Sujet Précédent Sujet Suivant

Ralentissement par processus iexplorer.exe

Fermé
Herve83200 - 12 sept. 2008 à 22:53
 hepsylon - 24 sept. 2008 à 20:37
Bonjour,

Mon PC est considérablement ralenti par un processus iexplorer.exe... J'ai effectué des scan Online avec Bit defender et Avast, puis CCleaner, mais rien n'y fait... toujours iexplorer...

Je joins la synthèse HijackThis... si quelqu'un pouvait m'aider

Merci

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:27, on 2008-09-12
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlservr.exe
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\SPAMfighter\sfus.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
C:\WINDOWS\system32\RunDll32.exe
C:\WINDOWS\AGRSMMSG.exe
C:\WINDOWS\Dit.exe
C:\WINDOWS\zHotkey.exe
C:\Program Files\Home Cinema\PowerCinema\PCMService.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\monitor.exe
C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe
C:\Program Files\Unlocker\UnlockerAssistant.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\SPAMfighter\SFAgent.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Outlook Express\msimn.exe
F:\Programmes à installer\aswclnr.exe
F:\Programmes à installer\aswclnr.tmp
C:\WINDOWS\system32\taskmgr.exe
C:\Program Files\Norton AntiVirus\OPScan.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Program Files\Messenger\msmsgs.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (file missing)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [Dit] Dit.exe
O4 - HKLM\..\Run: [CHotkey] zHotkey.exe
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Home Cinema\PowerCinema\PCMService.exe"
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [Ulead AutoDetector v2] C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\monitor.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe"
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ante cast ooze tray] C:\Documents and Settings\All Users\Application Data\Bin Wait Ante Cast\Bleh Obj.exe
O4 - HKLM\..\Run: [SPAMfighter Agent] "C:\Program Files\SPAMfighter\SFAgent.exe" update delay 60
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [TeamWeb] C:\DOCUME~1\moi\APPLIC~1\BAITTI~1\Livedownloadnew.exe
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: BlueSoleil.lnk = ?
O4 - Global Startup: Démarrage rapide de HP Photosmart Premier.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: &Recherche AOL Toolbar - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to AMV Convert Tool... - C:\Program Files\MP3 Player Utilities 4.00\AMVConverter\grab.html
O8 - Extra context menu item: Add to AMV Converter... - C:\Program Files\MP3 Player Utilities 4.05\AMVConverter\grab.html
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: MediaManager tool grab multimedia file - C:\Program Files\MP3 Player Utilities 4.05\MediaManager\grab.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_01\bin\npjpi150_01.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_01\bin\npjpi150_01.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1106144136156
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {C45B1500-7B63-47C2-AB25-C28CB46AFDEE} (MediaBar) - http://sib1.od2.com/common/musicmanager/installation/MusicManagerPlugin.CAB
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{8839BEF5-67E0-461B-8831-736795DEC816}: NameServer = 212.27.54.252,212.27.53.252
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Program Files\Norton AntiVirus\IWP\NPFMntor.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: SPAMfighter Update Service - SPAMfighter ApS - C:\Program Files\SPAMfighter\sfus.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe

6 réponses

Réponse 1 / 6
Herve83200
12 sept. 2008 à 23:38
Bonsoir,

Je suis content de trouver un peu d'aide et je vous en remercie par avance.

Comme convenu je joins le rapport LopR:


--------------------\\ Lop S&D 4.2.4-2 XP/Vista


"C:\Lop SD" ( MAJ : 08-09-2008|21:40 )
Option : [1] ( 2008-09-12|23:33 )

--------------------\\ Listing des dossiers dans APPLIC~1

[2006-06-24|22:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ACD Systems
[2008-05-07|18:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[2006-06-24|22:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe Systems
[2005-01-19|15:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
[2006-06-24|10:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL
[2007-09-16|17:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[2008-09-07|09:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Bin Wait Ante Cast
[2007-02-01|22:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Bluetooth
[2007-07-06|14:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ciel
[2005-01-19|15:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[2008-02-02|15:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink
[2006-09-15|20:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[2006-09-02|19:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[2006-08-03|11:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[2006-09-08|23:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
[2006-07-01|11:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[2007-04-15|12:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[2007-05-22|20:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Minnetonka Audio Software
[2005-02-04|12:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
[2006-07-16|16:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle
[2006-07-16|16:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle Studio
[2006-07-23|18:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[2005-01-18|18:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[2006-07-31|11:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SmartSound Software Inc
[2006-09-02|19:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
[2007-02-24|10:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[2007-05-20|08:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[2006-08-21|14:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\UDL
[2008-01-27|12:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems
[2005-01-19|15:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Viewpoint
[2006-07-20|05:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[2006-11-24|18:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar

[2005-02-27|18:02] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Adobe
[2006-06-24|10:32] C:\DOCUME~1\DEFAUL~1\APPLIC~1\AOL
[2005-01-19|18:20] C:\DOCUME~1\DEFAUL~1\APPLIC~1\CyberLink
[2005-01-18|18:15] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[2005-01-19|16:14] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
[2005-01-19|16:14] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[2005-01-19|15:02] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Real
[2005-02-04|12:59] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Sun
[2005-01-19|15:09] C:\DOCUME~1\DEFAUL~1\APPLIC~1\You've Got Pictures Screensaver

[2006-08-03|17:01] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[2005-02-27|17:04] C:\DOCUME~1\LOCALS~1\APPLIC~1\X10 Commander

[2006-06-24|22:31] C:\DOCUME~1\moi\APPLIC~1\ACD Systems
[2007-12-13|19:45] C:\DOCUME~1\moi\APPLIC~1\Adobe
[2008-05-07|18:14] C:\DOCUME~1\moi\APPLIC~1\AdobeUM
[2006-07-21|15:40] C:\DOCUME~1\moi\APPLIC~1\Ahead
[2006-06-24|10:32] C:\DOCUME~1\moi\APPLIC~1\AOL
[2007-10-28|11:02] C:\DOCUME~1\moi\APPLIC~1\Apple Computer
[2008-09-10|18:17] C:\DOCUME~1\moi\APPLIC~1\BAITTICKACTIVE
[2006-10-30|23:05] C:\DOCUME~1\moi\APPLIC~1\CyberLink
[2007-07-05|17:48] C:\DOCUME~1\moi\APPLIC~1\FileMaker
[2006-09-15|20:48] C:\DOCUME~1\moi\APPLIC~1\Google
[2008-06-18|23:52] C:\DOCUME~1\moi\APPLIC~1\gtk-2.0
[2006-07-17|22:53] C:\DOCUME~1\moi\APPLIC~1\Help
[2006-09-02|20:47] C:\DOCUME~1\moi\APPLIC~1\HP
[2005-01-18|18:15] C:\DOCUME~1\moi\APPLIC~1\Identities
[2006-06-24|10:51] C:\DOCUME~1\moi\APPLIC~1\IsolatedStorage
[2007-11-14|19:28] C:\DOCUME~1\moi\APPLIC~1\La Bataille pour la Terre du Milieu ™ II
[2006-06-25|08:28] C:\DOCUME~1\moi\APPLIC~1\Lavasoft
[2008-05-11|01:37] C:\DOCUME~1\moi\APPLIC~1\Leadertech
[2005-01-19|16:14] C:\DOCUME~1\moi\APPLIC~1\Macromedia
[2006-07-04|20:01] C:\DOCUME~1\moi\APPLIC~1\Media Player Classic
[2007-06-17|21:08] C:\DOCUME~1\moi\APPLIC~1\Microsoft
[2006-12-15|22:25] C:\DOCUME~1\moi\APPLIC~1\Opera
[2006-07-09|21:09] C:\DOCUME~1\moi\APPLIC~1\Publish Providers
[2005-01-19|15:02] C:\DOCUME~1\moi\APPLIC~1\Real
[2006-07-09|21:08] C:\DOCUME~1\moi\APPLIC~1\Sony
[2007-07-03|19:54] C:\DOCUME~1\moi\APPLIC~1\SPAMfighter
[2007-12-11|19:28] C:\DOCUME~1\moi\APPLIC~1\STOIK
[2005-02-04|12:59] C:\DOCUME~1\moi\APPLIC~1\Sun
[2006-06-24|10:53] C:\DOCUME~1\moi\APPLIC~1\Symantec
[2007-06-04|17:30] C:\DOCUME~1\moi\APPLIC~1\Template
[2007-08-25|11:13] C:\DOCUME~1\moi\APPLIC~1\Ulead Systems
[2008-01-26|21:44] C:\DOCUME~1\moi\APPLIC~1\vlc
[2007-10-15|07:00] C:\DOCUME~1\moi\APPLIC~1\WinRAR
[2005-01-19|15:09] C:\DOCUME~1\moi\APPLIC~1\You've Got Pictures Screensaver

