlpjlp
Messages postés
51580
Date d'inscription
vendredi 18 mai 2007
Statut
Contributeur sécurité
Dernière intervention
3 mai 2022
5 040
10 sept. 2008 à 16:10
10 sept. 2008 à 16:10
ok
refais lop sd et choisi l'option 2 et colles le rapport
________________
mets a jour internet explorer ici même si tu surf avec firefox
https://www.01net.com/telecharger/windows/Internet/navigateur/fiches/33081.html
________________
scan avec
MalwareByte's Anti-Malware et vire ce qui est trouvé et colle le rapport et vire tout ce qui est trouvé
https://www.malekal.com/tutoriel-malwarebyte-anti-malware/
refais lop sd et choisi l'option 2 et colles le rapport
________________
mets a jour internet explorer ici même si tu surf avec firefox
https://www.01net.com/telecharger/windows/Internet/navigateur/fiches/33081.html
________________
scan avec
MalwareByte's Anti-Malware et vire ce qui est trouvé et colle le rapport et vire tout ce qui est trouvé
https://www.malekal.com/tutoriel-malwarebyte-anti-malware/
DDOYE
Messages postés
68
Date d'inscription
jeudi 31 août 2006
Statut
Membre
Dernière intervention
31 août 2010
2
10 sept. 2008 à 16:23
10 sept. 2008 à 16:23
Re bonjour,
Voila le rapport Lop
--------------------\\ Lop S&D 4.2.4-2 XP/Vista
Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : Genuine Intel(R) CPU T2300 @ 1.66GHz )
BIOS : Ver 1.00PARTTBL8
USER : Dorothée ( Administrator )
BOOT : Normal boot
Antivirus : AVG Internet Security 3-pack 8.0 (Activated)
Firewall : AVG Firewall 8.0 (Activated)
"C:\Lop SD" ( MAJ : 08-09-2008|21:40 )
Option : [2] ( 10/09/2008|16:16 )
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing des dossiers dans APPLIC~1
[30/05/2008|18:03] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[30/05/2008|17:55] C:\DOCUME~1\ADMINI~1\APPLIC~1\Lavasoft
[30/05/2008|18:03] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[30/05/2008|18:06] C:\DOCUME~1\ADMINI~1\APPLIC~1\Webroot
[30/05/2008|23:23] C:\DOCUME~1\ADMINI~1.TIT\APPLIC~1\Identities
[30/05/2008|23:12] C:\DOCUME~1\ADMINI~1.TIT\APPLIC~1\Microsoft
[09/07/2008|00:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[08/09/2008|20:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\avg8
[04/05/2008|09:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Azureus
[30/04/2008|10:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Corel
[02/07/2008|20:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cyberlink
[14/04/2008|11:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink
[30/04/2008|10:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[10/04/2008|21:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Intel
[25/06/2008|09:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab
[30/07/2008|13:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ma-config.com
[18/06/2008|11:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
[09/09/2008|22:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[24/04/2008|21:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[10/04/2008|23:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[09/09/2008|22:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Help
[10/04/2008|22:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
[18/06/2008|09:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Office Genuine Advantage
[23/07/2008|11:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle
[23/07/2008|11:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle Studio Plus
[23/07/2008|11:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle Studio Ultimate
[07/08/2008|21:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Roxio
[12/06/2008|21:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SmartSound Software Inc
[12/06/2008|21:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
[07/09/2008|08:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[23/07/2008|11:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Studio 12
[10/09/2008|14:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sunbelt
[01/09/2008|15:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ViaMichelin
[18/06/2008|09:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[30/07/2008|16:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[30/05/2008|17:55] C:\DOCUME~1\Boomscud\APPLIC~1\Microsoft
[30/05/2008|17:58] C:\DOCUME~1\Boomscud\APPLIC~1\Sun
[10/04/2008|21:57] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Intel
[10/04/2008|21:32] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[08/07/2008|23:02] C:\DOCUME~1\DOROTH~1\APPLIC~1\aAvgApi
[26/04/2008|22:29] C:\DOCUME~1\DOROTH~1\APPLIC~1\Adobe
[11/04/2008|18:44] C:\DOCUME~1\DOROTH~1\APPLIC~1\AdobeUM
[23/04/2008|16:18] C:\DOCUME~1\DOROTH~1\APPLIC~1\Ahead
[11/04/2008|10:34] C:\DOCUME~1\DOROTH~1\APPLIC~1\ArcSoft
[30/05/2008|07:16] C:\DOCUME~1\DOROTH~1\APPLIC~1\Azureus
[04/05/2008|09:52] C:\DOCUME~1\DOROTH~1\APPLIC~1\BitTorrent
[30/04/2008|10:33] C:\DOCUME~1\DOROTH~1\APPLIC~1\Corel
[02/06/2008|20:36] C:\DOCUME~1\DOROTH~1\APPLIC~1\Corel Photo Album
[14/04/2008|11:24] C:\DOCUME~1\DOROTH~1\APPLIC~1\CyberLink
[23/07/2008|12:03] C:\DOCUME~1\DOROTH~1\APPLIC~1\DivX
[07/09/2008|08:42] C:\DOCUME~1\DOROTH~1\APPLIC~1\DNA
[03/09/2008|11:27] C:\DOCUME~1\DOROTH~1\APPLIC~1\GigaTribe
[10/04/2008|21:40] C:\DOCUME~1\DOROTH~1\APPLIC~1\Identities
[30/04/2008|10:25] C:\DOCUME~1\DOROTH~1\APPLIC~1\InstallShield
[30/07/2008|12:07] C:\DOCUME~1\DOROTH~1\APPLIC~1\Intel
[30/05/2008|07:16] C:\DOCUME~1\DOROTH~1\APPLIC~1\LimeWire
[21/04/2008|20:59] C:\DOCUME~1\DOROTH~1\APPLIC~1\Lingoes
[11/04/2008|23:29] C:\DOCUME~1\DOROTH~1\APPLIC~1\Macromedia
[09/09/2008|22:19] C:\DOCUME~1\DOROTH~1\APPLIC~1\Malwarebytes
[08/09/2008|20:32] C:\DOCUME~1\DOROTH~1\APPLIC~1\Microsoft
[23/04/2008|21:03] C:\DOCUME~1\DOROTH~1\APPLIC~1\Mozilla
[23/07/2008|11:59] C:\DOCUME~1\DOROTH~1\APPLIC~1\proDAD
[23/07/2008|11:15] C:\DOCUME~1\DOROTH~1\APPLIC~1\Roxio
[27/07/2008|00:18] C:\DOCUME~1\DOROTH~1\APPLIC~1\Steinberg
[04/05/2008|10:01] C:\DOCUME~1\DOROTH~1\APPLIC~1\Sun
[28/05/2008|20:24] C:\DOCUME~1\DOROTH~1\APPLIC~1\TaoUSign
[10/04/2008|23:19] C:\DOCUME~1\DOROTH~1\APPLIC~1\WinRAR
[02/08/2008|23:24] C:\DOCUME~1\DOROTH~1.DOY\APPLIC~1\Adobe
[02/08/2008|23:46] C:\DOCUME~1\DOROTH~1.DOY\APPLIC~1\GigaTribe
[02/08/2008|23:42] C:\DOCUME~1\DOROTH~1.DOY\APPLIC~1\Help
[02/08/2008|23:07] C:\DOCUME~1\DOROTH~1.DOY\APPLIC~1\Identities
[10/04/2008|21:57] C:\DOCUME~1\DOROTH~1.DOY\APPLIC~1\Intel
[02/08/2008|23:26] C:\DOCUME~1\DOROTH~1.DOY\APPLIC~1\Macromedia
[02/08/2008|23:57] C:\DOCUME~1\DOROTH~1.DOY\APPLIC~1\Microsoft
[02/08/2008|23:24] C:\DOCUME~1\DOROTH~1.DOY\APPLIC~1\Mozilla
[02/08/2008|23:08] C:\DOCUME~1\DOROTH~1.DOY\APPLIC~1\Roxio
[10/04/2008|21:57] C:\DOCUME~1\LOCALS~1\APPLIC~1\Intel
[08/09/2008|20:32] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[12/06/2008|23:27] C:\DOCUME~1\LOCALS~1\APPLIC~1\Roxio
[11/04/2008|10:35] C:\DOCUME~1\LOCALS~1\APPLIC~1\X10 Commander
[30/05/2008|17:46] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Microsoft
[30/05/2008|23:12] C:\DOCUME~1\LOCALS~1.000\APPLIC~1\Microsoft
[08/09/2008|20:39] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[30/05/2008|17:46] C:\DOCUME~1\NETWOR~1.AUT\APPLIC~1\Microsoft
[30/05/2008|23:12] C:\DOCUME~1\NETWOR~1.000\APPLIC~1\Microsoft
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[10/09/2008 16:15][--ah-----] C:\WINDOWS\tasks\SA.DAT
[28/08/2001 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ Listing des dossiers dans C:\Program Files
[07/09/2008|23:42] C:\Program Files\a supprimer
[09/07/2008|00:03] C:\Program Files\Adobe
[21/08/2004|13:24] C:\Program Files\Ahead
[30/05/2008|18:00] C:\Program Files\Alcohol Soft
[07/09/2008|23:49] C:\Program Files\AVG
[30/05/2008|17:56] C:\Program Files\Azureus
[23/07/2008|11:58] C:\Program Files\Boris FX, Inc
[08/09/2008|19:59] C:\Program Files\CCleaner
[04/05/2008|08:33] C:\Program Files\Common Files
[10/04/2008|21:27] C:\Program Files\ComPlus Applications
[17/05/2008|18:23] C:\Program Files\Corel
[11/04/2008|10:10] C:\Program Files\Cyberlink
[11/04/2008|10:05] C:\Program Files\DivX
[04/05/2008|09:52] C:\Program Files\DNA
[10/04/2008|23:25] C:\Program Files\DVDFab Gold
[30/05/2008|17:56] C:\Program Files\eMule
[07/08/2008|21:00] C:\Program Files\Fichiers communs
[25/06/2008|09:59] C:\Program Files\FlashGet
[06/08/2008|13:22] C:\Program Files\GigaTribe
[11/04/2008|10:31] C:\Program Files\Hercules
[11/04/2008|10:08] C:\Program Files\Home Cinema
[23/07/2008|11:57] C:\Program Files\InstallShield Installation Information
[02/06/2008|19:09] C:\Program Files\Intel
[23/07/2008|11:32] C:\Program Files\Internet Explorer
[16/07/2008|10:59] C:\Program Files\Java
[10/04/2008|22:27] C:\Program Files\Kaspersky Lab
[30/05/2008|18:00] C:\Program Files\Kazaa Lite Resurrection
[30/05/2008|17:55] C:\Program Files\Lavasoft
[23/07/2008|11:59] C:\Program Files\LooksBuilderSE
[30/07/2008|13:39] C:\Program Files\ma-config.com
[10/04/2008|21:53] C:\Program Files\Marvell
[20/08/2008|21:42] C:\Program Files\Messenger
[19/07/2008|17:30] C:\Program Files\Microsoft ActiveSync