[2006-08-03|17:01] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[2006-06-24|10:54] C:\DOCUME~1\NETWOR~1\APPLIC~1\Symantec

[2006-08-23|13:05] C:\DOCUME~1\PROPRI~1\APPLIC~1\Real

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[2008-09-12 23:00][--ah-----] C:\WINDOWS\tasks\AD3B429491ACFAA8.job
[2008-09-12 20:00][--a------] C:\WINDOWS\tasks\Norton AntiVirus - Analyser mon ordinateur - moi.job
[2008-09-12 22:43][--a------] C:\WINDOWS\tasks\Vérifier les mises à jour de Windows Live Toolbar.job
[2008-09-12 17:41][--ah-----] C:\WINDOWS\tasks\SA.DAT
[2004-08-05 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

( AD3B429491ACFAA8.job )=( c:\docume~1\moi\applic~1\baitti~1\Closeregsrect.exe )

--------------------\\ MsgPlus SPONSOR INSTALLED !

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MsgPlus! Plugin]
"DisplayName"="Messenger Plus! 3 & Sponsor"
"SponsorInstalled"=dword:00000000


--------------------\\ Listing des dossiers dans C:\Program Files

[2006-06-24|22:28] C:\Program Files\ACD Systems
[2007-09-16|16:35] C:\Program Files\Adobe
[2008-09-04|20:06] C:\Program Files\adslTV
[2006-06-25|08:21] C:\Program Files\Agfa
[2006-06-24|10:34] C:\Program Files\Ahead
[2006-09-30|21:12] C:\Program Files\ALCATech
[2006-07-16|13:25] C:\Program Files\Alcohol Soft
[2008-02-13|21:39] C:\Program Files\Ankama Games
[2005-02-04|12:55] C:\Program Files\AOL Toolbar
[2008-03-30|14:57] C:\Program Files\AviSynth 2.5
[2007-07-05|17:45] C:\Program Files\B-Association
[2006-06-24|10:34] C:\Program Files\CA
[2008-01-25|14:14] C:\Program Files\Cabri II Plus
[2007-05-20|22:36] C:\Program Files\CamStudio
[2005-01-19|14:04] C:\Program Files\Cardreader Software
[2008-02-16|16:06] C:\Program Files\CCleaner
[2008-09-07|09:35] C:\Program Files\Circle Developement
[2007-05-20|22:11] C:\Program Files\Common Files
[2005-01-19|15:10] C:\Program Files\CyberLink
[2007-09-02|15:21] C:\Program Files\directx
[2008-06-17|13:03] C:\Program Files\Dofus
[2008-02-02|15:18] C:\Program Files\DVD Shrink
[2008-04-17|12:37] C:\Program Files\Electronic Arts
[2006-10-29|12:34] C:\Program Files\elite
[2007-09-21|19:30] C:\Program Files\Empire Interactive
[2008-09-12|17:42] C:\Program Files\Fichiers communs
[2007-11-30|19:50] C:\Program Files\Free
[2006-12-30|18:14] C:\Program Files\Free Audio Pack
[2008-01-26|21:44] C:\Program Files\Freeplayer
[2008-01-18|22:20] C:\Program Files\GameShadow
[2008-04-17|12:42] C:\Program Files\GameSpy
[2007-01-27|09:52] C:\Program Files\Google
[2006-09-02|19:05] C:\Program Files\Hewlett-Packard
[2005-01-19|16:22] C:\Program Files\HighMAT CD Writing Wizard
[2005-01-19|15:11] C:\Program Files\Home Cinema
[2008-09-09|12:36] C:\Program Files\HomePlayer1.5.3.1
[2006-09-02|19:05] C:\Program Files\HP
[2006-12-30|17:57] C:\Program Files\Illustrate
[2008-03-24|23:50] C:\Program Files\InstallShield Installation Information
[2005-01-19|12:13] C:\Program Files\Intel
[2008-08-14|01:37] C:\Program Files\Internet Explorer
[2007-02-01|22:35] C:\Program Files\IVT Corporation
[2005-02-04|12:46] C:\Program Files\Java
[2006-06-25|08:28] C:\Program Files\Lavasoft
[2005-01-19|15:09] C:\Program Files\Learn2.com
[2006-07-11|18:20] C:\Program Files\Logitech
[2008-08-14|01:40] C:\Program Files\Messenger
[2008-09-07|09:35] C:\Program Files\Messenger Plus! Live
[2006-07-01|11:14] C:\Program Files\MessengerPlus! 3
[2007-05-11|23:11] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[2005-01-18|18:15] C:\Program Files\microsoft frontpage
[2006-10-24|21:23] C:\Program Files\Microsoft Office
[2008-08-20|10:06] C:\Program Files\Microsoft Silverlight
[2006-07-16|16:34] C:\Program Files\Microsoft SQL Server
[2005-01-19|16:35] C:\Program Files\Microsoft Works
[2006-06-24|14:18] C:\Program Files\Microsoft.NET
[2005-01-18|18:13] C:\Program Files\Movie Maker
[2007-03-31|13:26] C:\Program Files\MP3 Player Utilities 3.57
[2007-03-31|13:57] C:\Program Files\MP3 Player Utilities 4.05
[2006-07-15|19:56] C:\Program Files\MSN
[2005-01-18|18:12] C:\Program Files\MSN Gaming Zone
[2008-09-07|09:35] C:\Program Files\MSN Messenger
[2007-08-15|10:11] C:\Program Files\MSXML 4.0
[2005-01-19|15:13] C:\Program Files\Musicmatch
[2007-03-30|21:51] C:\Program Files\MyMPxPlayer.org
[2007-06-17|15:17] C:\Program Files\NetMeeting
[2008-01-15|19:39] C:\Program Files\Norton AntiVirus
[2007-01-29|20:31] C:\Program Files\Norton SystemWorks
[2005-01-18|18:12] C:\Program Files\Online Services
[2007-06-13|21:32] C:\Program Files\Outlook Express
[2008-04-15|11:01] C:\Program Files\PDFCreator
[2006-07-16|18:04] C:\Program Files\Pinnacle
[2007-09-16|17:13] C:\Program Files\QuickTime
[2005-01-19|15:01] C:\Program Files\Real
[2008-03-30|14:57] C:\Program Files\Replay Converter
[2008-03-30|15:34] C:\Program Files\Ripp-it_AM
[2005-01-18|18:13] C:\Program Files\Services en ligne
[2008-01-19|15:24] C:\Program Files\SEUCDaS
[2006-06-24|09:25] C:\Program Files\Smart Projects
[2006-07-30|16:17] C:\Program Files\SmartSound Software
[2006-07-10|21:40] C:\Program Files\Sonic
[2008-03-02|16:56] C:\Program Files\Sonic Foundry Noise Reduction Plug-In
[2006-07-09|21:07] C:\Program Files\Sony
[2006-07-09|21:06] C:\Program Files\Sony Setup
[2008-09-12|17:43] C:\Program Files\SPAMfighter
[2008-01-18|23:05] C:\Program Files\Spyware Doctor
[2007-12-11|19:27] C:\Program Files\STOIK Imaging
[2007-05-04|17:26] C:\Program Files\Symantec
[2007-02-24|10:35] C:\Program Files\SymNetDrv
[2007-09-02|15:22] C:\Program Files\TCWorks
[2007-04-15|12:17] C:\Program Files\THQ
[2008-06-28|22:29] C:\Program Files\Trend Micro
[2008-03-24|23:50] C:\Program Files\Ulead Systems
[2008-02-02|19:02] C:\Program Files\Ultra AVI Converter
[2008-08-31|18:46] C:\Program Files\UnderCoverXP
[2007-02-07|21:09] C:\Program Files\Unlocker
[2006-07-17|05:26] C:\Program Files\VFXMask
[2006-07-17|05:26] C:\Program Files\vfxplug_common
[2007-09-01|14:33] C:\Program Files\VideoLAN
[2005-01-19|15:09] C:\Program Files\Viewpoint
[2007-09-15|14:41] C:\Program Files\VLC
[2007-07-08|18:50] C:\Program Files\VSTplugins
[2005-01-18|18:18] C:\Program Files\Windows Journal Viewer
[2007-06-15|22:21] C:\Program Files\Windows Live
[2007-12-01|02:09] C:\Program Files\Windows Live Favorites
[2007-12-01|02:09] C:\Program Files\Windows Live Toolbar
[2006-06-24|09:36] C:\Program Files\Windows Media Components
[2007-06-17|15:10] C:\Program Files\Windows Media Connect
[2007-06-17|15:17] C:\Program Files\Windows Media Connect 2
[2007-06-17|15:19] C:\Program Files\Windows Media Player
[2005-01-18|18:12] C:\Program Files\Windows NT
[2007-10-15|06:59] C:\Program Files\WinRAR
[2008-09-11|18:36] C:\Program Files\xerox