[10/04/2008|21:32] C:\Program Files\microsoft frontpage
[14/05/2008|13:07] C:\Program Files\Microsoft Office
[10/04/2008|22:59] C:\Program Files\Microsoft Visual Studio
[10/04/2008|23:01] C:\Program Files\Microsoft Works
[02/06/2008|13:09] C:\Program Files\Movie Maker
[30/05/2008|17:59] C:\Program Files\mozilla
[30/05/2008|07:18] C:\Program Files\Mozilla Firefox
[10/09/2008|16:17] C:\Program Files\Mozilla Firefox 3 Beta 5
[10/04/2008|21:26] C:\Program Files\MSN
[02/06/2008|14:50] C:\Program Files\msn gaming zone
[30/05/2008|17:56] C:\Program Files\MSN Messenger
[11/04/2008|23:36] C:\Program Files\MSXML 4.0
[10/04/2008|23:25] C:\Program Files\MSXML 6.0
[11/04/2008|11:08] C:\Program Files\Nero
[02/06/2008|13:09] C:\Program Files\NetMeeting
[10/04/2008|21:27] C:\Program Files\Online Services
[09/07/2008|14:07] C:\Program Files\OO Software
[02/06/2008|13:09] C:\Program Files\Outlook Express
[18/06/2008|15:55] C:\Program Files\PENTAX
[27/07/2008|00:17] C:\Program Files\Pinnacle
[23/07/2008|11:59] C:\Program Files\proDAD
[16/07/2008|13:41] C:\Program Files\Realtek
[30/05/2008|17:59] C:\Program Files\Satsuki Decodeur Pack
[20/05/2008|22:35] C:\Program Files\ScanSoft
[10/04/2008|21:30] C:\Program Files\Services en ligne
[05/05/2008|07:08] C:\Program Files\SlySoft
[12/06/2008|21:35] C:\Program Files\SmartSound Software
[08/09/2008|07:37] C:\Program Files\Spybot - Search & Destroy
[27/07/2008|00:16] C:\Program Files\Steinberg
[19/07/2008|17:30] C:\Program Files\Sunnysoft
[11/04/2008|18:42] C:\Program Files\Synaptics
[30/04/2008|17:20] C:\Program Files\Syncrosoft
[02/06/2008|16:36] C:\Program Files\SystemRequirementsLab
[07/09/2008|08:18] C:\Program Files\TeaTimer (Spybot - Search & Destroy)
[07/05/2008|09:06] C:\Program Files\torrent_search
[10/04/2008|21:40] C:\Program Files\Uninstall Information
[07/09/2008|23:16] C:\Program Files\Unlocker
[16/07/2008|13:32] C:\Program Files\vanBasco's Karaoke Player
[12/05/2008|20:02] C:\Program Files\ViaMichelin
[07/09/2008|22:09] C:\Program Files\VS Revo Group
[23/08/2004|15:38] C:\Program Files\WINAMP
[30/07/2008|16:27] C:\Program Files\Windows Live
[02/07/2008|20:57] C:\Program Files\Windows Media Connect 2
[30/07/2008|16:34] C:\Program Files\Windows Media Player
[02/06/2008|13:07] C:\Program Files\Windows NT
[10/04/2008|21:30] C:\Program Files\WindowsUpdate
[30/05/2008|18:00] C:\Program Files\WinISO
[30/05/2008|17:59] C:\Program Files\WinRAR
[11/04/2008|10:07] C:\Program Files\X10 Hardware
[10/04/2008|21:32] C:\Program Files\xerox
[30/04/2008|16:54] C:\Program Files\Yahoo!
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[22/04/2008|20:57] C:\Program Files\Fichiers communs\Adobe
[11/04/2008|11:09] C:\Program Files\Fichiers communs\Ahead
[11/04/2008|10:33] C:\Program Files\Fichiers communs\ArcSoft
[27/07/2008|00:25] C:\Program Files\Fichiers communs\Bcgsoft
[30/04/2008|10:29] C:\Program Files\Fichiers communs\Corel
[10/04/2008|22:59] C:\Program Files\Fichiers communs\DESIGNER
[02/06/2008|21:14] C:\Program Files\Fichiers communs\InstallShield
[04/05/2008|09:07] C:\Program Files\Fichiers communs\Java
[25/06/2008|09:26] C:\Program Files\Fichiers communs\Microsoft Shared
[10/04/2008|21:29] C:\Program Files\Fichiers communs\MSSoap
[10/04/2008|23:18] C:\Program Files\Fichiers communs\ODBC
[23/07/2008|11:47] C:\Program Files\Fichiers communs\Pinnacle
[07/08/2008|21:01] C:\Program Files\Fichiers communs\Roxio Shared
[10/04/2008|21:29] C:\Program Files\Fichiers communs\Services
[10/04/2008|23:18] C:\Program Files\Fichiers communs\SpeechEngines
[30/04/2008|09:07] C:\Program Files\Fichiers communs\Steinberg
[02/06/2008|13:09] C:\Program Files\Fichiers communs\System
[10/04/2008|23:50] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[23/07/2008|11:41] C:\Program Files\Fichiers communs\Yahoo!
--------------------\\ Process
( 55 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-10 16:18:57
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 118
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:825][D:16]-> C:\DOCUME~1\DOROTH~1\LOCALS~1\Temp
[F:11][D:0]-> C:\DOCUME~1\DOROTH~1\Cookies
[F:137][D:4]-> C:\DOCUME~1\DOROTH~1\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 10/09/2008|15:55 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 10/09/2008|16:20 - Option : [2]
--------------------\\ Fin du rapport a 16:20:15
Je viens de mettre à jour IE.
Je refais tourner Malwarebytes car j'ai eu un écran bleu et je colle le rapport dès que c'est fait.
Merci.
Ddoye
Voila le rapport Lop
--------------------\\ Lop S&D 4.2.4-2 XP/Vista
Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Multiprocessor Free : Genuine Intel(R) CPU T2300 @ 1.66GHz )
BIOS : Ver 1.00PARTTBL8
USER : Dorothée ( Administrator )
BOOT : Normal boot
Antivirus : AVG Internet Security 3-pack 8.0 (Activated)
Firewall : AVG Firewall 8.0 (Activated)
"C:\Lop SD" ( MAJ : 08-09-2008|21:40 )
Option : [2] ( 10/09/2008|16:16 )
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing des dossiers dans APPLIC~1
[30/05/2008|18:03] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[30/05/2008|17:55] C:\DOCUME~1\ADMINI~1\APPLIC~1\Lavasoft
[30/05/2008|18:03] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[30/05/2008|18:06] C:\DOCUME~1\ADMINI~1\APPLIC~1\Webroot
[30/05/2008|23:23] C:\DOCUME~1\ADMINI~1.TIT\APPLIC~1\Identities
[30/05/2008|23:12] C:\DOCUME~1\ADMINI~1.TIT\APPLIC~1\Microsoft
[09/07/2008|00:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[08/09/2008|20:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\avg8
[04/05/2008|09:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Azureus
[30/04/2008|10:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Corel
[02/07/2008|20:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Cyberlink
[14/04/2008|11:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink
[30/04/2008|10:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[10/04/2008|21:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Intel
[25/06/2008|09:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab
[30/07/2008|13:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ma-config.com
[18/06/2008|11:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
[09/09/2008|22:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[24/04/2008|21:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[10/04/2008|23:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[09/09/2008|22:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft Help
[10/04/2008|22:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
[18/06/2008|09:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Office Genuine Advantage
[23/07/2008|11:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle
[23/07/2008|11:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle Studio Plus
[23/07/2008|11:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle Studio Ultimate
[07/08/2008|21:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Roxio
[12/06/2008|21:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SmartSound Software Inc
[12/06/2008|21:44] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
[07/09/2008|08:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[23/07/2008|11:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Studio 12
[10/09/2008|14:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sunbelt
[01/09/2008|15:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ViaMichelin
[18/06/2008|09:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[30/07/2008|16:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[30/05/2008|17:55] C:\DOCUME~1\Boomscud\APPLIC~1\Microsoft
[30/05/2008|17:58] C:\DOCUME~1\Boomscud\APPLIC~1\Sun
[10/04/2008|21:57] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Intel
[10/04/2008|21:32] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[08/07/2008|23:02] C:\DOCUME~1\DOROTH~1\APPLIC~1\aAvgApi
[26/04/2008|22:29] C:\DOCUME~1\DOROTH~1\APPLIC~1\Adobe
[11/04/2008|18:44] C:\DOCUME~1\DOROTH~1\APPLIC~1\AdobeUM
[23/04/2008|16:18] C:\DOCUME~1\DOROTH~1\APPLIC~1\Ahead
[11/04/2008|10:34] C:\DOCUME~1\DOROTH~1\APPLIC~1\ArcSoft
[30/05/2008|07:16] C:\DOCUME~1\DOROTH~1\APPLIC~1\Azureus
[04/05/2008|09:52] C:\DOCUME~1\DOROTH~1\APPLIC~1\BitTorrent
[30/04/2008|10:33] C:\DOCUME~1\DOROTH~1\APPLIC~1\Corel
[02/06/2008|20:36] C:\DOCUME~1\DOROTH~1\APPLIC~1\Corel Photo Album
[14/04/2008|11:24] C:\DOCUME~1\DOROTH~1\APPLIC~1\CyberLink
[23/07/2008|12:03] C:\DOCUME~1\DOROTH~1\APPLIC~1\DivX
[07/09/2008|08:42] C:\DOCUME~1\DOROTH~1\APPLIC~1\DNA
[03/09/2008|11:27] C:\DOCUME~1\DOROTH~1\APPLIC~1\GigaTribe
[10/04/2008|21:40] C:\DOCUME~1\DOROTH~1\APPLIC~1\Identities
[30/04/2008|10:25] C:\DOCUME~1\DOROTH~1\APPLIC~1\InstallShield
[30/07/2008|12:07] C:\DOCUME~1\DOROTH~1\APPLIC~1\Intel
[30/05/2008|07:16] C:\DOCUME~1\DOROTH~1\APPLIC~1\LimeWire
[21/04/2008|20:59] C:\DOCUME~1\DOROTH~1\APPLIC~1\Lingoes
[11/04/2008|23:29] C:\DOCUME~1\DOROTH~1\APPLIC~1\Macromedia
[09/09/2008|22:19] C:\DOCUME~1\DOROTH~1\APPLIC~1\Malwarebytes
[08/09/2008|20:32] C:\DOCUME~1\DOROTH~1\APPLIC~1\Microsoft
[23/04/2008|21:03] C:\DOCUME~1\DOROTH~1\APPLIC~1\Mozilla
[23/07/2008|11:59] C:\DOCUME~1\DOROTH~1\APPLIC~1\proDAD
[23/07/2008|11:15] C:\DOCUME~1\DOROTH~1\APPLIC~1\Roxio
[27/07/2008|00:18] C:\DOCUME~1\DOROTH~1\APPLIC~1\Steinberg
[04/05/2008|10:01] C:\DOCUME~1\DOROTH~1\APPLIC~1\Sun
[28/05/2008|20:24] C:\DOCUME~1\DOROTH~1\APPLIC~1\TaoUSign
[10/04/2008|23:19] C:\DOCUME~1\DOROTH~1\APPLIC~1\WinRAR
[02/08/2008|23:24] C:\DOCUME~1\DOROTH~1.DOY\APPLIC~1\Adobe
[02/08/2008|23:46] C:\DOCUME~1\DOROTH~1.DOY\APPLIC~1\GigaTribe
[02/08/2008|23:42] C:\DOCUME~1\DOROTH~1.DOY\APPLIC~1\Help
[02/08/2008|23:07] C:\DOCUME~1\DOROTH~1.DOY\APPLIC~1\Identities