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[2006-06-24|22:28] C:\Program Files\Fichiers communs\ACD Systems
[2008-05-07|18:15] C:\Program Files\Fichiers communs\Adobe
[2006-06-24|21:30] C:\Program Files\Fichiers communs\Adobe Systems Shared
[2005-01-19|15:15] C:\Program Files\Fichiers communs\Ahead
[2008-08-20|19:55] C:\Program Files\Fichiers communs\Ankiro
[2006-06-24|10:34] C:\Program Files\Fichiers communs\AOL
[2008-08-20|19:54] C:\Program Files\Fichiers communs\Application
[2007-06-17|15:16] C:\Program Files\Fichiers communs\AVSMedia
[2006-06-24|14:19] C:\Program Files\Fichiers communs\DESIGNER
[2006-06-24|10:59] C:\Program Files\Fichiers communs\FTL Shared
[2006-09-02|19:04] C:\Program Files\Fichiers communs\Hewlett-Packard
[2006-09-02|19:08] C:\Program Files\Fichiers communs\HP
[2006-06-24|09:35] C:\Program Files\Fichiers communs\InstallShield
[2005-02-04|12:46] C:\Program Files\Fichiers communs\Java
[2006-07-11|18:20] C:\Program Files\Fichiers communs\Logitech
[2008-08-12|00:03] C:\Program Files\Fichiers communs\Microsoft Shared
[2005-01-18|18:13] C:\Program Files\Fichiers communs\MSSoap
[2005-01-19|15:08] C:\Program Files\Fichiers communs\Nullsoft
[2007-06-17|21:16] C:\Program Files\Fichiers communs\ODBC
[2005-01-19|15:01] C:\Program Files\Fichiers communs\Real
[2005-01-18|18:13] C:\Program Files\Fichiers communs\Services
[2006-09-02|19:08] C:\Program Files\Fichiers communs\Sonic Shared
[2006-06-24|09:36] C:\Program Files\Fichiers communs\SONY Digital Images
[2005-01-18|19:09] C:\Program Files\Fichiers communs\SpeechEngines
[2008-08-21|17:36] C:\Program Files\Fichiers communs\Symantec Shared
[2007-06-13|21:32] C:\Program Files\Fichiers communs\System
[2006-07-16|22:30] C:\Program Files\Fichiers communs\Ulead Systems
[2008-01-25|14:14] C:\Program Files\Fichiers communs\Wise Installation Wizard
[2005-01-19|15:01] C:\Program Files\Fichiers communs\xing shared

--------------------\\ Process

( 62 Processes )

IEXPLORE.EXE ~ [PID:3996]
IEXPLORE.EXE ~ [PID:1572]

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\DOCUME~1\ALLUSE~1\APPLIC~1\Bin Wait Ante Cast
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Bin Wait Ante Cast\Bleh Obj.exe
C:\DOCUME~1\moi\APPLIC~1\baitti~1
C:\DOCUME~1\moi\APPLIC~1\baitti~1\htm draw extra style.exe
C:\DOCUME~1\moi\APPLIC~1\baitti~1\Livedownloadnew.exe
C:\DOCUME~1\moi\APPLIC~1\baitti~1\obuxafsy.exe
C:\Program Files\Circle Developement
C:\Program Files\Circle Developement\Uninstall.exe
C:\DOCUME~1\moi\Cookies\moi@advertstream[1].txt
C:\DOCUME~1\moi\Cookies\moi@fr.xblaster.bigpoint[1].txt
C:\DOCUME~1\moi\Cookies\moi@fr.xblaster.bigpoint[2].txt
C:\DOCUME~1\moi\Cookies\moi@adopt.euroclick[2].txt
C:\DOCUME~1\moi\Cookies\moi@pacificpoker[1].txt
C:\WINDOWS\Tasks\AD3B429491ACFAA8.job

--------------------\\ Verification du Registre

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"TeamWeb"="C:\\DOCUME~1\\moi\\APPLIC~1\\BAITTI~1\\Livedownloadnew.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ante cast ooze tray"="C:\\Documents and Settings\\All Users\\Application Data\\Bin Wait Ante Cast\\Bleh Obj.exe"

--------------------\\ Verification du fichier Hosts

Fichier Hosts MODIFIE

127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD
127.0.0.1 download.errorsafe.com ## added by CiD
127.0.0.1 download.systemdoctor.com ## added by CiD
127.0.0.1 download.winantispyware.com ## added by CiD
127.0.0.1 download.windrivecleaner.com ## added by CiD
127.0.0.1 download.winfixer.com ## added by CiD
127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 es.winantivirus.com ## added by CiD
127.0.0.1 fr.winantivirus.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 go.winantivirus.com ## added by CiD
127.0.0.1 hk.winantivirus.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 instlog.winantivirus.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 kb.winantivirus.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 secure.winantivirus.com ## added by CiD
127.0.0.1 support.winantivirus.com ## added by CiD
127.0.0.1 ulog.winantivirus.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 utils.winantivirus.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winantivirus.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.drivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.errorprotector.com ## added by CiD
127.0.0.1 [i]ww/iw.errorsafe.com ## added by CiD
127.0.0.1 [i]ww/iw.systemdoctor.com ## added by CiD
127.0.0.1 [i]ww/iw.win-anti-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.win-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispam.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispy.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispyware.com ## added by CiD
127.0.0.1 [i]ww/iw.winantivirus.com ## added by CiD
127.0.0.1 [i]ww/iw.winantiviruspro.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivesafe.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 [i]ww/iw.utils.winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer2006.com ## added by CiD
127.0.0.1 [i]ww/iw.winsoftware.com ## added by CiD