[10/04/2008|21:57] C:\DOCUME~1\DOROTH~1.DOY\APPLIC~1\Intel
[02/08/2008|23:26] C:\DOCUME~1\DOROTH~1.DOY\APPLIC~1\Macromedia
[02/08/2008|23:57] C:\DOCUME~1\DOROTH~1.DOY\APPLIC~1\Microsoft
[02/08/2008|23:24] C:\DOCUME~1\DOROTH~1.DOY\APPLIC~1\Mozilla
[02/08/2008|23:08] C:\DOCUME~1\DOROTH~1.DOY\APPLIC~1\Roxio
[10/04/2008|21:57] C:\DOCUME~1\LOCALS~1\APPLIC~1\Intel
[08/09/2008|20:32] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[12/06/2008|23:27] C:\DOCUME~1\LOCALS~1\APPLIC~1\Roxio
[11/04/2008|10:35] C:\DOCUME~1\LOCALS~1\APPLIC~1\X10 Commander
[30/05/2008|17:46] C:\DOCUME~1\LOCALS~1.AUT\APPLIC~1\Microsoft
[30/05/2008|23:12] C:\DOCUME~1\LOCALS~1.000\APPLIC~1\Microsoft
[08/09/2008|20:39] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[30/05/2008|17:46] C:\DOCUME~1\NETWOR~1.AUT\APPLIC~1\Microsoft
[30/05/2008|23:12] C:\DOCUME~1\NETWOR~1.000\APPLIC~1\Microsoft
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[10/09/2008 16:15][--ah-----] C:\WINDOWS\tasks\SA.DAT
[28/08/2001 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ Listing des dossiers dans C:\Program Files
[07/09/2008|23:42] C:\Program Files\a supprimer
[09/07/2008|00:03] C:\Program Files\Adobe
[21/08/2004|13:24] C:\Program Files\Ahead
[30/05/2008|18:00] C:\Program Files\Alcohol Soft
[07/09/2008|23:49] C:\Program Files\AVG
[30/05/2008|17:56] C:\Program Files\Azureus
[23/07/2008|11:58] C:\Program Files\Boris FX, Inc
[08/09/2008|19:59] C:\Program Files\CCleaner
[04/05/2008|08:33] C:\Program Files\Common Files
[10/04/2008|21:27] C:\Program Files\ComPlus Applications
[17/05/2008|18:23] C:\Program Files\Corel
[11/04/2008|10:10] C:\Program Files\Cyberlink
[11/04/2008|10:05] C:\Program Files\DivX
[04/05/2008|09:52] C:\Program Files\DNA
[10/04/2008|23:25] C:\Program Files\DVDFab Gold
[30/05/2008|17:56] C:\Program Files\eMule
[07/08/2008|21:00] C:\Program Files\Fichiers communs
[25/06/2008|09:59] C:\Program Files\FlashGet
[06/08/2008|13:22] C:\Program Files\GigaTribe
[11/04/2008|10:31] C:\Program Files\Hercules
[11/04/2008|10:08] C:\Program Files\Home Cinema
[23/07/2008|11:57] C:\Program Files\InstallShield Installation Information
[02/06/2008|19:09] C:\Program Files\Intel
[23/07/2008|11:32] C:\Program Files\Internet Explorer
[16/07/2008|10:59] C:\Program Files\Java
[10/04/2008|22:27] C:\Program Files\Kaspersky Lab
[30/05/2008|18:00] C:\Program Files\Kazaa Lite Resurrection
[30/05/2008|17:55] C:\Program Files\Lavasoft
[23/07/2008|11:59] C:\Program Files\LooksBuilderSE
[30/07/2008|13:39] C:\Program Files\ma-config.com
[10/04/2008|21:53] C:\Program Files\Marvell
[20/08/2008|21:42] C:\Program Files\Messenger
[19/07/2008|17:30] C:\Program Files\Microsoft ActiveSync
[10/04/2008|21:32] C:\Program Files\microsoft frontpage
[14/05/2008|13:07] C:\Program Files\Microsoft Office
[10/04/2008|22:59] C:\Program Files\Microsoft Visual Studio
[10/04/2008|23:01] C:\Program Files\Microsoft Works
[02/06/2008|13:09] C:\Program Files\Movie Maker
[30/05/2008|17:59] C:\Program Files\mozilla
[30/05/2008|07:18] C:\Program Files\Mozilla Firefox
[10/09/2008|16:17] C:\Program Files\Mozilla Firefox 3 Beta 5
[10/04/2008|21:26] C:\Program Files\MSN
[02/06/2008|14:50] C:\Program Files\msn gaming zone
[30/05/2008|17:56] C:\Program Files\MSN Messenger
[11/04/2008|23:36] C:\Program Files\MSXML 4.0
[10/04/2008|23:25] C:\Program Files\MSXML 6.0
[11/04/2008|11:08] C:\Program Files\Nero
[02/06/2008|13:09] C:\Program Files\NetMeeting
[10/04/2008|21:27] C:\Program Files\Online Services
[09/07/2008|14:07] C:\Program Files\OO Software
[02/06/2008|13:09] C:\Program Files\Outlook Express
[18/06/2008|15:55] C:\Program Files\PENTAX
[27/07/2008|00:17] C:\Program Files\Pinnacle
[23/07/2008|11:59] C:\Program Files\proDAD
[16/07/2008|13:41] C:\Program Files\Realtek
[30/05/2008|17:59] C:\Program Files\Satsuki Decodeur Pack
[20/05/2008|22:35] C:\Program Files\ScanSoft
[10/04/2008|21:30] C:\Program Files\Services en ligne
[05/05/2008|07:08] C:\Program Files\SlySoft
[12/06/2008|21:35] C:\Program Files\SmartSound Software
[08/09/2008|07:37] C:\Program Files\Spybot - Search & Destroy
[27/07/2008|00:16] C:\Program Files\Steinberg
[19/07/2008|17:30] C:\Program Files\Sunnysoft
[11/04/2008|18:42] C:\Program Files\Synaptics
[30/04/2008|17:20] C:\Program Files\Syncrosoft
[02/06/2008|16:36] C:\Program Files\SystemRequirementsLab
[07/09/2008|08:18] C:\Program Files\TeaTimer (Spybot - Search & Destroy)
[07/05/2008|09:06] C:\Program Files\torrent_search
[10/04/2008|21:40] C:\Program Files\Uninstall Information
[07/09/2008|23:16] C:\Program Files\Unlocker
[16/07/2008|13:32] C:\Program Files\vanBasco's Karaoke Player
[12/05/2008|20:02] C:\Program Files\ViaMichelin
[07/09/2008|22:09] C:\Program Files\VS Revo Group
[23/08/2004|15:38] C:\Program Files\WINAMP
[30/07/2008|16:27] C:\Program Files\Windows Live
[02/07/2008|20:57] C:\Program Files\Windows Media Connect 2
[30/07/2008|16:34] C:\Program Files\Windows Media Player
[02/06/2008|13:07] C:\Program Files\Windows NT
[10/04/2008|21:30] C:\Program Files\WindowsUpdate
[30/05/2008|18:00] C:\Program Files\WinISO
[30/05/2008|17:59] C:\Program Files\WinRAR
[11/04/2008|10:07] C:\Program Files\X10 Hardware
[10/04/2008|21:32] C:\Program Files\xerox
[30/04/2008|16:54] C:\Program Files\Yahoo!
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[22/04/2008|20:57] C:\Program Files\Fichiers communs\Adobe
[11/04/2008|11:09] C:\Program Files\Fichiers communs\Ahead
[11/04/2008|10:33] C:\Program Files\Fichiers communs\ArcSoft
[27/07/2008|00:25] C:\Program Files\Fichiers communs\Bcgsoft
[30/04/2008|10:29] C:\Program Files\Fichiers communs\Corel
[10/04/2008|22:59] C:\Program Files\Fichiers communs\DESIGNER
[02/06/2008|21:14] C:\Program Files\Fichiers communs\InstallShield
[04/05/2008|09:07] C:\Program Files\Fichiers communs\Java
[25/06/2008|09:26] C:\Program Files\Fichiers communs\Microsoft Shared
[10/04/2008|21:29] C:\Program Files\Fichiers communs\MSSoap
[10/04/2008|23:18] C:\Program Files\Fichiers communs\ODBC
[23/07/2008|11:47] C:\Program Files\Fichiers communs\Pinnacle
[07/08/2008|21:01] C:\Program Files\Fichiers communs\Roxio Shared
[10/04/2008|21:29] C:\Program Files\Fichiers communs\Services
[10/04/2008|23:18] C:\Program Files\Fichiers communs\SpeechEngines
[30/04/2008|09:07] C:\Program Files\Fichiers communs\Steinberg
[02/06/2008|13:09] C:\Program Files\Fichiers communs\System
[10/04/2008|23:50] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[23/07/2008|11:41] C:\Program Files\Fichiers communs\Yahoo!
--------------------\\ Process
( 55 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-10 16:18:57
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 118
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:825][D:16]-> C:\DOCUME~1\DOROTH~1\LOCALS~1\Temp
[F:11][D:0]-> C:\DOCUME~1\DOROTH~1\Cookies
[F:137][D:4]-> C:\DOCUME~1\DOROTH~1\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 10/09/2008|15:55 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 10/09/2008|16:20 - Option : [2]
--------------------\\ Fin du rapport a 16:20:15
Je viens de mettre à jour IE.
Je refais tourner Malwarebytes car j'ai eu un écran bleu et je colle le rapport dès que c'est fait.
Merci.
Ddoye
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
DDOYE
Messages postés
68
Date d'inscription
jeudi 31 août 2006
Statut
Membre
Dernière intervention
31 août 2010
2
10 sept. 2008 à 20:41
10 sept. 2008 à 20:41
Bonsoir,
Voici le rapport malwarebytes :
Malwarebytes' Anti-Malware 1.27
Version de la base de données: 1133
Windows 5.1.2600 Service Pack 3
10/09/2008 20:38:16
mbam-log-2008-09-10 (20-38-16).txt
Type de recherche: Examen complet (C:\|D:\|E:\|H:\|)
Eléments examinés: 312518
Temps écoulé: 1 hour(s), 41 minute(s), 27 second(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
(Aucun élément nuisible détecté)
Merci
ddoye
Voici le rapport malwarebytes :
Malwarebytes' Anti-Malware 1.27
Version de la base de données: 1133
Windows 5.1.2600 Service Pack 3
10/09/2008 20:38:16
mbam-log-2008-09-10 (20-38-16).txt
Type de recherche: Examen complet (C:\|D:\|E:\|H:\|)
Eléments examinés: 312518
Temps écoulé: 1 hour(s), 41 minute(s), 27 second(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
(Aucun élément nuisible détecté)
Merci
ddoye
jlpjlp
Messages postés
51580
Date d'inscription
vendredi 18 mai 2007
Statut
Contributeur sécurité
Dernière intervention
3 mai 2022
5 040
10 sept. 2008 à 20:59
10 sept. 2008 à 20:59
ok encore des soucis?
colles un scan kaspersky pour verifier
a plus
colles un scan kaspersky pour verifier
a plus
DDOYE
Messages postés
68
Date d'inscription
jeudi 31 août 2006
Statut
Membre
Dernière intervention
31 août 2010
2
10 sept. 2008 à 22:33
10 sept. 2008 à 22:33
Bonsoir,
Tout est presque ok.