-> 7855 [ 70 ## added by CiD ]

--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-12 23:34:21
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 2

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:58][D:4]-> C:\DOCUME~1\moi\LOCALS~1\Temp
[F:128][D:0]-> C:\DOCUME~1\moi\Cookies
[F:1353][D:7]-> C:\DOCUME~1\moi\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 2008-09-12|23:35 - Option : [1]

--------------------\\ Fin du rapport a 23:35:38
0
Réponse 2 / 6
Herve83200
13 sept. 2008 à 10:00
Bonjour,

Comme convenu trouvez ci-joint le rapport de l'exécution de l'option 2:



--------------------\\ Lop S&D 4.2.4-2 XP/Vista


"C:\Lop SD" ( MAJ : 08-09-2008|21:40 )
Option : [2] ( 2008-09-13| 9:49 )


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Bin Wait Ante Cast\Bleh Obj.exe
Supprime! - C:\DOCUME~1\moi\APPLIC~1\baitti~1\htm draw extra style.exe
Supprime! - C:\DOCUME~1\moi\APPLIC~1\baitti~1\Livedownloadnew.exe
Supprime! - C:\DOCUME~1\moi\APPLIC~1\baitti~1\obuxafsy.exe
Supprime! - C:\Program Files\Circle Developement\Uninstall.exe
Supprime! - C:\DOCUME~1\moi\Cookies\moi@advertstream[1].txt
Supprime! - C:\DOCUME~1\moi\Cookies\moi@fr.xblaster.bigpoint[1].txt
Supprime! - C:\DOCUME~1\moi\Cookies\moi@fr.xblaster.bigpoint[2].txt
Supprime! - C:\DOCUME~1\moi\Cookies\moi@pacificpoker[1].txt
Supprime! - C:\WINDOWS\Tasks\AD3B429491ACFAA8.job
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Bin Wait Ante Cast
Supprime! - C:\DOCUME~1\moi\APPLIC~1\baitti~1
Supprime! - C:\Program Files\Circle Developement
-
[ Fichier Hosts ] .. Restaure!

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\

Supprime! - C:\Program Files\Viewpoint
Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Viewpoint

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


--------------------\\ Listing des dossiers dans APPLIC~1

[2006-06-24|22:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ACD Systems
[2008-05-07|18:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[2006-06-24|22:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe Systems
[2005-01-19|15:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead
[2006-06-24|10:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL
[2007-09-16|17:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[2007-02-01|22:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Bluetooth
[2007-07-06|14:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ciel
[2005-01-19|15:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[2008-02-02|15:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink
[2006-09-15|20:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[2006-09-02|19:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[2006-08-03|11:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[2006-09-08|23:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
[2006-07-01|11:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[2007-04-15|12:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[2007-05-22|20:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Minnetonka Audio Software
[2005-02-04|12:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
[2006-07-16|16:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle
[2006-07-16|16:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle Studio
[2006-07-23|18:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[2005-01-18|18:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[2006-07-31|11:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SmartSound Software Inc
[2006-09-02|19:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
[2007-02-24|10:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[2007-05-20|08:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[2006-08-21|14:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\UDL
[2008-01-27|12:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems
[2006-07-20|05:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[2006-11-24|18:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar

[2005-02-27|18:02] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Adobe
[2006-06-24|10:32] C:\DOCUME~1\DEFAUL~1\APPLIC~1\AOL
[2005-01-19|18:20] C:\DOCUME~1\DEFAUL~1\APPLIC~1\CyberLink
[2005-01-18|18:15] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[2005-01-19|16:14] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
[2005-01-19|16:14] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[2005-01-19|15:02] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Real
[2005-02-04|12:59] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Sun
[2005-01-19|15:09] C:\DOCUME~1\DEFAUL~1\APPLIC~1\You've Got Pictures Screensaver

[2006-08-03|17:01] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[2005-02-27|17:04] C:\DOCUME~1\LOCALS~1\APPLIC~1\X10 Commander

[2006-06-24|22:31] C:\DOCUME~1\moi\APPLIC~1\ACD Systems
[2007-12-13|19:45] C:\DOCUME~1\moi\APPLIC~1\Adobe
[2008-05-07|18:14] C:\DOCUME~1\moi\APPLIC~1\AdobeUM
[2006-07-21|15:40] C:\DOCUME~1\moi\APPLIC~1\Ahead
[2006-06-24|10:32] C:\DOCUME~1\moi\APPLIC~1\AOL
[2007-10-28|11:02] C:\DOCUME~1\moi\APPLIC~1\Apple Computer
[2006-10-30|23:05] C:\DOCUME~1\moi\APPLIC~1\CyberLink
[2007-07-05|17:48] C:\DOCUME~1\moi\APPLIC~1\FileMaker
[2006-09-15|20:48] C:\DOCUME~1\moi\APPLIC~1\Google
[2008-06-18|23:52] C:\DOCUME~1\moi\APPLIC~1\gtk-2.0
[2006-07-17|22:53] C:\DOCUME~1\moi\APPLIC~1\Help
[2006-09-02|20:47] C:\DOCUME~1\moi\APPLIC~1\HP
[2005-01-18|18:15] C:\DOCUME~1\moi\APPLIC~1\Identities
[2006-06-24|10:51] C:\DOCUME~1\moi\APPLIC~1\IsolatedStorage
[2007-11-14|19:28] C:\DOCUME~1\moi\APPLIC~1\La Bataille pour la Terre du Milieu ™ II
[2006-06-25|08:28] C:\DOCUME~1\moi\APPLIC~1\Lavasoft
[2008-05-11|01:37] C:\DOCUME~1\moi\APPLIC~1\Leadertech
[2005-01-19|16:14] C:\DOCUME~1\moi\APPLIC~1\Macromedia
[2006-07-04|20:01] C:\DOCUME~1\moi\APPLIC~1\Media Player Classic
[2007-06-17|21:08] C:\DOCUME~1\moi\APPLIC~1\Microsoft
[2006-12-15|22:25] C:\DOCUME~1\moi\APPLIC~1\Opera
[2006-07-09|21:09] C:\DOCUME~1\moi\APPLIC~1\Publish Providers
[2005-01-19|15:02] C:\DOCUME~1\moi\APPLIC~1\Real
[2006-07-09|21:08] C:\DOCUME~1\moi\APPLIC~1\Sony
[2007-07-03|19:54] C:\DOCUME~1\moi\APPLIC~1\SPAMfighter
[2007-12-11|19:28] C:\DOCUME~1\moi\APPLIC~1\STOIK
[2005-02-04|12:59] C:\DOCUME~1\moi\APPLIC~1\Sun
[2006-06-24|10:53] C:\DOCUME~1\moi\APPLIC~1\Symantec
[2007-06-04|17:30] C:\DOCUME~1\moi\APPLIC~1\Template
[2007-08-25|11:13] C:\DOCUME~1\moi\APPLIC~1\Ulead Systems
[2008-01-26|21:44] C:\DOCUME~1\moi\APPLIC~1\vlc
[2007-10-15|07:00] C:\DOCUME~1\moi\APPLIC~1\WinRAR
[2005-01-19|15:09] C:\DOCUME~1\moi\APPLIC~1\You've Got Pictures Screensaver

[2006-08-03|17:01] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[2006-06-24|10:54] C:\DOCUME~1\NETWOR~1\APPLIC~1\Symantec

[2006-08-23|13:05] C:\DOCUME~1\PROPRI~1\APPLIC~1\Real

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[2008-09-12 20:00][--a------] C:\WINDOWS\tasks\Norton AntiVirus - Analyser mon ordinateur - moi.job
[2008-09-13 09:43][--a------] C:\WINDOWS\tasks\Vérifier les mises à jour de Windows Live Toolbar.job
[2008-09-13 07:46][--ah-----] C:\WINDOWS\tasks\SA.DAT
[2004-08-05 14:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ MsgPlus SPONSOR INSTALLED !

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MsgPlus! Plugin]
"SponsorInstalled"=dword:00000000


--------------------\\ Listing des dossiers dans C:\Program Files

[2006-06-24|22:28] C:\Program Files\ACD Systems
[2007-09-16|16:35] C:\Program Files\Adobe
[2008-09-04|20:06] C:\Program Files\adslTV
[2006-06-25|08:21] C:\Program Files\Agfa
[2006-06-24|10:34] C:\Program Files\Ahead
[2006-09-30|21:12] C:\Program Files\ALCATech
[2006-07-16|13:25] C:\Program Files\Alcohol Soft
[2008-02-13|21:39] C:\Program Files\Ankama Games
[2005-02-04|12:55] C:\Program Files\AOL Toolbar
[2008-03-30|14:57] C:\Program Files\AviSynth 2.5
[2007-07-05|17:45] C:\Program Files\B-Association
[2006-06-24|10:34] C:\Program Files\CA
[2008-01-25|14:14] C:\Program Files\Cabri II Plus
[2007-05-20|22:36] C:\Program Files\CamStudio
[2005-01-19|14:04] C:\Program Files\Cardreader Software
[2008-02-16|16:06] C:\Program Files\CCleaner
[2007-05-20|22:11] C:\Program Files\Common Files
[2005-01-19|15:10] C:\Program Files\CyberLink
[2007-09-02|15:21] C:\Program Files\directx
[2008-06-17|13:03] C:\Program Files\Dofus
[2008-02-02|15:18] C:\Program Files\DVD Shrink
[2008-04-17|12:37] C:\Program Files\Electronic Arts
[2006-10-29|12:34] C:\Program Files\elite
[2007-09-21|19:30] C:\Program Files\Empire Interactive
[2008-09-13|07:47] C:\Program Files\Fichiers communs
[2007-11-30|19:50] C:\Program Files\Free
[2006-12-30|18:14] C:\Program Files\Free Audio Pack
[2008-01-26|21:44] C:\Program Files\Freeplayer
[2008-01-18|22:20] C:\Program Files\GameShadow
[2008-04-17|12:42] C:\Program Files\GameSpy
[2007-01-27|09:52] C:\Program Files\Google
[2006-09-02|19:05] C:\Program Files\Hewlett-Packard
[2005-01-19|16:22] C:\Program Files\HighMAT CD Writing Wizard
[2005-01-19|15:11] C:\Program Files\Home Cinema
[2008-09-09|12:36] C:\Program Files\HomePlayer1.5.3.1
[2006-09-02|19:05] C:\Program Files\HP
[2006-12-30|17:57] C:\Program Files\Illustrate
[2008-03-24|23:50] C:\Program Files\InstallShield Installation Information
[2005-01-19|12:13] C:\Program Files\Intel
[2008-08-14|01:37] C:\Program Files\Internet Explorer
[2007-02-01|22:35] C:\Program Files\IVT Corporation
[2005-02-04|12:46] C:\Program Files\Java
[2006-06-25|08:28] C:\Program Files\Lavasoft
[2005-01-19|15:09] C:\Program Files\Learn2.com
[2006-07-11|18:20] C:\Program Files\Logitech
[2008-08-14|01:40] C:\Program Files\Messenger
[2008-09-07|09:35] C:\Program Files\Messenger Plus! Live
[2006-07-01|11:14] C:\Program Files\MessengerPlus! 3
[2007-05-11|23:11] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[2005-01-18|18:15] C:\Program Files\microsoft frontpage
[2006-10-24|21:23] C:\Program Files\Microsoft Office
[2008-08-20|10:06] C:\Program Files\Microsoft Silverlight
[2006-07-16|16:34] C:\Program Files\Microsoft SQL Server
[2005-01-19|16:35] C:\Program Files\Microsoft Works
[2006-06-24|14:18] C:\Program Files\Microsoft.NET
[2005-01-18|18:13] C:\Program Files\Movie Maker
[2007-03-31|13:26] C:\Program Files\MP3 Player Utilities 3.57
[2007-03-31|13:57] C:\Program Files\MP3 Player Utilities 4.05
[2006-07-15|19:56] C:\Program Files\MSN
[2005-01-18|18:12] C:\Program Files\MSN Gaming Zone
[2008-09-07|09:35] C:\Program Files\MSN Messenger
[2007-08-15|10:11] C:\Program Files\MSXML 4.0
[2005-01-19|15:13] C:\Program Files\Musicmatch
[2007-03-30|21:51] C:\Program Files\MyMPxPlayer.org
[2007-06-17|15:17] C:\Program Files\NetMeeting
[2008-01-15|19:39] C:\Program Files\Norton AntiVirus
[2007-01-29|20:31] C:\Program Files\Norton SystemWorks
[2005-01-18|18:12] C:\Program Files\Online Services
[2007-06-13|21:32] C:\Program Files\Outlook Express
[2008-04-15|11:01] C:\Program Files\PDFCreator
[2006-07-16|18:04] C:\Program Files\Pinnacle
[2007-09-16|17:13] C:\Program Files\QuickTime
[2005-01-19|15:01] C:\Program Files\Real
[2008-03-30|14:57] C:\Program Files\Replay Converter
[2008-03-30|15:34] C:\Program Files\Ripp-it_AM
[2005-01-18|18:13] C:\Program Files\Services en ligne
[2008-01-19|15:24] C:\Program Files\SEUCDaS
[2006-06-24|09:25] C:\Program Files\Smart Projects
[2006-07-30|16:17] C:\Program Files\SmartSound Software
[2006-07-10|21:40] C:\Program Files\Sonic
[2008-03-02|16:56] C:\Program Files\Sonic Foundry Noise Reduction Plug-In
[2006-07-09|21:07] C:\Program Files\Sony
[2006-07-09|21:06] C:\Program Files\Sony Setup
[2008-09-13|07:49] C:\Program Files\SPAMfighter
[2008-01-18|23:05] C:\Program Files\Spyware Doctor
[2007-12-11|19:27] C:\Program Files\STOIK Imaging
[2007-05-04|17:26] C:\Program Files\Symantec
[2007-02-24|10:35] C:\Program Files\SymNetDrv
[2007-09-02|15:22] C:\Program Files\TCWorks
[2007-04-15|12:17] C:\Program Files\THQ
[2008-06-28|22:29] C:\Program Files\Trend Micro
[2008-03-24|23:50] C:\Program Files\Ulead Systems
[2008-02-02|19:02] C:\Program Files\Ultra AVI Converter
[2008-08-31|18:46] C:\Program Files\UnderCoverXP
[2007-02-07|21:09] C:\Program Files\Unlocker
[2006-07-17|05:26] C:\Program Files\VFXMask
[2006-07-17|05:26] C:\Program Files\vfxplug_common
[2007-09-01|14:33] C:\Program Files\VideoLAN
[2007-09-15|14:41] C:\Program Files\VLC
[2007-07-08|18:50] C:\Program Files\VSTplugins
[2005-01-18|18:18] C:\Program Files\Windows Journal Viewer
[2007-06-15|22:21] C:\Program Files\Windows Live
[2007-12-01|02:09] C:\Program Files\Windows Live Favorites
[2007-12-01|02:09] C:\Program Files\Windows Live Toolbar
[2006-06-24|09:36] C:\Program Files\Windows Media Components
[2007-06-17|15:10] C:\Program Files\Windows Media Connect
[2007-06-17|15:17] C:\Program Files\Windows Media Connect 2
[2007-06-17|15:19] C:\Program Files\Windows Media Player
[2005-01-18|18:12] C:\Program Files\Windows NT
[2007-10-15|06:59] C:\Program Files\WinRAR
[2008-09-11|18:36] C:\Program Files\xerox