J'avais téléchargé vipre en antivirus à la place d'avg car je ne pouvais plus faire de scan. Je l'ai supprimer et maintenant que je veux supprimer un dossier sur mon bureau voici le message que j'obtiens :
Windows installer
The feature your are trying to use is on a network resource that is unavailable.
Click OK to try again, or enter an alternate path to a folder containing the installation package 'SBVIPRE_DEFS_EN.msi' in the box below.
Use source :
C:\DOCUMENTS\LOCALSETTINGS\Temp\{1.............
Je dois cliquer plusieurs fois sur CANCEL pour pouvoir supprimer l'icone sur le bureau.
Merci pour l'aide.
Sinon je peux à nouveau faire un scan avec AVG.
Ddoye
Tout est presque ok.
J'avais téléchargé vipre en antivirus à la place d'avg car je ne pouvais plus faire de scan. Je l'ai supprimer et maintenant que je veux supprimer un dossier sur mon bureau voici le message que j'obtiens :
Windows installer
The feature your are trying to use is on a network resource that is unavailable.
Click OK to try again, or enter an alternate path to a folder containing the installation package 'SBVIPRE_DEFS_EN.msi' in the box below.
Use source :
C:\DOCUMENTS\LOCALSETTINGS\Temp\{1.............
Je dois cliquer plusieurs fois sur CANCEL pour pouvoir supprimer l'icone sur le bureau.
Merci pour l'aide.
Sinon je peux à nouveau faire un scan avec AVG.
Ddoye
jlpjlp
Messages postés
51580
Date d'inscription
vendredi 18 mai 2007
Statut
Contributeur sécurité
Dernière intervention
3 mai 2022
5 040
11 sept. 2008 à 13:19
11 sept. 2008 à 13:19
remets un rapport hijackthis
DDOYE
Messages postés
68
Date d'inscription
jeudi 31 août 2006
Statut
Membre
Dernière intervention
31 août 2010
2
11 sept. 2008 à 18:16
11 sept. 2008 à 18:16
Bonjour,
Voici le rapport:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:14:29, on 11/09/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\PROGRA~1\AVG\AVG8\avgfws8.exe
C:\Program Files\Home Cinema\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\WINDOWS\system32\oodag.exe
C:\WINDOWS\system32\PSIService.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\Cyberlink\Shared files\RichVideo.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\AVG\AVG8\avgam.exe
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\SlySoft\AnyDVD\AnyDVD.exe
C:\Program Files\Home Cinema\PowerDVD\PDVDServ.exe
C:\Program Files\Home Cinema\PowerCinema\PCMService.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Unlocker\UnlockerAssistant.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\Program Files\Mozilla Firefox 3 Beta 5\firefox.exe
C:\Documents and Settings\Dorothée.DOYEN-A9F4DC417\Bureau\Antivirus\HiJackThis2.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [AnyDVD] "C:\Program Files\SlySoft\AnyDVD\AnyDVD.exe"
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\Home Cinema\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Home Cinema\PowerCinema\PCMService.exe"
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\isuspm.exe" -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [InstantOn] "C:\Program Files\CyberLink\PowerCinema Linux\ion_install.exe /c "
O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe"
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [SBAMTray] C:\Program Files\Sunbelt Software\VIPRE\SBAMTray.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: GigaTribe.lnk.disabled
O4 - Global Startup: Sunnysoft Backup Manager.lnk.disabled
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .mu3: C:\Program Files\Internet Explorer\Plugins\NPMyrMus.dll
O12 - Plugin for .mus: C:\Program Files\Internet Explorer\Plugins\NPMyrMus.dll
O12 - Plugin for .mut: C:\Program Files\Internet Explorer\Plugins\NPMyrMus.dll
O12 - Plugin for .myr: C:\Program Files\Internet Explorer\Plugins\NPMyrMus.dll
O12 - Plugin for .xmz: C:\Program Files\Internet Explorer\Plugins\NPMyrMus.dll
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} (Office Genuine Advantage Validation Tool) - http://download.microsoft.com/download/C/B/F/CBF23A2C-3E55-4664-BC5C-762780D79BA0/OGAControl.cab
O16 - DPF: {1E3F1348-4370-4BBE-A67A-CC7ED824CA85} (Microsoft Genuine Advantage Self Support Tool) - http://download.microsoft.com/download/7/4/9/749b0dc5-2175-4d5b-a6dd-9c4bc923683e/Selfhelpcontrol.cab
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} (System Requirements Lab) - http://dev.srtest.com/srl_bin/sysreqlab3.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} -
O17 - HKLM\System\CCS\Services\Tcpip\..\{B4470F6D-F9BE-4B61-AAFA-3D5DF4A23C40}: NameServer = 192.168.1.1
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - AppInit_DLLs: avgrsstx.dll
O23 - Service: AVG8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: AVG8 Firewall (avgfws8) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgfws8.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\Home Cinema\PowerCinema\Kernel\TV\CLCapSvc.exe (file missing)
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\Home Cinema\PowerCinema\Kernel\TV\CLSched.exe
O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\Home Cinema\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Unknown owner - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe (file missing)
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\Cyberlink\Shared files\RichVideo.exe
O23 - Service: LiveShare P2P Server 10 (RoxLiveShare10) - Unknown owner - C:\Program Files\Fichiers communs\Roxio Shared\10.0\SharedCOM\RoxLiveShare10.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
Voici le rapport:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:14:29, on 11/09/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\PROGRA~1\AVG\AVG8\avgfws8.exe
C:\Program Files\Home Cinema\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\WINDOWS\system32\oodag.exe