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[2006-06-24|22:28] C:\Program Files\Fichiers communs\ACD Systems
[2008-05-07|18:15] C:\Program Files\Fichiers communs\Adobe
[2006-06-24|21:30] C:\Program Files\Fichiers communs\Adobe Systems Shared
[2005-01-19|15:15] C:\Program Files\Fichiers communs\Ahead
[2008-08-20|19:55] C:\Program Files\Fichiers communs\Ankiro
[2006-06-24|10:34] C:\Program Files\Fichiers communs\AOL
[2008-08-20|19:54] C:\Program Files\Fichiers communs\Application
[2007-06-17|15:16] C:\Program Files\Fichiers communs\AVSMedia
[2006-06-24|14:19] C:\Program Files\Fichiers communs\DESIGNER
[2006-06-24|10:59] C:\Program Files\Fichiers communs\FTL Shared
[2006-09-02|19:04] C:\Program Files\Fichiers communs\Hewlett-Packard
[2006-09-02|19:08] C:\Program Files\Fichiers communs\HP
[2006-06-24|09:35] C:\Program Files\Fichiers communs\InstallShield
[2005-02-04|12:46] C:\Program Files\Fichiers communs\Java
[2006-07-11|18:20] C:\Program Files\Fichiers communs\Logitech
[2008-08-12|00:03] C:\Program Files\Fichiers communs\Microsoft Shared
[2005-01-18|18:13] C:\Program Files\Fichiers communs\MSSoap
[2005-01-19|15:08] C:\Program Files\Fichiers communs\Nullsoft
[2007-06-17|21:16] C:\Program Files\Fichiers communs\ODBC
[2005-01-19|15:01] C:\Program Files\Fichiers communs\Real
[2005-01-18|18:13] C:\Program Files\Fichiers communs\Services
[2006-09-02|19:08] C:\Program Files\Fichiers communs\Sonic Shared
[2006-06-24|09:36] C:\Program Files\Fichiers communs\SONY Digital Images
[2005-01-18|19:09] C:\Program Files\Fichiers communs\SpeechEngines
[2008-08-21|17:36] C:\Program Files\Fichiers communs\Symantec Shared
[2007-06-13|21:32] C:\Program Files\Fichiers communs\System
[2006-07-16|22:30] C:\Program Files\Fichiers communs\Ulead Systems
[2008-01-25|14:14] C:\Program Files\Fichiers communs\Wise Installation Wizard
[2005-01-19|15:01] C:\Program Files\Fichiers communs\xing shared

--------------------\\ Process

( 59 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\DOCUME~1\moi\Cookies\moi@adopt.euroclick[1].txt
C:\DOCUME~1\moi\Cookies\moi@partypoker[1].txt

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-13 09:51:10
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 2

--------------------\\ Recherche d'autres infections


Aucune autre infection trouvée !

[F:61][D:4]-> C:\DOCUME~1\moi\LOCALS~1\Temp
[F:137][D:0]-> C:\DOCUME~1\moi\Cookies
[F:2477][D:7]-> C:\DOCUME~1\moi\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 2008-09-12|23:35 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 2008-09-13| 9:52 - Option : [2]

--------------------\\ Fin du rapport a 9:52:26
0
Réponse 3 / 6
Herve83200
13 sept. 2008 à 10:08
Depuis le déroulement de l'option 2, il semble que iexplorer.exe (hors activation internet explorer) ait disparut... j'espère que c'esr définitif. Y-a t-il d'autres manipulations à faire?

Merci de votre précieuse aide.
0
Réponse 4 / 6
Utilisateur anonyme
12 sept. 2008 à 23:12
Bojour

L'ordinateur est infecté, on va donc commencer par le comemncement

Télécharge ceci
--> https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2

Double-clic afin de lancer l'installation. Ensuite double-clic sur le raccourci qui se sera ajouté sur ton bureau.
Sléectionne la langue puis choisis l'option 1. Poste ici le rapport qui sera généré. Tu trouveras le rapport à cet endroit : démarrer, Ordinateur, Disque Local C: (lopR.txt )
-1

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 6
Utilisateur anonyme
13 sept. 2008 à 00:48
C'est ok, tu peux exécter l'option 2.
Pense à coller le rapport ici une fois fait ;-)
-1
hepsylon
24 sept. 2008 à 20:37
Bonjour, j'ai lu votre réponse à hervé83200, concernant le ralentissement de windows xp à cause de Iexplorer qui se lance en tâche de fond au démarrage et grossit à vue d'oeil. mon cas est le même. Je me permet de mettre glisser ci-dessous mon rappor lopR.txt. Merci de l'aide que vous voudrez bien m'accorder.


--------------------\\ Lop S&D 4.2.4-4 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : Intel(R) Pentium(R) M processor 1.60GHz )
BIOS : Phoenix NoteBIOS 4.0 Release 6.0
USER : Francis ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 080924-0] 4.8.1229 (Activated)
Firewall : Sunbelt Personal Firewall 4.5.916 T (Activated)
C:\ (Local Disk) - NTFS - Total : 55 Go Free : 15 Go
D:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 19-09-2008|22:20 )
Option : [1] ( 24/09/2008|20:15 )

--------------------\\ Listing des dossiers dans APPLIC~1


[21/09/2008|15:00] C:\DOCUME~1\Admin2\APPLIC~1\Adobe
[05/03/2007|15:07] C:\DOCUME~1\Admin2\APPLIC~1\Identities
[21/09/2008|11:37] C:\DOCUME~1\Admin2\APPLIC~1\Macromedia
[21/09/2008|11:36] C:\DOCUME~1\Admin2\APPLIC~1\Microsoft
[21/09/2008|07:47] C:\DOCUME~1\Admin2\APPLIC~1\Mozilla
[21/09/2008|07:51] C:\DOCUME~1\Admin2\APPLIC~1\PC Suite
[21/09/2008|14:59] C:\DOCUME~1\Admin2\APPLIC~1\Sun

[17/10/2006|20:05] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft

[06/02/2008|20:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[01/09/2007|20:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe Systems
[14/07/2008|16:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink
[18/02/2007|18:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[24/09/2008|07:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
[23/03/2008|23:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HG Surveillance Reseau
[17/10/2006|20:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hpqwmi
[09/02/2008|17:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Installations
[01/12/2007|15:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
[13/12/2006|22:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[04/04/2008|15:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[21/11/2006|11:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\My Pictures
[02/09/2008|15:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Part Long Boob Idle
[09/02/2008|17:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PC Suite
[28/01/2007|14:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[21/11/2006|11:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony Ericsson
[10/02/2008|16:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[24/09/2008|20:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[27/10/2006|17:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[17/10/2006|22:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[05/06/2008|11:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller

[22/09/2008|21:27] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
[06/04/2008|11:08] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[12/02/2008|21:22] C:\DOCUME~1\Francis\APPLIC~1\Adobe
[13/10/2007|13:14] C:\DOCUME~1\Francis\APPLIC~1\AdobeUM
[05/11/2006|17:37] C:\DOCUME~1\Francis\APPLIC~1\Apple Computer
[25/11/2006|19:26] C:\DOCUME~1\Francis\APPLIC~1\BitTorrent
[03/06/2008|22:30] C:\DOCUME~1\Francis\APPLIC~1\DivX
[05/05/2007|17:25] C:\DOCUME~1\Francis\APPLIC~1\Google
[17/10/2006|22:47] C:\DOCUME~1\Francis\APPLIC~1\Identities
[20/08/2008|17:50] C:\DOCUME~1\Francis\APPLIC~1\InstallShield
[18/10/2006|21:05] C:\DOCUME~1\Francis\APPLIC~1\InterVideo
[14/04/2008|13:36] C:\DOCUME~1\Francis\APPLIC~1\LimeWire
[03/09/2008|18:33] C:\DOCUME~1\Francis\APPLIC~1\love grim byte
[17/10/2006|22:50] C:\DOCUME~1\Francis\APPLIC~1\Macromedia
[19/08/2008|21:39] C:\DOCUME~1\Francis\APPLIC~1\Media Player Classic
[24/05/2008|12:49] C:\DOCUME~1\Francis\APPLIC~1\Microsoft
[01/09/2008|22:06] C:\DOCUME~1\Francis\APPLIC~1\Mozilla
[29/10/2006|17:12] C:\DOCUME~1\Francis\APPLIC~1\MSN6
[09/02/2008|17:35] C:\DOCUME~1\Francis\APPLIC~1\Nokia
[18/04/2008|18:51] C:\DOCUME~1\Francis\APPLIC~1\Nokia Multimedia Player
[04/09/2007|23:12] C:\DOCUME~1\Francis\APPLIC~1\OmegaT
[09/02/2008|17:22] C:\DOCUME~1\Francis\APPLIC~1\PC Suite
[22/09/2008|20:26] C:\DOCUME~1\Francis\APPLIC~1\PC Tools
[19/04/2008|10:14] C:\DOCUME~1\Francis\APPLIC~1\Samsung
[26/04/2007|20:54] C:\DOCUME~1\Francis\APPLIC~1\Screenshot Sender
[18/10/2006|17:37] C:\DOCUME~1\Francis\APPLIC~1\Sonic
[28/10/2007|10:24] C:\DOCUME~1\Francis\APPLIC~1\SPAMfighter
[25/12/2006|13:41] C:\DOCUME~1\Francis\APPLIC~1\Sun
[02/02/2007|21:45] C:\DOCUME~1\Francis\APPLIC~1\Talkback
[13/02/2008|21:44] C:\DOCUME~1\Francis\APPLIC~1\TomTom
[14/11/2007|21:02] C:\DOCUME~1\Francis\APPLIC~1\Uniblue
[21/11/2006|14:25] C:\DOCUME~1\Francis\APPLIC~1\vlc

[11/11/2007|21:35] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[17/10/2006|20:09] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

[23/09/2008|15:08] C:\DOCUME~1\Sylvie\APPLIC~1\Adobe
[24/09/2008|08:27] C:\DOCUME~1\Sylvie\APPLIC~1\DivX
[21/09/2008|07:33] C:\DOCUME~1\Sylvie\APPLIC~1\Identities
[21/09/2008|08:01] C:\DOCUME~1\Sylvie\APPLIC~1\Macromedia
[23/09/2008|15:09] C:\DOCUME~1\Sylvie\APPLIC~1\Microsoft
[21/09/2008|08:00] C:\DOCUME~1\Sylvie\APPLIC~1\Mozilla
[21/09/2008|07:58] C:\DOCUME~1\Sylvie\APPLIC~1\PC Suite

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[20/09/2008 12:32][--a------] C:\WINDOWS\tasks\Uniblue SpeedUpMyPC Nag.job
[14/11/2007 20:37][--a------] C:\WINDOWS\tasks\Uniblue SpeedUpMyPC.job
[20/06/2007 19:33][--a------] C:\WINDOWS\tasks\Spybot - Search & Destroy - Scheduled Task.job
[24/09/2008 18:00][--ah-----] C:\WINDOWS\tasks\SA.DAT
[24/04/2003 21:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[25/06/2008|08:18] C:\Program Files\Adobe
[27/10/2006|13:23] C:\Program Files\Alwil Software
[20/05/2008|23:05] C:\Program Files\AviSynth 2.5
[02/09/2008|15:19] C:\Program Files\Circle Developement
[19/08/2008|21:34] C:\Program Files\Codec Pack
[17/10/2006|21:11] C:\Program Files\Common Files
[17/10/2006|20:03] C:\Program Files\ComPlus Applications
[17/10/2006|20:21] C:\Program Files\CONEXANT
[09/02/2008|17:20] C:\Program Files\DIFX
[17/12/2006|16:14] C:\Program Files\directx
[03/06/2008|22:37] C:\Program Files\DivX
[28/10/2006|13:08] C:\Program Files\DVD Shrink
[22/11/2006|21:51] C:\Program Files\FastStone Capture
[04/04/2008|15:35] C:\Program Files\Fichiers communs
[22/09/2008|21:28] C:\Program Files\Google
[17/10/2006|20:59] C:\Program Files\HPQ
[16/06/2008|20:37] C:\Program Files\INFORAD
[16/06/2008|20:37] C:\Program Files\INFORAD_DRIVERS
[20/08/2008|17:50] C:\Program Files\InstallShield Installation Information
[17/10/2006|20:23] C:\Program Files\Intel
[21/09/2008|22:14] C:\Program Files\Internet Explorer
[17/10/2006|20:44] C:\Program Files\InterVideo
[03/08/2008|18:46] C:\Program Files\Java
[22/09/2008|20:19] C:\Program Files\Lavasoft
[15/08/2008|20:20] C:\Program Files\LimeWire
[23/12/2006|17:20] C:\Program Files\Logitech
[02/09/2008|15:19] C:\Program Files\love grim byte
[09/09/2008|21:27] C:\Program Files\Messenger
[02/09/2008|15:19] C:\Program Files\Messenger Plus! Live
[17/10/2006|20:06] C:\Program Files\microsoft frontpage
[29/10/2006|18:05] C:\Program Files\Microsoft Office
[04/04/2008|15:42] C:\Program Files\Microsoft SQL Server Compact Edition
[29/10/2006|17:48] C:\Program Files\Microsoft Works
[17/10/2006|21:22] C:\Program Files\Microsoft Works Suite 2004
[09/09/2008|21:22] C:\Program Files\Movie Maker
[24/09/2008|20:11] C:\Program Files\Mozilla Firefox
[21/11/2007|22:37] C:\Program Files\MSBuild
[09/09/2008|21:22] C:\Program Files\msn
[17/10/2006|20:02] C:\Program Files\MSN Gaming Zone
[23/11/2006|04:01] C:\Program Files\MSXML 4.0
[22/11/2007|22:13] C:\Program Files\MSXML 6.0
[09/09/2008|21:16] C:\Program Files\NetMeeting
[09/02/2008|17:19] C:\Program Files\Nokia
[09/09/2008|21:16] C:\Program Files\Outlook Express
[18/07/2008|21:22] C:\Program Files\Paint.NET
[09/02/2008|17:18] C:\Program Files\PC Connectivity Solution
[03/10/2007|20:47] C:\Program Files\Picasa2
[02/09/2007|11:30] C:\Program Files\PSCS2
[17/10/2006|20:45] C:\Program Files\QuickTime
[17/10/2006|20:46] C:\Program Files\RecordNow!
[21/11/2007|22:31] C:\Program Files\Reference Assemblies
[19/04/2008|10:04] C:\Program Files\Samsung
[17/10/2006|20:04] C:\Program Files\Services en ligne
[29/10/2006|18:06] C:\Program Files\Snapshot Viewer
[17/10/2006|20:46] C:\Program Files\Sonic
[21/11/2006|11:24] C:\Program Files\Sony Ericsson
[20/08/2008|17:50] C:\Program Files\S-PASS
[14/11/2007|20:36] C:\Program Files\SpeedUpMyPC 3
[03/09/2008|20:54] C:\Program Files\Spybot - Search & Destroy
[24/09/2008|19:23] C:\Program Files\Spyware Doctor
[05/05/2008|18:51] C:\Program Files\Sunbelt Software
[17/10/2006|20:21] C:\Program Files\Synaptics
[07/04/2007|20:08] C:\Program Files\TomTom DesktopSuite
[13/02/2008|21:42] C:\Program Files\TomTom HOME
[13/02/2008|21:43] C:\Program Files\TomTom HOME 2
[23/12/2006|17:36] C:\Program Files\ToniArts
[03/06/2007|16:33] C:\Program Files\Trymedia
[17/10/2006|21:11] C:\Program Files\Uninstall Information
[21/11/2006|12:27] C:\Program Files\VideoLAN
[12/12/2007|19:12] C:\Program Files\WebAllow
[20/05/2008|23:06] C:\Program Files\WinASPI
[24/09/2008|19:49] C:\Program Files\Windows Live
[24/09/2008|19:47] C:\Program Files\Windows Live Toolbar
[12/02/2008|21:20] C:\Program Files\Windows Media Connect 2
[09/09/2008|21:16] C:\Program Files\Windows Media Player
[09/09/2008|21:16] C:\Program Files\Windows NT
[17/10/2006|21:46] C:\Program Files\WindowsUpdate
[22/11/2006|21:54] C:\Program Files\WinRAR
[17/10/2006|20:06] C:\Program Files\xerox