C:\WINDOWS\system32\PSIService.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\Cyberlink\Shared files\RichVideo.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\AVG\AVG8\avgam.exe
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\SlySoft\AnyDVD\AnyDVD.exe
C:\Program Files\Home Cinema\PowerDVD\PDVDServ.exe
C:\Program Files\Home Cinema\PowerCinema\PCMService.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Unlocker\UnlockerAssistant.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\Program Files\Mozilla Firefox 3 Beta 5\firefox.exe
C:\Documents and Settings\Dorothée.DOYEN-A9F4DC417\Bureau\Antivirus\HiJackThis2.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [AnyDVD] "C:\Program Files\SlySoft\AnyDVD\AnyDVD.exe"
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\Home Cinema\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Home Cinema\PowerCinema\PCMService.exe"
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\isuspm.exe" -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [InstantOn] "C:\Program Files\CyberLink\PowerCinema Linux\ion_install.exe /c "
O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe"
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [SBAMTray] C:\Program Files\Sunbelt Software\VIPRE\SBAMTray.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: GigaTribe.lnk.disabled
O4 - Global Startup: Sunnysoft Backup Manager.lnk.disabled
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .mu3: C:\Program Files\Internet Explorer\Plugins\NPMyrMus.dll
O12 - Plugin for .mus: C:\Program Files\Internet Explorer\Plugins\NPMyrMus.dll
O12 - Plugin for .mut: C:\Program Files\Internet Explorer\Plugins\NPMyrMus.dll
O12 - Plugin for .myr: C:\Program Files\Internet Explorer\Plugins\NPMyrMus.dll
O12 - Plugin for .xmz: C:\Program Files\Internet Explorer\Plugins\NPMyrMus.dll
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} (Office Genuine Advantage Validation Tool) - http://download.microsoft.com/download/C/B/F/CBF23A2C-3E55-4664-BC5C-762780D79BA0/OGAControl.cab
O16 - DPF: {1E3F1348-4370-4BBE-A67A-CC7ED824CA85} (Microsoft Genuine Advantage Self Support Tool) - http://download.microsoft.com/download/7/4/9/749b0dc5-2175-4d5b-a6dd-9c4bc923683e/Selfhelpcontrol.cab
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} (System Requirements Lab) - http://dev.srtest.com/srl_bin/sysreqlab3.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} -
O17 - HKLM\System\CCS\Services\Tcpip\..\{B4470F6D-F9BE-4B61-AAFA-3D5DF4A23C40}: NameServer = 192.168.1.1
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - AppInit_DLLs: avgrsstx.dll
O23 - Service: AVG8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: AVG8 Firewall (avgfws8) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgfws8.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\Home Cinema\PowerCinema\Kernel\TV\CLCapSvc.exe (file missing)
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\Home Cinema\PowerCinema\Kernel\TV\CLSched.exe
O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\Home Cinema\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Unknown owner - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe (file missing)
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\Cyberlink\Shared files\RichVideo.exe
O23 - Service: LiveShare P2P Server 10 (RoxLiveShare10) - Unknown owner - C:\Program Files\Fichiers communs\Roxio Shared\10.0\SharedCOM\RoxLiveShare10.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
DDOYE
Messages postés
68
Date d'inscription
jeudi 31 août 2006
Statut
Membre
Dernière intervention
31 août 2010
2
12 sept. 2008 à 22:04
12 sept. 2008 à 22:04
Bonsoir,
Tout est ok. J'avais mal désinstallé VIPRE.
Encore merci et à +
Ddoye
Tout est ok. J'avais mal désinstallé VIPRE.
Encore merci et à +
Ddoye
jlpjlp
Messages postés
51580
Date d'inscription
vendredi 18 mai 2007
Statut
Contributeur sécurité
Dernière intervention
3 mai 2022
5 040
13 sept. 2008 à 07:47
13 sept. 2008 à 07:47
ok parfait!
pour protéger gratos ton ordi
http://www.commentcamarche.net/telecharger/logiciel 4 securite
mettre un antivirus
ANTIVIR ou AVG 8
https://www.malekal.com/avira-free-security-antivirus-gratuit/ (merci Malekal)
-------------
des anti-espions :
MALWAREBYTE ANTIMALWARE + SPYBOT
+
SPYWAREBLASTER pour immuniser le système contre vundo notamment mais en anglais (mais facile d'utilisation : il suffit de faire "update" pour mettre à jour tous les mois et ensuite" enable all protection" pour immuniser)...
--------
un pare feu :
(celui de Windows) ou mieux COMODO ou KERIO ou JETICO ou ZONE ALARM (mettre que le parefeu gratuit)
http://www.clubic.com/telecharger-fiche11071-sunbelt-personal-firewall-e(...)
https://manuelsdaide.com/contact/
http://www.open-files.com/forum/index.php?showtopic=29277
https://www.commentcamarche.net/telecharger/ 157 zonealarm
-----------
CCLEANER pour effacer les traces de surf
pour protéger gratos ton ordi
http://www.commentcamarche.net/telecharger/logiciel 4 securite
mettre un antivirus
ANTIVIR ou AVG 8
https://www.malekal.com/avira-free-security-antivirus-gratuit/ (merci Malekal)
-------------
des anti-espions :
MALWAREBYTE ANTIMALWARE + SPYBOT
+
SPYWAREBLASTER pour immuniser le système contre vundo notamment mais en anglais (mais facile d'utilisation : il suffit de faire "update" pour mettre à jour tous les mois et ensuite" enable all protection" pour immuniser)...
--------
un pare feu :
(celui de Windows) ou mieux COMODO ou KERIO ou JETICO ou ZONE ALARM (mettre que le parefeu gratuit)
http://www.clubic.com/telecharger-fiche11071-sunbelt-personal-firewall-e(...)
https://manuelsdaide.com/contact/
http://www.open-files.com/forum/index.php?showtopic=29277
https://www.commentcamarche.net/telecharger/ 157 zonealarm
-----------
CCLEANER pour effacer les traces de surf