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[06/02/2008|20:30] C:\Program Files\Fichiers communs\Adobe
[01/09/2007|20:33] C:\Program Files\Fichiers communs\Adobe Systems Shared
[17/10/2006|21:31] C:\Program Files\Fichiers communs\Designer
[17/10/2006|20:45] C:\Program Files\Fichiers communs\InstallShield
[17/10/2006|20:36] C:\Program Files\Fichiers communs\Java
[17/12/2006|16:10] C:\Program Files\Fichiers communs\Logitech
[04/04/2008|15:36] C:\Program Files\Fichiers communs\Microsoft Shared
[17/10/2006|20:03] C:\Program Files\Fichiers communs\MSSoap
[09/02/2008|17:19] C:\Program Files\Fichiers communs\Nokia
[17/10/2006|20:55] C:\Program Files\Fichiers communs\ODBC
[23/03/2008|23:38] C:\Program Files\Fichiers communs\PC SOFT
[09/02/2008|17:19] C:\Program Files\Fichiers communs\PCSuite
[17/10/2006|20:03] C:\Program Files\Fichiers communs\Services
[17/10/2006|20:55] C:\Program Files\Fichiers communs\SpeechEngines
[17/10/2006|20:46] C:\Program Files\Fichiers communs\SureThing Shared
[09/09/2008|21:16] C:\Program Files\Fichiers communs\System
[04/04/2008|15:40] C:\Program Files\Fichiers communs\WindowsLiveInstaller

--------------------\\ Process

( 42 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\DOCUME~1\ALLUSE~1\APPLIC~1\Part Long Boob Idle
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Part Long Boob Idle\size proc.exe
C:\DOCUME~1\Francis\LOCALS~1\Temp\nsg3.tmp
C:\DOCUME~1\Francis\LOCALS~1\Temp\nst2D.tmp
C:\Program Files\Circle Developement
C:\Program Files\Circle Developement\Uninstall.exe

--------------------\\ Verification du Registre

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Boob Idle Software Acid"="C:\\Documents and Settings\\All Users\\Application Data\\Part Long Boob Idle\\size proc.exe"

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-24 20:21:40
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 13

--------------------\\ Recherche d'autres infections

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"fuupvntbt"="c:\\windows\\system32\\fuupvntbt.exe fuupvntbt"


C:\DOCUME~1\Francis\LOCALS~1\APPLIC~1\jjtfpaownd.dat
C:\DOCUME~1\Francis\LOCALS~1\APPLIC~1\jjtfpaownd_nav.dat
C:\DOCUME~1\Francis\LOCALS~1\APPLIC~1\jjtfpaownd_navps.dat
C:\WINDOWS\System32\axxagww.dat
C:\WINDOWS\System32\axxagww_nav.dat
C:\WINDOWS\System32\axxagww_navps.dat
C:\WINDOWS\System32\bvasmawtua.dat
C:\WINDOWS\System32\bvasmawtua_nav.dat
C:\WINDOWS\System32\bvasmawtua_navps.dat
C:\WINDOWS\System32\fuupvntbt_navup.dat
C:\WINDOWS\System32\jbsryabit.dat
C:\WINDOWS\System32\jbsryabit_nav.dat
C:\WINDOWS\System32\jbsryabit_navps.dat
C:\WINDOWS\System32\kkmliloju.dat
C:\WINDOWS\System32\kkmliloju_nav.dat
C:\WINDOWS\System32\kkmliloju_navps.dat
C:\WINDOWS\System32\kqsfpjlthj.dat
C:\WINDOWS\System32\kqsfpjlthj_navps.dat
C:\WINDOWS\System32\morwsqc.dat
C:\WINDOWS\System32\morwsqc_navps.dat
C:\WINDOWS\System32\pndtip.dat
C:\WINDOWS\System32\pndtip_nav.dat
C:\WINDOWS\System32\pndtip_navps.dat
[b]==> EGDACCESS <==/b



[F:848][D:74]-> C:\DOCUME~1\Francis\LOCALS~1\Temp
[F:10][D:0]-> C:\DOCUME~1\Francis\Cookies
[F:231][D:6]-> C:\DOCUME~1\Francis\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 24/09/2008|20:26 - Option : [1]

--------------------\\ Fin du rapport a 20:26:01
0
Réponse 6 / 6
Utilisateur anonyme
13 sept. 2008 à 21:26
C'est bon, tu peux jeter ce prgramme (LOP).


La suite :

* Relance HijackThis, choisis "do a scan only" coche la case devant les lignes ci-dessous et clic en bas sur "fix checked"
- Ferme Internet Explorer avant de cliquer sur Fix checked
- S'il manque des lignes ce n'est pas grave
- Rien n'est supprimé

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Home Cinema\PowerCinema\PCMService.exe"
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [Ulead AutoDetector v2] C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\monitor.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Démarrage rapide de HP Photosmart Premier.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: &Recherche AOL Toolbar - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {C45B1500-7B63-47C2-AB25-C28CB46AFDEE} (MediaBar) - http://sib1.od2.com/common/musicmanager/installation/MusicManagerPlugin.CAB
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab



* Télécharge et installe CCleaner afin de faire le ménage.

* Puis je te conseille de désinstaller Windows Live Toolbar via ajouter/supprimer des programmes, car tu as déjà la barre d'outils de Google et une seule suffit pour ne pas allourdir le système pour rien.

* N'hésite pas à faire ce scan antivirus en ligne avec Kaspersky et de coller le rapport ici une fois qu'il a terminé afin de vérifier que tout soit propre
https://kerio.probb.fr/t678-kaspersky-antivirus-en-ligne

* N'oublie pas de mettre à jour ton Windows ;-)

A++
-1

Discussions similaires

Le processus ne peut pas accéder au fichier
stanly971 -
stanly971 -

2 réponses
processus inactif du systeme
edsurf64 -
mick8 -

29 réponses
processus d'execution client serveur utilise GPU
Lixis258 -
Malekal_morte- -

1 réponse
Probléme Intel(R Management Engine Interface
tebani -
joeas -

6 réponses
Lancement d'application en priorité haute par défaut ?
finelarme -
Turok -

8 réponses